fix: correctly calculate user permissions for logged-in users

AstroPlant · Jan 19, 2024 · c0ba319 · c0ba319
1 parent 3e24eb7
commit c0ba319
Showing 1 changed file with 6 additions and 6 deletions.
diff --git a/astroplant-api/src/authorization/mod.rs b/astroplant-api/src/authorization/mod.rs
@@ -98,12 +98,12 @@ impl Permission for UserAction {
 
     fn permitted(self, acting_user: &Option<User>, object_user: &User) -> bool {
         use UserAction::*;
-        match acting_user {
-            Some(acting_user) => acting_user == object_user,
-            None => match self {
-                View | ListKitMemberships => true,
-                EditDetails => false,
-            },
+        match self {
+            View | ListKitMemberships => true,
+            EditDetails => acting_user
+                .as_ref()
+                .map(|acting_user| acting_user == object_user)
+                .unwrap_or(false),
         }
     }
 }