Fix logic error in verifyCanViewAndEdit

project from db was called `org` passed `org.Id` when needed to pass `project.OrganizationId`
sillsdev · Jan 27, 2025 · 95804ca · 95804ca
1 parent e4083a9
commit 95804ca
Showing 1 changed file with 5 additions and 4 deletions.
diff --git a/source/SIL.AppBuilder.Portal/src/lib/projects/common.server.ts b/source/SIL.AppBuilder.Portal/src/lib/projects/common.server.ts
@@ -7,17 +7,18 @@ import { canModifyProject } from './common';
 export async function verifyCanViewAndEdit(user: Session, projectId: number) {
   // Editing is allowed if the user owns the project, or if the user is an organization
   // admin for the project's organization, or if the user is a super admin
-  const org = await prisma.projects.findUnique({
+  const project = await prisma.projects.findUnique({
     where: {
       Id: projectId
     },
     select: {
       Id: true,
-      OwnerId: true
+      OwnerId: true,
+      OrganizationId: true
     }
   });
-  if (!org) return false;
-  return canModifyProject(user, org.OwnerId, org.Id);
+  if (!project) return false;
+  return canModifyProject(user, project.OwnerId, project.OrganizationId);
 }
 
 export function projectFilter(args: {