From: Michael Rasmussen Date: Thu, 11 Jun 2015 16:04:45 +0000 (+0200) Subject: Enhance security X-Git-Url: http://git.datanom.net/qtadmin.git/commitdiff_plain/cdd7c88aefbc8b76b73397292800a0beaa8667b0?ds=sidebyside;hp=3039de292a8f75426d4b2c0ea70a00b75bda5b02 Enhance security --- diff --git a/lib/utils.inc.php b/lib/utils.inc.php index 0b9fe70..eec51cd 100644 --- a/lib/utils.inc.php +++ b/lib/utils.inc.php @@ -317,9 +317,12 @@ class Utils { public function authorized($recipient) { $authorized = false; + $this->log("authorized '$recipient'", 3); + if ($this->isAdmin() || $this->getUser() == $recipient) { $authorized = true; } + $this->log("authorized '".$this->getUser()."'", 3); return $authorized; }