From 96efa8770826ff2fc82df0e91da6d33a10454ef2 Mon Sep 17 00:00:00 2001
From: fhenry <florian.henry@open-concept.pro>
Date: Tue, 29 Jan 2013 20:05:08 +0100
Subject: [PATCH] Fix bug "A user can always read its own card" false today for
 external user even if user get right to change his won info

---
 htdocs/user/fiche.php | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/htdocs/user/fiche.php b/htdocs/user/fiche.php
index 222ab62b846..d260e8b4f60 100644
--- a/htdocs/user/fiche.php
+++ b/htdocs/user/fiche.php
@@ -72,7 +72,9 @@ $socid=0;
 if ($user->societe_id > 0) $socid = $user->societe_id;
 $feature2='user';
 if ($user->id == $id) { $feature2=''; $canreaduser=1; } // A user can always read its own card
-$result = restrictedArea($user, 'user', $id, '&user', $feature2);
+if (!$canreaduser) {
+	$result = restrictedArea($user, 'user', $id, '&user', $feature2);
+}
 if ($user->id <> $id && ! $canreaduser) accessforbidden();
 
 $langs->load("users");