use 403 instead of 401 for ErrUserProhibitLogin (#7591)

6 years ago · c236ba35ca
1 changed files with 1 additions and 1 deletions
--- a/routers/repo/http.go
+++ b/routers/repo/http.go
@ -216,7 +216,7 @@ func HTTP(ctx *context.Context) {
 				authUser, err = models.UserSignIn(authUsername, authPasswd)
 				if err != nil {
 					if models.IsErrUserProhibitLogin(err) {
-						ctx.HandleText(http.StatusUnauthorized, "User is not permitted to login")
+						ctx.HandleText(http.StatusForbidden, "User is not permitted to login")
 						return
 					} else if !models.IsErrUserNotExist(err) {
 						ctx.ServerError("UserSignIn error: %v", err)