Mirrors/VILLASweb-backend-go
1
0
Fork 0
mirror of https://git.rwth-aachen.de/acs/public/villas/web-backend-go/ synced 2025-03-30 00:00:12 +01:00
Code Issues Releases Wiki Activity

user: fix get user endpoint for non admin users

Browse source
This commit is contained in:
Sonja Happ 2019-10-24 11:37:27 +02:00
parent 537e8362bf
commit 505358daaa
1 changed files with 1 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
routes/user/user_endpoints.go
View file

@ -230,7 +230,7 @@ func getUser(c *gin.Context) {
reqUserID, _ := c.Get(database.UserIDCtx)
reqUserRole, _ := c.Get(database.UserRoleCtx)
if id != reqUserID && reqUserRole != "Admin" {
if uint(id) != reqUserID && reqUserRole != "Admin" {
helper.ForbiddenError(c, "Invalid authorization")
return
}