328 Commits (0442fcdbc88c2a77b1216c38d2fb5fe11bec334d)

Author SHA1 Message Date
  Eugen Rochko 1db4117030
Change preferences page into appearance, notifications, and other (#10977) 5 years ago
  Hinaloe b793722d7d Fix undefined method error (#10868) 5 years ago
  mayaeh afb17b7045 Fix undefined method error. (#10867) 5 years ago
  ThibG 0e9b8be18a Improve rate limiting (#10860) 5 years ago
  Thibaut Girka 2c2f649200 Fix CSP when PAPERCLIP_ROOT_URL is set to a different host 5 years ago
  Thibaut Girka 58720aa2bd Fix CSP when dealing with S3 hosts 5 years ago
  dependabot[bot] ecbea2e3c6 Bump rack-attack from 5.4.2 to 6.0.0 (#10599) 5 years ago
  Eugen Rochko 8a0d677cde
Fix stoplight logging to stderr separate from Rails logger (#10624) 5 years ago
  Eugen Rochko 0e8819f0e8
Add rate limit for media proxy requests (#10490) 5 years ago
  Eugen Rochko 11fe293e1b
Remove unused ActivityPub `@context` values depending on response (#10378) 5 years ago
  Eric 7169928f96 cas_options :validate_url should be :service_validate_url (#10328) 5 years ago
  Eugen Rochko 99fa1ce93d
Add tight rate-limit for API deletions (#10042) 5 years ago
  Eugen Rochko 016ad37bc8
Fix URL linkifier grabbing full-width spaces and quotations (#9997) 5 years ago
  Eugen Rochko 4699cf853c
Add timeouts for S3 (#9842) 5 years ago
  Moritz Heiber ecf40d09ed Disable Same-Site cookie implementation to fix SSO issues on WebKit browsers (#9819) 5 years ago
  Nolan Lawson f05eb67081 Enable immutable caching for S3 objects (#9722) 5 years ago
  Eugen Rochko 5d2fc6de32
Add REST API for creating an account (#9572) 5 years ago
  Eugen Rochko 240c122767
Skip mailer job retries when a record no longer exists (#9590) 5 years ago
  Rey Tucker 35b2ba5030 Remove form_action from CSP 6 years ago
  ThibG 3f12c07ff5 Use same CORS policy for /@:username and /users/:username (#9485) 6 years ago
  ThibG 84e5ed43e7 Preload common JSON-LD contexts (#9412) 6 years ago
  Thibaut Girka 1283e112b9 Tighten CSP a bit 6 years ago
  Ben Lubar 13e049d772 Allow cross-origin requests to /.well-known/* URLs. (#9083) 6 years ago
  Eugen Rochko a38a452481
Add unread indicator to conversations (#9009) 6 years ago
  ThibG 8ab081ec32 Add manifest_src to CSP, add blob to connect_src (#8967) 6 years ago
  Eugen Rochko edc7f895be
Fix CSP headers blocking media and development environment (#8962) 6 years ago
  ThibG 2d27c11061 Set Content-Security-Policy rules through RoR's config (#8957) 6 years ago
  Sascha b2a57a5d6f add ffmpeg initializer (#8855) 6 years ago
  ashleyhull-versent f194857ac9 rubocop issues - Cleaning up (#8912) 6 years ago
  aus-social 0a4739c732 lint pass 2 (#8878) 6 years ago
  aus-social 1f98eae1cf Lint pass (#8876) 6 years ago
  Yamagishi Kazutoshi 65f04e6046 Fix that Rails.cache information could not be sent via StatsD (#8831) 6 years ago
  Eugen Rochko f4d549d300
Redesign forms, verify link ownership with rel="me" (#8703) 6 years ago
  luzpaz 40dd19be37 Misc. typos (#8694) 6 years ago
  Sorin Davidoi 6f3d934bc1 feat(cookies): Use the same-site attribute to lax (#8626) 6 years ago
  Rey Tucker 40d04a3209 Add manifest_src to CSP 6 years ago
  Thibaut Girka c4b3479173 Fix CSP with S3/SWIFT hosts 6 years ago
  Thibaut Girka 3fe5029fbe Adjust CSP to fix image resizing 6 years ago
  M Somerville 2bba6e582d Rename S3_CLOUDFRONT_HOST to S3_ALIAS_HOST. (#8423) 6 years ago
  Thibaut Girka 0ddf439999 Only apply CSP in production mode 6 years ago
  Thibaut Girka 48db3b3c99 Tighten CSP while allowing CDN hosts 6 years ago
  Thibaut Girka e7a72439f1 Move CSP headers to the appropriate Rails configuration 6 years ago
  ThibG f06fa09962 Revert to using Paperclip's filesystem storage, and fix dangling records in remove_remote (#8339) 6 years ago
  Immae b0f4fe456b Add ldap search filter (#8151) 6 years ago
  Eugen Rochko fcb527cdd6 Add post-deployment migration system (#8182) 6 years ago
  Eugen Rochko 018a9e4e7f
Add post-deployment migration system (#8182) 6 years ago
  Thibaut Girka 03afc365d5 Introduce OAuth scopes for bookmarks 6 years ago
  Thibaut Girka 90b492143d Introduce OAuth scopes for bookmarks 6 years ago
  abcang 69bf116345 Add secure option to additional cookie (#8069) 6 years ago
  Eugen Rochko 1f6ed4f86a
Add more granular OAuth scopes (#7929) 6 years ago