2020-07-29 15:09:39 +00:00
|
|
|
# frozen_string_literal: true
|
|
|
|
|
|
|
|
class PersonalAccessTokenPolicy < BasePolicy
|
2021-08-03 21:09:39 +00:00
|
|
|
condition(:is_owner) { user && subject.user_id == user.id && !subject.impersonation }
|
2020-07-29 15:09:39 +00:00
|
|
|
|
2020-08-11 12:09:55 +00:00
|
|
|
rule { (is_owner | admin) & ~blocked }.policy do
|
2020-07-29 15:09:39 +00:00
|
|
|
enable :read_token
|
2020-08-07 15:10:17 +00:00
|
|
|
enable :revoke_token
|
2020-07-29 15:09:39 +00:00
|
|
|
end
|
|
|
|
end
|