1. 28 Feb, 2020 1 commit
  2. 02 Oct, 2019 2 commits
  3. 27 Sep, 2019 1 commit
  4. 18 Aug, 2019 1 commit
  5. 17 Aug, 2019 1 commit
  6. 11 Aug, 2019 1 commit
  7. 21 Jul, 2019 1 commit
  8. 11 Jul, 2019 1 commit
    • Eugen Rochko's avatar
      Add ActivityPub secure mode (#11269) · 5bf67ca9
      Eugen Rochko authored
      * Add HTTP signature requirement for served ActivityPub resources
      
      * Change `SECURE_MODE` to `AUTHORIZED_FETCH`
      
      * Add 'Signature' to 'Vary' header and improve code style
      
      * Improve code style by adding `public_fetch_mode?` method
      5bf67ca9
  9. 08 Jul, 2019 1 commit
  10. 07 Jul, 2019 1 commit
  11. 05 Jun, 2019 1 commit
    • ThibG's avatar
      Cleanup various controllers (#10972) · cac91105
      ThibG authored
      * Remove skip_session! as it is not supported in Rails 5
      
      * Minor cleanup in StreamEntriesController
      
      * Remove redundant mark_cacheable! calls
      cac91105
  12. 17 Mar, 2019 1 commit
    • Ben Lubar's avatar
      Reduce server load caused by anonymous viewing. (#9059) · c3d15945
      Ben Lubar authored
      Do not start a session if the current user is not logged in for public-facing pages.
      
      Mark pages that don't care about sessions as publicly cacheable.
      
      Keep the max age as 0 so proxies and browsers will still try to retrieve an updated version but can still fall back to the stale version if the site is down or too slow.
      
      Fixes #9035.
      c3d15945
  13. 14 Mar, 2019 1 commit
  14. 13 Mar, 2019 1 commit
  15. 05 Feb, 2019 1 commit
  16. 04 Feb, 2019 2 commits
  17. 19 Aug, 2018 1 commit
  18. 09 Aug, 2018 1 commit
  19. 01 Aug, 2018 1 commit
  20. 30 Jul, 2018 1 commit
  21. 25 Apr, 2018 1 commit
  22. 26 Feb, 2018 1 commit
    • Ian McCowan's avatar
      Fix prev/next links on public profile page (#6497) · c33931b6
      Ian McCowan authored
      * Fix prev/next links on public profile page
      
      * Don't make pagination urls if no available statuses
      
      * Fix empty check method
      
      * Put left chevron before prev page link
      
      * Add scope for pagination "starting at" a given id
      
      * Status pagination try 2:
      
      s/prev/older and s/next/newer
      "older" on left, "newer" on right
      Use new scope for "newer" link
      Extract magic 20 page size to constant
      Remove max_id from feed pagination as it's not respected
      
      * Reinstate max_id for accounts atom stream
      
      * normalize
      c33931b6
  23. 04 Jan, 2018 1 commit
  24. 07 Oct, 2017 1 commit
  25. 06 Sep, 2017 1 commit
    • Eugen Rochko's avatar
      Switch to static URIs, new URI format in both protocols for new statuses (#4815) · e7adbf57
      Eugen Rochko authored
      * Decouple Status#local? from uri being nil
      
      * Replace on-the-fly URI generation with stored URIs
      
      - Generate URI in after_save hook for local statuses
      - Use static value in TagManager when available, fallback to tag format
      - Make TagManager use ActivityPub::TagManager to understand new format
      - Adjust tests
      
      * Use other heuristic for locality of old statuses, do not perform long query
      
      * Exclude tombstone stream entries from Atom feed
      
      * Prevent nil statuses from landing in Pubsubhubbub::DistributionWorker
      
      * Fix URI not being saved (#4818)
      
      * Add more specs for Status
      
      * Save generated uri immediately
      
      and also fix method order to minimize diff.
      
      * Fix alternate HTML URL in Atom
      
      * Fix tests
      
      * Remove not-null constraint from statuses migration to speed it up
      e7adbf57
  26. 04 Sep, 2017 1 commit
  27. 25 Aug, 2017 1 commit
  28. 24 Aug, 2017 1 commit
  29. 16 Aug, 2017 1 commit
    • Eugen Rochko's avatar
      Redesign public profiles (#4608) · ca7ea1ab
      Eugen Rochko authored
      * Redesign public profiles
      
      * Responsive design
      
      * Change public profile status filtering defaults and add options
      
      - No longer displays private/direct toots even if you are permitted access
      - By default omits replies
      - "With replies" option
      - "Media only" option
      
      * Redesign account grid cards
      
      * Fix style issues
      ca7ea1ab
  30. 14 Aug, 2017 1 commit
  31. 18 Jul, 2017 2 commits
  32. 15 Jul, 2017 1 commit
    • Eugen Rochko's avatar
      Improve ActivityPub representations (#3844) · 8c45cd0e
      Eugen Rochko authored
      * Improve webfinger templates and make tests more flexible
      
      * Clean up AS2 representation of actor
      
      * Refactor outbox
      
      * Create activities representation
      
      * Add representations of followers/following collections, do not redirect /users/:username route if format is empty
      
      * Remove unused translations
      
      * ActivityPub endpoint for single statuses, add ActivityPub::TagManager for better
      URL/URI generation
      
      * Add ActivityPub::TagManager#to
      
      * Represent all attachments as Document instead of Image/Video specifically
      (Because for remote ones we may not know for sure)
      
      Add mentions and hashtags representation to AP notes
      
      * Add AP-resolvable hashtag URIs
      
      * Use ActiveModelSerializers for ActivityPub
      
      * Clean up unused translations
      
      * Separate route for object and activity
      
      * Adjust cc/to matrices
      
      * Add to/cc to activities, ensure announce activity embeds target status and
      not the wrapper status, add "id" to all collections
      8c45cd0e
  33. 14 Jul, 2017 1 commit
    • Eugen Rochko's avatar
      HTTP signatures (#4146) · 1618b68b
      Eugen Rochko authored
      * Add Request class with HTTP signature generator
      
      Spec: https://tools.ietf.org/html/draft-cavage-http-signatures-06
      
      * Add HTTP signature verification concern
      
      * Add test for SignatureVerification concern
      
      * Add basic test for Request class
      
      * Make PuSH subscribe/unsubscribe requests use new Request class
      
      Accidentally fix lease_seconds not being set and sent properly, and
      change the new minimum subscription duration to 1 day
      
      * Make all PuSH workers use new Request class
      
      * Make Salmon sender use new Request class
      
      * Make FetchLinkService use new Request class
      
      * Make FetchAtomService use the new Request class
      
      * Make Remotable use the new Request class
      
      * Make ResolveRemoteAccountService use the new Request class
      
      * Add more tests
      
      * Allow +-30 seconds window for signed request to remain valid
      
      * Disable time window validation for signed requests, restore 7 days
      as PuSH subscription duration (which was previous default due to a bug)
      1618b68b
  34. 26 May, 2017 1 commit
  35. 23 May, 2017 1 commit
  36. 16 May, 2017 1 commit
  37. 25 Apr, 2017 1 commit