captain_arepa/akkoma-cachapa - akkoma-cachapa - Cachapa Gitea: Git with a cup of tea (and cachapas)

Author	SHA1	Message	Date
Ivan Tashkinov	0cf1d4fcd0	[#1560 ] Restricted AP- & OStatus-related routes for non-federating instances.	5 years ago
lain	3eddd9caa6	Merge branch 'require-signature' into 'develop' Add an option to require fetches to be signed Closes #1444 See merge request pleroma/pleroma!2071	5 years ago
rinpatch	15ea75cd2a	Actually fix upload limit on OTP releases Closes #1109	5 years ago
rinpatch	c27d1d65bf	Merge branch 'fix/disable-rate-limiter-for-socket-localhost' into 'develop' Disable rate limiter for socket/localhost Closes #1380 See merge request pleroma/pleroma!2064	5 years ago
rinpatch	5b62acf6e9	Merge branch 'develop' into fix/disable-rate-limiter-for-socket-localhost	5 years ago
lain	774cba84f5	Merge branch 'reenable-rate-limit-and-remote-ip' into 'develop' Re-enable rate limiter and enable remote ip See merge request pleroma/pleroma!2164	5 years ago
feld	36becd5573	Update http_security_plug.ex	5 years ago
rinpatch	889965141a	RemoteIp: only trust X-Forwarded-For Our nginx config will happily pass `Forwarded`/`X-Real-IP` from the client. Caddy, Apache and Varnish pass `X-Forwarded-For` as well anyway.	5 years ago
Egor Kislitsyn	e07e7888d7	Fix credo warning	5 years ago
Egor Kislitsyn	2bd4d6289b	Make the warning more scarier	5 years ago
Egor Kislitsyn	6302b40791	Warn if HTTPSecurityPlug is disabled	5 years ago
Maksim Pechnikov	108a39c876	updated error messages for authentication process	5 years ago
Ivan Tashkinov	39ce894a07	Merge remote-tracking branch 'remotes/origin/develop' into 1478-oauth-admin-scopes-tweaks # Conflicts: # lib/pleroma/user.ex	5 years ago
Ivan Tashkinov	6c94b7498b	[#1478 ] OAuth admin tweaks: enforced OAuth admin scopes usage by default, migrated existing OAuth records. Adjusted tests.	5 years ago
Egor Kislitsyn	775212121c	Verify HTTP signatures only when request accepts "activity+json" type	5 years ago
Egor Kislitsyn	a12b6454bb	Add an option to require fetches to be signed	5 years ago
Ivan Tashkinov	7973cbdb9f	OAuthScopesPlug: disallowed nil token (unless with :fallback option). WIP: controller tests modification: OAuth scopes usage.	5 years ago
Maxim Filippov	eb11c60289	Disable rate limiter for socket/localhost (unless RemoteIp is enabled)	5 years ago
Ivan Tashkinov	3920244be5	[#1427 ] Fixed `:admin` option handling in OAuthScopesPlug, added tests.	5 years ago
Ivan Tashkinov	835ac2157c	Merge remote-tracking branch 'remotes/upstream/develop' into 1427-oauth-admin-scopes # Conflicts: # CHANGELOG.md	5 years ago
rinpatch	3c45ed4f47	OTP: Fix runtime upload limit config being ignored Closes #1109	5 years ago
Ivan Tashkinov	1770602747	[#1427 ] Extra check that admin OAuth scope is used by admin. Adjusted tests.	5 years ago
Ivan Tashkinov	40e1817f70	[#1427 ] Fixes / improvements of admin scopes support. Added tests.	5 years ago
Ivan Tashkinov	93a80ee915	[#1427 ] Bugfix for `enforce_oauth_admin_scope_usage`. Admin API documentation entry.	5 years ago
Ivan Tashkinov	af42c00cff	[#1427 ] Reworked admin scopes support. Requalified users.is_admin flag as legacy accessor to admin actions in case token lacks admin scope(s).	5 years ago
Egor Kislitsyn	36686f5245	Support authentication via `x-admin-token` HTTP header	5 years ago
rinpatch	22554ac5ca	Merge branch 'bugfix/1395-email-activation' into 'develop' Bugfix/1395 email activation Closes #1395 See merge request pleroma/pleroma!1965	5 years ago
lain	f17e0f8e4f	OAuthPlug, Router: Handle deactivated users in the UserEnabledPlug	5 years ago
kaniini	2cc043591c	Merge branch 'feature/static-fe' into 'develop' Static frontend See merge request pleroma/pleroma!1917	5 years ago
Steven Fuchs	94627baa5c	New rate limiter	5 years ago
lain	f6056e9c9c	UserEnabledPlug: Don't authenticate unconfirmed users.	5 years ago
Phil Hagelberg	886a07ba57	Move static_fe config to its own section instead of in :instance.	5 years ago
Phil Hagelberg	8969c5522d	Make many of the improvements suggested in review.	5 years ago
Phil Hagelberg	e8bee35578	Static FE plug should only respond to text/html requests.	5 years ago
Phil Hagelberg	dc3b87d153	Move static FE routing into its own plug. Previously it was piggybacking on FallbackRedirectController for users and OStatusController for notices; now it's all in one place.	5 years ago
rinpatch	365657320c	Fix TrailingFormatPlug not being active for /api/oauth_tokens	5 years ago
Ivan Tashkinov	10ff01acd9	[#1304 ] Moved all non-mutes / non-blocks fields from User.Info to User. WIP.	5 years ago
Ivan Tashkinov	64095961fe	[#1234 ] Merge remote-tracking branch 'remotes/upstream/develop' into 1234-mastodon-2-4-3-oauth-scopes # Conflicts: # CHANGELOG.md # lib/pleroma/web/mastodon_api/controllers/mastodon_api_controller.ex # lib/pleroma/web/router.ex	5 years ago
minibikini	f9380289eb	Add `remote_ip` plug	5 years ago
Ivan Tashkinov	e4f3d7f69d	Apply suggestion to lib/pleroma/plugs/oauth_scopes_plug.ex	5 years ago
Ivan Tashkinov	01c1078015	[#1234 ] Merge remote-tracking branch 'remotes/upstream/develop' into 1234-mastodon-2-4-3-oauth-scopes # Conflicts: # lib/pleroma/web/activity_pub/activity_pub_controller.ex	5 years ago
Ivan Tashkinov	efbc2edba1	[#1234 ] Merge remote-tracking branch 'remotes/upstream/develop' into 1234-mastodon-2-4-3-oauth-scopes # Conflicts: # lib/pleroma/web/activity_pub/activity_pub_controller.ex # lib/pleroma/web/router.ex	5 years ago
Ivan Tashkinov	e6f43a831b	[#1234 ] Permissions-related fixes / new functionality (Masto 2.4.3 scopes).	5 years ago
rinpatch	b0e6058021	Parse http signature for request to objects/activities	5 years ago
rinpatch	dabc4a00f5	Put the cache with the right key when using a tracking function	5 years ago
rinpatch	769fb778d4	Track object/create activity fetches	5 years ago
minibikini	11e12b5761	Add Pleroma.Plugs.Cache	5 years ago
Ivan Tashkinov	b63faf9819	[#1234 ] Mastodon 2.4.3 hierarchical scopes initial support (WIP).	5 years ago
rinpatch	3523bdcf26	Call TrailingFormatPlug for /api/pleroma/emoji Apparently Pleroma-FE still calls it with trailing '.json'	5 years ago
rinpatch	cc1d1ee406	Mastdon API: Add ability to get a remote account by nickname to `/api/v1/accounts/:id`	5 years ago
Maksim	55341ac717	tests WebFinger	5 years ago
kaniini	716afc83ce	Merge branch 'refactor/http-signature-plug' into 'develop' http signature plug: separation of concerns See merge request pleroma/pleroma!1449	5 years ago
Ariadne Conill	c947cfec5a	mapped signature plug: use `user` assign like authentication plug	5 years ago
Maksim	f435217e50	tests for Plugs.AuthenticationPlug	5 years ago
Ariadne Conill	a8af0ac053	mapped signature plug: fix user lookup	5 years ago
Ariadne Conill	5ea0cd69f7	mapped signature plug: don't invalidate in cases where a signature is actually not present (testsuite)	5 years ago
Ariadne Conill	184fa61fb3	plugs: add MappedSignatureToIdentityPlug	5 years ago
Ariadne Conill	88d064d80e	http signature plug: remove redundant checks handled by HTTPSignatures library the redundant checks assumed a POST request, which will not work for signed GETs. this check was originally needed because the HTTPSignatures adapter assumed that the requests were also POST requests. but now, the adapter has been corrected.	5 years ago
Moonman	105f437ce9	formatting	5 years ago
Moonman	f98f7ad1b9	detect and use sha512-crypt for stored password hash.	5 years ago
Ivan Tashkinov	369e9bb42f	[#1041 ] Rate-limited status actions (per user and per user+status).	5 years ago
Egor Kislitsyn	ed8ce21a22	Fix unused import warning	5 years ago
Egor Kislitsyn	a42da8f311	Fix response	5 years ago
Egor Kislitsyn	5104f65b69	Wrap error messages into gettext helpers	5 years ago
Egor Kislitsyn	0d54a571ca	Add SetLocalePlug	5 years ago
Egor Kislitsyn	889a9c3a3f	Polish IdempotencyPlug	5 years ago
Egor Kislitsyn	159630b21c	Fix credo warning	5 years ago
Egor Kislitsyn	825077a5b0	Add Idempotency plug	5 years ago
Alexander Strizhakov	c2ca1f22a2	it is changed in compile time we can't change module attributes and endpoint settings in runtime	5 years ago
Egor Kislitsyn	b22b10d3aa	Improve rate limiter documentation Documents how to disable rate limiting	5 years ago
lain	63ab3c30eb	Merge branch 'feature/rate-limiter' into 'develop' Feature/Rate Limiter Closes #943 See merge request pleroma/pleroma!1266	5 years ago
Egor Kislitsyn	ad04d12de6	Replace `MastodonAPIController.account_register/2` rate limiter	5 years ago
Egor Kislitsyn	2e5affce61	Add RateLimiter	5 years ago
rinpatch	92213fb87c	Replace Mix.env with Pleroma.Config.get(:env) Mix.env/0 is not availible in release environments such as distillery or elixir's built-in releases.	5 years ago
Egor Kislitsyn	99f70c7e20	Use Pleroma.Config everywhere	5 years ago
Alex S	aa11fa4864	add report uri and report to	5 years ago
kaniini	62516be9c4	Merge branch 'fix/public-option-not-working' into 'develop' Fix public option not working Closes #873 See merge request pleroma/pleroma!1143	5 years ago
Aaron Tinio	7b8dc99ef1	Implement Pleroma.Plugs.EnsurePublicOrAuthenticated	5 years ago
William Pitcock	071f78733a	switch to pleroma/http_signatures library	5 years ago
Alexander Strizhakov	a2be420f94	differences_in_mastoapi_responses.md: fullname & bio are optionnal [ci skip]	5 years ago
feld	acb04306b6	Standardize construction of websocket URL This follows up on the change made in `d747bd98`	5 years ago
AkiraFukushima	533d8cd581	Parse access_token from body parameters and URL parameters	5 years ago
Egor Kislitsyn	88d3cb44c3	replace `Repo.get_by(User, nickname: nickname)` with `User.get_by_nickname(nickname)`	6 years ago
kaniini	c708656b5e	Merge branch 'robotstxt' into 'develop' Add robots.txt Closes #723 See merge request pleroma/pleroma!929	6 years ago
William Pearson	3dadaa4432	robots.txt Add default robots.txt that allows bots access to all paths. Add mix task to generate robots.txt taht allows bots access to no paths. Document custom emojis, MRF and static_dir static_dir documentation includes docs for the robots.txt Mix task.	6 years ago
rinpatch	cbdd11c381	Merge develop to bump elixir version in the CI so I don't get failing formatting	6 years ago
rinpatch	e2fe796c63	Add some tests	6 years ago
Haelwenn (lanodan) Monnier	c42d34b2ec	[Credo] fix Credo.Check.Readability.MaxLineLength	6 years ago
Haelwenn (lanodan) Monnier	a3a9cec483	[Credo] fix Credo.Check.Readability.AliasOrder	6 years ago
rinpatch	92a69bddce	escape quotation marks in Content-Disposition header	6 years ago
rinpatch	5a73cae2be	WIP: Stop mangling filenames	6 years ago
Haelwenn (lanodan) Monnier	fc37e5815f	Plugs.HTTPSecurityPlug: Add static_url to CSP's connect-src Closes: https://git.pleroma.social/pleroma/pleroma/merge_requests/469	6 years ago
Ivan Tashkinov	bc4f77b10b	[#468 ] Merged `upstream/develop`, resolved conflicts.	6 years ago
Ivan Tashkinov	2a4a4f3342	[#468 ] Defined OAuth restrictions for all applicable routes. Improved missing "scopes" param handling. Allowed "any of" / "all of" mode specification in OAuthScopesPlug. Fixed auth UI / behavior when user selects no permissions at /oauth/authorize.	6 years ago
Ivan Tashkinov	063baca5e4	[#468 ] User UI for OAuth permissions restriction. Standardized storage format for `scopes` fields, updated usages.	6 years ago
Haelwenn (lanodan) Monnier	da4c662af3	Plugs.HTTPSecurityPlug: Add webpacker to connect-src	6 years ago
Haelwenn (lanodan) Monnier	00e8f0b07d	Plugs.HTTPSecurityPlug: Add unsafe-eval to script-src when in dev mode This is needed to run dev mode mastofe at the same time	6 years ago
shibayashi	ea1058929c	Use url[:scheme] instead of protocol to determine if https is enabled	6 years ago
Haelwenn (lanodan) Monnier	6a6a5b3251	de-group alias/es	6 years ago
Ivan Tashkinov	4ad843fb9d	[#468 ] Prototype of OAuth2 scopes support. TwitterAPI scope restrictions.	6 years ago

1 2 3 4 5