diff options
| author | Yorick Peterse <yorickpeterse@gmail.com> | 2019-01-24 15:49:22 +0300 |
|---|---|---|
| committer | Yorick Peterse <yorickpeterse@gmail.com> | 2019-01-24 15:49:25 +0300 |
| commit | caefca87e40245c414f984c85f49109358b78118 (patch) | |
| tree | 1dd27858e3d3b4d2f70b90d8852346b691a8ff56 /app | |
| parent | f339444063e41746886805746cb5a3557e0c9764 (diff) | |
Merge branch 'security-fix-new-issues-login-message-11-7' into 'security-11-7'
[11.7] Use common error for not logged in users when creating issues
See merge request gitlab/gitlabhq!2811
(cherry picked from commit f51985622240a3ea84b122a01c0fdb20c4320443)
8179795d Use common error for unauthenticated users
Diffstat (limited to 'app')
| -rw-r--r-- | app/controllers/projects/issues_controller.rb | 10 |
1 files changed, 1 insertions, 9 deletions
diff --git a/app/controllers/projects/issues_controller.rb b/app/controllers/projects/issues_controller.rb index e3e60665506..f45cac86f5a 100644 --- a/app/controllers/projects/issues_controller.rb +++ b/app/controllers/projects/issues_controller.rb @@ -19,7 +19,7 @@ class Projects::IssuesController < Projects::ApplicationController prepend_before_action(only: [:index]) { authenticate_sessionless_user!(:rss) } prepend_before_action(only: [:calendar]) { authenticate_sessionless_user!(:ics) } - prepend_before_action :authenticate_new_issue!, only: [:new] + prepend_before_action :authenticate_user!, only: [:new] prepend_before_action :store_uri, only: [:new, :show] before_action :whitelist_query_limiting, only: [:create, :create_merge_request, :move, :bulk_update] @@ -245,14 +245,6 @@ class Projects::IssuesController < Projects::ApplicationController ] + [{ label_ids: [], assignee_ids: [] }] end - def authenticate_new_issue! - return if current_user - - notice = "Please sign in to create the new issue." - - redirect_to new_user_session_path, notice: notice - end - def store_uri if request.get? && !request.xhr? store_location_for :user, request.fullpath |