closed-social
/
mastodon
3
0
Fork 2
Code Issues 5 Pull Requests 0 Projects 0 Releases 3 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
9257 Commits
4 Branches
567 MiB
Tree: da3978c48e
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'da3978c48e'
${ noResults }
mastodon/config/routes.rb

502 lines
15 KiB
Raw Normal View History

Adding embedded PuSH server
7 years ago
Fix background jobs not using locks like they are supposed to (#13361) Also: - Fix locks not being removed when jobs go to the dead job queue - Add UI for managing locks to the Sidekiq dashboard - Remove unused Sidekiq workers Fix #13349
4 years ago
Render sidekiq scheduler (#2898)
7 years ago
Adding Sidekiq for background processing (firstly just of mailers)
8 years ago
Fix #3189 - Share CSRF secret between main app and Sidekiq Web (#4383)
6 years ago
Initial commit
8 years ago
Fix non-GET requests to / not being matched (#11704)
4 years ago
Fix code style
7 years ago
Live timelines using ActionCable
7 years ago
Add healthcheck endpoint for web (#11770)
4 years ago
Fixing FanOutOnWriteService, fixing Sidekiq not having enough DB connections in the pool, adding a throttle of 60rpm per IP, adding mini profiler, adding admin status to users
8 years ago
Improved admin UI
7 years ago
Adding Sidekiq for background processing (firstly just of mailers)
8 years ago
Adding OAuth access scopes, fixing OAuth authorization UI, adding rate limiting to the API
7 years ago
Ensure push subscription is immediately removed when application is revoked (#7548) * Ensure push subscription is immediately removed when application is revoked * When token is revoked from app, unsubscribe too
6 years ago
Adding OAuth access scopes, fixing OAuth authorization UI, adding rate limiting to the API
7 years ago
Adding doorkeeper, adding a REST API POST /api/statuses Params: status (text contents), in_reply_to_id (optional) GET /api/statuses/:id POST /api/statuses/:id/reblog GET /api/accounts/:id GET /api/accounts/:id/following GET /api/accounts/:id/followers POST /api/accounts/:id/follow POST /api/accounts/:id/unfollow POST /api/follows Params: uri (e.g. user@domain) OAuth authentication is currently disabled, but the API can be used with HTTP Auth.
8 years ago
Clean up well-known routes/controllers (#1649) * Add request spec for host meta route returning xml * Add routing spec for xrd routes * Update well-known routes * Move webfinger and host-meta actions to their own controllers
7 years ago
Add a nodeinfo endpoint (#12002) * Add nodeinfo endpoint * dont commit stuff from my local dev * consistant naming since we implimented 2.1 schema * Add some additional node info stuff * Add nodeinfo endpoint * dont commit stuff from my local dev * consistant naming since we implimented 2.1 schema * expanding this to include federation info * codeclimate feedback * CC feedback * using activeserializers seems like a good idea... * get rid of draft 2.1 version * Reimplement 2.1, also fix metaData -> metadata * Fix metaData -> metadata here too * Fix nodeinfo 2.1 tests * Implement cache for monthly user aggregate * Useless * Remove ostatus from the list of supported protocols * Fix nodeinfo's open_registration reading obsolete setting variable * Only serialize domain blocks with user-facing limitations * Do not needlessly list noop severity in nodeinfo * Only serialize domain blocks info in nodeinfo when they are set to be displayed to everyone * Enable caching for nodeinfo endpoints * Fix rendering nodeinfo * CodeClimate fixes * Please CodeClimate * Change InstancePresenter#active_user_count_months for clarity * Refactor NodeInfoSerializer#metadata * Remove nodeinfo 2.1 support as the schema doesn't exist * Clean-up
4 years ago
Improve handling of HTTP_ACCEPT for webfinger (#2008) This change includes: - Improve the spec coverage for incoming request to the webfinger action - For requests without an accept header (ie, what a browser might look like), return a JSON response. - For requests with an explicit format of xml or json, return that format. - For requests using an accept header, return that format. Also adds failing spec showing webfinger does not return xml, which covers the issue described in: https://github.com/tootsuite/mastodon/issues/1983
7 years ago
Support /.well-known/change-password (#8828) Fix #8771
5 years ago
Add Keybase integration (#10297) * create account_identity_proofs table * add endpoint for keybase to check local proofs * add async task to update validity and liveness of proofs from keybase * first pass keybase proof CRUD * second pass keybase proof creation * clean up proof list and add badges * add avatar url to keybase api * Always highlight the “Identity Proofs” navigation item when interacting with proofs. * Update translations. * Add profile URL. * Reorder proofs. * Add proofs to bio. * Update settings/identity_proofs front-end. * Use `link_to`. * Only encode query params if they exist. URLs without params had a trailing `?`. * Only show live proofs. * change valid to active in proof list and update liveness before displaying * minor fixes * add keybase config at well-known path * extremely naive feature flagging off the identity proof UI * fixes for rubocop * make identity proofs page resilient to potential keybase issues * normalize i18n * tweaks for brakeman * remove two unused translations * cleanup and add more localizations * make keybase_contacts an admin setting * fix ExternalProofService my_domain * use Addressable::URI in identity proofs * use active model serializer for keybase proof config * more cleanup of keybase proof config * rename proof is_valid and is_live to proof_valid and proof_live * cleanup * assorted tweaks for more robust communication with keybase * Clean up * Small fixes * Display verified identity identically to verified links * Clean up unused CSS * Add caching for Keybase avatar URLs * Remove keybase_contacts setting
5 years ago
Add a nodeinfo endpoint (#12002) * Add nodeinfo endpoint * dont commit stuff from my local dev * consistant naming since we implimented 2.1 schema * Add some additional node info stuff * Add nodeinfo endpoint * dont commit stuff from my local dev * consistant naming since we implimented 2.1 schema * expanding this to include federation info * codeclimate feedback * CC feedback * using activeserializers seems like a good idea... * get rid of draft 2.1 version * Reimplement 2.1, also fix metaData -> metadata * Fix metaData -> metadata here too * Fix nodeinfo 2.1 tests * Implement cache for monthly user aggregate * Useless * Remove ostatus from the list of supported protocols * Fix nodeinfo's open_registration reading obsolete setting variable * Only serialize domain blocks with user-facing limitations * Do not needlessly list noop severity in nodeinfo * Only serialize domain blocks info in nodeinfo when they are set to be displayed to everyone * Enable caching for nodeinfo endpoints * Fix rendering nodeinfo * CodeClimate fixes * Please CodeClimate * Change InstancePresenter#active_user_count_months for clarity * Refactor NodeInfoSerializer#metadata * Remove nodeinfo 2.1 support as the schema doesn't exist * Clean-up
4 years ago
Fix #3063 - Add dynamic app manifest (#3563) * Fix #3063 - Add dynamic app manifest * Added short_name * Add background_color
6 years ago
Add protocol handler. Handle follow intents (#4511) * Add protocol handler. Handle follow intents * Add share intent * Improve code in intents controller * Adjust share form CSS
6 years ago
Add admin custom CSS setting (#8399) Fix #3894
5 years ago
Made some progress
8 years ago
Add ActivityPub actor representing the entire server (#11321) * Add support for an instance actor * Skip username validation for local Application accounts * Add migration script to create instance actor * Make Codeclimate happy * Switch to id -99 for instance actor * Remove unused `icon` and `image` attributes from instance actor * Use if/elsif/else instead of return + ternary operator * Add instance actor to fresh installs * Use instance actor as instance representative Use instance actor for forwarding reports, relay operations, and spam auto-reporting. * Seed database in test environment * Fix single-user mode * Fix tests * Fix specs to accomodate for an extra `Account` * Auto-reject follows on instance actor Following an instance actor might make sense, but we are not handling that right now, so auto-reject. * Fix webfinger lookup and serialization for instance actor * Rename instance actor * Make it clear in the HTML view that the instance actor should not be blocked * Raise cache time for instance actor as there's no dynamic content * Re-use /about/more with a flash message for instance actor profile
4 years ago
Add consumable invites (#5814) * Add consumable invites * Add UI for generating invite codes * Add tests * Display max uses and expiration in invites table, delete invite * Remove unused column and redundant validator - Default follows not used, probably bad idea - InviteCodeValidator is redundant because RegistrationsController checks invite code validity * Add admin setting to disable invites * Add admin UI for invites, configurable role for invite creation - Admin UI that lists everyone's invites, always available - Admin setting min_invite_role to control who can invite people - Non-admin invite UI only visible if users are allowed to * Do not remove invites from database, expire them instantly
6 years ago
Change unconfirmed user login behaviour (#11375) Allow access to account settings, 2FA, authorized applications, and account deletions to unconfirmed and pending users, as well as users who had their accounts disabled. Suspended users cannot update their e-mail or password or delete their account. Display account status on account settings page, for example, when an account is frozen, limited, unconfirmed or pending review. After sign up, login users straight away and show a simple page that tells them the status of their account with links to account settings and logout, to reduce onboarding friction and allow users to correct wrongly typed e-mail addresses. Move the final sign-up step of SSO integrations to be the same as above to reduce code duplication.
4 years ago
Add password challenge to 2FA settings, e-mail notifications (#11878) Fix #3961
4 years ago
Change unconfirmed user login behaviour (#11375) Allow access to account settings, 2FA, authorized applications, and account deletions to unconfirmed and pending users, as well as users who had their accounts disabled. Suspended users cannot update their e-mail or password or delete their account. Display account status on account settings page, for example, when an account is frozen, limited, unconfirmed or pending review. After sign up, login users straight away and show a simple page that tells them the status of their account with links to account settings and logout, to reduce onboarding friction and allow users to correct wrongly typed e-mail addresses. Move the final sign-up step of SSO integrations to be the same as above to reduce code duplication.
4 years ago
Add consumable invites (#5814) * Add consumable invites * Add UI for generating invite codes * Add tests * Display max uses and expiration in invites table, delete invite * Remove unused column and redundant validator - Default follows not used, probably bad idea - InviteCodeValidator is redundant because RegistrationsController checks invite code validity * Add admin setting to disable invites * Add admin UI for invites, configurable role for invite creation - Admin UI that lists everyone's invites, always available - Admin setting min_invite_role to control who can invite people - Non-admin invite UI only visible if users are allowed to * Do not remove invites from database, expire them instantly
6 years ago
Customizing devise views and controllers
8 years ago
CAS + SAML authentication feature (#6425) * Cas authentication feature * Config * Remove class_eval + Omniauth initializer * Codeclimate review * Codeclimate review 2 * Codeclimate review 3 * Remove uid/email reconciliation * SAML authentication * Clean up code * Improve login form * Fix code style issues * Add locales
6 years ago
Customizing devise views and controllers
8 years ago
Adding e-mail confirmations
7 years ago
Adding embedded PuSH server
7 years ago
Customizing devise views and controllers
8 years ago
Removing grape and adding devise
8 years ago
Redirect user profile page to short URL when HTML format (#4328)
6 years ago
Redirect from old authorize_follow path (#8584) To avoid error due to nginx proxy caching the webfinger response
5 years ago
Prettier account and stream entry URLs
7 years ago
Refactoring Grape API methods into normal controllers & other things
8 years ago
Adding remote follow button
7 years ago
Improve ActivityPub representations (#3844) * Improve webfinger templates and make tests more flexible * Clean up AS2 representation of actor * Refactor outbox * Create activities representation * Add representations of followers/following collections, do not redirect /users/:username route if format is empty * Remove unused translations * ActivityPub endpoint for single statuses, add ActivityPub::TagManager for better URL/URI generation * Add ActivityPub::TagManager#to * Represent all attachments as Document instead of Image/Video specifically (Because for remote ones we may not know for sure) Add mentions and hashtags representation to AP notes * Add AP-resolvable hashtag URIs * Use ActiveModelSerializers for ActivityPub * Clean up unused translations * Separate route for object and activity * Adjust cc/to matrices * Add to/cc to activities, ensure announce activity embeds target status and not the wrapper status, add "id" to all collections
6 years ago
Update status embeds (#4742) - Use statuses controller for embeds instead of stream entries controller - Prefer /@:username/:id/embed URL for embeds - Use /@:username as author_url in OEmbed - Add follow link to embeds which opens web intent in new window - Use redis cache in development - Cache entire embed
6 years ago
Improve ActivityPub representations (#3844) * Improve webfinger templates and make tests more flexible * Clean up AS2 representation of actor * Refactor outbox * Create activities representation * Add representations of followers/following collections, do not redirect /users/:username route if format is empty * Remove unused translations * ActivityPub endpoint for single statuses, add ActivityPub::TagManager for better URL/URI generation * Add ActivityPub::TagManager#to * Represent all attachments as Document instead of Image/Video specifically (Because for remote ones we may not know for sure) Add mentions and hashtags representation to AP notes * Add AP-resolvable hashtag URIs * Use ActiveModelSerializers for ActivityPub * Clean up unused translations * Separate route for object and activity * Adjust cc/to matrices * Add to/cc to activities, ensure announce activity embeds target status and not the wrapper status, add "id" to all collections
6 years ago
Refactor controllers for statuses, accounts, and more (#11249)
4 years ago
Improve ActivityPub representations (#3844) * Improve webfinger templates and make tests more flexible * Clean up AS2 representation of actor * Refactor outbox * Create activities representation * Add representations of followers/following collections, do not redirect /users/:username route if format is empty * Remove unused translations * ActivityPub endpoint for single statuses, add ActivityPub::TagManager for better URL/URI generation * Add ActivityPub::TagManager#to * Represent all attachments as Document instead of Image/Video specifically (Because for remote ones we may not know for sure) Add mentions and hashtags representation to AP notes * Add AP-resolvable hashtag URIs * Use ActiveModelSerializers for ActivityPub * Clean up unused translations * Separate route for object and activity * Adjust cc/to matrices * Add to/cc to activities, ensure announce activity embeds target status and not the wrapper status, add "id" to all collections
6 years ago
Restful refactor of accounts/ routes (#2133) * Add routing specs for accounts followers and following actions * Use more restful route naming for public account follow pages Moves two actions: - accounts#followers to accounts/follower_accounts#index - accounts#following to accounts/following_accounts#index Adds routing spec to ensure prior URLs are preserved.
7 years ago
Revert #5772 (#6221)
6 years ago
Restful refactor of accounts/ routes (#2133) * Add routing specs for accounts followers and following actions * Use more restful route naming for public account follow pages Moves two actions: - accounts#followers to accounts/follower_accounts#index - accounts#following to accounts/following_accounts#index Adds routing spec to ensure prior URLs are preserved.
7 years ago
Federate pinned statuses over ActivityPub (#6610) * Federate pinned statuses over ActivityPub * Display pinned toots in web UI Fix #6117 * Fix migration * Fix tests * Update outbox_serializer.rb * Update remove_serializer.rb * Update add_serializer.rb * Update fetch_featured_collection_service.rb
6 years ago
Improve ActivityPub representations (#3844) * Improve webfinger templates and make tests more flexible * Clean up AS2 representation of actor * Refactor outbox * Create activities representation * Add representations of followers/following collections, do not redirect /users/:username route if format is empty * Remove unused translations * ActivityPub endpoint for single statuses, add ActivityPub::TagManager for better URL/URI generation * Add ActivityPub::TagManager#to * Represent all attachments as Document instead of Image/Video specifically (Because for remote ones we may not know for sure) Add mentions and hashtags representation to AP notes * Add AP-resolvable hashtag URIs * Use ActiveModelSerializers for ActivityPub * Clean up unused translations * Separate route for object and activity * Adjust cc/to matrices * Add to/cc to activities, ensure announce activity embeds target status and not the wrapper status, add "id" to all collections
6 years ago
Add ActivityPub inbox (#4216) * Add ActivityPub inbox * Handle ActivityPub deletes * Handle ActivityPub creates * Handle ActivityPub announces * Stubs for handling all activities that need to be handled * Add ActivityPub actor resolving * Handle conversation URI passing in ActivityPub * Handle content language in ActivityPub * Send accept header when fetching actor, handle JSON parse errors * Test for ActivityPub::FetchRemoteAccountService * Handle public key and icon/image when embedded/as array/as resolvable URI * Implement ActivityPub::FetchRemoteStatusService * Add stubs for more interactions * Undo activities implemented * Handle out of order activities * Hook up ActivityPub to ResolveRemoteAccountService, handle Update Account activities * Add fragment IDs to all transient activity serializers * Add tests and fixes * Add stubs for missing tests * Add more tests * Add more tests
6 years ago
Add E2EE API (#13820)
3 years ago
Federate pinned statuses over ActivityPub (#6610) * Federate pinned statuses over ActivityPub * Display pinned toots in web UI Fix #6117 * Fix migration * Fix tests * Update outbox_serializer.rb * Update remove_serializer.rb * Update add_serializer.rb * Update fetch_featured_collection_service.rb
6 years ago
Refactoring Grape API methods into normal controllers & other things
8 years ago
Made some progress
8 years ago
Add sharedInbox to actors (#4737)
6 years ago
Prettier account and stream entry URLs
7 years ago
Redesign public profiles (#4608) * Redesign public profiles * Responsive design * Change public profile status filtering defaults and add options - No longer displays private/direct toots even if you are permitted access - By default omits replies - "With replies" option - "Media only" option * Redesign account grid cards * Fix style issues
6 years ago
Add featured hashtags to profiles (#9755) * Add hashtag filter to profiles GET /@:username/tagged/:hashtag GET /api/v1/accounts/:id/statuses?tagged=:hashtag * Display featured hashtags on public profile * Use separate model for featured tags * Update featured hashtag counters on-write * Limit featured tags to 10
5 years ago
Prettier account and stream entry URLs
7 years ago
Update status embeds (#4742) - Use statuses controller for embeds instead of stream entries controller - Prefer /@:username/:id/embed URL for embeds - Use /@:username as author_url in OEmbed - Add follow link to embeds which opens web intent in new window - Use redis cache in development - Cache entire embed
6 years ago
Prettier account and stream entry URLs
7 years ago
Add remote interaction dialog for toots (#8202) * Add remote interaction dialog for toots * Change AuthorizeFollow into AuthorizeInteraction, support statuses * Update brakeman.ignore * Adjust how interaction buttons are display on public pages * Fix tests
5 years ago
Add profile directory (#9427) Fix #5578
5 years ago
Change /settings/preferences to redirect to appearance, add /settings/preferences/other (#10988)
4 years ago
Change preferences page into appearance, notifications, and other (#10977)
4 years ago
E-mail preferences page
7 years ago
Allow users to delete their header and avatar (#13234) This is achieved by sending a DELETE request to /settings/profile/pictures/{avatar,header} via a link that is part of the upload form's hint of the respective picture.
4 years ago
Change /settings/preferences to redirect to appearance, add /settings/preferences/other (#10988)
4 years ago
Export follow/block lists as CSV
7 years ago
Change preferences page into appearance, notifications, and other (#10977)
4 years ago
Change /settings/preferences to redirect to appearance, add /settings/preferences/other (#10988)
4 years ago
Change preferences page into appearance, notifications, and other (#10977)
4 years ago
Account archive download (#6460) * Fix #201: Account archive download * Export actor and private key in the archive * Optimize BackupService - Add conversation to cached associations of status, because somehow it was forgotten and is source of N+1 queries - Explicitly call GC between batches of records being fetched (Model class allocations are the worst offender) - Stream media files into the tar in 1MB chunks (Do not allocate media file (up to 8MB) as string into memory) - Use #bytesize instead of #size to calculate file size for JSON (Fix FileOverflow error) - Segment media into subfolders by status ID because apparently GIF-to-MP4 media are all named "media.mp4" for some reason * Keep uniquely generated filename in Paperclip::GifTranscoder * Ensure dumped files do not overwrite each other by maintaing directory partitions * Give tar archives a good name * Add scheduler to remove week-old backups * Fix code style issue
6 years ago
Change preferences page into appearance, notifications, and other (#10977)
4 years ago
Refactor exports controller (#1567) * Add basic coverage for settings/exports controller * Remove unused @account variable from settings/exports controller * Add coverage for download export actions * Remove deprecated `render :text` in favor of `send_data` for csv downloads * Add model to handle exports * Use Export class in settings/exports controller * Simplify settings/exports controller methods * Move settings/export to more restful routes
7 years ago
Allow import/export of mutes list (#1541) * Allow export of mutes list * Allow importing of mutes list * Refactor to use Settings::Exports::BaseController and DRY up exports code
7 years ago
Add CSV export for lists and domain blocks (#9677) Fix #6893 Fix #9268
5 years ago
Export follow/block lists as CSV
7 years ago
Added optional two-factor authentication
7 years ago
2FA controller cleanup (#2296) * Add spec coverage for settings/two_factor_auth area * extract setup method for qr code * Move otp required check to before action * Merge method only used once * Remove duplicate view * Consolidate creation of @codes for backup * Move settings/2fq#recovery_codes to settings/recovery_codes#create * Rename settings/two_factor_auth#disable to #destroy * Add coverage for the otp required path on 2fa#show * Clean up the recovery codes list styles * Move settings/two_factor_auth to settings/two_factor_authentication * Reorganize the settings two factor auth area Updated to use a flow like: - settings/two_factor_authentication goes to a #show view which has a button either enable or disable 2fa on the account - the disable button turns off the otp requirement for the user - the enable button cycles the user secret and redirects to a confirmation page - the confirmation page is a #new view which shows the QR code for user - that page posts to #create which verifies the code, and creates the recovery codes - that create action shares a view with a recovery codes controller which can be used separately to reset codes if needed
7 years ago
Change preferences page into appearance, notifications, and other (#10977)
4 years ago
2FA controller cleanup (#2296) * Add spec coverage for settings/two_factor_auth area * extract setup method for qr code * Move otp required check to before action * Merge method only used once * Remove duplicate view * Consolidate creation of @codes for backup * Move settings/2fq#recovery_codes to settings/recovery_codes#create * Rename settings/two_factor_auth#disable to #destroy * Add coverage for the otp required path on 2fa#show * Clean up the recovery codes list styles * Move settings/two_factor_auth to settings/two_factor_authentication * Reorganize the settings two factor auth area Updated to use a flow like: - settings/two_factor_authentication goes to a #show view which has a button either enable or disable 2fa on the account - the disable button turns off the otp requirement for the user - the enable button cycles the user secret and redirects to a confirmation page - the confirmation page is a #new view which shows the QR code for user - that page posts to #create which verifies the code, and creates the recovery codes - that create action shares a view with a recovery codes controller which can be used separately to reset codes if needed
7 years ago
Added optional two-factor authentication
7 years ago
Followers-only post federation (#2111) * Make private toots get PuSHed to subscription URLs that belong to domains where you have approved followers * Authorized followers controller, stub for bulk action * Soft block in the background * Add simple test for new controller * Rename Settings::FollowersController to Settings::FollowerDomainsController, paginate results, rename "private" post setting to "followers-only", fix pagination style, improve post privacy preferences style, improve warning style * Extract compose form warnings into own container, show warning when posting to followers-only with unlocked account
7 years ago
Add ability to remove identity proofs from account (#13682) Fix #12613
4 years ago
Add Keybase integration (#10297) * create account_identity_proofs table * add endpoint for keybase to check local proofs * add async task to update validity and liveness of proofs from keybase * first pass keybase proof CRUD * second pass keybase proof creation * clean up proof list and add badges * add avatar url to keybase api * Always highlight the “Identity Proofs” navigation item when interacting with proofs. * Update translations. * Add profile URL. * Reorder proofs. * Add proofs to bio. * Update settings/identity_proofs front-end. * Use `link_to`. * Only encode query params if they exist. URLs without params had a trailing `?`. * Only show live proofs. * change valid to active in proof list and update liveness before displaying * minor fixes * add keybase config at well-known path * extremely naive feature flagging off the identity proof UI * fixes for rubocop * make identity proofs page resilient to potential keybase issues * normalize i18n * tweaks for brakeman * remove two unused translations * cleanup and add more localizations * make keybase_contacts an admin setting * fix ExternalProofService my_domain * use Addressable::URI in identity proofs * use active model serializer for keybase proof config * more cleanup of keybase proof config * rename proof is_valid and is_live to proof_valid and proof_live * cleanup * assorted tweaks for more robust communication with keybase * Clean up * Small fixes * Display verified identity identically to verified links * Clean up unused CSS * Add caching for Keybase avatar URLs * Remove keybase_contacts setting
5 years ago
Fix up the applications area (#4664) - Section it into "Development" area - Improve UI of application form, index, and details
6 years ago
Application prefs section (#2758) * Add code for creating/managing apps to settings section * Add specs for app changes * Fix controller spec * Fix view file I pasted over by mistake * Add locale strings. Add 'my apps' to nav * Add Client ID/Secret to App page. Add some visual separation * Fix rubocop warnings * Fix embarrassing typo I lost an `end` statement while fixing a merge conflict. * Add code for creating/managing apps to settings section - Add specs for app changes - Add locale strings. Add 'my apps' to nav - Add Client ID/Secret to App page. Add some visual separation - Fix some bugs/warnings * Update to match code standards * Trigger notification * Add warning about not sharing API secrets * Tweak spec a bit * Cleanup fixture creation by using let! * Remove unused key * Add foreign key for application<->user
6 years ago
Account deletion (#3728) * Add form for account deletion * If avatar or header are gone from source, remove them * Add option to have SuspendAccountService remove user record, add tests * Exclude suspended accounts from search
6 years ago
Add (back) option to set redirect notice on account without moving followers (#11994) Fix #11913
4 years ago
Add feature to revoke sessions (#4259)
6 years ago
Add (back) option to set redirect notice on account without moving followers (#11994) Fix #11913
4 years ago
Add account migration UI (#11846) Fix #10736 - Change data export to be available for non-functional accounts - Change non-functional accounts to include redirecting accounts
4 years ago
Add feature to revoke sessions (#4259)
6 years ago
Add featured hashtags to profiles (#9755) * Add hashtag filter to profiles GET /@:username/tagged/:hashtag GET /api/v1/accounts/:id/statuses?tagged=:hashtag * Display featured hashtags on public profile * Use separate model for featured tags * Update featured hashtag counters on-write * Limit featured tags to 10
5 years ago
E-mail preferences page
7 years ago
Save video metadata and improve video OpenGraph tags (#6481) * Save metadata from video attachments, put correct dimensions into OG tags * Add twitter:player for videos * Fix code style and test
6 years ago
Encode custom emojis as resolveable objects in ActivityPub (#5243) * Encode custom emojis as resolveable objects in ActivityPub * Improve code style
6 years ago
Add consumable invites (#5814) * Add consumable invites * Add UI for generating invite codes * Add tests * Display max uses and expiration in invites table, delete invite * Remove unused column and redundant validator - Default follows not used, probably bad idea - InviteCodeValidator is redundant because RegistrationsController checks invite code validity * Add admin setting to disable invites * Add admin UI for invites, configurable role for invite creation - Admin UI that lists everyone's invites, always available - Admin setting min_invite_role to control who can invite people - Non-admin invite UI only visible if users are allowed to * Do not remove invites from database, expire them instantly
6 years ago
Keyword/phrase filtering (#7905) * Add keyword filtering GET|POST /api/v1/filters GET|PUT|DELETE /api/v1/filters/:id - Irreversible filters can drop toots from home or notifications - Other filters can hide toots through the client app - Filters use a phrase valid in particular contexts, expiration * Make sure expired filters don't get applied client-side * Add missing API methods * Remove "regex filter" from column settings * Add tests * Add test for FeedManager * Add CustomFilter test * Add UI for managing filters * Add streaming API event to allow syncing filters * Fix tests
5 years ago
Add relationship manager UI (#10268)
5 years ago
Add API for getting info about authenticated user: /api/v1/accounts/verify_credentials
7 years ago
Redesign landing page (#10232)
5 years ago
When accessing uncached media attachment, redownload it (#4955) * When accessing uncached media attachment, redownload it * Prevent re-download of rejected media
6 years ago
Add remote interaction dialog for toots (#8202) * Add remote interaction dialog for toots * Change AuthorizeFollow into AuthorizeInteraction, support statuses * Update brakeman.ignore * Adjust how interaction buttons are display on public pages * Fix tests
5 years ago
Add protocol handler. Handle follow intents (#4511) * Add protocol handler. Handle follow intents * Add share intent * Improve code in intents controller * Adjust share form CSS
6 years ago
Add ability to use remote follow function on other sites
7 years ago
Add simple admin overview of PuSH subscriptions
7 years ago
Add admin dashboard (#8029)
5 years ago
Add whitelist mode (#11291)
4 years ago
Add domain block notes (#11515) * Add database columns for adding notes to domain blocks/restrctions * Add admin UI to set private and public comments when blocking a domain * Add text for private and public comments on domain blocks * Show domain block comments in admin UI * Add comments to the domain block undo page * Make UnblockDomainService more robust regarding upgraded domain blocks * Allow editing domain blocks * Rename button from “undo domain block” to “view domain block” in account admin UI * Change test to unsilence silenced users from upgraded blocks
4 years ago
Add announcements (#12662) * Add announcements Fix #11006 * Add reactions to announcements * Add admin UI for announcements * Add unit tests * Fix issues - Add `with_dismissed` param to announcements API - Fix end date not being formatted when time range is given - Fix announcement delete causing reactions to send streaming updates - Fix announcements container growing too wide and mascot too small - Fix `all_day` being settable when no time range is given - Change text "Update" to "Announcement" * Fix scheduler unpublishing announcements before they are due * Fix filter params not being passed to announcements filter
4 years ago
Implement EmailBlackList (#5109) * Implement BlacklistedEmailDomain * Use Faker::Internet.domain_name * Remove note column * Add frozen_string_literal comment * Delete unnecessary codes * Sort alphabetically * Change of wording * Rename BlacklistedEmailDomain to EmailDomainBlock
6 years ago
Add logging of admin actions (#5757) * Add logging of admin actions * Update brakeman whitelist * Log creates, updates and destroys with history of changes * i18n: Update Polish translation (#5782) Signed-off-by: Marcin Mikołajczak <me@m4sk.in> * Split admin navigation into moderation and administration * Redesign audit log page * 🇵🇱 (#5795) * Add color coding to audit log * Change dismiss->resolve, log all outcomes of report as resolve * Update terminology (e-mail blacklist) (#5796) * Update terminology (e-mail blacklist) imho looks better * Update en.yml * Fix code style issues * i18n-tasks normalize
6 years ago
Add moderation warnings (#9519) * Add moderation warnings Replace individual routes for disabling, silencing, and suspending a user, as well as the report update route, with a unified account action controller that allows you to select an action (none, disable, silence, suspend) as well as whether it should generate an e-mail notification with optional custom text. That notification, with the optional custom text, is saved as a warning. Additionally, there are warning presets you can configure to save time when performing the above. * Use Account#local_username_and_domain
5 years ago
Add publish/unpublish controls to announcements in admin UI (#12967)
4 years ago
Add announcements (#12662) * Add announcements Fix #11006 * Add reactions to announcements * Add admin UI for announcements * Add unit tests * Fix issues - Add `with_dismissed` param to announcements API - Fix end date not being formatted when time range is given - Fix announcement delete causing reactions to send streaming updates - Fix announcements container growing too wide and mascot too small - Fix `all_day` being settable when no time range is given - Change text "Update" to "Announcement" * Fix scheduler unpublishing announcements before they are due * Fix filter params not being passed to announcements filter
4 years ago
Replace best_in_place editor on admin settings page (#2789) * Remove best_in_place * Replace best_in_place usage with rails helpers * Move admin/settings#index to #edit action * Remove click_to__edit from i18n
7 years ago
Add ability to delete files uploaded for settings in admin UI (#13192) * Allow deleting site uploads * Refactor and move links into hints * Fix i18n tests * Fix HTML output of site_upload_delete_hint
4 years ago
Add admin function to deactivate all invites (#8279) Fix #8261
5 years ago
Add protocol handler. Handle follow intents (#4511) * Add protocol handler. Handle follow intents * Add share intent * Improve code in intents controller * Adjust share form CSS
6 years ago
Add federation relay support (#7998) * Add federation relay support * Add admin UI for managing relays * Include actor on relay-related activities * Fix i18n
5 years ago
Redesign admin instances area (#9645)
5 years ago
Add UI to view report details, remove reported statuses, quick links to resolve/silence/suspend from report
7 years ago
Add moderation warnings (#9519) * Add moderation warnings Replace individual routes for disabling, silencing, and suspending a user, as well as the report update route, with a unified account action controller that allows you to select an action (none, disable, silence, suspend) as well as whether it should generate an e-mail notification with optional custom text. That notification, with the optional custom text, is saved as a warning. Additionally, there are warning presets you can configure to save time when performing the above. * Use Account#local_username_and_domain
5 years ago
Improve admin UI for accounts (#7360) * Improve design of account statuses admin UI (consistent with reports) * Make account moderation notes look consistent with report notes * i18n-tasks remove-unused * Fix code style issues * Fix tests
6 years ago
Add UI to view report details, remove reported statuses, quick links to resolve/silence/suspend from report
7 years ago
Add suspend account functionality to admin UI
7 years ago
Feature: Report improvements (#6967) (#7000) * Implement Assignment of Reports (#6967) * Change translation of admin.report.comment.label to "Report Comment" for clarity As we'll soon add the ability for reports to have comments on them, this clarification makes sense. * Implement notes for Reports This enables moderators to leave comments about a report whilst they work on it * Fix display of report moderation notes * Allow reports to be reopened / marked as unresolved * Redirect to reports listing upon resolution of report * Implement "resolve with note" functionality * Add inverse relationship for report notes * Remove additional database querying when loading report notes * Fix tests for reports * Fix localisations for report notes / reports
6 years ago
Fix admin UI for accounts somewhat
7 years ago
Add explit admin actions to (re)subscribe/unsubscribe remote accounts (#3640) * Add explit admin actions to (re)subscribe/unsubscribe remote accounts and re-download avatar/header * Improve how admin NSFW toggle looks
6 years ago
Add ability to disable login and mark accounts as memorial (#5615) Fix #5597
6 years ago
Add moderation warnings (#9519) * Add moderation warnings Replace individual routes for disabling, silencing, and suspending a user, as well as the report update route, with a unified account action controller that allows you to select an action (none, disable, silence, suspend) as well as whether it should generate an e-mail notification with optional custom text. That notification, with the optional custom text, is saved as a warning. Additionally, there are warning presets you can configure to save time when performing the above. * Use Account#local_username_and_domain
5 years ago
Add explit admin actions to (re)subscribe/unsubscribe remote accounts (#3640) * Add explit admin actions to (re)subscribe/unsubscribe remote accounts and re-download avatar/header * Improve how admin NSFW toggle looks
6 years ago
Implement the ability for an Administrator or Moderator to remove an account avatar (#6998)
6 years ago
Add admin ability to remove an user's header image (#9495) * Fix markup in admin/accounts/:id table for avatar * Add admin ability to remove an user's header image
5 years ago
Add ability to disable login and mark accounts as memorial (#5615) Fix #5597
6 years ago
Admission-based registrations mode (#10250) Fix #6856 Fix #6951
5 years ago
Add explit admin actions to (re)subscribe/unsubscribe remote accounts (#3640) * Add explit admin actions to (re)subscribe/unsubscribe remote accounts and re-download avatar/header * Improve how admin NSFW toggle looks
6 years ago
Feature: Allow staff to change user emails (#7074) * Admin: Show unconfirmed email address on account page * Admin: Allow staff to change user email addresses * ActionLog: On change_email, log current email address and new unconfirmed email address
6 years ago
Add password reset for users from admin accounts area (#1841)
7 years ago
Add moderation warnings (#9519) * Add moderation warnings Replace individual routes for disabling, silencing, and suspending a user, as well as the report update route, with a unified account action controller that allows you to select an action (none, disable, silence, suspend) as well as whether it should generate an e-mail notification with optional custom text. That notification, with the optional custom text, is saved as a warning. Additionally, there are warning presets you can configure to save time when performing the above. * Use Account#local_username_and_domain
5 years ago
Add quick links to the admin interface in the WebUI (#8545) * Allow to show a specific status in the admin interface * Let the front-end know the current account is a moderator * Add admin links to status and account menus If the current logged-in user is an admin, add quick links to the admin interface in account and toot dropdown menu. Suggestion by @ashkitten * Use @statuses.first instead of @statuses[0]
5 years ago
Change followers page to relationships page in admin UI (#12927) Allow browsing and filtering all relationships instead of just followers, unify the codebase with the user-facing relationship manager, add ability to see who the user invited
4 years ago
Add resend confirmation for admin (#7378) * Add confirmations_controller#resend * Add tests for confirmations_controller#resend * Add translations
6 years ago
Add moderator role and add pundit policies for admin actions (#5635) * Add moderator role and add pundit policies for admin actions * Add rake task for turning user into mod and revoking it again * Fix handling of unauthorized exception * Deliver new report e-mails to staff, not just admins * Add promote/demote to admin UI, hide some actions conditionally * Fix unused i18n
6 years ago
Various fixes and improvements (#12878) * Fix unused role routes being generated * Remove unused JavaScript code * Refactor filters code to be DRYer * Fix `.count == 0` comparisons to `.empty?` in views * Fix filters in views
4 years ago
Add moderator role and add pundit policies for admin actions (#5635) * Add moderator role and add pundit policies for admin actions * Add rake task for turning user into mod and revoking it again * Fix handling of unauthorized exception * Deliver new report e-mails to staff, not just admins * Add promote/demote to admin UI, hide some actions conditionally * Fix unused i18n
6 years ago
Add suspend account functionality to admin UI
7 years ago
Add option to disable two factor auth in admin accounts panel. (#2584) * Add option to disable two factor auth in admin accounts panel. Closes #2578 * Add @mjankowski's suggestions. * Moves destroy actions behind User#disable_two_factor! * Adds spec coverage for Admin:TwoFactorAuthenticationsController and User#disable_two_factor!
7 years ago
Fix batch actions not working on pending accounts (#10508)
5 years ago
Add batch actions for approving and rejecting pending accounts (#10469)
5 years ago
Fix batch actions not working on pending accounts (#10508)
5 years ago
Add batch actions for approving and rejecting pending accounts (#10469)
5 years ago
Add option to disable two factor auth in admin accounts panel. (#2584) * Add option to disable two factor auth in admin accounts panel. Closes #2578 * Add @mjankowski's suggestions. * Moves destroy actions behind User#disable_two_factor! * Adds spec coverage for Admin:TwoFactorAuthenticationsController and User#disable_two_factor!
7 years ago
Admin interface for listing, adding and removing custom emojis (#5002) * Admin interface for listing, adding and removing custom emojis * Only display local ones in the list
6 years ago
Add batch actions and categories to admin UI for custom emojis (#11793)
4 years ago
Improve admin UI for custom emojis, add copy/disable/enable (#5231)
6 years ago
Add moderation note (#5240) * Add moderation note * Add frozen_string_literal * Make rspec pass
6 years ago
Add batch approve/reject for pending hashtags in admin UI (#11791)
4 years ago
Add simple admin overview of PuSH subscriptions
7 years ago
Add admin dashboard (#8029)
5 years ago
Add redirect for /admin => /admin/settings
7 years ago
Refactoring Grape API methods into normal controllers & other things
8 years ago
Add basic OEmbed provider API, fix #247
7 years ago
Add Keybase integration (#10297) * create account_identity_proofs table * add endpoint for keybase to check local proofs * add async task to update validity and liveness of proofs from keybase * first pass keybase proof CRUD * second pass keybase proof creation * clean up proof list and add badges * add avatar url to keybase api * Always highlight the “Identity Proofs” navigation item when interacting with proofs. * Update translations. * Add profile URL. * Reorder proofs. * Add proofs to bio. * Update settings/identity_proofs front-end. * Use `link_to`. * Only encode query params if they exist. URLs without params had a trailing `?`. * Only show live proofs. * change valid to active in proof list and update liveness before displaying * minor fixes * add keybase config at well-known path * extremely naive feature flagging off the identity proof UI * fixes for rubocop * make identity proofs page resilient to potential keybase issues * normalize i18n * tweaks for brakeman * remove two unused translations * cleanup and add more localizations * make keybase_contacts an admin setting * fix ExternalProofService my_domain * use Addressable::URI in identity proofs * use active model serializer for keybase proof config * more cleanup of keybase proof config * rename proof is_valid and is_live to proof_valid and proof_live * cleanup * assorted tweaks for more robust communication with keybase * Clean up * Small fixes * Display verified identity identically to verified links * Clean up unused CSS * Add caching for Keybase avatar URLs * Remove keybase_contacts setting
5 years ago
Adding doorkeeper, adding a REST API POST /api/statuses Params: status (text contents), in_reply_to_id (optional) GET /api/statuses/:id POST /api/statuses/:id/reblog GET /api/accounts/:id GET /api/accounts/:id/following GET /api/accounts/:id/followers POST /api/accounts/:id/follow POST /api/accounts/:id/unfollow POST /api/follows Params: uri (e.g. user@domain) OAuth authentication is currently disabled, but the API can be used with HTTP Auth.
8 years ago
Fix #52 - Add API versioning (v1)
7 years ago
Move reblogged_by and favourited_by actions out of api/v1/statuses and into unique controllers (#3646) * Add specs for api statuses routes * Update favourited_by and reblogged_by api routes * Move methods into new controllers * Use load_accounts methods to simplify index actions * Clean up load_accounts methods * Clean up link header generation * Check for link headers in specs * Remove unused actions from api/v1/statuses controller * Remove specs for moved actions
6 years ago
Move create/destroy actions for api/v1/statuses to namespace (#3678) Each of mute, favourite, reblog has been updated to: - Have a separate controller with just a create and destroy action - Preserve historical route names to not break the API - Mild refactoring to break up long methods
6 years ago
Add bookmarks (#7107) * Add backend support for bookmarks Bookmarks behave like favourites, except they aren't shared with other users and do not have an associated counter. * Add spec for bookmark endpoints * Add front-end support for bookmarks * Introduce OAuth scopes for bookmarks * Add bookmarks to archive takeout * Fix migration * Coding style fixes * Fix rebase issue * Update bookmarked_statuses to latest UI changes * Update bookmark actions to properly reflect status changes in state * Add bookmarks item to single-column layout * Make active bookmarks red
4 years ago
Move create/destroy actions for api/v1/statuses to namespace (#3678) Each of mute, favourite, reblog has been updated to: - Have a separate controller with just a create and destroy action - Preserve historical route names to not break the API - Mild refactoring to break up long methods
6 years ago
Pinned statuses (#4675) * Pinned statuses * yarn manage:translations
6 years ago
Move reblogged_by and favourited_by actions out of api/v1/statuses and into unique controllers (#3646) * Add specs for api statuses routes * Update favourited_by and reblogged_by api routes * Move methods into new controllers * Use load_accounts methods to simplify index actions * Clean up load_accounts methods * Clean up link header generation * Check for link headers in specs * Remove unused actions from api/v1/statuses controller * Remove specs for moved actions
6 years ago
Fix #52 - Add API versioning (v1)
7 years ago
API methods for retrieving home and mentions timelines
8 years ago
Refactor of API timeline actions (#3263) - Increase coverage to exercise all parts of each action - Move into namespace to share common code - Misc refactor of each action for smaller methods, simpler code
7 years ago
Lists (#5703) * Add structure for lists * Add list timeline streaming API * Add list APIs, bind list-account relation to follow relation * Add API for adding/removing accounts from lists * Add pagination to lists API * Add pagination to list accounts API * Adjust scopes for new APIs - Creating and modifying lists merely requires "write" scope - Fetching information about lists merely requires "read" scope * Add test for wrong user context on list timeline * Clean up tests
6 years ago
Refactor of API timeline actions (#3263) - Increase coverage to exercise all parts of each action - Move into namespace to share common code - Misc refactor of each action for smaller methods, simpler code
7 years ago
Pinned statuses (#4675) * Pinned statuses * yarn manage:translations
6 years ago
New API: GET /api/v1/custom_emojis to get a server's custom emojis (#5051)
6 years ago
Add API method to remove a suggestion (#7978) DELETE /api/v1/suggestions/:account_id When blocking, remove suggestion from both sides. Muting not affected, since muting is supposed to be invisible to the target.
5 years ago
Add scheduled statuses (#9706) Fix #340
5 years ago
Add a preferences API so apps can share basic behaviours (#10109)
5 years ago
Add unread indicator to conversations (#9009)
5 years ago
Add announcements (#12662) * Add announcements Fix #11006 * Add reactions to announcements * Add admin UI for announcements * Add unit tests * Fix issues - Add `with_dismissed` param to announcements API - Fix end date not being formatted when time range is given - Fix announcement delete causing reactions to send streaming updates - Fix announcements container growing too wide and mascot too small - Fix `all_day` being settable when no time range is given - Change text "Update" to "Announcement" * Fix scheduler unpublishing announcements before they are due * Fix filter params not being passed to announcements filter
4 years ago
Disable E2EE API routes for the next release (#14283)
3 years ago
Add E2EE API (#13820)
3 years ago
Add unread indicator to conversations (#9009)
5 years ago
Move timelines API from statuses to its own controller, add a check for resources that require a user context vs those that don't (such as public timeline) /api/v1/statuses/public -> /api/v1/timelines/public /api/v1/statuses/home -> /api/v1/timelines/home /api/v1/statuses/mentions -> /api/v1/timelines/mentions /api/v1/statuses/tag/:tag -> /api/v1/timelines/tag/:tag
7 years ago
Change local media attachments to perform heavy processing asynchronously (#13210) Fix #9106
4 years ago
Add API endpoint to list featured accounts (fixes #8315) (#8317)
5 years ago
Add bookmarks (#7107) * Add backend support for bookmarks Bookmarks behave like favourites, except they aren't shared with other users and do not have an associated counter. * Add spec for bookmark endpoints * Add front-end support for bookmarks * Introduce OAuth scopes for bookmarks * Add bookmarks to archive takeout * Fix migration * Coding style fixes * Fix rebase issue * Update bookmarked_statuses to latest UI changes * Update bookmark actions to properly reflect status changes in state * Add bookmarks item to single-column layout * Make active bookmarks red
4 years ago
Support min_id-based pagination in REST API (#8736) * Allow min_id pagination in Feed#get * Add min_id pagination to home and list timeline APIs * Add min_id pagination to account statuses, public and tag APIs * Remove unused stub in reports API * Use min_id pagination in notifications, favourites, and fix order * Fix HomeFeed#from_database not using paginate_by_id
5 years ago
Change admin UI for hashtags and add back whitelisted trends (#11490) Fix #271 Add back the `GET /api/v1/trends` API with the caveat that it does not return tags that have not been allowed to trend by the staff. When a hashtag begins to trend (internally) and that hashtag has not been previously reviewed by the staff, the staff is notified. The new admin UI for hashtags allows filtering hashtags by where they are used (e.g. in the profile directory), whether they have been reviewed or are pending reviewal, they show by how many people the hashtag is used in the directory, how many people used it today, how many statuses with it have been created today, and it allows fixing the name of the hashtag to make it more readable. The disallowed hashtags feature has been reworked. It is now controlled from the admin UI for hashtags instead of from the file `config/settings.yml`
4 years ago
Add API endpoint to list featured accounts (fixes #8315) (#8317)
5 years ago
Add timeline read markers API (#11762) Fix #4093
4 years ago
Fix #525 - Add instance information API
7 years ago
Fix #5104 - GET /api/v1/apps/verify_credentials to confirm app works (#5112)
6 years ago
Add more instance stats APIs (#6125) * Add GET /api/v1/instance/peers API to reveal known domains * Add GET /api/v1/instance/activity API * Make new APIs disableable, exclude private statuses from activity stats * Fix code style issue * Fix week timestamps
6 years ago
Account domain blocks (#2381) * Add <ostatus:conversation /> tag to Atom input/output Only uses ref attribute (not href) because href would be the alternate link that's always included also. Creates new conversation for every non-reply status. Carries over conversation for every reply. Keeps remote URIs verbatim, generates local URIs on the fly like the rest of them. * Conversation muting - prevents notifications that reference a conversation (including replies, favourites, reblogs) from being created. API endpoints /api/v1/statuses/:id/mute and /api/v1/statuses/:id/unmute Currently no way to tell when a status/conversation is muted, so the web UI only has a "disable notifications" button, doesn't work as a toggle * Display "Dismiss notifications" on all statuses in notifications column, not just own * Add "muted" as a boolean attribute on statuses JSON For now always false on contained reblogs, since it's only relevant for statuses returned from the notifications endpoint, which are not nested Remove "Disable notifications" from detailed status view, since it's only relevant in the notifications column * Up max class length * Remove pending test for conversation mute * Add tests, clean up * Rename to "mute conversation" and "unmute conversation" * Raise validation error when trying to mute/unmute status without conversation * Adding account domain blocks that filter notifications and public timelines * Add tests for domain blocks in notifications, public timelines Filter reblogs of blocked domains from home * Add API for listing and creating account domain blocks * API for creating/deleting domain blocks, tests for Status#ancestors and Status#descendants, filter domain blocks from them * Filter domains in streaming API * Update account_domain_block_spec.rb
7 years ago
Add profile directory to web UI (#11688) * Add profile directory to web UI * Add a line of bio to the directory
4 years ago
Add API for getting info about authenticated user: /api/v1/accounts/verify_credentials
7 years ago
Adding follow requests API
7 years ago
Add /api/v1/notifications/clear, non-existing link cards for statuses will now return empty hash instead of throwing a 404 error. When following, merge into timeline will filter statuses
7 years ago
Add POST /api/v1/notifications/:id/dismiss (#8905) POST /api/v1/notifications/dismiss was a mistake in #2251
5 years ago
Added API for single notification dismissal (#2251) * Added API backend for notification dismissal * Added render statement * Changed statement
7 years ago
Add /api/v1/notifications/clear, non-existing link cards for statuses will now return empty hash instead of throwing a 404 error. When following, merge into timeline will filter statuses
7 years ago
Adding unified streamable notifications
7 years ago
Spec coverage and refactor for the api/v1/accounts controllers (#3451)
7 years ago
Pinned statuses (#4675) * Pinned statuses * yarn manage:translations
6 years ago
Add REST API for creating an account (#9572) * Add REST API for creating an account The method is available to apps with a token obtained via the client credentials grant. It creates a user and account records, as well as an access token for the app that initiated the request. The user is unconfirmed, and an e-mail is sent as usual. The method returns the access token, which the app should save for later. The REST API is not available to users with unconfirmed accounts, so the app must be smart to wait for the user to click a link in their e-mail inbox. The method is rate-limited by IP to 5 requests per 30 minutes. * Redirect users back to app from confirmation if they were created with an app * Add tests * Return 403 on the method if registrations are not open * Require agreement param to be true in the API when creating an account
5 years ago
Spec coverage and refactor for the api/v1/accounts controllers (#3451)
7 years ago
Fix #5953 - Add GET /api/v1/accounts/:id/lists (#5983)
6 years ago
squashed identity proof updates (#10375)
5 years ago
Fix #52 - Add API versioning (v1)
7 years ago
API for blocking and unblocking
7 years ago
Mute button progress so far. WIP, doesn't entirely work correctly.
7 years ago
Fix #52 - Add API versioning (v1)
7 years ago
Public profile endorsements (accounts picked by profile owner) (#8146)
5 years ago
Add user notes on accounts (#14148) * Add UserNote model * Add UI for user notes * Put comment in relationships entity * Add API to create user notes * Copy user notes to new account when receiving a Move activity * Address some of the review remarks * Replace modal by inline edition * Please CodeClimate * Button design changes * Change design again * Cancel note edition when pressing Escape * Fixes * Tweak design again * Move “Add note” item, and allow users to add notes to themselves * Rename UserNote into AccountNote, rename “comment” Relationship attribute to “note”
3 years ago
Adding doorkeeper, adding a REST API POST /api/statuses Params: status (text contents), in_reply_to_id (optional) GET /api/statuses/:id POST /api/statuses/:id/reblog GET /api/accounts/:id GET /api/accounts/:id/following GET /api/accounts/:id/followers POST /api/accounts/:id/follow POST /api/accounts/:id/unfollow POST /api/follows Params: uri (e.g. user@domain) OAuth authentication is currently disabled, but the API can be used with HTTP Auth.
8 years ago
Lists (#5703) * Add structure for lists * Add list timeline streaming API * Add list APIs, bind list-account relation to follow relation * Add API for adding/removing accounts from lists * Add pagination to lists API * Add pagination to list accounts API * Adjust scopes for new APIs - Creating and modifying lists merely requires "write" scope - Fetching information about lists merely requires "read" scope * Add test for wrong user context on list timeline * Clean up tests
6 years ago
Add REST API for Web Push Notifications subscriptions (#7445) - POST /api/v1/push/subscription - PUT /api/v1/push/subscription - DELETE /api/v1/push/subscription - New OAuth scope: "push" (required for the above methods)
6 years ago
Add featured tags API (#11778) * Add featured tags API * Remove show and update, change scope, fix code style
4 years ago
Add polls (#10111) * Add polls Fix #1629 * Add tests * Fixes * Change API for creating polls * Use name instead of content for votes * Remove poll validation for remote polls * Add polls to public pages * When updating the poll, update options just in case they were changed * Fix public pages showing both poll and other media
5 years ago
Add REST API for Web Push Notifications subscriptions (#7445) - POST /api/v1/push/subscription - PUT /api/v1/push/subscription - DELETE /api/v1/push/subscription - New OAuth scope: "push" (required for the above methods)
6 years ago
Add GET /api/v1/push/subscription REST API (#7471) * Add Api::V1::Push::SubscriptionsController#show * Add to routes
6 years ago
Add REST API for Web Push Notifications subscriptions (#7445) - POST /api/v1/push/subscription - PUT /api/v1/push/subscription - DELETE /api/v1/push/subscription - New OAuth scope: "push" (required for the above methods)
6 years ago
Add moderation API (#9387) Fix #8580 Fix #7143
4 years ago
Adding doorkeeper, adding a REST API POST /api/statuses Params: status (text contents), in_reply_to_id (optional) GET /api/statuses/:id POST /api/statuses/:id/reblog GET /api/accounts/:id GET /api/accounts/:id/following GET /api/accounts/:id/followers POST /api/accounts/:id/follow POST /api/accounts/:id/unfollow POST /api/follows Params: uri (e.g. user@domain) OAuth authentication is currently disabled, but the API can be used with HTTP Auth.
8 years ago
Persist UI settings, add missing localizations for German
7 years ago
Add GET /api/v2/search which returns rich tag objects, adjust web UI (#7661)
6 years ago
Change local media attachments to perform heavy processing asynchronously (#13210) Fix #9106
4 years ago
Add GET /api/v2/search which returns rich tag objects, adjust web UI (#7661)
6 years ago
Persist UI settings, add missing localizations for German
7 years ago
Embed modal (#4748) * Embed modal * Proxy OEmbed requests from web UI
6 years ago
Web Push Notifications (#3243) * feat: Register push subscription * feat: Notify when mentioned * feat: Boost, favourite, reply, follow, follow request * feat: Notification interaction * feat: Handle change of public key * feat: Unsubscribe if things go wrong * feat: Do not send normal notifications if push is enabled * feat: Focus client if open * refactor: Move push logic to WebPushSubscription * feat: Better title and body * feat: Localize messages * chore: Fix lint errors * feat: Settings * refactor: Lazy load * fix: Check if push settings exist * feat: Device-based preferences * refactor: Simplify logic * refactor: Pull request feedback * refactor: Pull request feedback * refactor: Create /api/web/push_subscriptions endpoint * feat: Spec PushSubscriptionController * refactor: WebPushSubscription => Web::PushSubscription * feat: Spec Web::PushSubscription * feat: Display first media attachment * feat: Support direction * fix: Stuff broken while rebasing * refactor: Integration with session activations * refactor: Cleanup * refactor: Simplify implementation * feat: Set VAPID keys via environment * chore: Comments * fix: Crash when no alerts * fix: Set VAPID keys in testing environment * fix: Follow link * feat: Notification actions * fix: Delete previous subscription * chore: Temporary logs * refactor: Move migration to a later date * fix: Fetch the correct session activation and misc bugs * refactor: Move migration to a later date * fix: Remove follow request (no notifications) * feat: Send administrator contact to push service * feat: Set time-to-live * fix: Do not show sensitive images * fix: Reducer crash in error handling * feat: Add badge * chore: Fix lint error * fix: Checkbox label overlap * fix: Check for payload support * fix: Rename action "type" (crash in latest Chrome) * feat: Action to expand notification * fix: Lint errors * fix: Unescape notification body * fix: Do not allow boosting if the status is hidden * feat: Add VAPID keys to the production sample environment * fix: Strip HTML tags from status * refactor: Better error messages * refactor: Handle browser not implementing the VAPID protocol (Samsung Internet) * fix: Error when target_status is nil * fix: Handle lack of image * fix: Delete reference to invalid subscriptions * feat: Better error handling * fix: Unescape HTML characters after tags are striped * refactor: Simpify code * fix: Modify to work with #4091 * Sort strings alphabetically * i18n: Updated Polish translation it annoys me that it's not fully localized :P * refactor: Use current_session in PushSubscriptionController * fix: Rebase mistake * fix: Set cacheName to mastodon * refactor: Pull request feedback * refactor: Remove logging statements * chore(yarn): Fix conflicts with master * chore(yarn): Copy latest from master * chore(yarn): Readd offline-plugin * refactor: Use save! and update! * refactor: Send notifications async * fix: Allow retry when push fails * fix: Save track for failed pushes * fix: Minify sw.js * fix: Remove account_id from fabricator
6 years ago
Persist UI settings, add missing localizations for German
7 years ago
Refactoring Grape API methods into normal controllers & other things
8 years ago
Made some progress
8 years ago
Fix #385 - /web now loads a page
7 years ago
Fix #110 - Make web UI use browser history, change links in e-mails to link to that
7 years ago
Add public blocks to /about/blocks (#11298) * Add automatic blocklist display in /about/blocks Inspired by https://github.com/Gargron/mastodon.social-misc * Add admin option to set who can see instance blocks * Normalize locales files * Rename “Sandbox” to “Silence” for consistency * Disable /about/blocks when in whitelist mode * Optionally display rationale for domain blocks * Only display domain blocks that have user-facing limitations, and order them * Redesign table of blocked domains to better handle long domain names and rationales * Change domain blocks ordering now that rationales aren't displayed right away * Only show explanation for block severities actually in use * Reword instance block explanations and add disclaimer for public fetch mode
4 years ago
Fix #463 - Fetch and display previews of URLs using OpenGraph tags
7 years ago
Fix non-GET requests to / not being matched (#11704)
4 years ago
Initial commit
8 years ago
 
  1. # frozen_string_literal: true
  2. 

  3. require 'sidekiq_unique_jobs/web'
  4. require 'sidekiq-scheduler/web'
  5. 

  6. Sidekiq::Web.set :session_secret, Rails.application.secrets[:secret_key_base]
  7. 

  8. Rails.application.routes.draw do
  9.   root 'home#index'
  10. 

  11.   mount LetterOpenerWeb::Engine, at: 'letter_opener' if Rails.env.development?
  12. 

  13.   health_check_routes
  14. 

  15.   authenticate :user, lambda { |u| u.admin? } do
  16.     mount Sidekiq::Web, at: 'sidekiq', as: :sidekiq
  17.     mount PgHero::Engine, at: 'pghero', as: :pghero
  18.   end
  19. 

  20.   use_doorkeeper do
  21.     controllers authorizations: 'oauth/authorizations',
  22.                 authorized_applications: 'oauth/authorized_applications',
  23.                 tokens: 'oauth/tokens'
  24.   end
  25. 

  26.   get '.well-known/host-meta', to: 'well_known/host_meta#show', as: :host_meta, defaults: { format: 'xml' }
  27.   get '.well-known/nodeinfo', to: 'well_known/nodeinfo#index', as: :nodeinfo, defaults: { format: 'json' }
  28.   get '.well-known/webfinger', to: 'well_known/webfinger#show', as: :webfinger
  29.   get '.well-known/change-password', to: redirect('/auth/edit')
  30.   get '.well-known/keybase-proof-config', to: 'well_known/keybase_proof_config#show'
  31. 

  32.   get '/nodeinfo/2.0', to: 'well_known/nodeinfo#show', as: :nodeinfo_schema
  33. 

  34.   get 'manifest', to: 'manifests#show', defaults: { format: 'json' }
  35.   get 'intent', to: 'intents#show'
  36.   get 'custom.css', to: 'custom_css#show', as: :custom_css
  37. 

  38.   resource :instance_actor, path: 'actor', only: [:show] do
  39.     resource :inbox, only: [:create], module: :activitypub
  40.   end
  41. 

  42.   devise_scope :user do
  43.     get '/invite/:invite_code', to: 'auth/registrations#new', as: :public_invite
  44. 

  45.     namespace :auth do
  46.       resource :setup, only: [:show, :update], controller: :setup
  47.       resource :challenge, only: [:create], controller: :challenges
  48.     end
  49.   end
  50. 

  51.   devise_for :users, path: 'auth', controllers: {
  52.     omniauth_callbacks: 'auth/omniauth_callbacks',
  53.     sessions:           'auth/sessions',
  54.     registrations:      'auth/registrations',
  55.     passwords:          'auth/passwords',
  56.     confirmations:      'auth/confirmations',
  57.   }
  58. 

  59.   get '/users/:username', to: redirect('/@%{username}'), constraints: lambda { |req| req.format.nil? || req.format.html? }
  60.   get '/authorize_follow', to: redirect { |_, request| "/authorize_interaction?#{request.params.to_query}" }
  61. 

  62.   resources :accounts, path: 'users', only: [:show], param: :username do
  63.     get :remote_follow,  to: 'remote_follow#new'
  64.     post :remote_follow, to: 'remote_follow#create'
  65. 

  66.     resources :statuses, only: [:show] do
  67.       member do
  68.         get :activity
  69.         get :embed
  70.       end
  71. 

  72.       resources :replies, only: [:index], module: :activitypub
  73.     end
  74. 

  75.     resources :followers, only: [:index], controller: :follower_accounts
  76.     resources :following, only: [:index], controller: :following_accounts
  77.     resource :follow, only: [:create], controller: :account_follow
  78.     resource :unfollow, only: [:create], controller: :account_unfollow
  79. 

  80.     resource :outbox, only: [:show], module: :activitypub
  81.     resource :inbox, only: [:create], module: :activitypub
  82.     resource :claim, only: [:create], module: :activitypub
  83.     resources :collections, only: [:show], module: :activitypub
  84.   end
  85. 

  86.   resource :inbox, only: [:create], module: :activitypub
  87. 

  88.   get '/@:username', to: 'accounts#show', as: :short_account
  89.   get '/@:username/with_replies', to: 'accounts#show', as: :short_account_with_replies
  90.   get '/@:username/media', to: 'accounts#show', as: :short_account_media
  91.   get '/@:username/tagged/:tag', to: 'accounts#show', as: :short_account_tag
  92.   get '/@:account_username/:id', to: 'statuses#show', as: :short_account_status
  93.   get '/@:account_username/:id/embed', to: 'statuses#embed', as: :embed_short_account_status
  94. 

  95.   get  '/interact/:id', to: 'remote_interaction#new', as: :remote_interaction
  96.   post '/interact/:id', to: 'remote_interaction#create'
  97. 

  98.   get '/explore', to: 'directories#index', as: :explore
  99.   get '/explore/:id', to: 'directories#show', as: :explore_hashtag
  100. 

  101.   get '/settings', to: redirect('/settings/profile')
  102. 

  103.   namespace :settings do
  104.     resource :profile, only: [:show, :update] do
  105.       resources :pictures, only: :destroy
  106.     end
  107. 

  108.     get :preferences, to: redirect('/settings/preferences/appearance')
  109. 

  110.     namespace :preferences do
  111.       resource :appearance, only: [:show, :update], controller: :appearance
  112.       resource :notifications, only: [:show, :update]
  113.       resource :other, only: [:show, :update], controller: :other
  114.     end
  115. 

  116.     resource :import, only: [:show, :create]
  117.     resource :export, only: [:show, :create]
  118. 

  119.     namespace :exports, constraints: { format: :csv } do
  120.       resources :follows, only: :index, controller: :following_accounts
  121.       resources :blocks, only: :index, controller: :blocked_accounts
  122.       resources :mutes, only: :index, controller: :muted_accounts
  123.       resources :lists, only: :index, controller: :lists
  124.       resources :domain_blocks, only: :index, controller: :blocked_domains
  125.     end
  126. 

  127.     resource :two_factor_authentication, only: [:show, :create, :destroy]
  128. 

  129.     namespace :two_factor_authentication do
  130.       resources :recovery_codes, only: [:create]
  131.       resource :confirmation, only: [:new, :create]
  132.     end
  133. 

  134.     resources :identity_proofs, only: [:index, :new, :create, :destroy]
  135. 

  136.     resources :applications, except: [:edit] do
  137.       member do
  138.         post :regenerate
  139.       end
  140.     end
  141. 

  142.     resource :delete, only: [:show, :destroy]
  143.     resource :migration, only: [:show, :create]
  144. 

  145.     namespace :migration do
  146.       resource :redirect, only: [:new, :create, :destroy]
  147.     end
  148. 

  149.     resources :aliases, only: [:index, :create, :destroy]
  150.     resources :sessions, only: [:destroy]
  151.     resources :featured_tags, only: [:index, :create, :destroy]
  152.   end
  153. 

  154.   resources :media, only: [:show] do
  155.     get :player
  156.   end
  157. 

  158.   resources :tags,   only: [:show]
  159.   resources :emojis, only: [:show]
  160.   resources :invites, only: [:index, :create, :destroy]
  161.   resources :filters, except: [:show]
  162.   resource :relationships, only: [:show, :update]
  163. 

  164.   get '/public', to: 'public_timelines#show', as: :public_timeline
  165.   get '/media_proxy/:id/(*any)', to: 'media_proxy#show', as: :media_proxy
  166. 

  167.   resource :authorize_interaction, only: [:show, :create]
  168.   resource :share, only: [:show, :create]
  169. 

  170.   namespace :admin do
  171.     get '/dashboard', to: 'dashboard#index'
  172. 

  173.     resources :domain_allows, only: [:new, :create, :show, :destroy]
  174.     resources :domain_blocks, only: [:new, :create, :show, :destroy, :update] do
  175.       member do
  176.         get :edit
  177.       end
  178.     end
  179. 

  180.     resources :email_domain_blocks, only: [:index, :new, :create, :destroy]
  181.     resources :action_logs, only: [:index]
  182.     resources :warning_presets, except: [:new]
  183. 

  184.     resources :announcements, except: [:show] do
  185.       member do
  186.         post :publish
  187.         post :unpublish
  188.       end
  189.     end
  190. 

  191.     resource :settings, only: [:edit, :update]
  192.     resources :site_uploads, only: [:destroy]
  193. 

  194.     resources :invites, only: [:index, :create, :destroy] do
  195.       collection do
  196.         post :deactivate_all
  197.       end
  198.     end
  199. 

  200.     resources :relays, only: [:index, :new, :create, :destroy] do
  201.       member do
  202.         post :enable
  203.         post :disable
  204.       end
  205.     end
  206. 

  207.     resources :instances, only: [:index, :show], constraints: { id: /[^\/]+/ }
  208. 

  209.     resources :reports, only: [:index, :show] do
  210.       member do
  211.         post :assign_to_self
  212.         post :unassign
  213.         post :reopen
  214.         post :resolve
  215.       end
  216. 

  217.       resources :reported_statuses, only: [:create]
  218.     end
  219. 

  220.     resources :report_notes, only: [:create, :destroy]
  221. 

  222.     resources :accounts, only: [:index, :show] do
  223.       member do
  224.         post :enable
  225.         post :unsilence
  226.         post :unsuspend
  227.         post :redownload
  228.         post :remove_avatar
  229.         post :remove_header
  230.         post :memorialize
  231.         post :approve
  232.         post :reject
  233.       end
  234. 

  235.       resource :change_email, only: [:show, :update]
  236.       resource :reset, only: [:create]
  237.       resource :action, only: [:new, :create], controller: 'account_actions'
  238.       resources :statuses, only: [:index, :show, :create, :update, :destroy]
  239.       resources :relationships, only: [:index]
  240. 

  241.       resource :confirmation, only: [:create] do
  242.         collection do
  243.           post :resend
  244.         end
  245.       end
  246. 

  247.       resource :role, only: [] do
  248.         member do
  249.           post :promote
  250.           post :demote
  251.         end
  252.       end
  253.     end
  254. 

  255.     resources :pending_accounts, only: [:index] do
  256.       collection do
  257.         post :approve_all
  258.         post :reject_all
  259.         post :batch
  260.       end
  261.     end
  262. 

  263.     resources :users, only: [] do
  264.       resource :two_factor_authentication, only: [:destroy]
  265.     end
  266. 

  267.     resources :custom_emojis, only: [:index, :new, :create] do
  268.       collection do
  269.         post :batch
  270.       end
  271.     end
  272. 

  273.     resources :account_moderation_notes, only: [:create, :destroy]
  274. 

  275.     resources :tags, only: [:index, :show, :update] do
  276.       collection do
  277.         post :approve_all
  278.         post :reject_all
  279.         post :batch
  280.       end
  281.     end
  282.   end
  283. 

  284.   get '/admin', to: redirect('/admin/dashboard', status: 302)
  285. 

  286.   namespace :api do
  287.     # OEmbed
  288.     get '/oembed', to: 'oembed#show', as: :oembed
  289. 

  290.     # Identity proofs
  291.     get :proofs, to: 'proofs#index'
  292. 

  293.     # JSON / REST API
  294.     namespace :v1 do
  295.       resources :statuses, only: [:create, :show, :destroy] do
  296.         scope module: :statuses do
  297.           resources :reblogged_by, controller: :reblogged_by_accounts, only: :index
  298.           resources :favourited_by, controller: :favourited_by_accounts, only: :index
  299.           resource :reblog, only: :create
  300.           post :unreblog, to: 'reblogs#destroy'
  301. 

  302.           resource :favourite, only: :create
  303.           post :unfavourite, to: 'favourites#destroy'
  304. 

  305.           resource :bookmark, only: :create
  306.           post :unbookmark, to: 'bookmarks#destroy'
  307. 

  308.           resource :mute, only: :create
  309.           post :unmute, to: 'mutes#destroy'
  310. 

  311.           resource :pin, only: :create
  312.           post :unpin, to: 'pins#destroy'
  313.         end
  314. 

  315.         member do
  316.           get :context
  317.         end
  318.       end
  319. 

  320.       namespace :timelines do
  321.         resource :home, only: :show, controller: :home
  322.         resource :public, only: :show, controller: :public
  323.         resources :tag, only: :show
  324.         resources :list, only: :show
  325.       end
  326. 

  327.       resources :streaming, only: [:index]
  328.       resources :custom_emojis, only: [:index]
  329.       resources :suggestions, only: [:index, :destroy]
  330.       resources :scheduled_statuses, only: [:index, :show, :update, :destroy]
  331.       resources :preferences, only: [:index]
  332. 

  333.       resources :announcements, only: [:index] do
  334.         scope module: :announcements do
  335.           resources :reactions, only: [:update, :destroy]
  336.         end
  337. 

  338.         member do
  339.           post :dismiss
  340.         end
  341.       end
  342. 

  343.       # namespace :crypto do
  344.       #   resources :deliveries, only: :create
  345. 

  346.       #   namespace :keys do
  347.       #     resource :upload, only: [:create]
  348.       #     resource :query,  only: [:create]
  349.       #     resource :claim,  only: [:create]
  350.       #     resource :count,  only: [:show]
  351.       #   end
  352. 

  353.       #   resources :encrypted_messages, only: [:index] do
  354.       #     collection do
  355.       #       post :clear
  356.       #     end
  357.       #   end
  358.       # end
  359. 

  360.       resources :conversations, only: [:index, :destroy] do
  361.         member do
  362.           post :read
  363.         end
  364.       end
  365. 

  366.       resources :media,        only: [:create, :update, :show]
  367.       resources :blocks,       only: [:index]
  368.       resources :mutes,        only: [:index]
  369.       resources :favourites,   only: [:index]
  370.       resources :bookmarks,    only: [:index]
  371.       resources :reports,      only: [:create]
  372.       resources :trends,       only: [:index]
  373.       resources :filters,      only: [:index, :create, :show, :update, :destroy]
  374.       resources :endorsements, only: [:index]
  375.       resources :markers,      only: [:index, :create]
  376. 

  377.       namespace :apps do
  378.         get :verify_credentials, to: 'credentials#show'
  379.       end
  380. 

  381.       resources :apps, only: [:create]
  382. 

  383.       resource :instance, only: [:show] do
  384.         resources :peers, only: [:index], controller: 'instances/peers'
  385.         resource :activity, only: [:show], controller: 'instances/activity'
  386.       end
  387. 

  388.       resource :domain_blocks, only: [:show, :create, :destroy]
  389.       resource :directory, only: [:show]
  390. 

  391.       resources :follow_requests, only: [:index] do
  392.         member do
  393.           post :authorize
  394.           post :reject
  395.         end
  396.       end
  397. 

  398.       resources :notifications, only: [:index, :show] do
  399.         collection do
  400.           post :clear
  401.         end
  402. 

  403.         member do
  404.           post :dismiss
  405.         end
  406.       end
  407. 

  408.       namespace :accounts do
  409.         get :verify_credentials, to: 'credentials#show'
  410.         patch :update_credentials, to: 'credentials#update'
  411.         resource :search, only: :show, controller: :search
  412.         resources :relationships, only: :index
  413.       end
  414. 

  415.       resources :accounts, only: [:create, :show] do
  416.         resources :statuses, only: :index, controller: 'accounts/statuses'
  417.         resources :followers, only: :index, controller: 'accounts/follower_accounts'
  418.         resources :following, only: :index, controller: 'accounts/following_accounts'
  419.         resources :lists, only: :index, controller: 'accounts/lists'
  420.         resources :identity_proofs, only: :index, controller: 'accounts/identity_proofs'
  421. 

  422.         member do
  423.           post :follow
  424.           post :unfollow
  425.           post :block
  426.           post :unblock
  427.           post :mute
  428.           post :unmute
  429.         end
  430. 

  431.         resource :pin, only: :create, controller: 'accounts/pins'
  432.         post :unpin, to: 'accounts/pins#destroy'
  433.         resource :note, only: :create, controller: 'accounts/notes'
  434.       end
  435. 

  436.       resources :lists, only: [:index, :create, :show, :update, :destroy] do
  437.         resource :accounts, only: [:show, :create, :destroy], controller: 'lists/accounts'
  438.       end
  439. 

  440.       namespace :featured_tags do
  441.         get :suggestions, to: 'suggestions#index'
  442.       end
  443. 

  444.       resources :featured_tags, only: [:index, :create, :destroy]
  445. 

  446.       resources :polls, only: [:create, :show] do
  447.         resources :votes, only: :create, controller: 'polls/votes'
  448.       end
  449. 

  450.       namespace :push do
  451.         resource :subscription, only: [:create, :show, :update, :destroy]
  452.       end
  453. 

  454.       namespace :admin do
  455.         resources :accounts, only: [:index, :show] do
  456.           member do
  457.             post :enable
  458.             post :unsilence
  459.             post :unsuspend
  460.             post :approve
  461.             post :reject
  462.           end
  463. 

  464.           resource :action, only: [:create], controller: 'account_actions'
  465.         end
  466. 

  467.         resources :reports, only: [:index, :show] do
  468.           member do
  469.             post :assign_to_self
  470.             post :unassign
  471.             post :reopen
  472.             post :resolve
  473.           end
  474.         end
  475.       end
  476.     end
  477. 

  478.     namespace :v2 do
  479.       resources :media, only: [:create]
  480.       get '/search', to: 'search#index', as: :search
  481.     end
  482. 

  483.     namespace :web do
  484.       resource :settings, only: [:update]
  485.       resource :embed, only: [:create]
  486.       resources :push_subscriptions, only: [:create] do
  487.         member do
  488.           put :update
  489.         end
  490.       end
  491.     end
  492.   end
  493. 

  494.   get '/web/(*any)', to: 'home#index', as: :web
  495. 

  496.   get '/about',        to: 'about#show'
  497.   get '/about/more',   to: 'about#more'
  498.   get '/terms',        to: 'about#terms'
  499. 

  500.   match '/', via: [:post, :put, :patch, :delete], to: 'application#raise_not_found', format: false
  501.   match '*unmatched_route', via: :all, to: 'application#raise_not_found', format: false
  502. end