From a0227cad69aff9486fba1d7b2a19e6da97450100 Mon Sep 17 00:00:00 2001
From: Frederic Guillot <fred@kanboard.net>
Date: Sat, 10 Sep 2016 23:12:38 -0400
Subject: Define only what is allowed for column restrictions

---
 app/Middleware/PostAuthenticationMiddleware.php | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

(limited to 'app/Middleware')

diff --git a/app/Middleware/PostAuthenticationMiddleware.php b/app/Middleware/PostAuthenticationMiddleware.php
index f7eccbce..8ad1f1a3 100644
--- a/app/Middleware/PostAuthenticationMiddleware.php
+++ b/app/Middleware/PostAuthenticationMiddleware.php
@@ -26,9 +26,9 @@ class PostAuthenticationMiddleware extends BaseMiddleware
 
             if ($this->request->isAjax()) {
                 $this->response->text('Not Authorized', 401);
+            } else {
+                $this->response->redirect($this->helper->url->to('TwoFactorController', 'code'));
             }
-
-            $this->response->redirect($this->helper->url->to('TwoFactorController', 'code'));
         }
 
         $this->next();
-- 
cgit v1.2.3