From edee8faeed62e5cc1c919848ecdbab110c8d7e8f Mon Sep 17 00:00:00 2001
From: Lester Caine <lester@lsces.co.uk>
Date: Sat, 16 May 2026 21:10:27 +0100
Subject: Pass users registered roles to session for use in protecting access
 using nginx auth

---
 includes/bit_setup_inc.php | 5 ++---
 1 file changed, 2 insertions(+), 3 deletions(-)

diff --git a/includes/bit_setup_inc.php b/includes/bit_setup_inc.php
index 17bf54e..5ac6a47 100755
--- a/includes/bit_setup_inc.php
+++ b/includes/bit_setup_inc.php
@@ -128,13 +128,12 @@ if( empty( $gBitUser ) || !$gBitUser->isValid() ) {
 	if( !($gBitUser = RolePermUser::loadFromCache( ANONYMOUS_USER_ID ) ) ) { // $userClass::loadFromCache( ANONYMOUS_USER_ID ) ) ) {
 		if( empty($gBitUser) ) {
 			$gBitUser = new RolePermUser();
-			// maybe do something...
 			unset( $_SESSION['user_role'] );
 		}
 	}
 } else {
-	if (empty($_SESSION['user_role'])) {
-		$_SESSION['user_role'] = 3;
+	if( empty( $_SESSION['user_role'] ) ) {
+		$_SESSION['user_role'] = array_keys( $gBitUser->getRoles() );
 	}
 }
 
-- 
cgit v1.3