diff --git a/app/controllers/commons_controller.rb b/app/controllers/commons_controller.rb
index 1f6dce053..fa5e14dc1 100644
--- a/app/controllers/commons_controller.rb
+++ b/app/controllers/commons_controller.rb
@@ -44,8 +44,8 @@ class CommonsController < ApplicationController
   def validate_power
     code =
       case params[:object_type].strip
-      when 'message'
-        if current_user.course_identity(@object.board.course) >= 5 && @object.author != current_user
+      when 'message', 'journals_for_message'
+        if current_user.course_identity(@object.board.course) >= Course::STUDENT && @object.author != current_user
           403
         else
           200