6 Commits (4b29a41f1d2ec02e8b5dc19134c4d63fd6465952)

Author	SHA1	Message	Date
Thibaut Girka	9f2945ef80	Add test to disallow remote users from fetching local-only toots	6 years ago
David Yip	f6355f6ffb	Update StatusPolicy to check current_account for local_only? toots. ... StatusPolicy#account was renamed to StatusPolicy#current_account in upstream. This commit renames the local-only changes to match and augments the #show? policy spec with what we expect for local-only toots.	7 years ago
Jack Jennings	33f669a5f8	Add status destroy authorization to policy (#3453) ... * Add status destroy authorization to policy * Create explicit unreblog status authorization	8 years ago
Jack Jennings	22cf18e16f	Fix incorrect visibility setter in StatusPolicySpec (#3456)	8 years ago
Jack Jennings	e031fd60ad	Move status reblog authorization into policy (#3425)	8 years ago
Jack Jennings	3a2003ba86	Extract authorization policy for viewing statuses (#3150)	8 years ago