Eugen
0d83569899
Fix cross-origin integrity ( #1871 )
See <https://glitch.social/users/bea/updates/434 >
7 years ago
Joachim Viide
ef879a8839
Send initial state in a <script type="application/json"> tag ( #1806 )
7 years ago
maxypy
a6807201d2
Implementing Subresource Integrity ( #1729 )
* Add sprockets-rails to Gemfile
* Add sprockets-rails to Gemfile.lock
* Update show.html.haml
* Update index.html.haml
* Update admin.html.haml
* Update auth.html.haml
* Update embedded.html.haml
* Update public.html.haml
7 years ago
Eugen Rochko
ccb8ac8573
Make the streaming API also handle websockets (because trying to get the browser EventSource interface to
work flawlessly was a nightmare). WARNING: This commit makes the web UI connect to the streaming API instead
of ActionCable like before. This means that if you are upgrading, you should set that up beforehand.
7 years ago
Eugen Rochko
4a2ee43e80
Fix #457 - escape JSON in INITIAL_STATE (this bug only ever allowed a user to xss themselves rather than anyone else)
7 years ago
Eugen Rochko
75f80bef10
Persist UI settings, add missing localizations for German
7 years ago
Eugen Rochko
23ebf60b95
Improve initialState loading
7 years ago
Eugen Rochko
e09d3a2c66
Fix #249 - use window.location hack to let people login from sandboxed iOS homescreen
8 years ago
Eugen Rochko
6de079a5af
Removing external hub completely, fix #333 fixing digit-only hashtags,
removing web app capability from non-webapp pages
8 years ago
Eugen Rochko
db6df6ddb3
Only load JS on homepage, no other page uses it
8 years ago
Eugen Rochko
337462aa5e
Re-organizing components to be more modular, adding loading bars
8 years ago
Eugen Rochko
2e7aac793a
Adding sense of self to the UI, cleaning up routing, adding third (detail) column
8 years ago
Eugen Rochko
92afd29650
The frontend will now be an OAuth app, auto-authorized. The frontend will use an access token for API requests
Adding better errors for the API controllers, posting a simple status works from the frontend now
8 years ago
Eugen Rochko
49520d6e62
Adding React.js, Redux, revamping dashboard
8 years ago
Eugen Rochko
5764d52b04
Fix Sidekiq pooling issues. Remove API docs from homepage, replace with
a basic home timeline
8 years ago
Eugen Rochko
f14f462eaf
Adding Turbolinks, adding status posting form on homepage
8 years ago
Eugen Rochko
1aa477ac2f
Customized more doorkeeper views, only logged in users can create oauth apps
8 years ago
Eugen Rochko
aab9f57e36
Adding config for puma, dashboard layout, fixing some queries
8 years ago
Eugen Rochko
3824c58853
Adding GNU Public license, adding home timeline, reblog/favourite counters
8 years ago
Eugen Rochko
6045b6cb18
Customizing devise views and controllers
8 years ago
Eugen Rochko
709c6685a9
Made some progress
8 years ago