jaculabilis/danbooru
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

Fix #4020: Flagger name information leak.

Browse Source
This commit is contained in:
evazion
2018-12-14 18:08:43 -06:00
parent 9de5857032
commit a1df1abf0b
1 changed files with 7 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

7
app/models/post_event.rb
View File

@@ -61,4 +61,11 @@ class PostEvent
"type": nil,
}
end
# XXX can't use hidden_attributes because we don't inherit from ApplicationRecord.
def serializable_hash(**options)
hash = super
hash = hash.except(:creator_id) unless is_creator_visible?
hash
end
end