07d3d44775
And use .rubocop.yml to exclude paths we don't care, rather than using the cop itself to exclude.
42 lines
965 B
Ruby
42 lines
965 B
Ruby
module BoardsResponses
|
|
def authorize_read_list
|
|
authorize_action_for!(board.parent, :read_list)
|
|
end
|
|
|
|
def authorize_read_issue
|
|
authorize_action_for!(board.parent, :read_issue)
|
|
end
|
|
|
|
def authorize_update_issue
|
|
authorize_action_for!(issue, :admin_issue)
|
|
end
|
|
|
|
def authorize_create_issue
|
|
authorize_action_for!(project, :admin_issue)
|
|
end
|
|
|
|
def authorize_admin_list
|
|
authorize_action_for!(board.parent, :admin_list)
|
|
end
|
|
|
|
def authorize_action_for!(resource, ability)
|
|
return render_403 unless can?(current_user, ability, resource)
|
|
end
|
|
|
|
def respond_with_boards
|
|
respond_with(@boards) # rubocop:disable Gitlab/ModuleWithInstanceVariables
|
|
end
|
|
|
|
def respond_with_board
|
|
respond_with(@board) # rubocop:disable Gitlab/ModuleWithInstanceVariables
|
|
end
|
|
|
|
def respond_with(resource)
|
|
respond_to do |format|
|
|
format.html
|
|
format.json do
|
|
render json: serialize_as_json(resource)
|
|
end
|
|
end
|
|
end
|
|
end
|