From 4d6a766f51ba0564eab793e554d89c7061090760 Mon Sep 17 00:00:00 2001
From: MoisesMachado <MoisesMachado@3f533792-8f58-4932-b0fe-aaf55b0a4547>
Date: Thu, 28 Feb 2008 21:40:29 +0000
Subject: [PATCH] ActionItem177: applied access control on the admin controllers and added a new migration to add new permissions to the system roles

---
 app/controllers/admin/edit_template_controller.rb      |  2 ++
 app/controllers/admin/environment_design_controller.rb |  2 ++
 app/controllers/admin/region_validators_controller.rb  |  2 +-
 db/migrate/024_new_permissions.rb                      | 21 +++++++++++++++++++++
 4 files changed, 26 insertions(+), 1 deletion(-)
 create mode 100644 db/migrate/024_new_permissions.rb

diff --git a/app/controllers/admin/edit_template_controller.rb b/app/controllers/admin/edit_template_controller.rb
index bab016b..ddd10df 100644
--- a/app/controllers/admin/edit_template_controller.rb
+++ b/app/controllers/admin/edit_template_controller.rb
@@ -1,5 +1,7 @@
 class EditTemplateController < AdminController
   
+  protect 'edit_environment_design', :environment
+  
   #FIXME
   #design_editor :holder => 'environment', :autosave => true, :block_types => :block_types
 
diff --git a/app/controllers/admin/environment_design_controller.rb b/app/controllers/admin/environment_design_controller.rb
index 3ca1864..2a7ed61 100644
--- a/app/controllers/admin/environment_design_controller.rb
+++ b/app/controllers/admin/environment_design_controller.rb
@@ -1,5 +1,7 @@
 class EnvironmentDesignController < BoxOrganizerController
   
+  protect 'edit_environment_design'
+
   def available_blocks
     @available_blocks ||= [ LoginBlock, EnvironmentStatisticsBlock, RecentDocumentsBlock, ProfileListBlock ]
   end
diff --git a/app/controllers/admin/region_validators_controller.rb b/app/controllers/admin/region_validators_controller.rb
index a95d441..f755c1f 100644
--- a/app/controllers/admin/region_validators_controller.rb
+++ b/app/controllers/admin/region_validators_controller.rb
@@ -2,7 +2,7 @@ class RegionValidatorsController < ApplicationController
 
   before_filter :load_region_and_search, :except => 'index'
 
-#  protect 'manage_environment_validators', :environment
+  protect 'manage_environment_validators', :environment
 
   def index
     @regions = Region.top_level_for(environment)
diff --git a/db/migrate/024_new_permissions.rb b/db/migrate/024_new_permissions.rb
new file mode 100644
index 0000000..159b699
--- /dev/null
+++ b/db/migrate/024_new_permissions.rb
@@ -0,0 +1,21 @@
+class NewPermissions < ActiveRecord::Migration
+  def self.up
+    admin = Role.find_by_key('profile_admin')
+    admin.permissions += ['manage_friends', 'validate_enterprise', 'peform_task']
+    admin.save
+
+    moderator = Role.find_by_key('profile_moderator')
+    moderator.permissions += ['manage_friends', 'peform_task']
+    moderator.save
+  end
+
+  def self.down
+    admin = Role.find_by_key('profile_admin')
+    admin.permissions -= ['manage_friends', 'validate_enterprise', 'peform_task']
+    admin.save
+
+    moderator = Role.find_by_key('profile_moderator')
+    moderator.permissions -= ['manage_friends', 'peform_task']
+    moderator.save
+  end
+end
--
libgit2 0.21.2