From a5a537523a49a93136f1fe4b831e00a00aa8b465 Mon Sep 17 00:00:00 2001
From: tobes <toby.junk@gmail.com>
Date: Wed, 10 Oct 2012 13:13:33 +0100
Subject: [PATCH] [#2939] Improve has_user_permission_for_some_org()

---
 ckan/new_authz.py | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/ckan/new_authz.py b/ckan/new_authz.py
index 710f387a9a0..cce3f4d3349 100644
--- a/ckan/new_authz.py
+++ b/ckan/new_authz.py
@@ -99,6 +99,9 @@ def has_user_permission_for_some_org(user_id, permission):
     if not user_id:
         return False
     roles = get_roles_with_permission(permission)
+
+    if not roles:
+        return False
     # get any groups the user has with the needed role
     q = model.Session.query(model.Member) \
         .filter(model.Member.table_name == 'user') \