diff --git a/app/controllers/organizations_controller.rb b/app/controllers/organizations_controller.rb
index ab97b5b1b..4fa7659c9 100644
--- a/app/controllers/organizations_controller.rb
+++ b/app/controllers/organizations_controller.rb
@@ -352,7 +352,7 @@ class OrganizationsController < ApplicationController
     if !params[:name].nil?
       condition = "%#{params[:name].strip}%".gsub(" ","")
     end
-    sql = "select courses.* from courses inner join members on courses.id = members.course_id where members.user_id = #{User.current.id} and courses.name like '#{condition}'"+
+    sql = "select courses.* from courses inner join members on courses.id = members.course_id where members.user_id = #{User.current.id} and courses.is_public = 1 and courses.name like '#{condition}'"+
         "and courses.id not in (select distinct org_courses.course_id from org_courses where org_courses.organization_id = #{@organization.id}) and courses.is_delete=0"
     #user_courses = Course.find_by_sql(sql)
     @courses = Course.find_by_sql(sql)
@@ -396,7 +396,7 @@ class OrganizationsController < ApplicationController
     if !params[:name].nil?
       condition = "%#{params[:name].strip}%".gsub(" ","")
     end
-    sql = "select projects.* from projects inner join members on projects.id = members.project_id where members.user_id = #{User.current.id} and projects.status != 9 and projects.name like '#{condition}'" +
+    sql = "select projects.* from projects inner join members on projects.id = members.project_id where members.user_id = #{User.current.id} and projects.status != 9 and projects.is_public = 1 and projects.name like '#{condition}'" +
           " and projects.id not in (select org_projects.project_id from org_projects where organization_id = #{@organization.id}) and status=1"
     #user_projects = Course.find_by_sql(sql)
     @projects = Course.find_by_sql(sql)