aboutsummaryrefslogtreecommitdiff
path: root/lib/pleroma/plugs
AgeCommit message (Collapse)Author
2020-01-30Update http_security_plug.exfeld
2020-01-29Fix credo warningEgor Kislitsyn
2020-01-29Make the warning more scarierEgor Kislitsyn
2020-01-28Warn if HTTPSecurityPlug is disabledEgor Kislitsyn
2020-01-17updated error messages for authentication processMaksim Pechnikov
2020-01-10Merge remote-tracking branch 'remotes/origin/develop' into ↵Ivan Tashkinov
1478-oauth-admin-scopes-tweaks # Conflicts: # lib/pleroma/user.ex
2020-01-10[#1478] OAuth admin tweaks: enforced OAuth admin scopes usage by default, ↵Ivan Tashkinov
migrated existing OAuth records. Adjusted tests.
2019-12-15OAuthScopesPlug: disallowed nil token (unless with :fallback option). WIP: ↵Ivan Tashkinov
controller tests modification: OAuth scopes usage.
2019-12-11[#1427] Fixed `:admin` option handling in OAuthScopesPlug, added tests.Ivan Tashkinov
2019-12-10Merge remote-tracking branch 'remotes/upstream/develop' into ↵Ivan Tashkinov
1427-oauth-admin-scopes # Conflicts: # CHANGELOG.md
2019-12-08OTP: Fix runtime upload limit config being ignoredrinpatch
Closes #1109
2019-12-07[#1427] Extra check that admin OAuth scope is used by admin. Adjusted tests.Ivan Tashkinov
2019-12-06[#1427] Fixes / improvements of admin scopes support. Added tests.Ivan Tashkinov
2019-12-06[#1427] Bugfix for `enforce_oauth_admin_scope_usage`. Admin API ↵Ivan Tashkinov
documentation entry.
2019-12-06[#1427] Reworked admin scopes support.Ivan Tashkinov
Requalified users.is_admin flag as legacy accessor to admin actions in case token lacks admin scope(s).
2019-11-19Support authentication via `x-admin-token` HTTP headerEgor Kislitsyn
2019-11-15Merge branch 'bugfix/1395-email-activation' into 'develop'rinpatch
Bugfix/1395 email activation Closes #1395 See merge request pleroma/pleroma!1965
2019-11-15OAuthPlug, Router: Handle deactivated users in the UserEnabledPluglain
2019-11-11Merge branch 'feature/static-fe' into 'develop'kaniini
Static frontend See merge request pleroma/pleroma!1917
2019-11-11New rate limiterSteven Fuchs
2019-11-11UserEnabledPlug: Don't authenticate unconfirmed users.lain
2019-11-09Move static_fe config to its own section instead of in :instance.Phil Hagelberg
2019-11-09Make many of the improvements suggested in review.Phil Hagelberg
2019-11-09Static FE plug should only respond to text/html requests.Phil Hagelberg
2019-11-09Move static FE routing into its own plug.Phil Hagelberg
Previously it was piggybacking on FallbackRedirectController for users and OStatusController for notices; now it's all in one place.
2019-11-06Fix TrailingFormatPlug not being active for /api/oauth_tokensrinpatch
2019-10-16[#1304] Moved all non-mutes / non-blocks fields from User.Info to User. WIP.Ivan Tashkinov
2019-10-02[#1234] Merge remote-tracking branch 'remotes/upstream/develop' into ↵Ivan Tashkinov
1234-mastodon-2-4-3-oauth-scopes # Conflicts: # CHANGELOG.md # lib/pleroma/web/mastodon_api/controllers/mastodon_api_controller.ex # lib/pleroma/web/router.ex
2019-09-27Add `remote_ip` plugminibikini
2019-09-18Apply suggestion to lib/pleroma/plugs/oauth_scopes_plug.exIvan Tashkinov
2019-09-17[#1234] Merge remote-tracking branch 'remotes/upstream/develop' into ↵Ivan Tashkinov
1234-mastodon-2-4-3-oauth-scopes # Conflicts: # lib/pleroma/web/activity_pub/activity_pub_controller.ex
2019-09-15[#1234] Merge remote-tracking branch 'remotes/upstream/develop' into ↵Ivan Tashkinov
1234-mastodon-2-4-3-oauth-scopes # Conflicts: # lib/pleroma/web/activity_pub/activity_pub_controller.ex # lib/pleroma/web/router.ex
2019-09-15[#1234] Permissions-related fixes / new functionality (Masto 2.4.3 scopes).Ivan Tashkinov
2019-09-12Parse http signature for request to objects/activitiesrinpatch
2019-09-12Put the cache with the right key when using a tracking functionrinpatch
2019-09-12Track object/create activity fetchesrinpatch
2019-09-09Add Pleroma.Plugs.Cacheminibikini
2019-09-08[#1234] Mastodon 2.4.3 hierarchical scopes initial support (WIP).Ivan Tashkinov
2019-09-05Call TrailingFormatPlug for /api/pleroma/emojirinpatch
Apparently Pleroma-FE still calls it with trailing '.json'
2019-09-03Mastdon API: Add ability to get a remote account by nickname torinpatch
`/api/v1/accounts/:id`
2019-07-24tests WebFingerMaksim
2019-07-19Merge branch 'refactor/http-signature-plug' into 'develop'kaniini
http signature plug: separation of concerns See merge request pleroma/pleroma!1449
2019-07-18mapped signature plug: use `user` assign like authentication plugAriadne Conill
2019-07-18tests for Plugs.AuthenticationPlugMaksim
2019-07-18mapped signature plug: fix user lookupAriadne Conill
2019-07-18mapped signature plug: don't invalidate in cases where a signature is ↵Ariadne Conill
actually not present (testsuite)
2019-07-18plugs: add MappedSignatureToIdentityPlugAriadne Conill
2019-07-18http signature plug: remove redundant checks handled by HTTPSignatures libraryAriadne Conill
the redundant checks assumed a POST request, which will not work for signed GETs. this check was originally needed because the HTTPSignatures adapter assumed that the requests were also POST requests. but now, the adapter has been corrected.
2019-07-15formattingMoonman
2019-07-14detect and use sha512-crypt for stored password hash.Moonman
generated by cgit v1.2.3 (git 2.26.2) at 2025-04-23 23:26:55 +0000