Tighten some edit permissions on organisations

src/Database/Seeds/OrganisationPermissions.php

@@ -66,9 +66,15 @@ class OrganisationPermissions extends BaseSeed
             'view_organisation_field_own' => new Permission([
                 'slug'        => 'view_organisation_field',
                 'name'        => 'View own organisation',
-                'conditions'  => "is_organisation_member(self.id,organisation.id) & in(property,['name','slug','description','members'])",
+                'conditions'  => "is_organisation_member(self.id,organisation.id) && in(property,['name','slug','description','members'])",
                 'description' => 'View certain properties of own organisation.',
             ]),
+            'update_organisation_field_own' => new Permission([
+                'slug'        => 'update_organisation_field',
+                'name'        => 'Update own organisation',
+                'conditions'  => "is_organisation_admin(self.id,organisation.id) && subset(fields,['name','slug','description','members'])",
+                'description' => 'Edit basic properties of own organisation.',
+            ]),
             'update_organisation_field' => new Permission([
                 'slug'        => 'update_organisation_field',
                 'name'        => 'Edit organisation',
@@ -206,6 +212,7 @@ class OrganisationPermissions extends BaseSeed
                 $permissions['uri_organisations']->id,
                 $permissions['uri_organisation_own']->id,
                 $permissions['view_organisation_field_own']->id,
+                $permissions['update_organisation_field_own']->id,
                 $permissions['leave_organisation']->id,
                 $permissions['register_organisation']->id,
             ]);