2db807baa7
This way only verified users will be able to access this page, which shows the username of the receiver of the direct message. With this, it's no longer possible for unverified users to browse direct message URLs in order to collect usernames from every user.
29 lines
791 B
Plaintext
29 lines
791 B
Plaintext
<div class="row">
|
|
<div class="small-12 medium-9 column">
|
|
<%= back_link_to %>
|
|
|
|
<h1>
|
|
<%= t("users.direct_messages.new.title", receiver: @receiver.name) %>
|
|
</h1>
|
|
|
|
<% if @receiver.email_on_direct_message? %>
|
|
<%= form_for [@receiver, @direct_message] do |f| %>
|
|
<%= render "shared/errors", resource: @direct_message %>
|
|
|
|
<%= f.text_field :title %>
|
|
<%= f.text_area :body, rows: "3" %>
|
|
|
|
<div class="small-12 medium-4">
|
|
<%= f.submit t("users.direct_messages.new.submit_button"), class: "button expanded" %>
|
|
</div>
|
|
<% end %>
|
|
<% else %>
|
|
<div class="callout primary">
|
|
<p>
|
|
<%= t("users.direct_messages.new.direct_messages_bloqued") %>
|
|
</p>
|
|
</div>
|
|
<% end %>
|
|
</div>
|
|
</div>
|