casa icon indicating copy to clipboard operation
casa copied to clipboard
verified publisher icon rubyforgood

Limit case_assignment controller method permissions to the case assignment's organization

Open FireLemons opened this issue 3 years ago • 0 comments

What type(s) of user does this feature affect?

  • volunteers
  • supervisors
  • admins

Description A case assignment links a casa case to a volunteer user

Make sure all the methods in app/policies/case_assignment_policy.rb contain some logic to prevent casa case assignment access from users belonging to a different organization.

Fix / Update tests if needed

See app/policies/application_policy.rb for helper methods See https://github.com/varvet/pundit

QA Login Details:
Link to QA site

Login Emails:

password for all users: 12345678

Questions? Join Slack!

We highly recommend that you join us in slack https://rubyforgood.herokuapp.com/ #casa channel to ask questions quickly and hear about office hours (currently Tuesday 6-8pm Pacific), stakeholder news, and upcoming new issues.

FireLemons avatar Oct 13 '22 22:10 FireLemons