Remove confidential access checks if user has group access

We simplify the query generated if the user can see all confidential issues in a project context. This change applies the same simplification to group issue lists.

Remove confidential access checks if user has group access
We simplify the query generated if the user can see all confidential issues in a project context. This change applies the same simplification to group issue lists.
803671cc · Sean McGivern · b480d712 · 803671cc
Commit 803671cc authored Sep 05, 2018 by Sean McGivern
Hide whitespace changes
Inline Side-by-side

Showing with 7 additions and 3 deletions

app/finders/issues_finder.rb app/finders/issues_finder.rb +7 -3

No files found.
--- a/app/finders/issues_finder.rb
+++ b/app/finders/issues_finder.rb
@@ -120,9 +120,13 @@ class IssuesFinder < IssuableFinder
    return @user_can_see_all_confidential_issues = true if current_user.full_private_access?

    @user_can_see_all_confidential_issues =
-      project? &&
-      project &&
-      project.team.max_member_access(current_user.id) >= CONFIDENTIAL_ACCESS_LEVEL
+      if project? && project
+        project.team.max_member_access(current_user.id) >= CONFIDENTIAL_ACCESS_LEVEL
+      elsif group
+        group.max_member_access_for_user(current_user) >= CONFIDENTIAL_ACCESS_LEVEL
+      else
+        false
+      end
  end

  def user_cannot_see_confidential_issues?