jro_apps/redmine Commit - r12835:a599442d05e5

introduce request_store to ensure that the current user doesn't leak across request boundaries (#16685)...

Toshi MARUYAMA -

r12835:a599442d05e5

parent child

Context file:

r12835:a599442d05e5

Gemfile +1 0

              gem "coderay", "~> 1.1.0"
              gem "fastercsv", "~> 1.5.0", :platforms => [:mri_18, :mingw_18, :jruby]
              gem "builder", "3.0.0"
+             gem 'request_store'
              gem "mime-types"
              # Optional gem for LDAP authentication

app/models/user.rb +2 -2

                end
                def self.current=(user)
-                 Thread.current[:current_user] = user
+                 RequestStore.store[:current_user] = user
                end
                def self.current
-                 Thread.current[:current_user] ||= User.anonymous
+                 RequestStore.store[:current_user] ||= User.anonymous
                end
                # Returns the anonymous user.  If the anonymous user does not exist, it is created.  There can be only

General Comments 0

You need to be logged in to leave comments. Login now

No TODOs yet

	Repositories
g s	Goto summary page
g c	Goto changelog page
g f	Goto files page
g F	Goto files page with file search activated
g p	Goto pull requests page
g o	Goto repository settings
g O	Goto repository access permissions settings
t s	Toggle sidebar on some pages