Prevent bypassing authorized fetch mode with a json file
This commit is contained in:
parent
589301ce06
commit
a5a354a36e
1 changed files with 1 additions and 1 deletions
|
@ -16,7 +16,7 @@ defmodule Pleroma.Web.Plugs.HTTPSignaturePlug do
|
|||
end
|
||||
|
||||
def call(conn, _opts) do
|
||||
if get_format(conn) == "activity+json" do
|
||||
if get_format(conn) in ["json", "activity+json"] do
|
||||
conn
|
||||
|> maybe_assign_valid_signature()
|
||||
|> maybe_require_signature()
|
||||
|
|
Loading…
Reference in a new issue