github-mirror/discourse
2
0
Fork 0
mirror of https://github.com/discourse/discourse.git synced 2025-05-26 10:31:56 +08:00
Code Issues Actions 1 Packages Projects Releases Wiki Activity

FEATURE: add referrer never tag to password reset page

Browse Source
This commit is contained in:
Sam
2016-12-19 11:01:58 +11:00
parent 15b5fddd49
commit 0599bd0154
2 changed files with 13 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
app/views/users/password_reset.html.erb
View File

@ -49,6 +49,7 @@
</div> </div>
<%- content_for(:no_ember_head) do %> <%- content_for(:no_ember_head) do %>
<meta name="referrer" content="never">
<%= script "ember_jquery" %> <%= script "ember_jquery" %>
<%= render_google_universal_analytics_code %> <%= render_google_universal_analytics_code %>
<%- end %> <%- end %>

12
spec/controllers/users_controller_spec.rb
View File

@ -237,6 +237,18 @@ describe UsersController do
end end
context 'valid token' do context 'valid token' do
context 'when rendered' do
render_views
it 'renders referrer never on get requests' do
user = Fabricate(:user, auth_token: SecureRandom.hex(16))
token = user.email_tokens.create(email: user.email).token
get :password_reset, token: token
expect(response.body).to include('<meta name="referrer" content="never">')
end
end
it 'returns success' do it 'returns success' do
user = Fabricate(:user, auth_token: SecureRandom.hex(16)) user = Fabricate(:user, auth_token: SecureRandom.hex(16))
token = user.email_tokens.create(email: user.email).token token = user.email_tokens.create(email: user.email).token