From b63acb904951d054092f45a5613e972b735dad50 Mon Sep 17 00:00:00 2001
From: FusionPBX <markjcrane@gmail.com>
Date: Thu, 7 Aug 2025 10:26:46 -0600
Subject: [PATCH] Hide save button if user doesn't have _edit or _add
 permission

---
 core/users/user_edit.php | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/core/users/user_edit.php b/core/users/user_edit.php
index 9a8a89739e..c79f54d515 100644
--- a/core/users/user_edit.php
+++ b/core/users/user_edit.php
@@ -741,7 +741,9 @@
 	if (permission_exists('user_setting_view')) {
 		echo button::create(['type'=>'button','label'=>$text['button-settings'],'icon'=>$settings->get('theme', 'button_icon_settings'),'id'=>'btn_settings','style'=>'','link'=>PROJECT_PATH.'/core/user_settings/user_settings.php?id='.urlencode($user_uuid)]);
 	}
-	echo button::create(['type'=>'button','label'=>$text['button-save'],'icon'=>$settings->get('theme', 'button_icon_save'),'id'=>'btn_save','style'=>'margin-left: 15px;','onclick'=>'submit_form();']);
+	if (permission_exists('user_add') || permission_exists('user_edit')) {
+		echo button::create(['type'=>'button','label'=>$text['button-save'],'icon'=>$settings->get('theme', 'button_icon_save'),'id'=>'btn_save','style'=>'margin-left: 15px;','onclick'=>'submit_form();']);
+	}
 	echo "	</div>\n";
 	echo "	<div style='clear: both;'></div>\n";
 	echo "</div>\n";