danbooru/app/policies/user_session_policy.rb at 327deb9cbb6950e785ebdcc9f3489657c6bc302a - danbooru - Industries Git

jaculabilis/danbooru

Files

evazion 7537edb211 user events: let mods only see login/logout/signup events.

Adjust permissions on user events to let Moderators only see login,
logout, and user creation events, not other types of events (password
changes, etc). Admins can see everything. These other types of events
are meant for account security purposes and aren't very relevant for
sockpuppet detection purposes.

2021-01-12 19:29:37 -06:00

6 lines

86 B

Ruby

Raw Blame History

 class UserSessionPolicy < ApplicationPolicy
   def index?
     user.is_admin?
   end
 end