diff --git a/client/src/actions/session-actions.js b/client/src/actions/session-actions.js
index 42ce50db..910d8ea1 100644
--- a/client/src/actions/session-actions.js
+++ b/client/src/actions/session-actions.js
@@ -58,7 +58,7 @@ export default {
                 }
             }).then((result) => {
                 store.dispatch(this.getUserData(result.data.userId, result.data.token));
-
+                
                 return result;
             })
         };
diff --git a/client/src/app-components/ticket-event.js b/client/src/app-components/ticket-event.js
index 375f6391..5bc9fcf1 100644
--- a/client/src/app-components/ticket-event.js
+++ b/client/src/app-components/ticket-event.js
@@ -117,7 +117,7 @@ class TicketEvent extends React.Component {
         return (
             <div  className="ticket-event__comment-content">
                 <div dangerouslySetInnerHTML={{__html: this.props.content}}></div>
-                {((this.props.author.id === this.props.userId) || (this.props.userStaff)) ? this.renderEditIcon() : null}
+                {((this.props.author.id == this.props.userId && this.props.author.staff == this.props.userStaff) || this.props.userStaff) ? this.renderEditIcon() : null}
             </div>
         )
     }
diff --git a/client/src/app-components/ticket-viewer.js b/client/src/app-components/ticket-viewer.js
index 9f8db3d7..e965fe8e 100644
--- a/client/src/app-components/ticket-viewer.js
+++ b/client/src/app-components/ticket-viewer.js
@@ -69,7 +69,6 @@ class TicketViewer extends React.Component {
 
     render() {
         const ticket = this.props.ticket;
-
         return (
             <div className="ticket-viewer">
                 <div className="ticket-viewer__header row">
@@ -605,6 +604,7 @@ class TicketViewer extends React.Component {
 }
 
 export default connect((store) => {
+
     return {
         userId: store.session.userId,
         userStaff: store.session.staff,
diff --git a/client/src/reducers/session-reducer.js b/client/src/reducers/session-reducer.js
index 4f8104dd..08374ad1 100644
--- a/client/src/reducers/session-reducer.js
+++ b/client/src/reducers/session-reducer.js
@@ -77,7 +77,8 @@ class SessionReducer extends Reducer {
             logged: true,
             pending: false,
             failed: false,
-            userId: payload.data.userId
+            userId: payload.data.userId,
+            staff: payload.data.staff
         });
     }
 
@@ -94,6 +95,7 @@ class SessionReducer extends Reducer {
             sessionStore.storeRememberData({
                 token: resultData.rememberToken,
                 userId: resultData.userId,
+                staff: resultData.staff,
                 expiration: resultData.rememberExpiration
             });
         }
diff --git a/server/controllers/ticket/seen.php b/server/controllers/ticket/seen.php
index a0d6ebc7..bcc1e7cc 100755
--- a/server/controllers/ticket/seen.php
+++ b/server/controllers/ticket/seen.php
@@ -44,7 +44,7 @@ class SeenController extends Controller {
         $user = Controller::getLoggedUser();
         $ticket = Ticket::getByTicketNumber($ticketnumber);
 
-        if(!$user->canManageTicket($this->ticket) && !$ticket->isAuthor($user)) {
+        if(!$user->canManageTicket($ticket) && !$ticket->isAuthor($user)) {
             throw new RequestException(ERRORS::NO_PERMISSION);
         }
 
diff --git a/server/controllers/user/get.php b/server/controllers/user/get.php
index 98f480be..8bd6d00a 100755
--- a/server/controllers/user/get.php
+++ b/server/controllers/user/get.php
@@ -54,6 +54,7 @@ class GetUserController extends Controller {
         Response::respondSuccess([
             'name' => $user->name,
             'email' => $user->email,
+            'staff' => false,
             'verified' => !$user->verificationToken,
             'tickets' => $parsedTicketList,
             'customfields' => $user->xownCustomfieldvalueList->toArray(),
diff --git a/server/controllers/user/login.php b/server/controllers/user/login.php
index 05eee6f1..b0a2d4b4 100755
--- a/server/controllers/user/login.php
+++ b/server/controllers/user/login.php
@@ -108,7 +108,7 @@ class LoginController extends Controller {
         return array(
             'userId' => $userInstance->id,
             'userEmail' => $userInstance->email,
-            'staff' => Controller::request('staff'),
+            'staff' => !!Controller::request('staff'),
             'token' => Session::getInstance()->getToken(),
             'rememberToken' => $this->rememberToken,
             'rememberExpiration' => $this->rememberExpiration
diff --git a/server/models/Staff.php b/server/models/Staff.php
index aed2296a..da28038a 100755
--- a/server/models/Staff.php
+++ b/server/models/Staff.php
@@ -50,7 +50,7 @@ class Staff extends DataStore {
     }
 
     public function canManageTicket(Ticket $ticket){
-        return $this->sharedDepartmentList->includesId($ticket->departmentId) || $this->id === $ticket->author_staff_id;
+        return $this->sharedDepartmentList->includesId($ticket->departmentId) || $this->id === $ticket->authorStaffId;
     }
 
     public function toArray() {
diff --git a/tests/init.rb b/tests/init.rb
index 5274d26f..5f3ef8a0 100644
--- a/tests/init.rb
+++ b/tests/init.rb
@@ -25,6 +25,7 @@ require './user/edit-email.rb'
 require './user/get.rb'
 require './user/enable-disable.rb'
 require './ticket/create.rb'
+require './ticket/seen.rb'
 require './ticket/comment.rb'
 require './ticket/get.rb'
 require './ticket/custom-response.rb'
diff --git a/tests/ticket/seen.rb b/tests/ticket/seen.rb
index bdccd03a..8240bb6b 100644
--- a/tests/ticket/seen.rb
+++ b/tests/ticket/seen.rb
@@ -2,10 +2,12 @@ describe '/ticket/seen' do
 
     describe 'when a staff is logged' do
         request('/user/logout')
-        Scripts.login($staff[:email], $staff[:password], true)
+        ticket = $database.getRow('ticket', 1, 'id')
 
+        Scripts.login($staff[:email], $staff[:password], true)
+        Scripts.assignTicket(ticket['ticket_number'])
         it 'should change unread if everything is okey ' do
-            ticket = $database.getRow('ticket', 1, 'id')
+            
             result = request('/ticket/seen', {
                         ticketNumber: ticket['ticket_number'],
                         csrf_userid: $csrf_userid,
@@ -13,15 +15,29 @@ describe '/ticket/seen' do
                     })
             (result['status']).should.equal('success')
             ticket = $database.getRow('ticket', 1, 'id')
-            (ticket['unreadStaff']).should.equal('0')
+            (ticket['unread_staff']).should.equal('0')
 
         end
     end
 
     describe 'when an user is logged' do
-
+        
         request('/user/logout')
         Scripts.login()
+        it 'should fail if user is not author' do
+            ticket = $database.getRow('ticket', 1, 'id')
+            result = request('/ticket/seen', {
+                ticketNumber: ticket['ticket_number'],
+                csrf_userid: $csrf_userid,
+                csrf_token: $csrf_token
+            })
+
+            (result['status']).should.equal('fail')
+            (result['message']).should.equal('NO_PERMISSION')
+        end
+
+        request('/user/logout')
+        Scripts.login('user_get@os4.com', 'user_get')
         it 'should change unread if everything is okey ' do
             ticket = $database.getRow('ticket', 1, 'id')
             result = request('/ticket/seen', {
diff --git a/tests/user/login.rb b/tests/user/login.rb
index e3d09c9e..373d7050 100644
--- a/tests/user/login.rb
+++ b/tests/user/login.rb
@@ -41,7 +41,7 @@ describe '/user/login' do
         })
 
         (result['status']).should.equal('success')
-        (result['data']['staff']).should.equal('true')
+        (result['data']['staff']).should.equal(true)
     end
 
     it 'should work with remember token' do