Prevent admins and moderators eavesdropping in private and direct toots (#7067)

Fix #6986
author: Alda Marteau-Hardi <github@ltch.fr> 2018-04-07 21:33:01 +0200
committer: Eugen Rochko <eugen@zeonfederated.com> 2018-04-07 21:33:01 +0200
commit: b65eb00c53af939444e0e891c0a3a4563f4897ac (patch)
tree: beb413ec919749d42b81eb54deb6d9d293e7bf53 /app/controllers/admin
parent: b5726def55994db8eb5797bbea1d2b79df3e884a (diff)
1 files changed, 1 insertions, 1 deletions
diff --git a/app/controllers/admin/statuses_controller.rb b/app/controllers/admin/statuses_controller.rb
index 5d4325f57..d5787acfb 100644
--- a/app/controllers/admin/statuses_controller.rb
+++ b/app/controllers/admin/statuses_controller.rb
@@ -12,7 +12,7 @@ module Admin
     def index
       authorize :status, :index?
 
-      @statuses = @account.statuses
+      @statuses = @account.statuses.where(visibility: [:public, :unlisted])
 
       if params[:media]
         account_media_status_ids = @account.media_attachments.attached.reorder(nil).select(:status_id).distinct
author	Alda Marteau-Hardi <github@ltch.fr>	2018-04-07 21:33:01 +0200
committer	Eugen Rochko <eugen@zeonfederated.com>	2018-04-07 21:33:01 +0200
commit	b65eb00c53af939444e0e891c0a3a4563f4897ac (patch)
tree	beb413ec919749d42b81eb54deb6d9d293e7bf53 /app/controllers/admin
parent	b5726def55994db8eb5797bbea1d2b79df3e884a (diff)