kotovalexarian-likes-github/varvet--pundit
1
0
Fork 0
mirror of https://github.com/varvet/pundit.git synced 2022-11-09 12:30:11 -05:00
Code Releases Activity

Merge pull request #583 from brendanthomas1/return-safer-not-authorized-message

Browse source 
return a safer default NotAuthorizedError message
This commit is contained in:
Linus Marton 2019-04-17 10:53:33 +02:00 committed by GitHub
commit bd188470f9
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
2 changed files with 2 additions and 2 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
lib/pundit.rb
View file

@ -30,7 +30,7 @@ module Pundit
@record = options[:record]
@policy = options[:policy]
message = options.fetch(:message) { "not allowed to #{query} this #{record.inspect}" }
message = options.fetch(:message) { "not allowed to #{query} this #{record.class}" }
end
super(message)

2
spec/pundit_spec.rb
View file

@ -36,7 +36,7 @@ describe Pundit do
# rubocop:disable Style/MultilineBlockChain
expect do
Pundit.authorize(user, post, :destroy?)
end.to raise_error(Pundit::NotAuthorizedError, "not allowed to destroy? this #<Post>") do |error|
end.to raise_error(Pundit::NotAuthorizedError, "not allowed to destroy? this Post") do |error|
expect(error.query).to eq :destroy?
expect(error.record).to eq post
expect(error.policy).to eq Pundit.policy(user, post)