AVSDev/sprinkle-organisations
1
0
Fork 0
Code Issues 2 Pull Requests Projects Releases Wiki Activity

Fixed permission for editing name of organisation

Browse Source
This commit is contained in:
Craig Williams
2022-03-08 16:52:51 +00:00
parent a07ec92546
commit 05942afd61
1 changed files with 8 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

7
src/Controller/OrganisationController.php
View File

@@ -222,6 +222,11 @@ class OrganisationController extends SimpleController
$transformer = new RequestDataTransformer($schema);
$data = $transformer->transform($params);
$nameSet = isset($data['name']);
if (!$nameSet) {
$data['name'] = $organisation->name;
}
$error = false;
// Validate request data
@@ -234,8 +239,10 @@ class OrganisationController extends SimpleController
// Determine targeted fields
$fieldNames = [];
foreach ($data as $name => $value) {
if ($name == 'name' && $nameSet) {
$fieldNames[] = $name;
}
}
// Access-controlled resource - check that currentUser has permission to edit submitted fields for this organisation
if (!$authorizer->checkAccess($currentUser, 'update_organisation_field', [