feat: remote user deletion logic, #12611

2025-11-09 15:35:47 +01:00 · 2024-06-07 12:55:52 -04:00
parent 3dca79dd3b
commit 539300ffec
5 changed files with 38 additions and 7 deletions
--- a/src/api/users.js
+++ b/src/api/users.js
@@ -515,7 +515,7 @@ async function isPrivilegedOrSelfAndPasswordMatch(caller, data) {

 async function processDeletion({ uid, method, password, caller }) {
 	const isTargetAdmin = await user.isAdministrator(uid);
-	const isSelf = parseInt(uid, 10) === parseInt(caller.uid, 10);
+	const isSelf = String(uid) === String(caller.uid);
 	const hasAdminPrivilege = await privileges.admin.can('admin:users', caller.uid);

 	if (isSelf && meta.config.allowAccountDelete !== 1) {