Hamza/musadaq-saas
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Update: 2026-05-04 01:52:13

Browse Source
This commit is contained in:
Hamza-Ayed
2026-05-04 01:52:13 +03:00
parent 08106ac4ea
commit 282f33ca3a
4 changed files with 89 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

7
app/modules_app/invoices/upload.php
View File

@@ -14,6 +14,13 @@ $allowedRoles = ['admin', 'accountant', 'employee'];
if (!in_array($decoded['role'], $allowedRoles)) {
json_error('Unauthorized to upload invoices', 403);
}
// 2. Validate Request
$data = input();
$companyId = $data['company_id'] ?? null;
if (!$companyId || !isset($_FILES['invoice'])) {
json_error('Company ID and invoice file are required', 422);
}
// 3. Permission Check
$tenantId = $decoded['tenant_id'];