about summary refs log tree commit diff
path: root/config
AgeCommit message (Collapse)Author
2020-02-21Fix ActiveRecord::Migration.check_pending! failing because of duplicate ↵Thibaut Girka
migrations
2020-02-21port tootsuite#12748 to monsterfork: Fix base64-encoded file uploads not ↵Eugen Rochko
being possible Fix #3804, Fix #5776
2020-02-21port tootsuite#12568 to monsterfork: Add `tootctl media remove-orphans`Eugen Rochko
2020-02-21port tootsuite#12303 to monsterfork: Fix broken admin audit log in whitelist ↵ThibG
mode
2020-02-21port tootsuite#11963 to monsterfork: Fix relays UI being available in ↵Eugen Rochko
whitelist/secure mode Fix relays UI referencing relay that is not functional
2020-02-21(lazily) port tootsuite#11298 to monsterfork: Add public blocks to /about/blocksThibG
* Add automatic blocklist display in /about/blocks Inspired by https://github.com/Gargron/mastodon.social-misc * Add admin option to set who can see instance blocks * Normalize locales files * Rename “Sandbox” to “Silence” for consistency * Disable /about/blocks when in whitelist mode * Optionally display rationale for domain blocks * Only display domain blocks that have user-facing limitations, and order them * Redesign table of blocked domains to better handle long domain names and rationales * Change domain blocks ordering now that rationales aren't displayed right away * Only show explanation for block severities actually in use * Reword instance block explanations and add disclaimer for public fetch mode
2020-02-21port tootsuite#11292 to monsterfork: Add whitelist modeEugen Rochko
2020-02-21port tootsuite#11375: Change unconfirmed user login behaviourEugen Rochko
Allow access to account settings, 2FA, authorized applications, and account deletions to unconfirmed and pending users, as well as users who had their accounts disabled. Suspended users cannot update their e-mail or password or delete their account. Display account status on account settings page, for example, when an account is frozen, limited, unconfirmed or pending review. After sign up, login users straight away and show a simple page that tells them the status of their account with links to account settings and logout, to reduce onboarding friction and allow users to correct wrongly typed e-mail addresses. Move the final sign-up step of SSO integrations to be the same as above to reduce code duplication.
2020-02-21port tootsuite#11702 to monsterfork: Fix uncaught parameter missing ↵Eugen Rochko
exceptions and missing error templates
2020-02-21port tootsuite#11770 to monsterfork: Add healthcheck endpoint for webYamagishi Kazutoshi
2020-02-21port tootsuite#8657: Change locale detection to run once per sessionEugen Rochko
Fix #6462
2020-02-20port tootsuite/#12125 to monsterfork: Fix attachment not being re-downloaded ↵Eugen Rochko
even if file is not stored Change the behaviour of remotable concern. Previously, it would skip downloading an attachment if the stored remote URL is identical to the new one. Now it would not be skipped if the attachment is not actually currently stored by Paperclip.
2020-02-20Add a nodeinfo endpoint (#12002)Eugen Rochko
* Add nodeinfo endpoint * dont commit stuff from my local dev * consistant naming since we implimented 2.1 schema * Add some additional node info stuff * Add nodeinfo endpoint * dont commit stuff from my local dev * consistant naming since we implimented 2.1 schema * expanding this to include federation info * codeclimate feedback * CC feedback * using activeserializers seems like a good idea... * get rid of draft 2.1 version * Reimplement 2.1, also fix metaData -> metadata * Fix metaData -> metadata here too * Fix nodeinfo 2.1 tests * Implement cache for monthly user aggregate * Useless * Remove ostatus from the list of supported protocols * Fix nodeinfo's open_registration reading obsolete setting variable * Only serialize domain blocks with user-facing limitations * Do not needlessly list noop severity in nodeinfo * Only serialize domain blocks info in nodeinfo when they are set to be displayed to everyone * Enable caching for nodeinfo endpoints * Fix rendering nodeinfo * CodeClimate fixes * Please CodeClimate * Change InstancePresenter#active_user_count_months for clarity * Refactor NodeInfoSerializer#metadata * Remove nodeinfo 2.1 support as the schema doesn't exist * Clean-up
2020-02-18move defang toggle to preferences instead of profilemultiple creatures
2020-02-18switch to irc-like oper behavior; require mods & admins to explicitly oper ↵multiple creatures
up using `fangs`/`op` bangtag or toggling defang setting in profile; auto-defang after 15 mins or with `defang`/`deop` bangtag
2020-02-17allow admin to define ambassador delay (in minutes) with `AMBASSADOR_DELAY` ↵multiple creatures
env var, default to 10
2020-02-17implement our fork of @mykola@weirder.earth's ambassador bot ↵multiple creatures
(@ambassador@monsterpit.net) within monsterfork itself
2020-02-17shorten frozen & limited badgesmultiple creatures
2020-02-17add a `manual_only` (manual trust only) moderation option + handle more ↵multiple creatures
`reject_unknown`/graylist mode caveats
2020-02-15add admin option to toggle whether service/app accounts should be ↵multiple creatures
auto-trusted in graylist mode + give options better descriptions
2020-02-14add options to let admins customize how trusting or strict graylist ↵multiple creatures
federation should be
2020-02-14split auto-trust instance actor setting into auto-trust & always trustmultiple creatures
2020-02-14update warning string for must-consent federation modemultiple creatures
2020-02-14add admin option to toggle auto-marking instance actors known & make ↵multiple creatures
enabling greylist federation also enable secure mode
2020-02-13(reso: report #201) add option to strip embed cards from sensitive posts, ↵multiple creatures
make default
2020-02-06Add environment variable to specify extra data hostsThibaut Girka
Fixes #1276
2020-02-04fix rss endpoint & add option to enable it (off by default)multiple creatures
2020-01-23improve mingw compatabilitymultiple creatures
2020-01-20Merge first smoke testHolly 'Frinkel' Lotor
2020-01-20Original upstream mergeThibG
2020-01-15use old ldap/pam strategies for now until full 3.x portmultiple creatures
2020-01-15merge upstream csp changesmultiple creatures
2020-01-15update `rack_attack` configmultiple creatures
2020-01-15update `devise` config from upstreammultiple creatures
2020-01-15update `paperclip` config from upstreammultiple creatures
2020-01-15add `identity` context to json-ldmultiple creatures
2020-01-15fix "allow unknown packmates" documentationmultiple creatures
2020-01-15anti-harassment: add option to toggle whether to allow follows/packmate ↵multiple creatures
requests from accounts you've never interacted with before; default to off
2020-01-15change test & dev keys to resolve https://github.com/rails/rails/issues/38030multiple creatures
2020-01-14make the external login (ldap/pam/saml/etc) error informative for ↵multiple creatures
non-technical users
2020-01-13add new privacy option to auto-defederate after a given timespan + add ↵multiple creatures
options to defederate and/or delete past posts + add `defed_in`/`parent:defed_in`/`thread:defed_in` bangtags + ui indicator for posts marked for auto-defederation
2020-01-12add privacy option to limit lifespan of public access to post & object urls ↵multiple creatures
beyond local followers, default to 90 days
2020-01-10add option for changing the monsterfork api exposure level, defaulting to ↵multiple creatures
`full` - if this gives your app indigestion change it to back to `basic` in preferences
2020-01-10add custom filter master toggle, add media gallery mode, & fix various ↵multiple creatures
filter logic + caching bugs
2020-01-10add ability to toggle individual filters without deleting themmultiple creatures
2020-01-10switch (back) to postgres fts engine for fast search & timeline filtersmultiple creatures
2020-01-10dump schema to plain sqlmultiple creatures
2019-12-31LDAP & PAM added to OAuth password grant strategy (#7999) (#12390)ntl-purism
When authenticating via OAuth, the resource owner password grant strategy is allowed by Mastodon, but (without this PR), it does not attempt to authenticate against LDAP or PAM. As a result, LDAP or PAM authenticated users cannot sign in to Mastodon with their email/password credentials via OAuth (for instance, for native/mobile app users). This PR fleshes out the authentication strategy supplied to doorkeeper in its initializer by looking up the user with LDAP and/or PAM when devise is configured to use LDAP/PAM backends. It attempts to follow the same logic as the Auth::SessionsController for handling email/password credentials. Note #1: Since this pull request affects an initializer, it's unclear how to add test automation. Note #2: The PAM authentication path has not been manually tested. It was added for completeness sake, and it is hoped that it can be manually tested before merging.
2019-12-21add option to only apply phrase filters to timelinesmultiple creatures
2019-12-21add option to use phrase filters as an allow listmultiple creatures