coop-cloud-chaos-patchs/outline
Archived
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

fix: Handle private attachments without documentId (migration process)

Browse Source
This commit is contained in:
Tom Moor
2020-02-17 09:38:34 -08:00
parent 3b0b37628e
commit 902e7a4772
1 changed files with 6 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

10
server/api/attachments.js
View File

@ -17,10 +17,12 @@ router.post('attachments.redirect', auth(), async ctx => {
const attachment = await Attachment.findByPk(id);
if (attachment.isPrivate) {
const document = await Document.findByPk(attachment.documentId, {
userId: user.id,
});
authorize(user, 'read', document);
if (attachment.documentId) {
const document = await Document.findByPk(attachment.documentId, {
userId: user.id,
});
authorize(user, 'read', document);
}
const accessUrl = await getSignedImageUrl(attachment.key);
ctx.redirect(accessUrl);