From 0b463fa70c93e234426f5115511319711abeeb14 Mon Sep 17 00:00:00 2001
From: netkas <netkas.nosial@gmail.com>
Date: Tue, 3 Jun 2025 13:41:04 -0400
Subject: [PATCH] Add authentication check for operator permissions in
 DownloadAttachment

---
 src/FederationServer/Methods/Attachments/DownloadAttachment.php | 1 +
 1 file changed, 1 insertion(+)

diff --git a/src/FederationServer/Methods/Attachments/DownloadAttachment.php b/src/FederationServer/Methods/Attachments/DownloadAttachment.php
index a8ad400..20bcaf5 100644
--- a/src/FederationServer/Methods/Attachments/DownloadAttachment.php
+++ b/src/FederationServer/Methods/Attachments/DownloadAttachment.php
@@ -42,6 +42,7 @@
                 {
                     // Require authentication if confidential
                     $operator = FederationServer::getAuthenticatedOperator();
+
                     if(!$operator->canManageBlacklist())
                     {
                         throw new RequestException('Insufficient Permissions to view confidential evidence', 401);