From b460a2fec4da4c54b77b7b112c2c2417cda61650 Mon Sep 17 00:00:00 2001
From: Yaman Qalieh <ybq987@gmail.com>
Date: Wed, 17 Aug 2016 19:18:02 -0400
Subject: [PATCH] changeAdmin fixes

---
 hourglass/server/main.js | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/hourglass/server/main.js b/hourglass/server/main.js
index eed02a4..7b1c4f7 100644
--- a/hourglass/server/main.js
+++ b/hourglass/server/main.js
@@ -162,7 +162,8 @@ Meteor.methods({
         if (Roles.userIsInRole(Meteor.userId(), ['superadmin', 'admin'])) {
             classes.update({_id: input[1]}, {$set: {admin: input[0]}});
         } else if (found && foundclass && foundclass.admin == Meteor.userId() &&
-                   foundclass.banned.indexOf(input[0]) != -1) {
+                   foundclass.banned.indexOf(input[0]) === -1 &&
+                   foundclass.subscribers.indexOf(input[0]) !== -1) {
             classes.update({_id: input[1]}, {$set: {admin: input[0]}});
         } else {
             throw "Unauthorized";