Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Check for 'all' or 'any' permissions before specific permissions (#2694)
Shouldn't the check for `edit all posts` or `delete any post` be done first, before checking if a user can edit or delete their own posts? The original code checked if the user can edit their own posts and, if so, would return false if they were not the post auther, **even though they had the permission to edit any post**. By performing the `all`/`any` check first, these permissions still work correctly when the user also has permissions to edit or delete their own posts.
- Loading branch information