First of all, I think in gallery_global.php int should be
Code:
Content visible to verified customers only.
Instead of
Code:
Content visible to verified customers only.
Furthermore, ther seems to be a serious problem with permissions.
Let's say Usergroup Registered does not hav any permissions (for gallery) at all.
Now I also got a Usergroup
Gallery Users with do have permissions to View, Upload, etc.
But in 1 specific album, I don't want
Gallery Users to be able to upload images, so I am using custom permissions there only for this usergroup.
But users who are primary Registered and have a membergroup
Gallery Users are still able to upload images there - until I select Use Custom Permissions and Hit Save (without changing anything, as I ready said - per default they don't have any rights).
I tracked this down to fetch_category_perms():
Code:
Content visible to verified customers only.
It seems like you are setting the combined usergroup permissions ($galleryperms) here if specific permissions for usergroup $usergroupid do not exist for category $catid.
Shouldn't the permissions for this specific usergroup ($gallery_permissions["$usergroupid"]['gallery_perms']) be used here?