Minor - block access if user doesn't exists

7 years ago · 50f04a8073
parent eb2a982f1e
commit 50f04a8073
1 changed files with 4 additions and 0 deletions
--- a/main/mySpace/myStudents.php
+++ b/main/mySpace/myStudents.php
@ -34,6 +34,10 @@ if (empty($student_id)) {
 // user info
 $user_info = api_get_user_info($student_id);

+if (empty($user_info)) {
+    api_not_allowed(true);
+}
+
 $allowToQualify = api_is_allowed_to_edit(null, true) ||
    api_is_course_tutor() ||
    api_is_session_admin() ||