diff options
author | Zach Copley <zach@status.net> | 2010-03-26 18:51:01 +0000 |
---|---|---|
committer | Zach Copley <zach@status.net> | 2010-03-26 18:51:01 +0000 |
commit | 379df1ce3e7fa38b2e9ed8324d9ed43bbb4a5219 (patch) | |
tree | 173a1f53fb50d576624d8dc4f7eec79eaf5dc9b4 /lib/apiauth.php | |
parent | c905d7e9a02aef87cd883c279f9eeac1c83003b7 (diff) |
Return an http auth error, when a client sends in an invalid auth user, even when http auth is not required.
Diffstat (limited to 'lib/apiauth.php')
-rw-r--r-- | lib/apiauth.php | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/lib/apiauth.php b/lib/apiauth.php index 17f803a1c..e78de618e 100644 --- a/lib/apiauth.php +++ b/lib/apiauth.php @@ -267,7 +267,7 @@ class ApiAuthAction extends ApiAction $this->access = self::READ_WRITE; - if (empty($this->auth_user) && $required) { + if (empty($this->auth_user) && ($required || isset($_SERVER['PHP_AUTH_USER']))) { // basic authentication failed |