X-Git-Url: https://git.openstreetmap.org./rails.git/blobdiff_plain/7b057545c0b2030aad9981bd93699f9e33ad7d5f..c8e21c409c9bec446f0caa2526d5b07861bb3299:/app/abilities/ability.rb?ds=inline diff --git a/app/abilities/ability.rb b/app/abilities/ability.rb index d2864e452..d91b7a2e7 100644 --- a/app/abilities/ability.rb +++ b/app/abilities/ability.rb @@ -17,7 +17,7 @@ class Ability can [:index, :feed], Changeset can :index, ChangesetComment can [:index, :rss, :show, :comments], DiaryEntry - can [:mine], Note + can [:index], Note can [:index, :show], Redaction can [:index, :show, :data, :georss, :picture, :icon], Trace can [:terms, :login, :logout, :new, :create, :save, :confirm, :confirm_resend, :confirm_email, :lost_password, :reset_password, :show, :auth_success, :auth_failure], User @@ -36,14 +36,16 @@ class Ability if Settings.status != "database_offline" can [:index, :new, :create, :show, :edit, :update, :destroy], ClientApplication - can [:create, :edit, :comment, :subscribe, :unsubscribe], DiaryEntry + can [:new, :create, :edit, :update, :comment, :subscribe, :unsubscribe], DiaryEntry + can [:make_friend, :remove_friend], Friendship can [:new, :create, :reply, :show, :inbox, :outbox, :mark, :destroy], Message can [:close, :reopen], Note can [:new, :create], Report - can [:mine, :new, :create, :edit, :update, :delete], Trace - can [:account, :go_public, :make_friend, :remove_friend], User + can [:mine, :new, :create, :edit, :update, :destroy], Trace + can [:account, :go_public], User if user.moderator? + can [:hide, :hidecomment], DiaryEntry can [:index, :show, :resolve, :ignore, :reopen], Issue can :create, IssueComment can [:new, :create, :edit, :update, :destroy], Redaction @@ -51,10 +53,10 @@ class Ability end if user.administrator? - can [:hide, :hidecomment], [DiaryEntry, DiaryComment] + can [:hide, :unhide, :hidecomment, :unhidecomment], DiaryEntry can [:index, :show, :resolve, :ignore, :reopen], Issue can :create, IssueComment - can [:set_status, :delete, :index], User + can [:set_status, :destroy, :index], User can [:grant, :revoke], UserRole end end