Commit 60009227 authored by Zach Copley's avatar Zach Copley

Return an http auth error, when a client sends in an invalid auth user, even...

Return an http auth error, when a client sends in an invalid auth user, even when http auth is not required.
parent 766cf99f
......@@ -267,7 +267,7 @@ class ApiAuthAction extends ApiAction
$this->access = self::READ_WRITE;
if (empty($this->auth_user) && $required) {
if (empty($this->auth_user) && ($required || isset($_SERVER['PHP_AUTH_USER']))) {
// basic authentication failed
......
Markdown is supported
0%
or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment