Age | Commit message (Collapse) | Author |
|
* Fix #3910 - Require OTP authentication to disable 2FA. Also, remove ability
to generate new OTP backup codes *after* initial backup codes were handed
out during activation
* Restore recovery code re-generation
* Improve display of some 2FA elements
|
|
* Add overview of active sessions
* Better display of browser/platform name
* Improve how browser information is stored and displayed for sessions overview
* Fix test
* Fix #2347 - Bind web UI access token to session
When you logout, session also destroys the access token, so it's no longer
valid. If access token is destroyed some other way, the session is also
destroyed, requiring a re-login.
Fix #1681 - Add scheduler to remove revoked access tokens and grants
* Fix test
|
|
|
|
* Add overview of active sessions
* Better display of browser/platform name
* Improve how browser information is stored and displayed for sessions overview
* Fix test
|
|
|
|
|
|
* Remove unused column_collapsable.js
* Remove old styles
* Extract `> div` style to independent class
|
|
|
|
|
|
|
|
|
|
ref https://tc39.github.io/proposal-decorators/
|
|
* feat: Revocable sessions
* fix: Tests using sign_in
* feat: Configuration entry for the maximum number of session activations
|
|
into sorin-davidoi-swipe-gestures
|
|
|
|
|
|
|
|
|
|
|
|
* Introduce domains method to Account relation
Account had followers_domains method, which was excessively specific.
Let relation of Account have domains method instead.
* Move follow_mapping in Account to AccountInteractions
* Introduce shared examples for AccountAvatar inclusion
* Cover Account more
|
|
* Fix regression from #3842
Simplify the query by omitting all direct statuses. Private statuses
are allowed because they are from accounts we are following (so
by definition)
Resolves #3887 (alternative)
* Adjust test
|
|
(This patch has been merged as bugfix and reverted, but still valuable as
improvement)
Previously, we've attached IntersectionObserver twice for boosted statuses:
wrapper Status and wrapped Status. but wrapped Status don't need to manage
intersection and visibility by itself, because it's a part of wrapper Status.
|
|
|
|
* Revert "Bump version to 1.4.4"
This reverts commit 1585b0c6cce6cebda3fdc8ba944aa2247e76d1be.
* Revert "Fix conversations (fixes #3869) (#3870)"
This reverts commit 15b43f555dcb06742c677d84c25d05774ef1bde2.
* Revert "Fix streaming server. Redis connection subscribe for each channel. (#3828)"
This reverts commit d8ec83280637e53ded67d4938a198cbeb9e8db05.
* Revert "Filter direct statuses in Status.as_home_timeline (#3842)"
This reverts commit bab5a18232a163b0c3c6a245f7f95d50d7022b36.
* Revert "Fix RemoteFollow behavior (#3868)"
This reverts commit a20cf3b64e93d764f1dfe88ecdb39f3fd4eefe03.
* Revert "Update fabricator for MediaAttachment to attach a file according to type (#3862)"
This reverts commit 356df7ae6b6edfc600fbc532f32fbc46314e00a0.
* Revert "Upgrade React Router (#3677)"
This reverts commit 8f03fdce7fa16fcaa829a40f395cefc85eb957d5.
* Revert "Do not call setState from unmounted component (#3853)"
This reverts commit 1fc6cb499742c1a872ad717a689c58a80aeb714d.
* Revert "Replace TextIconButton for SensitiveButton to IconButton (#3759)"
This reverts commit eb832e88f44d661a504a091defc051e052eb1252.
* Revert "Fix RTL detection on Ruby side (#3867)"
This reverts commit b16b69350eb4ded2e1011931433b51dac5e34b53.
* Revert "i18n: Fixed typo in Polish translation (#3864)"
This reverts commit da6fa029f66d50f38f2b6c85687994793f7766aa.
* Revert "Don't attach IntersectionObserver for wrapped statuses (#3863)"
This reverts commit 94ad0706f514e25c58c0a8f3201f96c1d1ccbbd8.
|
|
* Actually create conversations given explicit URIs
* Try to get the parent toot in before validation, to avoid creating a new conversation
|
|
The classes using Status.as_home_timeline, namely Feed and
PrecomputeFeedService are expected to filter direct statuses as
FanOutWriteService does, but their filtering were incomplete or missing.
This commit solves the problem by filtering direct statuses in
as_home_timeline as the other similar methods such as as_public_timeline
does.
|
|
* Invalid acct is an error. not "2 errors".
* Empty input should be different error from invalid acct
|
|
* chore(yarn): Remove react-router
* chore(yarn): Remove react-router-scroll
* chore(yarn): Remove history
* chore(yarn): Add react-router-dom
* chore: Remove usages of react-router-scroll
* refactor: Upgrade to react-router-web
* refactor: Use fork of react-router-scroll
This reverts commit 2ddea9a6c8d39fc64b7d0b587f3fbda7a45a7fa2.
* fix: Issues mentions in the PR feedback
|
|
Stop an executing task if the component already unmounted.
|
|
* Replace TextIconButton for SensitiveButton to IconButton
* line-height
|
|
This fixes below bugs:
* pipe characters being counted as RTL character
* only first word being checked
|
|
This fixes a bug that sometimes boosted statuses being hidden on scrolling.
Previously, we've attached IntersectionObserver twice for boosted statuses:
wrapper Status and wrapped Status. This will call intersection handler twice,
so this may results race condition...probably.
|
|
|
|
|
|
|
|
There was no link for visitors to follow to see the about page.
|
|
* Bring Toot button in line with counter
Both should use stringz I guess
* Use grapheme_length for character count
|
|
|
|
|
|
Rename Activitypub to ActivityPub
|
|
* Debounce autosuggestions
* Remove duplicate import
|
|
|
|
|
|
* Whitelist allowed classes for federated statuses
Allowed classes are currently:
- Any microformats class (h/p/u/dt/e-*)
- the classes mention, hashtag, ellipses and invisible.
this last one is somewhat suspect, but Mastodon currently uses it to render hidden link text.
resolved #3790
* Fix code style
|
|
|
|
|
|
FetchRemoteAccountService (#3642)
|
|
ancestors/descendants even if the viewer is anonymous (#3752)
|
|
|
|
mergeDeep also merges columns, but it should be replaced simply.
So in the new function, first apply mergeDeep except columns, and set default columns if columns unset.
|