Home Explore Help
Sign In
joker
/
packagist
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Browse Source

Fix invalid getUser->getId calls

Jordi Boggiano 5 years ago
parent
67317a13bb
commit
67f07855bd
1 changed files with 6 additions and 6 deletions
Split View Show Diff Stats
  1. 6 6
      src/Packagist/WebBundle/Controller/UserController.php

+ 6 - 6
src/Packagist/WebBundle/Controller/UserController.php
View File 

@@ -240,7 +240,7 @@ class UserController extends Controller
 
      */
 
     public function postFavoriteAction(Request $req, User $user)
 
     {
 
-        if ($user->getId() !== $this->getUser()->getId()) {
 
+        if (!$this->getUser() || $user->getId() !== $this->getUser()->getId()) {
 
             throw new AccessDeniedException('You can only change your own favorites');
 
         }
 
 
@@ -265,7 +265,7 @@ class UserController extends Controller
 
      */
 
     public function deleteFavoriteAction(User $user, Package $package)
 
     {
 
-        if ($user->getId() !== $this->getUser()->getId()) {
 
+        if (!$this->getUser() || $user->getId() !== $this->getUser()->getId()) {
 
             throw new AccessDeniedException('You can only change your own favorites');
 
         }
 
 
@@ -281,7 +281,7 @@ class UserController extends Controller
 
      */
 
     public function configureTwoFactorAuthAction(User $user)
 
     {
 
-        if (!($this->isGranted('ROLE_DISABLE_2FA') || $user->getId() === $this->getUser()->getId())) {
 
+        if (!($this->isGranted('ROLE_DISABLE_2FA') || ($this->getUser() && $user->getId() === $this->getUser()->getId()))) {
 
             throw new AccessDeniedException('You cannot change this user\'s two-factor authentication settings');
 
         }
 
 
@@ -299,7 +299,7 @@ class UserController extends Controller
 
      */
 
     public function enableTwoFactorAuthAction(Request $req, User $user)
 
     {
 
-        if ($user->getId() !== $this->getUser()->getId()) {
 
+        if (!$this->getUser() || $user->getId() !== $this->getUser()->getId()) {
 
             throw new AccessDeniedException('You cannot change this user\'s two-factor authentication settings');
 
         }
 
 
@@ -342,7 +342,7 @@ class UserController extends Controller
 
      */
 
     public function confirmTwoFactorAuthAction(User $user)
 
     {
 
-        if ($user->getId() !== $this->getUser()->getId()) {
 
+        if (!$this->getUser() || $user->getId() !== $this->getUser()->getId()) {
 
             throw new AccessDeniedException('You cannot change this user\'s two-factor authentication settings');
 
         }
 
 
@@ -362,7 +362,7 @@ class UserController extends Controller
 
      */
 
     public function disableTwoFactorAuthAction(Request $req, User $user)
 
     {
 
-        if (!($this->isGranted('ROLE_DISABLE_2FA') || $user->getId() === $this->getUser()->getId())) {
 
+        if (!($this->isGranted('ROLE_DISABLE_2FA') || ($this->getUser() && $user->getId() === $this->getUser()->getId()))) {
 
             throw new AccessDeniedException('You cannot change this user\'s two-factor authentication settings');
 
         }