Authorization ensure_staff uses identity.staff

for use on untenanted routes
This commit is contained in:
Mike Dalessio
2025-11-19 13:22:41 -05:00
parent 6de979daaa
commit 4636b31f06
+1 -1
View File
@@ -22,7 +22,7 @@ module Authorization
end
def ensure_staff
head :forbidden unless Current.user.staff?
head :forbidden unless Current.identity.staff?
end
def ensure_can_access_account