From 75d4836c38309acc2caaeacc227c6e9079dde924 Mon Sep 17 00:00:00 2001
From: Jonas Kohl
Date: Thu, 17 Oct 2024 19:32:42 +0200
Subject: Fix client-side permission mismatch bug

---
 src/application/templates/bootstrap-3/components/post.twig | 1 +
 1 file changed, 1 insertion(+)

(limited to 'src/application')

diff --git a/src/application/templates/bootstrap-3/components/post.twig b/src/application/templates/bootstrap-3/components/post.twig
index ac969c0..6043abe 100644
--- a/src/application/templates/bootstrap-3/components/post.twig
+++ b/src/application/templates/bootstrap-3/components/post.twig
@@ -15,6 +15,7 @@
     and (
         (
             postAuthor is not null
+            and postAuthor.id == currentUser.id
             and postAuthor.hasPermission(permission("EDIT_OWN_POST"))
         )
         or currentUser.hasPermission(permission("EDIT_OTHER_POST"))
-- 
cgit v1.2.3