Use CanCanCan for swf controller

author Andy Allan <git@gravitystorm.co.uk>

Wed, 9 Jan 2019 09:32:57 +0000 (10:32 +0100)

committer Andy Allan <git@gravitystorm.co.uk>

Wed, 9 Jan 2019 09:32:57 +0000 (10:32 +0100)
author Andy Allan <git@gravitystorm.co.uk>
Wed, 9 Jan 2019 09:32:57 +0000 (10:32 +0100)
committer Andy Allan <git@gravitystorm.co.uk>
Wed, 9 Jan 2019 09:32:57 +0000 (10:32 +0100)
diff --git a/app/abilities/ability.rb b/app/abilities/ability.rb

index fa0e30f03b38ac1c7681deb87c67538d2502ae15..c182af6056a0eb80e3994745c1697529613702a3 100644 (file)
--- a/app/abilities/ability.rb
+++ b/app/abilities/ability.rb
@@ -15,6 +15,7 @@ class Ability
      can [:index, :create, :comment, :feed, :show, :search, :mine], Note
      can [:index, :show], Redaction
      can [:search_all, :search_nodes, :search_ways, :search_relations], :search
+    can [:trackpoints], :swf
      can [:terms, :api_users, :login, :logout, :new, :create, :save, :confirm, :confirm_resend, :confirm_email, :lost_password, :reset_password, :show, :api_read, :auth_success, :auth_failure], User
      can [:index, :show, :blocks_on, :blocks_by], UserBlock
  
diff --git a/app/controllers/swf_controller.rb b/app/controllers/swf_controller.rb

index 96237f029c3eaa075d2137eec7b47bb16142131f..1a424c387b693611db04c5bf69e8e465d86b5209 100644 (file)
--- a/app/controllers/swf_controller.rb
+++ b/app/controllers/swf_controller.rb
@@ -1,6 +1,7 @@
  class SwfController < ApplicationController
    skip_before_action :verify_authenticity_token
    before_action :check_api_readable
+  authorize_resource :class => false
  
    # to log:
    # RAILS_DEFAULT_LOGGER.error("Args: #{args[0]}, #{args[1]}, #{args[2]}, #{args[3]}")
author	Andy Allan <git@gravitystorm.co.uk>
	Wed, 9 Jan 2019 09:32:57 +0000 (10:32 +0100)
committer	Andy Allan <git@gravitystorm.co.uk>
	Wed, 9 Jan 2019 09:32:57 +0000 (10:32 +0100)
app/abilities/ability.rb		patch \| blob \| history
app/controllers/swf_controller.rb		patch \| blob \| history