From 1c718eceb97fd23bd012b721209ccce3b226de04 Mon Sep 17 00:00:00 2001
From: Vincent Vanwaelscappel <vincent@cubedesigners.com>
Date: Fri, 20 Nov 2020 10:33:57 +0100
Subject: [PATCH] fix #4082 @1

---
 app/Http/Controllers/Admin/Operations/LogOperation.php | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/app/Http/Controllers/Admin/Operations/LogOperation.php b/app/Http/Controllers/Admin/Operations/LogOperation.php
index f3d727e3c..cdf8b4b8b 100644
--- a/app/Http/Controllers/Admin/Operations/LogOperation.php
+++ b/app/Http/Controllers/Admin/Operations/LogOperation.php
@@ -3,6 +3,8 @@
 
 namespace App\Http\Controllers\Admin\Operations;
 
+use App\Http\Middleware\Authenticate;
+use App\Http\Middleware\CheckIfAdmin;
 use App\Http\Middleware\VerifyCsrfToken;
 use App\Models\QuizAttempt;
 use DateTime;
@@ -13,7 +15,7 @@ trait LogOperation
 {
     protected function setupLogRoutes($segment, $routeName, $controller)
     {
-        Route::match(['post'], $segment . '/{id}/log', $controller . '@log')->withoutMiddleware([VerifyCsrfToken::class]);
+        Route::match(['post'], $segment . '/{id}/log', $controller . '@log')->withoutMiddleware([VerifyCsrfToken::class, Authenticate::class, CheckIfAdmin::class]);
     }
 
     protected function log($id)
-- 
2.39.5