Welcome to mirror list, hosted at ThFree Co, Russian Federation.

gitlab.com/gitlab-org/gitlab-foss.git - Unnamed repository; edit this file 'description' to name the repository.
summaryrefslogtreecommitdiff
path: root/app/policies/project_snippet_policy.rb
diff options
context:
space:
mode:
Diffstat (limited to 'app/policies/project_snippet_policy.rb')
-rw-r--r--app/policies/project_snippet_policy.rb9
1 files changed, 8 insertions, 1 deletions
diff --git a/app/policies/project_snippet_policy.rb b/app/policies/project_snippet_policy.rb
index e11c1a39757..214e48d8841 100644
--- a/app/policies/project_snippet_policy.rb
+++ b/app/policies/project_snippet_policy.rb
@@ -8,7 +8,7 @@ class ProjectSnippetPolicy < BasePolicy
condition(:internal_snippet, scope: :subject) { @subject.internal? }
condition(:private_snippet, scope: :subject) { @subject.private? }
condition(:public_project, scope: :subject) { @subject.project.public? }
-
+ condition(:hidden, scope: :subject) { @subject.hidden_due_to_author_ban? }
condition(:is_author) { @user && @subject.author == @user }
# We have to check both project feature visibility and a snippet visibility and take the stricter one
@@ -50,6 +50,13 @@ class ProjectSnippetPolicy < BasePolicy
enable :admin_snippet
end
+ rule { hidden & ~can?(:read_all_resources) }.policy do
+ prevent :read_snippet
+ prevent :update_snippet
+ prevent :admin_snippet
+ prevent :read_note
+ end
+
rule { ~can?(:read_snippet) }.prevent :create_note
end
generated by cgit v1.2.3 (git 2.25.1) at 2024-09-02 19:10:02 +0300