From 7eddc4b73b5e7ac1690d9a978c14ce25a9f5188b Mon Sep 17 00:00:00 2001
From: Kayne Ruse <kayneruse@gmail.com>
Date: Sun, 2 Jun 2019 22:17:33 +1000
Subject: [PATCH] HOTFIX: Profiles are visible when logged out

---
 server/profiles.js | 32 ++++++++++----------------------
 1 file changed, 10 insertions(+), 22 deletions(-)

diff --git a/server/profiles.js b/server/profiles.js
index d5ce327..be3adc4 100644
--- a/server/profiles.js
+++ b/server/profiles.js
@@ -75,29 +75,17 @@ function profileRequestInner(connection, req, res, body) {
 				}
 			});
 		} else {
-			//validate the credentials
-			let query = 'SELECT COUNT(*) AS total FROM sessions WHERE accountId = ? AND token = ?;';
-			connection.query(query, [body.id, body.token], (err, credentials) => {
-				if (err) throw err;
-
-				if (credentials[0].total !== 1) {
-					res.status(400).write(log('Invalid profile request credentials', JSON.stringify(body), body.id, body.token));
-					res.end();
-					return;
-				}
-
-				//results.length === 1
-				res.status(200).json({
-					username: body.username,
-					gold: results[0].gold,
-					recruits: results[0].recruits,
-					soldiers: results[0].soldiers,
-					spies: results[0].spies,
-					scientists: results[0].scientists
-				});
-				res.end();
-				log('Profile sent', body.username, body.id, body.token);
+			//results.length === 1
+			res.status(200).json({
+				username: body.username,
+				gold: results[0].gold,
+				recruits: results[0].recruits,
+				soldiers: results[0].soldiers,
+				spies: results[0].spies,
+				scientists: results[0].scientists
 			});
+			res.end();
+			log('Profile sent', body.username, body.id, body.token);
 		}
 	});
 };