[ticket/10961] Send HTTP 403 when applicable

PHPBB3-10961
author: Jakub Senko <jakubsenko@gmail.com> 2016-05-29 12:42:57 +0200
committer: Jakub Senko <jakubsenko@gmail.com> 2016-09-01 08:48:37 +0200
commit: 4b6c2c8cde0b87d32f8df8af87239580ddc340c4 (patch)
tree: 22b13f4776b5111624efedcc73d1b3dc0877117a /phpBB/phpbb/message/topic_form.php
parent: dff950162cd4d79d5e199e833e46a98d381397dc (diff)
download: forums-4b6c2c8cde0b87d32f8df8af87239580ddc340c4.tar
forums-4b6c2c8cde0b87d32f8df8af87239580ddc340c4.tar.gz
forums-4b6c2c8cde0b87d32f8df8af87239580ddc340c4.tar.bz2
forums-4b6c2c8cde0b87d32f8df8af87239580ddc340c4.tar.xz
forums-4b6c2c8cde0b87d32f8df8af87239580ddc340c4.zip
1 files changed, 8 insertions, 0 deletions
diff --git a/phpBB/phpbb/message/topic_form.php b/phpBB/phpbb/message/topic_form.php
index 174643bb81..dbb883c142 100644
--- a/phpBB/phpbb/message/topic_form.php
+++ b/phpBB/phpbb/message/topic_form.php
@@ -71,6 +71,14 @@ class topic_form extends form
 
 		if (!$this->auth->acl_get('f_read', $this->topic_row['forum_id']))
 		{
+			if ($this->user->data['user_id'] != ANONYMOUS)
+			{
+				send_status_line(403, 'Forbidden');
+			}
+			else
+			{
+				send_status_line(401, 'Unauthorized');
+			}
 			return 'SORRY_AUTH_READ';
 		}
author	Jakub Senko <jakubsenko@gmail.com>	2016-05-29 12:42:57 +0200
committer	Jakub Senko <jakubsenko@gmail.com>	2016-09-01 08:48:37 +0200
commit	4b6c2c8cde0b87d32f8df8af87239580ddc340c4 (patch)
tree	22b13f4776b5111624efedcc73d1b3dc0877117a /phpBB/phpbb/message/topic_form.php
parent	dff950162cd4d79d5e199e833e46a98d381397dc (diff)
download	forums-4b6c2c8cde0b87d32f8df8af87239580ddc340c4.tar forums-4b6c2c8cde0b87d32f8df8af87239580ddc340c4.tar.gz forums-4b6c2c8cde0b87d32f8df8af87239580ddc340c4.tar.bz2 forums-4b6c2c8cde0b87d32f8df8af87239580ddc340c4.tar.xz forums-4b6c2c8cde0b87d32f8df8af87239580ddc340c4.zip