feat: Improved password security policy (#2345)

Co-authored-by: Pranav Raj S <pranav@chatwoot.com>
2021-06-07 17:26:08 +05:30
parent d1b3c7b0c2
commit 467b45b427
36 changed files with 284 additions and 151 deletions
--- a/app/controllers/concerns/access_token_auth_helper.rb
+++ b/app/controllers/concerns/access_token_auth_helper.rb
@@ -17,13 +17,8 @@ module AccessTokenAuthHelper
    Current.user = @resource if current_user.is_a?(User)
  end

-  def super_admin?
-    @resource.present? && @resource.is_a?(SuperAdmin)
-  end
-
  def validate_bot_access_token!
    return if Current.user.is_a?(User)
-    return if super_admin?
    return if agent_bot_accessible?

    render_unauthorized('Access to this endpoint is not authorized for bots')