System-End/hackatime
1
0
Fork 0
mirror of https://github.com/System-End/hackatime.git synced 2026-04-19 23:32:53 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions
hackatime/app/controllers/admin/admin_users_controller.rb
Echo ae7d9c73fb
admin perms check (#760)
2026-01-03 08:34:57 -05:00

45 lines
1.3 KiB
Ruby
Raw Blame History

class Admin::AdminUsersController < Admin::BaseController
before_action :require_superadmin!
def index
@superadmins = User.where(admin_level: :superadmin).order(:slack_username)
@admins = User.where(admin_level: :admin).order(:slack_username)
@viewers = User.where(admin_level: :viewer).order(:slack_username)
end
def update
@user = User.find(params[:id])
new_level = params[:admin_level]
if @user == current_user
redirect_to admin_admin_users_path, alert: "you cannot change your own admin level"
return
end
if @user.set_admin_level(new_level)
redirect_to admin_admin_users_path, notice: "#{@user.display_name}'s admin level updated to #{new_level}."
else
redirect_to admin_admin_users_path, alert: "failed to update admin level."
end
end
def search
query = params[:q].to_s.strip
@users = if query.present?
User.where("slack_username ILIKE :q OR username ILIKE :q OR slack_uid ILIKE :q", q: "%#{query}%")
.limit(20)
else
User.none
end
render partial: "search_results", locals: { users: @users }
end
private
def require_superadmin!
unless current_user&.admin_level_superadmin?
redirect_to root_path, alert: "no perms lmaoo"
end
end
end
Reference in a new issue View git blame Copy permalink