luckyimnotanigger/forgejo
1
0
Fork 0
mirror of https://codeberg.org/forgejo/forgejo.git synced 2025-06-01 04:12:10 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 8

Move permission check from ArtifactsDeleteView to the route

Browse source 
As suggested by @Gusted in #2431, move the permission checking from
`ArtifactsDeleteView` into the route instead, where it belongs.

Signed-off-by: Gergely Nagy <forgejo@gergo.csillger.hu>
This commit is contained in:
Gergely Nagy 2024-02-25 10:52:11 +01:00
parent b7ea2ea463
commit 9372bdd4a3
No known key found for this signature in database
2 changed files with 1 additions and 6 deletions
Download patch file Download diff file Expand all files Collapse all files

5
routers/web/repo/actions/view.go
View file

@ -579,11 +579,6 @@ func ArtifactsView(ctx *context_module.Context) {
}
func ArtifactsDeleteView(ctx *context_module.Context) {
if !ctx.Repo.CanWrite(unit.TypeActions) {
ctx.Error(http.StatusForbidden, "no permission")
return
}
runIndex := ctx.ParamsInt64("run")
artifactName := ctx.Params("artifact_name")