holm/egroupware
1
1
Fork 0
forked from extern/egroupware
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Fix delete access bug

Browse Source
This commit is contained in:
nathangray 2019-05-09 13:49:45 -06:00
parent 2d6807f2b5
commit 7d07d00a0b
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
admin/inc/class.admin_categories.inc.php
View File

@ -639,7 +639,7 @@ class admin_categories
//error_log(__METHOD__."() \$_GET[account_id]=$_GET[account_id], \$_GET[contact_id]=$_GET[contact_id] content=".array2string($content));
}
$cats = new Categories('', Categories::id2name($content['cat_id'],'appname'));
if(!$cats->check_perms(Acl::DELETE, $content['cat_id']) || !self::$acl_delete ||
if((!$cats->check_perms(Acl::DELETE, $content['cat_id']) || !self::$acl_delete) &&
// Only admins can delete globals
$cats->is_global($content['cat_id']) && !$GLOBALS['egw_info']['user']['apps']['admin'])