From 800090542d91beae40bc81fc41b67ba61c47da77 Mon Sep 17 00:00:00 2001
From: James Magahern <james@magahern.com>
Date: Mon, 16 Jun 2025 19:18:14 -0700
Subject: [PATCH] updates: should really return 401 for bad auth instead of 404

---
 kordophone/Bridge/MBIMHTTPConnection.m | 9 +++++++++
 1 file changed, 9 insertions(+)

diff --git a/kordophone/Bridge/MBIMHTTPConnection.m b/kordophone/Bridge/MBIMHTTPConnection.m
index 5507df8..86ed2a0 100644
--- a/kordophone/Bridge/MBIMHTTPConnection.m
+++ b/kordophone/Bridge/MBIMHTTPConnection.m
@@ -17,6 +17,7 @@
 
 #import <Security/Security.h>
 #import "HTTPMessage.h"
+#import "GCDAsyncSocket.h"
 
 @interface HTTPConnection (/* INTERNAL */)
 - (BOOL)isAuthenticated;
@@ -139,6 +140,14 @@
         if (![self isAuthenticated] && ![queryAuthToken isValid]) {
             NSLog(@"Websocket: auth invalid, rejecting.");
             NSLog(@"Query Token: %@, raw: %@", queryAuthToken, authTokenString);
+
+
+            // Respond with 401 unauthorized
+            HTTPMessage *response = [[HTTPMessage alloc] initResponseWithStatusCode:401 description:nil version:HTTPVersion1_1];
+            [response setHeaderField:@"Content-Length" value:@"0"];
+            
+            NSData *responseData = [self preprocessErrorResponse:response];
+            [asyncSocket writeData:responseData withTimeout:30 tag:90];
             return nil;
         }