From d73196594d30de32bec2d2b61d9631ce404d1df5 Mon Sep 17 00:00:00 2001
From: Tom Moor <tom.moor@gmail.com>
Date: Sun, 18 Feb 2018 13:10:17 -0800
Subject: [PATCH] Correct ApiKey delete auth check

---
 server/api/apiKeys.js | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/server/api/apiKeys.js b/server/api/apiKeys.js
index 3de47baad..1dd33ba41 100644
--- a/server/api/apiKeys.js
+++ b/server/api/apiKeys.js
@@ -53,7 +53,7 @@ router.post('apiKeys.delete', auth(), async ctx => {
 
   const user = ctx.state.user;
   const key = await ApiKey.findById(id);
-  authorize(user, 'delete', ApiKey);
+  authorize(user, 'delete', key);
 
   try {
     await key.destroy();