Skip to content

Commit c096dde

Browse files
committed
Fixed that time logging form may disclose subjects of issues that are not visible (#21150).
Patch by Holger Just. git-svn-id: http://svn.redmine.org/redmine/trunk@14795 e93f8b46-1217-0410-a6f0-8f06a7374b81
1 parent a196aaa commit c096dde

File tree

1 file changed

+1
-1
lines changed

1 file changed

+1
-1
lines changed

Diff for: app/views/timelog/_form.html.erb

+1-1
Original file line numberDiff line numberDiff line change
@@ -13,7 +13,7 @@
1313
<% end %>
1414
<p>
1515
<%= f.text_field :issue_id, :size => 6 %>
16-
<span id="time_entry_issue"><%= "#{@time_entry.issue.tracker.name} ##{@time_entry.issue.id}: #{@time_entry.issue.subject}" if @time_entry.issue %></span>
16+
<span id="time_entry_issue"><%= "#{@time_entry.issue.tracker.name} ##{@time_entry.issue.id}: #{@time_entry.issue.subject}" if @time_entry.issue.try(:visible?) %></span>
1717
</p>
1818
<p><%= f.text_field :spent_on, :size => 10, :required => true %><%= calendar_for('time_entry_spent_on') %></p>
1919
<p><%= f.text_field :hours, :size => 6, :required => true %></p>

0 commit comments

Comments
 (0)