2145 commits

Author	SHA1	Message	Date
Crimekillz	0298aa3ee0	Add Achievements Part 1/2, code by syuilo, Syuilotan@yahoo.co.jp ... Signed-off-by: limepotato <limepot@protonmail.ch>	2024-07-06 02:08:03 +02:00
limepotato	c2d625181c	revert ea2d709116 ... revert Add Achievements Part 1/2, code by syuilo, Syuilotan@yahoo.co.jp Signed-off-by: limepotato <limepot@protonmail.ch>	2024-07-05 07:34:02 +02:00
Crimekillz	ea2d709116	Add Achievements Part 1/2, code by syuilo, Syuilotan@yahoo.co.jp ... Signed-off-by: limepotato <limepot@protonmail.ch>	2024-07-01 18:17:37 -06:00
limepotato	8aa97e21d2	oops	2024-07-01 18:04:49 -06:00
limepotato	8e26dd6bc3	withdrawal metrics and obliterate	2024-07-01 17:56:13 -06:00
limepotato	2c98459dc6	Merge branch 'main' of https://iceshrimp.dev/limepotato/jormungandr-bite	2024-07-01 12:15:33 -06:00
limepotato	48606b487a	avatar is now blob is cat comf coffee	2024-07-01 12:15:31 -06:00
limepotato	c8689ca82b	revert 24bd05d090 ... revert temporarily re-enable post imports (not masto) Signed-off-by: limepotato <limepot@protonmail.ch>	2024-07-01 04:49:47 +02:00
limepotato	24bd05d090	temporarily re-enable post imports (not masto) ... Signed-off-by: limepotato <limepot@protonmail.ch>	2024-06-30 15:25:23 -06:00
limepotato	d45477847f	better default avatar	2024-06-29 10:44:23 -06:00
limepotato	fe1bea20df	update images	2024-06-29 10:38:57 -06:00
limepotato	1e9a7096e1	withdrawal traumatize patch	2024-06-17 13:39:53 -06:00
limepotato	1d0ff68688	withdrawal hide-federation patch	2024-06-17 13:38:56 -06:00
limepotato	e93373d72c	withdrawal robots patch	2024-06-17 13:38:18 -06:00
limepotato	98f3f55371	withdrawal replacements patch	2024-06-17 13:02:29 -06:00
limepotato	866a598aad	ouroboros icons	2024-06-17 12:01:26 -06:00
limepotato	17532215ed	menhera images	2024-06-17 10:48:37 -06:00
limepotato	a44a89276d	make pinned post limit configurable	2024-06-17 10:37:56 -06:00
limepotato	4410989fa2	revert ba0e5eec93 ... revert ?	2024-06-17 18:18:03 +02:00
limepotato	ba0e5eec93	?	2024-06-17 10:15:54 -06:00
mia	cc4a0d3e58	apply patches	2024-04-29 07:55:26 -07:00
Laura Hausmann	febb499fcb	[backend] Compact LD-signed activities against well-known context to defend against spoofing attacks	2024-04-29 16:36:58 +02:00
Laura Hausmann	dcfa69ff9d	[backend/masto-client] Fix user profile html cache not updating	2024-04-27 18:48:03 +02:00
Laura Hausmann	6f3818a8bb	[backend/masto-client] Correctly set meId in FTS query helper	2024-04-24 03:02:24 +02:00
mei23	301c754e95	[backend] Add Cache-Control to Bull Dashboard	2024-04-19 17:11:14 +02:00
Ezeani Emmanuel	3fa791d71f	[backend] Improve custom TypeORM logger with configurable logging options ... Co-authored-by: Laura Hausmann <laura@hausmann.dev>	2024-04-11 17:22:45 +02:00
Laura Hausmann	74a3375886	[backend] Add quote_id to mastodon api note responses	2024-04-10 18:21:59 +02:00
Laura Hausmann	5a30581c73	[backend] Fix autofollowedAccount being set to random (possibly non-local) users on update-meta	2024-04-08 20:39:41 +02:00
Laura Hausmann	41cb218aa8	[backend] Set X-Content-Type-Options to nosniff on the drive files endpoint	2024-03-30 13:11:15 +01:00
Laura Hausmann	cf506d3bd9	[backend] Reject anonymous objects in the AP resolver	2024-03-30 13:11:09 +01:00
Laura Hausmann	ac57c58ecf	[backend] Stricter validation of activity identifiers ... This resolves a security issue that was disclosed on 2024-03-24 & patched in coordination with other affected software on 2024-03-30. Huge thanks to Oneric for the detailed security disclosure.	2024-03-30 13:11:03 +01:00
Crimekillz	74df0b3602	Fix bug: Pass reference to Note OBJ when creating notifications for Poll Vote and Poll End so muted threads can be resolved correctly	2024-03-26 16:24:19 +01:00
Laura Hausmann	01fbd1a5c7	[backend] Fix video playback for files hosted from different origins	2024-03-18 15:34:14 +01:00
CookiLover311	ccec3e7e63	[mastodon-client] Add default reaction to /v1/instance	2024-03-01 14:25:41 +01:00
老周部落	3824767cc9	[backend] Fix resolver cannot parse some follows and notes request	2024-02-26 08:49:45 +01:00
naskya	e9ef70e272	fix (backend): check url properly ... Co-authored-by: syuilo <Syuilotan@yahoo.co.jp>	2024-02-26 00:11:21 +01:00
Laura Hausmann	e2cff0340f	[backend] When fetching activities, specify the acceptable JSON-LD profile explicitly	2024-02-17 16:11:23 +01:00
Laura Hausmann	099ba9ce65	[backend] Enforce JSON-LD profile when fetching activities	2024-02-17 15:59:24 +01:00
Laura Hausmann	31122636d3	[backend] Fix federation for incoming note edits with an attachment that has no alt text	2024-02-17 04:04:25 +01:00
Laura Hausmann	5f6096c1b7	[backend] Verify object id host matches final URL when fetching remote activities	2024-02-16 18:42:23 +01:00
Laura Hausmann	9fc45f166c	[backend] Verify response content type when fetching remote activities	2024-02-16 18:42:22 +01:00
Laura Hausmann	129cc4408a	[mastodon-client] Register full OAuth scopes as well	2024-02-14 23:56:11 +01:00
Laura Hausmann	3399187302	[mastodon-client] Fix /v2/suggestions endpoint (undocumented API behavior strikes again)	2024-02-14 23:55:50 +01:00
Laura Hausmann	e49d168ecd	[mastodon-client] Add support for quote_id parameter when creating posts (#515)	2024-02-13 16:51:08 +01:00
Laura Hausmann	4b20ab6ad4	[backend] Fix typo in audience.ts isPublic check	2024-02-07 19:56:02 +01:00
Laura Hausmann	1378037384	[backend] Only allow author to see hidden posts	2024-02-04 20:23:42 +01:00
Laura Hausmann	f14c5ed4ef	[backend/frontend] Disable post imports for security reasons	2024-02-04 20:12:51 +01:00
Laura Hausmann	a1460503cf	Make sure unresponsive split domain instances that come back to life don't get stuck isNotResponding	2024-01-30 18:27:06 +01:00
Laura Hausmann	7ed43b76b5	Improve dead instances pruning ... This fixes a couple edge cases in which inactive but working instances could be caught by the dead instances filter	2024-01-30 18:00:54 +01:00
Laura Hausmann	0d28b07203	Don't send activities to dead instances ... Co-authored-by: Johann150 <johann.galle@protonmail.com>	2024-01-29 21:50:05 +01:00