1 # frozen_string_literal: true
4 include CanCan::Ability
7 can [:relation, :relation_history, :way, :way_history, :node, :node_history,
8 :changeset, :note, :new_note, :query], :browse
9 can :search, :direction
10 can [:index, :permalink, :edit, :help, :fixthemap, :offline, :export, :about, :communities, :preview, :copyright, :key, :id], :site
11 can [:finish, :embed], :export
12 can [:search, :search_latlon, :search_ca_postcode, :search_osm_nominatim,
13 :search_geonames, :search_osm_nominatim_reverse, :search_geonames_reverse], :geocoder
14 can [:token, :request_token, :access_token, :test_request], :oauth
16 if Settings.status != "database_offline"
17 can [:index, :feed], Changeset
18 can :index, ChangesetComment
19 can [:confirm, :confirm_resend, :confirm_email], :confirmation
20 can [:index, :rss, :show, :comments], DiaryEntry
22 can [:lost_password, :reset_password], :password
23 can [:index, :show], Redaction
24 can [:new, :create, :destroy], :session
25 can [:index, :show, :data, :georss, :picture, :icon], Trace
26 can [:terms, :new, :create, :save, :suspended, :show, :auth_success, :auth_failure], User
27 can [:index, :show, :blocks_on, :blocks_by], UserBlock
28 can [:index, :show], Node
29 can [:index, :show, :full, :ways_for_node], Way
30 can [:index, :show, :full, :relations_for_node, :relations_for_way, :relations_for_relation], Relation
31 can [:history, :version], OldNode
32 can [:history, :version], OldWay
33 can [:history, :version], OldRelation
38 can [:revoke, :authorize], :oauth
39 can [:show], :deletion
41 if Settings.status != "database_offline"
42 can [:index, :new, :create, :show, :edit, :update, :destroy], ClientApplication
43 can [:index, :new, :create, :show, :edit, :update, :destroy], :oauth2_application
44 can [:index, :destroy], :oauth2_authorized_application
45 can [:new, :show, :create, :destroy], :oauth2_authorization
46 can [:edit, :update, :destroy], :account
47 can [:show], :dashboard
48 can [:new, :create, :edit, :update, :comment, :subscribe, :unsubscribe], DiaryEntry
49 can [:make_friend, :remove_friend], Friendship
50 can [:new, :create, :reply, :show, :inbox, :outbox, :mark, :destroy], Message
51 can [:close, :reopen], Note
52 can [:show, :edit, :update], :preference
53 can [:edit, :update], :profile
54 can [:new, :create], Report
55 can [:mine, :new, :create, :edit, :update, :destroy], Trace
56 can [:account, :go_public], User
59 can [:hide, :hidecomment], DiaryEntry
60 can [:index, :show, :resolve, :ignore, :reopen], Issue
61 can :create, IssueComment
62 can [:new, :create, :edit, :update, :destroy], Redaction
63 can [:new, :edit, :create, :update, :revoke], UserBlock
66 if user.administrator?
67 can [:hide, :unhide, :hidecomment, :unhidecomment], DiaryEntry
68 can [:index, :show, :resolve, :ignore, :reopen], Issue
69 can :create, IssueComment
70 can [:set_status, :destroy, :index], User
71 can [:grant, :revoke], UserRole
76 # Define abilities for the passed in user here. For example:
78 # user ||= User.new # guest user (not logged in)
85 # The first argument to `can` is the action you are giving the user
87 # If you pass :manage it will apply to every action. Other common actions
88 # here are :read, :create, :update and :destroy.
90 # The second argument is the resource the user can perform the action on.
91 # If you pass :all it will apply to every resource. Otherwise pass a Ruby
92 # class of the resource.
94 # The third argument is an optional hash of conditions to further filter the
96 # For example, here the user can only update published articles.
98 # can :update, Article, :published => true
100 # See the wiki for details:
101 # https://github.com/CanCanCommunity/cancancan/wiki/Defining-Abilities
projects / rails.git / blob