mirrors/swt23w23
1
0
Fork 0
mirror of https://github.com/st-tu-dresden-praktikum/swt23w23 synced 2024-06-28 08:23:42 +02:00
Code Issues Packages Projects Releases Wiki Activity

Make only customers able to delete their own account

Browse source
This commit is contained in:
Denis Natusch 2023-11-15 01:44:12 +01:00 committed by Simon Bruder
parent cbb9710371
commit 9eeb25a281
Signed by: simon
GPG key ID: 8D3C82F9F309F8EC
2 changed files with 6 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

5
src/main/java/catering/users/User.java
View file

@ -5,6 +5,7 @@ import jakarta.persistence.EmbeddedId;
import jakarta.persistence.Entity;
import jakarta.persistence.OneToOne;
import org.salespointframework.useraccount.Role;
import org.salespointframework.useraccount.UserAccount;
import org.salespointframework.core.AbstractAggregateRoot;
@ -63,6 +64,10 @@ public class User extends AbstractAggregateRoot<UserIdentifier> {
return userAccount.isEnabled();
}
public boolean hasRole(String role) {
return userAccount.getRoles().stream().toList().contains(Role.of(role));
}
@Embeddable
public static final class UserIdentifier implements Identifier, Serializable {

2
src/main/resources/templates/profile.html
View file

@ -35,7 +35,7 @@
<div class="horizontal_center">
<button class="danger_zone" th:text="#{profile.edit}" type="submit"></button>
<a th:href="@{/profile/disable}">
<button class="danger_zone" th:text="#{profile.delete}" type="button"></button>
<button th:if="${user.hasRole('CUSTOMER')}" class="danger_zone" th:text="#{profile.delete}" type="button"></button>
</a>
</div>
</div>