DRCIT/snipe-it
1
0
Fork 0
mirror of https://github.com/snipe/snipe-it.git synced 2025-02-02 08:21:09 -08:00
Code Issues Actions 1 Packages Projects Releases Wiki Activity

Added gate to check that the user is allowed to view API keys

Browse source 
Signed-off-by: snipe <snipe@snipe.net>
This commit is contained in:
snipe 2022-01-13 01:33:27 -08:00
parent eb8f23a888
commit 512dbfee7a
1 changed files with 6 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

6
app/Http/Controllers/ProfileController.php
View file

@ -113,6 +113,12 @@ class ProfileController extends Controller
*/ */
public function api() public function api()
{ {
// Make sure the self.api permission has been granted
if (!Gate::allows('self.api')) {
abort(403);
}
return view('account/api'); return view('account/api');
} }