SuperAdmin permission check (#4179)

* SuperAdmin permission checker * spelling

SuperAdmin permission check (#4179)
c29a524e · Hadi Cheaito · GitHub · 6eb4700b · c29a524e · c29a524e
Unverified Commit c29a524e authored Nov 25, 2022 by Hadi Cheaito Committed by GitHub Nov 25, 2022
--- a/.rubocop.yml
+++ b/.rubocop.yml
@@ -76,7 +76,7 @@ RSpec/AnyInstance:
  Enabled: false
 Metrics/CyclomaticComplexity:
-  Max: 13
+  Max: 14
 Metrics/PerceivedComplexity:
  Max: 13

--- a/app/services/permissions_checker.rb
+++ b/app/services/permissions_checker.rb
@@ -10,6 +10,8 @@ class PermissionsChecker
  end
  def call
+    return true if @current_user.role == Role.find_by(name: 'SuperAdmin', provider: 'bn')
    return true if RolePermission.joins(:permission).exists?(
      role_id: @current_user.role_id,
      permission: { name: @permission_names },

--- a/spec/services/permissions_checker_spec.rb
+++ b/spec/services/permissions_checker_spec.rb
@@ -66,6 +66,18 @@ describe PermissionsChecker, type: :service do
          record_id: ''
        ).call).to be(true)
      end
+      it 'checks the users role and returns true since user has SuperAdmin role' do
+        super_admin_role = create(:role, name: 'SuperAdmin', provider: 'bn')
+        super_admin_user = create(:user, provider: 'bn', role: super_admin_role)
+        expect(described_class.new(
+          current_user: super_admin_user,
+          permission_names: [],
+          user_id: super_admin_user.id,
+          friendly_id: '',
+          record_id: ''
+        ).call).to be(true)
+      end
    end
  end
 end