From d261a7f76e98b526e703ca85cd4b7eb6c70b8626 Mon Sep 17 00:00:00 2001
From: Shish <shish@shishnet.org>
Date: Fri, 13 Mar 2020 10:08:23 +0000
Subject: [PATCH] show user list to anyone who can edit passwords, not the
 more-restricted classes

---
 ext/user/main.php | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/ext/user/main.php b/ext/user/main.php
index 49059f73..0a8e7d0d 100644
--- a/ext/user/main.php
+++ b/ext/user/main.php
@@ -307,7 +307,7 @@ class UserPage extends Extension
     {
         global $user;
         if ($event->parent==="system") {
-            if ($user->can(Permissions::EDIT_USER_CLASS)) {
+            if ($user->can(Permissions::EDIT_USER_PASSWORD)) {
                 $event->add_nav_link("user_admin", new Link('user_admin/list'), "User List", NavLink::is_active(["user_admin"]));
             }
         }
@@ -317,7 +317,7 @@ class UserPage extends Extension
     {
         global $user;
         $event->add_link("My Profile", make_link("user"));
-        if ($user->can(Permissions::EDIT_USER_CLASS)) {
+        if ($user->can(Permissions::EDIT_USER_PASSWORD)) {
             $event->add_link("User List", make_link("user_admin/list"), 98);
         }
         $event->add_link("Log Out", make_link("user_admin/logout"), 99);