mirror of
https://github.com/scinote-eln/scinote-web.git
synced 2025-01-09 00:49:07 +08:00
5de51f9c58
Closes SCI-3163
42 lines
1.2 KiB
Ruby
42 lines
1.2 KiB
Ruby
# frozen_string_literal: true
|
|
|
|
module SmartAnnotations
|
|
class PermissionEval
|
|
class << self
|
|
include Canaid::Helpers::PermissionsHelper
|
|
|
|
def check(user, team, type, object)
|
|
send("validate_#{type}_permissions", user, team, object)
|
|
end
|
|
|
|
private
|
|
|
|
def validate_prj_permissions(user, team, object)
|
|
object.team.id == team.id && can_read_project?(user, object)
|
|
end
|
|
|
|
def validate_exp_permissions(user, team, object)
|
|
object.project.team.id == team.id && can_read_experiment?(user, object)
|
|
end
|
|
|
|
def validate_tsk_permissions(user, team, object)
|
|
object.experiment.project.team.id == team.id &&
|
|
can_read_experiment?(user, object.experiment)
|
|
end
|
|
|
|
def validate_rep_item_permissions(user, team, object)
|
|
if object.repository
|
|
return object.repository.team.id == team.id &&
|
|
can_read_team?(user, object.repository.team)
|
|
end
|
|
|
|
# handles discarded repositories
|
|
repository = Repository.with_discarded.find_by_id(object.repository_id)
|
|
# evaluate to false if repository not found
|
|
return false unless repository
|
|
|
|
repository.team.id == team && can_read_team?(user, repository.team)
|
|
end
|
|
end
|
|
end
|
|
end
|