From fc7f4e880ddfed812438fabc791c5f5056f541e6 Mon Sep 17 00:00:00 2001
From: cash <cash@36083f99-b078-4883-b0ff-0f9b5a30f544>
Date: Wed, 17 Nov 2010 12:38:14 +0000
Subject: Closes #1422 admin user actions now check for self before banning,
 deleting, or removing admin privileges

git-svn-id: http://code.elgg.org/elgg/trunk@7332 36083f99-b078-4883-b0ff-0f9b5a30f544
---
 actions/admin/user/removeadmin.php | 5 +++++
 1 file changed, 5 insertions(+)

(limited to 'actions/admin/user/removeadmin.php')

diff --git a/actions/admin/user/removeadmin.php b/actions/admin/user/removeadmin.php
index 468670940..97bfc396b 100644
--- a/actions/admin/user/removeadmin.php
+++ b/actions/admin/user/removeadmin.php
@@ -11,6 +11,11 @@ admin_gatekeeper();
 $guid = get_input('guid');
 $user = get_entity($guid);
 
+if ($guid == get_loggedin_userid()) {
+	register_error(elgg_echo('admin:user:self:removeadmin:no'));
+	forward(REFERER);
+}
+
 if (($user instanceof ElggUser) && ($user->canEdit())) {
 	if ($user->removeAdmin()) {
 		system_message(elgg_echo('admin:user:removeadmin:yes'));
-- 
cgit v1.2.3