rubocop + allow unauthed users to see all users

app/controllers/api/v2/users_controller.rb

@@ -5,7 +5,7 @@ module Api
       def current
         @user = current_user
         authorize @user
-        return show
+        show # delegate to the normal show function
       end
 
       private

app/policies/metacode_policy.rb

@@ -1,3 +1,4 @@
+# frozen_string_literal: true
 class MetacodePolicy < ApplicationPolicy
   def index?
     true

app/policies/user_policy.rb

@@ -1,14 +1,15 @@
+# frozen_string_literal: true
 class UserPolicy < ApplicationPolicy
   def index?
-    user.present?
+    true
   end
 
   def show?
-    user.present?
+    true
   end
 
   def create?
-    fail 'Create should be handled by Devise'
+    raise 'Create should be handled by Devise'
   end
 
   def update?
@@ -34,8 +35,7 @@ class UserPolicy < ApplicationPolicy
 
   class Scope < Scope
     def resolve
-      return scope.all if user.present?
+      scope.all
-      scope.none
     end
   end
 end

app/serializers/api/v2/user_serializer.rb

@@ -8,7 +8,7 @@ module Api
                  :generation
 
       attribute :is_admin,
-        if: -> { scope[:show_is_admin] && scope[:current_user] == object }
+                if: -> { scope[:show_is_admin] && scope[:current_user] == object }
 
       def avatar
         object.image.url(:sixtyfour)