debian-mirror-gitlab/app/policies/project_member_policy.rb

class ProjectMemberPolicy < BasePolicy
  def rules
    # anonymous users have no abilities here
    return unless @user

    target_user = @subject.user
    project = @subject.project

    return if target_user == project.owner

    can_manage = Ability.allowed?(@user, :admin_project_member, project)

    if can_manage
      can! :update_project_member
      can! :destroy_project_member
    end

    if @user == target_user
      can! :destroy_project_member
    end
  end
end
New upstream version 8.12.1+dfsg1 2016-09-29 09:46:39 +05:30			`class ProjectMemberPolicy < BasePolicy`
			`def rules`
			`# anonymous users have no abilities here`
			`return unless @user`

			`target_user = @subject.user`
			`project = @subject.project`

			`return if target_user == project.owner`

			`can_manage = Ability.allowed?(@user, :admin_project_member, project)`

			`if can_manage`
			`can! :update_project_member`
			`can! :destroy_project_member`
			`end`

			`if @user == target_user`
			`can! :destroy_project_member`
			`end`
			`end`
			`end`