用户头像访问取消权限制

app/controllers/users_controller.rb

@@ -100,7 +100,7 @@ class UsersController < ApplicationController
 
   def get_image
     return render_not_found unless @user = User.find_by(login: params[:id]) || User.find_by_id(params[:id])
-    return render_forbidden unless User.current.logged? && (current_user&.admin? || current_user.id == @user.id)
+    # return render_forbidden unless User.current.logged? && (current_user&.admin? || current_user.id == @user.id)
 
     redirect_to Rails.application.config_for(:configuration)['platform_url'] + "/" + url_to_avatar(@user).to_s
   end