Add restore file permission check [SCI-11042]

2025-10-06 11:57:16 +08:00 · 2024-09-18 13:36:49 +02:00 · 2024-09-18 13:36:49 +02:00 · 9aa43f4c36
commit 9aa43f4c36
parent 48fb68c07c
1 changed files with 1 additions and 1 deletions
--- a/app/controllers/assets_controller.rb
+++ b/app/controllers/assets_controller.rb
@ -18,7 +18,7 @@ class AssetsController < ApplicationController

  before_action :load_vars, except: :create_wopi_file
  before_action :check_read_permission, except: %i(edit destroy duplicate create_wopi_file toggle_view_mode)
-  before_action :check_manage_permission, only: %i(edit destroy duplicate rename toggle_view_mode)
+  before_action :check_manage_permission, only: %i(edit destroy duplicate rename toggle_view_mode restore_version)

  def file_preview
    editable = can_manage_asset?(@asset) && (@asset.repository_asset_value.blank? ||