fix: unauthorized admin should receive 403 code
This commit is contained in:
parent
4f16dd0c81
commit
4cd6fe8a56
@ -47,7 +47,7 @@ router.get(['/a', '/a/*'], (req, res, next) => {
|
|||||||
'manage:api'
|
'manage:api'
|
||||||
])) {
|
])) {
|
||||||
_.set(res.locals, 'pageMeta.title', 'Unauthorized')
|
_.set(res.locals, 'pageMeta.title', 'Unauthorized')
|
||||||
return res.render('unauthorized', { action: 'view' })
|
return res.status(403).render('unauthorized', { action: 'view' })
|
||||||
}
|
}
|
||||||
|
|
||||||
_.set(res.locals, 'pageMeta.title', 'Admin')
|
_.set(res.locals, 'pageMeta.title', 'Admin')
|
||||||
|
Loading…
Reference in New Issue
Block a user