From cad806703d06d8996a98b19bec353bce255ae6a1 Mon Sep 17 00:00:00 2001
From: George Goldberg <george@gberg.me>
Date: Thu, 27 Sep 2018 20:15:47 +0100
Subject: MM-12013: Fix post-permission checks to cascade for DM/GM channels.
 (#9476)

---
 app/authorization.go | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

(limited to 'app/authorization.go')

diff --git a/app/authorization.go b/app/authorization.go
index 9d4714ba1..3310237c6 100644
--- a/app/authorization.go
+++ b/app/authorization.go
@@ -74,7 +74,9 @@ func (a *App) SessionHasPermissionToChannelByPost(session model.Session, postId
 
 	if result := <-a.Srv.Store.Channel().GetForPost(postId); result.Err == nil {
 		channel := result.Data.(*model.Channel)
-		return a.SessionHasPermissionToTeam(session, channel.TeamId, permission)
+		if channel.TeamId != "" {
+			return a.SessionHasPermissionToTeam(session, channel.TeamId, permission)
+		}
 	}
 
 	return a.SessionHasPermissionTo(session, permission)
-- 
cgit v1.2.3-1-g7c22