djsundog/tootlab-mastodon
1
0
Fork 0
mirror of https://github.com/glitch-soc/mastodon.git synced 2024-11-23 08:34:13 -05:00
Code Issues Packages Projects Releases Wiki Activity

Redirect logged out users to canonical URLs for remote accounts

Browse Source 
This is clearer for users (showing all posts, as one would expect),
while patching a potential vector for leaking information to search
engines/etc.

Related: #2225, mastodon/mastodon#21203
This commit is contained in:
Wesley Aptekar-Cassels 2023-07-13 16:00:48 -04:00
parent a0047184d7
commit 72d92c77e8
1 changed files with 9 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

10
app/javascript/flavours/glitch/features/account_timeline/index.jsx
View File

@ -74,6 +74,10 @@ RemoteHint.propTypes = {
class AccountTimeline extends ImmutablePureComponent {
static contextTypes = {
identity: PropTypes.object,
};
static propTypes = {
params: PropTypes.shape({
acct: PropTypes.string,
@ -96,7 +100,11 @@ class AccountTimeline extends ImmutablePureComponent {
};
_load () {
const { accountId, withReplies, params: { tagged }, dispatch } = this.props;
const { accountId, withReplies, remote, remoteUrl, params: { tagged }, dispatch } = this.props;
if (remote && !this.context.identity.signedIn) {
window.location.replace(remoteUrl);
}
dispatch(fetchAccount(accountId));