Update: findAll can only be retrieve by a Advertiser or above
This commit is contained in:
parent
e52d756d3b
commit
4a64e01693
1 changed files with 2 additions and 2 deletions
|
|
@ -48,7 +48,7 @@ exports.create = (req, res) => {
|
||||||
|
|
||||||
// Retrieve all Ad from id if admin or session id
|
// Retrieve all Ad from id if admin or session id
|
||||||
exports.findAll = (req, res) => {
|
exports.findAll = (req, res) => {
|
||||||
const token = checkLogin(req, res);
|
const token = checkLogin(req, res, roles.Advertiser);
|
||||||
if(token){
|
if(token){
|
||||||
let query = {};
|
let query = {};
|
||||||
let condition;
|
let condition;
|
||||||
|
|
@ -229,7 +229,7 @@ exports.delete = (req, res) => {
|
||||||
if(token && typeof req.params.id !== 'undefined') {
|
if(token && typeof req.params.id !== 'undefined') {
|
||||||
const id = req.params.id;
|
const id = req.params.id;
|
||||||
if(id && ObjectId.isValid(id)){
|
if(id && ObjectId.isValid(id)){
|
||||||
Ad.findByIdAndUpdate(id, {isActive: false}, {useFindAndModify: false})
|
Ad.updateOne({_id: id, userId: token.id}, {isActive: false}, {useFindAndModify: false})
|
||||||
.then(data => {
|
.then(data => {
|
||||||
if(data) {
|
if(data) {
|
||||||
return sendMessage(res, 45, {message: `Ad ${id} was successfully deleted.`}, token);
|
return sendMessage(res, 45, {message: `Ad ${id} was successfully deleted.`}, token);
|
||||||
|
|
|
||||||
Reference in a new issue