snipe-it

mirror of https://github.com/snipe/snipe-it.git synced 2024-12-26 06:04:08 -08:00

History

Tobias Regnery fdcc17ca2c Fix user creation with FullMultipleCompanySupport enabled over API It is currently possible as a non-superuser to create a new user or patch an existing user with arbitrary company over the API if FullMultipleCompanySupport is enabled. Altough a highly unlikely scenario as the user needs permission to create API keys and new users, it is a bug that should get fixed. Add a call to getIdForCurrentUser() to normalize the company_id if FullMultipleCompanySupport is enabled.		2024-10-16 11:47:18 +02:00
..
Controllers	Fix user creation with FullMultipleCompanySupport enabled over API	2024-10-16 11:47:18 +02:00
Middleware	Fixed #15439 - check database on healthcheck	2024-10-02 15:36:01 +01:00
Requests	Refactor asset creation with API	2024-10-14 15:14:41 +02:00
Traits	Fixed behavior for null model numbers	2024-08-17 00:27:44 +01:00
Transformers	Fixed #15651 - admin user now displaying on maintenances page	2024-10-11 11:16:24 +01:00
Kernel.php	Fixed #15439 - check database on healthcheck	2024-10-02 15:36:01 +01:00