nocebo/diaspora
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
20625 commits 4 branches 0 tags 121 MiB
Commit graph

1477 commits

Author SHA1 Message Date
Dennis Schubert
22ac0872bd
Merge branch 'next-minor' into develop 2022-04-27 20:37:49 +02:00
Jonne Haß
43ee2dbb50 Do not allow to mass assign OTP fields on user edit page 2022-04-27 19:48:42 +02:00
Jonne Haß
1cfe0037f9 Do not allow the user to mass assign their own password alongside other 
parameters

Much thanks to Breno Vitório (@brenu) for the report!
 2022-04-27 13:44:48 +02:00
Benjamin Neff
36778dbeac
Remove /user/auth_token route, this was a leftover from the chat 
Also remove authentication_token from database
 2022-02-27 23:06:24 +01:00
Dennis Schubert
0810fa77e9
Remove special-case for diaspora-handle lookups in people controller. 
Thss partly reverts a475d5fb62. The special case here was only ever used for the chat, which no longer exists.
 2021-07-04 22:10:20 +02:00
Benjamin Neff
d27eefeb34
Merge branch 'next-minor' into develop 2021-06-30 23:27:57 +02:00
Benjamin Neff
2f29bb3035
Bump ruby-oembed 2021-06-28 01:34:25 +02:00
Thorsten Claus
61de6e117d 8192 drop relay example and implementation 2021-05-12 23:23:46 +02:00
Jonne Haß
5f00b4a4e6 Merge branch 'next-minor' into develop 2021-04-11 17:13:46 +02:00
Gayathrir1666
ef9e764f7a Add scrollbar to aspect dropdowns 
closes #8213
closes #7696

Co-authored-by: Hank Grabowski <hankgrabowski@gmail.com>
Co-authored-by: Thorsten Claus <thorstenclaus@web.de>
 2021-04-11 17:13:25 +02:00
Jonne Haß
cc5fca99be Fixup rubocop warnings from factory_bot introduction 2021-04-11 01:59:47 +02:00
Ntavranis Serafeim
671e8476ba Update factory_girl to factory_bot 2021-04-11 01:51:38 +02:00
Jonne Haß
0aba20f85c OpenID Connect: ensure consistent issuer URL 
root_url does not know the right protocol in all contexts,
some clients are strict when validating this.
 2020-10-24 22:30:43 +02:00
Jonne Haß
2d28ddc1ef Add API route to (un)block a user 2020-03-20 12:38:27 +01:00
Benjamin Neff
4139ae2549
Merge branch 'next-minor' into develop 2020-02-12 00:13:19 +01:00
Dennis Schubert
e40a07f204
Replace be_success with be_successful in specs. 
be_success is deprecated and will be removed in Rails 6.
 2020-02-11 23:53:14 +01:00
Jonne Haß
0935451cd8 Return a default token_endpoint_auth_method when the client gives none in its OpenID Connect registration request 
Since we announce it in the supported metadata, some clients expect to be told what to use and don't fallback to the spec standard of
client_secret_basic on their own.
 2020-01-24 11:02:02 +01:00
Jonne Haß
39c863ead9 Merge branch 'develop' into api 2020-01-21 23:35:01 +01:00
Dennis Schubert
862fa38f8b
Remove the JSXC/Prosody integration. 
As per discussion on https://discourse.diasporafoundation.org/t/removing-diaspora-s-current-chat-integration/2718, nobody raised serious concerns or objections. Given future plans, we do not think having an unfinished implementation of something that likely will not get finished in the current form is worth it. So let's get rid of it.
 2019-10-18 23:14:14 +02:00
Benjamin Neff
b42c9896bc
Migrate pending profile photos and fix upload to unpend profile photos 
fixes #8043

closes #8044
 2019-07-04 02:29:17 +02:00
flaburgan
4feab5219e
Use a partial to share code between mobile and desktop, add the new route to the RegistrationController, drop flash message for closed registrations 2019-05-12 00:25:36 +02:00
alebor-5
469983a623
Improve communication about signing up on closed pods 
fixes #7767
 2019-05-12 00:25:08 +02:00
Benjamin Neff
54fd4846c0
Use password to disable 2FA instead of a token 
Using token doesn't make much sense when you can generate new tokens
right below.

closes #8006
 2019-04-30 22:51:51 +02:00
Benjamin Neff
607659939d
Enable paranoid mode for devise 
fixes #8001

closes #8003
 2019-04-30 00:21:00 +02:00
lislis
9d5b981809 Two factor authentication (#7751) 2019-04-28 23:24:40 +02:00
Hank Grabowski
e127502be5 API Branch Final Cleanup Before PR 2018-12-30 22:33:04 +01:00
Hank Grabowski
9c730fc0f3 OpenID Scopes and Security updates 2018-12-30 22:33:04 +01:00
Hank Grabowski
16bf5d8130 Add Poll Voting Method to Interactions Endpoint 2018-12-30 22:33:04 +01:00
Hank Grabowski
7ae36de2cf Tags API Endpoint complete with full tests 2018-12-30 22:33:04 +01:00
Benjamin Neff
6fb1e1f524
Bump jwt 2018-11-17 21:05:42 +01:00
Benjamin Neff
de5e22a543
Bump faraday 2018-11-17 21:04:37 +01:00
Benjamin Neff
fc6893d4fc
Remove facebook integration 
Facebook removed the API and facebook integration is broken now, so lets
remove it.

closes #7874
 2018-10-08 02:50:25 +02:00
Benjamin Neff
44452749bc
Don't depend on the database content when loading the tests 
closes #7872
 2018-09-30 21:44:44 +02:00
Benjamin Neff
cd30a2814d
Bump json-jwt and openid_connect 
Fixes CVE-2018-1000539
 2018-09-05 03:18:59 +02:00
cmrd Senya
6f812a5b8f
Add LinksController 
LinksController redirects requests for provided diaspora:// links to
respective entities urls.
 2018-07-11 01:24:28 +02:00
Benjamin Neff
b8094544a0
Bump faraday 2018-04-12 02:41:54 +02:00
Benjamin Neff
686310fb8e
Simplify /podmin redirect 
Some podmins were confuse how they can disable this redirect and I think
the rule with two users can actually be a little confusing. I think the
main goal of this page to give the podmin a little start and I think
after they configured everything, the pod works and they found the link
to the wiki to make themself an admin, it is OK to remove the redirect.

Also it's bad for single-user pods where this page always stays active,
even if they are an admin, but have only one user. It's more useful for
single-user pods to have the login on the home page.

closes #7783
 2018-04-12 01:55:46 +02:00
Steffen van Bergerem
01ae004518
Make public stream accessible for logged out users 
Fixes #6564.

closes #7775
 2018-04-12 01:42:17 +02:00
Benjamin Neff
7d6623d069
Remove contacts page on profiles 
closes #7769
 2018-04-12 01:40:49 +02:00
Benjamin Neff
4fa92c1823
Remove flag for contacts visible to each other 
This feature only worked on the same pod and was more confusing than
useful.
 2018-04-12 01:39:11 +02:00
cmrd Senya
e0e40f73c3
Spec for post creation bad aspects_ids issue 2018-03-25 08:28:59 +02:00
kas70
40fc175d6e
only include mutual sharing contacts in conversations form on contacts page 
fixes #7377
 2018-03-22 23:15:24 +01:00
Benjamin Neff
b9787cc632
Start sending the blocking flag 2018-02-01 23:35:35 +01:00
Benjamin Neff
746ff52256
Fix mention in #newhere message when invited by another person 
fixes #7701
closes #7702
 2018-02-01 23:35:04 +01:00
Rete2
fc33a2ac5d
Create birthday notification and mailer 
closes #7624

fixes #1649
 2017-12-18 04:34:35 +01:00
cmrd Senya
ad025850ce
Forbid user destruction 2017-10-17 01:38:36 +02:00
Benjamin Neff
e82690963d
Add # frozen_string_literal: true to all files 2017-09-17 19:29:15 +02:00
Steffen van Bergerem
b77ecd482a
Replace aspect_membership_dropdown with aspect-membership-dropdown 2017-08-31 02:44:54 +02:00
Benjamin Neff
e31c5ff4dc
Handle unauthenticated users for likes/comments of private posts 
closes #7583
 2017-08-29 12:55:03 +02:00
Benjamin Neff
350e24863f
Allow to load likes and reshares without login 2017-08-29 12:35:48 +02:00