granblue.team/hensei-api
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Fix grid_weapon not being able to be created

Browse source
This commit is contained in:
Justin Edmund 2022-03-04 14:54:36 -08:00
parent 376c286a77
commit 1c08d64b55
1 changed files with 9 additions and 7 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

16
app/controllers/api/v1/grid_weapons_controller.rb
View file

@ -5,9 +5,10 @@ class Api::V1::GridWeaponsController < Api::V1::ApiController
party = Party.find(weapon_params[:party_id]) party = Party.find(weapon_params[:party_id])
canonical_weapon = Weapon.find(weapon_params[:weapon_id]) canonical_weapon = Weapon.find(weapon_params[:weapon_id])
if !current_user || party.user != current_user if current_user
render_unauthorized_response if party.user != current_user
return render_unauthorized_response
end
end end
if grid_weapon = GridWeapon.where( if grid_weapon = GridWeapon.where(
@ -28,9 +29,10 @@ class Api::V1::GridWeaponsController < Api::V1::ApiController
end end
def update def update
if !current_user || @weapon.party.user != current_user if current_user
render_unauthorized_response if party.user != current_user
return render_unauthorized_response
end
end end
# TODO: Server-side validation of weapon mods # TODO: Server-side validation of weapon mods
@ -46,7 +48,7 @@ class Api::V1::GridWeaponsController < Api::V1::ApiController
@weapon = GridWeapon.find(weapon_params[:id]) @weapon = GridWeapon.find(weapon_params[:id])
if current_user if current_user
if @weapon.party.user != current_user if party.user != current_user
render_unauthorized_response render_unauthorized_response
end end
end end