This check doesn't make any sense to me, and it break guest application access.

diff --git a/framework/Core/lib/Horde/Registry.php b/framework/Core/lib/Horde/Registry.php
index b8ee0bd..7bcdf63 100644 (file)
--- a/framework/Core/lib/Horde/Registry.php
+++ b/framework/Core/lib/Horde/Registry.php
@@ -977,14 +977,8 @@ class Horde_Registry
         /* Always do isAuthenticated() check first. You can be an admin, but
          * application auth != Horde admin auth. */
         if (!Horde_Auth::isAuthenticated(array('app' => $app))) {
-            /* There can *never* be non-SHOW guest access to an application
-             * that requires authentication. */
-            if ($perms != PERMS_SHOW) {
-                return false;
-            }
-
-            /* Otherwise, allow SHOW access for admins, for apps that do not
-             * have any explicit permissions, or for apps that allow SHOW. */
+            /* Allow SHOW access for admins, for apps that do not have any
+             * explicit permissions, or for apps that allow SHOW. */
             return Horde_Auth::isAdmin() ||
                 !$GLOBALS['perms']->exists($app) ||
                 $GLOBALS['perms']->hasPermission($app, Horde_Auth::getAuth(), $perms);