tap/app/models/ability.rb

class Ability
  include CanCan::Ability

  def initialize(user)
    return unless user

    can :read, Barcode

    if user.admin?
      can :manage, :all
    elsif user.koelkast?
      can :manage, Order do |order|
        !order.try(:user).try(:private)
      end
      can :quickpay, User
    else
      can :read, :all
      can :manage, User, id: user.id
      can :create, Order do |order|
        order.try(:user) == user
      end
      can :destroy, Order do |order|
        order.try(:user) == user && order.deletable
      end
    end
  end
end
Add cancan, fix header, add admins 2014-12-09 19:44:58 +01:00			`class Ability`
			`include CanCan::Ability`

			`def initialize(user)`
Refactor 2015-09-14 20:26:16 +02:00			`return unless user`
Remove debt from tab and refactor some code 2015-08-31 14:33:15 +02:00
Ability 2015-10-07 15:52:05 +02:00			`can :read, Barcode`
Use barcode to create new order 2015-09-20 21:21:18 +02:00
Add cancan, fix header, add admins 2014-12-09 19:44:58 +01:00			`if user.admin?`
			`can :manage, :all`
Add koelkast to users 2015-01-06 20:18:01 +01:00			`elsif user.koelkast?`
Edit abiltiy test 2015-09-21 08:23:43 +02:00			`can :manage, Order do \|order\|`
			`!order.try(:user).try(:private)`
			`end`
place extra ability 2015-09-18 15:46:11 +02:00			`can :quickpay, User`
Refactor 2015-09-14 20:26:16 +02:00			`else`
Add cancan, fix header, add admins 2014-12-09 19:44:58 +01:00			`can :read, :all`
Remove debt from tab and refactor some code 2015-08-31 14:33:15 +02:00			`can :manage, User, id: user.id`
Refactor 2015-09-14 20:26:16 +02:00			`can :create, Order do \|order\|`
Fix authorization for orders using cancancan 2015-08-31 15:10:13 +02:00			`order.try(:user) == user`
			`end`
Fix 69 2015-10-26 18:57:59 +01:00			`can :destroy, Order do \|order\|`
			`order.try(:user) == user && order.deletable`
Refactor 2015-09-14 20:26:16 +02:00			`end`
Add cancan, fix header, add admins 2014-12-09 19:44:58 +01:00			`end`
			`end`
			`end`