local-it/mitgliederverwaltung
2
3
Fork 0
Code Issues 67 Pull requests 6 Projects 3 Releases Packages 1 Activity Actions
mitgliederverwaltung/lib/mv/authorization
History
Moritz 14fa873640 Restrict User.update_user to admin; allow :update for email only 
- Add ActorIsAdmin policy check (admin permission set only)
- User: policy action(:update_user) forbid_unless + authorize_if ActorIsAdmin
- User: primary :update action accept [:email] for non-admin profile edit
2026-01-30 11:13:23 +01:00
..
checks Restrict User.update_user to admin; allow :update for email only 2026-01-30 11:13:23 +01:00
actor.ex Restrict Actor.ensure_loaded to Mv.Accounts.User only 2026-01-22 23:17:55 +01:00
authorization.ex docs: Update domain Public API documentation 2026-01-20 15:50:08 +01:00
permission_sets.ex Add /users/:id (own) and /members/:id/show/edit for redirect and normal_user 2026-01-30 10:22:27 +01:00
role.ex Add Role helper function and create_role_with_system_flag action 2026-01-24 19:15:05 +01:00