Allow 'SUPER_USER' admins to access API.

botim · Apr 1, 2019 · dd0e257 · dd0e257
1 parent 57ddf9d
commit dd0e257
Showing 1 changed file with 3 additions and 0 deletions.
diff --git a/src/controllers/user-statuses-controller.ts b/src/controllers/user-statuses-controller.ts
@@ -86,6 +86,7 @@ export class UserStatusesController extends Controller {
    */
   @Response(501, 'Server error')
   @Response(401, 'Authentication fail')
+  @Security('SUPER_ADMIN')
   @Security('ADMIN')
   @Get('statuses')
   public async getUserStatuses(
@@ -107,6 +108,7 @@ export class UserStatusesController extends Controller {
    */
   @Response(501, 'Server error')
   @Response(401, 'Authentication fail')
+  @Security('SUPER_ADMIN')
   @Security('ADMIN')
   @Get('statuses/{platform}/{userId}')
   public async getUserReports(platform: Platform, userId: string): Promise<UserStatus[]> {
@@ -121,6 +123,7 @@ export class UserStatusesController extends Controller {
    */
   @Response(501, 'Server error')
   @Response(401, 'Authentication fail')
+  @Security('SUPER_ADMIN')
   @Security('ADMIN')
   @Put('statuses/{id}')
   public async updateUser(