# frozen_string_literal: true #mixin for all guardian methods dealing with category permissions module CategoryGuardian # Creating Method def can_create_category?(parent = nil) is_admin? || ( SiteSetting.moderators_manage_categories_and_groups && is_moderator? ) end # Editing Method def can_edit_category?(category) is_admin? || ( SiteSetting.moderators_manage_categories_and_groups && is_moderator? && can_see_category?(category) ) end def can_edit_serialized_category?(category_id:, read_restricted:) is_admin? || ( SiteSetting.moderators_manage_categories_and_groups && is_moderator? && can_see_serialized_category?(category_id: category_id, read_restricted: read_restricted) ) end def can_delete_category?(category) can_edit_category?(category) && category.topic_count <= 0 && !category.uncategorized? && !category.has_children? end def can_see_serialized_category?(category_id:, read_restricted: true) # Guard to ensure only a boolean is passed in read_restricted = true unless !!read_restricted == read_restricted return true if !read_restricted secure_category_ids.include?(category_id) end def can_see_category?(category) return false unless category return true if is_admin? return true if !category.read_restricted return true if is_staged? && category.email_in.present? && category.email_in_allow_strangers secure_category_ids.include?(category.id) end def can_edit_category_description?(category) can_perform_action_available_to_group_moderators?(category.topic) end def secure_category_ids @secure_category_ids ||= @user.secure_category_ids end # all allowed category ids def allowed_category_ids @allowed_category_ids ||= begin unrestricted = Category.where(read_restricted: false).pluck(:id) unrestricted.concat(secure_category_ids) end end def topic_create_allowed_category_ids @topic_create_allowed_category_ids ||= @user.topic_create_allowed_category_ids end def topic_featured_link_allowed_category_ids @topic_featured_link_allowed_category_ids = Category.where(topic_featured_link_allowed: true).pluck(:id) end end