discourse/lib/admin_constraint.rb

# frozen_string_literal: true

class AdminConstraint

  def initialize(options = {})
    @require_master = options[:require_master]
  end

  def matches?(request)
    return false if @require_master && RailsMultisite::ConnectionManagement.current_db != "default"
    provider = Discourse.current_user_provider.new(request.env)
    provider.current_user &&
      provider.current_user.admin? &&
      custom_admin_check(request)
  rescue Discourse::InvalidAccess, Discourse::ReadOnly
    false
  end

  # Extensibility point: plugins can overwrite this to add additional checks
  # if they require.
  def custom_admin_check(request)
    true
  end

end
DEV: enable frozen string literal on all files This reduces chances of errors where consumers of strings mutate inputs and reduces memory usage of the app. Test suite passes now, but there may be some stuff left, so we will run a few sites on a branch prior to merging 2019-05-02 17:17:27 -05:00			`# frozen_string_literal: true`

Initial release of Discourse 2013-02-05 13:16:51 -06:00			`class AdminConstraint`

Add rubocop to our build. (#5004) 2017-07-27 20:20:09 -05:00			`def initialize(options = {})`
FEATURE: only allow sidekiq in master site when hosted on multisite 2016-03-16 08:26:07 -05:00			`@require_master = options[:require_master]`
			`end`

Initial release of Discourse 2013-02-05 13:16:51 -06:00			`def matches?(request)`
FEATURE: only allow sidekiq in master site when hosted on multisite 2016-03-16 08:26:07 -05:00			`return false if @require_master && RailsMultisite::ConnectionManagement.current_db != "default"`
Revert "FIX: Don't rate limit admin and staff constraints when matching routes." This reverts commit 651b50b1a159258588ebd716f678035db2239b5a. 2018-09-04 01:17:05 -05:00			`provider = Discourse.current_user_provider.new(request.env)`
Add extensibility to admin constraints 2018-01-25 12:56:08 -06:00			`provider.current_user &&`
			`provider.current_user.admin? &&`
			`custom_admin_check(request)`
FIX: Don't update `User#last_seen_at` when PG is readonly take 2. 2019-01-20 23:49:08 -06:00			`rescue Discourse::InvalidAccess, Discourse::ReadOnly`
FIX: Don't raise error when admin access is invalid. 2016-12-05 03:36:45 -06:00			`false`
Initial release of Discourse 2013-02-05 13:16:51 -06:00			`end`

Add extensibility to admin constraints 2018-01-25 12:56:08 -06:00			`# Extensibility point: plugins can overwrite this to add additional checks`
			`# if they require.`
			`def custom_admin_check(request)`
			`true`
			`end`

create the User.admins and User.moderators scopes 2013-03-29 01:29:58 -05:00			`end`