regalijan/car-crushers-portal
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Don't allow non-management to access et member management

Browse Source
This commit is contained in:
Regalijan 2024-03-05 21:37:57 -05:00
parent 730e55ebac
commit 2cd5c7a5b7
Signed by: regalijan
GPG Key ID: 5D4196DA269EF520
2 changed files with 6 additions and 8 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
app/routes/et-members.tsx
View File

@ -37,11 +37,7 @@ export async function loader({ context }: { context: RequestContext }) {
status: 401,
});
if (
![1 << 3, 1 << 4, 1 << 12].find(
(p) => context.data.current_user.permissions & p,
)
)
if (![1 << 4, 1 << 12].find((p) => context.data.current_user.permissions & p))
throw new Response(null, {
status: 403,
});

8
app/routes/events-team.tsx
View File

@ -454,9 +454,11 @@ export default function () {
<Link color="#646cff" href="/book-event" mt="16px">
Book an Event
</Link>
<Link color="#646cff" href="/et-members" mb="32px" mt="8px">
Events Team Member Management
</Link>
{can_approve ? (
<Link color="#646cff" href="/et-members" mb="32px" mt="8px">
Events Team Member Management
</Link>
) : null}
</VStack>
</Container>
);