From 38899c9c0b684afaa4e3a0c590aeca716201e2a2 Mon Sep 17 00:00:00 2001 From: OldHawk Date: Tue, 13 Jun 2017 14:32:48 +0800 Subject: [PATCH] fix(torrents): torrent policy access check --- modules/torrents/server/policies/torrents.server.policy.js | 5 ----- 1 file changed, 5 deletions(-) diff --git a/modules/torrents/server/policies/torrents.server.policy.js b/modules/torrents/server/policies/torrents.server.policy.js index 250bafc8..9035f784 100644 --- a/modules/torrents/server/policies/torrents.server.policy.js +++ b/modules/torrents/server/policies/torrents.server.policy.js @@ -80,11 +80,6 @@ exports.invokeRolesPolicies = function () { exports.isAllowed = function (req, res, next) { var roles = (req.user) ? req.user.roles : ['guest']; - // If an article is being processed and the current user created it then allow any manipulation - if (req.article && req.user && req.article.user && req.article.user.id === req.user.id) { - return next(); - } - // Check for user roles acl.areAnyRolesAllowed(roles, req.route.path, req.method.toLowerCase(), function (err, isAllowed) { if (err) {