From 8a8539391bac70ba3c40eb9199cf602935a5172c Mon Sep 17 00:00:00 2001
From: "Chris Baudouin, Jr" <chrisbaudouinjr@icloud.com>
Date: Sat, 16 May 2020 00:10:37 -0400
Subject: [PATCH] fix(dashboard): Fixes security vulnerability that allowed
 event_tracking role to access Dashboard

---
 app/controllers/manage/dashboard_controller.rb | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/app/controllers/manage/dashboard_controller.rb b/app/controllers/manage/dashboard_controller.rb
index 6a415b11f..75d5be460 100644
--- a/app/controllers/manage/dashboard_controller.rb
+++ b/app/controllers/manage/dashboard_controller.rb
@@ -1,6 +1,6 @@
 class Manage::DashboardController < Manage::ApplicationController
   skip_before_action :require_admin_or_limited_admin
-  before_action :require_admin_or_limited_admin_or_event_tracking
+  before_action :require_admin_or_limited_admin
 
   def index
   end