permissions: fix token/user priv intersection

[pve-access-control.git] / src / PVE / RPCEnvironment.pm

diff --git a/src/PVE/RPCEnvironment.pm b/src/PVE/RPCEnvironment.pm
index b5da4f29ac5ca8a85757662ef65aaad961a96da8..a0c755587638191e6e45a282fe2e76dc3636151c 100644 (file)
--- a/src/PVE/RPCEnvironment.pm
+++ b/src/PVE/RPCEnvironment.pm
@@ -82,7 +82,7 @@ my $compile_acl_path = sub {
     if ($username && $username ne 'root@pam') {
        # intersect user and token permissions
        my $user_privs = $cache->{$username}->{privs}->{$path};
-       my $filtered_privs = [ grep { $user_privs->{$_} } keys %$privs ];
+       my $filtered_privs = [ grep { defined($user_privs->{$_}) } keys %$privs ];
        $privs = { map { $_ => $user_privs->{$_} && $privs->{$_} } @$filtered_privs };
     }