From 40197d6c39867b00837a4a1f8de0cf5115c0a5a5 Mon Sep 17 00:00:00 2001
From: Marcin Kurczewski <mkurczew@gmail.com>
Date: Sat, 22 Nov 2014 12:57:52 +0100
Subject: [PATCH] Fixed everyone could delete posts

---
 src/Controllers/PostController.php | 1 +
 1 file changed, 1 insertion(+)

diff --git a/src/Controllers/PostController.php b/src/Controllers/PostController.php
index eeb76d37..3df1a25c 100644
--- a/src/Controllers/PostController.php
+++ b/src/Controllers/PostController.php
@@ -145,6 +145,7 @@ final class PostController extends AbstractController
 
 	public function deletePost($postNameOrId)
 	{
+		$this->privilegeService->assertPrivilege(Privilege::DELETE_POSTS);
 		$post = $this->postService->getByNameOrId($postNameOrId);
 		$this->postService->deletePost($post);
 	}