When signups are prohibited, respond with HTTP 403

This commit is contained in:
Franz Liedke 2019-08-21 23:48:24 +02:00
parent b60617b849
commit 2b6535525b
No known key found for this signature in database
GPG Key ID: 9A0231A879B055F4

View File

@ -74,7 +74,7 @@ class RegisterUserHandler
$data = $command->data;
if (! $this->settings->get('allow_sign_up')) {
$this->assertAdmin($actor);
$this->assertPermission($actor->can('administrate'));
}
$password = Arr::get($data, 'attributes.password');