- $r = q("SELECT * FROM `user` WHERE `uid` = %d AND `email` = '%s' AND `password` = '%s' LIMIT 1",
- intval($identity),
- dbesc($a->user['email']),
- dbesc($a->user['password'])
- );
+ $limited_id = 0;
+ $original_id = $uid;
+
+ if(count($submanage)) {
+ foreach($submanage as $m) {
+ if($identity == $m['mid']) {
+ $limited_id = $m['mid'];
+ break;
+ }
+ }
+ }
+
+ if($limited_id) {
+ $r = q("SELECT * FROM `user` WHERE `uid` = %d LIMIT 1",
+ intval($limited_id)
+ );
+ }
+ else {
+ $r = q("SELECT * FROM `user` WHERE `uid` = %d AND `email` = '%s' AND `password` = '%s' LIMIT 1",
+ intval($identity),
+ dbesc($orig_record['email']),
+ dbesc($orig_record['password'])
+ );
+ }