Matt Jankowski
ad81be6c8e
Update rubocop rules for linelength ( #26190 )
1 year ago
Matt Jankowski
bada7a65aa
Ignore long line in regex initializer ( #26182 )
1 year ago
Claire
e5f1000ad1
Fix CSP headers being unintendedly wide ( #26105 )
1 year ago
Claire
934c7b33d1
Change default KeyGenerator digest to SHA1 to fix cookies in rolling upgrades ( #26023 )
1 year ago
Misty De Méo
b848ba3867
Paperclip: add support for Azure blob storage ( #23607 )
1 year ago
Matt Jankowski
ce43ed144c
Rails 7.0 update ( #25668 )
1 year ago
Matt Jankowski
2e1391fdd2
Fix `Naming/MemoizedInstanceVariableName` cop ( #25928 )
1 year ago
Nick Schonning
1d557305d2
Enable Rubocop Style/FrozenStringLiteralComment ( #23793 )
1 year ago
Kurtis Rainbolt-Greene
e4cfe4b3db
First pass at multi-database for read replica using Rails native adapter ( #25693 )
...
Co-authored-by: emilweth <7402764+emilweth@users.noreply.github.com>
1 year ago
Claire
dc8f1fbd97
Merge pull request from GHSA-9928-3cp5-93fm
...
* Fix attachments getting processed despite failing content-type validation
* Add a restrictive ImageMagick security policy tailored for Mastodon
* Fix misdetection of MP3 files with large cover art
* Reject unprocessable audio/video files instead of keeping them unchanged
1 year ago
Eugen Rochko
ba06a2f104
Revert "Rails 7 update" ( #25667 )
1 year ago
Matt Jankowski
50c2a03695
Rails 7 update ( #24241 )
1 year ago
Claire
f378f10404
Fix compatibility of recent migration with PostgreSQL 10 ( #25324 )
1 year ago
Nick Schonning
c66250abf1
Autofix Rubocop Regex Style rules ( #23690 )
...
Co-authored-by: Claire <claire.github-309c@sitedethib.com>
1 year ago
Claire
e428670e61
Fix CSP headers when S3_ALIAS_HOST includes a path component ( #25273 )
1 year ago
Matt Jankowski
e49819142f
Remove unmaintained `nsa` gem ( #25265 )
1 year ago
Claire
94329f28e1
Change wording of “Content cache retention period” setting to highlight destructive implications ( #23261 )
1 year ago
Renaud Chaput
942d850b0a
Allow carets in URL search params ( #25216 )
1 year ago
Nick Schonning
c0b9664a31
Autofix Rubocop spacing in config ( #25022 )
2 years ago
Nick Schonning
cee4369cf5
Autofix Rubocop Lint/AmbiguousOperatorPrecedence ( #25002 )
2 years ago
Matt Jankowski
d9a958fcf7
Fix Performance/RedundantMerge cop ( #24817 )
2 years ago
Matt Jankowski
d902a707a3
Fix Rails/CompactBlank cop ( #24690 )
2 years ago
Matt Jankowski
5a2aa06a51
Fix Rails/Present cop ( #24688 )
2 years ago
Nick Schonning
49fad26eca
Drop EOL Ruby 2.7 ( #24237 )
2 years ago
Nick Schonning
4687967176
Autofix Rubocop Style/NumericLiterals ( #24468 )
2 years ago
Claire
5c499f54e3
Change root Chewy strategy to emit a warning instead of erroring out in production mode ( #24327 )
2 years ago
Nick Schonning
500d6f93be
Autofix Rubocop Style/IdenticalConditionalBranches ( #24322 )
2 years ago
Eugen Rochko
a9b5598c97
Change user settings to be stored in a more optimal way ( #23630 )
...
Co-authored-by: Claire <claire.github-309c@sitedethib.com>
2 years ago
Claire
e084b5b82d
Fix user archive takeout when using OpenStack Swift or S3 providers with no ACL support ( #24200 )
2 years ago
Claire
f432db7b9f
Fix sidekiq jobs not triggering Elasticsearch index updates ( #24046 )
2 years ago
Jean byroot Boussier
922837dc96
Upgrade to latest redis-rb 4.x and fix deprecations ( #23616 )
...
Co-authored-by: Jean Boussier <jean.boussier@gmail.com>
2 years ago
Jamie Hoyle
de137e6bb0
Added support for specifying S3 storage classes in environment ( #22480 )
2 years ago
Eugen Rochko
c6ef56fd5e
Change rate limits to 1,500/5m per user, 300/5m per app ( #23347 )
2 years ago
luzpaz
596923da4a
Fix typos in source documentation ( #21046 )
...
Fixed 2 source comment/documentation typos
2 years ago
Claire
d587a268fd
Add logging for Rails cache timeouts ( #21667 )
...
* Reduce redis cache store connect timeout from default 20 seconds to 5 seconds
* Log cache store errors
2 years ago
Claire
7955d4b959
Add form-action CSP directive ( #20781 )
2 years ago
trwnh
a2931d19ae
Add missing admin scopes ( fix #20892 ) ( #20918 )
2 years ago
Eugen Rochko
43b0b2f3f4
Fix wrong directive `unsafe-wasm-eval` to `wasm-unsafe-eval` ( #20729 )
2 years ago
prplecake
b46b7c3d5e
Use "unsafe-wasm-eval" instead of "unsafe-eval" in script-src CSP ( #20606 )
...
* Add "unsafe-eval" to script-src CSP
* Use 'unsafe-wasm-eval' instead of 'unsafe-eval'
2 years ago
Eugen Rochko
21fd25a269
Fix rate limiting for paths with formats ( #20675 )
2 years ago
Matt Corallo
9d039209cc
Add `Cache-Control` header to openstack-stored files ( #20610 )
...
When storing files in S3, paperclip is configured with a Cache-Control header
indicating the file is immutable, however no such header was added when using
OpenStack storage.
Luckily Paperclip's fog integration makes this trivial, with a simple
`fog_file` `Cache-Control` default doing the trick.
2 years ago
David Hewitt
290d78cea4
Allow unsetting x-amz-acl S3 Permission headers ( #20510 )
...
Some "S3 Compatible" storage providers (Cloudflare R2 is one such example) don't support setting ACLs on individual uploads with the `x-amz-acl` header, and instead just have a visibility for the whole bucket. To support uploads to such providers without getting unsupported errors back, lets use a black `S3_PERMISSION` env var to indicate that these headers shouldn't be sent.
This is tested as working with Cloudflare R2.
2 years ago
prplecake
aafbc82d88
Add "unsafe-eval" to script-src CSP ( #18817 )
2 years ago
Eugen Rochko
bf0ab3e0fa
Fix vacuum scheduler missing lock, locks never expiring ( #19458 )
...
Remove vacuuming of orphaned preview cards
2 years ago
Eugen Rochko
0d6b878808
Add user content translations with configurable backends ( #19218 )
2 years ago
Eugen Rochko
546672e292
Change "Allow trends without prior review" setting to include statuses ( #17977 )
...
* Change "Allow trends without prior review" setting to include posts
* Fix i18n-tasks
2 years ago
Jeong Arm
861b35dd54
Support "http_hidden_proxy" ENV var for hidden service only proxy ( #18427 )
...
* Support "http_hidden_proxy" ENV var for hidden service only proxy
* Fallback to http_proxy if http_hidden_proxy is not set
2 years ago
Eugen Rochko
e7aa2be828
Change how hashtags are normalized ( #18795 )
...
* Change how hashtags are normalized
* Fix tests
2 years ago
Claire
ae4f068a84
Fix CAS_DISPLAY_NAME, SAML_DISPLAY_NAME and OIDC_DISPLAY_NAME being ignored ( #18568 )
2 years ago
Eugen Rochko
96129c2f10
Fix confirmation redirect to app without `Location` header ( #18523 )
3 years ago