mirrors/btcpayserver
1
0
Fork 0
mirror of https://github.com/btcpayserver/btcpayserver.git synced 2025-03-03 17:36:59 +01:00
Code Issues Projects Releases Packages Wiki Activity

Remove CanDeleteUser constraint from "/api/v1/users/{userId}" endpoint

Browse source
This commit is contained in:
Umar Bolatov 2021-04-07 20:48:38 -07:00
parent d9935ada9d
commit 9fc2d2b76b
No known key found for this signature in database
GPG key ID: 2C1F9AEB371D2A28
1 changed files with 1 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
BTCPayServer/Controllers/GreenField/UsersController.cs
View file

@ -197,7 +197,7 @@ namespace BTCPayServer.Controllers.GreenField
}
[HttpDelete("~/api/v1/users/{userId}")]
[Authorize(Policy = Policies.CanDeleteUser, AuthenticationSchemes = AuthenticationSchemes.GreenfieldAPIKeys)]
[Authorize(AuthenticationSchemes = AuthenticationSchemes.GreenfieldAPIKeys)]
public async Task<ActionResult<ApplicationUserData>> DeleteUser(string userId)
{
// Only admins should be allowed to delete users