From 4bc5cc8ccdb014e91aaae44b41b9db66dab1c247 Mon Sep 17 00:00:00 2001
From: evazion <noizave@gmail.com>
Date: Sun, 18 Feb 2018 13:08:53 -0600
Subject: [PATCH] bulk update requests: allow admins to edit forum topic/post
 ids (#3554).

---
 app/controllers/bulk_update_requests_controller.rb | 1 +
 app/views/bulk_update_requests/_form.html.erb      | 4 ++++
 2 files changed, 5 insertions(+)

diff --git a/app/controllers/bulk_update_requests_controller.rb b/app/controllers/bulk_update_requests_controller.rb
index 33e006081..9da1f65fa 100644
--- a/app/controllers/bulk_update_requests_controller.rb
+++ b/app/controllers/bulk_update_requests_controller.rb
@@ -60,6 +60,7 @@ class BulkUpdateRequestsController < ApplicationController
   def bur_params(context)
     permitted_params = %i[script skip_secondary_validations]
     permitted_params += %i[title reason forum_topic_id] if context == :create
+    permitted_params += %i[forum_topic_id forum_post_id] if context == :update && CurrentUser.is_admin?
 
     params.require(:bulk_update_request).permit(permitted_params)
   end
diff --git a/app/views/bulk_update_requests/_form.html.erb b/app/views/bulk_update_requests/_form.html.erb
index 098146469..9bb8c984e 100644
--- a/app/views/bulk_update_requests/_form.html.erb
+++ b/app/views/bulk_update_requests/_form.html.erb
@@ -37,7 +37,11 @@ category tag_name -> category_name
 
   <% if @bulk_update_request.new_record? %>
     <%= f.input :forum_topic_id, :hint => " (optional)" %>
+  <% elsif @bulk_update_request.persisted? && CurrentUser.is_admin? %>
+    <%= f.input :forum_topic_id %>
+    <%= f.input :forum_post_id %>
   <% end %>
+
   <%= f.button :submit, :value => "Submit", :data => { :disable_with => "Submitting..." } %>
   <%= dtext_preview_button "bulk_update_request", "reason" %>
 <% end %>