2017-04-10 21:27:03 +02:00
|
|
|
# frozen_string_literal: true
|
|
|
|
|
|
|
|
module Admin
|
|
|
|
class BaseController < ApplicationController
|
2017-11-11 20:23:33 +01:00
|
|
|
include Authorization
|
2017-11-24 02:05:53 +01:00
|
|
|
include AccountableConcern
|
2017-11-11 20:23:33 +01:00
|
|
|
|
2018-10-25 00:10:01 +02:00
|
|
|
layout 'admin'
|
|
|
|
|
2023-04-19 16:07:29 +02:00
|
|
|
before_action :set_cache_headers
|
2024-12-09 23:42:45 +01:00
|
|
|
before_action :set_referrer_policy_header
|
2023-04-19 16:07:29 +02:00
|
|
|
|
2022-07-05 02:41:40 +02:00
|
|
|
after_action :verify_authorized
|
2017-04-10 21:27:03 +02:00
|
|
|
|
2018-10-25 00:10:01 +02:00
|
|
|
private
|
|
|
|
|
2023-04-19 16:07:29 +02:00
|
|
|
def set_cache_headers
|
|
|
|
response.cache_control.replace(private: true, no_store: true)
|
|
|
|
end
|
|
|
|
|
2024-12-09 23:42:45 +01:00
|
|
|
def set_referrer_policy_header
|
|
|
|
response.headers['Referrer-Policy'] = 'same-origin'
|
|
|
|
end
|
|
|
|
|
2018-12-17 11:40:51 +01:00
|
|
|
def set_user
|
|
|
|
@user = Account.find(params[:account_id]).user || raise(ActiveRecord::RecordNotFound)
|
|
|
|
end
|
2017-04-10 21:27:03 +02:00
|
|
|
end
|
|
|
|
end
|