diff --git a/app/controllers/attachments_controller.rb b/app/controllers/attachments_controller.rb
index ed27d9388..2f642f544 100644
--- a/app/controllers/attachments_controller.rb
+++ b/app/controllers/attachments_controller.rb
@@ -209,7 +209,7 @@ private
   end
 
   def read_authorize
-    if @attachment.container_type == "HomeworkAttach"
+    if @attachment.container_type == "HomeworkAttach" || @attachment.container_type == 'Bid'
      true
       #User.current.allowed_to?(:view_homework_attaches, @attachment.project) ? true : deny_access
     else