Use the same URL for viewing tickets when authenticated or not---the couchdb ID will be the random string for the secret URL.

Tickets created when user was unauthenticated will be viewable by anybody who knows the URL.
author: jessib <jessib@riseup.net> 2012-11-05 13:18:43 -0800
committer: jessib <jessib@riseup.net> 2012-11-05 13:18:43 -0800
commit: c7177593aaf2b1b8fd8dbd53b9cfb6562e1411d7 (patch)
tree: 476e067b49bc740890e44e5abbf42408ee41d6d2 /users/app/controllers
parent: 3515a598341282c20feb5950a81f43552280688d (diff)
1 files changed, 1 insertions, 1 deletions
diff --git a/users/app/controllers/controller_extension/authentication.rb b/users/app/controllers/controller_extension/authentication.rb
index ebd80b0..598d8a9 100644
--- a/users/app/controllers/controller_extension/authentication.rb
+++ b/users/app/controllers/controller_extension/authentication.rb
@@ -21,7 +21,7 @@ module ControllerExtension::Authentication
 
   def access_denied
     redirect_to login_url, :alert => "Not authorized" if !logged_in?
-    redirect_to root_url, :alert => "Not authorized"
+    redirect_to root_url, :alert => "Not authorized" if logged_in?
   end
 
   def admin?
author	jessib <jessib@riseup.net>	2012-11-05 13:18:43 -0800
committer	jessib <jessib@riseup.net>	2012-11-05 13:18:43 -0800
commit	c7177593aaf2b1b8fd8dbd53b9cfb6562e1411d7 (patch)
tree	476e067b49bc740890e44e5abbf42408ee41d6d2 /users/app/controllers
parent	3515a598341282c20feb5950a81f43552280688d (diff)