From 4a3494f5c4cb1d355daaed878922cbcab4028f27 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?S=C3=A9bastien=20Gaya?= <sebastien.gaya@gmail.com>
Date: Thu, 30 Nov 2023 10:33:10 +0100
Subject: [PATCH] prevent accessing /admin from extranet

---
 app/controllers/admin/application_controller.rb | 8 ++++++++
 1 file changed, 8 insertions(+)

diff --git a/app/controllers/admin/application_controller.rb b/app/controllers/admin/application_controller.rb
index 3c0947c60..5a98ff54f 100644
--- a/app/controllers/admin/application_controller.rb
+++ b/app/controllers/admin/application_controller.rb
@@ -1,6 +1,7 @@
 class Admin::ApplicationController < ApplicationController
   layout 'admin/layouts/application'
 
+  before_action :redirect_if_context_is_not_an_university!
   before_action :load_block_copy_cookie
 
   include Admin::Filterable
@@ -37,4 +38,11 @@ class Admin::ApplicationController < ApplicationController
     # If the block doesn't exist anymore
   end
 
+  private
+
+  def redirect_if_context_is_not_an_university!
+    # Currently (Nov 2023), context can be: an extranet, an university (admin) or none.
+    redirect_to root_path unless current_context.is_a?(University)
+  end
+
 end
-- 
GitLab