From cd5b0e737c73d14b4e04f2e6aa41201fe718e2b8 Mon Sep 17 00:00:00 2001
From: conradverm <conradverm@c91229c3-7414-0410-bfa2-8a42b809f60b>
Date: Mon, 17 Mar 2008 14:52:48 +0000
Subject: [PATCH] KTS-3171 "Add extra validation for Permission::userIsSystemAdministrator()" Updated.

---
 lib/security/Permission.inc | 7 +++++++
 1 file changed, 7 insertions(+), 0 deletions(-)

diff --git a/lib/security/Permission.inc b/lib/security/Permission.inc
index e12fc28..0a9454a 100644
--- a/lib/security/Permission.inc
+++ b/lib/security/Permission.inc
@@ -118,7 +118,14 @@ class Permission {
         if ($iUserID == '') {
             $iUserID = $_SESSION['userID'];
         }
+        if (empty($iUserID)) {
+        	return false;
+        }
         $iUserID = KTUtil::getId($iUserID);
+        if (PEAR::isError($iUserID))
+        {
+        	return false;
+        }
 
         $query = 'SELECT UGL.group_id
             FROM '.$default->users_groups_table.' AS UGL
--
libgit2 0.21.4