From 8ff6cb84063d82ccf32a4c6fb65f70da91385c8f Mon Sep 17 00:00:00 2001
From: friendica <info@friendica.com>
Date: Thu, 16 Feb 2012 23:58:07 -0800
Subject: [PATCH] a couple more items to make sure forum delegates can't access
 if the forum login is shared with the site admin account

---
 mod/directory.php | 2 ++
 mod/regmod.php    | 2 +-
 2 files changed, 3 insertions(+), 1 deletion(-)

diff --git a/mod/directory.php b/mod/directory.php
index 5f00b4f5a4..962188945f 100755
--- a/mod/directory.php
+++ b/mod/directory.php
@@ -26,6 +26,8 @@ function directory_post(&$a) {
 function directory_content(&$a) {
 
 	$everything = (($a->argc > 1 && $a->argv[1] === 'all' && is_site_admin()) ? true : false);
+	if(x($_SESSION,'submanage') && intval($_SESSION['submanage']))
+		$everything = false;
 
 	if((get_config('system','block_public')) && (! local_user()) && (! remote_user())) {
 		notice( t('Public access denied.') . EOL);
diff --git a/mod/regmod.php b/mod/regmod.php
index 76ea4062ed..17e728ba2d 100755
--- a/mod/regmod.php
+++ b/mod/regmod.php
@@ -107,7 +107,7 @@ function regmod_content(&$a) {
 		return $o;
 	}
 
-	if(!is_site_admin()) {
+	if((!is_site_admin()) || (x($_SESSION,'submanage') && intval($_SESSION['submanage']))) {
 		notice( t('Permission denied.') . EOL);
 		return '';
 	}