From: Mikael Nordfeldth <mmn@hethane.se>
Date: Mon, 10 Nov 2014 10:43:08 +0000 (+0100)
Subject: Less verbose logic for checking api authentication
X-Git-Url: https://git.mxchange.org/?a=commitdiff_plain;h=403cb858bee424aa3b35e450f44f56da1f020a09;p=quix0rs-gnu-social.git

Less verbose logic for checking api authentication
---

diff --git a/lib/apiauthaction.php b/lib/apiauthaction.php
index 6415475f9f..ed03820daa 100644
--- a/lib/apiauthaction.php
+++ b/lib/apiauthaction.php
@@ -97,16 +97,12 @@ class ApiAuthAction extends ApiAction
         } else {
             $oauthReq = $this->getOAuthRequest();
 
-            if (!$oauthReq) {
-                if ($this->requiresAuth()) {
-                    $this->checkBasicAuthUser(true);
-                } else {
-                    // Check to see if a basic auth user is there even
-                    // if one's not required
-                    $this->checkBasicAuthUser(false);
-                }
-            } else {
+            if ($oauthReq instanceof OAuthRequest) {
                 $this->checkOAuthRequest($oauthReq);
+            } else {
+                // If not using OAuth, check if there is a basic auth
+                // and require it if the current action requires it.
+                $this->checkBasicAuthUser($this->requiresAuth());
             }
 
             // NOTE: Make sure we're scoped properly based on the auths!