From d4b424501757874ce319b292a6ca7d96b3c5bd40 Mon Sep 17 00:00:00 2001
From: Stavros <steveiliop56@gmail.com>
Date: Fri, 15 May 2026 18:39:12 +0300
Subject: [PATCH] chore: revert 4c741a5 and use 403 for acl errors

---
 internal/controller/proxy_controller.go | 18 +++++++++---------
 1 file changed, 9 insertions(+), 9 deletions(-)

diff --git a/internal/controller/proxy_controller.go b/internal/controller/proxy_controller.go
index 26975fab..95afe113 100644
--- a/internal/controller/proxy_controller.go
+++ b/internal/controller/proxy_controller.go
@@ -144,9 +144,9 @@ func (controller *ProxyController) proxyHandler(c *gin.Context) {
 
 		if !controller.useBrowserResponse(proxyCtx) {
 			c.Header("x-tinyauth-location", redirectURL)
-			c.JSON(401, gin.H{
-				"status":  401,
-				"message": "Unauthorized",
+			c.JSON(403, gin.H{
+				"status":  403,
+				"message": "Forbidden",
 			})
 			return
 		}
@@ -190,9 +190,9 @@ func (controller *ProxyController) proxyHandler(c *gin.Context) {
 
 			if !controller.useBrowserResponse(proxyCtx) {
 				c.Header("x-tinyauth-location", redirectURL)
-				c.JSON(401, gin.H{
-					"status":  401,
-					"message": "Unauthorized",
+				c.JSON(403, gin.H{
+					"status":  403,
+					"message": "Forbidden",
 				})
 				return
 			}
@@ -234,9 +234,9 @@ func (controller *ProxyController) proxyHandler(c *gin.Context) {
 
 				if !controller.useBrowserResponse(proxyCtx) {
 					c.Header("x-tinyauth-location", redirectURL)
-					c.JSON(401, gin.H{
-						"status":  401,
-						"message": "Unauthorized",
+					c.JSON(403, gin.H{
+						"status":  403,
+						"message": "Forbidden",
 					})
 					return
 				}