From a8eaa7aace7ca18cb93569df267e5ebee49bb317 Mon Sep 17 00:00:00 2001
From: Seven Du <shiweidu@outlook.com>
Date: Mon, 26 Nov 2018 17:30:45 +0800
Subject: [PATCH] =?UTF-8?q?feat(=E5=8A=A8=E6=80=81):=20=E5=88=A0=E9=99=A4?=
 =?UTF-8?q?=E5=8A=A8=E6=80=81=E6=8E=A5=E5=8F=A3=E6=94=AF=E6=8C=81=E7=AE=A1?=
 =?UTF-8?q?=E7=90=86=E5=91=98=E5=89=8D=E5=8F=B0=E5=88=A0=E9=99=A4?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 packages/slimkit-plus-feed/src/API2/FeedController.php | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/packages/slimkit-plus-feed/src/API2/FeedController.php b/packages/slimkit-plus-feed/src/API2/FeedController.php
index 37cb07ac9..e99d3c751 100755
--- a/packages/slimkit-plus-feed/src/API2/FeedController.php
+++ b/packages/slimkit-plus-feed/src/API2/FeedController.php
@@ -724,8 +724,7 @@ public function destroy(
         FeedModel $feed
     ) {
         $user = $request->user();
-
-        if ($user->id !== $feed->user_id) {
+        if ($user->id !== $feed->user_id || ! $user->ability('[feed] Delete Feed')) {
             return $response->json(['message' => '你没有权限删除动态'])->setStatusCode(403);
         }
         $feed->getConnection()->transaction(function () use ($feed, $user) {