debian-mirror-gitlab/app/policies/note_policy.rb

# frozen_string_literal: true

class NotePolicy < BasePolicy
  delegate { @subject.project }
  delegate { @subject.noteable if DeclarativePolicy.has_policy?(@subject.noteable) }

  condition(:is_author) { @user && @subject.author == @user }
  condition(:is_noteable_author) { @user && @subject.noteable.author_id == @user.id }

  condition(:editable, scope: :subject) { @subject.editable? }

  condition(:can_read_noteable) { can?(:"read_#{@subject.noteable_ability_name}") }

  condition(:is_visible) { @subject.visible_for?(@user) }

  rule { ~editable }.prevent :admin_note

  # If user can't read the issue/MR/etc then they should not be allowed to do anything to their own notes
  rule { ~can_read_noteable }.policy do
    prevent :read_note
    prevent :admin_note
    prevent :resolve_note
    prevent :award_emoji
  end

  rule { is_author }.policy do
    enable :read_note
    enable :admin_note
    enable :resolve_note
  end

  rule { ~is_visible }.policy do
    prevent :read_note
    prevent :admin_note
    prevent :resolve_note
    prevent :award_emoji
  end

  rule { is_noteable_author }.policy do
    enable :resolve_note
  end
end
New upstream version 11.2.8+dfsg 2018-11-18 11:00:15 +05:30			`# frozen_string_literal: true`

New upstream version 8.12.1+dfsg1 2016-09-29 09:46:39 +05:30			`class NotePolicy < BasePolicy`
New upstream version 9.5.4+dfsg 2017-09-10 17:25:29 +05:30			`delegate { @subject.project }`
New upstream version 10.7.3+dfsg 2018-05-09 12:01:36 +05:30			`delegate { @subject.noteable if DeclarativePolicy.has_policy?(@subject.noteable) }`
New upstream version 8.12.1+dfsg1 2016-09-29 09:46:39 +05:30
New upstream version 9.5.4+dfsg 2017-09-10 17:25:29 +05:30			`condition(:is_author) { @user && @subject.author == @user }`
			`condition(:is_noteable_author) { @user && @subject.noteable.author_id == @user.id }`
New upstream version 8.12.1+dfsg1 2016-09-29 09:46:39 +05:30
New upstream version 9.5.4+dfsg 2017-09-10 17:25:29 +05:30			`condition(:editable, scope: :subject) { @subject.editable? }`
New upstream version 8.12.1+dfsg1 2016-09-29 09:46:39 +05:30
New upstream version 12.2.9 2019-10-31 01:37:42 +05:30			`condition(:can_read_noteable) { can?(:"read_#{@subject.noteable_ability_name}") }`
New upstream version 11.3.11+dfsg 2018-11-29 20:51:05 +05:30
New upstream version 12.1.12 2019-09-30 23:59:55 +05:30			`condition(:is_visible) { @subject.visible_for?(@user) }`

New upstream version 10.7.3+dfsg 2018-05-09 12:01:36 +05:30			`rule { ~editable }.prevent :admin_note`
New upstream version 9.5.4+dfsg 2017-09-10 17:25:29 +05:30
New upstream version 11.3.11+dfsg 2018-11-29 20:51:05 +05:30			`# If user can't read the issue/MR/etc then they should not be allowed to do anything to their own notes`
			`rule { ~can_read_noteable }.policy do`
			`prevent :read_note`
			`prevent :admin_note`
			`prevent :resolve_note`
New upstream version 11.5.10+dfsg 2019-02-02 18:00:53 +05:30			`prevent :award_emoji`
New upstream version 11.3.11+dfsg 2018-11-29 20:51:05 +05:30			`end`

New upstream version 9.5.4+dfsg 2017-09-10 17:25:29 +05:30			`rule { is_author }.policy do`
			`enable :read_note`
			`enable :admin_note`
			`enable :resolve_note`
			`end`

New upstream version 12.1.12 2019-09-30 23:59:55 +05:30			`rule { ~is_visible }.policy do`
			`prevent :read_note`
			`prevent :admin_note`
			`prevent :resolve_note`
			`prevent :award_emoji`
			`end`

New upstream version 10.7.3+dfsg 2018-05-09 12:01:36 +05:30			`rule { is_noteable_author }.policy do`
New upstream version 9.5.4+dfsg 2017-09-10 17:25:29 +05:30			`enable :resolve_note`
New upstream version 8.12.1+dfsg1 2016-09-29 09:46:39 +05:30			`end`
			`end`