DRCIT/snipe-it
1
0
Fork 0
mirror of https://github.com/snipe/snipe-it.git synced 2025-01-11 13:57:41 -08:00
Code Issues Actions 1 Packages Projects Releases Wiki Activity

Disallow uploads if app is locked

Browse source 
Signed-off-by: snipe <snipe@snipe.net>
This commit is contained in:
snipe 2022-11-03 13:52:23 -07:00
parent 7cb1ca8754
commit 3c7d63c060
3 changed files with 19 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

11
app/Http/Controllers/Accessories/AccessoriesFilesController.php
View file

@ -27,10 +27,16 @@ class AccessoriesFilesController extends Controller
*/ */
public function store(AssetFileRequest $request, $accessoryId = null) public function store(AssetFileRequest $request, $accessoryId = null)
{ {
if (config('app.lock_passwords')) {
return redirect()->route('accessories.show', ['accessory'=>$accessoryId])->with('error', trans('general.feature_disabled'));
}
$accessory = Accessory::find($accessoryId); $accessory = Accessory::find($accessoryId);
if (isset($accessory->id)) { if (isset($accessory->id)) {
$this->authorize('update', $accessory); $this->authorize('accessories.files', $accessory);
if ($request->hasFile('file')) { if ($request->hasFile('file')) {
if (! Storage::exists('private_uploads/accessories')) { if (! Storage::exists('private_uploads/accessories')) {
@ -129,9 +135,12 @@ class AccessoriesFilesController extends Controller
*/ */
public function show($accessoryId = null, $fileId = null, $download = true) public function show($accessoryId = null, $fileId = null, $download = true)
{ {
\Log::debug('Private filesystem is: '.config('filesystems.default')); \Log::debug('Private filesystem is: '.config('filesystems.default'));
$accessory = Accessory::find($accessoryId); $accessory = Accessory::find($accessoryId);
// the accessory is valid // the accessory is valid
if (isset($accessory->id)) { if (isset($accessory->id)) {
$this->authorize('view', $accessory); $this->authorize('view', $accessory);

5
app/Http/Controllers/Components/ComponentsFilesController.php
View file

@ -27,6 +27,11 @@ class ComponentsFilesController extends Controller
*/ */
public function store(AssetFileRequest $request, $componentId = null) public function store(AssetFileRequest $request, $componentId = null)
{ {
if (config('app.lock_passwords')) {
return redirect()->route('components.show', ['component'=>$componentId])->with('error', trans('general.feature_disabled'));
}
$component = Component::find($componentId); $component = Component::find($componentId);
if (isset($component->id)) { if (isset($component->id)) {

4
app/Http/Controllers/Consumables/ConsumablesFilesController.php
View file

@ -27,6 +27,10 @@ class ConsumablesFilesController extends Controller
*/ */
public function store(AssetFileRequest $request, $consumableId = null) public function store(AssetFileRequest $request, $consumableId = null)
{ {
if (config('app.lock_passwords')) {
return redirect()->route('consumables.show', ['consumable'=>$consumableId])->with('error', trans('general.feature_disabled'));
}
$consumable = Consumable::find($consumableId); $consumable = Consumable::find($consumableId);
if (isset($consumable->id)) { if (isset($consumable->id)) {