calvin.erfmann/pangolin
1
0
Fork 0
mirror of https://github.com/fosrl/pangolin.git synced 2026-02-10 20:02:26 +00:00
Code Issues Packages Projects Releases Wiki Activity

add org owner check to deleteOrg and removeUser endpoints

Browse Source
This commit is contained in:
Milo Schwartz
2024-11-06 00:05:19 -05:00
parent 372e51c0a5
commit 458de04fcf
3 changed files with 94 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
server/routers/external.ts
View File

@@ -25,6 +25,7 @@ import {
} from "./auth";
import { verifyUserHasAction } from "./auth/verifyUserHasAction";
import { ActionsEnum } from "@server/auth/actions";
import { verifyUserIsOrgOwner } from "./auth/verifyUserIsOrgOwner";
// Root routes
export const unauthenticated = Router();
@@ -52,7 +53,12 @@ authenticated.post(
verifyUserHasAction(ActionsEnum.updateOrg),
org.updateOrg
);
// authenticated.delete("/org/:orgId", verifyOrgAccess, org.deleteOrg);
// authenticated.delete(
// "/org/:orgId",
// verifyOrgAccess,
// verifyUserIsOrgOwner,
// org.deleteOrg
// );
authenticated.put(
"/org/:orgId/site",