add permission check

Signed-off-by: samin-z <samin.zavarkesh@gmail.com>

Author: samin-z

lib/Controller/ConfigController.php

@@ -9,6 +9,7 @@
 use OCA\Deck\Db\Acl;
 use OCA\Deck\Db\BoardMapper;
 use OCA\Deck\Service\ConfigService;
+use OCA\Deck\Service\PermissionService;
 use OCP\AppFramework\Http\DataResponse;
 use OCP\AppFramework\Http\NotFoundResponse;
 use OCP\AppFramework\OCSController;
@@ -38,6 +39,14 @@ public function get(): DataResponse {
 	 * @NoAdminRequired
 	 */
 	public function setValue(string $key, $value) {
+		if (preg_match('/^board:(\d+):/', $key, $matches) === 1) {
+			$this->permissionService->checkPermission(
+				$this->boardMapper,
+				(int)$matches[1],
+				Acl::PERMISSION_EDIT,
+			);
+		}
+
 		$result = $this->configService->set($key, $value);
 		if ($result === null) {
 			return new NotFoundResponse();