Introduce privileged scopes that only an administrator can enable

[rails.git] / lib / oauth.rb

diff --git a/lib/oauth.rb b/lib/oauth.rb
index 8f45a3b4b3b438fa6eeffd4df4459f994a91dbdf..6980447f914d27338e5b09b6a36a775ae9357e42 100644 (file)
--- a/lib/oauth.rb
+++ b/lib/oauth.rb
@@ -1,5 +1,6 @@
 module Oauth
   SCOPES = %w[read_prefs write_prefs write_diary write_api read_gpx write_gpx write_notes].freeze
+  PRIVILEGED_SCOPES = %w[].freeze
 
   class Scope
     attr_reader :name
@@ -13,7 +14,9 @@ module Oauth
     end
   end
 
-  def self.scopes
-    SCOPES.collect { |s| Scope.new(s) }
+  def self.scopes(privileged: false)
+    scopes = SCOPES
+    scopes += PRIVILEGED_SCOPES if privileged
+    scopes.collect { |s| Scope.new(s) }
   end
 end