avoid accessing api_keys page if not allowed for loggedin user

Signed-off-by: Michael Kaufmann <d00p@froxlor.org>
2022-06-30 14:53:58 +02:00
parent d4e94c0390
commit c8183fbbbf
2 changed files with 11 additions and 1 deletions
--- a/templates/Froxlor/userarea.html.twig
+++ b/templates/Froxlor/userarea.html.twig
@@ -79,7 +79,7 @@
 									<a class="dropdown-item" href="{{ linker({'section': 'index', 'page': 'change_theme'}) }}"><i class="fa-solid fa-image"></i> {{ lng('panel.theme') }}</a>
 								</li>
 							{% endif %}
-							{% if get_setting('api.enabled') == 1 %}
+							{% if get_setting('api.enabled') == 1 and userinfo.api_allowed == 1 %}
 								<li><hr class="dropdown-divider"></li>
 								<li>
 									<a class="dropdown-item" href="{{ linker({'section': 'index', 'page': 'apikeys'}) }}"><i class="fa-solid fa-key"></i> {{ lng('menue.main.apikeys') }}</a>