Ensure views only link to those actions allowed for current user

app/views/file_templates/show.html.slim

@@ -3,5 +3,5 @@ h1
   = render('shared/edit_button', object: @file_template)
 
 = row(label: 'file_template.name', value: @file_template.name)
-= row(label: 'file_template.file_type', value: link_to(@file_template.file_type, file_type_path(@file_template.file_type)))
+= row(label: 'file_template.file_type', value: link_to_if(policy(@file_template.file_type).show?, @file_template.file_type, file_type_path(@file_template.file_type)))
 = row(label: 'file_template.content', value: @file_template.content)