fixes #2079

2014-01-08 15:42:27 -05:00
parent 986b1c2029
commit d3a67961e9
2 changed files with 9 additions and 3 deletions
--- a/app/controllers/application_controller.rb
+++ b/app/controllers/application_controller.rb
@@ -53,10 +53,14 @@ protected

    respond_to do |fmt|
      fmt.html do
-        if request.get?
-          redirect_to new_session_path(:url => previous_url), :notice => "Access denied"
+        if CurrentUser.is_anonymous?
+          if request.get?
+            redirect_to new_session_path(:url => previous_url), :notice => "Access denied"
+          else
+            redirect_to new_session_path, :notice => "Access denied"
+          end
        else
-          redirect_to new_session_path, :notice => "Access denied"
+          render :template => "static/access_denied", :status => 403
        end
      end
      fmt.xml do