User role update risk fixed
This commit is contained in:
Manish Verma
@@ -104,11 +104,11 @@ class ProfileController extends Controller
|
||||
Input::file('profile_pic')->move($destinationPath, $fileName);
|
||||
$user->profile_pic = $fileName;
|
||||
} else {
|
||||
$user->fill($request->except('profile_pic', 'gender'))->save();
|
||||
$user->fill($request->except('profile_pic', 'gender','active','role','is_delete','ban'))->save();
|
||||
|
||||
return redirect('guest')->with('success', 'Profile Updated sucessfully');
|
||||
}
|
||||
if ($user->fill($request->except('profile_pic'))->save()) {
|
||||
if ($user->fill($request->except('profile_pic','active','role','is_delete','ban'))->save()) {
|
||||
return redirect('guest')->with('success', 'Profile Updated sucessfully');
|
||||
}
|
||||
}
|
||||
|
||||
@@ -690,7 +690,7 @@ class UserController extends Controller
|
||||
}
|
||||
}
|
||||
$users->mobile = ($request->input('mobile') == '') ? null : $request->input('mobile');
|
||||
$users->fill($request->except('mobile'));
|
||||
$users->fill($request->except('mobile','active','role','is_delete','ban'));
|
||||
$users->save();
|
||||
if ($request->input('org_id') != '') {
|
||||
$orgid = $request->input('org_id');
|
||||
@@ -765,7 +765,7 @@ class UserController extends Controller
|
||||
}
|
||||
$user->country_code = $request->country_code;
|
||||
}
|
||||
$user->fill($request->except('profile_pic', 'mobile'));
|
||||
$user->fill($request->except('profile_pic', 'mobile','active','role','is_delete','ban'));
|
||||
$user->gender = $request->input('gender');
|
||||
$user->save();
|
||||
if (Input::file('profile_pic')) {
|
||||
|
||||
@@ -250,11 +250,11 @@ class SettingsController extends Controller
|
||||
Input::file('profile_pic')->move($destinationPath, $fileName);
|
||||
$user->profile_pic = $fileName;
|
||||
} else {
|
||||
$user->fill($request->except('profile_pic', 'gender'))->save();
|
||||
$user->fill($request->except('profile_pic', 'gender','active','role','is_delete','ban'))->save();
|
||||
|
||||
return redirect()->back()->with('success1', 'Profile Updated sucessfully');
|
||||
}
|
||||
if ($user->fill($request->except('profile_pic'))->save()) {
|
||||
if ($user->fill($request->except('profile_pic','active','role','is_delete','ban'))->save()) {
|
||||
return redirect('profile')->with('success1', 'Profile Updated sucessfully');
|
||||
} else {
|
||||
return redirect('profile')->with('fails1', 'Profile Not Updated sucessfully');
|
||||
|
||||
@@ -246,7 +246,7 @@ class UserController extends Controller
|
||||
$users = $user->whereId($id)->first();
|
||||
/* Update the value by selected field */
|
||||
/* Check whether function success or not */
|
||||
if ($users->fill($request->input())->save() == true) {
|
||||
if ($users->fill($request->except('active','role','is_delete','ban'))->save() == true) {
|
||||
/* redirect to Index page with Success Message */
|
||||
return redirect('user')->with('success', 'User Updated Successfully');
|
||||
} else {
|
||||
@@ -344,11 +344,11 @@ class UserController extends Controller
|
||||
Input::file('profile_pic')->move($destinationPath, $fileName);
|
||||
$user->profile_pic = $fileName;
|
||||
} else {
|
||||
$user->fill($request->except('profile_pic', 'gender'))->save();
|
||||
$user->fill($request->except('profile_pic', 'gender','active','role','is_delete','ban'))->save();
|
||||
|
||||
return Redirect::route('profile')->with('success', 'Profile Updated sucessfully');
|
||||
}
|
||||
if ($user->fill($request->except('profile_pic'))->save()) {
|
||||
if ($user->fill($request->except('profile_pic','active','role','is_delete','ban'))->save()) {
|
||||
return Redirect::route('profile')->with('success', 'Profile Updated sucessfully');
|
||||
}
|
||||
}
|
||||
|
||||
@@ -92,7 +92,7 @@ class GuestController extends Controller
|
||||
}
|
||||
$user->country_code = $request->country_code;
|
||||
}
|
||||
$user->fill($request->except('profile_pic', 'mobile'));
|
||||
$user->fill($request->except('profile_pic', 'mobile','active','role','is_delete','ban'));
|
||||
$user->gender = $request->input('gender');
|
||||
$user->save();
|
||||
if (Input::file('profile_pic')) {
|
||||
|
||||
@@ -341,11 +341,11 @@ class UserController extends Controller
|
||||
Input::file('profile_pic')->move($destinationPath, $fileName);
|
||||
$user->profile_pic = $fileName;
|
||||
} else {
|
||||
$user->fill($request->except('profile_pic', 'gender'))->save();
|
||||
$user->fill($request->except('profile_pic', 'gender','active','role','is_delete','ban'))->save();
|
||||
|
||||
return redirect('guest')->with('success', Lang::get('lang.profile_updated_sucessfully'));
|
||||
}
|
||||
if ($user->fill($request->except('profile_pic'))->save()) {
|
||||
if ($user->fill($request->except('profile_pic', 'active','role','is_delete','ban'))->save()) {
|
||||
return redirect('guest')->with('success', Lang::get('lang.sorry_not_proprofile_updated_sucessfullycessed'));
|
||||
}
|
||||
}
|
||||
|
||||
Reference in New Issue
Block a user