diff --git a/app/controllers/projects_controller.rb b/app/controllers/projects_controller.rb
index d3df57982..24a3ff19f 100644
--- a/app/controllers/projects_controller.rb
+++ b/app/controllers/projects_controller.rb
@@ -558,6 +558,11 @@ class ProjectsController < ApplicationController
 
   # Show @project
   def show
+    if(@project && !@project.is_public && !User.current.member_of?(@project))
+      render_403
+      return
+    end
+
     @project_type = params[:project_type]
     
     # try to redirect to the requested menu item