Checking against admin metadata instead of $is_admin global in get_access_sql_suffix().

author brettp <brettp@36083f99-b078-4883-b0ff-0f9b5a30f544>

Thu, 10 Sep 2009 10:34:45 +0000 (10:34 +0000)

committer brettp <brettp@36083f99-b078-4883-b0ff-0f9b5a30f544>

Thu, 10 Sep 2009 10:34:45 +0000 (10:34 +0000)
author brettp <brettp@36083f99-b078-4883-b0ff-0f9b5a30f544>
Thu, 10 Sep 2009 10:34:45 +0000 (10:34 +0000)
committer brettp <brettp@36083f99-b078-4883-b0ff-0f9b5a30f544>
Thu, 10 Sep 2009 10:34:45 +0000 (10:34 +0000)
diff --git a/engine/lib/access.php b/engine/lib/access.php

index 7ba1970f5aedcc9cd19589002546c2699672a6da..5ccf238c8d59352e6e537b4f098f22c8ea06f6a4 100644 (file)
--- a/engine/lib/access.php
+++ b/engine/lib/access.php
@@ -228,10 +228,11 @@ END;
                         if (!$owner) $owner = -1;
                         
                         $access = get_access_list($owner);
+
+                       // do NOT use $is_admin global user here, since that only checks against
+                       // the current logged in user.
                         
-                       global $is_admin;
-                       
-                       if (isset($is_admin) && $is_admin == true) {
+                       if ($owner->admin == 'yes') {
                                 $sql = " (1 = 1) ";
                         } else if ($owner != -1) {                              
                                 $friends_bit = $table_prefix.'access_id = '.ACCESS_FRIENDS.' AND ';
author	brettp <brettp@36083f99-b078-4883-b0ff-0f9b5a30f544>
	Thu, 10 Sep 2009 10:34:45 +0000 (10:34 +0000)
committer	brettp <brettp@36083f99-b078-4883-b0ff-0f9b5a30f544>
	Thu, 10 Sep 2009 10:34:45 +0000 (10:34 +0000)