Check not only user's permissions but also whether feature is active or not.

php-coder · php-coder · commit 69b733da051b · 2016-10-21T18:06:11.000+02:00
Should be in c5e733b commit. No functional changes.
diff --git a/src/main/java/ru/mystamps/web/controller/SeriesController.java b/src/main/java/ru/mystamps/web/controller/SeriesController.java
@@ -69,6 +69,7 @@
 import ru.mystamps.web.support.spring.security.Authority;
 import ru.mystamps.web.support.spring.security.CustomUserDetails;
 import ru.mystamps.web.support.spring.security.SecurityContextUtils;
+import ru.mystamps.web.support.togglz.Features;
 import ru.mystamps.web.util.CatalogUtils;
 import ru.mystamps.web.util.LocaleUtils;
 
@@ -374,7 +375,9 @@ public String searchSeriesByCatalog(
 		model.put("isSeriesInCollection", isSeriesInCollection);
 		model.put("allowAddingImages", userCanAddImagesToSeries);
 		
-		if (SecurityContextUtils.hasAuthority(Authority.VIEW_SERIES_SALES)) {
+		if (Features.SHOW_PURCHASES_AND_SALES.isActive()
+			&& SecurityContextUtils.hasAuthority(Authority.VIEW_SERIES_SALES)) {
+			
 			List<PurchaseAndSaleDto> purchasesAndSales =
 				seriesService.findPurchasesAndSales(series.getId());
 			model.put("purchasesAndSales", purchasesAndSales);
