fix: [Component:CRUD] Removed confusing `get` parameter

- It was confusing and using it could lead to unwanted consequences - It's clearer to implement the desired logic on controller's side
2022-03-01 14:02:26 +01:00 · 2022-03-01 14:02:26 +01:00 · 0fb03aae91
parent 3d0fdeba81
commit 0fb03aae91
2 changed files with 5 additions and 11 deletions
--- a/src/Controller/Component/CRUDComponent.php
+++ b/src/Controller/Component/CRUDComponent.php
@ -473,7 +473,6 @@ class CRUDComponent extends Component
            $params['contain'][] = 'Tags';
            $this->setAllTags();
        }
-        $params = isset($params['get']) ? $params['get'] : $params;
        if ($this->metaFieldsSupported()) {
            if (empty($params['contain'])) {
                $params['contain'] = [];
@ -485,9 +484,6 @@ class CRUDComponent extends Component
            }
        }
        $query = $this->Table->find()->where(['id' => $id]);
-        if (!empty($params['get'])) {
-            $query->select($params['get']);
-        }
        if (!empty($params['contain'])) {
            $query->contain($params['contain']);
        }
--- a/src/Controller/UsersController.php
+++ b/src/Controller/UsersController.php
@ -160,11 +160,6 @@ class UsersController extends AppController
        }

        $params = [
-            'get' => [
-                'fields' => [
-                    'id', 'individual_id', 'role_id', 'disabled', 'username'
-                ]
-            ],
            'removeEmpty' => [
                'password'
            ],
@ -172,12 +167,15 @@ class UsersController extends AppController
                'password', 'confirm_password'
            ]
        ];
-        if (!empty($this->ACL->getUser()['role']['perm_admin'])) {
+        if ($this->request->is(['get'])) {
+            $params['fields'] = array_merge($params['fields'], ['individual_id', 'role_id', 'disabled', 'username']);
+        }
+        if ($this->request->is(['post', 'put']) && !empty($this->ACL->getUser()['role']['perm_admin'])) {
            $params['fields'][] = 'individual_id';
            $params['fields'][] = 'role_id';
            $params['fields'][] = 'organisation_id';
            $params['fields'][] = 'disabled';
-        } else if (!empty($this->ACL->getUser()['role']['perm_org_admin'])) {
+        } else if ($this->request->is(['post', 'put']) && !empty($this->ACL->getUser()['role']['perm_org_admin'])) {
            $params['fields'][] = 'role_id';
            $params['fields'][] = 'disabled';
            if (!$currentUser['role']['perm_admin']) {