LP#1468422 Login permission checks are global

For backwards compat, perform all login permission checks using the root
org unit as the context org unit.

Signed-off-by: Bill Erickson <berickxx@gmail.com>
Signed-off-by: Dan Wells <dbw2@calvin.edu>

diff --git a/Open-ILS/src/c-apps/oils_auth_internal.c b/Open-ILS/src/c-apps/oils_auth_internal.c
index a6dba09..c64a6c0 100644 (file)
--- a/Open-ILS/src/c-apps/oils_auth_internal.c
+++ b/Open-ILS/src/c-apps/oils_auth_internal.c
@@ -232,6 +232,10 @@ static oilsEvent* oilsAuthVerifyWorkstation(
 static oilsEvent* oilsAuthCheckLoginPerm(osrfMethodContext* ctx, 
     int user_id, int org_id, const char* type ) {
 
+    // For backwards compatibility, check all login permissions 
+    // using the root org unit as the context org unit.
+    org_id = -1;
+
     char* perms[1];
 
     if (!strcasecmp(type, OILS_AUTH_OPAC)) {