gavin/snipe-it
1
0
Fork 0
mirror of https://github.com/grokability/snipe-it.git synced 2026-03-12 17:52:00 +08:00
Code Issues Packages Projects Releases Wiki Activity

Added more checks

Browse Source
This commit is contained in:
snipe
2026-03-11 18:55:58 +00:00
parent 17bbe7736a
commit a186f54478
2 changed files with 18 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

12
app/Http/Controllers/Api/UsersController.php
View File

@@ -632,6 +632,18 @@ class UsersController extends Controller
}
if (auth()->user()->cannot('manageContactInfo')) {
request()->remove('phone');
request()->remove('mobile');
request()->remove('address');
request()->remove('city');
request()->remove('state');
request()->remove('country');
request()->remove('zip');
request()->remove('website');
}
if ($request->filled('display_name')) {
$user->display_name = $request->input('display_name');
}

6
app/Providers/AuthServiceProvider.php
View File

@@ -162,6 +162,12 @@ class AuthServiceProvider extends ServiceProvider
return true;
});
Gate::define('manageContactInfo', function ($user) {
if ($user->hasAccess('users.contact')) {
return true;
}
});
Gate::define('admin', function ($user) {
if ($user->hasAccess('admin')) {
return true;