app/policies/locomotive/account_policy.rb from locomotivecms/engine

app/policies/locomotive/account_policy.rb

Summary

Maintainability

0 mins

Test Coverage

Issues
Source
Stats

Issues

module Locomotive
  class AccountPolicy < ApplicationPolicy

    def index?
      super_admin?
    end

    def show?
      super_admin? || owner?
    end

    def create?
      # everybody can create an account
      true
    end

    def update?
      (super_admin? || owner?) && !@resource.visitor?
    end

    def destroy?
      # can not delete himself/herself
      super_admin? && !owner?
    end

    private

    def owner?
      @resource._id == membership.account_id
    end

  end
end