From 4371b627d51ffc5af9498fa1877d8e519a5f2c6e Mon Sep 17 00:00:00 2001
From: Dries Buytaert <dries@buytaert.net>
Date: Sun, 18 Feb 2001 15:14:56 +0000
Subject: - added fine-grained user permission system which allows us to give  
 certain users access to specific administration sections only.     Ex. a FAQ
 maintainer can only edit the FAQ, and members of an         "editorial board"
 can only edit comments, diaries and          stories, .. - code review =>
 rewrote include/user.inc which is much easier now - fixed 4 small bugs

---
 modules/story.module | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'modules/story.module')

diff --git a/modules/story.module b/modules/story.module
index 47671033e..535821ccd 100644
--- a/modules/story.module
+++ b/modules/story.module
@@ -20,7 +20,7 @@ function story_find($keys) {
   $find = array();
   $result = db_query("SELECT s.*, u.userid FROM stories s LEFT JOIN users u ON s.author = u.id WHERE s.status = 2 AND (s.subject LIKE '%". check_input($keys) ."%' OR s.abstract LIKE '%". check_input($keys) ."%' OR s.article LIKE '%". check_input($keys) ."%') ORDER BY s.timestamp DESC LIMIT 20");
   while ($story = db_fetch_object($result)) {
-    array_push($find, array("subject" => check_output($story->subject), "link" => (user_permission($user) ? "admin.php?mod=story&op=edit&id=$story->id" : "story.php?id=$story->id"), "user" => $story->userid, "date" => $story->timestamp));
+    array_push($find, array("subject" => check_output($story->subject), "link" => (user_access($user, "story") ? "admin.php?mod=story&op=edit&id=$story->id" : "story.php?id=$story->id"), "user" => $story->userid, "date" => $story->timestamp));
   }
   return $find;
 }
-- 
cgit v1.2.3