Refactored headers to use view_own_projects right check.

[timetracker.git] / projects.php

diff --git a/projects.php b/projects.php
index 1d5f7e2..bf6aed1 100644 (file)
--- a/projects.php
+++ b/projects.php
@@ -31,8 +31,7 @@ import('form.Form');
 import('ttTeamHelper');
 
 // Access checks.
-// TODO: introduce view_projects right to keep access checks simple.
-if (!(ttAccessAllowed('track_own_time') || ttAccessAllowed('track_time') || ttAccessAllowed('manage_projects'))) {
+if (!(ttAccessAllowed('view_own_projects') || ttAccessAllowed('manage_projects'))) {
   header('Location: access_denied.php');
   exit();
 }