diff options
| author | Zephyrrus <[email protected]> | 2020-07-10 01:13:23 +0300 |
|---|---|---|
| committer | Zephyrrus <[email protected]> | 2020-07-10 01:13:23 +0300 |
| commit | 7e78a03931173437cd4aec5454663ee3cc3aee23 (patch) | |
| tree | 6eebb7896599a427fb56985e3a66c91e0e4e9802 /src/api/routes/admin/userGET.js | |
| parent | refactor: refactor most of the admin pages to use the store instead of intern... (diff) | |
| download | host.fuwn.me-7e78a03931173437cd4aec5454663ee3cc3aee23.tar.xz host.fuwn.me-7e78a03931173437cd4aec5454663ee3cc3aee23.zip | |
fix: stop leaking user passwords to admins AGAIN
Diffstat (limited to 'src/api/routes/admin/userGET.js')
| -rw-r--r-- | src/api/routes/admin/userGET.js | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/src/api/routes/admin/userGET.js b/src/api/routes/admin/userGET.js index 2fb80d1..f5f2508 100644 --- a/src/api/routes/admin/userGET.js +++ b/src/api/routes/admin/userGET.js @@ -12,7 +12,7 @@ class usersGET extends Route { try { const user = await db.table('users') - .select('id, username, enabled, createdAt, editeadAt, apiKeyEditedAt, isAdmin') + .select('id', 'username', 'enabled', 'createdAt', 'editedAt', 'apiKeyEditedAt', 'isAdmin') .where({ id }) .first(); const files = await db.table('files') |