Domovská stránka Prehľadávať Pomoc
Registrovať Prihlásiť sa
Fohow
/
fohow_admin
Pridať medzi pozorované 2
Hviezda 0
Fork 0
Súbory Issues 0 Pull requesty 0 Wiki
Branch: feature/wxpay_manymch
Branche Tagy
fohow_admin
/
app
/
models
/
ability.rb

ability.rb 2.4 KB
Permanentný odkaz História Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970 
  1. class Ability
    2. 

  2.   include CanCan::Ability
    3. 

  3. 

  4.   def initialize(user)
    5. 

  5.     # Define abilities for the passed in user here. For example:
    6. 

  6.     #
    7. 

  7.     #   user ||= User.new # guest user (not logged in)
    8. 

  8.     #   if user.admin?
    9. 

  9.     #     can :manage, :all
    10. 

  10.     #   else
    11. 

  11.     #     can :read, :all
    12. 

  12.     #   end
    13. 

  13.     if user
    14. 

  14.       can :dashboard # allow access to dashboard
    15. 

  15.       can :access, :rails_admin # only allow admin users to access Rails Admin
    16. 

  16.       cannot :history, :all
    17. 

  17.       cannot :import, :all
    18. 

  18.       cannot :export, :all
    19. 

  19.       cannot :destroy, :all
    20. 

  20.       if user.email == AdminUser::SUPER_ADMIN
    21. 

  21.         can :manage, :all
    22. 

  22.         can :import, :all
    23. 

  23.         # can :export, :all
    24. 

  24.         # can :read, :all
    25. 

  25.         # can :destroy, :all
    26. 

  26.         # can :create, :all
    27. 

  27.         # can :update, :all
    28. 

  28.       else
    29. 

  29.         user.permissions.each do |permission|
    30. 

  30.            eval "can :#{permission.can}, #{permission.model}"
    31. 

  31.         end 
    32. 

  32.                      
    33. 

  33.         can :update, AdminUser, :id => user.id
    34. 

  34.         can :read, AdminUser, :id => user.id
    35. 

  35.         cannot :history, :all
    36. 

  36.         # cannot :destroy, ChannelQrcode        
    37. 

  37.         # cannot :refund_at_once, Project
    38. 

  38.         # cannot :destroy, ["ProductAttr", "ProductAttrKey", "ProductAttrValue"]
    39. 

  39.         # cannot :delete, ["ProductAttr", "ProductAttrKey", "ProductAttrValue"]
    40. 

  40.         # cannot :export, ["ProductAttr", "ProductAttrKey", "ProductAttrValue"]
    41. 

  41.       end
    42. 

  42.       #cannot :destroy, DianshiOrder
    43. 

  43.       # cannot :new, DianbiOrder
    44. 

  44.       # cannot :new, VipOrder
    45. 

  45.       # cannot :new, DianshiOrder
    46. 

  46.       # cannot :update, User
    47. 

  47.       # cannot :generate_analyze_report_record, AnalyzeReport
    48. 

  48.       # can :generate_analyze_report_record, AnalyzeReport, :remark => "当前汇总"
    49. 

  49.     end
    50. 

  50.     #
    51. 

  51.     # The first argument to `can` is the action you are giving the user
    52. 

  52.     # permission to do.
    53. 

  53.     # If you pass :manage it will apply to every action. Other common actions
    54. 

  54.     # here are :read, :create, :update and :destroy.
    55. 

  55.     #
    56. 

  56.     # The second argument is the resource the user can perform the action on.
    57. 

  57.     # If you pass :all it will apply to every resource. Otherwise pass a Ruby
    58. 

  58.     # class of the resource.
    59. 

  59.     #
    60. 

  60.     # The third argument is an optional hash of conditions to further filter the
    61. 

  61.     # objects.
    62. 

  62.     # For example, here the user can only update published articles.
    63. 

  63.     #
    64. 

  64.     #   can :update, Article, :published => true
    65. 

  65.     #
    66. 

  66.     # See the wiki for details:
    67. 

  67.     # https://github.com/CanCanCommunity/cancancan/wiki/Defining-Abilities
    68. 

  68.   end
    69. 

  69. end
    70. 

  70.