Cutlery/invoiceninja
1
0
Fork 0
mirror of https://github.com/invoiceninja/invoiceninja.git synced 2025-05-24 02:14:21 -04:00
Code Issues Packages Projects Releases Wiki Activity

Docs

Browse Source
This commit is contained in:
David Bomba 2022-06-16 15:59:36 +10:00
parent 77d0dd8ae4
commit ce1aea5146
1 changed files with 2 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
app/Http/Requests/Account/UpdateAccountRequest.php
View File

@ -26,7 +26,7 @@ class UpdateAccountRequest extends Request
*/
public function authorize()
{
return auth()->user()->isAdmin() || auth()->user()->isOwner();
return (auth()->user()->isAdmin() || auth()->user()->isOwner()) && (int)$this->account->id === auth()->user()->account_id;
}
/**
@ -41,6 +41,7 @@ class UpdateAccountRequest extends Request
];
}
/* Only allow single field to update account table */
protected function prepareForValidation()
{
$input = $this->all();