about summary refs log tree commit diff
path: root/app/controllers/api_controller.rb
AgeCommit message (Collapse)Author
2017-06-01Spec response for forgery (#3248)Akihiko Odaki (@fn_aki@pawoo.net)
Remove protect_from_forgery in ApiController, which is disabled by the following skip_before_action, as well.
2017-05-15Feature conversations muting (#3017)Eugen Rochko
* Add <ostatus:conversation /> tag to Atom input/output Only uses ref attribute (not href) because href would be the alternate link that's always included also. Creates new conversation for every non-reply status. Carries over conversation for every reply. Keeps remote URIs verbatim, generates local URIs on the fly like the rest of them. * Conversation muting - prevents notifications that reference a conversation (including replies, favourites, reblogs) from being created. API endpoints /api/v1/statuses/:id/mute and /api/v1/statuses/:id/unmute Currently no way to tell when a status/conversation is muted, so the web UI only has a "disable notifications" button, doesn't work as a toggle * Display "Dismiss notifications" on all statuses in notifications column, not just own * Add "muted" as a boolean attribute on statuses JSON For now always false on contained reblogs, since it's only relevant for statuses returned from the notifications endpoint, which are not nested Remove "Disable notifications" from detailed status view, since it's only relevant in the notifications column * Up max class length * Remove pending test for conversation mute * Add tests, clean up * Rename to "mute conversation" and "unmute conversation" * Raise validation error when trying to mute/unmute status without conversation
2017-04-18Avoid dynamic methods due to processing speed (#2080)839
2017-04-18Remove unused methods (#1730)Matt Jankowski
* Remove unused method #set_counters_maps from api controller * Remove unused method #set_account_counters_maps from api controller * Remove unused method Account#followers_domains * Remove unused User.prolific scope * Add mastodon:users:admins task to list all admin emails * Use interpolated query style in Account.triadic_closures * Coverage for Account.triadic_closures
2017-04-09Do not store last visited URL from API controllers (#1330)Eugen
Sign-in redirects you back to last visited URL, but in case of API requests, this sometimes redirected users to an API URL that, of course, greeted them with an {"error":"The access token is invalid"}
2017-03-06Revert earlier fix due to new bug reportsEugen Rochko
2017-03-05Increase max bitrate of converted webms, slightly optimized counter queriesEugen Rochko
(Because postgres can tell that count(*) needs no extra checks, but counting a specific column requires them)
2017-03-04Add digest e-mailsEugen Rochko
2017-02-26Add validation of media attachments, clean up mastodon-own exception classesEugen Rochko
2017-01-24API now respects ?limit param as long as it's within 2x default limitEugen Rochko
2017-01-23Potentially fix notifications issueEugen Rochko
2016-12-22Add "locked" flag to accounts, prevent blocked users from following, ↵Eugen Rochko
force-unfollow blocked users
2016-11-25X-RateLimit-Reset formatted with iso8601Eugen Rochko
2016-11-23Rename "publish" to "toot" in english locale, fix lightbox showing old imageEugen Rochko
before loading new one, cache notifications API, fix missing follow button on public profiles
2016-11-22More query optimizationsEugen Rochko
2016-11-21Better error message in doorkeeper json responseEugen Rochko
2016-11-21Performance improvement for notifications APIEugen Rochko
2016-11-15Fix rubocop issues, introduce usage of frozen literal to improve performanceEugen Rochko
2016-11-09Replace setting custom CORS headers with rack-cors, set it on /oauth/token ↵Eugen Rochko
endpoint
2016-11-09API pagination for all collections using Link headerEugen Rochko
2016-11-08Move timelines API from statuses to its own controller, add a check forEugen Rochko
resources that require a user context vs those that don't (such as public timeline) /api/v1/statuses/public -> /api/v1/timelines/public /api/v1/statuses/home -> /api/v1/timelines/home /api/v1/statuses/mentions -> /api/v1/timelines/mentions /api/v1/statuses/tag/:tag -> /api/v1/timelines/tag/:tag
2016-11-02Make cookies https-only if LOCAL_HTTPS is true, set X-Frame-Options to DENY,Eugen Rochko
add permissive CORS to API controllers
2016-10-22Adding OAuth access scopes, fixing OAuth authorization UI, adding rate limitingEugen Rochko
to the API
2016-10-19Fix #100 - Add "back" button to certain viewsEugen Rochko
Also fix reloading of timelines after merge-type events
2016-10-16Fix #16 - Optimize n+1 queries when checking reblogged/favourited values for ↵Eugen Rochko
status lists in API
2016-10-05Catching more exceptions that slipped through, removing AR logging fromEugen Rochko
production as it's very verbose and not very useful
2016-09-30Meaningful validation errors in API responseEugen Rochko
2016-09-26Replace logo, fix #57 - delete/unreblog/unfavourite API, fix #45 - appEugen Rochko
registration API
2016-09-17Improved error handling for FollowRemoteServiceEugen Rochko
2016-08-26The frontend will now be an OAuth app, auto-authorized. The frontend will ↵Eugen Rochko
use an access token for API requests Adding better errors for the API controllers, posting a simple status works from the frontend now
2016-08-17Upgrade to Rails 5.0.0.1Eugen Rochko
2016-03-20Writing out more tests, fixed some bugsEugen Rochko
2016-03-11Improving feed queries, switching API to doorkeeper authenticationEugen Rochko
2016-03-07Adding doorkeeper, adding a REST APIEugen Rochko
POST /api/statuses Params: status (text contents), in_reply_to_id (optional) GET /api/statuses/:id POST /api/statuses/:id/reblog GET /api/accounts/:id GET /api/accounts/:id/following GET /api/accounts/:id/followers POST /api/accounts/:id/follow POST /api/accounts/:id/unfollow POST /api/follows Params: uri (e.g. user@domain) OAuth authentication is currently disabled, but the API can be used with HTTP Auth.
2016-03-05Fixing some bugs, adding pending test examplesEugen Rochko