Admins only get passwords.

2020-12-30 12:24:14 -05:00
parent 46f9df6dbd
commit d1122bab29
1 changed files with 6 additions and 2 deletions
--- a/auth.go
+++ b/auth.go
@ -24,8 +24,12 @@ func reqPass(w http.ResponseWriter, r *http.Request) {
 	if err == nil {
 		for _, m := range g {
 			if strings.ToUpper(m.Nick) == strings.ToUpper(username) {
-				userID = m.User.ID
-				log.LogInfo("User ID found for %+v as %+v", username, userID)
+				for _, r := range m.Roles {
+					if r == config.AdminRole {
+						userID = m.User.ID
+						log.LogInfo("User ID found for %+v as %+v", username, userID)
+					}
+				}
 			}
 		}
 	} else {