mirror of
https://github.com/dani-garcia/vaultwarden.git
synced 2024-11-15 17:57:12 +00:00
Fix the logic in user edditing
This commit is contained in:
parent
db111ae2a0
commit
c58682e3fb
@ -476,8 +476,8 @@ fn edit_user(org_id: String, org_user_id: String, data: JsonUpcase<EditUserData>
|
||||
};
|
||||
|
||||
if new_type != user_to_edit.type_ as i32 && (
|
||||
user_to_edit.type_ >= UserOrgType::Admin as i32 ||
|
||||
new_type >= UserOrgType::Admin as i32
|
||||
user_to_edit.type_ <= UserOrgType::Admin as i32 ||
|
||||
new_type <= UserOrgType::Admin as i32
|
||||
) &&
|
||||
headers.org_user_type != UserOrgType::Owner as i32 {
|
||||
err!("Only Owners can grant and remove Admin or Owner privileges")
|
||||
|
Loading…
Reference in New Issue
Block a user