X-Git-Url: http://wagnertech.de/git?a=blobdiff_plain;f=tofile.php;h=62632fa979ee2ef76f0edcc3209bc2956e95cfea;hb=995feb6c9e97991e5b9d9803fbc3c8a41ac48922;hp=67c5b31ceb08214d4ace1fa5e402b4605e9d482d;hpb=fd0872d9e582113346fa1e93557f370286c5c9f2;p=timetracker.git

diff --git a/tofile.php b/tofile.php
index 67c5b31c..62632fa9 100644
--- a/tofile.php
+++ b/tofile.php
@@ -31,16 +31,17 @@ import('form.Form');
 import('form.ActionForm');
 import('ttReportHelper');
 
-// Access check.
-if (!ttAccessAllowed('view_own_reports')) {
+// Access checks.
+if (!(ttAccessAllowed('view_own_reports') || ttAccessAllowed('view_reports'))) {
   header('Location: access_denied.php');
   exit();
 }
+// End of access checks.
 
 // Use custom fields plugin if it is enabled.
 if ($user->isPluginEnabled('cf')) {
   require_once('plugins/CustomFields.class.php');
-  $custom_fields = new CustomFields($user->team_id);
+  $custom_fields = new CustomFields($user->group_id);
 }
 
 // Report settings are stored in session bean before we get here.