layout "site"
before_action :disable_terms_redirect, :only => [:destroy]
+ before_action :authorize_web
+ before_action :set_locale
+ before_action :check_database_readable
before_action :require_cookies, :only => [:new]
authorize_resource :class => false
def new
- append_content_security_policy_directives(
- :form_action => %w[*]
- )
+ override_content_security_policy_directives(:form_action => []) if Settings.csp_enforce || Settings.key?(:csp_report_url)
session[:referer] = safe_referer(params[:referer]) if params[:referer]
end
token&.destroy
session.delete(:token)
end
+
session.delete(:user)
session_expires_automatically
- if params[:referer]
- redirect_to safe_referer(params[:referer])
+
+ referer = safe_referer(params[:referer]) if params[:referer]
+
+ if referer
+ redirect_to referer
else
redirect_to :controller => "site", :action => "index"
end