Return a forbidden response code if unauthorized

AsgardCms · Sep 16, 2017 · 28c5439 · 28c5439
1 parent b3a544d
commit 28c5439
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/Modules/Core/Http/Middleware/Authorization.php b/Modules/Core/Http/Middleware/Authorization.php
@@ -50,7 +50,7 @@ public function handle($request, \Closure $next, $permission)
     private function handleUnauthorizedRequest(Request $request, $permission)
     {
         if ($request->ajax()) {
-            return response('Unauthorized.', Response::HTTP_UNAUTHORIZED);
+            return response('Unauthorized.', Response::HTTP_FORBIDDEN);
         }
         if ($request->user() === null) {
             return redirect()->guest('auth/login');