htwkmooc/codeocean
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
master
codeocean/app/policies/proxy_exercise_policy.rb
Sebastian Serth 02c65af034 Update scope query for new teacher definition
2022-09-22 19:24:26 +02:00

35 lines
1.1 KiB
Ruby
Raw Permalink Blame History

# frozen_string_literal: true
class ProxyExercisePolicy < AdminOrAuthorPolicy
def batch_update?
admin?
end
def show?
admin? || teacher_in_study_group? || (teacher? && @record.public?) || author?
end
%i[clone? destroy? edit? update?].each do |action|
define_method(action) { admin? || author? }
end
class Scope < Scope
def resolve
if @user.admin?
@scope.all
elsif @user.teacher?
@scope.distinct
.joins('LEFT OUTER JOIN study_group_memberships ON proxy_exercises.user_type = study_group_memberships.user_type AND proxy_exercises.user_id = study_group_memberships.user_id')
# The proxy_exercise's author is a teacher in the study group
.where(study_group_memberships: {role: StudyGroupMembership.roles[:teacher]})
# The current user is a teacher in the *same* study group
.where(study_group_memberships: {study_group_id: @user.study_group_memberships.where(role: :teacher).select(:study_group_id)})
.or(@scope.distinct.where(user: @user))
.or(@scope.distinct.where(public: true))
else
@scope.none
end
end
end
end
Reference in New Issue View Git Blame Copy Permalink