From 5628fdfed1a0603c25c9f1e4e366792ceacd813e Mon Sep 17 00:00:00 2001
From: Olle Haerstedt <olle.haerstedt@limesurvey.org>
Date: Wed, 21 Sep 2022 12:15:42 +0200
Subject: [PATCH] Dev: Apply canEdit() to getManagementButtons() too

---
 application/models/User.php | 8 +-------
 1 file changed, 1 insertion(+), 7 deletions(-)

diff --git a/application/models/User.php b/application/models/User.php
index 12ff57112ce..d770e4c5e0a 100644
--- a/application/models/User.php
+++ b/application/models/User.php
@@ -653,13 +653,7 @@ class='btn btn-default btn-sm UserManagement--action--openmodal UserManagement--
             $buttonArray[] = $userDetail;
         }
         // Check if user is editable
-        if (
-            $this->uid == Yii::app()->user->getId()                             //One can edit onesself of course
-            || (
-                Permission::model()->hasGlobalPermission('users', 'update')     //Global permission to edit users given
-                && $this->parent_id == Yii::app()->session['loginID']           //AND User is owned by admin
-            )
-        ) {
+        if ($this->canEdit(Yii::app()->session['loginID'])) {
             $buttonArray[] = $editUserButton;
         }