Add moderator role and add pundit policies for admin actions (#5635)

* Add moderator role and add pundit policies for admin actions * Add rake task for turning user into mod and revoking it again * Fix handling of unauthorized exception * Deliver new report e-mails to staff, not just admins * Add promote/demote to admin UI, hide some actions conditionally * Fix unused i18n
author: Eugen Rochko <eugen@zeonfederated.com> 2017-11-11 20:23:33 +0100
committer: GitHub <noreply@github.com> 2017-11-11 20:23:33 +0100
commit: 7bb8b0b2fc0e2e42a4234fed18198cbb7439fe9f (patch)
tree: f629ef40a5e7253c3d7bf353959951c93e5aad6f /app/controllers/admin/resets_controller.rb
parent: 2b1190065c54f071ae384f6e05b4a087987febba (diff)
1 files changed, 5 insertions, 4 deletions
diff --git a/app/controllers/admin/resets_controller.rb b/app/controllers/admin/resets_controller.rb
index 6db648403..00b590bf6 100644
--- a/app/controllers/admin/resets_controller.rb
+++ b/app/controllers/admin/resets_controller.rb
@@ -2,17 +2,18 @@
 
 module Admin
   class ResetsController < BaseController
-    before_action :set_account
+    before_action :set_user
 
     def create
-      @account.user.send_reset_password_instructions
+      authorize @user, :reset_password?
+      @user.send_reset_password_instructions
       redirect_to admin_accounts_path
     end
 
     private
 
-    def set_account
-      @account = Account.find(params[:account_id])
+    def set_user
+      @user = Account.find(params[:account_id]).user || raise(ActiveRecord::RecordNotFound)
     end
   end
 end
author	Eugen Rochko <eugen@zeonfederated.com>	2017-11-11 20:23:33 +0100
committer	GitHub <noreply@github.com>	2017-11-11 20:23:33 +0100
commit	7bb8b0b2fc0e2e42a4234fed18198cbb7439fe9f (patch)
tree	f629ef40a5e7253c3d7bf353959951c93e5aad6f /app/controllers/admin/resets_controller.rb
parent	2b1190065c54f071ae384f6e05b4a087987febba (diff)