Update list authorization should be a boolean

code16 · Jun 27, 2024 · 219e9de · 219e9de
1 parent 40964ad
commit 219e9de
Showing 1 changed file with 3 additions and 3 deletions.
diff --git a/src/Http/Middleware/Api/AppendListAuthorizations.php b/src/Http/Middleware/Api/AppendListAuthorizations.php
@@ -29,7 +29,7 @@ protected function addAuthorizationsToJsonResponse(JsonResponse $jsonResponse)
 
         $authorizations = [
             'view' => [],
-            'update' => [],
+            'update' => false,
             'delete' => [],
             'create' => $this->sharpAuthorizationManager->isAllowed('create', $entityKey),
         ];
@@ -41,8 +41,8 @@ protected function addAuthorizationsToJsonResponse(JsonResponse $jsonResponse)
                 if ($this->sharpAuthorizationManager->isAllowed('view', $entityKey, $instanceId)) {
                     $authorizations['view'][] = $instanceId;
                 }
-                if ($this->sharpAuthorizationManager->isAllowed('update', $entityKey, $instanceId)) {
-                    $authorizations['update'][] = $instanceId;
+                if (!$authorizations['update'] && $this->sharpAuthorizationManager->isAllowed('update', $entityKey, $instanceId)) {
+                    $authorizations['update'] = true;
                 }
                 if ($this->sharpAuthorizationManager->isAllowed('delete', $entityKey, $instanceId)) {
                     $authorizations['delete'][] = $instanceId;