Return an http auth error, when a client sends in an invalid auth user, even when...

diff --git a/lib/apiauth.php b/lib/apiauth.php
index 17f803a1ca9948bf7ac64fd4623b05d300dcf776..e78de618ee2a4eb1713278d2592a54efd828c127 100644 (file)
--- a/lib/apiauth.php
+++ b/lib/apiauth.php
@@ -267,7 +267,7 @@ class ApiAuthAction extends ApiAction
 
             $this->access = self::READ_WRITE;
 
-            if (empty($this->auth_user) && $required) {
+            if (empty($this->auth_user) && ($required || isset($_SERVER['PHP_AUTH_USER']))) {
 
                 // basic authentication failed