Explicitly render a 404 on non-JS requests to messages#quote (#39999).

Patch by Holger Just (@hjust). git-svn-id: https://svn.redmine.org/redmine/trunk@22584 e93f8b46-1217-0410-a6f0-8f06a7374b81
author: Marius Balteanu <marius.balteanu@zitec.com> 2024-01-03 01:19:25 +0000
committer: Marius Balteanu <marius.balteanu@zitec.com> 2024-01-03 01:19:25 +0000
commit: fe9fd97f6d0ee80a536a61b9f7cbe3f9a6bce262 (patch)
tree: 0ee3fd14f87ab750ccc9a82b6f296333cf433ce0 /app
parent: 73477b41eb2c5062431c82e8718eb2ef89d7be99 (diff)
download: redmine-fe9fd97f6d0ee80a536a61b9f7cbe3f9a6bce262.tar.gz
redmine-fe9fd97f6d0ee80a536a61b9f7cbe3f9a6bce262.zip
1 files changed, 5 insertions, 0 deletions
diff --git a/app/controllers/messages_controller.rb b/app/controllers/messages_controller.rb
index b41830b85..a4b4478a2 100644
--- a/app/controllers/messages_controller.rb
+++ b/app/controllers/messages_controller.rb
@@ -125,6 +125,11 @@ class MessagesController < ApplicationController
       @content = +"#{ll(Setting.default_language, :text_user_wrote_in, {:value => @message.author, :link => "message##{@message.id}"})}\n> "
     end
     @content << @message.content.to_s.strip.gsub(%r{<pre>(.*?)</pre>}m, '[...]').gsub(/(\r?\n|\r\n?)/, "\n> ") + "\n\n"
+
+    respond_to do |format|
+      format.html { render_404 }
+      format.js
+    end
   end
 
   def preview
author	Marius Balteanu <marius.balteanu@zitec.com>	2024-01-03 01:19:25 +0000
committer	Marius Balteanu <marius.balteanu@zitec.com>	2024-01-03 01:19:25 +0000
commit	fe9fd97f6d0ee80a536a61b9f7cbe3f9a6bce262 (patch)
tree	0ee3fd14f87ab750ccc9a82b6f296333cf433ce0 /app
parent	73477b41eb2c5062431c82e8718eb2ef89d7be99 (diff)
download	redmine-fe9fd97f6d0ee80a536a61b9f7cbe3f9a6bce262.tar.gz redmine-fe9fd97f6d0ee80a536a61b9f7cbe3f9a6bce262.zip