X-Git-Url: http://git.harvie.cz/?a=blobdiff_plain;ds=inline;f=wwwroot%2Finc%2Feventz.inc;h=1801b2960b51e6b2e8e8ebe9380dfaa6f83e49f9;hb=d69b37e1bc784d7510f587add2a6b9b14ba3b2fe;hp=a47a4c65fda14b88f658d0a83f6a9283429e8797;hpb=b17a1e9bc746b7eb0549dfd8dff61e132c9de828;p=mirrors%2FKyberia-bloodline.git

diff --git a/wwwroot/inc/eventz.inc b/wwwroot/inc/eventz.inc
index a47a4c6..1801b29 100644
--- a/wwwroot/inc/eventz.inc
+++ b/wwwroot/inc/eventz.inc
@@ -14,17 +14,17 @@ if($event=='delete' || (!empty($_POST['event']) && $_POST['event']=='delete')) {
 }
 
 //do not make a permission check if an event was executed before
-if ($_SESSION['eventz'][$event]) {
+if (!empty($_SESSION['eventz'][$event]) && ($_SESSION['eventz'][$event])) {
 	include_once(INCLUDE_DIR."eventz/$event.inc");
 	$status=$event();
 }
 
 elseif (is_file(INCLUDE_DIR."eventz/$event.inc")) {
 	$event_id=nodes::getNodeIdByName($event,"event://$event");
-	$event_node=nodes::getNodeById($event_id,$_SESSION['user_id']);
+	$event_node=nodes::getNodeById($event_id,isset($_SESSION['user_id']) ? $_SESSION['user_id'] : "");
 	if (
 		($event_node['node_system_access']=='public')
-		|| ($event_node['node_creator']==$_SESSION['user_id'])
+		|| (!empty($_SESSION['user_id']) && ($event_node['node_creator']==$_SESSION['user_id']))
 		|| ($event_node['node_permission']=='op')
 		|| ($event_node['node_permission']=='execute')
 		|| ($event_node['node_permission']=='master')