joe/kami-parse-server
Public Access
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Apply credential stripping to all untransforms for _User (#1498)

Browse Source
This commit is contained in:
Tyler Brock
2016-04-14 14:50:16 -07:00
committed by Drew
parent 34851c0ae5
commit d57e384dcb
2 changed files with 44 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
src/Controllers/DatabaseController.js
View File

@@ -119,12 +119,13 @@ DatabaseController.prototype.untransformObject = function(
return object;
}
delete object.authData;
delete object.sessionToken;
if (isMaster || (aclGroup.indexOf(object.objectId) > -1)) {
return object;
}
delete object.authData;
delete object.sessionToken;
return object;
};