From 8380dda25a53b40b692e938653c67ae996873563 Mon Sep 17 00:00:00 2001
From: Ricky Barrette <rickbarrette@gmail.com>
Date: Fri, 29 Dec 2023 17:06:00 -0500
Subject: [PATCH] render 403 when forbidden

---
 app/helpers/auth_helper.rb    | 6 +++---
 app/views/public/401.html.erb | 1 -
 config/locales/en.yml         | 1 -
 3 files changed, 3 insertions(+), 5 deletions(-)
 delete mode 100644 app/views/public/401.html.erb

diff --git a/app/helpers/auth_helper.rb b/app/helpers/auth_helper.rb
index 42b81a2..7959fec 100644
--- a/app/helpers/auth_helper.rb
+++ b/app/helpers/auth_helper.rb
@@ -13,7 +13,7 @@ module AuthHelper
   def require_user
     return unless session[:token].nil?
     if !User.current.logged?
-      render :file => "public/401.html.erb", :status => :unauthorized, :layout =>true
+      render_403
     end
   end
   
@@ -27,14 +27,14 @@ module AuthHelper
   
   def check_permission(permission)
     if !allowed_to?(permission)
-      render :file => "public/401.html.erb", :status => :unauthorized, :layout =>true 
+      render_403
     end
   end
   
   
   def global_check_permission(permission)
     if !globaly_allowed_to?(permission)
-      render :file => "public/401.html.erb", :status => :unauthorized, :layout =>true 
+      render_403
     end
   end
   
diff --git a/app/views/public/401.html.erb b/app/views/public/401.html.erb
deleted file mode 100644
index 50381b8..0000000
--- a/app/views/public/401.html.erb
+++ /dev/null
@@ -1 +0,0 @@
-<%= flash.now[:error] = t(:label_401) %>
diff --git a/config/locales/en.yml b/config/locales/en.yml
index c93d22c..5543f76 100644
--- a/config/locales/en.yml
+++ b/config/locales/en.yml
@@ -25,7 +25,6 @@ en:
   label_search_estimates: "Search Estimates"
   label_search: "Search"
   label_estimates: "Estimates"
-  label_401: "Not Authorized"
   warn_ru_sure: "You sure?"
   label_delete: "Delete"
   label_edit: "Edit"