Feature #2770 » f2770-unauthorized-attachments.patch
| app/controllers/attachments_controller.rb 2013-02-14 09:43:26.000000000 -0600 | ||
|---|---|---|
| 20 | 20 |
before_filter :file_readable, :read_authorize, :only => [:show, :download] |
| 21 | 21 |
before_filter :delete_authorize, :only => :destroy |
| 22 | 22 |
before_filter :authorize_global, :only => :upload |
| 23 |
skip_before_filter :check_if_login_required |
|
| 23 | 24 | |
| 24 | 25 |
accept_api_auth :show, :download, :upload |
| 25 | 26 | |
