2013-02-06 03:16:51 +08:00
|
|
|
require_dependency 'current_user'
|
|
|
|
|
|
|
|
class AdminConstraint
|
|
|
|
|
2017-07-28 09:20:09 +08:00
|
|
|
def initialize(options = {})
|
2016-03-16 21:26:07 +08:00
|
|
|
@require_master = options[:require_master]
|
|
|
|
end
|
|
|
|
|
2013-02-06 03:16:51 +08:00
|
|
|
def matches?(request)
|
2016-03-16 21:26:07 +08:00
|
|
|
return false if @require_master && RailsMultisite::ConnectionManagement.current_db != "default"
|
2018-09-04 14:17:05 +08:00
|
|
|
provider = Discourse.current_user_provider.new(request.env)
|
2018-01-26 02:56:08 +08:00
|
|
|
provider.current_user &&
|
|
|
|
provider.current_user.admin? &&
|
|
|
|
custom_admin_check(request)
|
2016-12-05 17:36:45 +08:00
|
|
|
rescue Discourse::InvalidAccess
|
|
|
|
false
|
2013-02-06 03:16:51 +08:00
|
|
|
end
|
|
|
|
|
2018-01-26 02:56:08 +08:00
|
|
|
# Extensibility point: plugins can overwrite this to add additional checks
|
|
|
|
# if they require.
|
|
|
|
def custom_admin_check(request)
|
|
|
|
true
|
|
|
|
end
|
|
|
|
|
2013-03-29 14:29:58 +08:00
|
|
|
end
|