From aa32dba482c858499d6cc32cecffcdec87b918d4 Mon Sep 17 00:00:00 2001 From: Tom Hughes Date: Tue, 26 Jul 2022 00:30:50 +0100 Subject: [PATCH] Require a logged in user for the iD frame The frame will error if the user is not logged in as it wants to be able to access their OAuth token. --- app/controllers/site_controller.rb | 1 + 1 file changed, 1 insertion(+) diff --git a/app/controllers/site_controller.rb b/app/controllers/site_controller.rb index 00b3e78da..02852dc67 100644 --- a/app/controllers/site_controller.rb +++ b/app/controllers/site_controller.rb @@ -7,6 +7,7 @@ class SiteController < ApplicationController before_action :redirect_browse_params, :only => :index before_action :redirect_map_params, :only => [:index, :edit, :export] before_action :require_oauth, :only => [:index] + before_action :require_user, :only => [:id] before_action :update_totp, :only => [:index] authorize_resource :class => false -- 2.39.5