meineerde/redmine
1
0
Fork 0
mirror of https://github.com/meineerde/redmine.git synced 2026-03-28 03:31:11 +00:00
Code Issues Releases Wiki Activity

Merged r21766 from trunk to 5.0-stable (#37562).

Browse Source 
git-svn-id: https://svn.redmine.org/redmine/branches/5.0-stable@21767 e93f8b46-1217-0410-a6f0-8f06a7374b81
This commit is contained in:
Go MAEDA 2022-08-10 01:39:30 +00:00
parent 827239000a
commit 50e6f9535e
2 changed files with 10 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
app/controllers/sys_controller.rb
View File

@ -22,6 +22,9 @@ class SysController < ActionController::Base
before_action :check_enabled before_action :check_enabled
# Requests from repository WS clients don't contain CSRF tokens
skip_before_action :verify_authenticity_token
def projects def projects
p = Project.active.has_module(:repository). p = Project.active.has_module(:repository).
order("#{Project.table_name}.identifier").preload(:repository).to_a order("#{Project.table_name}.identifier").preload(:repository).to_a

7
test/functional/sys_controller_test.rb
View File

@ -143,4 +143,11 @@ class SysControllerTest < Redmine::ControllerTest
assert_include 'Access denied', response.body assert_include 'Access denied', response.body
end end
end end
def test_should_skip_verify_authenticity_token
ActionController::Base.allow_forgery_protection = true
assert_nothing_raised {test_create_project_repository}
ensure
ActionController::Base.allow_forgery_protection = false
end
end end