FoundKey/packages/backend
Johann150 624157f03e
server: forbid activitypub requests on unexpected routes
ActivityPub requests on routes which do not support activitypub
are now replying with HTTP status code 406 "Not Acceptable".

ActivityPub clients are required by the W3C TR to set the `Accept`
header. If this accept header is detected on an unexpected route,
the whole request will be aborted with the status code above.

This is an additional measure for clients who might not be aware of
having to check the content-type header of the reply.

Ref: https://github.com/w3c/activitypub/issues/432
Changelog: Security
2024-03-26 21:05:13 +01:00
..
.vscode Update settings.json 2022-04-15 21:33:00 +09:00
assets client: display move notification 2023-03-23 21:10:17 +01:00
migration fixup! remove unused hashtag chart 2024-03-17 17:21:02 +01:00
src server: forbid activitypub requests on unexpected routes 2024-03-26 21:05:13 +01:00
test transform tests from ts to js 2023-06-01 23:21:03 +02:00
.eslintignore migrate to Yarn 3.2.3 2022-08-26 15:24:29 -04:00
.eslintrc.cjs enhance typeorm-prefer-count lint rule 2023-01-03 02:41:53 +01:00
.mocharc.json transform tests from ts to js 2023-06-01 23:21:03 +02:00
jsconfig.json use eslint 2021-11-12 10:35:41 +09:00
ormconfig.js refactor: migrate to typeorm 3.0 (#8443) 2022-03-26 15:34:00 +09:00
package.json format package.json, update lockfile 2024-03-17 17:31:36 +01:00
tsconfig.json BREAKING: Remove support for Node 16.x and upgrade to TypeScript 4.9 2022-11-25 02:07:21 -05:00
watch.mjs implement dev command 2021-11-19 14:48:59 +09:00