Fix bug in party controller authorization

2023-02-02 02:28:46 -08:00 · 2023-02-02 02:28:46 -08:00 · bdb68f17a9
commit bdb68f17a9
parent c5ecd8d6e9
1 changed files with 1 additions and 1 deletions
--- a/app/controllers/api/v1/parties_controller.rb
+++ b/app/controllers/api/v1/parties_controller.rb
@ -122,7 +122,7 @@ module Api
      private

      def authorize
-        render_unauthorized_response if @character.party.user != current_user || @party.edit_key != edit_key
+        render_unauthorized_response if @party.user != current_user || @party.edit_key != edit_key
      end

      def build_conditions(params)