fix(auth): make sure routes from the "other" group work as intended
Resolves https://kolaente.dev/vikunja/vikunja/issues/2977
This commit is contained in:
parent
77d1616fea
commit
45ec1a4c47
|
|
@ -229,7 +229,10 @@ func CanDoAPIRoute(c echo.Context, token *APIToken) (can bool) {
|
|||
|
||||
routeGroupName = strings.TrimSuffix(routeGroupName, "_bulk")
|
||||
|
||||
if routeGroupName == "user" {
|
||||
if routeGroupName == "user" ||
|
||||
routeGroupName == "users" ||
|
||||
routeGroupName == "notifications" ||
|
||||
routeGroupName == "routes" {
|
||||
routeGroupName = "other"
|
||||
}
|
||||
|
||||
|
|
|
|||
Loading…
Reference in New Issue