scottk/Mailu
1
0
Fork 0
mirror of https://github.com/optim-enterprises-bv/Mailu.git synced 2025-10-30 09:42:26 +00:00
Code Issues Packages Projects Releases Wiki Activity

Fix permission management when editing/deleting fetches

Browse Source
This commit is contained in:
Pierre Jaury
2016-06-25 19:48:10 +02:00
parent 58ec3597ab
commit 21bec865b3
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
admin/freeposte/admin/utils.py
View File

@@ -46,6 +46,6 @@ def get_fetch(fetch_id):
if not fetch: if not fetch:
flask.abort(404) flask.abort(404)
if not fetch.user.domain in flask_login.current_user.get_managed_domains(): if not fetch.user.domain in flask_login.current_user.get_managed_domains():
if not fetch.user == flask_login.current_user: if not fetch.user.email == flask_login.current_user.email:
flask.abort(403) flask.abort(403)
return fetch return fetch