archives/FHeD
1
0
Fork 0
Code Issues Pull Requests Actions Packages Releases 40 Activity

🐛 Fix request authorisation

Browse Source 
Signed-off-by: Luke Tainton <luke@tainton.uk>
This commit is contained in:
Luke Tainton
2020-08-09 17:15:33 +01:00
parent 671e1826d0
commit 9e25c836bb
1 changed files with 5 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
app/includes/prereqs.php
View File

@@ -127,13 +127,17 @@ function get_updates($db, $request) {
} }
function get_subscribers($db, $request) { function get_subscribers($db, $request) {
$subs = array();
$users_stmt = "SELECT user_uuid FROM ticket_subscribers WHERE ticket_uuid=:uuid"; $users_stmt = "SELECT user_uuid FROM ticket_subscribers WHERE ticket_uuid=:uuid";
$users_sql = $db->prepare($users_stmt); $users_sql = $db->prepare($users_stmt);
$users_sql->bindParam(':uuid', $request['uuid']); $users_sql->bindParam(':uuid', $request['uuid']);
$users_sql->execute(); $users_sql->execute();
$users_sql->setFetchMode(PDO::FETCH_ASSOC); $users_sql->setFetchMode(PDO::FETCH_ASSOC);
$users_result = $users_sql->fetchAll(); $users_result = $users_sql->fetchAll();
return $users_result; foreach ($users_result as $u) {
array_push($subs, $u['user_uuid']);
}
return $subs;
} }
function isAuthorised($user, $authorised_users, $request) { function isAuthorised($user, $authorised_users, $request) {