Use "null" user in policies

9 years ago · bffc76faa9
parent 2d4a0fbaa1
commit bffc76faa9
3 changed files with 1 additions and 11 deletions
--- a/app/policies/api_token_policy.rb
+++ b/app/policies/api_token_policy.rb
@ -1,8 +1,6 @@
 class ApiTokenPolicy < ApplicationPolicy

  def destroy?
-    return false unless user
-
    user.admin? || record.user == user
  end

--- a/app/policies/application_policy.rb
+++ b/app/policies/application_policy.rb
@ -3,7 +3,7 @@ class ApplicationPolicy
  attr_reader :user, :record

  def initialize(user, record)
-    @user = user
+    @user = user || User.new
    @record = record
  end

--- a/app/policies/asciicast_policy.rb
+++ b/app/policies/asciicast_policy.rb
@ -19,26 +19,18 @@ class AsciicastPolicy < ApplicationPolicy
  end

  def update?
-    return false unless user
-
    user.admin? || record.owner?(user)
  end

  def destroy?
-    return false unless user
-
    user.admin? || record.owner?(user)
  end

  def change_featured?
-    return false unless user
-
    user.admin?
  end

  def change_visibility?
-    return false unless user
-
    user.admin? || user.supporter?
  end