From c8823c18c336b6f6b89159debbdc4098798bd4bb Mon Sep 17 00:00:00 2001
From: Scott Ullrich <sullrich@pfsense.org>
Date: Sat, 16 Feb 2008 20:53:23 +0000
Subject: Ensure $allowed is set correctly.

---
 usr/local/www/fbegin.inc | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

(limited to 'usr/local/www/fbegin.inc')

diff --git a/usr/local/www/fbegin.inc b/usr/local/www/fbegin.inc
index 5b04c21..64f0dc5 100755
--- a/usr/local/www/fbegin.inc
+++ b/usr/local/www/fbegin.inc
@@ -333,7 +333,9 @@ if ($_REQUEST['noticeaction'] == 'acknowledge') {
 			$allowed = &$config['system']['group'][$groupindex[$config['system']['user'][$userindex[$auth_user]]['groupname']]]['pages'];
 
 function output_menu_item($url, $name) {
-	global $auth_user, $groupindex, $userindex, $allowed, $HTTP_SERVER_VARS;
+	global $auth_user, $groupindex, $userindex, $allowed, $HTTP_SERVER_VARS, $allowed;
+	if(!$allowed)
+		$allowed = $_SESSION['privs'];	
 	if (!isSystemAdmin($HTTP_SERVER_VARS['AUTH_USER'])) 
 		if (!in_array(basename($url), $allowed))	
 			return;
-- 
cgit v1.1