app/queries/concerns/authorize_view_submissions.rb
module AuthorizeViewSubmissions
include ActiveSupport::Concern
def authorized?
return false if course&.school != current_school
return true if current_school_admin.present?
return false if current_user&.faculty.blank?
current_user.faculty.courses.exists?(id: course)
end
end