tarrien/Mastodon
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Renew Rails session ID on successful registration

Browse Source
This commit is contained in:
Claire
2022-01-24 21:52:45 +01:00
parent 3f6a36168f
commit 6a2f248fe4
1 changed files with 5 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
app/controllers/auth/registrations_controller.rb
View File

@@ -141,6 +141,11 @@ class Auth::RegistrationsController < Devise::RegistrationsController
def sign_up(resource_name, resource) def sign_up(resource_name, resource)
clear_captcha! clear_captcha!
old_session_values = session.to_hash
reset_session
session.update old_session_values.except('session_id')
super super
end end