nhyatt/bitwarden
1
0
Fork 0
mirror of https://github.com/bitwarden/server.git synced 2025-04-05 21:18:13 -05:00
Code

PM-18890 permissions issue

Browse Source
This commit is contained in:
voommen-livefront 2025-03-05 15:17:34 -06:00
parent 63f1c3cee3
commit 836c0c5693
1 changed files with 5 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

10
src/Api/Tools/Controllers/ImportCiphersController.cs
View File

@ -107,17 +107,17 @@ public class ImportCiphersController : Controller
var existingCollections = collections.Where(tc => orgCollectionIds.Contains(tc.Id)); var existingCollections = collections.Where(tc => orgCollectionIds.Contains(tc.Id));
//When importing into existing collection, we need to verify if the user has permissions //When importing into existing collection, we need to verify if the user has permissions
if (existingCollections.Any() && !(await _authorizationService.AuthorizeAsync(User, existingCollections, BulkCollectionOperations.ImportCiphers)).Succeeded) if (existingCollections.Any() && (await _authorizationService.AuthorizeAsync(User, existingCollections, BulkCollectionOperations.ImportCiphers)).Succeeded)
{ {
return false; return true;
}; };
//Users allowed to import if they CanCreate Collections //Users allowed to import if they CanCreate Collections
if (!(await _authorizationService.AuthorizeAsync(User, collections, BulkCollectionOperations.Create)).Succeeded) if ((await _authorizationService.AuthorizeAsync(User, collections, BulkCollectionOperations.Create)).Succeeded)
{ {
return false; return true;
} }
return true; return false;
} }
} }