Commit 1216a62e3ba2e5c9d959fca748136661755d72e8
1 parent
20b2a0b2
Exists in
master
and in
4 other branches
Authorize user on note update
Showing
1 changed file
with
1 additions
and
0 deletions
Show diff stats
app/controllers/notes_controller.rb
| @@ -2,6 +2,7 @@ class NotesController < ProjectResourceController | @@ -2,6 +2,7 @@ class NotesController < ProjectResourceController | ||
| 2 | # Authorize | 2 | # Authorize |
| 3 | before_filter :authorize_read_note! | 3 | before_filter :authorize_read_note! |
| 4 | before_filter :authorize_write_note!, only: [:create] | 4 | before_filter :authorize_write_note!, only: [:create] |
| 5 | + before_filter :authorize_modify_note!, only: [:update] | ||
| 5 | 6 | ||
| 6 | respond_to :js | 7 | respond_to :js |
| 7 | 8 |