akkoma

Author	SHA1	Message	Date
Oneric	bdefbb8fd9	plug/upload_media: query config only once on init	2024-03-18 22:33:10 -01:00
Oneric	f7c9793542	Sanitise Content-Type of uploads The lack thereof enables spoofing ActivityPub objects. A malicious user could upload fake activities as attachments and (if having access to remote search) trick local and remote fedi instances into fetching and processing it as a valid object. If uploads are hosted on the same domain as the instance itself, it is possible for anyone with upload access to impersonate(!) other users of the same instance. If uploads are exclusively hosted on a different domain, even the most basic check of domain of the object id and fetch url matching should prevent impersonation. However, it may still be possible to trick servers into accepting bogus users on the upload (sub)domain and bogus notes attributed to such users. Instances which later migrated to a different domain and have a permissive redirect rule in place can still be vulnerable. If — like Akkoma — the fetching server is overly permissive with redirects, impersonation still works. This was possible because Plug.Static also uses our custom MIME type mappings used for actually authentic AP objects. Provided external storage providers don’t somehow return ActivityStream Content-Types on their own, instances using those are also safe against their users being spoofed via uploads. Akkoma instances using the OnlyMedia upload filter cannot be exploited as a vector in this way — IF the fetching server validates the Content-Type of fetched objects (Akkoma itself does this already). However, restricting uploads to only multimedia files may be a bit too heavy-handed. Instead this commit will restrict the returned Content-Type headers for user uploaded files to a safe subset, falling back to generic 'application/octet-stream' for anything else. This will also protect against non-AP payloads as e.g. used in past frontend code injection attacks. It’s a slight regression in user comfort, if say PDFs are uploaded, but this trade-off seems fairly acceptable. (Note, just excluding our own custom types would offer no protection against non-AP payloads and bear a (perhaps small) risk of a silent regression should MIME ever decide to add a canonical extension for ActivityPub objects) Now, one might expect there to be other defence mechanisms besides Content-Type preventing counterfeits from being accepted, like e.g. validation of the queried URL and AP ID matching. Inserting a self-reference into our uploads is hard, but unfortunately oma does not verify the id in such a way and happily accepts _anything_ from the same domain (without even considering redirects). E.g. Sharkey (and possibly other keys) seem to attempt to guard against this by immediately refetching the object from its ID, but this is easily circumvented by just uploading two payloads with the ID of one linking to the other. Unfortunately *oma is thus _both_ a vector for spoofing and vulnerable to those spoof payloads, resulting in an easy way to impersonate our users. Similar flaws exists for emoji and media proxy. Subsequent commits will fix this by rigorously sanitising content types in more areas, hardening our checks, improving the default config and discouraging insecure config options.	2024-03-18 22:33:10 -01:00
Sandra Snan	6116f81546	Don't strip newlines in the Atom feed Some checks are pending ci/woodpecker/pr/build-amd64 Pipeline is pending Details ci/woodpecker/pr/build-arm64 Pipeline is pending Details ci/woodpecker/pr/docs Pipeline is pending Details ci/woodpecker/pr/lint Pipeline is pending Details ci/woodpecker/pr/test Pipeline is pending Details	2024-03-11 12:50:14 +01:00
Oneric	7ef93c0b6d	Add set_content_type to Plug.StaticNoCT	2024-03-04 17:50:20 +01:00
Oneric	dbb6091d01	Import copy of Plug.Static from Plug 1.15.3 The following commit will apply the needed patch	2024-03-04 17:50:20 +01:00
Helge	5d89e0c917	Allow for url to be a list Some checks failed ci/woodpecker/pr/lint Pipeline failed Details ci/woodpecker/pr/test unknown status Details ci/woodpecker/pr/build-arm64 unknown status Details ci/woodpecker/pr/build-amd64 unknown status Details ci/woodpecker/pr/docs unknown status Details This solves interoperability issues, see: - https://git.pleroma.social/pleroma/pleroma/-/issues/3253 - https://socialhub.activitypub.rocks/t/fep-fffd-proxy-objects/3172/30?u=helge - https://data.funfedi.dev/0.1.1/#url-parameter	2024-03-03 09:11:45 +01:00
Erin Shepherd	f18e2ba42c	Refresh Users much more aggressively when processing Move activities Some checks failed ci/woodpecker/pr/lint Pipeline was successful Details ci/woodpecker/pr/test Pipeline failed Details ci/woodpecker/pr/build-arm64 unknown status Details ci/woodpecker/pr/build-amd64 unknown status Details ci/woodpecker/pr/docs unknown status Details The default refresh interval of 1 day is woefully inadequate here; users expect to be able to add the alias to their new account and press the move button on their old account and have it work. This allows callers to specify a maximum age before a refetch is triggered. We set that to 5s for the move code, as a nice compromise between Making Things Work and ensuring that this can't be used to hammer a remote server	2024-02-29 21:14:53 +01:00
Oneric	fc95519dbf	Allow fetching over IPv6 All checks were successful ci/woodpecker/pr/lint Pipeline was successful Details ci/woodpecker/pr/test Pipeline was successful Details ci/woodpecker/pr/build-amd64 Pipeline was successful Details ci/woodpecker/pr/build-arm64 Pipeline was successful Details ci/woodpecker/pr/docs Pipeline was successful Details Mint/Finch disable IPv6 by default preventing us from fetching anything from IPv6-only hosts without this.	2024-02-25 23:50:51 +01:00
floatingghost	7d61fb0906	Merge pull request 'Fix static-fe Twitter metadata / URL previews' (#700 ) from Oneric/akkoma:staticfe-metadata into develop Some checks are pending ci/woodpecker/push/build-amd64 Pipeline is pending Details ci/woodpecker/push/build-arm64 Pipeline is pending Details ci/woodpecker/push/docs Pipeline is pending Details ci/woodpecker/push/lint Pipeline is pending Details ci/woodpecker/push/test Pipeline is pending Details Reviewed-on: #700	2024-02-24 13:42:55 +00:00
FloatingGhost	3111181d3c	mix format All checks were successful ci/woodpecker/push/lint Pipeline was successful Details ci/woodpecker/push/test Pipeline was successful Details ci/woodpecker/push/build-arm64 Pipeline was successful Details ci/woodpecker/push/build-amd64 Pipeline was successful Details ci/woodpecker/push/docs Pipeline was successful Details	2024-02-20 15:09:04 +00:00
Erin Shepherd	b387f4a1c1	Don't steal emoji who's shortcodes have dots or colons in their name Some checks failed ci/woodpecker/pr/lint Pipeline failed Details ci/woodpecker/pr/test unknown status Details ci/woodpecker/pr/build-arm64 unknown status Details ci/woodpecker/pr/build-amd64 unknown status Details ci/woodpecker/pr/docs unknown status Details Mastodon at the very least seems to prevent the creation of emoji with dots in their name (and refuses to accept them in federation). It feels like being cautious in what we accept is reasonable here. Colons are the emoji separator and so obviously should be blocked. Perhaps instead of filtering out things like this we should just do a regex match on `[a-zA-Z0-9_-]`? But that's plausibly a decision for another day Perhaps we should also have a centralised "is this a valid emoji shortcode?" function	2024-02-20 11:33:55 +01:00
Haelwenn (lanodan) Monnier	7d94476dd6	StealEmojiPolicy: Sanitize shortcodes Some checks are pending ci/woodpecker/pr/build-amd64 Pipeline is pending Details ci/woodpecker/pr/build-arm64 Pipeline is pending Details ci/woodpecker/pr/docs Pipeline is pending Details ci/woodpecker/pr/lint Pipeline is pending Details ci/woodpecker/pr/test Pipeline is pending Details Closes: https://git.pleroma.social/pleroma/pleroma/-/issues/3245	2024-02-20 11:19:00 +01:00
Oneric	37e2a35b86	Fix Twitter metadata All checks were successful ci/woodpecker/pr/lint Pipeline was successful Details ci/woodpecker/pr/test Pipeline was successful Details ci/woodpecker/pr/build-amd64 Pipeline was successful Details ci/woodpecker/pr/build-arm64 Pipeline was successful Details ci/woodpecker/pr/docs Pipeline was successful Details This partly reverts `1d884fd914` while fixing both the issue it addressed and the issue it caused. The above commit successfully fixed OpenGraph metadata tags which until then always showed the user bio instead of post content by handing the activities AP ID as url to the Metadata builder _instead_ of passing the internal ID as activity_id. However, in doing so the commit instead inflicted this very problem onto Twitter metadata tags which ironically are used by akkoma-fe. This is because while the OpenGraph builder wants an URL as url, the Twitter builder needs the internal ID to build the URL to the embedded player for videos and has no URL property. Thanks to twpol for tracking down this root cause in #644. Now, once identified the problem is simple, but this simplicity invites multiple possible solutions to bikeshed about. 1. Just pass both properties to the builder and let them pick 2. Drop the url parameter from the OpenGraph builder and instead a) build static-fe URL of the post from the ID (like Twitter) b) use the passed-in object’s AP ID as an URL Approach 2a has the disadvantage of hardcoding the expected URL outside the router, which will be problematic should it ever change. Approach 2b is conceptually similar to how the builder works atm. However, the og:url is supposed to be a _permanent_ ID, by changing it we might, afaiui, technically violate OpenGraph specs(?). (Though its real-world consequence may very well be near non-existent.) This leaves just approach 1, which this commit implements. Albeit it too is not without nits to pick, as it leaves the metadata builders with an inconsistent interface. Additionally, this will resolve the subotpimal Discord previews for content-less image posts reported in #664. Discord already prefers OpenGraph metadata, so it’s mostly unaffected. However, it appears when encountering an explicitly empty OpenGraph description and a non-empty Twitter description, it replaces just the empty field with its Twitter counterpart, resulting in the user’s bio slipping into the preview. Secondly, regardless of any OpenGraph tags, Discord uses twitter:card to decide how prominently images should be, but due to the bug the card type was stuck as "summary", forcing images to always remain small. Root cause identified by: twpol Fixes: #644 Fixes: #664	2024-02-19 21:09:43 +00:00
floatingghost	3e24210e9f	Merge pull request 'Prune old Update activities' (#683 ) from Oneric/akkoma:db-prune-old-updates into develop Some checks are pending ci/woodpecker/push/build-amd64 Pipeline is pending Details ci/woodpecker/push/build-arm64 Pipeline is pending Details ci/woodpecker/push/docs Pipeline is pending Details ci/woodpecker/push/lint Pipeline is pending Details ci/woodpecker/push/test Pipeline is pending Details Reviewed-on: #683	2024-02-19 13:59:33 +00:00
floatingghost	551ae69541	Merge pull request 'Fix and provide sane defaults for SMTP' (#686 ) from Oneric/akkoma:smtp-defaults into develop Some checks are pending ci/woodpecker/push/build-amd64 Pipeline is pending Details ci/woodpecker/push/build-arm64 Pipeline is pending Details ci/woodpecker/push/docs Pipeline is pending Details ci/woodpecker/push/lint Pipeline is pending Details ci/woodpecker/push/test Pipeline is pending Details Reviewed-on: #686	2024-02-19 13:39:15 +00:00
Oneric	1a7839eaf2	Prune old Update activities Some checks failed ci/woodpecker/pr/lint Pipeline was successful Details ci/woodpecker/pr/test Pipeline failed Details ci/woodpecker/pr/build-arm64 unknown status Details ci/woodpecker/pr/build-amd64 unknown status Details ci/woodpecker/pr/docs unknown status Details Once processed they serve no purpose anymore afaict. Therefor, lets prune them like other transient activities to not unnecessarily bloat the table.	2024-02-17 16:57:40 +01:00
floatingghost	755c75d8a4	Merge pull request 'Clean up warnings (+fallback metrics)' (#685 ) from Oneric/akkoma:metrics into develop Some checks are pending ci/woodpecker/push/build-amd64 Pipeline is pending Details ci/woodpecker/push/build-arm64 Pipeline is pending Details ci/woodpecker/push/docs Pipeline is pending Details ci/woodpecker/push/lint Pipeline is pending Details ci/woodpecker/push/test Pipeline is pending Details Reviewed-on: #685	2024-02-17 11:41:10 +00:00
floatingghost	289f93f5a2	Merge pull request 'Return last_status_at as date, not datetime' (#681 ) from katafrakt/akkoma:fix-last-status-at into develop Some checks are pending ci/woodpecker/push/build-amd64 Pipeline is pending Details ci/woodpecker/push/build-arm64 Pipeline is pending Details ci/woodpecker/push/docs Pipeline is pending Details ci/woodpecker/push/lint Pipeline is pending Details ci/woodpecker/push/test Pipeline is pending Details Reviewed-on: #681	2024-02-17 11:37:19 +00:00
Oneric	e99e2407f3	Add background_removal to SimplePolicy MRF Some checks failed ci/woodpecker/pr/lint Pipeline was successful Details ci/woodpecker/pr/test Pipeline failed Details ci/woodpecker/pr/build-arm64 unknown status Details ci/woodpecker/pr/build-amd64 unknown status Details ci/woodpecker/pr/docs unknown status Details	2024-02-16 16:36:45 +01:00
Oneric	7622aa27ca	Federate user profile background Currently our own frontend doesn’t show backgrounds of other users, this property is already publicly readable via REST API and likely was always intended to be shown and federated. Recently Sharkey added support for profile backgrounds and immediately made them federate and be displayed to others. We use the same AP field as Sharkey here which should make it interoperable both ways out-of-the-box. Ref.: `4e64397635`	2024-02-16 16:35:51 +01:00
FloatingGhost	0ed815b8a1	Merge branch 'followback' into develop Some checks are pending ci/woodpecker/push/build-amd64 Pipeline is pending Details ci/woodpecker/push/build-arm64 Pipeline is pending Details ci/woodpecker/push/docs Pipeline is pending Details ci/woodpecker/push/lint Pipeline is pending Details ci/woodpecker/push/test Pipeline is pending Details	2024-02-16 13:27:40 +00:00
floatingghost	c5dcd07e08	Merge pull request 'Fix OpenAPI spec for preferred_frontend endpoint' (#680 ) from katafrakt/akkoma:fix-openapi-spec-for-preferred-frontend into develop Some checks are pending ci/woodpecker/push/build-amd64 Pipeline is pending Details ci/woodpecker/push/build-arm64 Pipeline is pending Details ci/woodpecker/push/docs Pipeline is pending Details ci/woodpecker/push/lint Pipeline is pending Details ci/woodpecker/push/test Pipeline is pending Details Reviewed-on: #680	2024-02-16 12:21:00 +00:00
floatingghost	874ee73a87	Merge pull request 'Document Akkoma API' (#678 ) from Oneric/akkoma:doc-akkomapi into develop Some checks are pending ci/woodpecker/push/build-amd64 Pipeline is pending Details ci/woodpecker/push/build-arm64 Pipeline is pending Details ci/woodpecker/push/docs Pipeline is pending Details ci/woodpecker/push/lint Pipeline is pending Details ci/woodpecker/push/test Pipeline is pending Details Reviewed-on: #678	2024-02-16 12:20:11 +00:00
Oneric	cda597a05c	doc: fix Akkoma identification name Some checks are pending ci/woodpecker/pr/build-amd64 Pipeline is pending Details ci/woodpecker/pr/build-arm64 Pipeline is pending Details ci/woodpecker/pr/docs Pipeline is pending Details ci/woodpecker/pr/lint Pipeline is pending Details ci/woodpecker/pr/test Pipeline is pending Details Akkoma stopped pretending to be Pleroma here when the mix project name was changed in `c07fcdbf2b`.	2024-02-15 16:25:59 +01:00
Haelwenn (lanodan) Monnier	cb7eaccecb	Config: Check the permissions of the linked file instead of the symlink↵ Some checks failed ci/woodpecker/pr/lint Pipeline was successful Details ci/woodpecker/pr/test Pipeline was successful Details ci/woodpecker/pr/build-amd64 unknown status Details ci/woodpecker/pr/build-arm64 unknown status Details ci/woodpecker/pr/docs unknown status Details	2024-02-14 18:30:27 +01:00
Oneric	376f6b15ca	Add ability to auto-approve followbacks Some checks are pending ci/woodpecker/pr/build-amd64 Pipeline is pending Details ci/woodpecker/pr/build-arm64 Pipeline is pending Details ci/woodpecker/pr/docs Pipeline is pending Details ci/woodpecker/pr/lint Pipeline is pending Details ci/woodpecker/pr/test Pipeline is pending Details Resolves: #148	2024-02-13 15:42:37 +01:00
Oneric	13e62b4e51	Fix schema and docs for status_ttl_days and instance Fixes misspelling and omission of and example in commit `0cfd5b4e89` which added the status_ttl_property. This was the only place this commit referred to the property as note_ttl_days. Partially fixes the omitted schema update of the instance metadata addition from commit `b7e8ce2350`. A proper full schema for nodeinfo is still missing.	2024-02-13 15:39:52 +01:00
Oneric	192480093c	Provide sane defaults for SMTP Some checks failed ci/woodpecker/pr/lint Pipeline was successful Details ci/woodpecker/pr/test Pipeline was successful Details ci/woodpecker/pr/build-arm64 unknown status Details ci/woodpecker/pr/build-amd64 unknown status Details ci/woodpecker/pr/docs unknown status Details OTP’s default SSL/TLS settings are rather restricitive and in particular do not use system CA certs. In our case using system CA certs is virtually always desired and the lack of it leads to non-obvious errors. Manually configuring system CA certs from in-database config also isn’t straightforward. Furthermore, gen_smtp uses a different set of connection options for direct SSL/TLS and a later TLS upgrade providing additional confusion and complexity in how to configure this. Thus provide some suitable defaults for sending SMTP emails. Everything can still be overriden by admins if necessary. Note: defaults are not appended when validating the config in hopes of improving the error message (as the required relay key is already accessed to generate defaults for optional fields) Fixes: #660	2024-02-12 22:45:57 +01:00
Oneric	29f564f700	Use fallbacks of summary metrics for prometheus Some checks are pending ci/woodpecker/pr/build-amd64 Pipeline is pending Details ci/woodpecker/pr/build-arm64 Pipeline is pending Details ci/woodpecker/pr/docs Pipeline is pending Details ci/woodpecker/pr/lint Pipeline is pending Details ci/woodpecker/pr/test Pipeline is pending Details	2024-02-12 02:00:09 +01:00
Oneric	16197ff57a	Display memory as MB in live dashboard With kilobyte the resulting numbers got too large and were cut off in the charts, making them useless. However, even an idle Akkoma server’s memory usage is in the lower hundreths of megabytes, so we don’t need this much precision to begin with for the dashboard. Other metric users might prefer base units and can handle scaling in a smarter way, so keep this configurable.	2024-02-12 02:00:09 +01:00
Oneric	18ecae6183	Use fully qualified function capture for telementry event Otherwise we get warnings on startup as local captures and anonymous functions are supposedly less performant.	2024-02-12 01:59:18 +01:00
Oneric	a6df71eebb	Don't add summary metrics to prometheus The exporter doesn’t support them thus we don't lose anything by this, but it avoids a bunch of warnings each time the server starts up.	2024-02-12 01:59:18 +01:00
Paweł Świątkowski	df21b61829	Return last_status_at as date, not datetime Some checks are pending ci/woodpecker/pr/build-amd64 Pipeline is pending Details ci/woodpecker/pr/build-arm64 Pipeline is pending Details ci/woodpecker/pr/docs Pipeline is pending Details ci/woodpecker/pr/lint Pipeline is pending Details ci/woodpecker/pr/test Pipeline is pending Details	2024-02-05 21:42:15 +01:00
floatingghost	e97d08ee98	Merge pull request 'MRF transparency: don’t forget to obfuscate short domains' (#676 ) from Oneric/akkoma:mrf-obfuscation into develop Some checks are pending ci/woodpecker/push/build-amd64 Pipeline is pending Details ci/woodpecker/push/build-arm64 Pipeline is pending Details ci/woodpecker/push/docs Pipeline is pending Details ci/woodpecker/push/lint Pipeline is pending Details ci/woodpecker/push/test Pipeline is pending Details Reviewed-on: #676	2024-02-05 08:43:43 +00:00
Paweł Świątkowski	d7d159c49f	Fix OpenAPI spec for preferred_frontend endpoint Some checks are pending ci/woodpecker/pr/build-amd64 Pipeline is pending Details ci/woodpecker/pr/build-arm64 Pipeline is pending Details ci/woodpecker/pr/docs Pipeline is pending Details ci/woodpecker/pr/lint Pipeline is pending Details ci/woodpecker/pr/test Pipeline is pending Details The spec was copied from another endpoint, including the operation id, leading to scrubbing the valid parameters from the request and simply not working.	2024-02-03 14:27:45 +01:00
Oneric	e47c50666d	Fix obfuscation of short domains Fixes #645	2024-02-02 14:50:13 +00:00
Aria	77000b8ffd	update tests for oauth consumer Some checks failed ci/woodpecker/pr/lint Pipeline was successful Details ci/woodpecker/pr/test Pipeline was successful Details ci/woodpecker/pr/build-arm64 unknown status Details ci/woodpecker/pr/build-amd64 unknown status Details ci/woodpecker/pr/docs unknown status Details	2023-12-17 21:48:19 +00:00
Aria	eb0dbf6b79	fix oauth consumer mode the previous code passed a state parameter to ueberauth with info about where to go after the user logged in, etc. since ueberauth 0.7, this parameter is ignored and oauth state is used for actual CSRF reasons. we now set a cookie with the state we need to keep track of, and read it once the callback happens.	2023-12-17 19:27:36 +00:00
Yonle	8a0e797cff	ap userview: add outbox field. Signed-off-by: Yonle <yonle@lecturify.net>	2023-12-15 16:31:51 +00:00
FloatingGhost	6cc523bd23	Correct email links to be absolute URLs Some checks are pending ci/woodpecker/push/build-amd64 Pipeline is pending Details ci/woodpecker/push/build-arm64 Pipeline is pending Details ci/woodpecker/push/docs Pipeline is pending Details ci/woodpecker/push/lint Pipeline is pending Details ci/woodpecker/push/test Pipeline is pending Details	2023-11-02 11:49:03 +00:00
Rohan Kumar	36f4f18aa5	Add more image mimetypes to reverse proxy Some checks failed ci/woodpecker/pr/lint Pipeline was successful Details ci/woodpecker/pr/test Pipeline was successful Details ci/woodpecker/pr/build-arm64 unknown status Details ci/woodpecker/pr/build-amd64 unknown status Details ci/woodpecker/pr/docs unknown status Details Add JPEG-XL, AVIF, and WebP support to the reverse proxy. All three are supported in WebKit browsers; the latter two are supported in Gecko and Blink.	2023-11-01 17:47:52 -07:00
FloatingGhost	c8e08e9cc3	fix issue with API cascading domain blocks but not honouring them Some checks are pending ci/woodpecker/push/build-amd64 Pipeline is pending Details ci/woodpecker/push/build-arm64 Pipeline is pending Details ci/woodpecker/push/docs Pipeline is pending Details ci/woodpecker/push/lint Pipeline is pending Details ci/woodpecker/push/test Pipeline is pending Details	2023-08-25 11:00:49 +01:00
FloatingGhost	98f0820ca4	MIX FORMAT All checks were successful ci/woodpecker/push/lint Pipeline was successful Details ci/woodpecker/push/test Pipeline was successful Details ci/woodpecker/push/build-arm64 Pipeline was successful Details ci/woodpecker/push/build-amd64 Pipeline was successful Details ci/woodpecker/push/docs Pipeline was successful Details	2023-08-15 23:26:22 +01:00
FloatingGhost	9bc0345e57	AND THAT ONE TOO AND ALL	2023-08-15 23:26:08 +01:00
FloatingGhost	f3cc60b202	INBOX NEEDS TO BE A FULL URL YOU IDIOT AM BAKA I SHOULD JUST COMMIT SUDOKU RIGHT NOW	2023-08-15 23:23:59 +01:00
FloatingGhost	063e3c0d34	Disallow nil hosts in should_federate All checks were successful ci/woodpecker/push/lint Pipeline was successful Details ci/woodpecker/push/test Pipeline was successful Details ci/woodpecker/push/build-arm64 Pipeline was successful Details ci/woodpecker/push/build-amd64 Pipeline was successful Details ci/woodpecker/push/docs Pipeline was successful Details	2023-08-15 23:12:04 +01:00
FloatingGhost	6cb40bee26	Migrate to phoenix 1.7 (#626 ) All checks were successful ci/woodpecker/push/lint Pipeline was successful Details ci/woodpecker/push/test Pipeline was successful Details ci/woodpecker/push/build-arm64 Pipeline was successful Details ci/woodpecker/push/build-amd64 Pipeline was successful Details ci/woodpecker/push/docs Pipeline was successful Details Closes #612 Co-authored-by: tusooa <tusooa@kazv.moe> Reviewed-on: #626 Co-authored-by: FloatingGhost <hannah@coffee-and-dreams.uk> Co-committed-by: FloatingGhost <hannah@coffee-and-dreams.uk>	2023-08-15 10:22:18 +00:00
floatingghost	0b32beb051	Merge pull request 'meilisearch: Move published date to lower priority' (#623 ) from norm/akkoma:meilisearch-order into develop Some checks are pending ci/woodpecker/push/build-amd64 Pipeline is pending Details ci/woodpecker/push/build-arm64 Pipeline is pending Details ci/woodpecker/push/docs Pipeline is pending Details ci/woodpecker/push/test Pipeline is pending Details Reviewed-on: #623	2023-08-12 14:36:53 +00:00
floatingghost	7bb41bffb3	Merge pull request 'Reload emoji when using mix pleroma.emoji gen-pack and get-packs' (#563 ) from norm/akkoma:emoji-reload into develop Some checks are pending ci/woodpecker/push/build-amd64 Pipeline is pending Details ci/woodpecker/push/build-arm64 Pipeline is pending Details ci/woodpecker/push/docs Pipeline is pending Details ci/woodpecker/push/test Pipeline is pending Details Reviewed-on: #563	2023-08-12 14:07:23 +00:00
FloatingGhost	1bd3012c2d	Fix compiler warnings Some checks are pending ci/woodpecker/push/build-amd64 Pipeline is pending Details ci/woodpecker/push/build-arm64 Pipeline is pending Details ci/woodpecker/push/docs Pipeline is pending Details ci/woodpecker/push/test Pipeline is pending Details	2023-08-12 15:03:43 +01:00
Joshua Goins	c22ecac567	mastodon_api: Add /api/v1/preferences endpoint Some checks failed ci/woodpecker/pr/test Pipeline was successful Details ci/woodpecker/pr/build-arm64 unknown status Details ci/woodpecker/pr/build-amd64 unknown status Details ci/woodpecker/pr/docs unknown status Details Implements the preferences endpoint in the Mastodon API, but returns default values for most of the preferences right now. The only supported preference we can access is default post visibility, and a relevant test is added as well.	2023-08-12 09:28:24 -04:00
Norm	d79c92f9c6	meilisearch: Move published date to lower priority Some checks are pending ci/woodpecker/pr/build-amd64 Pipeline is pending Details ci/woodpecker/pr/build-arm64 Pipeline is pending Details ci/woodpecker/pr/docs Pipeline is pending Details ci/woodpecker/pr/test Pipeline is pending Details Currently, Akkoma sorts by published date first before everything else. This however makes search results pretty bad since Meilisearch uses a bucket sort algorithm in order of the ranking rules specified: https://www.meilisearch.com/docs/learn/core_concepts/relevancy#behavior Since the `published` attribute is a unix timestamp, the resulting buckets are pretty small so the other rules essentially have little to no effect on the rankings of search results. This fixes that issue by moving the `published:desc` rule further down so it still sorts by date, but only after considering everything else. AFAIK attribute and sort doesn't really affect results for Akkoma since the only attribute considered is the `content` attribute and the `sort` parameter isn't used in Akkoma searches. Everything else is made to match more closely to Meilisearch's defaults.	2023-08-11 11:07:14 -04:00
FloatingGhost	165c2485ff	Merge branch 'otp26' into develop Some checks are pending ci/woodpecker/push/build-amd64 Pipeline is pending Details ci/woodpecker/push/build-arm64 Pipeline is pending Details ci/woodpecker/push/docs Pipeline is pending Details ci/woodpecker/push/test Pipeline is pending Details	2023-08-09 14:35:06 +01:00
Clovis	fc3cc61768	Fix invalid Date HTTP header when signing fetch requests Some checks failed ci/woodpecker/pr/test Pipeline failed Details ci/woodpecker/pr/build-arm64 unknown status Details ci/woodpecker/pr/build-amd64 unknown status Details ci/woodpecker/pr/docs unknown status Details #503	2023-08-07 12:43:42 +00:00
FloatingGhost	7825798e32	Add XML matcher	2023-08-07 11:12:14 +01:00
FloatingGhost	9723264fe5	Add URI matchers	2023-08-06 15:51:21 +01:00
FloatingGhost	368b22fd2f	Ensure we can't crash out on unusual logger backend settings All checks were successful ci/woodpecker/push/test Pipeline was successful Details ci/woodpecker/push/build-amd64 Pipeline was successful Details ci/woodpecker/push/build-arm64 Pipeline was successful Details ci/woodpecker/push/docs Pipeline was successful Details	2023-08-06 15:12:57 +01:00
FloatingGhost	59af68c600	Ensure it doesn't break on elixir1.14 All checks were successful ci/woodpecker/push/test Pipeline was successful Details ci/woodpecker/push/build-amd64 Pipeline was successful Details ci/woodpecker/push/docs Pipeline was successful Details ci/woodpecker/push/build-arm64 Pipeline was successful Details	2023-08-05 14:11:27 +01:00
FloatingGhost	ec5db753b9	Prevent elixir compiler from yeeting our modules All checks were successful ci/woodpecker/push/test Pipeline was successful Details ci/woodpecker/push/build-amd64 Pipeline was successful Details ci/woodpecker/push/build-arm64 Pipeline was successful Details ci/woodpecker/push/docs Pipeline was successful Details	2023-08-05 14:03:21 +01:00
mae	d868348fac	Completely disable xml entity resolution Some checks are pending ci/woodpecker/pr/build-amd64 Pipeline is pending Details ci/woodpecker/pr/build-arm64 Pipeline is pending Details ci/woodpecker/pr/docs Pipeline is pending Details ci/woodpecker/pr/test Pipeline is pending Details	2023-08-05 12:32:05 +00:00
FloatingGhost	31d7cc9a9c	Allow Pleroma.HTTP to connect to raw-HTTP without freaking mint out All checks were successful ci/woodpecker/push/test Pipeline was successful Details ci/woodpecker/push/build-amd64 Pipeline was successful Details ci/woodpecker/push/docs Pipeline was successful Details ci/woodpecker/push/build-arm64 Pipeline was successful Details	2023-08-04 23:51:15 +01:00
FloatingGhost	8670d89316	Remove duplicated path Some checks are pending ci/woodpecker/push/build-amd64 Pipeline is pending Details ci/woodpecker/push/build-arm64 Pipeline is pending Details ci/woodpecker/push/docs Pipeline is pending Details ci/woodpecker/push/test Pipeline is pending Details Fixes #604	2023-08-04 22:39:11 +01:00
FloatingGhost	b4399574ca	Merge remote-tracking branch 'norm/config-permissions' into develop Some checks are pending ci/woodpecker/push/build-amd64 Pipeline is pending Details ci/woodpecker/push/build-arm64 Pipeline is pending Details ci/woodpecker/push/docs Pipeline is pending Details ci/woodpecker/push/test Pipeline is pending Details	2023-08-04 22:31:11 +01:00
Mae	1f54bea564	Prevent XML parser from loading external entities	2023-08-04 22:24:17 +01:00
Haelwenn (lanodan) Monnier	4f57c87be4	instance gen: Reduce permissions of pleroma directories and config files Original: `69caedc591`	2023-08-04 14:13:50 -04:00
Haelwenn (lanodan) Monnier	ae03513934	Config: Restrict permissions of OTP config file Original: `8cc8100120`	2023-08-04 14:13:36 -04:00
FloatingGhost	0b2ec0ccee	Enable AnonymizeFilenames on all uploads Some checks failed ci/woodpecker/push/test Pipeline was successful Details ci/woodpecker/push/build-amd64 Pipeline failed Details ci/woodpecker/push/docs unknown status Details ci/woodpecker/push/build-arm64 Pipeline was successful Details	2023-08-04 15:37:15 +01:00
FloatingGhost	723bd123a0	Correct ordering for block/mutes	2023-08-04 15:18:07 +01:00
FloatingGhost	1dc8cc731c	Merge branch 'elixir1.15' into develop Some checks are pending ci/woodpecker/push/build-amd64 Pipeline is pending Details ci/woodpecker/push/build-arm64 Pipeline is pending Details ci/woodpecker/push/docs Pipeline is pending Details ci/woodpecker/push/test Pipeline is pending Details	2023-08-04 15:16:14 +01:00
FloatingGhost	64e233ca20	Tag `Mock`-tests as "mocked" and run them seperately	2023-08-04 12:50:50 +01:00
FloatingGhost	2946bf4011	mix format Some checks are pending ci/woodpecker/push/build-amd64 Pipeline is pending Details ci/woodpecker/push/build-arm64 Pipeline is pending Details ci/woodpecker/push/docs Pipeline is pending Details ci/woodpecker/push/test Pipeline is pending Details ci/woodpecker/pr/build-amd64 Pipeline is pending Details ci/woodpecker/pr/build-arm64 Pipeline is pending Details ci/woodpecker/pr/docs Pipeline is pending Details ci/woodpecker/pr/test Pipeline is pending Details	2023-08-04 12:04:24 +01:00
FloatingGhost	fe8c166b8f	Remove IO.inspects Some checks failed ci/woodpecker/push/test Pipeline was successful Details ci/woodpecker/push/build-amd64 Pipeline was successful Details ci/woodpecker/push/build-arm64 Pipeline was successful Details ci/woodpecker/push/docs Pipeline was successful Details ci/woodpecker/pr/test Pipeline failed Details ci/woodpecker/pr/build-amd64 unknown status Details ci/woodpecker/pr/build-arm64 unknown status Details ci/woodpecker/pr/docs unknown status Details	2023-08-04 12:01:52 +01:00
Mark Felder	7e45343f81	Resolve information disclosure vulnerability through emoji pack archive download endpoint All checks were successful ci/woodpecker/push/test Pipeline was successful Details ci/woodpecker/push/build-arm64 Pipeline was successful Details ci/woodpecker/push/build-amd64 Pipeline was successful Details ci/woodpecker/push/docs Pipeline was successful Details	2023-08-04 11:34:19 +01:00
FloatingGhost	98cb255d12	Support elixir1.15 Some checks failed ci/woodpecker/push/build-amd64 Pipeline is pending Details ci/woodpecker/push/build-arm64 Pipeline is pending Details ci/woodpecker/push/docs Pipeline is pending Details ci/woodpecker/push/test Pipeline is pending Details ci/woodpecker/pr/test Pipeline failed Details ci/woodpecker/pr/build-amd64 unknown status Details ci/woodpecker/pr/build-arm64 unknown status Details ci/woodpecker/pr/docs unknown status Details OTP builds to 1.15 Changelog entry Ensure policies are fully loaded Fix :warn use main branch for linkify Fix warn in tests Migrations for phoenix 1.17 Revert "Migrations for phoenix 1.17" This reverts commit `6a3b2f15b7`. Oban upgrade Add default empty whitelist mix format limit test to amd64 OTP 26 tests for 1.15 use OTP_VERSION tag baka just 1.15 Massive deps update Update locale, deps Mix format shell???? multiline??? ? max cases 1 use assert_recieve don't put_env in async tests don't async conn/fs tests mix format FIx some uploader issues Fix tests	2023-08-03 17:44:09 +01:00
FloatingGhost	babb4b9a8f	Merge branch 'metadata_webfinger' into develop Some checks are pending ci/woodpecker/push/build-amd64 Pipeline is pending Details ci/woodpecker/push/build-arm64 Pipeline is pending Details ci/woodpecker/push/docs Pipeline is pending Details ci/woodpecker/push/test Pipeline is pending Details	2023-08-02 12:05:43 +01:00
FloatingGhost	27cbfb8985	Send a NIL body rather than an empty one with GET/HEAD	2023-08-01 11:26:05 +01:00
Walter Huf	7ff9c356f4	Merge remote-tracking branch 'upstream/develop' into metadata_webfinger	2023-07-27 07:43:17 -07:00
Weblate	eba3cce77b	Update translation files Some checks failed ci/woodpecker/push/test Pipeline was successful Details ci/woodpecker/push/build-arm64 Pipeline failed Details ci/woodpecker/push/docs unknown status Details ci/woodpecker/push/build-amd64 Pipeline failed Details Updated by "Squash Git commits" hook in Weblate. Translation: Pleroma fe/Akkoma Backend (Config Descriptions) Translate-URL: http://translate.akkoma.dev/projects/akkoma/akkoma-backend-config-descriptions/	2023-07-27 13:14:05 +00:00
FloatingGhost	fa23098093	Merge branch 'develop' into arm All checks were successful ci/woodpecker/push/test Pipeline was successful Details ci/woodpecker/pr/build-arm64 Pipeline was successful Details ci/woodpecker/pr/docs Pipeline was successful Details ci/woodpecker/push/build-amd64 Pipeline was successful Details ci/woodpecker/push/build-arm64 Pipeline was successful Details ci/woodpecker/push/docs Pipeline was successful Details ci/woodpecker/pr/test Pipeline was successful Details ci/woodpecker/pr/build-amd64 Pipeline was successful Details	2023-07-27 14:01:11 +01:00
floatingghost	6db8ab7c94	Merge pull request 'Varied selection of Pleroma cherry-picks' (#567 ) from XxXCertifiedForkliftDriverXxX/akkoma:cherry-picks into develop Some checks are pending ci/woodpecker/push/woodpecker Pipeline is pending Details Reviewed-on: #567	2023-07-27 12:53:56 +00:00
FloatingGhost	34601065c3	Mix format Some checks failed ci/woodpecker/push/build-amd64 Pipeline is pending Details ci/woodpecker/push/build-arm64 Pipeline is pending Details ci/woodpecker/push/docs Pipeline is pending Details ci/woodpecker/push/test Pipeline is pending Details ci/woodpecker/pr/test Pipeline failed Details ci/woodpecker/pr/build-arm64 unknown status Details ci/woodpecker/pr/build-amd64 unknown status Details ci/woodpecker/pr/docs unknown status Details	2023-07-20 17:34:05 +01:00
FloatingGhost	33e7ae7637	Allow nil attachments All checks were successful ci/woodpecker/push/woodpecker Pipeline was successful Details	2023-07-17 20:03:31 +01:00
FloatingGhost	900b9b0124	Merge branch 'develop' into active-emoji-reactions Some checks are pending ci/woodpecker/push/woodpecker Pipeline is pending Details ci/woodpecker/pr/woodpecker Pipeline is pending Details	2023-07-17 19:45:43 +01:00
FloatingGhost	c63ae73bc0	Add embed controller tests	2023-07-17 19:18:21 +01:00
FloatingGhost	16d2bfef80	Ensure embeds will not be served if unauthenticated users could not see it	2023-07-17 18:24:53 +01:00
FloatingGhost	c8904f15a2	Correct behaviour of mediaproxy blocklist All checks were successful ci/woodpecker/push/woodpecker Pipeline was successful Details ci/woodpecker/pr/woodpecker Pipeline was successful Details	2023-07-17 18:17:04 +01:00
FloatingGhost	8fe29bf5d2	Exclude deactivated users from emoji reaction lists Some checks failed ci/woodpecker/push/woodpecker Pipeline is pending Details ci/woodpecker/pr/woodpecker Pipeline failed Details	2023-07-17 17:53:03 +01:00
floatingghost	210df6fe92	Merge pull request 'Fix the /embed endpoint' (#540 ) from mikihau/akkoma:develop into develop Some checks are pending ci/woodpecker/push/woodpecker Pipeline is pending Details Reviewed-on: #540	2023-07-15 20:48:30 +00:00
Mark Felder	5144d6f4ba	Add OnlyMedia Upload Filter to simplify restricting uploads to audio, image, and video types Original: https://git.pleroma.social/pleroma/pleroma/-/merge_requests/3897	2023-06-28 01:56:14 +01:00
floatingghost	3e4a279a1b	Merge pull request 'Implement blocklists for MediaProxy' (#574 ) from XxXCertifiedForkliftDriverXxX/akkoma:feature/mediaproxy-blocklist into develop Some checks are pending ci/woodpecker/push/woodpecker Pipeline is pending Details Reviewed-on: #574	2023-06-28 00:54:25 +00:00
XxXCertifiedForkliftDriverXxX	767e1272b3	Use OS CA store for Mint HTTP connections All checks were successful ci/woodpecker/pr/woodpecker Pipeline was successful Details	2023-06-26 15:50:49 +02:00
XxXCertifiedForkliftDriverXxX	07b478dc49	Implement blocklists for MediaProxy Some checks are pending ci/woodpecker/pr/woodpecker Pipeline is pending Details	2023-06-26 15:18:31 +02:00
tusooa	c0a01e73cf	Enforce unauth restrictions for public streaming endpoints Some checks failed ci/woodpecker/pr/woodpecker Pipeline failed Details	2023-06-14 22:45:19 +00:00
tusooa	fee6e2aac4	Fix deleting banned users' statuses	2023-06-14 22:45:19 +00:00
Haelwenn (lanodan) Monnier	8669a0abcb	UploadedMedia: Increase readability via ~s sigil	2023-06-14 22:45:19 +00:00
Haelwenn (lanodan) Monnier	37b0d774fa	UploadedMedia: Add missing disposition_type to Content-Disposition Set it to `inline` because the vast majority of what's sent is multimedia content while `attachment` would have the side-effect of triggering a download dialog. Closes: https://git.pleroma.social/pleroma/pleroma/-/issues/3114	2023-06-14 22:45:19 +00:00
tusooa	3095251e6c	Dedupe poll options	2023-06-14 22:45:19 +00:00
tusooa	79a18f761b	Allow with_relationships param for blocks	2023-06-14 22:45:19 +00:00
kPherox	8fb235e71b	fix: append field values to bio before parsing	2023-06-14 19:44:07 +00:00
kPherox	d6271e7613	feat: build rel me tags with profile fields	2023-06-14 19:44:07 +00:00
Alexander Tumin	5adce547d0	Require related object for notifications to filter on content	2023-06-14 19:41:48 +00:00
tusooa	05e80d1879	Fix block_from_stranger setting	2023-06-14 19:41:44 +00:00
tusooa	1268dbc562	Fix type of admin_account.is_confirmed	2023-06-14 19:38:22 +00:00
tusooa	651979217a	Fix failure when registering a user with no email when approval required	2023-06-14 19:33:58 +00:00
Mark Felder	997551bac9	Fix TwitterCard meta tags TwitterCard meta tags are supposed to use the attributes "name" and "content". OpenGraph tags use the attributes "property" and "content". Twitter itself is smart enough to detect broken meta tags and discover the TwitterCard using "property" and "content", but other platforms that only implement parsing of TwitterCards and not OpenGraph may fail to correctly detect the tags as they're under the wrong attributes. > "Open Graph protocol also specifies the use of property and content attributes for markup while > Twitter cards use name and content. Twitter’s parser will fall back to using property and content, > so there is no need to modify existing Open Graph protocol markup if it already exists." [0] [0] https://developer.twitter.com/en/docs/twitter-for-websites/cards/guides/getting-started	2023-06-14 19:30:19 +00:00
Tusooa Zhu	7b9cc9a9b0	Exclude Announce instead of restricting to Create in visibility_tags	2023-06-14 17:20:55 +00:00
Tusooa Zhu	fd38756e92	Do not stream out Announces to public timelines	2023-06-14 17:20:55 +00:00
Tusooa Zhu	5ef7c15d92	Make local-only posts stream in local timeline	2023-06-14 17:18:26 +00:00
Hélène	3227ebf1e1	CommonFixes: more predictable context generation `context` fields for objects and activities can now be generated based on the object/activity `inReplyTo` field or its ActivityPub ID, as a fallback method in cases where `context` fields are missing for incoming activities and objects.	2023-06-14 16:22:26 +00:00
Norm	b99053d2c2	Reload emoji when using mix pleroma.emoji gen-pack and get-packs Some checks are pending ci/woodpecker/pr/woodpecker Pipeline is pending Details I think it makes more sense that the emoji cache gets reloaded in Akkoma if you add or create emoji packs.	2023-06-04 02:43:18 +00:00
Miki Hau	593ddbd796	fix the /embed endpoint Some checks are pending ci/woodpecker/pr/woodpecker Pipeline is pending Details	2023-05-31 23:42:08 +00:00
XxXCertifiedForkliftDriverXxX	1b560d547a	Stop exposing if a user blocks you over the API. Some checks are pending ci/woodpecker/pr/woodpecker Pipeline is pending Details	2023-05-28 23:42:27 +02:00
Haelwenn (lanodan) Monnier	70b0f93865	Apply oembed patch Some checks are pending ci/woodpecker/push/woodpecker Pipeline is pending Details	2023-05-26 20:45:57 +01:00
FloatingGhost	a388d2503e	revert uploaded-media Some checks are pending ci/woodpecker/tag/woodpecker Pipeline is pending Details ci/woodpecker/push/woodpecker Pipeline was successful Details	2023-05-26 12:06:41 +01:00
FloatingGhost	7fb9960ccd	Add CSP to mediaproxy links Some checks are pending ci/woodpecker/push/woodpecker Pipeline is pending Details ci/woodpecker/tag/woodpecker Pipeline is pending Details	2023-05-26 11:46:18 +01:00
FloatingGhost	9d83a1e23f	Add csp Some checks are pending ci/woodpecker/push/woodpecker Pipeline is pending Details	2023-05-26 11:41:22 +01:00
FloatingGhost	8c208f751d	Fix filtering out incorrect addresses Some checks are pending ci/woodpecker/push/woodpecker Pipeline is pending Details	2023-05-23 13:46:25 +01:00
FloatingGhost	037f881187	Fix create processing in direct message disabled	2023-05-23 13:16:20 +01:00
FloatingGhost	ab34680554	switch to using an enum system for DM acceptance	2023-05-23 10:29:08 +01:00
FloatingGhost	d310f99d6a	Add MRFs for direct message manipulation	2023-05-22 23:53:44 +01:00
floatingghost	f72d773cc3	Merge pull request 'Make UserNote comment default to the empty string.' (#530 ) from provable_ascent/akkoma:provable_ascent-patch-1 into develop Some checks are pending ci/woodpecker/push/woodpecker Pipeline is pending Details Reviewed-on: #530	2023-05-22 21:33:01 +00:00
floatingghost	3437e11cf7	Merge pull request 'Return empty string in the event of no detected language' (#535 ) from midnight/akkoma:fix-libretranslate into develop Some checks are pending ci/woodpecker/push/woodpecker Pipeline is pending Details Reviewed-on: #535	2023-05-22 21:30:51 +00:00
floatingghost	6225f24f5f	Merge pull request 'Clean up bookmarks after prune_objects' (#544 ) from ilja/akkoma:clean_up_bookmarks_after_prune_objects into develop Some checks are pending ci/woodpecker/push/woodpecker Pipeline is pending Details Reviewed-on: #544	2023-05-22 21:28:48 +00:00
ilja	f49e9e6d4c	Clean up bookmarks after prune_objects Some checks are pending ci/woodpecker/pr/woodpecker Pipeline is pending Details When doing prune_objects, it's possible that bookmarked objects are deleted. This gave problems when fetching the bookmark TL. Here we clean up the bookmarks during pruning in the case were it's possible that bookmarked objects are deleted.	2023-05-21 13:02:28 +02:00
midnight	f1e66b39c7	Return empty string in the event of no detected language Some checks are pending ci/woodpecker/pr/woodpecker Pipeline is pending Details	2023-05-08 18:52:19 -04:00
provable_ascent	d8bed0ff63	Make UserNote comment default to the empty string. Some checks are pending ci/woodpecker/pr/woodpecker Pipeline is pending Details This make the behavior consistent between when UserNote doesn't exist and when comment is null. The current behavior may return null in APIs, which misleads some clients doing feature detection into thinking the server does not support comments. For example, see https://codeberg.org/husky/husky/issues/92	2023-04-27 05:22:12 +00:00
FloatingGhost	b86b3a9e29	Support public key URIs that incomprehensibly have GET args All checks were successful ci/woodpecker/push/woodpecker Pipeline was successful Details Fixes #528	2023-04-25 13:30:20 +01:00
FloatingGhost	f2b4e7f86b	Merge branch 'develop' of akkoma.dev:AkkomaGang/akkoma into develop Some checks are pending ci/woodpecker/push/woodpecker Pipeline is pending Details	2023-04-14 17:56:56 +01:00
FloatingGhost	522221f7fb	Mix format	2023-04-14 17:56:34 +01:00
Atsuko Karagi	1fa3c0b485	Remove support for outdated Create format	2023-04-14 17:46:22 +01:00
Atsuko Karagi	d2b0d86471	HTTP signatures respect allowlist federation	2023-04-14 17:46:06 +01:00
FloatingGhost	f12d3cce39	ensure only pickable frontends can be returned	2023-04-14 17:42:40 +01:00
floatingghost	8c86a06ed1	Merge pull request 'Remove "default" image description' (#493 ) from ilja/akkoma:remove_default_image_description into develop Some checks are pending ci/woodpecker/push/woodpecker Pipeline is pending Details Reviewed-on: #493	2023-04-14 16:27:41 +00:00
FloatingGhost	4c9c959bb3	Merge branch 'develop' into frontend-switcher-9000	2023-04-14 16:56:10 +01:00
FloatingGhost	9e8e7cc13e	Add note telling people to refresh	2023-04-14 16:55:48 +01:00
FloatingGhost	a079ec3a3c	in dev, allow dev FE	2023-04-14 16:36:40 +01:00
FloatingGhost	1b2c24a19e	fix tests	2023-04-14 15:20:55 +01:00
FloatingGhost	2a8c1f4192	Add extra diagnostic tasks in All checks were successful ci/woodpecker/push/woodpecker Pipeline was successful Details	2023-03-29 14:11:00 +01:00
FloatingGhost	66d162bb9e	Add debug logs to timeline rendering to assist debugging Some checks failed ci/woodpecker/push/woodpecker Pipeline failed Details	2023-03-29 12:01:16 +01:00
FloatingGhost	d85d1e128a	we don't actually need the object on redirect	2023-03-29 11:44:03 +01:00
sadposter	3f340cbc43	Only even attempt to fetch local activities by object_id TODO: PLEASE FOR THE LOVE OF KANATAN CACHE THIS	2023-03-29 03:32:24 +01:00
FloatingGhost	de64c6c54a	add selection UI	2023-03-28 12:44:52 +01:00
floatingghost	281c4636fa	Merge pull request 'Show bubble_timeline in the api if any instances are set in it' (#502 ) from foxing/akkoma:foxing-patch-1 into develop All checks were successful ci/woodpecker/push/woodpecker Pipeline was successful Details Reviewed-on: #502	2023-03-21 10:13:41 +00:00
FloatingGhost	dd44387f1a	Add timeline visibility options	2023-03-17 15:33:28 +00:00
FloatingGhost	fe7045632b	also put publicVisibility in preloaded nodeinfo Some checks failed ci/woodpecker/push/woodpecker Pipeline failed Details	2023-03-15 22:59:58 +00:00
FloatingGhost	9464d50562	Add publicTimelineVisibility to nodeinfo	2023-03-15 22:13:18 +00:00
foxing	bd040fe96a	Merge branch 'develop' into foxing-patch-1	2023-03-13 03:41:15 +00:00
foxing	ba635e97c8	Use enum empty instead Some checks are pending ci/woodpecker/pr/woodpecker Pipeline is pending Details	2023-03-13 03:40:20 +00:00
floatingghost	377d1483b6	Merge pull request 'Apply security patch from pleroma to prevent nested file names being uploaded to the server.' (#507 ) from foxing/akkoma:foxing-patch-2 into develop Some checks are pending ci/woodpecker/push/woodpecker Pipeline is pending Details Reviewed-on: #507	2023-03-13 00:29:51 +00:00
FloatingGhost	643b8c5f15	ensure we send the right files for preferred fe	2023-03-12 23:59:10 +00:00

1 2 3 4 5 ...

9303 commits