summaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2024-09-03Include list id in StatusViewmarcin mikołajczak
Signed-off-by: marcin mikołajczak <git@mkljczk.pl>
2024-09-02Merge branch 'scrubbers-allow-mention-hashtag' into 'develop'marcin mikołajczak
scrubbers/default: Allow "mention hashtag" classes used by Mastodon See merge request pleroma/pleroma!4245
2024-09-02scrubbers/default: Allow "mention hashtag" classes used by Mastodonmarcin mikołajczak
Signed-off-by: marcin mikołajczak <git@mkljczk.pl>
2024-09-01Merge branch 'oauth-app-spam' into 'develop'feld
Fix OAuth app spam See merge request pleroma/pleroma!4244
2024-09-01Merge branch 'drop-unknown-deletes' into 'develop'feld
Drop unwanted activities from unknown actors See merge request pleroma/pleroma!4236
2024-09-01Support OAuth App updating the website URLMark Felder
2024-09-01Test that app scopes can be updatedMark Felder
2024-09-01Prevent OAuth App flow from creating duplicate entriesMark Felder
2024-08-30Update changelogMark Felder
2024-08-30InboxGuardPlug: Add early rejection of unknown activity typesMark Felder
2024-08-30Add recognized activity types to a constant and use it in the testMark Felder
2024-08-30Update allowed activity types from strangersfeld
Move is emitted from the old account EmojiReact is ~ Like Announced TBD
2024-08-29Update changelogMark Felder
2024-08-29Test more types we do not want to receive from strangersMark Felder
2024-08-29Fix test title to be more specific as it has a broader but incorrect meaningMark Felder
2024-08-29Remove unnecessary error match in ReceiverWorkerMark Felder
2024-08-29Change relay inbox response when not federating to a 403 for consistencyMark Felder
2024-08-29Convert to an Plug called InboxGuardMark Felder
2024-08-29FormattingMark Felder
2024-08-29Switch test to the inboxMark Felder
2024-08-29Use Pleroma.Object.Containment.get_actor/1 to reliably find the actor of an ↵feld
incoming activity or object
2024-08-29Move the check to the inboxMark Felder
2024-08-29Revert unintentional changeMark Felder
2024-08-29Drop incoming Delete activities from unknown actorsMark Felder
2024-08-29Merge branch 'todo-fixes' into 'develop'feld
Clean up Elixir 1.13 TODOs See merge request pleroma/pleroma!4233
2024-08-29Merge remote-tracking branch 'origin/develop' into todo-fixesMark Felder
2024-08-29Merge branch 'pleroma-http-stream' into 'develop'feld
Pleroma.HTTP: support streaming response bodies See merge request pleroma/pleroma!4239
2024-08-29Rich Media: add stream byte counting as an extra protection against ↵Mark Felder
malicious URLs
2024-08-28ChangelogMark Felder
2024-08-28Update comments, remove solved TODOMark Felder
2024-08-28Add an AdapterHelper for Finch so we can support streaming request bodiesMark Felder
2024-08-28Merge branch 'user-refresh-oban-tests' into 'develop'feld
ReceiverWorker: tests, improvements See merge request pleroma/pleroma!4241
2024-08-28Move user active check into Federator.perform/1Mark Felder
2024-08-28Merge branch 'docs-fix' into 'develop'marcin mikołajczak
Correct response in AdminAPI docs See merge request pleroma/pleroma!4240
2024-08-28Changelog updateMark Felder
2024-08-28More error annotationsMark Felder
2024-08-28Add back one of the duplicate checks to fix a test, document where it comes fromMark Felder
2024-08-28:validate_object is not a real error returned from anywhereMark Felder
2024-08-28Annotate error casesMark Felder
2024-08-28ReceiverWorker job canceled due to deleted objectMark Felder
2024-08-28Cancel ReceiverWorker jobs if the user account has been disabled / deactivatedMark Felder
2024-08-28Add test for origin containment failuresMark Felder
2024-08-28ChangelogMark Felder
2024-08-28Simplify test, move data into a json fixtureMark Felder
By removing the inReplyTo, tags, and cc we can simplify the test and it still passes signature validation
2024-08-28Cancel if the User fetch resulted in a 410Mark Felder
2024-08-28Add test confirming cancellation for activity by a deleted userMark Felder
2024-08-28ReceiverWorker: cancel job if user fetch is forbiddenMark Felder
An instance block with authenticated fetch being required can cause this as we couldn't get the user to find their public key to verify the signature. Commonly observed if someone boosts/Announces a post from an instance that blocked you.
2024-08-28Correct response in AdminAPI docsmarcin mikołajczak
Signed-off-by: marcin mikołajczak <git@mkljczk.pl>
2024-08-27This error is not returned by TeslaMark Felder
Upstream has a bug filed for this as they aren't handling this error internally, so it was raising
2024-08-27Fix incorrect identifier for the with statementMark Felder
generated by cgit v1.2.3 (git 2.25.1) at 2025-07-18 20:08:02 +0000