Skip to content

Commit

Permalink
Fix potential private status leak (mastodon#10969)
Browse files Browse the repository at this point in the history
  • Loading branch information
@ClearlyClaire @hiyuki2578
ClearlyClaire authored and hiyuki2578 committed Oct 2, 2019
1 parent f7a8501 commit 101fb04
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion app/controllers/statuses_controller.rb
View file
Original file line number Diff line number Diff line change
Expand Up @@ -27,7 +27,7 @@ class StatusesController < ApplicationController
def show
respond_to do |format|
format.html do
unless user_signed_in?
if current_account.nil?
skip_session!
expires_in 10.seconds, public: true
end
Expand Down

0 comments on commit 101fb04

Please sign in to comment.