mirror/UNIT3D-Community-Edition
1
0
Fork 0
mirror of https://github.com/HDInnovations/UNIT3D-Community-Edition.git synced 2026-04-22 18:20:31 -05:00
Code Issues Packages Projects Releases Wiki Activity

update: forums

Browse Source 
Co-Authored-By: Roardom <78790963+Roardom@users.noreply.github.com>
This commit is contained in:
HDVinnie
2023-05-07 22:21:18 -04:00
parent 8824abd9d5
commit fb35e4039d
4 changed files with 48 additions and 32 deletions
Download Patch File Download Diff File Expand all files Collapse all files
app/Http/Controllers/SubscriptionController.php
+8 -4
View File
@@ -40,6 +40,8 @@ class SubscriptionController extends Controller
*/
public function store(Request $request): \Illuminate\Http\RedirectResponse
{
$user = $request->user();
$request->validate([
'forum_id' => 'sometimes|prohibits:topic_id,required_without:topic_id,exists:forums,id',
'topic_id' => 'sometimes|prohibits:forum_id,required_without:forum_id,exists:topics,id',
@@ -52,7 +54,7 @@ class SubscriptionController extends Controller
->where('id', '=', $request->forum_id)
->whereRelation('permissions', [
['show_forum', '=', 1],
['group_id', '=', auth()->user()->group_id],
['group_id', '=', $user->group_id],
])
->exists(),
403
@@ -68,7 +70,7 @@ class SubscriptionController extends Controller
->where('id', '=', $request->topic_id)
->whereRelation('forumPermissions', [
['read_topic', '=', 1],
['group_id', '=', auth()->user()->group_id],
['group_id', '=', $user->group_id],
])
->exists(),
403
@@ -84,11 +86,13 @@ class SubscriptionController extends Controller
/**
* Destroy a subscription.
*/
public function destroy(int $id): \Illuminate\Http\RedirectResponse
public function destroy(Request $request, int $id): \Illuminate\Http\RedirectResponse
{
$user = $request->user();
$subscription = Subscription::findOrFail($id);
abort_unless($subscription->user_id === auth()->id(), 403);
abort_unless($subscription->user_id === $user->id, 403);
$subscription->delete();