graph2: Changed story tagging permissions to allow anyone to tag open stories.

graph2/queries/story.go

@@ -79,9 +79,15 @@ func (r *mutationResolver) AddStoryTag(ctx context.Context, input input.StoryTag
 		return models.Story{}, errors.New("Story not found")
 	}
 
+	if story.Open {
+		if !token.Permitted("member") {
+			return models.Story{}, errors.New("You are not permitted to edit this story")
+		}
+	} else {
 		if !token.PermittedUser(story.Author, "member", "story.edit") {
 			return models.Story{}, errors.New("You are not permitted to edit this story")
 		}
+	}
 
 	story, err = stories.AddTag(story, input.Tag)
 	if err != nil {
@@ -101,9 +107,15 @@ func (r *mutationResolver) RemoveStoryTag(ctx context.Context, input input.Story
 		return models.Story{}, errors.New("Story not found")
 	}
 
+	if story.Open {
+		if !token.Permitted("member") {
+			return models.Story{}, errors.New("You are not permitted to edit this story")
+		}
+	} else {
 		if !token.PermittedUser(story.Author, "member", "story.edit") {
 			return models.Story{}, errors.New("You are not permitted to edit this story")
 		}
+	}
 
 	story, err = stories.RemoveTag(story, input.Tag)
 	if err != nil {