From 1633d0914485e737384595581a88e1b553fb7a91 Mon Sep 17 00:00:00 2001
From: James Mead <james.mead@digital.cabinet-office.gov.uk>
Date: Tue, 21 Nov 2023 17:05:54 +0000
Subject: [PATCH] Use User#permitted_params in
 Users::RolesController#user_params

To further simplify the method, c.f. this commit [1] where
User#permitted_params was introduced.

[1]: https://github.com/alphagov/signon/commit/09ff60d1ec86f70d584af9a286fdc718023abaee
---
 app/controllers/users/roles_controller.rb | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/app/controllers/users/roles_controller.rb b/app/controllers/users/roles_controller.rb
index df3603d01..5ad380d8a 100644
--- a/app/controllers/users/roles_controller.rb
+++ b/app/controllers/users/roles_controller.rb
@@ -29,8 +29,7 @@ def authorize_user
   end
 
   def user_params
-    permitted_user_params = current_user.role_class.permitted_user_params
-    params.require(:user).permit(*permitted_user_params.intersection([:role]))
+    params.require(:user).permit(*current_user.permitted_params.intersection([:role]))
   end
 
   def redirect_to_account_page_if_acting_on_own_user