saurabh
/
adbanner-test
4
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

added security fix for edit

This commit is contained in:
Harry Bomrah 2014-07-31 17:42:11 +08:00
parent dd60393057
commit 94855f8900
1 changed files with 5 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
app/controllers/admin/ad_images_controller.rb
View File

@ -11,8 +11,12 @@ class Admin::AdImagesController < Admin::AdBannersController
def edit
@ad_image = AdImage.find(params[:id])
if can_edit_or_delete?(@ad_image)
@ad_banners = Banner.all
@tags = @module_app.tags || []
@tags = @module_app.tags || []
else
render_401
end
end
def update