From c33940f64a1e5b59afd700010247382f5b7b2df3 Mon Sep 17 00:00:00 2001
From: Igor Scheller <igor.scheller@igorshp.de>
Date: Mon, 12 Nov 2018 14:41:23 +0100
Subject: Moved permission checks to Authenticator class

---
 includes/pages/user_myshifts.php | 7 +++----
 1 file changed, 3 insertions(+), 4 deletions(-)

(limited to 'includes/pages/user_myshifts.php')

diff --git a/includes/pages/user_myshifts.php b/includes/pages/user_myshifts.php
index 1eab016d..11bbc9f4 100644
--- a/includes/pages/user_myshifts.php
+++ b/includes/pages/user_myshifts.php
@@ -18,13 +18,12 @@ function myshifts_title()
  */
 function user_myshifts()
 {
-    global $privileges;
     $user = auth()->user();
     $request = request();
 
     if (
         $request->has('id')
-        && in_array('user_shifts_admin', $privileges)
+        && auth()->can('user_shifts_admin')
         && preg_match('/^\d{1,}$/', $request->input('id'))
         && User::find($request->input('id'))
     ) {
@@ -79,7 +78,7 @@ function user_myshifts()
 
             if ($request->hasPostData('submit')) {
                 $valid = true;
-                if (in_array('user_shifts_admin', $privileges)) {
+                if (auth()->can('user_shifts_admin')) {
                     $freeloaded = $request->has('freeloaded');
                     $freeload_comment = strip_request_item_nl('freeload_comment');
                     if ($freeloaded && $freeload_comment == '') {
@@ -120,7 +119,7 @@ function user_myshifts()
                 $shift['Comment'],
                 $shift['freeloaded'],
                 $shift['freeload_comment'],
-                in_array('user_shifts_admin', $privileges)
+                auth()->can('user_shifts_admin')
             );
         } else {
             redirect(page_link_to('user_myshifts'));
-- 
cgit v1.2.3-54-g00ecf