From fc162af5d45cc07b14f236799f20ed73cc9e45da Mon Sep 17 00:00:00 2001 From: Victor Costa Date: Wed, 13 Jan 2016 09:25:42 -0300 Subject: [PATCH] api: fix login from cookie --- lib/noosfero/api/session.rb | 1 + 1 file changed, 1 insertion(+), 0 deletions(-) diff --git a/lib/noosfero/api/session.rb b/lib/noosfero/api/session.rb index bcbddb2..3178fa6 100644 --- a/lib/noosfero/api/session.rb +++ b/lib/noosfero/api/session.rb @@ -45,6 +45,7 @@ module Noosfero end post "/login_from_cookie" do + return unauthorized! if cookies[:auth_token].blank? user = User.where(remember_token: cookies[:auth_token]).first return unauthorized! unless user && user.activated? @current_user = user -- libgit2 0.21.2