kotovalexarian-likes-github/heartcombo--devise
1
0
Fork 0
mirror of https://github.com/heartcombo/devise.git synced 2022-11-09 12:18:31 -05:00
Code Releases Activity

Fix potential security leak in email reconfirmation flow

Browse source 
Ref. bug/issue: https://github.com/plataformatec/devise/issues/3457
This commit is contained in:
redbar0n 2015-02-13 21:43:06 +01:00
parent c19f1f27ce
commit ee8c13435f
1 changed files with 1 additions and 1 deletions
Download patch file Download diff file Expand all files Collapse all files

2
app/views/devise/confirmations/new.html.erb
View file

@ -5,7 +5,7 @@
<div class="field">
<%= f.label :email %><br />
<%= f.email_field :email, autofocus: true %>
<%= f.email_field :email, required: true, readonly: true, input_html: { value: (resource.pending_reconfirmation? ? resource.unconfirmed_email : resource.email) } %>
</div>
<div class="actions">