From 857fa8a57f45b9d2f039dc4ceb44ab37e801f375 Mon Sep 17 00:00:00 2001
From: David Bomba <turbo124@gmail.com>
Date: Tue, 8 Sep 2020 20:49:17 +1000
Subject: [PATCH] Force admin only permissions on system logs

---
 app/Http/Controllers/SystemLogController.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/app/Http/Controllers/SystemLogController.php b/app/Http/Controllers/SystemLogController.php
index e968b1cabf31..2881eb65e6e6 100644
--- a/app/Http/Controllers/SystemLogController.php
+++ b/app/Http/Controllers/SystemLogController.php
@@ -63,7 +63,7 @@ class SystemLogController extends BaseController
         if(auth()->user()->isAdmin())
             return $this->listResponse($system_logs);
 
-        return $this->listResponse(SystemLog::query());
+        return $this->errorResponse('Insufficient permissions', 403);
     }
 
     /**