Sign upLogin

camdub/Internships

View on GitHub
Star
app/models/ability.rb

Summary

Maintainability
A
3 hrs
Test Coverage
class Ability
  include CanCan::Ability

  def initialize(user)
    puts "Current Users NetId: #{user.net_id} (Called from ability file)"
    user ||= User.new # guest user (not logged in)
    if user.has_role ['admin']
      can :manage, :all

    elsif user.has_role ['advisor']
      can :index, :pages
      can :index, :map
      can :map, :pages
      
      
      can :dashboard, :internships
      #can :index, :internships
      #can :manage, :internships
      can :manage, :academic_contacts
      can :manage, :fields
      can :manage, :financial_assistance_options
      can :manage, :financial_assistance_option_types
      can :manage, :industries
      
      can :read, :internships
      can :create, :internships
      can :update_some, :internships
      can :update, :internships do |controller|
        true
      end
      can :update, Internship do |internship|
        internship.user == user
      end
      can :manage, :locations
      can :manage, :providers
      can :manage, :provider_contacts
      
      can :create, :long_term_goals
      can :update_some, :long_term_goals
      can :update, :long_term_goals do |controller|
        true
      end
      can :update, LongTermGoal do |long_term_goal|
        puts "authorizing!"
        long_term_goal.user == user
      end
      
      can :read, :short_term_goals
      can :create, :short_term_goals
      can :update_some, :short_term_goals
      can :update, :short_term_goals do |controller|
        true
      end
      can :update, ShortTermGoal do |short_term_goal|
        short_term_goal.user == user
      end
      
      can :myguide, :pages
      can :manage, :myguide
      
      can :read, :students
      
    elsif user.has_role ['student']
      can :index, :pages
      can :index, :map
      can :map, :pages
      
      can :myguide, :pages  do |controller, my_guide_id|
        if my_guide_id.to_i == 0
          true
        else
          my_guide_id.to_i == user.id.to_i
        end
      end
      
      
      can :read, :internships
      can :read, :long_term_goals
      can :read, :short_term_goals
      
      can :make, :advisement_appointment
      
    else
      cannot :read, :all
    end
    
    can :logout, :users
    # Define abilities for the passed in user here. For example:
    #
    #   user ||= User.new # guest user (not logged in)
    #   if user.admin?
    #     can :manage, :all
    #   else
    #     can :read, :all
    #   end
    #
    # The first argument to `can` is the action you are giving the user permission to do.
    # If you pass :manage it will apply to every action. Other common actions here are
    # :read, :create, :update and :destroy.
    #
    # The second argument is the resource the user can perform the action on. If you pass
    # :all it will apply to every resource. Otherwise pass a Ruby class of the resource.
    #
    # The third argument is an optional hash of conditions to further filter the objects.
    # For example, here the user can only update published articles.
    #
    #   can :update, Article, :published => true
    #
    # See the wiki for details: https://github.com/ryanb/cancan/wiki/Defining-Abilities
  end
end