mirror of
https://github.com/discourse/discourse.git
synced 2024-11-26 00:43:39 +08:00
f73a3f252a
duplicated logic and rely on the server response for `can_delete` status.
38 lines
912 B
Ruby
38 lines
912 B
Ruby
#mixin for all guardian methods dealing with category permisions
|
|
module CategoryGuardian
|
|
# Creating Method
|
|
def can_create_category?(parent)
|
|
is_admin?
|
|
end
|
|
|
|
# Editing Method
|
|
def can_edit_category?(category)
|
|
is_admin?
|
|
end
|
|
|
|
def can_delete_category?(category)
|
|
is_admin? &&
|
|
category.topic_count == 0 &&
|
|
!category.uncategorized? &&
|
|
!category.has_children?
|
|
end
|
|
|
|
def can_see_category?(category)
|
|
not(category.read_restricted) || secure_category_ids.include?(category.id)
|
|
end
|
|
|
|
def secure_category_ids
|
|
@secure_category_ids ||= @user.secure_category_ids
|
|
end
|
|
|
|
# all allowed category ids
|
|
def allowed_category_ids
|
|
unrestricted = Category.where(read_restricted: false).pluck(:id)
|
|
unrestricted.concat(secure_category_ids)
|
|
end
|
|
|
|
def topic_create_allowed_category_ids
|
|
@topic_create_allowed_category_ids ||= @user.topic_create_allowed_category_ids
|
|
end
|
|
end
|