Refactor security dashboard policies

a9bb4a80 · Tetiana Chupryna · 2b6a87f6 · a9bb4a80
Commit a9bb4a80 authored Dec 05, 2019 by Tetiana Chupryna
Hide whitespace changes
Inline Side-by-side

Showing with 4 additions and 10 deletions

ee/app/policies/ee/project_policy.rb ee/app/policies/ee/project_policy.rb +4 -10

No files found.
--- a/ee/app/policies/ee/project_policy.rb
+++ b/ee/app/policies/ee/project_policy.rb
@@ -62,8 +62,8 @@ module EE
      end

      with_scope :subject
-      condition(:security_dashboard_feature_disabled) do
-        !@subject.feature_available?(:security_dashboard)
+      condition(:security_dashboard_enabled) do
+        @subject.feature_available?(:security_dashboard)
      end

      condition(:prometheus_alerts_enabled) do
@@ -159,15 +159,9 @@ module EE

      rule { can?(:read_build) & can?(:download_code) }.enable :read_security_findings

-      rule { can?(:developer_access) }.policy do
-        enable :read_project_security_dashboard
-      end
-
-      rule { security_dashboard_feature_disabled }.policy do
-        prevent :read_project_security_dashboard
-      end
+      rule { security_dashboard_enabled & can?(:developer_access) }.enable :read_project_security_dashboard

-      rule { can?(:read_project_security_dashboard) & can?(:developer_access) }.policy do
+      rule { can?(:read_project_security_dashboard) }.policy do
        enable :read_vulnerability
        enable :create_vulnerability
        enable :admin_vulnerability