Add moderator role and add pundit policies for admin actions (#5635)

* Add moderator role and add pundit policies for admin actions * Add rake task for turning user into mod and revoking it again * Fix handling of unauthorized exception * Deliver new report e-mails to staff, not just admins * Add promote/demote to admin UI, hide some actions conditionally * Fix unused i18n
author: Eugen Rochko <eugen@zeonfederated.com> 2017-11-11 20:23:33 +0100
committer: GitHub <noreply@github.com> 2017-11-11 20:23:33 +0100
commit: 7bb8b0b2fc0e2e42a4234fed18198cbb7439fe9f (patch)
tree: f629ef40a5e7253c3d7bf353959951c93e5aad6f /app/controllers/admin/confirmations_controller.rb
parent: 2b1190065c54f071ae384f6e05b4a087987febba (diff)
1 files changed, 6 insertions, 3 deletions
diff --git a/app/controllers/admin/confirmations_controller.rb b/app/controllers/admin/confirmations_controller.rb
index 2542e21ee..c10b0ebee 100644
--- a/app/controllers/admin/confirmations_controller.rb
+++ b/app/controllers/admin/confirmations_controller.rb
@@ -2,15 +2,18 @@
 
 module Admin
   class ConfirmationsController < BaseController
+    before_action :set_user
+
     def create
-      account_user.confirm
+      authorize @user, :confirm?
+      @user.confirm!
       redirect_to admin_accounts_path
     end
 
     private
 
-    def account_user
-      Account.find(params[:account_id]).user || raise(ActiveRecord::RecordNotFound)
+    def set_user
+      @user = Account.find(params[:account_id]).user || raise(ActiveRecord::RecordNotFound)
     end
   end
 end
author	Eugen Rochko <eugen@zeonfederated.com>	2017-11-11 20:23:33 +0100
committer	GitHub <noreply@github.com>	2017-11-11 20:23:33 +0100
commit	7bb8b0b2fc0e2e42a4234fed18198cbb7439fe9f (patch)
tree	f629ef40a5e7253c3d7bf353959951c93e5aad6f /app/controllers/admin/confirmations_controller.rb
parent	2b1190065c54f071ae384f6e05b4a087987febba (diff)