40627a94d4
Add config for media subdomain for Caddy
...
A recent group of vulnerabilities have been found in Pleroma (and
inherited by Akkoma) that involve media files either uploaded by local
users or proxied from remote instances (if media proxy is enabled).
It is recommended that media files are served on a separate subdomain
in order to mitigate this class of vulnerabilities.
Based on https://meta.akkoma.dev/t/another-vector-for-the-injection-vulnerability-found/483/2
2023-05-29 14:04:00 -04:00
fb8081e1a3
Merge pull request 'Stop exposing if a user blocks you over the API.' ( #553 ) from XxXCertifiedForkliftDriverXxX/akkoma:feature/hide-blocked_by into develop
...
Reviewed-on: AkkomaGang/akkoma#553
2023-05-28 22:02:33 +00:00
XxXCertifiedForkliftDriverXxX
1b560d547a
Stop exposing if a user blocks you over the API.
2023-05-28 23:42:27 +02:00
39b3d92cd8
Bump version
2023-05-26 20:46:38 +01:00
Haelwenn (lanodan) Monnier
70b0f93865
Apply oembed patch
2023-05-26 20:45:57 +01:00
a388d2503e
revert uploaded-media
2023-05-26 12:06:41 +01:00
7fb9960ccd
Add CSP to mediaproxy links
2023-05-26 11:46:18 +01:00
9d83a1e23f
Add csp
2023-05-26 11:41:22 +01:00
82ca7a6470
bump version
2023-05-23 14:10:01 +01:00
9e9cf58fdf
or not
2023-05-23 13:54:22 +01:00
2fc26609f6
ensure we depend on poison
2023-05-23 13:53:54 +01:00
8c208f751d
Fix filtering out incorrect addresses
2023-05-23 13:46:25 +01:00
037f881187
Fix create processing in direct message disabled
2023-05-23 13:16:20 +01:00
ab34680554
switch to using an enum system for DM acceptance
2023-05-23 10:29:08 +01:00
d310f99d6a
Add MRFs for direct message manipulation
2023-05-22 23:53:44 +01:00
4e969758e5
Merge pull request 'fix remote interaction form style' ( #542 ) from denys/akkoma:style-remote-interaction into develop
...
Reviewed-on: AkkomaGang/akkoma#542
2023-05-22 21:35:51 +00:00
f72d773cc3
Merge pull request 'Make UserNote comment default to the empty string.' ( #530 ) from provable_ascent/akkoma:provable_ascent-patch-1 into develop
...
Reviewed-on: AkkomaGang/akkoma#530
2023-05-22 21:33:01 +00:00
3437e11cf7
Merge pull request 'Return empty string in the event of no detected language' ( #535 ) from midnight/akkoma:fix-libretranslate into develop
...
Reviewed-on: AkkomaGang/akkoma#535
2023-05-22 21:30:51 +00:00
6225f24f5f
Merge pull request 'Clean up bookmarks after prune_objects' ( #544 ) from ilja/akkoma:clean_up_bookmarks_after_prune_objects into develop
...
Reviewed-on: AkkomaGang/akkoma#544
2023-05-22 21:28:48 +00:00
ilja
f49e9e6d4c
Clean up bookmarks after prune_objects
...
When doing prune_objects, it's possible that bookmarked objects are deleted.
This gave problems when fetching the bookmark TL.
Here we clean up the bookmarks during pruning in the case were it's possible that bookmarked objects are deleted.
2023-05-21 13:02:28 +02:00
ilja
c7fb78cc32
Move deadline and old_insert_date to setup
...
Several tests for prune_objetcs need a date older than the deadline for pruning, so I moved that to the setup
2023-05-21 12:01:54 +02:00
ddf4d8026d
fix remote interaction form style
2023-05-18 22:53:40 +03:00
3fef9d1b67
Merge branch 'develop' into provable_ascent-patch-1
2023-05-12 02:19:13 +00:00
9c4203632d
Add user_note_test.exs.
2023-05-12 02:18:24 +00:00
f1e66b39c7
Return empty string in the event of no detected language
2023-05-08 18:52:19 -04:00
145c73076d
Update dependencies
2023-05-08 16:29:25 +01:00
d8bed0ff63
Make UserNote comment default to the empty string.
...
This make the behavior consistent between when UserNote doesn't exist and when comment is null.
The current behavior may return null in APIs, which misleads some clients doing feature detection into thinking the server does not support comments.
For example, see https://codeberg.org/husky/husky/issues/92
2023-04-27 05:22:12 +00:00
b86b3a9e29
Support public key URIs that incomprehensibly have GET args
...
Fixes #528
2023-04-25 13:30:20 +01:00
d6bed599c8
correct version bump
2023-04-14 18:09:59 +01:00
963d29ad8c
2023.04 Release
2023-04-14 18:00:59 +01:00
f2b4e7f86b
Merge branch 'develop' of akkoma.dev:AkkomaGang/akkoma into develop
2023-04-14 17:56:56 +01:00
522221f7fb
Mix format
2023-04-14 17:56:34 +01:00
Atsuko Karagi
1fa3c0b485
Remove support for outdated Create format
2023-04-14 17:46:22 +01:00
Atsuko Karagi
d2b0d86471
HTTP signatures respect allowlist federation
2023-04-14 17:46:06 +01:00
f12d3cce39
ensure only pickable frontends can be returned
2023-04-14 17:42:40 +01:00
8c86a06ed1
Merge pull request 'Remove "default" image description' ( #493 ) from ilja/akkoma:remove_default_image_description into develop
...
Reviewed-on: AkkomaGang/akkoma#493
2023-04-14 16:27:41 +00:00
ba59fdcd54
add changelog entry
2023-04-14 16:56:51 +01:00
4c9c959bb3
Merge branch 'develop' into frontend-switcher-9000
2023-04-14 16:56:10 +01:00
9e8e7cc13e
Add note telling people to refresh
2023-04-14 16:55:48 +01:00
a079ec3a3c
in dev, allow dev FE
2023-04-14 16:36:40 +01:00
1b2c24a19e
fix tests
2023-04-14 15:20:55 +01:00
62e22eeff2
Merge pull request 'Update elixir versions' ( #512 ) from norm/akkoma:update-elixir-versions into develop
...
Reviewed-on: AkkomaGang/akkoma#512
2023-04-11 09:28:01 +00:00
ca1accc1cf
Merge pull request 'Add YunoHost to installation guides' ( #518 ) from ilja/akkoma:docs_ynh_installation into develop
...
Reviewed-on: AkkomaGang/akkoma#518
2023-04-11 09:26:38 +00:00
ilja
d8d9edee98
Add YunoHost to installation guides
2023-04-03 11:22:53 +02:00
2a8c1f4192
Add extra diagnostic tasks in
2023-03-29 14:11:00 +01:00
66d162bb9e
Add debug logs to timeline rendering to assist debugging
2023-03-29 12:01:16 +01:00
d85d1e128a
we don't actually need the object on redirect
2023-03-29 11:44:03 +01:00
ef8f13a158
Merge pull request 'I LOVE OBJECTS!!' ( #517 ) from wowee into develop
...
Reviewed-on: AkkomaGang/akkoma#517
2023-03-29 02:33:51 +00:00
sadposter
0151ca1d52
Revert "Remove indexer plugin"
...
This reverts commit 1d94f2a424
.
2023-03-29 03:32:30 +01:00
sadposter
3f340cbc43
Only even attempt to fetch local activities by object_id
...
TODO: PLEASE FOR THE LOVE OF KANATAN CACHE THIS
2023-03-29 03:32:24 +01:00