Do not crash if some apis are only for admins

2019-05-14 16:41:08 +02:00
parent 84473dc10d
commit 2039a143ac
2 changed files with 6 additions and 0 deletions
--- a/src/js/client.js
+++ b/src/js/client.js
@@ -556,6 +556,8 @@ angular.module('Application').service('Client', ['$http', '$interval', 'md5', 'N
    };

    Client.prototype.getUpdateInfo = function (callback) {
+        if (!this._userInfo.admin) return callback(new Error('Not allowed'));
+
        get('/api/v1/cloudron/update', null, function (error, data, status) {
            if (error) return callback(error);
            if (status !== 200) return callback(new ClientError(status, data));
@@ -2005,6 +2007,8 @@ angular.module('Application').service('Client', ['$http', '$interval', 'md5', 'N
    };

    Client.prototype.getSubscription = function (callback) {
+        if (!this._userInfo.admin) return callback(new Error('Not allowed'));
+
        get('/api/v1/appstore/subscription', null, function (error, data, status) {
            if (error) return callback(error);
            if (status !== 200) return callback(new ClientError(status, data));