bterkuile/mozo-backend
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
c1858455e9d11e2bfdcb0389bc71213ced813e16
mozo-backend/app/controllers/suppliers/application_controller.rb
T
bterkuile c1858455e9 End of day commit
2015-02-18 22:36:47 +01:00

41 lines
1.3 KiB
Ruby
Raw Blame History

module Suppliers
class ApplicationController < ::ApplicationController
before_action :setup_employee_and_supplier!
load_and_authorize_resource
attr_reader :current_supplier, :employee_settings
helper_method :current_supplier, :employee_settings
layout 'supplier/app'
rescue_from 'RestClient::Conflict' do |e|
#binding.pry
end
rescue_from CanCan::AccessDenied do |exception|
render json: {}, status: :forbidden
end
def setup_employee_and_supplier!
authenticate_employee!
find_current_supplier!
return unless current_supplier.present?
@employee_settings = current_supplier.employee_settings.for_employee( current_employee )
@current_ability = ::Ability.new(@employee_settings)
end
def find_current_supplier!
return current_supplier if current_supplier.present?
if session[:supplier_id]
supplier = Supplier.find(session[:supplier_id])
if supplier.employee_ids.include?(current_employee.id)
@current_supplier = supplier
else
render nothing: true, status: :unauthorized
end
else
@current_supplier = current_employee.suppliers.first
session[:supplier_id] = @current_supplier.try(:id)
end
end
end
end
Reference in New Issue View Git Blame Copy Permalink