m33/FoundKey
1
0
Fork 0
forked from FoundKeyGang/FoundKey
Code Issues Pull requests Packages Projects Releases Wiki Activity
21639 commits 9 branches 3 tags 115 MiB
Commit graph

788 commits

Author SHA1 Message Date
m33 70539d9d49 patch image from external site to foundkey repos 2022-12-11 20:01:14 +01:00
m33 e3ba614028 patch image from external site to foundkey repos 2022-12-11 19:57:48 +01:00
m33 481223e6fb redirect to akkoma depot ressources 2022-12-11 19:45:26 +01:00
Johann150 768d9bbdfb
refactor: remove default export for perform 2022-12-11 18:23:19 +01:00
Johann150 3ef1a4b0f9
refactor: remove default export for Resolver 2022-12-11 18:23:07 +01:00
Johann150 ae59ce51b0
refactor: remove default export for DbResolver 2022-12-11 18:16:48 +01:00
Johann150 14a9b9bedd
refactor: remove default export for request 2022-12-11 18:16:45 +01:00
Johann150 985a13f47f
refactor: remove default export for DeliverManager 2022-12-11 17:56:25 +01:00
Johann150 507b328fdf
activitypub: also forward resolver to resolveNote 2022-12-10 11:23:10 +01:00
Norm 3cf673960b server: Fix typing for user token 
Also fix a comment in the User model that wrongly states that the token
is null if the user is local, when it's the opposite.
 2022-12-08 23:20:41 -05:00
Norm cbfd866122 server: make fetcher key non-null 2022-12-08 23:19:39 -05:00
Norm b23a8dbaed server: translate comments 2022-12-08 23:18:45 -05:00
Norm 80a73a7510 server: remove unused imports from suspend-user.ts 2022-12-08 23:18:45 -05:00
Norm 3dec9a47f0 server: fix various type errors in services 2022-12-08 23:18:45 -05:00
Norm b8fb7a38cc server: improve Logger typing information and docs 2022-12-08 23:18:45 -05:00
Norm fdc682e810 server: remove sendEmailNotification 
The functions have their bodies completely comented out,
which means they are doing nothing.
 2022-12-08 23:18:45 -05:00
Johann150 fde751df8f
fix: properly supply resolver (2) 2022-12-08 19:06:55 +01:00
Johann150 1faf1035f9
server: handle users getting deleted somewhere else 
I don't know why but several jobs got stuck in my inbox queue because
of errors like 'Could not find any entity of type "User" matching...'.
 2022-12-08 18:12:24 +01:00
Johann150 e2ce599aca
fix: properly supply resolver 2022-12-08 18:12:05 +01:00
Norm 350f21d955
server: fix typing for skippedInstances query 2022-12-07 16:41:34 -05:00
Norm 873e21f090
chore: update eslint 2022-12-07 16:27:53 -05:00
Norm 2afe54c121
eslint: allow backticks to avoid escaping single/double quotes 2022-12-07 16:27:39 -05:00
Norm b66f7550ab
server: auto-fix lints 2022-12-07 13:39:21 -05:00
Johann150 18664dbca3
server: add missing paren 
How did this not break yet?
 2022-12-07 18:29:04 +01:00
Johann150 0f3f42eb39
remove rndstr dependency 
This dependency was unused in the client.

The use of it in the server can be replaced entirely by the
secureRndstr function, with some slight modifications.

That function could probably be refactored a bit more as well.
 2022-12-07 18:08:09 +01:00
Andy d3f1ad9a88 chore: remove unused packages 2022-12-06 23:18:27 +01:00
Andy 1aa3898db5 server: remove unused import 2022-12-06 23:12:45 +01:00
Andy b023741f50 server: remove integrations field from user 2022-12-06 23:00:08 +01:00
Andy 4cc5b734e7 activitypub: remove integration fields from person and nodeinfo 2022-12-06 21:49:19 +01:00
Andy 5d32872999 server: remove integration API routes 2022-12-06 21:48:31 +01:00
Andy b4b1204f77 server: remove integration-related fields from meta 2022-12-06 21:47:59 +01:00
Norm c1a51547a9 BREAKING: server: remove wildcard blocking and instead block subdomains (#269) 
Co-authored-by: Francis Dinh <normandy@biribiri.dev>
Reviewed-on: FoundKeyGang/FoundKey#269
Changelog: Changed
 2022-12-05 17:55:38 +00:00
Chloe Kudryavtsev 4e74d26e45 backend: fix ratelimit typo 
Changelog: Fixed
 2022-12-05 15:49:33 +01:00
Johann150 a421dd401c
activitypub: refactor to always apply recursion limit 
Refactor to remove as many "new Resolver" as possible.
 2022-12-04 21:11:44 +01:00
Johann150 c4211761e6
server: refactor resolveSelf to just return the webfinger href 
Since the href seems to be the only attribute that is used, and I didn't
want to add a full type definition this was the easier option.
 2022-12-04 21:11:43 +01:00
Johann150 03b673165f
server: refactor "authUser" functions into separate file 
They did not really fit into the DbResolver because they may fetch data
from remote instances even though DbResolver is only supposed to access
the database.
 2022-12-04 21:11:35 +01:00
Johann150 de18c8306d
server: fix token-permissions migration 
The table that is affected here was not properly purged of old entries. It only holds
data that is needed while a 3rd party authorization is in progress but not finished.

The code that typeorm generated for this migration is a bit wonky because it should
probably have dropped one column and created another one. But if we clear out all entries
it should work regardless and I'm feeling lazy right now. :P
 2022-12-04 19:05:02 +01:00
Johann150 11e4a8cb9b
remove erroneous space 2022-12-04 15:34:05 +01:00
Johann150 946e862ecd
server: implement OAuth 2.0 Authorization Code grant 
Changelog: Added
Reviewed-on: FoundKeyGang/FoundKey#205
 2022-12-04 14:06:36 +01:00
Johann150 97052b1f61
server: refactor fromHtml attribute handling 
Also try to recognize owncast hashtag links.
 2022-12-04 03:43:22 +01:00
Johann150 cda9197700
server: increase nodeinfo caching 
Changelog: Changed
 2022-12-04 03:26:50 +01:00
Chloe Kudryavtsev 2dde8273e2 implement separate web workers 
Reviewed-on: FoundKeyGang/FoundKey#252
 2022-12-03 13:33:23 +00:00
Johann150 de927e1f30 server: handle invalid URLs in comparison 2022-12-03 10:38:33 +00:00
Johann150 bdcec2b8a7 server: implement OAuth discovery (RFC 8414) 2022-12-03 10:38:33 +00:00
Johann150 5291f29581 implement OAuth PKCE 
This implements Proof Key for Code Exchange a.k.a. RFC 7636.
 2022-12-03 10:38:33 +00:00
Johann150 15b3ab6d13 check redirect URIs 2022-12-03 10:38:33 +00:00
Johann150 79e3c20189 server: allow to grant tokens with more restricted privileges 
This also simplifies API authentication a bit by not having to fetch
the App that is related to a token.

The restriction of 1 token per app is also lifted. This was not a
constraint in the database but it was enforced by the code and
kinda wrong schema the auth_session table had.
 2022-12-03 10:38:32 +00:00
Johann150 2f2e6a58a4 docs: read scope descriptions from locale strings 2022-12-03 10:38:32 +00:00
Johann150 c65fdebe26 server: add missing auth/deny endpoint 
This endpoint is hinted at in the client, but is not actually defined
in the backend. This commit defines it.
 2022-12-03 10:38:32 +00:00
Johann150 418c88bb8f expire AuthSessions after 15 min 2022-12-03 10:38:32 +00:00