Merge pull request #48 from mkomitee/master

401 is a more proper status_code for failed authentication
2026-06-05 23:00:18 +00:00 · 2012-06-05 01:22:44 -07:00
parent 32d397c43d 98ed988b76
commit b7437b408b
1 changed files with 1 additions and 1 deletions
@@ -269,7 +269,7 @@ def digest_auth(qop=None, user='user', passwd='passwd'):
        response.headers['WWW-Authenticate'] = auth.to_header()
        return response
    elif not check_digest_auth(user, passwd):
-        return status_code(403)
+        return status_code(401)
    return jsonify(authenticated=True, user=user)