b7923aa304
Merge branch 'hotfix_broken_likes' into 'develop'
...
hotfix for broken like completely breaking the notifications API
See merge request pleroma/pleroma!284
6 years ago
3370fab1d0
Merge branch 'security/emoji-xss' into 'develop'
...
formatter: don't add XSS emoji
See merge request pleroma/pleroma!322
6 years ago
834515fb51
formatter: don't add XSS emoji
6 years ago
3c7280934e
Merge branch 'security/activitypub-spoofing' into 'develop'
...
security: activitypub spoofing
See merge request pleroma/pleroma!321
6 years ago
03e92977cb
transmogrifier: fix peertube/plume actor handling
6 years ago
303af9ba4c
tests: add regression tests
6 years ago
0b2c051a04
activitypub: fix possibility of spoofing by containing remote objects to the same domain as their actor
6 years ago
e4079abab8
Merge branch 'feature/disable-config-management' into 'develop'
...
config: add ability to disable Pleroma FE config management (closes #276 )
Closes #276
See merge request pleroma/pleroma!320
6 years ago
e2ce0e9e05
run `mix format`.
6 years ago
84d84e4ca4
OAuth: Support /revoke endpoint for revoking tokens
...
(for compatibility with Mastodon)
6 years ago
ad2a7972e7
OAuth: Set `created_at` in token exchange response
...
(for compatibility with Mastodon)
6 years ago
b60d232719
AccountView: `sensitive` is supposed to be a boolean, not a string
6 years ago
c921d99898
config: add ability to disable Pleroma FE config management ( closes #276 )
6 years ago
2e2f458705
Merge branch 'lanodan/code-dup_in_mastoapi_search' into 'develop'
...
Clean code duplication in MastoAPI search(v1/v2)
See merge request pleroma/pleroma!316
6 years ago
95abc0eaaa
Merge branch 'verify-credentials-default-scope' into 'develop'
...
Specify default scope in verify_credentials
See merge request pleroma/pleroma!317
6 years ago
0c2a0e3551
Specify default scope in verify_credentials
...
Certain Mastodon/Pleroma front ends call verify_credentials to get the
default scope of a new toot.
Currently, Pleroma hardcodes this value to "public".
This patch changes it to the user's default_scope value.
6 years ago
8885d16e1b
[Pleroma.Web.MastodonAPI.MastodonAPIController].search(2)?: Remove code duplication
6 years ago
a9c0f395cb
add nil clause for Formatter.get_emoji/1 to return an empty result
6 years ago
d31bbb1cfe
Merge branch 'revert-a26d5e6b' into 'develop'
...
Revert "Merge branch 'feature/rich-text' into 'develop'"
See merge request pleroma/pleroma!313
6 years ago
58539e1357
Revert "Merge branch 'feature/rich-text' into 'develop'"
...
This reverts merge request !309
6 years ago
340ab3cb90
Merge branch 'bugfix/s3-configuration' into 'develop'
...
config: fix up defaults for s3 endpoint configuration
See merge request pleroma/pleroma!312
6 years ago
de5bd6fc65
config: fix up defaults for s3 endpoint configuration
6 years ago
03ecbe0456
Merge branch 'update/pleroma-fe-20180831' into 'develop'
...
update pleroma frontend
See merge request pleroma/pleroma!311
6 years ago
2b4b4888a9
update pleroma frontend
6 years ago
d40466c291
Merge branch 'update/pleroma-fe-config-20180831' into 'develop'
...
config: chase pleroma-fe updates from MR pleroma-fe!324.
See merge request pleroma/pleroma!310
6 years ago
856b5e1ca4
config: chase pleroma-fe updates from MR pleroma-fe!324.
6 years ago
a26d5e6b2a
Merge branch 'feature/rich-text' into 'develop'
...
rich text support
See merge request pleroma/pleroma!309
6 years ago
e7871ed05e
tests: add tests for evil HTML filtering
6 years ago
6aa65b68b8
common api: add support for formatting messages outside of twitter-style plain text
6 years ago
e838969495
Merge branch 'use-media-proxy-in-suggestions-api' into 'develop'
...
use media proxy for the suggestions api
See merge request pleroma/pleroma!305
6 years ago
65e8d47cfb
Merge branch 'backendhack' into 'develop'
...
Flexible Storage Backends
See merge request pleroma/pleroma!304
6 years ago
adffad5502
increase uploader behaviour documentation accuracy.
6 years ago
d027c53d75
Add frame-ancestors 'none' to all configs
6 years ago
af01f0196a
Add backend failure handling with :ok | :error so the uploader can handle it.
...
defaulting to :ok, since that's the currently level of error handling.
6 years ago
1a70d41f8e
migrations: add index creation migration and recipients_to/cc removal migration
6 years ago
29b5e30c46
activity: drop recipients_to/recipients_cc fields
6 years ago
038139d641
migrations: drop filler migration
6 years ago
de9acebbf3
activitypub: use jsonb query for containment instead of recipients_to/recipients_cc.
6 years ago
d035566116
installation/pleroma.nginx: Add 'always' to the security headers, so that they are included regardless of the status code
6 years ago
b11746726e
Merge branch 'fix-mastodon-notifications-without-nickname' into 'develop'
...
Fix Mastodon API when actor's nickname is null
See merge request pleroma/pleroma!308
6 years ago
ddc6f32b75
Fix Mastodon API when actor's nickname is null
6 years ago
cce9d008f9
streamer: contain list updates in the same way as we do with the database query
6 years ago
ded9091206
mastodon api: use bounded AP object graph query to enforce containment of private statuses
6 years ago
643fae6e36
activitypub: allow querying the activity/object graph bounded to a specific to/cc set
6 years ago
9cac7c957c
test: add testcase proving lists system does not leak non-public posts
6 years ago
40ea07cd2f
migrations: add migration to fill in recipients_to/recipients_cc fields
6 years ago
81673b8136
activity: add recipients_to and recipients_cc fields
6 years ago
d424e9fa5f
fix S3 ref in sample config to generate proper path.
6 years ago
ab9e5d64d6
add a sample swift config
6 years ago
2ff25ac0ce
A hobbldey-working swift client.
...
apparently, all elixir openstack libraries are trash
luckily, the APIs are stupid easy.
6 years ago
kaniini