FIX: ensure we never cache login redirects by mistake

2025-05-21 18:12:32 +08:00 · 2018-11-09 11:14:35 +11:00
parent cbd6bd191a
commit 15991677d4
2 changed files with 7 additions and 0 deletions
--- a/app/controllers/application_controller.rb
+++ b/app/controllers/application_controller.rb
@ -692,7 +692,9 @@ class ApplicationController < ActionController::Base
    return if current_user || (request.format.json? && is_api?)

    if SiteSetting.login_required?
+
      flash.keep
+      dont_cache_page

      if SiteSetting.enable_sso?
        # save original URL in a session so we can redirect after login