URL access vulenrability patch

2021-03-12 18:39:45 +05:30
parent 25c383d8b8
commit 5d8b86bf5e
6 changed files with 26 additions and 12 deletions
--- a/app/FaveoStorage/Controllers/SettingsController.php
+++ b/app/FaveoStorage/Controllers/SettingsController.php
@@ -13,6 +13,11 @@ use RecursiveIteratorIterator;

 class SettingsController extends Controller
 {
+    public function __construct()
+    {
+        $this->middleware(['auth', 'roles']);
+    }
+
    public function settingsIcon()
    {
        return ' <div class="col-md-2 col-sm-6">