morrning/hesabixCore
1
1
Fork 0
Code Issues Pull requests Actions Packages Projects Releases Wiki Activity

bug fix in bank transfer access control check

Browse source
This commit is contained in:
Hesabix 2025-01-11 15:58:18 +00:00
parent 282037cf73
commit dcef28d88e
2 changed files with 1 additions and 15 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
hesabixCore/src/Controller/TransferController.php
View file

@ -19,7 +19,7 @@ class TransferController extends AbstractController
#[Route('/api/transfer/search', name: 'app_transfer_search')] #[Route('/api/transfer/search', name: 'app_transfer_search')]
public function app_transfer_search(Provider $provider,Request $request,Access $access,Log $log,EntityManagerInterface $entityManager): JsonResponse public function app_transfer_search(Provider $provider,Request $request,Access $access,Log $log,EntityManagerInterface $entityManager): JsonResponse
{ {
$acc = $access->hasRole('transfer'); $acc = $access->hasRole('bankTransfer');
if(!$acc) if(!$acc)
throw $this->createAccessDeniedException(); throw $this->createAccessDeniedException();
$items = $entityManager->getRepository(HesabdariDoc::class)->findBy([ $items = $entityManager->getRepository(HesabdariDoc::class)->findBy([

14
hesabixCore/src/Entity/Permission.php
View file

@ -120,9 +120,6 @@ class Permission
#[ORM\Column(nullable: true)] #[ORM\Column(nullable: true)]
private ?bool $plugRepservice = null; private ?bool $plugRepservice = null;
#[ORM\Column(nullable: true)]
private ?bool $Transfer = null;
public function getId(): ?int public function getId(): ?int
{ {
return $this->id; return $this->id;
@ -548,15 +545,4 @@ class Permission
return $this; return $this;
} }
public function isTransfer(): ?bool
{
return $this->Transfer;
}
public function setTransfer(?bool $Transfer): static
{
$this->Transfer = $Transfer;
return $this;
}
} }