URL access vulenrability patch

2021-03-12 18:39:45 +05:30
parent 25c383d8b8
commit 5d8b86bf5e
6 changed files with 26 additions and 12 deletions
--- a/app/Http/Controllers/Admin/helpdesk/PriorityController.php
+++ b/app/Http/Controllers/Admin/helpdesk/PriorityController.php
@@ -31,7 +31,7 @@ class PriorityController extends Controller
    {
        $this->PhpMailController = $PhpMailController;
        $this->NotificationController = $NotificationController;
-        $this->middleware('auth');
+        $this->middleware('roles');
    }

    /**
--- a/app/Http/Controllers/Admin/helpdesk/UrlSettingController.php
+++ b/app/Http/Controllers/Admin/helpdesk/UrlSettingController.php
@@ -10,7 +10,7 @@ class UrlSettingController extends Controller
 {
    public function __construct()
    {
-        $this->middleware('auth');
+        $this->middleware(['auth', 'roles']);
    }

    public function settings(Request $request)