tsai
/
budibase
mirror of https://github.com/Budibase/budibase.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
Browse Source

Merge pull request #1207 from Budibase/bug/perms-fix 

Permissions fix - fetch enriched was 403ing in public
pull/4023/head
Michael Drury 5 years ago
committed by GitHub
parent
ed09509555 acba31d29d
commit
c5e882b218
1 changed files with 2 additions and 2 deletions
Whitespace
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Split View
Diff Options
Show Stats Download Patch File Download Diff File
  1. 4
      packages/server/src/utilities/security/permissions.js

4
packages/server/src/utilities/security/permissions.js
View File

@ -138,7 +138,7 @@ exports.doesHaveResourcePermission = (
) => {
// set foundSub to not subResourceId, incase there is no subResource
let foundMain = false,
foundSub = !subResourceId
foundSub = false
for (let [resource, level] of Object.entries(permissions)) {
const levels = getAllowedLevels(level)
if (resource === resourceId && levels.indexOf(permLevel) !== -1) {
@ -156,7 +156,7 @@ exports.doesHaveResourcePermission = (
break
}
}
return foundMain && foundSub
return foundMain || foundSub
}
exports.doesHaveBasePermission = (permType, permLevel, permissionIds) => {

Write Preview
Loading…
Cancel
Save