Exclude user_id from projects, contexts and notes xml. My rationale here is that if tracks is a multi-user application, user_id is always set by authenticated credentials and so there is no valid reason to expose it with the data.

git-svn-id: http://www.rousette.org.uk/svn/tracks-repos/trunk@259 a4c988fc-2ded-0310-b66e-134b36920a42
2025-12-16 23:30:12 +01:00 · 2006-06-10 06:05:01 +00:00 · 2006-06-10 06:05:01 +00:00 · 7b984328e3
commit 7b984328e3
parent abbed6b376
3 changed files with 3 additions and 3 deletions
--- a/tracks/app/controllers/context_controller.rb
+++ b/tracks/app/controllers/context_controller.rb
@ -18,7 +18,7 @@ class ContextController < ApplicationController
    @page_title = "TRACKS::List Contexts"
    respond_to do |wants|
      wants.html
-      wants.xml { render :xml => @contexts.to_xml }
+      wants.xml { render :xml => @contexts.to_xml( :except => :user_id ) }
    end
  end

--- a/tracks/app/controllers/note_controller.rb
+++ b/tracks/app/controllers/note_controller.rb
@ -10,7 +10,7 @@ class NoteController < ApplicationController
    @page_title = "TRACKS::All notes"
    respond_to do |wants|
      wants.html
-      wants.xml { render :xml => @all_notes.to_xml }
+      wants.xml { render :xml => @all_notes.to_xml( :except => :user_id )  }
    end
  end

--- a/tracks/app/controllers/project_controller.rb
+++ b/tracks/app/controllers/project_controller.rb
@ -20,7 +20,7 @@ class ProjectController < ApplicationController
    @page_title = "TRACKS::List Projects"
    respond_to do |wants|
      wants.html
-      wants.xml { render :xml => @projects.to_xml }
+      wants.xml { render :xml => @projects.to_xml( :except => :user_id )  }
    end
  end