| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2019-05-31 | Setting Store: Document in changelog. | lain | |
| 2019-05-31 | Merge branch 'hotfix/leaking-lists' into 'develop' | lambda | |
| Mastodon API: Fix lists leaking private posts See merge request pleroma/pleroma!1222 | |||
| 2019-05-31 | Documentation: Document Settings store mechanism. | lain | |
| 2019-05-31 | MastodonAPI: Add extension to set and get pleroma_settings_store. | lain | |
| 2019-05-31 | AccountView: settings -> settings_store | lain | |
| 2019-05-31 | User: Add settings store to Info, AccountView | lain | |
| This is to provide a generic frontend settings storage mechanism for all kinds of frontends. | |||
| 2019-05-31 | Mastodon API: Fix lists leaking private posts | rinpatch | |
| Our previous list visibility resolver grabbed posts if either follower collection of the user in a list who is followed is in `to` or if follower collection of the user in a list was in `cc`. This not only missed unlisted posts but also lead to leaking private posts when `fix_explicit_addressing` mistakingly started putting follower collections to `cc` (also fixed in this MR). Reported by @kurisu@iscute.moe via a DM | |||
| 2019-05-31 | Fix fix_explicit_addressing moving follower collection to cc and add tests ↵ | rinpatch | |
| for it | |||
| 2019-05-31 | Mastodon Conversation API: Don't return own account in 'accounts'. | lain | |
| 2019-05-31 | CI: Add auto-deployment via dokku. | lain | |
| 2019-05-30 | Merge branch 'fix/install-guide' into 'develop' | feld | |
| Formatting See merge request pleroma/pleroma!1219 | |||
| 2019-05-30 | Formatting | feld | |
| 2019-05-30 | Merge branch 'fix/install-guide' into 'develop' | feld | |
| Install docs should clone from master branch See merge request pleroma/pleroma!1218 | |||
| 2019-05-30 | Install docs should clone from master branch | feld | |
| 2019-05-30 | Merge branch 'fix/ogp-missing-data' into 'develop' | feld | |
| Replace missing non-nullable Card attributes with empty strings See merge request pleroma/pleroma!1217 | |||
| 2019-05-30 | Replace missing non-nullable Card attributes with empty strings | Sergey Suprunenko | |
| 2019-05-30 | Merge branch 'use-pleroma-config' into 'develop' | lambda | |
| Use Pleroma.Config everywhere See merge request pleroma/pleroma!1214 | |||
| 2019-05-30 | Use Pleroma.Config everywhere | Egor Kislitsyn | |
| 2019-05-29 | Merge branch 'revert-57e58d26' into 'develop' | kaniini | |
| Revert "Merge branch 'feature/search-authenticated-only' into 'develop'" See merge request pleroma/pleroma!1212 | |||
| 2019-05-29 | Revert "Merge branch 'feature/search-authenticated-only' into 'develop'" | kaniini | |
| This reverts merge request !1209 | |||
| 2019-05-29 | Merge branch 'fix/mastodon-search-limit' into 'develop' | lambda | |
| Default search limit should be 40 See merge request pleroma/pleroma!1210 | |||
| 2019-05-29 | Merge branch 'issue/936' into 'develop' | lambda | |
| [#936] fix tests See merge request pleroma/pleroma!1208 | |||
| 2019-05-29 | [#936] fix tests | Maksim | |
| 2019-05-29 | Default search limit should be 40 | Mark Felder | |
| https://docs.joinmastodon.org/api/rest/search/ | |||
| 2019-05-29 | Merge branch 'feature/search-authenticated-only' into 'develop' | kaniini | |
| router: require oauth_read for searching Closes #935 See merge request pleroma/pleroma!1209 | |||
| 2019-05-29 | router: require oauth_read for searching | William Pitcock | |
| Search calls are generally expensive and allow unauthenticated users to crawl the instance for user profiles or posts which contain specified keywords. An adversary can build a distributed search engine which not only will consume significant instance resources, but also can be used for undesirable purposes such as datamining. Accordingly, require authenticated access to use the search API endpoints. This acts as a nice balance as it allows guest users to make use of most functionality available in Pleroma FE while ensuring that Pleroma instances are reasonably protected from resource exhaustion. It also removes Pleroma as a potential vector in distributed search engines. | |||
| 2019-05-28 | Merge branch 'varnish-improvements' into 'develop' | feld | |
| More Varnish improvements See merge request pleroma/pleroma!667 | |||
| 2019-05-28 | Improve Varnish config. We set sane headers from the backend now. | feld | |
| 2019-05-28 | Merge branch 'respect-proxy-settings-federation' into 'develop' | kaniini | |
| Respect proxy settings federation See merge request pleroma/pleroma!1206 | |||
| 2019-05-28 | Respect proxy settings federation | jeff | |
| 2019-05-26 | Merge branch 'refactor/die-httpoison-die' into 'develop' | lambda | |
| remove @httpoison, @ostatus and @websub compile-time constants See merge request pleroma/pleroma!1203 | |||
| 2019-05-26 | Merge branch 'fix/mrf-simple' into 'develop' | kaniini | |
| mrf: simple policy: fix matching imported activitypub and ostatus statuses Closes #915 See merge request pleroma/pleroma!1205 | |||
| 2019-05-26 | mrf: simple policy: fix matching imported activitypub and ostatus statuses | William Pitcock | |
| 2019-05-26 | tests: chase remote/local removal | William Pitcock | |
| 2019-05-26 | notification: remove local/remote match rules (too complicated) | William Pitcock | |
| 2019-05-25 | add migration to add notification settings to user accounts | William Pitcock | |
| 2019-05-25 | user info: allow formdata for notification settings like every other API | William Pitcock | |
| 2019-05-25 | twitter api: user view: expose user notification settings under pleroma object | William Pitcock | |
| 2019-05-25 | tests: add tests for non-follows/non-followers settings | William Pitcock | |
| 2019-05-25 | tests: chase notification setting changes | William Pitcock | |
| 2019-05-25 | notification: add non_follows/non_followers notification control settings | William Pitcock | |
| 2019-05-25 | remove @websub and @ostatus module-level constants | William Pitcock | |
| 2019-05-25 | tests: websub: check only that signature validation succeeds or fails | William Pitcock | |
| 2019-05-25 | kill @httpoison | William Pitcock | |
| 2019-05-25 | Merge branch 'fix/nodeinfo-unavailable-when-not-federating' into 'develop' | kaniini | |
| Keep nodeinfo available when not federating Closes #923 See merge request pleroma/pleroma!1202 | |||
| 2019-05-25 | Keep nodeinfo available when not federating | Aaron Tinio | |
| 2019-05-24 | Merge branch 'bugfix/mention-all-people-in-beginning-dm' into 'develop' | kaniini | |
| Mention all people in the beginning of DM Closes #924 See merge request pleroma/pleroma!1194 | |||
| 2019-05-24 | Mention all people in the beginning of DM | Sergey Suprunenko | |
| 2019-05-24 | Merge branch 'feature/static-headers' into 'develop' | kaniini | |
| Improve serving of static assets See merge request pleroma/pleroma!1200 | |||
| 2019-05-24 | Move the Cache Control header test to its own file | feld | |
| We can consolidate our cache control header tests here | |||
 |
index : pleroma.git | |
| [no description] |
| aboutsummaryrefslogtreecommitdiff |