From 77048675abf5fad43e8b5371c35e1c86b3be59c2 Mon Sep 17 00:00:00 2001
From: root <root@adnab.me>
Date: Fri, 31 Jan 2014 19:08:03 +0100
Subject: Privilege changes

---
 lib/notes/view.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'lib/notes/view.php')

diff --git a/lib/notes/view.php b/lib/notes/view.php
index f81b6d7..a6a014c 100644
--- a/lib/notes/view.php
+++ b/lib/notes/view.php
@@ -9,7 +9,7 @@ $note = mysql_fetch_assoc(sql(
 	"LEFT JOIN notes nb ON na.parent = nb.id LEFT JOIN account ON account.id = na.owner ".
 	"WHERE na.id = $noteid"
 ));
-assert_error($note && ($note['public'] != 0 || $note['owner'] == $user['id']),
+assert_error($note && ($note['public'] != 0 || $note['owner'] == $user['id'] || $user['priv'] >= $priv_admin),
 	"This note does not exist, or you are not allowed to see it.");
 
 $can_new = ($user['priv'] >= $apps['notes']['new'] && $user['id'] == $note['owner']);
-- 
cgit v1.2.3