port UserPolicy

a340829c · http://jneen.net/ · 5019185e · a340829c · a340829c
Commit a340829c authored Aug 18, 2016 by http://jneen.net/
Hide whitespace changes
Inline Side-by-side

Showing with 11 additions and 11 deletions

app/models/ability.rb app/models/ability.rb +0 -11

app/policies/user_policy.rb app/policies/user_policy.rb +11 -0

No files found.
--- a/app/models/ability.rb
+++ b/app/models/ability.rb
@@ -73,7 +73,6 @@ class Ability

    def abilities_by_subject_class(user:, subject:)
      case subject
-      when User then user_abilities
      when ExternalIssue, Deployment, Environment then project_abilities(user, subject.project)
      else []
      end + global_abilities(user)
@@ -85,17 +84,11 @@ class Ability
        ProjectPolicy.abilities(nil, subject.project)
      elsif subject.respond_to?(:group)
        GroupPolicy.abilities(nil, subject.group)
-      elsif subject.is_a?(User)
-        anonymous_user_abilities
      else
        []
      end
    end

-    def anonymous_user_abilities
-      [:read_user] unless restricted_public_level?
-    end
-
    def global_abilities(user)
      rules = []
      rules << :create_group if user.can_create_group
@@ -136,10 +129,6 @@ class Ability
      rules
    end

-    def user_abilities
-      [:read_user]
-    end
-
    def restricted_public_level?
      current_application_settings.restricted_visibility_levels.include?(Gitlab::VisibilityLevel::PUBLIC)
    end

--- a/app/policies/user_policy.rb
+++ b/app/policies/user_policy.rb
+class UserPolicy < BasePolicy
+  include Gitlab::CurrentSettings
+
+  def rules
+    can! :read_user if @user || !restricted_public_level?
+  end
+
+  def restricted_public_level?
+    current_application_settings.restricted_visibility_levels.include?(Gitlab::VisibilityLevel::PUBLIC)
+  end
+end