gearheads
/
mastodon
Archived
2
0
Fork 0

Fix ActivityPub and REST API queries setting cookies and preventing caching (#11539)

Regression from #8657
gh/stable
ThibG 2019-08-11 22:59:40 +02:00 committed by Eugen Rochko
parent aebefc7ce9
commit 646f96d448
3 changed files with 6 additions and 0 deletions

View File

@ -9,6 +9,8 @@ class AccountsController < ApplicationController
before_action :set_cache_headers
before_action :set_body_classes
skip_around_action :set_locale, if: -> { request.format == :json }
def show
respond_to do |format|
format.html do

View File

@ -14,6 +14,8 @@ class Api::BaseController < ApplicationController
protect_from_forgery with: :null_session
skip_around_action :set_locale
rescue_from ActiveRecord::RecordInvalid, Mastodon::ValidationError do |e|
render json: { error: e.to_s }, status: 422
end

View File

@ -18,6 +18,8 @@ class StatusesController < ApplicationController
before_action :set_body_classes
before_action :set_autoplay, only: :embed
skip_around_action :set_locale, if: -> { request.format == :json }
content_security_policy only: :embed do |p|
p.frame_ancestors(false)
end