about summary refs log tree commit diff
path: root/spec/controllers/settings/two_factor_authentication
diff options
context:
space:
mode:
authorClaire <claire.github-309c@sitedethib.com>2022-05-26 15:50:33 +0200
committerGitHub <noreply@github.com>2022-05-26 15:50:33 +0200
commit440eb71310e41d668f00980b73358edd5f8df043 (patch)
tree0d076aab6822a25742649da282a3212f51f45f86 /spec/controllers/settings/two_factor_authentication
parent86f4dba47ef26aa8690354948c49009c3fd49960 (diff)
Change unapproved and unconfirmed account to not be accessible in the REST API (#17530)
* Change unapproved and unconfirmed account to not be accessible in the REST API

* Change Account#searchable? to reject unconfirmed and unapproved users

* Disable search for unapproved and unconfirmed users in Account.search_for

* Disable search for unapproved and unconfirmed users in Account.advanced_search_for

* Remove unconfirmed and unapproved accounts from Account.searchable scope

* Prevent mentions to unapproved/unconfirmed accounts

* Fix some old tests for Account.advanced_search_for

* Add some Account.advanced_search_for tests for existing behaviors

* Add some tests for Account.search_for

* Add Account.advanced_search_for tests unconfirmed and unapproved accounts

* Add Account.searchable tests

* Fix Account.without_unapproved scope potentially messing with previously-applied scopes

* Allow lookup of unconfirmed/unapproved accounts through /api/v1/accounts/lookup

This is so that the API can still be used to check whether an username is free
to use.
Diffstat (limited to 'spec/controllers/settings/two_factor_authentication')
0 files changed, 0 insertions, 0 deletions