From fa9ff0c67bb1b4f7ec31eb263ddb80a347068e6f Mon Sep 17 00:00:00 2001
From: Olivier 'reivilibre <oliverw@matrix.org>
Date: Mon, 1 Dec 2025 11:51:51 +0000
Subject: [PATCH] (delint: Is this a less messy rule?)

---
 policies/compat_login/compat_login.rego | 12 ++++++------
 1 file changed, 6 insertions(+), 6 deletions(-)

diff --git a/policies/compat_login/compat_login.rego b/policies/compat_login/compat_login.rego
index c856aaf05..4f76842cd 100644
--- a/policies/compat_login/compat_login.rego
+++ b/policies/compat_login/compat_login.rego
@@ -14,12 +14,6 @@ import data.common
 
 default allow := false
 
-is_interactive if {
-	# Only `m.login.sso` (the interactive web form) is interactive;
-	# `m.login.password` and `m.login.token` (including the finalisation of an SSO login) are not
-	input.login.type == "m.login.sso"
-}
-
 allow if {
 	count(violation) == 0
 }
@@ -72,3 +66,9 @@ violation contains {
 	# sessions to return under the limit.
 	data.session_limit.hard_limit <= input.session_counts.total
 }
+
+is_interactive if {
+	# Only `m.login.sso` (the interactive web form) is interactive;
+	# `m.login.password` and `m.login.token` (including the finalisation of an SSO login) are not
+	input.login.type == "m.login.sso"
+}