Laura Hausmann
5a30581c73
[backend] Fix autofollowedAccount being set to random (possibly non-local) users on update-meta
2024-04-08 20:39:41 +02:00
Laura Hausmann
41cb218aa8
[backend] Set X-Content-Type-Options to nosniff on the drive files endpoint
2024-03-30 13:11:15 +01:00
Laura Hausmann
cf506d3bd9
[backend] Reject anonymous objects in the AP resolver
2024-03-30 13:11:09 +01:00
Laura Hausmann
ac57c58ecf
[backend] Stricter validation of activity identifiers
...
This resolves a security issue that was disclosed on 2024-03-24 & patched in coordination with other affected software on 2024-03-30.
Huge thanks to Oneric for the detailed security disclosure.
2024-03-30 13:11:03 +01:00
Crimekillz
74df0b3602
Fix bug: Pass reference to Note OBJ when creating notifications for Poll Vote and Poll End so muted threads can be resolved correctly
2024-03-26 16:24:19 +01:00
Lilian
e099582809
[frontend] Align welcome screen reactions to the right
...
Thanks Yonei!
2024-03-22 22:20:17 +01:00
Laura Hausmann
01fbd1a5c7
[backend] Fix video playback for files hosted from different origins
2024-03-18 15:34:14 +01:00
CookiLover311
ccec3e7e63
[mastodon-client] Add default reaction to /v1/instance
2024-03-01 14:25:41 +01:00
老周部落
3824767cc9
[backend] Fix resolver cannot parse some follows and notes request
2024-02-26 08:49:45 +01:00
naskya
e9ef70e272
fix (backend): check url properly
...
Co-authored-by: syuilo <Syuilotan@yahoo.co.jp>
2024-02-26 00:11:21 +01:00
Laura Hausmann
e2cff0340f
[backend] When fetching activities, specify the acceptable JSON-LD profile explicitly
2024-02-17 16:11:23 +01:00
Laura Hausmann
099ba9ce65
[backend] Enforce JSON-LD profile when fetching activities
2024-02-17 15:59:24 +01:00
Laura Hausmann
31122636d3
[backend] Fix federation for incoming note edits with an attachment that has no alt text
2024-02-17 04:04:25 +01:00
Laura Hausmann
5f6096c1b7
[backend] Verify object id host matches final URL when fetching remote activities
2024-02-16 18:42:23 +01:00
Laura Hausmann
9fc45f166c
[backend] Verify response content type when fetching remote activities
2024-02-16 18:42:22 +01:00
Laura Hausmann
129cc4408a
[mastodon-client] Register full OAuth scopes as well
2024-02-14 23:56:11 +01:00
Laura Hausmann
3399187302
[mastodon-client] Fix /v2/suggestions endpoint (undocumented API behavior strikes again)
2024-02-14 23:55:50 +01:00
Laura Hausmann
e49d168ecd
[mastodon-client] Add support for quote_id parameter when creating posts ( #515 )
2024-02-13 16:51:08 +01:00
Laura Hausmann
63fa244ea8
[client] Fix migration page when migrating from/to the same account twice, resolves #514
2024-02-10 15:52:48 +01:00
Laura Hausmann
4b20ab6ad4
[backend] Fix typo in audience.ts isPublic check
2024-02-07 19:56:02 +01:00
Laura Hausmann
1378037384
[backend] Only allow author to see hidden posts
2024-02-04 20:23:42 +01:00
Laura Hausmann
f14c5ed4ef
[backend/frontend] Disable post imports for security reasons
2024-02-04 20:12:51 +01:00
Laura Hausmann
a1460503cf
Make sure unresponsive split domain instances that come back to life don't get stuck isNotResponding
2024-01-30 18:27:06 +01:00
Laura Hausmann
7ed43b76b5
Improve dead instances pruning
...
This fixes a couple edge cases in which inactive but working instances could be caught by the dead instances filter
2024-01-30 18:00:54 +01:00
Laura Hausmann
0d28b07203
Don't send activities to dead instances
...
Co-authored-by: Johann150 <johann.galle@protonmail.com>
2024-01-29 21:50:05 +01:00
Laura Hausmann
197002df8a
[backend] Fix emojis with special characters
...
This is an adaptation of 3968a6ca07
and ada577bde6
Co-authored-by: Johann150 <johann.galle@protonmail.com>
2024-01-04 23:55:00 +01:00
mia
87360eab9c
prevent extra colon from showing up
2023-12-21 08:40:45 -08:00
Laura Hausmann
52b0c6c8f8
[backend] Add a new index to the user table for faster notifications queries
...
This should drastically improve performance of the i/notification endpoint
2023-12-16 17:43:15 +01:00
Laura Hausmann
384fb76a26
[backend] Add a new index to the note table for faster generation of following query heuristics
2023-12-15 23:56:16 +01:00
Tournesol
7aa33f2497
Allow autocompletion of center and small MFM by adding them to the tag list
2023-12-15 15:01:00 +01:00
Laura Hausmann
0cb6f578ad
[backend] Don't join avatar and banner on i/notifications
...
This was an oversight on the recent database refactor and is no longer required
2023-12-14 20:34:24 +01:00
Laura Hausmann
8a642be6d9
[client] Fix pages and gallery tab navigation
...
This also adds a much nicer "add new gallery post" button to the gallery page
2023-12-08 15:15:34 +01:00
Pyrox
c5e0dce64d
[feat] Upgrade rollup plugins to rollup 4 compatible versions
...
This updates all rollup plugins to their latest version and ensures that there are no more peer dependency version warnings for rollup.
2023-12-08 13:30:03 +01:00
Pyrox
ee23bd56a3
[feat] Upgrade Rollup to version 4
2023-12-08 13:30:03 +01:00
AntoineÐ
3d2cd873b9
#227 fix apps link
2023-12-04 14:18:08 +01:00
Pyrox
60f7e2cf6a
[feat] Remove Twitter Integration
2023-12-04 13:49:36 +01:00
AntoineÐ
042e8c552d
enhanced boot.js style
2023-12-04 13:39:46 +01:00
AntoineÐ
d0e995639b
fix boot.js color with new branding
2023-12-04 13:39:46 +01:00
Laura Hausmann
4a90408386
[backend] Don't proxy relative URLs
...
This fixes the instance icon for the local instance not being rendered correctly. Resolves #426
2023-12-04 13:34:36 +01:00
AntoineÐ
1c06b84011
Enhanced switch A11Y
...
>
>
Co-authored-by: Minybol <aimabol@skiff.com>
2023-12-04 13:17:56 +01:00
Pyrox
70ee2b9258
[iceshrimp-js] Update typescript to 5.1.6
...
This unifies the typescript version used throughout all packages, which removes 2 packages from the yarn cache and also makes things a bit neater.
We should try to bump this for all packages at the same time in the future.
2023-12-04 13:17:36 +01:00
Laura Hausmann
2e8598acb5
[mastodon-client] Fix /v1/accounts/relationships for clients that don't use the id[] parameter
2023-11-30 16:45:00 +01:00
Laura Hausmann
4794702e6f
[client] isUpdateAvailable should not block UI rendering
2023-11-29 21:21:34 +01:00
Laura Hausmann
cd8809e927
[client] Fix update check
2023-11-29 17:59:47 +01:00
Laura Hausmann
aaed62bde1
[mastodon-client] Fix html cache prewarm not including quote uris
2023-11-28 17:52:28 +01:00
Laura Hausmann
58137c9482
[mastodon-client] Preserve state parameter during OAuth
...
This fixes login with clients that require the state parameter to be preserved during /oauth/authorize.
2023-11-27 23:31:07 +01:00
Laura Hausmann
89bc799765
[mastodon-client] Fix login with clients that leave a trailing + in the scope parameter
2023-11-27 23:11:54 +01:00
Laura Hausmann
7c5bc06bb8
[backend] Actually utilize packed user cache in notes.packMany
2023-11-27 22:33:06 +01:00
Laura Hausmann
913f1659b3
[backend] Use correct identifier for filteredNoteCache
2023-11-27 22:22:24 +01:00
Laura Hausmann
436fb826ac
[client] Fix copyToClipboard so it no longer copies things with weird formatting
...
This also switches to a non-deprecated clipboard API
2023-11-27 22:20:14 +01:00