Closed pazoozoo42 closed 1 year ago
I think we should disable it in the corresponding API controller (just return status code when requesting user doesn't match requested user).
This is better, because:
After some consideration, it's better to disable this page in the View: https://github.com/spaceshelter/orbitar/blob/d520df112c846aea6044e231cf953794d9b378b1/frontend/src/Pages/UserPage.tsx#L34
e.g. https://stage.orbitar.space/u/orbitar/settings https://stage.orbitar.space/u/orbitar/invites1
Should have identical result.
API endpoints patching is not needed