From d118ad7d141b7048168e821a90e7c5a4fb9b785d Mon Sep 17 00:00:00 2001
From: nyne <me@nyne.dev>
Date: Mon, 17 Nov 2025 21:01:06 +0800
Subject: [PATCH] feat: Add admin permission check for resource image updates

---
 server/service/resource.go | 8 ++++++--
 1 file changed, 6 insertions(+), 2 deletions(-)

diff --git a/server/service/resource.go b/server/service/resource.go
index e14bb95..c4265b1 100644
--- a/server/service/resource.go
+++ b/server/service/resource.go
@@ -872,8 +872,12 @@ func UpdateResourceImage(uid, resourceID, oldImageID, newImageID uint) error {
 		return err
 	}
 
-	if resource.UserID != uid {
-		// 可以在这里添加管理员权限检查
+	isAdmin, err := CheckUserIsAdmin(uid)
+	if err != nil {
+		return err
+	}
+
+	if resource.UserID != uid && !isAdmin {
 		return model.NewUnAuthorizedError("You don't have permission to update this resource")
 	}