From 5e0c27d592c2849d70af360db3709765b6ae422a Mon Sep 17 00:00:00 2001
From: FusionPBX <markjcrane@gmail.com>
Date: Wed, 15 Nov 2023 08:28:49 -0700
Subject: [PATCH] User Status was hidden by an in accessible session variable
 use user_status permission. There permission is more consistent with the rest
 of the project.

---
 core/users/app_config.php | 6 ++++++
 core/users/user_edit.php  | 2 +-
 2 files changed, 7 insertions(+), 1 deletion(-)

diff --git a/core/users/app_config.php b/core/users/app_config.php
index 6665cf7210..622c1d6fee 100644
--- a/core/users/app_config.php
+++ b/core/users/app_config.php
@@ -87,6 +87,11 @@
 		$y++;
 		$apps[$x]['permissions'][$y]['name'] = "view_users";
 		$apps[$x]['permissions'][$y]['groups'][] = "superadmin";
+		$y++;
+		$apps[$x]['permissions'][$y]['name'] = "user_status";
+		$apps[$x]['permissions'][$y]['groups'][] = "superadmin";
+		$apps[$x]['permissions'][$y]['groups'][] = "admin";
+		$apps[$x]['permissions'][$y]['groups'][] = "users";
 
 	//default settings
 		$y=0;
@@ -467,3 +472,4 @@
 		$apps[$x]['db'][$y]['fields'][$z]['description']['en-us'] = "";
 
 ?>
+
diff --git a/core/users/user_edit.php b/core/users/user_edit.php
index 577f31c4f9..d4ffd4bf85 100644
--- a/core/users/user_edit.php
+++ b/core/users/user_edit.php
@@ -861,7 +861,7 @@
 	echo "	</td>\n";
 	echo "	</tr>\n";
 
-	if (isset($_SESSION['user_status_display']) && $_SESSION['user_status_display'] != "false") {
+	if (permission_exists("user_status")) {
 		echo "	<tr>\n";
 		echo "	<td width='20%' class=\"vncell\" valign='top'>\n";
 		echo "		".$text['label-status']."\n";