From 5636240a6ac171356c5863312ce6e72ec69de3d8 Mon Sep 17 00:00:00 2001
From: mcraz <mcraz2000@gmail.com>
Date: Sun, 9 Nov 2014 17:35:37 +0530
Subject: [PATCH] Hide email and remember token from public api

The email & remember token for all users were public via the API. No more !
---
 app/Lio/Accounts/User.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/app/Lio/Accounts/User.php b/app/Lio/Accounts/User.php
index 29d378baa..80f6f7372 100644
--- a/app/Lio/Accounts/User.php
+++ b/app/Lio/Accounts/User.php
@@ -18,7 +18,7 @@ class User extends Entity implements UserInterface, RemindableInterface, Present
     const STATE_BLOCKED = 2;
 
     protected $table    = 'users';
-    protected $hidden   = ['github_id'];
+    protected $hidden   = ['github_id', 'email', 'remember_token'];
     protected $fillable = ['email', 'name', 'github_url', 'github_id', 'image_url', 'is_banned'];
     protected $dates    = ['deleted_at'];