Ruben Backx · ac95646d
--- a/src/main/java/nl/tudelft/submit/controller/EditionController.java

+ 3

− 2

View file @ ac95646d

Open in Web IDE
+++ b/src/main/java/nl/tudelft/submit/controller/EditionController.java

+ 3

− 2

View file @ ac95646d

Open in Web IDE
 @@ -417,7 +417,7 @@ public class EditionController {
 	 */
 	@Validated
 	@PostMapping("/{id}/members/add")
-	@PreAuthorize("@authorizationService.canAddMemberToEdition(#id, #user.getUsername())")
+	@PreAuthorize("@authorizationService.canAddMemberToEdition(#id, #user.username, #user.role)")
 	public String addMember(@PathVariable Long id, @ModelAttribute("addMember") AddMemberDTO user) {
 		Long personId = personService.getPersonByUsername(user.getUsername()).getId();

 @@ -556,7 +556,8 @@ public class EditionController {
 			@ModelAttribute("participantImport") EditionParticipantImportDTO participantImport)
 			throws IOException, CsvValidationException {
 		editionService.importParticipants(id,
-				new InputStreamReader(file.getInputStream(), StandardCharsets.UTF_8), participantImport);
+				new InputStreamReader(file.getInputStream(), StandardCharsets.UTF_8), participantImport,
+				authorizationService.getRoleInEdition(id) == RoleDetailsDTO.TypeEnum.TEACHER);
 		return "redirect:/edition/{id}/{fromPage}";
 	}