From 5aec69c5ba5cebd7b284f5d96e61b2d389a5572d Mon Sep 17 00:00:00 2001
From: "Jason A. Donenfeld" <Jason@zx2c4.com>
Date: Wed, 28 Aug 2019 21:50:19 -0600
Subject: elevate: use more strict check for admin group

Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
---
 main.go | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'main.go')

diff --git a/main.go b/main.go
index bd86227e..e7070335 100644
--- a/main.go
+++ b/main.go
@@ -75,7 +75,7 @@ func checkForAdminGroup() {
 		fatal("Unable to open current process token: ", err)
 	}
 	defer processToken.Close()
-	if !elevate.TokenIsMemberOfBuiltInAdministrator(processToken) {
+	if !elevate.TokenIsElevatedOrElevatable(processToken) {
 		fatal("WireGuard may only be used by users who are a member of the Builtin Administrators group.")
 	}
 }
-- 
cgit v1.2.3-59-g8ed1b