Merge 5c30c34a4c into 8b56509625

2024-10-19 01:01:23 +09:00 · 2024-10-17 10:09:29 +00:00 · 2024-10-17 10:09:29 +00:00 · 31a12f4a22
commit 31a12f4a22
parent 8b56509625 5c30c34a4c
5 changed files with 40 additions and 6 deletions
--- a/app/policies/account_warning_policy.rb
+++ b/app/policies/account_warning_policy.rb
@ -6,11 +6,15 @@ class AccountWarningPolicy < ApplicationPolicy
  end

  def appeal?
-    target? && record.created_at >= Appeal::MAX_STRIKE_AGE.ago
+    target? && eligible_for_appeal?
  end

  private

+  def eligible_for_appeal?
+    record.created_at >= Appeal::MAX_STRIKE_AGE.ago
+  end
+
  def target?
    record.target_account_id == current_account&.id
  end
--- a/app/policies/admin/status_policy.rb
+++ b/app/policies/admin/status_policy.rb
@ -12,7 +12,7 @@ class Admin::StatusPolicy < ApplicationPolicy
  end

  def show?
-    role.can?(:manage_reports, :manage_users) && (record.public_visibility? || record.unlisted_visibility? || record.reported? || viewable_through_normal_policy?)
+    role.can?(:manage_reports, :manage_users) && eligible_to_show?
  end

  def destroy?
@ -29,6 +29,10 @@ class Admin::StatusPolicy < ApplicationPolicy

  private

+  def eligible_to_show?
+    record.distributable? || record.reported? || viewable_through_normal_policy?
+  end
+
  def viewable_through_normal_policy?
    StatusPolicy.new(current_account, record, @preloaded_relations).show?
  end
--- a/app/policies/backup_policy.rb
+++ b/app/policies/backup_policy.rb
@ -4,6 +4,16 @@ class BackupPolicy < ApplicationPolicy
  MIN_AGE = 6.days

  def create?
-    user_signed_in? && current_user.backups.where(created_at: MIN_AGE.ago..).count.zero?
+    user_signed_in? && eligible_for_backup?
+  end
+
+  private
+
+  def eligible_for_backup?
+    current_user
+      .backups
+      .where(created_at: MIN_AGE.ago..)
+      .count
+      .zero?
  end
 end
--- a/app/policies/poll_policy.rb
+++ b/app/policies/poll_policy.rb
@ -2,6 +2,16 @@

 class PollPolicy < ApplicationPolicy
  def vote?
-    StatusPolicy.new(current_account, record.status).show? && !current_account.blocking?(record.account) && !record.account.blocking?(current_account)
+    viewable_through_normal_policy? && accounts_not_blocking?
+  end
+
+  private
+
+  def viewable_through_normal_policy?
+    StatusPolicy.new(current_account, record.status).show?
+  end
+
+  def accounts_not_blocking?
+    !current_account.blocking?(record.account) && !record.account.blocking?(current_account)
  end
 end
--- a/app/policies/user_role_policy.rb
+++ b/app/policies/user_role_policy.rb
@ -10,10 +10,16 @@ class UserRolePolicy < ApplicationPolicy
  end

  def update?
-    role.can?(:manage_roles) && (role.overrides?(record) || role.id == record.id)
+    role.can?(:manage_roles) && (role.overrides?(record) || self_editing?)
  end

  def destroy?
-    !record.everyone? && role.can?(:manage_roles) && role.overrides?(record) && role.id != record.id
+    !record.everyone? && role.can?(:manage_roles) && role.overrides?(record) && !self_editing?
+  end
+
+  private
+
+  def self_editing?
+    role.id == record.id
  end
 end