Refactor settings controllers (#14767)

- Disallow suspended accounts from revoking sessions and apps - Allow suspended accounts to access exports
author: Eugen Rochko <eugen@zeonfederated.com> 2020-09-11 20:56:35 +0200
committer: GitHub <noreply@github.com> 2020-09-11 20:56:35 +0200
commit: 4e4b3a0c8e69a724e229f028896ce774ef26df3b (patch)
tree: d5e7e22746d286998972b138dafa260a2482e532 /app/controllers/oauth
parent: e6b272e5c9c227cfbbe375a893f567c5967d669c (diff)
1 files changed, 5 insertions, 0 deletions
diff --git a/app/controllers/oauth/authorized_applications_controller.rb b/app/controllers/oauth/authorized_applications_controller.rb
index fb8389034..45151cdd7 100644
--- a/app/controllers/oauth/authorized_applications_controller.rb
+++ b/app/controllers/oauth/authorized_applications_controller.rb
@@ -5,6 +5,7 @@ class Oauth::AuthorizedApplicationsController < Doorkeeper::AuthorizedApplicatio
 
   before_action :store_current_location
   before_action :authenticate_resource_owner!
+  before_action :require_not_suspended!, only: :destroy
   before_action :set_body_classes
 
   skip_before_action :require_functional!
@@ -25,4 +26,8 @@ class Oauth::AuthorizedApplicationsController < Doorkeeper::AuthorizedApplicatio
   def store_current_location
     store_location_for(:user, request.url)
   end
+
+  def require_not_suspended!
+    forbidden if current_account.suspended?
+  end
 end
author	Eugen Rochko <eugen@zeonfederated.com>	2020-09-11 20:56:35 +0200
committer	GitHub <noreply@github.com>	2020-09-11 20:56:35 +0200
commit	4e4b3a0c8e69a724e229f028896ce774ef26df3b (patch)
tree	d5e7e22746d286998972b138dafa260a2482e532 /app/controllers/oauth
parent	e6b272e5c9c227cfbbe375a893f567c5967d669c (diff)