| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2020-02-27 | port tootsuite#11623 to monsterfork: Add soft delete for statuses for ↵ | Eugen Rochko | |
| instant deletes through API * Add soft delete for statuses to allow them to appear instant * Allow reporting soft-deleted statuses and show them in the admin UI * Change index for getting an account's statuses | |||
| 2020-02-27 | **MAJOR**: port tootsuite#13161 to monsterfork: Fix leak of arbitrary ↵ | Eugen Rochko | |
| statuses through unfavourite action in REST API | |||
| 2020-02-21 | make peers api take graylist mode into consideration | multiple creatures | |
| 2020-02-21 | port tootsuite#12748 to monsterfork: Fix base64-encoded file uploads not ↵ | Eugen Rochko | |
| being possible Fix #3804, Fix #5776 | |||
| 2020-02-21 | port tootsuite#11638 to monsterfork: Fix remote and staff-removed statuses ↵ | Eugen Rochko | |
| leaving media behind for a day The reason for unattaching media instead of removing it is to support delete & redraft functionality, but remote or staff-removed statuses will never be redrafted, so the media should be deleted immediately | |||
| 2020-02-21 | port tootsuite#11292 to monsterfork: Add whitelist mode | Eugen Rochko | |
| 2020-02-21 | port tootsuite#11375: Change unconfirmed user login behaviour | Eugen Rochko | |
| Allow access to account settings, 2FA, authorized applications, and account deletions to unconfirmed and pending users, as well as users who had their accounts disabled. Suspended users cannot update their e-mail or password or delete their account. Display account status on account settings page, for example, when an account is frozen, limited, unconfirmed or pending review. After sign up, login users straight away and show a simple page that tells them the status of their account with links to account settings and logout, to reduce onboarding friction and allow users to correct wrongly typed e-mail addresses. Move the final sign-up step of SSO integrations to be the same as above to reduce code duplication. | |||
| 2020-02-21 | port tootsuite#11702 to monsterfork: Fix uncaught parameter missing ↵ | Eugen Rochko | |
| exceptions and missing error templates | |||
| 2020-02-20 | Fix ActivityPub and REST API queries setting cookies and preventing caching ↵ | ThibG | |
| (#11539) Regression from #8657 | |||
| 2020-02-20 | Fix `GET /api/v1/instance` REST APIs being unavailable in secure mode (#12089) | Eugen Rochko | |
| 2020-02-20 | Fix proofs API being inaccessible in secure mode (#12495) | Eugen Rochko | |
| 2020-02-20 | Fix generic HTTP 500 error on duplicate records (#12563) | Eugen Rochko | |
| Fix #12551 Fix #12547 | |||
| 2020-02-20 | port tootsuite#12716 to monsterfork: Fix error when fetching ↵ | Eugen Rochko | |
| followers/following from REST API when user has network hidden Fix #12510 | |||
| 2020-02-20 | port tootsuite/#13042 to monsterfork: Fix malformed HTML causing uncaught error | Eugen Rochko | |
| Fix OEmbed preview API leaking existence of private statuses (see #12930) | |||
| 2020-02-20 | port tootsuite/#12930 to monsterfork: Fix OEmbed leaking information about ↵ | Eugen Rochko | |
| existence of non-public statuses | |||
| 2020-02-13 | check user's sensitive card filter setting in the status controller | multiple creatures | |
| 2020-01-20 | Original upstream merge | ThibG | |
| 2020-01-17 | Fix typo | Holly "Frinkeldoodle" Lotor | |
| 2020-01-17 | Port render_with_cache, CacheConcern from upstream | Holly "Frinkeldoodle" Lotor | |
| 2020-01-15 | port commit `7e2bff995` from upstream to fix broken attachment downloading | multiple creatures | |
| 2020-01-15 | port instances controller from upstream | multiple creatures | |
| 2020-01-13 | add new privacy option to auto-defederate after a given timespan + add ↵ | multiple creatures | |
| options to defederate and/or delete past posts + add `defed_in`/`parent:defed_in`/`thread:defed_in` bangtags + ui indicator for posts marked for auto-defederation | |||
| 2020-01-12 | allow sharekeys to be used with the api status controller | multiple creatures | |
| 2020-01-11 | move `monsterpit_api` helper to the application controller | multiple creatures | |
| 2020-01-11 | use basic monsterfork api for anonymous clients | multiple creatures | |
| 2020-01-11 | normalize app name when comparing against monsterfork api env vars | multiple creatures | |
| 2020-01-11 | pass monsterfork api exposure setting to all serializers + add ↵ | multiple creatures | |
| `MONSTERFORK_API_FORCE_*` env vars to set api compatability modes for clients/apps | |||
| 2020-01-10 | add custom filter master toggle, add media gallery mode, & fix various ↵ | multiple creatures | |
| filter logic + caching bugs | |||
| 2020-01-10 | add ability to toggle individual filters without deleting them | multiple creatures | |
| 2019-12-21 | add virtual scopes for `#``self.boosts` (your boosts) & ↵ | multiple creatures | |
| `#``self.home.boosts` (boosts on your home timeline) | |||
| 2019-12-21 | add option to set mutes that apply only to timelines | multiple creatures | |
| 2019-12-19 | rework hide boosts / show only packmates options to work with timeline streaming | multiple creatures | |
| 2019-12-19 | add preference options to a: hide boosts globally, & b: show only packmates ↵ | multiple creatures | |
| across all timelines - works in all client apps | |||
| 2019-12-17 | remove unused `preload_media` | multiple creatures | |
| 2019-12-05 | use `update` to change `curated` flags | multiple creatures | |
| 2019-11-19 | Fix poll API not requiring authentication on non-public polls (#10960) | Eugen Rochko | |
| * Fix poll API not requiring authentication on non-public polls That API does not reveal the content of the status, i.e. the question itself, nor who the author is, nor which status it belongs to, but it does reveal the poll options and how many answers they got Fix #10959 * Add test | |||
| 2019-11-19 | Fix web push notifications for polls (#10864) | ThibG | |
| Fixes #10861 | |||
| 2019-11-19 | Add `account_id` param to `GET /api/v1/notifications` (#10796) | Paul Woolcock | |
| * Add `from_account` to notifications API this adds the ability to filter notifications by the account they originated from * passing a non-existent user should cause none to be returned * Fix codeclimate warnings * fix more codeclimate warnings * make requested changes: * use account id instead of user@domain * name the param `account_id` instead of `from_account` * Don't use `return` in a lambda | |||
| 2019-11-18 | Remove unused and incompatable filter settings. These will be re-added in ↵ | multiple creatures | |
| time as they're rewritten to use database-level filtering. | |||
| 2019-11-18 | Remove `FilterHelper` include from timeline APIs. | multiple creatures | |
| 2019-11-17 | Do away with the kludgy solution of applying users' filters from API ↵ | multiple creatures | |
| controllers; we will do this in the `Status` model instead, and at the database level. | |||
| 2019-10-27 | make data miners' lives harder by also requiring authentication on account ↵ | multiple creatures | |
| api endpoints | |||
| 2019-10-14 | exclude suspended (sub)domains from peers list | multiple creatures | |
| 2019-10-14 | add `/api/v1/werewolf` endpoint | multiple creatures | |
| 2019-10-09 | custom filters can now also match posts with missing media descriptions | multiple creatures | |
| 2019-10-09 | custom filters can now match media descriptions | multiple creatures | |
| 2019-10-05 | apply custom filters to world and tag timelines the slow way until the ↵ | multiple creatures | |
| custom filter system gets changed | |||
| 2019-09-24 | work around vanilladon apps breaking when a custom filter uses monsterfork ↵ | multiple creatures | |
| cw extensions - supporting clients can explicitly ask for those by setting `?all=1` | |||
| 2019-09-17 | don't pre-cache media in tag bookmarks (we don't need to do this anymore) | multiple creatures | |
| 2019-09-16 | stop pre-caching tag timeline media | multiple creatures | |
 |
index : mastodon | |
| Plural Café fork of Mastodon/Glitch Social |
| about summary refs log tree commit diff |