privacy - require authentication on all timeline endpoints to make life difficult for fediverse archivers

author: multiple creatures <dev@multiple-creature.party> 2019-08-17 03:24:58 -0500
committer: multiple creatures <dev@multiple-creature.party> 2019-08-18 15:10:34 -0500
commit: 87136f77d726a650c4f02feafe4283aa78eaf27a (patch)
tree: 4cf6c5205aaf57849eb301484ff4f0937e462cf2 /app/controllers
parent: 92616f265c14c9f23c42f9ed31db822ce5e5a315 (diff)
1 files changed, 1 insertions, 0 deletions
diff --git a/app/controllers/api/v1/timelines/public_controller.rb b/app/controllers/api/v1/timelines/public_controller.rb
index aabe24324..9c3f6c0a8 100644
--- a/app/controllers/api/v1/timelines/public_controller.rb
+++ b/app/controllers/api/v1/timelines/public_controller.rb
@@ -13,6 +13,7 @@ class Api::V1::Timelines::PublicController < Api::BaseController
   private
 
   def load_statuses
+    return [] unless user_signed_in?
     cached_public_statuses
   end
author	multiple creatures <dev@multiple-creature.party>	2019-08-17 03:24:58 -0500
committer	multiple creatures <dev@multiple-creature.party>	2019-08-18 15:10:34 -0500
commit	87136f77d726a650c4f02feafe4283aa78eaf27a (patch)
tree	4cf6c5205aaf57849eb301484ff4f0937e462cf2 /app/controllers
parent	92616f265c14c9f23c42f9ed31db822ce5e5a315 (diff)