Admin: session admins can access user information page by defaut - refs BT#20796

2 years ago · 53f6bc86e5
parent 3d6a7d06b5
commit 53f6bc86e5
1 changed files with 1 additions and 1 deletions
--- a/main/admin/user_information.php
+++ b/main/admin/user_information.php
@ -32,7 +32,7 @@ $userEntity = api_get_user_entity($user['user_id']);
 $myUserId = api_get_user_id();

 if (!api_is_student_boss()) {
-    api_protect_admin_script();
+    api_protect_admin_script(true);
 } else {
    $isBoss = UserManager::userIsBossOfStudent($myUserId, $user['user_id']);
    if (!$isBoss) {