RouteMeHome/get_my
1
0
Fork 0
mirror of https://gitlab.com/bmcgonag/get_my.git synced 2026-03-27 08:18:50 +00:00
Code Issues 1 Projects Releases Packages Wiki Activity Actions

fixed an issue of filtering who can delete products, and added one set of permissions to view manage.

Browse source
This commit is contained in:
Brian McGonagill 2022-08-25 20:15:03 -05:00
parent 7641b17e6f
commit 0690e70ebe
3 changed files with 9 additions and 12 deletions
Download patch file Download diff file Expand all files Collapse all files

4
client/AdminMgmt/ProductMgmt/prodMgmtTbl.html
View file

@ -27,8 +27,8 @@
<td>{{prodStore}}</td> <td>{{prodStore}}</td>
<td>{{prodLocation}}</td> <td>{{prodLocation}}</td>
<td> <td>
<i class="material-icons clickable deleteProduct tooltipped" data-position="top" data-tooltip="Delete Product">delete</i> <i class="material-icons clickable deleteProduct">delete</i>
<i class="material-icons clickable editProduct tooltipped" data-position="top" data-tooltip="Edit Product">edit</i> <i class="material-icons clickable editProduct">edit</i>
</td> </td>
</tr> </tr>
{{/each}} {{/each}}

4
client/General/headerBar.html
View file

@ -9,7 +9,9 @@
<ul class="right hide-on-med-and-down"> <ul class="right hide-on-med-and-down">
{{#if currentUser}} {{#if currentUser}}
<li><a href="#" id="mylists" class="navBtn">My Lists</a></li> <li><a href="#" id="mylists" class="navBtn">My Lists</a></li>
{{#if isInRole 'systemadmin'}}
<li><a href="#" id="manage" class="navBtn">Manage</a></li> <li><a href="#" id="manage" class="navBtn">Manage</a></li>
{{/if}}
<li class="signOut"><a href="#" class="signOut">Log Out</a></li> <li class="signOut"><a href="#" class="signOut">Log Out</a></li>
{{else}} {{else}}
<li><a href="#!" id="login" class="navBtn">Login</a></li> <li><a href="#!" id="login" class="navBtn">Login</a></li>
@ -20,7 +22,9 @@
<ul class="sidenav" id="mobile-demo"> <ul class="sidenav" id="mobile-demo">
{{#if currentUser}} {{#if currentUser}}
<li><a href="#!" id="mylists" class="navBtn">My Lists</a></li> <li><a href="#!" id="mylists" class="navBtn">My Lists</a></li>
{{#if isInRole 'systemadmin'}}
<li><a href="#!" id="manage" class="navBtn">Manage</a></li> <li><a href="#!" id="manage" class="navBtn">Manage</a></li>
{{/if}}
<li><a href="#!" class="signOut">Sign Out</a></li> <li><a href="#!" class="signOut">Sign Out</a></li>
{{else}} {{else}}
<li><a href="#!" id="login" class="navBtn">Login</a></li> <li><a href="#!" id="login" class="navBtn">Login</a></li>

7
imports/api/products.js
View file

@ -57,13 +57,6 @@ Meteor.methods({
throw new Meteor.Error('You are not allowed to delete products. Make sure you are logged in with valid user credentials.'); throw new Meteor.Error('You are not allowed to delete products. Make sure you are logged in with valid user credentials.');
} }
let prodInfo = Products.findOne({ _id: prodId });
let myId = this.userId;
if (myId == prodInfo.prodOwner) {
return Products.remove({ _id: prodId }); return Products.remove({ _id: prodId });
} else {
console.log("User not allowed to delete this product. Not the owner!");
return("Not Allowed!");
}
} }
}); });