Skip to content

Commit 989de47

Browse files
ssddanbrownssddanbrown
committed
Fixed hidden book children for admins on upgrade
1 parent 8f19231 commit 989de47

File tree

1 file changed

+15
-10
lines changed

1 file changed

+15
-10
lines changed

app/Services/PermissionService.php

Lines changed: 15 additions & 10 deletions
Original file line numberDiff line numberDiff line change
@@ -486,17 +486,22 @@ public function bookChildrenQuery($book_id, $filterDrafts = false) {
486486
}
487487
});
488488
$chapterSelect = $this->db->table('chapters')->selectRaw("'BookStack\\\\Chapter' as entity_type, id, slug, name, '' as text, description, book_id, priority, 0 as chapter_id, 0 as draft")->where('book_id', '=', $book_id);
489-
$whereQuery = $this->db->table('joint_permissions as jp')->selectRaw('COUNT(*)')
490-
->whereRaw('jp.entity_id=U.id')->whereRaw('jp.entity_type=U.entity_type')
491-
->where('jp.action', '=', 'view')->whereIn('jp.role_id', $this->getRoles())
492-
->where(function($query) {
493-
$query->where('jp.has_permission', '=', 1)->orWhere(function($query) {
494-
$query->where('jp.has_permission_own', '=', 1)->where('jp.created_by', '=', $this->currentUser()->id);
495-
});
496-
});
497489
$query = $this->db->query()->select('*')->from($this->db->raw("({$pageSelect->toSql()} UNION {$chapterSelect->toSql()}) AS U"))
498-
->mergeBindings($pageSelect)->mergeBindings($chapterSelect)
499-
->whereRaw("({$whereQuery->toSql()}) > 0")->mergeBindings($whereQuery)->orderBy('draft', 'desc')->orderBy('priority', 'asc');
490+
->mergeBindings($pageSelect)->mergeBindings($chapterSelect);
491+
492+
if (!$this->isAdmin()) {
493+
$whereQuery = $this->db->table('joint_permissions as jp')->selectRaw('COUNT(*)')
494+
->whereRaw('jp.entity_id=U.id')->whereRaw('jp.entity_type=U.entity_type')
495+
->where('jp.action', '=', 'view')->whereIn('jp.role_id', $this->getRoles())
496+
->where(function($query) {
497+
$query->where('jp.has_permission', '=', 1)->orWhere(function($query) {
498+
$query->where('jp.has_permission_own', '=', 1)->where('jp.created_by', '=', $this->currentUser()->id);
499+
});
500+
});
501+
$query->whereRaw("({$whereQuery->toSql()}) > 0")->mergeBindings($whereQuery);
502+
}
503+
504+
$query->orderBy('draft', 'desc')->orderBy('priority', 'asc');
500505
$this->clean();
501506
return $query;
502507
}

0 commit comments

Comments
 (0)