diff --git a/core/src/Revolution/modAccessibleObject.php b/core/src/Revolution/modAccessibleObject.php
index af80f0baf37..95c5eddaecf 100644
--- a/core/src/Revolution/modAccessibleObject.php
+++ b/core/src/Revolution/modAccessibleObject.php
@@ -249,10 +249,10 @@ public function remove(array $ancestors = [])
      */
     public function checkPolicy($criteria, $targets = null, modUser $user = null)
     {
-        if (!$user) {
-            $user = &$this->xpdo->user;
-        }
         if ($criteria && $this->xpdo instanceof modX && $this->xpdo->getSessionState() == modX::SESSION_STATE_INITIALIZED) {
+            if (!$user) {
+                $user = $this->xpdo->user;
+            }
             if ($user->get('sudo')) {
                 return true;
             }