From 77048675abf5fad43e8b5371c35e1c86b3be59c2 Mon Sep 17 00:00:00 2001 From: root Date: Fri, 31 Jan 2014 19:08:03 +0100 Subject: Privilege changes --- lib/notes/edit.php | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) (limited to 'lib/notes/edit.php') diff --git a/lib/notes/edit.php b/lib/notes/edit.php index 17f1573..ec479b0 100644 --- a/lib/notes/edit.php +++ b/lib/notes/edit.php @@ -11,7 +11,7 @@ $note = mysql_fetch_assoc(sql( "LEFT JOIN notes nb ON na.parent = nb.id LEFT JOIN account ON account.id = na.owner ". "WHERE na.id = $noteid" )); -assert_error($note && $note['owner'] == $user['id'], +assert_error($note && ($note['owner'] == $user['id'] || $user['priv'] >= $priv_admin), "This note does not exist, or you are not allowed to edit it."); $note_title = $note['title']; -- cgit v1.2.3