From ef0ae32db3c51129424aa4814d49d1e9073214bc Mon Sep 17 00:00:00 2001
From: Brian Shaughnessy <brian@lcdservices.biz>
Date: Mon, 16 Dec 2013 22:00:56 -0500
Subject: [PATCH] CRM-13920 fix case count and activity creation perm check

---
 CRM/Case/BAO/Case.php      | 2 +-
 CRM/Case/Form/Activity.php | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/CRM/Case/BAO/Case.php b/CRM/Case/BAO/Case.php
index ac54933830..e952baaa27 100644
--- a/CRM/Case/BAO/Case.php
+++ b/CRM/Case/BAO/Case.php
@@ -2064,7 +2064,7 @@ SELECT civicrm_contact.id as casemanager_id,
       static $accessibleCaseIds;
       if (!is_array($accessibleCaseIds)) {
         $session = CRM_Core_Session::singleton();
-        $accessibleCaseIds = array_keys(self::getCases(FALSE, $session->get('userID')));
+        $accessibleCaseIds = array_keys(self::getCases(FALSE, $session->get('userID'), 'any'));
       }
       //no need of further processing.
       if (empty($accessibleCaseIds)) {
diff --git a/CRM/Case/Form/Activity.php b/CRM/Case/Form/Activity.php
index 88a23dad2b..746f40551d 100644
--- a/CRM/Case/Form/Activity.php
+++ b/CRM/Case/Form/Activity.php
@@ -115,7 +115,7 @@ class CRM_Case_Form_Activity extends CRM_Activity_Form_Activity {
       !CRM_Core_Permission::check('access all cases and activities')
     ) {
       $session = CRM_Core_Session::singleton();
-      $allCases = CRM_Case_BAO_Case::getCases(TRUE, $session->get('userID'));
+      $allCases = CRM_Case_BAO_Case::getCases(TRUE, $session->get('userID'), 'any');
       if (!array_key_exists($this->_caseId, $allCases)) {
         CRM_Core_Error::fatal(ts('You are not authorized to access this page.'));
       }
-- 
GitLab