regalijan/car-crushers-portal
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Allow data team to access user history

Browse Source
This commit is contained in:
regalijan 2023-10-19 16:50:57 -04:00
parent 88c317c5db
commit 98ef2ede43
Signed by: regalijan
GPG Key ID: 5D4196DA269EF520
2 changed files with 5 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
functions/api/game-bans/[user]/revoke.ts
View File

@ -3,6 +3,9 @@ import { insertLogs } from "../../../gcloud.js";
import { jsonError } from "../../../common.js"; import { jsonError } from "../../../common.js";
export async function onRequestPost(context: RequestContext) { export async function onRequestPost(context: RequestContext) {
if (!(context.data.current_user.permissions & (1 << 5)))
return jsonError("Forbidden", 403);
const { ticket_link } = context.data.body; const { ticket_link } = context.data.body;
if ( if (

3
functions/api/game-bans/_middleware.ts
View File

@ -5,7 +5,8 @@ export async function onRequest(context: RequestContext) {
if (!currentUser) return jsonError("Not logged in", 401); if (!currentUser) return jsonError("Not logged in", 401);
if (!(currentUser.permissions & (1 << 5))) return jsonError("Forbidden", 403); if (![1 << 5, 1 << 8].find((perm) => currentUser.permissions & perm))
return jsonError("Forbidden", 403);
return await context.next(); return await context.next();
} }