mastodon - Plural Café fork of Mastodon/Glitch Social

Age	Commit message (Collapse)	Author
2022-11-16	Add 'private' to Cache-Control, match Rails expectations (#20608)	Daniel Axtens
	Several controlers set quite intricate Cache-Control headers in order to hopefully not be cached by any intermediate proxies or local caches. Unfortunately, these headers are processed by ActionDispatch::HTTP::Cache in a way that squashes and discards any values set alongside no-store other than private: https://github.com/rails/rails/blob/8015c2c2cf5c8718449677570f372ceb01318a32/actionpack/lib/action_dispatch/http/cache.rb#L207-L209 We want to preserve no-store on these responses, but we might as well remove parts that are going to be dropped anyway. As many of the endpoints in these controllers are private to a particular user, we should also add "private", which will be preserved alongside no-store.
2020-09-11	Refactor settings controllers (#14767)	Eugen Rochko
	- Disallow suspended accounts from revoking sessions and apps - Allow suspended accounts to access exports
2019-12-30	Fix settings pages being cacheable by the browser (#12714)	Eugen Rochko
	Fix #12255
2018-12-12	Create Settings::BaseController (#9507)	ysksn
	Define `Settings::BaseController#set_body_classes` so that sub classes inherit `Settings::BaseController` don't need to define `#set_body_classes` agein.