Startsida Utforska Hjälp
Registrera dig Logga in
Fohow
/
fohow_admin
Bevaka 2
Stjärnmärk 0
Fork 0
Filer Ärenden 0 Pull-förfrågningar 0 Wiki
Träd: 93acb2c3a4
Grenar Taggar
fohow_admin
/
app
/
models
/
ability.rb

ability.rb 2.4 KB
Historik

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869 
  1. class Ability
    2. 

  2.   include CanCan::Ability
    3. 

  3. 

  4.   def initialize(user)
    5. 

  5.     # Define abilities for the passed in user here. For example:
    6. 

  6.     #
    7. 

  7.     #   user ||= User.new # guest user (not logged in)
    8. 

  8.     #   if user.admin?
    9. 

  9.     #     can :manage, :all
    10. 

  10.     #   else
    11. 

  11.     #     can :read, :all
    12. 

  12.     #   end
    13. 

  13.     if user
    14. 

  14.       can :dashboard # allow access to dashboard
    15. 

  15.       can :access, :rails_admin # only allow admin users to access Rails Admin
    16. 

  16.       cannot :history, :all
    17. 

  17.       cannot :import, :all
    18. 

  18.       cannot :export, :all
    19. 

  19.       cannot :destroy, :all
    20. 

  20.       if user.email == AdminUser::SUPER_ADMIN
    21. 

  21.         can :manage, :all
    22. 

  22.         # can :export, :all
    23. 

  23.         # can :read, :all
    24. 

  24.         # can :destroy, :all
    25. 

  25.         # can :create, :all
    26. 

  26.         # can :update, :all
    27. 

  27.       else
    28. 

  28.         user.permissions.each do |permission|
    29. 

  29.            eval "can :#{permission.can}, #{permission.model}"
    30. 

  30.         end 
    31. 

  31.                      
    32. 

  32.         can :update, AdminUser, :id => user.id
    33. 

  33.         can :read, AdminUser, :id => user.id
    34. 

  34.         cannot :history, :all
    35. 

  35.         # cannot :destroy, ChannelQrcode        
    36. 

  36.         # cannot :refund_at_once, Project
    37. 

  37.         # cannot :destroy, ["ProductAttr", "ProductAttrKey", "ProductAttrValue"]
    38. 

  38.         # cannot :delete, ["ProductAttr", "ProductAttrKey", "ProductAttrValue"]
    39. 

  39.         # cannot :export, ["ProductAttr", "ProductAttrKey", "ProductAttrValue"]
    40. 

  40.       end
    41. 

  41.       #cannot :destroy, DianshiOrder
    42. 

  42.       # cannot :new, DianbiOrder
    43. 

  43.       # cannot :new, VipOrder
    44. 

  44.       # cannot :new, DianshiOrder
    45. 

  45.       # cannot :update, User
    46. 

  46.       # cannot :generate_analyze_report_record, AnalyzeReport
    47. 

  47.       # can :generate_analyze_report_record, AnalyzeReport, :remark => "当前汇总"
    48. 

  48.     end
    49. 

  49.     #
    50. 

  50.     # The first argument to `can` is the action you are giving the user
    51. 

  51.     # permission to do.
    52. 

  52.     # If you pass :manage it will apply to every action. Other common actions
    53. 

  53.     # here are :read, :create, :update and :destroy.
    54. 

  54.     #
    55. 

  55.     # The second argument is the resource the user can perform the action on.
    56. 

  56.     # If you pass :all it will apply to every resource. Otherwise pass a Ruby
    57. 

  57.     # class of the resource.
    58. 

  58.     #
    59. 

  59.     # The third argument is an optional hash of conditions to further filter the
    60. 

  60.     # objects.
    61. 

  61.     # For example, here the user can only update published articles.
    62. 

  62.     #
    63. 

  63.     #   can :update, Article, :published => true
    64. 

  64.     #
    65. 

  65.     # See the wiki for details:
    66. 

  66.     # https://github.com/CanCanCommunity/cancancan/wiki/Defining-Abilities
    67. 

  67.   end
    68. 

  68. end
    69. 

  69.