From 37979c939efb0e08b0fda5d336f7b6788083e012 Mon Sep 17 00:00:00 2001
From: Dennis Eichhorn <spl1nes.com@googlemail.com>
Date: Sat, 11 Nov 2017 15:02:40 +0100
Subject: [PATCH] Bug fixes e.g. csp and other

---
 Controller.php | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/Controller.php b/Controller.php
index fa059c1..64990f1 100644
--- a/Controller.php
+++ b/Controller.php
@@ -195,8 +195,10 @@ class Controller extends ModuleAbstract implements WebInterface
     {
         $view = new View($this->app, $request, $response);
 
+        $accountId = $request->getHeader()->getAccount();
+
         if (!$this->app->accountManager->get($accountId)->hasPermission(
-                PermissionType::CREATE, $this->app->orgId, $this->app->appName, self::MODULE_ID, PermissionState::BOARD, $board->getId())
+                PermissionType::CREATE, $this->app->orgId, $this->app->appName, self::MODULE_ID, PermissionState::BOARD)
         ) {
             $view->setTemplate('/Web/Backend/Error/403_inline');
             $response->getHeader()->setStatusCode(RequestStatusCode::R_403);