Patrick Figel
15b393201e
Add recovery code support for two-factor auth ( #1773 )
...
* Add recovery code support for two-factor auth
When users enable two-factor auth, the app now generates ten
single-use recovery codes. Users are encouraged to print the codes
and store them in a safe place.
The two-factor prompt during login now accepts both OTP codes and
recovery codes.
The two-factor settings UI allows users to regenerated lost
recovery codes. Users who have set up two-factor auth prior to
this feature being added can use it to generate recovery codes
for the first time.
Fixes #563 and fixes #987
* Set OTP_SECRET in test enviroment
* add missing .html to view file names
8 years ago
ThibG
626e7d1548
Refresh webfinger ( #1323 )
...
* Refresh local info for remote accounts when webfinger returns new values
It only refreshes account info if one of the URLs or the public-key changes,
in which cases it refreshes the full info, re-downloading the feeds from that
user.
Some special handling should probably be done when the public key changes,
but I have been unable to find any use for it in Mastodon yet.
* Re-fetch remote users we aren't subscribed to.
This might induce performance issues, we might want to only do that for users
we explicitly attempted to subscribe but failed to.
* Refactor changes
* Do not refresh existing remote account details more than once a day
* Avoid re-fetching webfinger info in tests unless otherwise specified
8 years ago
Eugen Rochko
b184c13102
Low-hanging fruit of query optimization, these indices were missing
8 years ago
Eugen Rochko
6687c4a114
Add index on mentions status_id
8 years ago
Eugen Rochko
c9ffa7ab1d
Add basic logging of who resolved report
8 years ago
Eugen Rochko
244da78105
Import feature for following/blocking lists (addresses #62 , #177 , #201 , #454 )
8 years ago
Eugen Rochko
f1a3855f30
Fix up null values on latest migration, add notes
8 years ago
Eugen Rochko
03245e1a72
Do NOT try to update the new fields from the migration. Takes too long on a live DB
...
Needs to be a separate task with no locking
8 years ago
Eugen Rochko
96e58cf289
Add counter caches for a large performance increase on API requests
8 years ago
Eugen Rochko
1b4583ca91
Fix full-text search query quotation, improve tag search performance with an index,
...
add ability to open status by URL from search (fix #53 )
8 years ago
Eugen Rochko
52f940fba9
Upgrade status IDs to bigint
8 years ago
Eugen Rochko
afd53467eb
More efficient single account retrieval (0.9ms vs 50ms before)
8 years ago
Eugen Rochko
a19062b726
Federate header images, fix open-uri http->https redirection error
8 years ago
Eugen Rochko
64be072702
Make account search blazing fast and rank followers/followees higher in the results
8 years ago
Eugen Rochko
4b93cf88e5
Fix #431 - convert gif to webm during upload. Web UI treats them like it did
...
before. In the API, attachments now can be either image, video or gifv. Gifv
is to be treated like images in terms of behaviour, but are videos by file
type.
8 years ago
Eugen Rochko
0cb5a2a0a7
Add digest e-mails
8 years ago
Kit Redgrave
4554ccd5d0
Mute button progress so far. WIP, doesn't entirely work correctly.
8 years ago
Eugen Rochko
60cc2a32c2
Add foreign key to prevent reblogs of non-existent (after race conditions) statuses from happening
...
Fix issue with detailed status view not supporting unreblogging/unfavouriting
8 years ago
Eugen Rochko
2cc31b3194
Adding POST /api/v1/reports API, and a UI for submitting reports
8 years ago
Eugen Rochko
81be690f95
Fix #614 - extra reply-boolean on statuses to account for cases when replied-to
...
status is not in the system at time of distribution; fix #607 - reset privacy
settings to defaults when cancelling replies
8 years ago
Eugen Rochko
d384845469
Fix #61 - Add list of blocked users to the UI; clean up failed push notifications API
...
Try to fix Travis CI setup
8 years ago
Eugen Rochko
9327d05bf7
API for apps to register for push notifications
8 years ago
Eugen Rochko
bcfa0d4d64
Fix #569 - seeds.rb
8 years ago
Eugen Rochko
9b8670c939
Added optional two-factor authentication
8 years ago
Eugen Rochko
096ff9ba38
Removed accidental n+1 query from notifications, updated some deps,
...
improved how "show more" link looks
8 years ago
Effy Elden
26756a48e7
Seed a default, confirmed, admin account on development environments
8 years ago
Eugen Rochko
f751e16e2a
Fix spoiler_text not having "not null" constraint
8 years ago
Eugen Rochko
30abab790e
Fix order of migrations
8 years ago
Eugen Rochko
959e064186
Instead of using spoiler boolean and spoiler_text, simply check for non-blank spoiler_text
...
Federate spoiler_text using warning attribute on <content /> instead of a <category term="spoiler" />
Clean up schema file from accidental development migrations
8 years ago
blackle
e25fc71c2c
Implement a click-to-view spoiler system
8 years ago
Eugen Rochko
3710d18889
Optional domain block attribute that prevents media attachments from being downloaded
8 years ago
Eugen Rochko
77a76d5171
Domain blocks now have varying severity - auto-suspend vs auto-silence
8 years ago
Eugen Rochko
f748a91ec7
Fix #463 - Fetch and display previews of URLs using OpenGraph tags
8 years ago
Effy Elden
8e0c1914fb
Add tracking of OAuth app that posted a status, extend OAuth apps to have optional website field, add application details to API, show application name and website on detailed status views. Resolves #11
8 years ago
Eugen Rochko
f2667139ad
Adding about/more page with extended information that can be set up by an admin
8 years ago
Eugen Rochko
6d98465db2
Extend rails-settings-cached to merge db-saved hash values with defaults
8 years ago
Eugen Rochko
7e7c2bbb0f
Migrate from ledermann/rails-settings to rails-settings-cached which allows global settings
...
with YAML-defined defaults. Add admin page for editing global settings. Add "site_description"
setting that would show as a paragraph on the frontpage
8 years ago
Eugen Rochko
4293e132d1
Persist UI settings, add missing localizations for German
8 years ago
Eugen Rochko
0df070596e
Fix #416 - Generate random unique 14-byte (19 characters) shortcodes
...
for local attachments, use them in URLs. Check status privacy
before redirecting to actual file.
8 years ago
Eugen Rochko
bef225e5da
Add illustration to getting started column
8 years ago
Eugen Rochko
238233440f
Follow call on locked account creates follow request instead
...
Reflect "requested" relationship in API and UI
Reflect inability of private posts to be reblogged in the UI
Disable Webfinger for locked accounts
8 years ago
Eugen Rochko
09a477c782
Add "locked" flag to accounts, prevent blocked users from following, force-unfollow blocked users
8 years ago
Eugen Rochko
d417da7d3a
Private visibility on statuses prevents non-followers from seeing those
...
Filters out hidden stream entries from Atom feed
Blocks now generate hidden stream entries, can be used to federate blocks
Private statuses cannot be reblogged (generates generic 422 error for now)
POST /api/v1/statuses now takes visibility=(public|unlisted|private) param instead of unlisted boolean
Statuses JSON now contains visibility=(public|unlisted|private) field
8 years ago
Eugen Rochko
ca0757a6cf
Add account suspension
8 years ago
Eugen Rochko
e5c39148d7
Keep timelines in the UI trimmed when possible
8 years ago
Eugen Rochko
047bdf6fe0
Improve notification model
8 years ago
Eugen Rochko
2d4ce8a867
Fix #248 - Reload all accounts when fetching from cache
8 years ago
Eugen Rochko
473470b119
Make data migration more merciful
8 years ago
Eugen Rochko
23a4f93345
Fix #323 - self-replies to appear in public timelines again
8 years ago
Eugen Rochko
8d4ef0b6c3
Per-status control for unlisted mode, also federation for unlisted mode
...
Fix #233 , fix #268
8 years ago
Eugen Rochko
a692318382
Track successful PuSH deliveries
8 years ago
Eugen Rochko
b5ad0eb4ea
Adding embedded PuSH server
8 years ago
Eugen Rochko
65d6191147
Adding sensitive marker to statuses in API
8 years ago
Eugen Rochko
f07b0dc82f
Remove unneeded indices, improve error handling in background workers, don't needlessly reload reblogged status, send Devise e-mails asynchronously
8 years ago
Eugen Rochko
951843e646
Adding notifications column
8 years ago
Eugen Rochko
38025dfea3
Adding unified streamable notifications
8 years ago
Eugen Rochko
b8e6ca45e5
Add user locale setting
8 years ago
Eugen Rochko
cb22dce970
Adding hashtags
8 years ago
Eugen Rochko
082e57fc13
Adding hashtag model
8 years ago
Eugen Rochko
1eac265f35
Adding public timeline silencing
8 years ago
Eugen Rochko
6657414266
Adding OAuth access scopes, fixing OAuth authorization UI, adding rate limiting
...
to the API
8 years ago
Eugen Rochko
e88d667d3f
Add sync command for neo4j, fix configuration, add neo4j to docker-compose, fix seed
8 years ago
Eugen Rochko
9bf5a73968
Adding domain blocks
8 years ago
Eugen Rochko
d51efdd1dc
Adding user settings (model and mailer), no form yet
8 years ago
Eugen Rochko
9d59d7b463
Adding a block model and filter mentions from blocked users ( fix #60 )
8 years ago
Eugen Rochko
fc198a8b4c
Adding e-mail confirmations
8 years ago
Eugen Rochko
7e14eefc81
Replace logo, fix #57 - delete/unreblog/unfavourite API, fix #45 - app
...
registration API
8 years ago
Eugen Rochko
608a2bfffc
Upgrade to PubSubHubbub 0.4 (removing verify_token)
8 years ago
Eugen Rochko
059ebbf48d
Separate PuSH subscriptions from following, add mastodon:push:refresh task,
...
respect hub.lease_seconds (fix #46 )
8 years ago
Eugen Rochko
ae1fac0062
Add API to upload media attachments
8 years ago
Eugen Rochko
92afd29650
The frontend will now be an OAuth app, auto-authorized. The frontend will use an access token for API requests
...
Adding better errors for the API controllers, posting a simple status works from the frontend now
8 years ago
Eugen Rochko
10ba09f546
Upgrade to Rails 5.0.0.1
8 years ago
Eugen Rochko
e24bfbde1a
Fixing FanOutOnWriteService, fixing Sidekiq not having enough DB connections
...
in the pool, adding a throttle of 60rpm per IP, adding mini profiler, adding
admin status to users
9 years ago
Eugen Rochko
02e4fb2e06
Only re-download avatar if URL changed ( fix #19 )
9 years ago
Eugen Rochko
8767a98fbb
Adding CSS for form errors, adding missing indices
9 years ago
Eugen Rochko
6fec8afc3f
Bind oauth applications to users
9 years ago
Eugen Rochko
3441361568
Adding simple_form, adding profile settings, header image
9 years ago
Eugen Rochko
b919f39b31
Customizing doorkeeper views for authorizing app
9 years ago
Eugen Rochko
ab6696e855
Adding doorkeeper, adding a REST API
...
POST /api/statuses Params: status (text contents), in_reply_to_id (optional)
GET /api/statuses/:id
POST /api/statuses/:id/reblog
GET /api/accounts/:id
GET /api/accounts/:id/following
GET /api/accounts/:id/followers
POST /api/accounts/:id/follow
POST /api/accounts/:id/unfollow
POST /api/follows Params: uri (e.g. user@domain)
OAuth authentication is currently disabled, but the API can be used with HTTP Auth.
9 years ago
Eugen Rochko
7e93da3f8d
Removing grape and adding devise
9 years ago
Eugen Rochko
2c70f0ecaa
Adding paperclip for avatars, fixing design of the public pages
9 years ago
Eugen Rochko
71fe24096c
Adding a Mention model, test stubs
9 years ago
Eugen Rochko
fa33750105
Adding reblogs, favourites, improving atom generation
9 years ago
Eugen Rochko
709c6685a9
Made some progress
9 years ago
Eugen Rochko
9c4856bdb1
Initial commit
9 years ago