diff --git a/admin/controllers/edit-user.php b/admin/controllers/edit-user.php index f0f336b2..792ec382 100644 --- a/admin/controllers/edit-user.php +++ b/admin/controllers/edit-user.php @@ -48,6 +48,11 @@ function deleteUser($args, $deleteContent=false) return false; } + // The editors cannot delete users. + if($Login->role()!=='admin') { + return false; + } + if($deleteContent) { $dbPosts->deletePostsByUser($args['username']); } diff --git a/admin/views/edit-user.php b/admin/views/edit-user.php index c9dfbba4..beb2d9cc 100644 --- a/admin/views/edit-user.php +++ b/admin/views/edit-user.php @@ -6,7 +6,7 @@