Home Explore Help
Register Sign In
oleg
/
pixelfed
mirror of https://github.com/pixelfed/pixelfed.git
1
0
Fork 0
Files Issues 0 Wiki
Browse Source

Fix api endpoints

Daniel Supernault 1 year ago
parent
fd7f5dbba1
commit
62b9eef805
2 changed files with 3 additions and 2 deletions
Unified View Show Diff Stats
  1. 1 2
      app/Http/Controllers/Api/ApiV1Controller.php
  2. 2 0
      app/Http/Controllers/ComposeController.php

+ 1 - 2
app/Http/Controllers/Api/ApiV1Controller.php
View File 

@@ -956,8 +956,7 @@ class ApiV1Controller extends Controller
 
      */
 
      */
 
     public function accountRelationshipsById(Request $request)
 
     public function accountRelationshipsById(Request $request)
 
     {
 
     {
 
-        abort_if(!$request->user() || !$request->user()->token(), 403);
 
-        abort_unless($request->user()->tokenCan('read'), 403);
 
+        abort_if(!$request->user(), 403);
 
 
 
         $this->validate($request, [
 
         $this->validate($request, [
 
             'id'    => 'required|array|min:1|max:20',
 
             'id'    => 'required|array|min:1|max:20',

+ 2 - 0
app/Http/Controllers/ComposeController.php
View File 

@@ -260,6 +260,8 @@ class ComposeController extends Controller
 
             $q = mb_substr($q, 1);
 
             $q = mb_substr($q, 1);
 
         }
 
         }
 
 
 
+        $user = $request->user();
 
+
 
         abort_if($user->has_roles && !UserRoleService::can('can-post', $user->id), 403, 'Invalid permissions for this action');
 
         abort_if($user->has_roles && !UserRoleService::can('can-post', $user->id), 403, 'Invalid permissions for this action');
 
 
 
         $blocked = UserFilter::whereFilterableType('App\Profile')
 
         $blocked = UserFilter::whereFilterableType('App\Profile')