wieerwill/platform
1
0
Fork 0
mirror of https://github.com/hcengineering/platform.git synced 2025-06-11 21:11:57 +00:00
Code Issues Actions 3 Packages Projects Releases Wiki Activity

Forbid export attempt for readonly users (#9181)

Browse Source
This commit is contained in:
Anton Alexeyev 2025-06-06 11:51:53 +07:00 committed by GitHub
parent 25272e3431
commit 95a2ba3aed
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
1 changed files with 6 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
services/export/pod-export/src/server.ts
View File

@ -181,8 +181,13 @@ export function createServer (storageConfig: StorageConfiguration): { app: Expre
throw new ApiError(400, 'Missing required parameters')
}
const decodedToken = decodeToken(token)
if (decodedToken.extra?.readonly !== undefined) {
throw new ApiError(403, 'Forbidden')
}
const platformClient = await createPlatformClient(token)
const { account } = decodeToken(token)
const account = decodedToken.account
const txOperations = new TxOperations(platformClient, socialId)