diff options
author | Florian Pritz <bluewind@xinu.at> | 2016-07-29 11:17:06 +0200 |
---|---|---|
committer | Florian Pritz <bluewind@xinu.at> | 2016-07-29 11:17:06 +0200 |
commit | 2e7269f566a0204dbc83d6c8f423886e27d60363 (patch) | |
tree | cd6dc0497039b2959a8ebb2fb8ca6e510a681e3f /application/exceptions | |
parent | 0db79529d129dd4fe1e9b7bf823e07510c806bd4 (diff) |
Return 403 instead of 401 for missing authentication
According to the RFC this is only useful for services that use HTTP's
built in authentication schemes. We don't so we can't use this code.
References: https://tools.ietf.org/html/rfc7235
Signed-off-by: Florian Pritz <bluewind@xinu.at>
Diffstat (limited to 'application/exceptions')
-rw-r--r-- | application/exceptions/NotAuthenticatedException.php | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/application/exceptions/NotAuthenticatedException.php b/application/exceptions/NotAuthenticatedException.php index de26318d8..99ddd82fc 100644 --- a/application/exceptions/NotAuthenticatedException.php +++ b/application/exceptions/NotAuthenticatedException.php @@ -9,6 +9,6 @@ namespace exceptions; class NotAuthenticatedException extends UserInputException { public function get_http_error_code() { - return 401; + return 403; } } |