update authorize

app/controllers/crm/bookings_controller.rb

@@ -1,5 +1,5 @@
 class Crm::BookingsController < BaseCrmController
-
+	load_and_authorize_resource
 	def update_booking
         booking = Booking.find(params[:booking_id])
        

app/controllers/crm/customers_controller.rb

@@ -1,4 +1,5 @@
 class Crm::CustomersController < BaseCrmController
+  load_and_authorize_resource except: [:create]
   before_action :set_crm_customer, only: [:show, :edit, :update, :destroy]
 
   # GET /crm/customers

app/controllers/crm/dining_queues_controller.rb

@@ -1,4 +1,5 @@
 class Crm::DiningQueuesController < BaseCrmController
+  load_and_authorize_resource
   before_action :set_dining_queue, only: [:show, :edit, :update, :destroy]
 
   # GET /crm/dining_queues