Improve unauthorized redirection trigger case

2017-07-21 14:47:18 -06:00 · 2017-07-21 14:47:18 -06:00 · 205f02b44a
parent 151ed057e8
commit 205f02b44a
1 changed files with 1 additions and 1 deletions
--- a/modules/cms/controllers/Themes.php
+++ b/modules/cms/controllers/Themes.php
@ -46,7 +46,7 @@ class Themes extends Controller
         * Custom redirect for unauthorized request
         */
        $this->bindEvent('page.beforeDisplay', function() {
-            if (!$this->user->hasAnyAccess($this->requiredPermissions)) {
+            if (!$this->user->hasAnyAccess($this->requiredPermissions) && $this->user->hasAccess('cms.manage_theme_options')) {
                return Backend::redirect('cms/themeoptions/update');
            }
        });