restric access to user emails

Author: Knerio

app/graphql/types/user_type.rb

@@ -9,7 +9,7 @@ class UserType < Types::BaseObject
     field :avatar_path, String, null: true, description: 'The avatar if present of the user'
 
     field :admin, Boolean, null: false, description: 'Global admin status of the user'
-    field :email, String, null: false, description: 'Email of the user'
+    field :email, String, null: false, description: 'Email of the user', authorize: :read_email
     field :email_verified_at, Types::TimeType, null: true, description: 'Email verification date of the user if present'
     field :firstname, String, null: true, description: 'Firstname of the user'
     field :lastname, String, null: true, description: 'Lastname of the user'

app/policies/user_policy.rb

@@ -10,6 +10,7 @@ class UserPolicy < BasePolicy
     enable :update_user
     enable :read_user_identity
     enable :update_attachment_avatar
+    enable :read_email
   end
 
   rule { user_is_self }.policy do
@@ -19,5 +20,6 @@ class UserPolicy < BasePolicy
     enable :update_attachment_avatar
     enable :verify_email
     enable :send_verification_email
+    enable :read_email
   end
 end