Return 403 when missing permissions instead of 401

2024-05-10 13:28:15 +02:00
parent 86d98eda8d
commit e9074ea97a
1 changed files with 2 additions and 2 deletions
--- a/src/Umbraco.Cms.Api.Management/Filters/RequireTreeRootAccessAttribute.cs
+++ b/src/Umbraco.Cms.Api.Management/Filters/RequireTreeRootAccessAttribute.cs
@@ -23,9 +23,9 @@ public abstract class RequireTreeRootAccessAttribute : ActionFilterAttribute

        var problemDetails = new ProblemDetails
        {
-            Title = "Unauthorized user",
+            Title = "Forbidden",
            Detail = "The current backoffice user should have access to the tree root",
-            Status = StatusCodes.Status401Unauthorized,
+            Status = StatusCodes.Status403Forbidden,
            Type = "Error",
        };