From bc244507c2079f82960e2f45b2480bedd3d53449 Mon Sep 17 00:00:00 2001
From: e107steved <steved@e107.org>
Date: Thu, 29 Jan 2009 21:09:43 +0000
Subject: [PATCH] Clear user theme if not allowed

---
 class2.php | 15 ++++++++++++---
 1 file changed, 12 insertions(+), 3 deletions(-)

diff --git a/class2.php b/class2.php
index 31a99b2bb..ff5208f97 100644
--- a/class2.php
+++ b/class2.php
@@ -9,8 +9,8 @@
 * General purpose file
 *
 * $Source: /cvs_backup/e107_0.8/class2.php,v $
-* $Revision: 1.92 $
-* $Date: 2009-01-04 16:00:19 $
+* $Revision: 1.93 $
+* $Date: 2009-01-29 21:09:27 $
 * $Author: e107steved $
 *
 */
@@ -1478,11 +1478,20 @@ function init_session()
 
 			$user_pref = ($result['user_prefs'] ? unserialize($result['user_prefs']) : '');
 
+			if (check_class(varset($pref['allow_theme_select'],FALSE)))
+			{	// User can set own theme
 			if (isset($_POST['settheme']))
 			{
-				$user_pref['sitetheme'] = ($pref['sitetheme'] == $_POST['sitetheme'] ? '' : $_POST['sitetheme']);
+					$user_pref['sitetheme'] = ($pref['sitetheme'] == $_POST['sitetheme'] ? "" : $_POST['sitetheme']);
 				save_prefs('user');
 			}
+			}
+			elseif (isset($user_pref['sitetheme']))
+			{	// User obviously no longer allowed his own theme - clear it
+				unset($user_pref['sitetheme']);
+				save_prefs('user');
+			}
+			
 
 			define('USERTHEME', (isset($user_pref['sitetheme']) && file_exists(e_THEME.$user_pref['sitetheme']."/theme.php") ? $user_pref['sitetheme'] : false));
 			global $ADMIN_DIRECTORY, $PLUGINS_DIRECTORY;