mirror of
https://github.com/kikobar/mastodon.git
synced 2024-11-18 13:17:35 +00:00
Fix potential private status leak (#10969)
This commit is contained in:
parent
d34a3a2cc7
commit
7fa23ec697
|
@ -27,7 +27,7 @@ class StatusesController < ApplicationController
|
|||
def show
|
||||
respond_to do |format|
|
||||
format.html do
|
||||
unless user_signed_in?
|
||||
if current_account.nil?
|
||||
skip_session!
|
||||
expires_in 10.seconds, public: true
|
||||
end
|
||||
|
|
Loading…
Reference in a new issue