hyperzlib
/
nodebb
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

closes #2123

Browse Source
v1.18.x
barisusakli 11 years ago
parent 515e663f85
commit 2d5dc44ce5
1 changed files with 21 additions and 6 deletions
Show Stats Download Patch File Download Diff File

15
src/controllers/topics.js
Unescape Escape View File

@ -252,6 +252,20 @@ topicsController.get = function(req, res, next) {
topicsController.teaser = function(req, res, next) { topicsController.teaser = function(req, res, next) {
var tid = req.params.topic_id; var tid = req.params.topic_id;
var uid = req.user ? parseInt(req.user.uid, 10) : 0; var uid = req.user ? parseInt(req.user.uid, 10) : 0;
if (!utils.isNumber(tid)) {
return next(new Error('[[error:invalid-tid]]'));
}
privileges.topics.can('read', tid, uid, function(err, canRead) {
if (err) {
return next(err);
}
if (!canRead) {
return res.json(403, '[[error:no-priveges]]');
}
topics.getLatestUndeletedPid(tid, function(err, pid) { topics.getLatestUndeletedPid(tid, function(err, pid) {
if (err) { if (err) {
return next(err); return next(err);
@ -273,6 +287,7 @@ topicsController.teaser = function(req, res, next) {
res.json(posts[0]); res.json(posts[0]);
}); });
}); });
});
}; };
module.exports = topicsController; module.exports = topicsController;

Write Preview
Loading…
Cancel
Save