lucic71
/
war-news-aggregator
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

Drop authorization for admin on delete endpoint

This commit is contained in:
Lucian Popescu 2022-05-22 13:34:51 +03:00
parent 8b92ade9af
commit c5a877ce6b
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
mq_proxy/routes/index.js
View File

@ -103,7 +103,7 @@ router.post('/add_comment', auth.jwtCheck, function(req, res, next) {
router.get('/get_comments', auth.jwtCheck, function(req, res, next) {
});
router.delete('/delete_comment/:news_id/:comment_id', auth.jwtCheck, auth.adminScope, (req, res, next) => {
router.delete('/delete_comment/:news_id/:comment_id', auth.jwtCheck, (req, res, next) => {
if (!req.params) {
res.status(400).send({
message: "Query params can not be empty!"