temporary fix

tollsimy · tollsimy · commit 6f4b07b696d0 · 2025-06-14T17:20:11.000+02:00
diff --git a/src/handlers/user.go b/src/handlers/user.go
@@ -121,11 +121,13 @@ func (uh *UserHandlers) UpdateUser(c *gin.Context) {
 }
 
 func (uh *UserHandlers) GetUserByUsername(c *gin.Context, username string) {
-	username, role, err := auth.GetPermissions(c)
+	_, role, err := auth.GetPermissions(c)
 	if err != nil {
 		return
 	}
-	if role != "superuser" {
+	// TODO: temporary fix for admin role, need to verify if user exists when admin
+	// creating user assigning role to zone, need to add an API for checking user existence
+	if role != "superuser" && role != "admin" {
 		c.JSON(http.StatusForbidden, gin.H{"error": "forbidden"})
 		return
 	}
@@ -144,7 +146,7 @@ func (uh *UserHandlers) GetUserByUsername(c *gin.Context, username string) {
 }
 
 func (uh *UserHandlers) UpdateUserByUsername(c *gin.Context, username string) {
-	username, role, err := auth.GetPermissions(c)
+	_, role, err := auth.GetPermissions(c)
 	if err != nil {
 		return
 	}
@@ -180,7 +182,7 @@ func (uh *UserHandlers) UpdateUserByUsername(c *gin.Context, username string) {
 }
 
 func (uh *UserHandlers) DeleteUserByUsername(c *gin.Context, username string) {
-	username, role, err := auth.GetPermissions(c)
+	_, role, err := auth.GetPermissions(c)
 	if err != nil {
 		return
 	}

Original file line number	Diff line number	Diff line change
`@@ -121,11 +121,13 @@ func (uh UserHandlers) UpdateUser(c gin.Context) {`
`121`	`121`	`}`
`122`	`122`
`123`	`123`	`func (uh UserHandlers) GetUserByUsername(c gin.Context, username string) {`
`124`		`- username, role, err := auth.GetPermissions(c)`
	`124`	`+ _, role, err := auth.GetPermissions(c)`
`125`	`125`	`if err != nil {`
`126`	`126`	`return`
`127`	`127`	`}`
`128`		`- if role != "superuser" {`
	`128`	`+ // TODO: temporary fix for admin role, need to verify if user exists when admin`
	`129`	`+ // creating user assigning role to zone, need to add an API for checking user existence`
	`130`	`+ if role != "superuser" && role != "admin" {`
`129`	`131`	`c.JSON(http.StatusForbidden, gin.H{"error": "forbidden"})`
`130`	`132`	`return`
`131`	`133`	`}`
`@@ -144,7 +146,7 @@ func (uh UserHandlers) GetUserByUsername(c gin.Context, username string) {`
`144`	`146`	`}`
`145`	`147`
`146`	`148`	`func (uh UserHandlers) UpdateUserByUsername(c gin.Context, username string) {`
`147`		`- username, role, err := auth.GetPermissions(c)`
	`149`	`+ _, role, err := auth.GetPermissions(c)`
`148`	`150`	`if err != nil {`
`149`	`151`	`return`
`150`	`152`	`}`
`@@ -180,7 +182,7 @@ func (uh UserHandlers) UpdateUserByUsername(c gin.Context, username string) {`
`180`	`182`	`}`
`181`	`183`
`182`	`184`	`func (uh UserHandlers) DeleteUserByUsername(c gin.Context, username string) {`
`183`		`- username, role, err := auth.GetPermissions(c)`
	`185`	`+ _, role, err := auth.GetPermissions(c)`
`184`	`186`	`if err != nil {`
`185`	`187`	`return`
`186`	`188`	`}`