fix：add permission check when payment userId not match

1 year ago · be25da3ba3
1 changed files with 2 additions and 2 deletions
--- a/modules/EasyAbp.EShop.Payments/src/EasyAbp.EShop.Payments.Application/EasyAbp/EShop/Payments/Payments/PaymentAppService.cs
+++ b/modules/EasyAbp.EShop.Payments/src/EasyAbp.EShop.Payments.Application/EasyAbp/EShop/Payments/Payments/PaymentAppService.cs
@ -45,7 +45,7 @@ namespace EasyAbp.EShop.Payments.Payments

            if (payment.UserId != CurrentUser.GetId())
            {
-                await CheckPolicyAsync(GetPolicyName);
+                await CheckPolicyAsync(PaymentsPermissions.Payments.Manage);
            }

            return payment;
@ -69,7 +69,7 @@ namespace EasyAbp.EShop.Payments.Payments
        {
            if (input.UserId != CurrentUser.GetId())
            {
-                await CheckPolicyAsync(GetListPolicyName);
+                await CheckPolicyAsync(PaymentsPermissions.Payments.Manage);
            }

            return await base.GetListAsync(input);