Skip to content
Snippets Groups Projects
Verified Commit afd41f3c authored by Damien's avatar Damien
Browse files

FEAT #12091 TIME 0:20 Update list instances check privileges

parent 1937ab40
No related branches found
No related tags found
No related merge requests found
Expand all Hide whitespace changes
Inline Side-by-side
src/app/entity/controllers/ListInstanceController.php
+ 6
0
View file @ afd41f3c
......@@ -113,6 +113,12 @@ class ListInstanceController
public function update(Request $request, Response $response)
{
if (!PrivilegeController::hasPrivilege(['privilegeId' => 'update_diffusion_details', 'userId' => $GLOBALS['id']])
&& !PrivilegeController::hasPrivilege(['privilegeId' => 'update_diffusion_except_recipient_details', 'userId' => $GLOBALS['id']])
&& !PrivilegeController::hasPrivilege(['privilegeId' => 'admin_users', 'userId' => $GLOBALS['id']])) {
return $response->withStatus(403)->withJson(['errors' => 'Service forbidden']);
}
$body = $request->getParsedBody();
if (!Validator::arrayType()->notEmpty()->validate($body)) {
return $response->withStatus(400)->withJson(['errors' => 'Body is not set or not an array']);
......
src/frontend/css/maarch-material.css
+ 1
1
View file @ afd41f3c
This diff is collapsed.
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment