From 1468c1c66c830518059ce5eb547c4621494cbe19 Mon Sep 17 00:00:00 2001
From: Nick Sergeant <nsergeant@hubspot.com>
Date: Wed, 13 Mar 2019 14:22:01 -0400
Subject: [PATCH] require user

---
 snipts/views.py | 6 +++++-
 1 file changed, 5 insertions(+), 1 deletion(-)

diff --git a/snipts/views.py b/snipts/views.py
index 9398000..b5668a8 100644
--- a/snipts/views.py
+++ b/snipts/views.py
@@ -10,8 +10,9 @@ from django.db.models import Q
 from django.http import (
     Http404,
     HttpResponse,
-    HttpResponseRedirect,
     HttpResponseBadRequest,
+    HttpResponseForbidden,
+    HttpResponseRedirect,
 )
 from django.shortcuts import get_object_or_404, render
 from django.template import RequestContext
@@ -390,6 +391,9 @@ def redirect_user_tag_feed(request, username, tag_slug):
     return HttpResponseRedirect(u"/{}/tag/{}/?rss".format(username, tag_slug))
 
 def report_spam(request, snipt_id):
+    if not request.user.is_authenticated():
+        return HttpResponseForbidden()
+
     snipt = get_object_or_404(Snipt, pk=snipt_id)
 
     send_mail('[Snipt] Spam reported',