fix: incorrect policy code generated when the rule only contains a single field reference (#511)

Author: ymc9

packages/schema/src/plugins/access-policy/policy-guard-generator.ts

@@ -360,7 +360,7 @@ export default class PolicyGenerator {
         }
 
         const hasFieldAccess = [...denies, ...allows].some((rule) =>
-            streamAllContents(rule).some(
+            [rule, ...streamAllContents(rule)].some(
                 (child) =>
                     // this.???
                     isThisExpr(child) ||

tests/integration/test-run/package-lock.json

@@ -164,4 +164,31 @@ describe('GitHub issues regression', () => {
         const r = await db.user.findFirst({ select: { _count: { select: { posts: true } } } });
         expect(r).toMatchObject({ _count: { posts: 2 } });
     });
+
+    it('issue 509', async () => {
+        await loadSchema(
+            `
+            model User {
+                id Int @id @default(autoincrement())
+                email String @unique
+                name String?
+                posts Post[]
+            }
+              
+            model Post {
+                id Int @id @default(autoincrement())
+                title String
+                content String?
+                published Boolean @default(false)
+                author User? @relation(fields: [authorId], references: [id])
+                authorId Int?
+              
+                deleted Boolean @default(false) @omit
+              
+                @@allow('all', true)
+                @@deny('read', deleted)
+            }
+            `
+        );
+    });
 });