Return 403 when missing permissions instead of 401

2024-05-10 14:36:25 +02:00
parent e9074ea97a
commit b4b512dd53
1 changed files with 1 additions and 1 deletions
--- a/src/Umbraco.Cms.Api.Management/Filters/RequireTreeRootAccessAttribute.cs
+++ b/src/Umbraco.Cms.Api.Management/Filters/RequireTreeRootAccessAttribute.cs
@@ -29,7 +29,7 @@ public abstract class RequireTreeRootAccessAttribute : ActionFilterAttribute
            Type = "Error",
        };

-        context.Result = new ObjectResult(problemDetails) { StatusCode = StatusCodes.Status401Unauthorized };
+        context.Result = new ObjectResult(problemDetails) { StatusCode = problemDetails.Status };
    }

    protected abstract int[] GetUserStartNodeIds(IUser user, ActionExecutingContext context);