diff --git a/modules/comment/classes/Comment/Controller/Rest/Comments.php b/modules/comment/classes/Comment/Controller/Rest/Comments.php
index 03e61ad791..507502dd2b 100644
--- a/modules/comment/classes/Comment/Controller/Rest/Comments.php
+++ b/modules/comment/classes/Comment/Controller/Rest/Comments.php
@@ -61,7 +61,10 @@ static function post_entity($id, $params) {
     }
 
     $item = ORM::factory("Item", $i_id);
-    Access::required("edit", $item);
+    Access::required("view", $item);
+    if (!Comment::can_comment()) {
+      throw Rest_Exception::factory(403);
+    }
 
     // Build the comment model.
     $comment = ORM::factory("Comment");