ncls7615
15a5b3372a
Fix detailed-status
2018-02-04 10:35:09 +09:00
beatrix
d3e325e047
change referrer policy to same-origin
2018-02-03 14:49:00 -05:00
beatrix
fa361ccc5e
change referrer policy to same-origin
2018-02-03 14:49:00 -05:00
Akihiko Odaki
ded217f84a
Isolate internal services from external networks in Docker configuration ( #6369 )
...
The database and Redis do not need external connections, so isolate them
and prevent unauthorized access.
2018-02-03 18:44:22 +01:00
Akihiko Odaki
9da81a1639
Isolate internal services from external networks in Docker configuration ( #6369 )
...
The database and Redis do not need external connections, so isolate them
and prevent unauthorized access.
2018-02-03 18:44:22 +01:00
takayamaki
5ad806ecab
fix ColumnBackButtonSlim should extended from ColumnBackButton ( #6417 )
2018-02-03 18:41:51 +01:00
takayamaki
d75d2a9f99
fix ColumnBackButtonSlim should extended from ColumnBackButton ( #6417 )
2018-02-03 18:41:51 +01:00
Akihiko Odaki
5892127534
Require environment for generate_static_pages ( #6420 )
...
It is required for ApplicationController.
2018-02-03 18:41:01 +01:00
Akihiko Odaki
f7bf36d8fc
Require environment for generate_static_pages ( #6420 )
...
It is required for ApplicationController.
2018-02-03 18:41:01 +01:00
David Yip
6d1023b2e9
Merge remote-tracking branch 'tootsuite/master' into merge-upstream
...
Conflicts:
app/javascript/styles/mastodon/components.scss
2018-02-02 08:39:52 -06:00
David Yip
4c1fd9a19c
Merge remote-tracking branch 'tootsuite/master' into merge-upstream
...
Conflicts:
app/javascript/styles/mastodon/components.scss
2018-02-02 08:39:52 -06:00
abcang
48af3df758
Fix column header button ( #6411 )
2018-02-02 13:31:28 +01:00
abcang
33f56811e3
Fix column header button ( #6411 )
2018-02-02 13:31:28 +01:00
abcang
b209de40f4
Fix saving of oEmbed image ( #6409 )
2018-02-02 11:57:59 +01:00
abcang
7e5c433dfc
Fix saving of oEmbed image ( #6409 )
2018-02-02 11:57:59 +01:00
Akihiko Odaki
1cd049c57b
Set minimum height for mastodon on drawer ( #6142 )
2018-02-02 11:56:50 +01:00
Akihiko Odaki
c1efe0aa1d
Set minimum height for mastodon on drawer ( #6142 )
2018-02-02 11:56:50 +01:00
ThibG
f7651c3449
Allow HTTP caching of atom-rendered public toots (OStatus compatibility) ( #6207 )
2018-02-02 10:54:04 +01:00
ThibG
ac1093256c
Allow HTTP caching of atom-rendered public toots (OStatus compatibility) ( #6207 )
2018-02-02 10:54:04 +01:00
Charlotte Fields
9c94c1e66f
moved save button ( #3792 )
...
* moved save button
* added save back to the bottom
* Update show.html.haml
2018-02-02 10:45:43 +01:00
Charlotte Fields
af40824998
moved save button ( #3792 )
...
* moved save button
* added save back to the bottom
* Update show.html.haml
2018-02-02 10:45:43 +01:00
Akihiko Odaki
180872ddd5
Remove wave from list drawer ( #6381 )
2018-02-02 10:32:41 +01:00
Akihiko Odaki
77dd9e7d27
Remove wave from list drawer ( #6381 )
2018-02-02 10:32:41 +01:00
Akihiko Odaki
f35fadcb9a
Unify links container implementation in about pages ( #6382 )
...
They were redundant, and also had a inconsistency; the button for
"other instances" had an icon for the external link in "more" page, but
it didn't in the other pages.
This unifies the implementation, and the external link icon is now shown
in all the about pages.
2018-02-02 10:32:21 +01:00
Akihiko Odaki
5da5c65db8
Unify links container implementation in about pages ( #6382 )
...
They were redundant, and also had a inconsistency; the button for
"other instances" had an icon for the external link in "more" page, but
it didn't in the other pages.
This unifies the implementation, and the external link icon is now shown
in all the about pages.
2018-02-02 10:32:21 +01:00
Akihiko Odaki
3cd3cae7f7
Accept ActivityPub announce from the author of the original note ( #6236 )
2018-02-02 10:22:15 +01:00
Akihiko Odaki
0be9a1e321
Accept ActivityPub announce from the author of the original note ( #6236 )
2018-02-02 10:22:15 +01:00
puckipedia
081ba8fc90
Allow retrieval of private statuses (single or in outbox) using HTTP signatures ( #6225 )
2018-02-02 10:19:59 +01:00
puckipedia
8e4cf6282b
Allow retrieval of private statuses (single or in outbox) using HTTP signatures ( #6225 )
2018-02-02 10:19:59 +01:00
Alexander
23ce0c86da
pam authentication ( #5303 )
...
* add pam support, without extra column
* bugfixes for pam login
* document options
* fix code style
* fix codestyle
* fix tests
* don't call remember_me without password
* fix codestyle
* improve checks for pam usage (should fix tests)
* fix remember_me part 1
* add remember_token column because :rememberable requires either a password or this column.
* migrate db for remember_token
* move pam_authentication to the right place, fix logic bug in edit.html.haml
* fix tests
* fix pam authentication, improve username lookup, add comment
* valid? is sometimes not honored, return nil instead trying to authenticate with pam
* update devise_pam_authenticatable2 and adjust code. Fixes sideeffects observed in tests
* update devise_pam_authenticatable gem, fixes for codeconventions, fix finding user
* codeconvention fixes
* code convention fixes
* fix idention
* update dependency, explicit conflict check
* fix disabled password updates if in pam mode
* fix check password if password is present, fix templates
* block registration if account is maintained by pam
* Revert "block registration if account is maintained by pam"
This reverts commit 8e7a083d650240b6fac414926744b4b90b435f20.
* fix identation error introduced by rebase
* block usernames maintained by pam
* document pam settings better
* fix code style
2018-02-02 10:18:55 +01:00
Alexander
04fef7b888
pam authentication ( #5303 )
...
* add pam support, without extra column
* bugfixes for pam login
* document options
* fix code style
* fix codestyle
* fix tests
* don't call remember_me without password
* fix codestyle
* improve checks for pam usage (should fix tests)
* fix remember_me part 1
* add remember_token column because :rememberable requires either a password or this column.
* migrate db for remember_token
* move pam_authentication to the right place, fix logic bug in edit.html.haml
* fix tests
* fix pam authentication, improve username lookup, add comment
* valid? is sometimes not honored, return nil instead trying to authenticate with pam
* update devise_pam_authenticatable2 and adjust code. Fixes sideeffects observed in tests
* update devise_pam_authenticatable gem, fixes for codeconventions, fix finding user
* codeconvention fixes
* code convention fixes
* fix idention
* update dependency, explicit conflict check
* fix disabled password updates if in pam mode
* fix check password if password is present, fix templates
* block registration if account is maintained by pam
* Revert "block registration if account is maintained by pam"
This reverts commit 8e7a083d650240b6fac414926744b4b90b435f20.
* fix identation error introduced by rebase
* block usernames maintained by pam
* document pam settings better
* fix code style
2018-02-02 10:18:55 +01:00
abcang
d3760fd25c
Fix mistake in cache deletion ( #6408 )
2018-02-02 10:10:18 +01:00
abcang
1afc70c990
Fix mistake in cache deletion ( #6408 )
2018-02-02 10:10:18 +01:00
Rob Watson
564e2c448b
Upgrade Paperclip > 5.2.1 ( #6404 )
...
Mitigation for CVE-2017-0889.
https://www.cvedetails.com/cve/CVE-2017-0889/
https://medium.com/in-the-weeds/all-about-paperclips-cve-2017-0889-server-side-request-forgery-ssrf-vulnerability-8cb2b1c96fe8
2018-02-01 17:54:22 +01:00
Rob Watson
f4bd51da1e
Upgrade Paperclip > 5.2.1 ( #6404 )
...
Mitigation for CVE-2017-0889.
https://www.cvedetails.com/cve/CVE-2017-0889/
https://medium.com/in-the-weeds/all-about-paperclips-cve-2017-0889-server-side-request-forgery-ssrf-vulnerability-8cb2b1c96fe8
2018-02-01 17:54:22 +01:00
abcang
95da1b3351
Fix button hiding when header title is too long ( #6406 )
2018-02-01 17:17:17 +01:00
abcang
ffb2b8ef8c
Fix button hiding when header title is too long ( #6406 )
2018-02-01 17:17:17 +01:00
Jenkins
52d4b56065
Merge remote-tracking branch 'tootsuite/master' into glitchsoc/master
2018-01-31 23:17:13 +00:00
Jenkins
ad3a2dfb66
Merge remote-tracking branch 'tootsuite/master' into glitchsoc/master
2018-01-31 23:17:13 +00:00
Evgeny Petrov
950689c381
Russian language updated ( #6397 )
2018-02-01 07:33:54 +09:00
Evgeny Petrov
3ed194b67d
Russian language updated ( #6397 )
2018-02-01 07:33:54 +09:00
Daniel King
e3e4cff211
fix ruby 2.5 rvm install in vagrant ( #6396 )
...
RVM has a known issue with installing Ruby 2.5 on the version of Ubuntu
the Vagrant box is using: https://github.com/rvm/rvm/issues/4291
This bug was preventing any gem installs in the vagrant box
2018-01-31 21:52:58 +01:00
Daniel King
2cff744cdf
fix ruby 2.5 rvm install in vagrant ( #6396 )
...
RVM has a known issue with installing Ruby 2.5 on the version of Ubuntu
the Vagrant box is using: https://github.com/rvm/rvm/issues/4291
This bug was preventing any gem installs in the vagrant box
2018-01-31 21:52:58 +01:00
David Yip
87517e2dd8
Merge remote-tracking branch 'origin/master' into merge-upstream
...
Conflicts:
app/views/layouts/mailer.html.haml
config/locales/ko.yml
2018-01-28 22:45:17 -06:00
David Yip
f4b2478af1
Merge remote-tracking branch 'origin/master' into merge-upstream
...
Conflicts:
app/views/layouts/mailer.html.haml
config/locales/ko.yml
2018-01-28 22:45:17 -06:00
Eugen Rochko
9d2cb4d12d
Bump version to 2.2.0
2018-01-29 01:12:36 +01:00
Eugen Rochko
e14c20582f
Bump version to 2.2.0
2018-01-29 01:12:36 +01:00
Eugen Rochko
602ec7b7d6
Fix padding bug in landing page column header ( #6374 )
2018-01-29 01:10:59 +01:00
Eugen Rochko
47eda1e5fb
Fix padding bug in landing page column header ( #6374 )
2018-01-29 01:10:59 +01:00
Eugen Rochko
9c212f0f28
ASSET_HOST is wrong env variable. Fix to CDN_HOST ( #6372 )
2018-01-29 01:06:39 +01:00