bitPickups/friendica_2021.01_tupambae_shared_hosting
1
0
Fork 0
Code Issues Pull requests Releases Wiki Activity

Get rid of "api_user()" function

Browse source
This commit is contained in:
Michael 2021-06-08 20:41:46 +00:00
parent 8bf5dd187b
commit e4be1e0cd5
1 changed files with 8 additions and 16 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

24
src/Module/BaseApi.php
View file

@ -61,52 +61,44 @@ class BaseApi extends BaseModule
public static function delete(array $parameters = [])
{
if (!api_user()) {
throw new HTTPException\UnauthorizedException(DI::l10n()->t('Permission denied.'));
}
self::checkAllowedScope(self::SCOPE_WRITE);
$a = DI::app();
if (!empty($a->user['uid']) && $a->user['uid'] != api_user()) {
if (!empty($a->user['uid']) && $a->user['uid'] != self::getCurrentUserID()) {
throw new HTTPException\ForbiddenException(DI::l10n()->t('Permission denied.'));
}
}
public static function patch(array $parameters = [])
{
if (!api_user()) {
throw new HTTPException\UnauthorizedException(DI::l10n()->t('Permission denied.'));
}
self::checkAllowedScope(self::SCOPE_WRITE);
$a = DI::app();
if (!empty($a->user['uid']) && $a->user['uid'] != api_user()) {
if (!empty($a->user['uid']) && $a->user['uid'] != self::getCurrentUserID()) {
throw new HTTPException\ForbiddenException(DI::l10n()->t('Permission denied.'));
}
}
public static function post(array $parameters = [])
{
if (!api_user()) {
throw new HTTPException\UnauthorizedException(DI::l10n()->t('Permission denied.'));
}
self::checkAllowedScope(self::SCOPE_WRITE);
$a = DI::app();
if (!empty($a->user['uid']) && $a->user['uid'] != api_user()) {
if (!empty($a->user['uid']) && $a->user['uid'] != self::getCurrentUserID()) {
throw new HTTPException\ForbiddenException(DI::l10n()->t('Permission denied.'));
}
}
public static function put(array $parameters = [])
{
if (!api_user()) {
throw new HTTPException\UnauthorizedException(DI::l10n()->t('Permission denied.'));
}
self::checkAllowedScope(self::SCOPE_WRITE);
$a = DI::app();
if (!empty($a->user['uid']) && $a->user['uid'] != api_user()) {
if (!empty($a->user['uid']) && $a->user['uid'] != self::getCurrentUserID()) {
throw new HTTPException\ForbiddenException(DI::l10n()->t('Permission denied.'));
}
}