[openstreetmap/openstreetmap-website] Enforce cancancan on all actions (#2117)
Andy Allan
notifications at github.com
Wed Jan 16 11:13:38 UTC 2019
This PR enforces the use of cancancan authorization checks on all actions, and cleans up some no-longer-required authorization methods.
https://github.com/CanCanCommunity/cancancan/wiki/Ensure-Authorization
You can view, comment on, or merge this pull request online at:
https://github.com/openstreetmap/openstreetmap-website/pull/2117
-- Commit Summary --
* Skip authorization checks for the errors controller
* Ensure authorization checks happen for all controller methods
* Remove old authorization helpers
-- File Changes --
M app/controllers/application_controller.rb (60)
M app/controllers/errors_controller.rb (2)
-- Patch Links --
https://github.com/openstreetmap/openstreetmap-website/pull/2117.patch
https://github.com/openstreetmap/openstreetmap-website/pull/2117.diff
--
You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub:
https://github.com/openstreetmap/openstreetmap-website/pull/2117
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openstreetmap.org/pipermail/rails-dev/attachments/20190116/5c4ac5f1/attachment.html>
More information about the rails-dev
mailing list