From e3783dfdd41e17147f63e9b72f12f66b92a37262 Mon Sep 17 00:00:00 2001
From: Thomas Willingham <beardyunixer@beardyunixer.com>
Date: Mon, 15 Sep 2014 03:51:41 +0100
Subject: Very, very cautiously, let a developer switch to the sys chan, if
 they're also an admin.

---
 include/security.php | 14 ++++++++++++++
 1 file changed, 14 insertions(+)

(limited to 'include/security.php')

diff --git a/include/security.php b/include/security.php
index 0f2edc708..98d997288 100644
--- a/include/security.php
+++ b/include/security.php
@@ -82,6 +82,20 @@ function change_channel($change_channel) {
 			intval(PAGE_REMOVED)
 		);
 
+        // It's not there.  Is this an administrator, and is this the sys channel?
+    if (is_developer()) {
+        if (! $r) { 
+            if (is_site_admin()) {
+                $r = q("select channel.*, xchan.* from channel left join xchan on channel.channel_hash = xchan.xchan_hash where channel_id = %d and ( channel_pageflags & %d) a$
+                intval($change_channel),
+                intval(PAGE_SYSTEM),
+                intval(PAGE_REMOVED)
+                );
+                }
+            }
+    }
+
+
 		if($r) {
 			$hash = $r[0]['channel_hash'];
 			$_SESSION['uid'] = intval($r[0]['channel_id']);
-- 
cgit v1.2.3