forked from Kieran/void.cat
Admin file actions
This commit is contained in:
parent
6069619783
commit
7b59407b9a
@ -222,7 +222,7 @@ namespace VoidCat.Controllers
|
|||||||
var uid = HttpContext.GetUserId();
|
var uid = HttpContext.GetUserId();
|
||||||
var isOwner = uid.HasValue && await _userUploads.Uploader(fid) == uid;
|
var isOwner = uid.HasValue && await _userUploads.Uploader(fid) == uid;
|
||||||
|
|
||||||
var info = await _fileInfo.Get(fid, isOwner);
|
var info = await _fileInfo.Get(fid, isOwner || HttpContext.IsRole(Roles.Admin));
|
||||||
if (info == default) return StatusCode(404);
|
if (info == default) return StatusCode(404);
|
||||||
|
|
||||||
return Json(info);
|
return Json(info);
|
||||||
@ -339,7 +339,7 @@ namespace VoidCat.Controllers
|
|||||||
var gid = id.FromBase58Guid();
|
var gid = id.FromBase58Guid();
|
||||||
var meta = await _metadata.Get(gid);
|
var meta = await _metadata.Get(gid);
|
||||||
if (meta == default) return NotFound();
|
if (meta == default) return NotFound();
|
||||||
if (!meta.CanEdit(fileMeta.EditSecret)) return Unauthorized();
|
if (!(meta.CanEdit(fileMeta.EditSecret) || HttpContext.IsRole(Roles.Admin))) return Unauthorized();
|
||||||
|
|
||||||
await _metadata.Update(gid, new()
|
await _metadata.Update(gid, new()
|
||||||
{
|
{
|
||||||
|
Loading…
Reference in New Issue
Block a user