Cutlery/invoiceninja
1
0
Fork 0
mirror of https://github.com/invoiceninja/invoiceninja.git synced 2025-11-04 04:57:35 -05:00
Code Issues Packages Projects Releases Wiki Activity

QuotesController: Allow approving only quotes with STATUS_SENT

Browse Source
This commit is contained in:
Benjamin Beganović 2021-07-05 13:57:11 +02:00
parent f35ed86299
commit 1a5c40d02e
1 changed files with 6 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
app/Http/Controllers/ClientPortal/QuoteController.php
View File

@ -24,6 +24,7 @@ use App\Utils\TempFile;
use App\Utils\Traits\MakesHash; use App\Utils\Traits\MakesHash;
use Illuminate\Contracts\View\Factory; use Illuminate\Contracts\View\Factory;
use Illuminate\View\View; use Illuminate\View\View;
use Symfony\Component\HttpFoundation\BinaryFileResponse;
use ZipStream\Option\Archive; use ZipStream\Option\Archive;
use ZipStream\ZipStream; use ZipStream\ZipStream;
@ -46,7 +47,7 @@ class QuoteController extends Controller
* *
* @param ShowQuoteRequest $request * @param ShowQuoteRequest $request
* @param Quote $quote * @param Quote $quote
* @return Factory|View|\Symfony\Component\HttpFoundation\BinaryFileResponse * @return Factory|View|BinaryFileResponse
*/ */
public function show(ShowQuoteRequest $request, Quote $quote) public function show(ShowQuoteRequest $request, Quote $quote)
{ {
@ -110,10 +111,12 @@ class QuoteController extends Controller
protected function approve(array $ids, $process = false) protected function approve(array $ids, $process = false)
{ {
$quotes = Quote::whereIn('id', $ids) $quotes = Quote::whereIn('id', $ids)
->whereClientId(auth()->user()->client->id) ->where('client_id', auth('contact')->user()->client->id)
->where('company_id', auth('contact')->user()->client->company_id)
->where('status_id', Quote::STATUS_SENT)
->get(); ->get();
if (! $quotes || $quotes->count() == 0) { if (!$quotes || $quotes->count() == 0) {
return redirect()->route('client.quotes.index'); return redirect()->route('client.quotes.index');
} }