From ea7371c18368ebdaab94bbc8365be2274e84e9d1 Mon Sep 17 00:00:00 2001
From: Claire <claire.github-309c@sitedethib.com>
Date: Fri, 19 Sep 2025 14:55:30 +0200
Subject: [PATCH] Return 404 for quote approval when either quoted or quoting
 status is deleted (#36194)

---
 app/controllers/activitypub/quote_authorizations_controller.rb | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/app/controllers/activitypub/quote_authorizations_controller.rb b/app/controllers/activitypub/quote_authorizations_controller.rb
index 274afb929a..f2f5313e1a 100644
--- a/app/controllers/activitypub/quote_authorizations_controller.rb
+++ b/app/controllers/activitypub/quote_authorizations_controller.rb
@@ -21,6 +21,8 @@ class ActivityPub::QuoteAuthorizationsController < ActivityPub::BaseController
 
   def set_quote_authorization
     @quote = Quote.accepted.where(quoted_account: @account).find(params[:id])
+    return not_found unless @quote.status.present? && @quote.quoted_status.present?
+
     authorize @quote.status, :show?
   rescue Mastodon::NotPermittedError
     not_found