Return an http auth error, when a client sends in an invalid auth user, even when http auth is not required.

This commit is contained in:
Zach Copley 2010-03-26 18:51:01 +00:00
parent 94f904bf66
commit b82e55356d

View File

@ -267,7 +267,7 @@ class ApiAuthAction extends ApiAction
$this->access = self::READ_WRITE;
if (empty($this->auth_user) && $required) {
if (empty($this->auth_user) && ($required || isset($_SERVER['PHP_AUTH_USER']))) {
// basic authentication failed