Possible fix for #879

2020-05-28 01:05:23 +02:00 · 2020-05-28 01:05:23 +02:00 · dad2618739
commit dad2618739
parent ebfbe30aa0
2 changed files with 2 additions and 2 deletions
--- a/client/src/Home.js
+++ b/client/src/Home.js
@ -20,7 +20,7 @@ export default class List extends Component {
        return (
            <div>
                <h2>{t('Mailtrain 2 beta')}</h2>
-                <div>{t('Build') + ' 2019-01-12-1254'}</div>
+                <div>{t('Build') + ' 2020-05-28-0102'}</div>
            </div>
        );
    }
--- a/server/models/users.js
+++ b/server/models/users.js
@ -47,7 +47,7 @@ async function _getByTx(tx, context, key, value, extraColumns = []) {

    // Note that getRestrictedAccessToken relies to this check to see whether a user may impersonate another. If "manageUsers" here were to be changed to something like "viewUsers", then
    // a corresponding check has to be added to getRestrictedAccessToken
-    await shares.enforceEntityPermission(context, 'namespace', user.namespace, 'manageUsers');
+    await shares.enforceEntityPermissionTx(tx, context, 'namespace', user.namespace, 'manageUsers');

    return user;
 }