hazza/Phraseanet
1
0
Fork 0
mirror of https://github.com/alchemy-fr/Phraseanet.git synced 2025-10-17 23:13:15 +00:00
Code Issues Packages Projects Releases Wiki Activity

#PHRAS-888 time 5m

Browse Source 
rollback (double record instantiation was ok)
This commit is contained in:
Jean-Yves Gaulier
2016-01-06 14:59:13 +01:00
parent f2d94dc667
commit f4c834d68c
3 changed files with 4 additions and 25 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
lib/Alchemy/Phrasea/Controller/Api/V1Controller.php
View File

@@ -1316,7 +1316,7 @@ class V1Controller extends Controller
*/
public function getRecordMetadataAction(Request $request, $databox_id, $record_id)
{
$record = \record_adapter::getRecordLoaded($this->app, $databox_id, $record_id);
$record = $this->findDataboxById($databox_id)->get_record($record_id);
$ret = ["record_metadatas" => $this->listRecordCaption($record->get_caption())];
return Result::create($request, $ret)->createResponse();
@@ -2417,7 +2417,8 @@ class V1Controller extends Controller
public function ensureCanAccessToRecord(Request $request)
{
$user = $this->getApiAuthenticatedUser();
$record = \record_adapter::getRecordLoaded($this->app, $request->attributes->get('databox_id'), $request->attributes->get('record_id'));
$record = $this->findDataboxById($request->attributes->get('databox_id'))
->get_record($request->attributes->get('record_id'));
if (!$this->getAclForUser($user)->has_access_to_record($record)) {
return Result::createError($request, 401, 'You are not authorized')->createResponse();
}