QT/InvoiceShelf
1
0
Fork 0
mirror of https://github.com/InvoiceShelf/InvoiceShelf.git synced 2026-04-08 14:04:50 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
f17c7be5f02c01d2ee4cf689257e025bb6753fa1
InvoiceShelf/app/Http/Controllers/V1/Admin/Company
History
Darko Gjorgjijoski 1adebe85b9 Scope all bulk deletes to current company and fix inverted ownership transfer (#605) 
Bulk delete: filter IDs through whereCompany() before deleting in all
controllers (Invoices, Payments, Items, Expenses, Estimates, Recurring
Invoices). Previously, any user could delete records from other companies
by providing cross-company IDs.

Transfer ownership: fix inverted hasCompany() check that allowed
transferring company ownership to users who do NOT belong to the company,
while blocking users who DO belong.

Ref #567
2026-04-03 14:16:42 +02:00
..
CompaniesController.php
Scope all bulk deletes to current company and fix inverted ownership transfer (#605)
2026-04-03 14:16:42 +02:00
CompanyController.php
Pint
2026-03-21 18:59:53 +01:00