Instances of models should not matter when checking permissions (#2186)

2025-02-18 12:33:22 +08:00 · 2020-05-27 12:22:08 -04:00 · 2020-05-27 12:22:08 -04:00 · 063df058b6
commit 063df058b6
parent 88090660d4
1 changed files with 1 additions and 1 deletions
--- a/framework/core/src/User/UserServiceProvider.php
+++ b/framework/core/src/User/UserServiceProvider.php
@ -103,7 +103,7 @@ class UserServiceProvider extends AbstractServiceProvider
            // If no policy covered this permission query, we will only grant
            // the permission if the actor's groups have it. Otherwise, we will
            // not allow the user to perform this action.
-            if ($actor->isAdmin() || (! $model && $actor->hasPermission($ability))) {
+            if ($actor->isAdmin() || $actor->hasPermission($ability)) {
                return true;
            }