nhyatt/bitwarden
1
0
Fork 0
mirror of https://github.com/bitwarden/server.git synced 2025-07-01 16:12:49 -05:00
Code Activity

fix: add permission check for collection management api, refs AC-1647 (#3252)

Browse Source
This commit is contained in:
Vincent Salucci
2023-09-12 10:35:25 -05:00
committed by GitHub
parent 4ac1b10fb1
commit 064a28c325
1 changed files with 5 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
src/Api/Controllers/OrganizationsController.cs
View File

@ -773,6 +773,11 @@ public class OrganizationsController : Controller
throw new NotFoundException(); throw new NotFoundException();
} }
if (!await _currentContext.OrganizationOwner(id))
{
throw new NotFoundException();
}
await _organizationService.UpdateAsync(model.ToOrganization(organization)); await _organizationService.UpdateAsync(model.ToOrganization(organization));
return new OrganizationResponseModel(organization); return new OrganizationResponseModel(organization);
} }