X-Git-Url: http://wagnertech.de/git?a=blobdiff_plain;f=expenses.php;h=9a34542213a813bfb3b0d2fe2e110d9a51d4a239;hb=0f6454bb20d223018d0f969ab5e1d46f4ce14b96;hp=eb11e73a3b74300d9dddbfa6d347dc7ca7c947d2;hpb=7b6cfb2cceac61a6e899590ac8ac9fa8cb326c6a;p=timetracker.git

diff --git a/expenses.php b/expenses.php
index eb11e73a..9a345422 100644
--- a/expenses.php
+++ b/expenses.php
@@ -42,6 +42,10 @@ if (!$user->isPluginEnabled('ex')) {
   header('Location: feature_disabled.php');
   exit();
 }
+if (!$user->exists()) {
+  header('Location: access_denied.php'); // Nobody to enter expenses for.
+  exit();
+}
 if ($user->behalf_id && (!$user->can('track_expenses') || !$user->checkBehalfId())) {
   header('Location: access_denied.php'); // Trying on behalf, but no right or wrong user.
   exit();
@@ -65,9 +69,6 @@ if ($request->isPost() && $userChanged) {
   $user->setOnBehalfUser($user_id);
 } else {
   $user_id = $user->getUser();
-  // Handle a situation for no users in on behalf group.
-  if ($user->behalfGroup && $user_id == $user->id)
-    $user_id = null;
 }
 
 // Initialize and store date in session.