mirror of
https://github.com/TryGhost/Ghost.git
synced 2024-12-22 18:31:57 +03:00
43 lines
1.3 KiB
JavaScript
43 lines
1.3 KiB
JavaScript
import AuthenticatedRoute from 'ghost-admin/routes/authenticated';
|
|
import {pluralize} from 'ember-inflector';
|
|
|
|
export default class Analytics extends AuthenticatedRoute {
|
|
model(params) {
|
|
// eslint-disable-next-line camelcase
|
|
let {post_id} = params;
|
|
|
|
let query = {
|
|
// eslint-disable-next-line camelcase
|
|
id: post_id
|
|
};
|
|
|
|
return this.store.query('post', query)
|
|
.then(records => records.get('firstObject'));
|
|
}
|
|
|
|
// the API will return a post even if the logged in user doesn't have
|
|
// permission to edit it (all posts are public) so we need to do our
|
|
// own permissions check and redirect if necessary
|
|
afterModel(post) {
|
|
super.afterModel(...arguments);
|
|
|
|
const user = this.session.user;
|
|
const returnRoute = pluralize(post.constructor.modelName);
|
|
|
|
if (user.isAuthorOrContributor && !post.isAuthoredByUser(user)) {
|
|
return this.replaceWith(returnRoute);
|
|
}
|
|
|
|
// If the post is not a draft and user is contributor, redirect to index
|
|
if (user.isContributor && !post.isDraft) {
|
|
return this.replaceWith(returnRoute);
|
|
}
|
|
}
|
|
|
|
serialize(model) {
|
|
return {
|
|
post_id: model.id
|
|
};
|
|
}
|
|
}
|