From 21bec865b302a539f0ae317f748f2a4baeabffe7 Mon Sep 17 00:00:00 2001
From: Pierre Jaury <pierre@jaury.eu>
Date: Sat, 25 Jun 2016 19:48:10 +0200
Subject: [PATCH] Fix permission management when editing/deleting fetches

---
 admin/freeposte/admin/utils.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/admin/freeposte/admin/utils.py b/admin/freeposte/admin/utils.py
index 65e0870e..c9adfc8e 100644
--- a/admin/freeposte/admin/utils.py
+++ b/admin/freeposte/admin/utils.py
@@ -46,6 +46,6 @@ def get_fetch(fetch_id):
     if not fetch:
         flask.abort(404)
     if not fetch.user.domain in flask_login.current_user.get_managed_domains():
-        if not fetch.user == flask_login.current_user:
+        if not fetch.user.email == flask_login.current_user.email:
             flask.abort(403)
     return fetch