Geo OAuth authentication should use 'bypass: true' to prevent writing

to the database

Geo OAuth authentication should use 'bypass: true' to prevent writing
to the database
19a38a0a · Gabriel Mazetto · 5316aa63 · 19a38a0a · 19a38a0a
Commit 19a38a0a authored Mar 11, 2016 by Gabriel Mazetto
Showing with 2 additions and 2 deletions

app/controllers/admin/geo_nodes_controller.rb app/controllers/admin/geo_nodes_controller.rb +1 -1

app/controllers/oauth/geo_auth_controller.rb app/controllers/oauth/geo_auth_controller.rb +1 -1

No files found.
--- a/app/controllers/admin/geo_nodes_controller.rb
+++ b/app/controllers/admin/geo_nodes_controller.rb
@@ -24,7 +24,7 @@ class Admin::GeoNodesController < Admin::ApplicationController

  def repair
    @node = GeoNode.find(params[:id])
-    
+
    if @node.primary? || !@node.missing_oauth_application?
      redirect_to admin_geo_nodes_path, notice: "This node doesn't need to be repaired."
    elsif @node.save

--- a/app/controllers/oauth/geo_auth_controller.rb
+++ b/app/controllers/oauth/geo_auth_controller.rb
@@ -25,7 +25,7 @@ class Oauth::GeoAuthController < ActionController::Base

    user = User.find(remote_user['id'])

-    if user && sign_in(user)
+    if user && sign_in(user, bypass: true)
      return_to = oauth.get_oauth_state_return_to
      redirect_to(return_to || root_path)
    else