1 class User < OrvosModel
4 include CommonApiTemplate
6 has_many :api_client_authorizations
7 before_update :prevent_privilege_escalation
9 api_accessible :superuser, :extend => :common do |t|
20 "#{first_name} #{last_name}"
25 def prevent_privilege_escalation
26 if self.is_admin_changed?
27 if current_user.uuid == self.uuid
28 if self.is_admin != self.is_admin_was
29 self.is_admin = self.is_admin_was