add policy_scope in contacts index

4e777262 · Marcela Ribeiro de Oliveira · 6869ac12 · 4e777262 · 4e777262
Commit 4e777262 authored 7 years ago by Marcela Ribeiro de Oliveira
--- a/app/controllers/v1/contacts_controller.rb
+++ b/app/controllers/v1/contacts_controller.rb
@@ -22,13 +22,13 @@ class V1::ContactsController < ApplicationController
  before_action :authenticate_user!, except: [:create]
  before_action :set_contact, only: [:show, :update, :destroy]
-  before_action :authorize!, except: [:index, :create]
+	before_action :set_new_contact, only: :index
+  before_action :authorize!, except: [:create]
  # GET v1/contacts
  def index
-    authorize :contact, :index?
+    contacts = paginate policy_scope(Contact)
-    contacts = paginate Contact
+		render json: contacts
-    render json: contacts
  end
  # GET v1/contacts/1
@@ -78,4 +78,8 @@ class V1::ContactsController < ApplicationController
    def authorize!
      authorize @contact
    end
+		def set_new_contact
+			@contact ||= Contact.new
+		end
 end
--- a/app/policies/contact_policy.rb
+++ b/app/policies/contact_policy.rb
@@ -18,6 +18,14 @@
 # along with portalmec.  If not, see <http://www.gnu.org/licenses/>.
 class ContactPolicy < ApplicationPolicy
+  class Scope < Scope
+    def resolve
+			if user_can_edit?
+      	scope.all
+			end
+    end
+  end
  def index?
    record if user_can_edit?
  end