Eugen Rochko
e514304a76
Change account suspensions to be reversible by default ( #14726 )
2020-09-15 14:37:58 +02:00
Eugen Rochko
e0355b5142
Fix unreadable placeholder text color in high contrast theme in web UI ( #14803 )
...
Fix #14717
2020-09-15 09:24:24 +02:00
dependabot[bot]
3751588442
Bump rails from 5.2.4.3 to 5.2.4.4 ( #14792 )
...
Bumps [rails](https://github.com/rails/rails ) from 5.2.4.3 to 5.2.4.4.
- [Release notes](https://github.com/rails/rails/releases )
- [Commits](https://github.com/rails/rails/compare/v5.2.4.3...v5.2.4.4 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2020-09-14 22:08:13 +09:00
ThibG
75dc5d61e5
Add paragraph about browser add-ons when encountering some errors ( #14801 )
...
* Add paragraph about browser add-ons when encountering some errors
When a crash is caused by a NotFoundError exception, add a paragraph
to the error page mentioning browser add-ons.
Indeed, crashes with NotFoundError are often caused by browser extensions
messing with the DOM in ways React.JS can't recover from (e.g. issues #13325
and #14731 ).
* Reword error messages
2020-09-14 15:05:22 +02:00
dependabot[bot]
95caaafc36
Bump caniuse-lite from 1.0.30001124 to 1.0.30001129 ( #14781 )
...
Bumps [caniuse-lite](https://github.com/ben-eb/caniuse-lite ) from 1.0.30001124 to 1.0.30001129.
- [Release notes](https://github.com/ben-eb/caniuse-lite/releases )
- [Changelog](https://github.com/ben-eb/caniuse-lite/blob/master/CHANGELOG.md )
- [Commits](https://github.com/ben-eb/caniuse-lite/compare/v1.0.30001124...v1.0.30001129 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2020-09-14 22:04:00 +09:00
dependabot[bot]
e6b82649ec
Bump @babel/preset-env from 7.11.0 to 7.11.5 ( #14794 )
...
Bumps [@babel/preset-env](https://github.com/babel/babel/tree/HEAD/packages/babel-preset-env ) from 7.11.0 to 7.11.5.
- [Release notes](https://github.com/babel/babel/releases )
- [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md )
- [Commits](https://github.com/babel/babel/commits/v7.11.5/packages/babel-preset-env )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2020-09-14 22:03:11 +09:00
dependabot[bot]
6942d6f624
Bump aws-sdk-s3 from 1.79.1 to 1.80.0 ( #14789 )
...
Bumps [aws-sdk-s3](https://github.com/aws/aws-sdk-ruby ) from 1.79.1 to 1.80.0.
- [Release notes](https://github.com/aws/aws-sdk-ruby/releases )
- [Changelog](https://github.com/aws/aws-sdk-ruby/blob/master/gems/aws-sdk-s3/CHANGELOG.md )
- [Commits](https://github.com/aws/aws-sdk-ruby/commits )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2020-09-14 22:02:42 +09:00
ThibG
739f7815ef
Do not serve account actors at all in limited federation mode ( #14800 )
...
* Do not serve account actors at all in limited federation mode
When an account is fetched without a signature from an allowed instance,
return an error.
This isn't really an improvement in security, as the only information that was
previously returned was required protocol-level info, and the only personal bit
was the existence of the account. The existence of the account can still be
checked by issuing a webfinger query, as those are accepted without signatures.
However, this change makes it so that unallowed instances won't create account
records on their end when they find a reference to an unknown account.
The previous behavior of rendering a limited list of fields, instead of not
rendering the actor at all, was in order to prevent situations in which two
instances in Authorized Fetch mode or Limited Federation mode would fail to
reach each other because resolving an account would require a signed query…
from an account which can only be fetched with a signed query itself. However,
this should now be fine as fetching accounts is done by signing on behalf of
the special instance actor, which does not require any kind of valid signature
to be fetched.
* Fix tests
2020-09-14 13:04:29 +02:00
Eugen Rochko
face3be227
Fix reported statuses not being included in warning e-mail ( #14778 )
2020-09-13 12:52:17 +02:00
tateisu
9d4769941f
allow pagination by min_id and max_id ( #14776 )
...
* allow pagination by min_id and max_id
* also AccountConversation allows min_id,max_id pair
* also home,list TL allows min_id,max_id pair
2020-09-12 17:09:49 +02:00
Eugen Rochko
403aeeb7e0
Refactor settings controllers ( #14767 )
...
- Disallow suspended accounts from revoking sessions and apps
- Allow suspended accounts to access exports
2020-09-11 20:56:35 +02:00
Eugen Rochko
7fa0da9e98
Change REST API to return empty data for suspended accounts ( #14765 )
2020-09-11 15:16:29 +02:00
dependabot[bot]
9012928263
Bump node-fetch from 2.6.0 to 2.6.1 ( #14772 )
...
Bumps [node-fetch](https://github.com/bitinn/node-fetch ) from 2.6.0 to 2.6.1.
- [Release notes](https://github.com/bitinn/node-fetch/releases )
- [Changelog](https://github.com/node-fetch/node-fetch/blob/master/docs/CHANGELOG.md )
- [Commits](https://github.com/bitinn/node-fetch/compare/v2.6.0...v2.6.1 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2020-09-11 21:06:53 +09:00
ThibG
6c612562f0
Add border around 🕺 emoji ( #14769 )
...
Fixes #14768
2020-09-10 19:08:03 +02:00
Eugen Rochko
acbb99f7e5
Change web UI to show empty profile for suspended accounts ( #14766 )
2020-09-10 00:07:19 +02:00
Eugen Rochko
38aa7a9a7f
Refactor feed manager ( #14761 )
2020-09-08 03:41:16 +02:00
dependabot[bot]
2778a99177
Bump browserslist from 4.14.0 to 4.14.1 ( #14753 )
...
Bumps [browserslist](https://github.com/browserslist/browserslist ) from 4.14.0 to 4.14.1.
- [Release notes](https://github.com/browserslist/browserslist/releases )
- [Changelog](https://github.com/browserslist/browserslist/blob/master/CHANGELOG.md )
- [Commits](https://github.com/browserslist/browserslist/compare/4.14.0...4.14.1 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2020-09-08 02:43:22 +02:00
dependabot[bot]
130e385541
Bump puma from 4.3.5 to 4.3.6 ( #14750 )
...
Bumps [puma](https://github.com/puma/puma ) from 4.3.5 to 4.3.6.
- [Release notes](https://github.com/puma/puma/releases )
- [Changelog](https://github.com/puma/puma/blob/master/History.md )
- [Commits](https://github.com/puma/puma/compare/v4.3.5...v4.3.6 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2020-09-08 08:23:13 +09:00
dependabot[bot]
f394d83032
Bump rubocop from 0.88.0 to 0.90.0 ( #14747 )
...
Bumps [rubocop](https://github.com/rubocop-hq/rubocop ) from 0.88.0 to 0.90.0.
- [Release notes](https://github.com/rubocop-hq/rubocop/releases )
- [Changelog](https://github.com/rubocop-hq/rubocop/blob/master/CHANGELOG.md )
- [Commits](https://github.com/rubocop-hq/rubocop/compare/v0.88.0...v0.90.0 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2020-09-08 08:22:54 +09:00
dependabot[bot]
cabbcb63fa
Bump caniuse-lite from 1.0.30001120 to 1.0.30001124 ( #14756 )
...
Bumps [caniuse-lite](https://github.com/ben-eb/caniuse-lite ) from 1.0.30001120 to 1.0.30001124.
- [Release notes](https://github.com/ben-eb/caniuse-lite/releases )
- [Changelog](https://github.com/ben-eb/caniuse-lite/blob/master/CHANGELOG.md )
- [Commits](https://github.com/ben-eb/caniuse-lite/compare/v1.0.30001120...v1.0.30001124 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2020-09-08 05:45:50 +09:00
dependabot[bot]
471256b779
Bump ox from 2.13.2 to 2.13.3 ( #14751 )
...
Bumps [ox](https://github.com/ohler55/ox ) from 2.13.2 to 2.13.3.
- [Release notes](https://github.com/ohler55/ox/releases )
- [Changelog](https://github.com/ohler55/ox/blob/develop/CHANGELOG.md )
- [Commits](https://github.com/ohler55/ox/compare/v2.13.2...v2.13.3 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2020-09-08 05:22:50 +09:00
dependabot[bot]
9d19fadcac
Bump oj from 3.10.13 to 3.10.14 ( #14749 )
...
Bumps [oj](https://github.com/ohler55/oj ) from 3.10.13 to 3.10.14.
- [Release notes](https://github.com/ohler55/oj/releases )
- [Changelog](https://github.com/ohler55/oj/blob/develop/CHANGELOG.md )
- [Commits](https://github.com/ohler55/oj/compare/v3.10.13...v3.10.14 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2020-09-08 05:22:33 +09:00
dependabot[bot]
f810274d18
Bump sass-loader from 9.0.3 to 10.0.2 ( #14741 )
...
Bumps [sass-loader](https://github.com/webpack-contrib/sass-loader ) from 9.0.3 to 10.0.2.
- [Release notes](https://github.com/webpack-contrib/sass-loader/releases )
- [Changelog](https://github.com/webpack-contrib/sass-loader/blob/master/CHANGELOG.md )
- [Commits](https://github.com/webpack-contrib/sass-loader/compare/v9.0.3...v10.0.2 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2020-09-08 05:22:10 +09:00
dependabot[bot]
8419b1fb31
Bump aws-partitions from 1.363.0 to 1.365.0 ( #14748 )
...
Bumps [aws-partitions](https://github.com/aws/aws-sdk-ruby ) from 1.363.0 to 1.365.0.
- [Release notes](https://github.com/aws/aws-sdk-ruby/releases )
- [Changelog](https://github.com/aws/aws-sdk-ruby/blob/master/gems/aws-partitions/CHANGELOG.md )
- [Commits](https://github.com/aws/aws-sdk-ruby/commits )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2020-09-08 05:21:01 +09:00
dependabot[bot]
2fcef8a206
Bump esrecurse from 4.2.1 to 4.3.0 ( #14746 )
...
Bumps [esrecurse](https://github.com/estools/esrecurse ) from 4.2.1 to 4.3.0.
- [Release notes](https://github.com/estools/esrecurse/releases )
- [Commits](https://github.com/estools/esrecurse/compare/v4.2.1...v4.3.0 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2020-09-08 05:19:03 +09:00
dependabot[bot]
fbad23a161
Bump postgres-date from 1.0.6 to 1.0.7 ( #14745 )
...
Bumps [postgres-date](https://github.com/bendrucker/postgres-date ) from 1.0.6 to 1.0.7.
- [Release notes](https://github.com/bendrucker/postgres-date/releases )
- [Commits](https://github.com/bendrucker/postgres-date/compare/v1.0.6...v1.0.7 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2020-09-08 05:18:10 +09:00
dependabot[bot]
4344b14624
Bump postcss-calc from 7.0.3 to 7.0.4 ( #14752 )
...
Bumps [postcss-calc](https://github.com/postcss/postcss-calc ) from 7.0.3 to 7.0.4.
- [Release notes](https://github.com/postcss/postcss-calc/releases )
- [Changelog](https://github.com/postcss/postcss-calc/blob/master/CHANGELOG.md )
- [Commits](https://github.com/postcss/postcss-calc/compare/v7.0.3...v7.0.4 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2020-09-08 05:17:46 +09:00
dependabot[bot]
933a4a3106
Bump @babel/plugin-transform-runtime from 7.11.0 to 7.11.5 ( #14754 )
...
Bumps [@babel/plugin-transform-runtime](https://github.com/babel/babel/tree/HEAD/packages/babel-plugin-transform-runtime ) from 7.11.0 to 7.11.5.
- [Release notes](https://github.com/babel/babel/releases )
- [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md )
- [Commits](https://github.com/babel/babel/commits/v7.11.5/packages/babel-plugin-transform-runtime )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2020-09-08 05:17:08 +09:00
dependabot[bot]
6e8b498a35
Bump public_suffix from 4.0.5 to 4.0.6 ( #14743 )
...
Bumps [public_suffix](https://github.com/weppos/publicsuffix-ruby ) from 4.0.5 to 4.0.6.
- [Release notes](https://github.com/weppos/publicsuffix-ruby/releases )
- [Changelog](https://github.com/weppos/publicsuffix-ruby/blob/master/CHANGELOG.md )
- [Commits](https://github.com/weppos/publicsuffix-ruby/compare/v4.0.5...v4.0.6 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2020-09-08 05:15:39 +09:00
dependabot[bot]
b28560cee5
Bump @babel/core from 7.11.1 to 7.11.6 ( #14755 )
...
Bumps [@babel/core](https://github.com/babel/babel/tree/HEAD/packages/babel-core ) from 7.11.1 to 7.11.6.
- [Release notes](https://github.com/babel/babel/releases )
- [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md )
- [Commits](https://github.com/babel/babel/commits/v7.11.6/packages/babel-core )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2020-09-08 05:13:04 +09:00
dependabot[bot]
510ae69f96
Bump eventemitter3 from 4.0.5 to 4.0.7 ( #14742 )
...
Bumps [eventemitter3](https://github.com/primus/eventemitter3 ) from 4.0.5 to 4.0.7.
- [Release notes](https://github.com/primus/eventemitter3/releases )
- [Commits](https://github.com/primus/eventemitter3/compare/4.0.5...4.0.7 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2020-09-08 05:12:16 +09:00
dependabot[bot]
78a0d07824
Bump bcrypt from 3.1.15 to 3.1.16 ( #14739 )
...
Bumps [bcrypt](https://github.com/codahale/bcrypt-ruby ) from 3.1.15 to 3.1.16.
- [Release notes](https://github.com/codahale/bcrypt-ruby/releases )
- [Changelog](https://github.com/codahale/bcrypt-ruby/blob/master/CHANGELOG )
- [Commits](https://github.com/codahale/bcrypt-ruby/compare/v3.1.15...v3.1.16 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2020-09-08 05:11:21 +09:00
dependabot[bot]
73637604a9
Bump warden from 1.2.8 to 1.2.9 ( #14738 )
...
Bumps [warden](https://github.com/hassox/warden ) from 1.2.8 to 1.2.9.
- [Release notes](https://github.com/hassox/warden/releases )
- [Changelog](https://github.com/wardencommunity/warden/blob/master/CHANGELOG.md )
- [Commits](https://github.com/hassox/warden/compare/v1.2.8...v1.2.9 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2020-09-08 05:10:49 +09:00
dependabot[bot]
4e9782a477
Bump brakeman from 4.9.0 to 4.9.1 ( #14737 )
...
Bumps [brakeman](https://github.com/presidentbeef/brakeman ) from 4.9.0 to 4.9.1.
- [Release notes](https://github.com/presidentbeef/brakeman/releases )
- [Changelog](https://github.com/presidentbeef/brakeman/blob/main/CHANGES.md )
- [Commits](https://github.com/presidentbeef/brakeman/compare/v4.9.0...v4.9.1 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2020-09-08 05:09:44 +09:00
dependabot[bot]
65634e309b
Bump electron-to-chromium from 1.3.545 to 1.3.562 ( #14757 )
...
Bumps [electron-to-chromium](https://github.com/kilian/electron-to-chromium ) from 1.3.545 to 1.3.562.
- [Release notes](https://github.com/kilian/electron-to-chromium/releases )
- [Changelog](https://github.com/Kilian/electron-to-chromium/blob/master/CHANGELOG.md )
- [Commits](https://github.com/kilian/electron-to-chromium/compare/v1.3.545...v1.3.562 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2020-09-08 05:09:18 +09:00
dependabot[bot]
25d4198cc5
Bump rdf from 3.1.5 to 3.1.6 ( #14736 )
...
Bumps [rdf](https://github.com/ruby-rdf/rdf ) from 3.1.5 to 3.1.6.
- [Release notes](https://github.com/ruby-rdf/rdf/releases )
- [Changelog](https://github.com/ruby-rdf/rdf/blob/develop/CHANGES.md )
- [Commits](https://github.com/ruby-rdf/rdf/compare/3.1.5...3.1.6 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2020-09-08 05:08:59 +09:00
dependabot[bot]
275451d3c8
Bump rubocop-rails from 2.6.0 to 2.8.0 ( #14734 )
...
Bumps [rubocop-rails](https://github.com/rubocop-hq/rubocop-rails ) from 2.6.0 to 2.8.0.
- [Release notes](https://github.com/rubocop-hq/rubocop-rails/releases )
- [Changelog](https://github.com/rubocop-hq/rubocop-rails/blob/master/CHANGELOG.md )
- [Commits](https://github.com/rubocop-hq/rubocop-rails/compare/v2.6.0...v2.8.0 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2020-09-08 05:08:17 +09:00
dependabot[bot]
9219d8922c
Bump sidekiq-unique-jobs from 6.0.22 to 6.0.23 ( #14735 )
...
Bumps [sidekiq-unique-jobs](https://github.com/mhenrixon/sidekiq-unique-jobs ) from 6.0.22 to 6.0.23.
- [Release notes](https://github.com/mhenrixon/sidekiq-unique-jobs/releases )
- [Changelog](https://github.com/mhenrixon/sidekiq-unique-jobs/blob/master/CHANGELOG.md )
- [Commits](https://github.com/mhenrixon/sidekiq-unique-jobs/compare/v6.0.22...v6.0.23 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2020-09-08 05:06:23 +09:00
dependabot[bot]
38edbdc29d
Bump tar from 6.0.2 to 6.0.5 ( #14758 )
...
Bumps [tar](https://github.com/npm/node-tar ) from 6.0.2 to 6.0.5.
- [Release notes](https://github.com/npm/node-tar/releases )
- [Changelog](https://github.com/npm/node-tar/blob/master/CHANGELOG.md )
- [Commits](https://github.com/npm/node-tar/compare/v6.0.2...v6.0.5 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2020-09-08 05:05:24 +09:00
ThibG
e8aa85dc03
Fix multiple boosts of a same toot erroneously appearing in TL ( #14759 )
...
* Check for and record reblog info atomically
Instead of using ZREVRANK to determine whether a reblog is a new reblog or not,
use ZADD's NX option to perform the check/addition option atomically.
* Replace ZREVRANK call with ZSCORE key which is more efficient
* Make tests a bit stricter
* Fix off-by-one
2020-09-07 18:00:15 +02:00
abcang
e8c39853ad
Changed tag most_used to recently_used ( #14760 )
2020-09-07 17:47:41 +02:00
Eugen Rochko
78ceda1af6
Refactor how public and tag timelines are queried ( #14728 )
2020-09-07 11:02:04 +02:00
Eugen Rochko
2f5a6c4a4f
Remove obsolete IndexedDB operations from web UI ( #14730 )
...
Storing objects in IndexedDB was disabled in #7932 , but we were
still trying to read objects from it before making an API call
2020-09-04 20:22:40 +02:00
Eugen Rochko
89fd56627c
Fix various warnings in rspec ( #14729 )
2020-09-04 20:22:26 +02:00
Takeshi Umeda
04cbd783b3
Fix direct visibility style for light theme ( #14727 )
2020-09-04 08:49:56 +02:00
ThibG
1a3405005a
Add outbox attribute to instance actor ( #14721 )
...
It's not useful for now, but it's required by ActivityPub
2020-09-02 18:42:50 +02:00
Takeshi Umeda
cb37bd63dc
Added account featured tags API ( #11817 )
2020-09-02 02:13:10 +02:00
Eugen Rochko
c6ad9aae69
Add featured hashtags as an ActivityPub collection ( #11595 )
2020-09-02 02:11:12 +02:00
Y.Yamashiro
78feafaa85
Change S3 ACL in "tootctl media remove-orphans --fix-permissions" from fixed value to environment file's value. ( #14715 )
2020-09-02 00:17:58 +02:00
ThibG
50d0c1e95f
Add configuration option to filter replies in lists ( #9205 )
...
* Add database support for list show-reply preferences
* Add backend support to read and update list-specific show_replies settings
* Add basic UI to set list replies setting
* Add specs for list replies policy
* Switch "cycling" reply policy link to a set of radio inputs
* Capitalize replies_policy strings
* Change radio button design to be consistent with that of the directory explorer
2020-09-01 13:31:28 +02:00