From ebd3d9ce41d93a81c337b861cbf4d2c2887a37fa Mon Sep 17 00:00:00 2001
From: chris <chris@jalakai.co.uk>
Date: Tue, 6 Jun 2006 10:32:12 +0200
Subject: [PATCH] bug#775, fix access control of resend password page

darcs-hash:20060606083212-9b6ab-b04f08b3fde6baca7ec2a33a38c3f147651c8371.gz
---
 inc/actions.php | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/inc/actions.php b/inc/actions.php
index c195ecf26..e1576c179 100644
--- a/inc/actions.php
+++ b/inc/actions.php
@@ -199,6 +199,12 @@ function act_permcheck($act){
     }else{
       $permneed = AUTH_ADMIN;
     }
+  }elseif($act == 'resendpwd'){
+    if ($conf['resendpasswd']) {
+      $permneed = AUTH_NONE;
+    }else{
+      $permneed = AUTH_ADMIN+1; // shouldn't get here if $conf['resendpasswd'] is off
+    }
   }elseif($act == 'admin'){
     $permneed = AUTH_ADMIN;
   }else{
-- 
GitLab