synapse policy

This commit is contained in:
Devin Howard 2016-02-13 17:28:21 +08:00
parent 52facb9c1d
commit baca4aac83

View file

@ -0,0 +1,25 @@
class SynapsePolicy < ApplicationPolicy
class Scope < Scope
def resolve
scope.where('permission IN ("public", "commons") OR user_id = ?', user.id)
end
end
def create?
user.present?
end
def show?
#record.permission == 'commons' || record.permission == 'public' || record.user == user
true
end
def update?
#user.present? && (record.permission == 'commons' || record.user == user)
true
end
def destroy?
record.user == user || user.admin
end
end