Module: DomainAuthorization

Extended by:: ActiveSupport::Concern

Included in:: Api::V1::Domains::RecordsController, Api::V1::DomainsController, DomainsController, RecordsController

Defined in:: app/controllers/concerns/domain_authorization.rb

Instance Method Summary collapse

Instance Method Details

#authorize_domain ⇒ `Object`

# File 'app/controllers/concerns/domain_authorization.rb', line 8

def authorize_domain
  if !(current_domain.user_users_id == current_user.id) && !current_user.admin?
    render status: 403, plain: "403 Forbidden"
  end

  if current_domain.provisional && !current_user.admin?
    render status: 425, plain: "425 Too Early - Provisional Domain"
  end
end

#current_domain ⇒ `Object`



18
19
20

# File 'app/controllers/concerns/domain_authorization.rb', line 18

def current_domain
  Domain.find_by(host: params["host"])
end