From: Eugen Rochko <eugen@zeonfederated.com>
Date: Tue, 31 Mar 2020 16:20:48 +0000 (+0200)
Subject: Fix re-sending of e-mail confirmation not being rate limited (#13360)
X-Git-Url: https://git.xn--scling-oua.cat.family/?a=commitdiff_plain;h=9241cbf8616cc58e0b909326a767fc59be9a9d58;p=mastodon.git

Fix re-sending of e-mail confirmation not being rate limited (#13360)

Fix #13330
---

diff --git a/config/initializers/rack_attack.rb b/config/initializers/rack_attack.rb
index 8bc1104d4..09458c540 100644
--- a/config/initializers/rack_attack.rb
+++ b/config/initializers/rack_attack.rb
@@ -42,6 +42,7 @@ class Rack::Attack
     /auth/sign_in
     /auth
     /auth/password
+    /auth/confirmation
   ).freeze
 
   PROTECTED_PATHS_REGEX = Regexp.union(PROTECTED_PATHS.map { |path| /\A#{Regexp.escape(path)}/ })