refactored upload so that it is not dependent on Folder Browse permission

Oqtane.Server/Controllers/FileController.cs

@@ -139,9 +139,13 @@ namespace Oqtane.Controllers
             }
             else
             {
-                _logger.Log(LogLevel.Error, this, LogFunction.Security, "Unauthorized File Get Attempt {Name} For Folder {FolderId}", name, folderId);
-                HttpContext.Response.StatusCode = (int)HttpStatusCode.Forbidden;
-                return null;
+                if (file != null)
+                {
+                    _logger.Log(LogLevel.Error, this, LogFunction.Security, "Unauthorized File Get Attempt {Name} For Folder {FolderId}", name, folderId);
+                    HttpContext.Response.StatusCode = (int)HttpStatusCode.Forbidden;
+                    file = null;
+                }
+                return file;
             }
         }