rydurham
commented
11 years ago The Sentry::check() call is there, it is just usually a line or two before the hasAccess() call.
Closed erfanimani closed 11 years ago
rydurham
commented
11 years ago The Sentry::check() call is there, it is just usually a line or two before the hasAccess() call.
In app/controllers/UserController.php - and a couple of other places -
if ( $currentUser->hasAccess('admin') || $currentUser->getId() == $id)should become
if ( Sentry::check() && ( $currentUser->hasAccess('admin') || $currentUser->getId() == $id))according to http://docs.cartalyst.com/sentry-2/authentication/helpers#check-if-the-user-is-logged-in