fix #5441
This commit is contained in:
@@ -87,7 +87,13 @@ const internalUser = {
|
||||
}
|
||||
|
||||
return access
|
||||
.can("users:update", data.id)
|
||||
.can("users:permissions", data.id)
|
||||
.catch(() => {
|
||||
delete data.roles;
|
||||
})
|
||||
.then(() => {
|
||||
return access.can("users:update", data.id);
|
||||
})
|
||||
.then(() => {
|
||||
// Make sure that the user being updated doesn't change their email to another user that is already using it
|
||||
// 1. get user we want to update
|
||||
|
||||
Reference in New Issue
Block a user