Module method names are case insensitive

author: Greg Roach <greg@subaqua.co.uk> 2026-04-27 19:49:40 +0100
committer: Greg Roach <greg@subaqua.co.uk> 2026-04-27 20:25:24 +0100
commit: e90f21dce4be97d1b89400073b730e9d63e25a24 (patch)
tree: 41794ecb67559071b14a6bece565446297597087
parent: a8d95ceb87651e17ade08efee7a3b8b35001603b (diff)
download: webtrees-e90f21dce4be97d1b89400073b730e9d63e25a24.tar.gz
webtrees-e90f21dce4be97d1b89400073b730e9d63e25a24.tar.bz2
webtrees-e90f21dce4be97d1b89400073b730e9d63e25a24.zip
1 files changed, 1 insertions, 1 deletions
diff --git a/app/Http/RequestHandlers/ModuleAction.php b/app/Http/RequestHandlers/ModuleAction.php
index 3fdceed9e5..6a6c3125be 100644
--- a/app/Http/RequestHandlers/ModuleAction.php
+++ b/app/Http/RequestHandlers/ModuleAction.php
@@ -72,7 +72,7 @@ final class ModuleAction implements RequestHandlerInterface
         $method = $verb . $action . 'Action';
 
         // Actions with "Admin" in the name are for administrators only.
-        if (str_contains($action, 'Admin') && !Auth::isAdmin($user)) {
+        if (str_contains(strtolower($action), 'admin') && !Auth::isAdmin($user)) {
             throw new HttpAccessDeniedException('Admin only action');
         }
author	Greg Roach <greg@subaqua.co.uk>	2026-04-27 19:49:40 +0100
committer	Greg Roach <greg@subaqua.co.uk>	2026-04-27 20:25:24 +0100
commit	e90f21dce4be97d1b89400073b730e9d63e25a24 (patch)
tree	41794ecb67559071b14a6bece565446297597087
parent	a8d95ceb87651e17ade08efee7a3b8b35001603b (diff)
download	webtrees-e90f21dce4be97d1b89400073b730e9d63e25a24.tar.gz webtrees-e90f21dce4be97d1b89400073b730e9d63e25a24.tar.bz2 webtrees-e90f21dce4be97d1b89400073b730e9d63e25a24.zip