From bb0c24bd4fd159cc005f60a0808a4b37b91060b0 Mon Sep 17 00:00:00 2001
From: Friendika <info@friendika.com>
Date: Tue, 4 Jan 2011 22:17:58 -0800
Subject: prevent admin hijacks

---
 mod/settings.php | 4 ++++
 1 file changed, 4 insertions(+)

(limited to 'mod/settings.php')

diff --git a/mod/settings.php b/mod/settings.php
index a40883f35..9a9fde5c6 100644
--- a/mod/settings.php
+++ b/mod/settings.php
@@ -95,6 +95,10 @@ function settings_post(&$a) {
 		$email_changed = true;
         if(! valid_email($email))
 			$err .= t(' Not valid email.');
+		if((x($a->config,'admin_email')) && (strcasecmp($email,$a->config['admin_email']) == 0)) {
+			$err .= t(' Cannot change to that email.');
+			$email = $a->user['email'];
+		}
 	}
 
 	if(strlen($err)) {
-- 
cgit v1.2.3