glitchier-soc

Author	SHA1	Message	Date
dependabot[bot]	3a5e7495f6	Bump webpack-dev-server from 3.11.2 to 3.11.3 (#16964 ) Bumps [webpack-dev-server](https://github.com/webpack/webpack-dev-server) from 3.11.2 to 3.11.3. - [Release notes](https://github.com/webpack/webpack-dev-server/releases) - [Changelog](https://github.com/webpack/webpack-dev-server/blob/v3.11.3/CHANGELOG.md) - [Commits](https://github.com/webpack/webpack-dev-server/compare/v3.11.2...v3.11.3) --- updated-dependencies: - dependency-name: webpack-dev-server dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2021-11-13 18:46:14 +09:00
Claire	5e63db936e	Merge pull request #1632 from ClearlyClaire/glitch-soc/merge-upstream Merge upstream changes	2021-11-13 10:41:25 +01:00
Claire	f2b376e9d8	Merge pull request #1632 from ClearlyClaire/glitch-soc/merge-upstream Merge upstream changes	2021-11-13 10:41:25 +01:00
dependabot[bot]	b68c8bf341	Bump aws-sdk-s3 from 1.104.0 to 1.105.1 (#16962 ) Bumps [aws-sdk-s3](https://github.com/aws/aws-sdk-ruby) from 1.104.0 to 1.105.1. - [Release notes](https://github.com/aws/aws-sdk-ruby/releases) - [Changelog](https://github.com/aws/aws-sdk-ruby/blob/version-3/gems/aws-sdk-s3/CHANGELOG.md) - [Commits](https://github.com/aws/aws-sdk-ruby/commits) --- updated-dependencies: - dependency-name: aws-sdk-s3 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2021-11-13 18:36:28 +09:00
dependabot[bot]	554d6831b1	Bump aws-sdk-s3 from 1.104.0 to 1.105.1 (#16962 ) Bumps [aws-sdk-s3](https://github.com/aws/aws-sdk-ruby) from 1.104.0 to 1.105.1. - [Release notes](https://github.com/aws/aws-sdk-ruby/releases) - [Changelog](https://github.com/aws/aws-sdk-ruby/blob/version-3/gems/aws-sdk-s3/CHANGELOG.md) - [Commits](https://github.com/aws/aws-sdk-ruby/commits) --- updated-dependencies: - dependency-name: aws-sdk-s3 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2021-11-13 18:36:28 +09:00
dependabot[bot]	6f4d419f5e	Bump ox from 2.14.5 to 2.14.6 (#16961 ) Bumps [ox](https://github.com/ohler55/ox) from 2.14.5 to 2.14.6. - [Release notes](https://github.com/ohler55/ox/releases) - [Changelog](https://github.com/ohler55/ox/blob/develop/CHANGELOG.md) - [Commits](https://github.com/ohler55/ox/compare/v2.14.5...v2.14.6) --- updated-dependencies: - dependency-name: ox dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2021-11-13 18:35:52 +09:00
dependabot[bot]	f460f24fbe	Bump ox from 2.14.5 to 2.14.6 (#16961 ) Bumps [ox](https://github.com/ohler55/ox) from 2.14.5 to 2.14.6. - [Release notes](https://github.com/ohler55/ox/releases) - [Changelog](https://github.com/ohler55/ox/blob/develop/CHANGELOG.md) - [Commits](https://github.com/ohler55/ox/compare/v2.14.5...v2.14.6) --- updated-dependencies: - dependency-name: ox dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2021-11-13 18:35:52 +09:00
dependabot[bot]	8a1f69b3d8	Bump i18n-tasks from 0.9.34 to 0.9.35 (#16959 ) Bumps [i18n-tasks](https://github.com/glebm/i18n-tasks) from 0.9.34 to 0.9.35. - [Release notes](https://github.com/glebm/i18n-tasks/releases) - [Changelog](https://github.com/glebm/i18n-tasks/blob/main/CHANGES.md) - [Commits](https://github.com/glebm/i18n-tasks/compare/v0.9.34...v0.9.35) --- updated-dependencies: - dependency-name: i18n-tasks dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2021-11-13 18:34:28 +09:00
dependabot[bot]	4b1af2249d	Bump i18n-tasks from 0.9.34 to 0.9.35 (#16959 ) Bumps [i18n-tasks](https://github.com/glebm/i18n-tasks) from 0.9.34 to 0.9.35. - [Release notes](https://github.com/glebm/i18n-tasks/releases) - [Changelog](https://github.com/glebm/i18n-tasks/blob/main/CHANGES.md) - [Commits](https://github.com/glebm/i18n-tasks/compare/v0.9.34...v0.9.35) --- updated-dependencies: - dependency-name: i18n-tasks dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2021-11-13 18:34:28 +09:00
dependabot[bot]	0f994bac51	Bump idn-ruby from 0.1.2 to 0.1.4 (#16958 ) Bumps [idn-ruby](https://github.com/deepfryed/idn-ruby) from 0.1.2 to 0.1.4. - [Release notes](https://github.com/deepfryed/idn-ruby/releases) - [Changelog](https://github.com/deepfryed/idn-ruby/blob/master/CHANGES) - [Commits](https://github.com/deepfryed/idn-ruby/compare/v0.1.2...v0.1.4) --- updated-dependencies: - dependency-name: idn-ruby dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2021-11-13 18:34:00 +09:00
dependabot[bot]	6a34be0cab	Bump idn-ruby from 0.1.2 to 0.1.4 (#16958 ) Bumps [idn-ruby](https://github.com/deepfryed/idn-ruby) from 0.1.2 to 0.1.4. - [Release notes](https://github.com/deepfryed/idn-ruby/releases) - [Changelog](https://github.com/deepfryed/idn-ruby/blob/master/CHANGES) - [Commits](https://github.com/deepfryed/idn-ruby/compare/v0.1.2...v0.1.4) --- updated-dependencies: - dependency-name: idn-ruby dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2021-11-13 18:34:00 +09:00
Claire	95073de3ea	Merge branch 'main' into glitch-soc/merge-upstream	2021-11-13 09:40:13 +01:00
Claire	2cda8be805	Merge branch 'main' into glitch-soc/merge-upstream	2021-11-13 09:40:13 +01:00
Claire	fdfcc4fcb7	Fix OpenGraph/LinkedData embeds having incorrectly-generated iframes (#16978 )	2021-11-13 03:30:27 +01:00
Claire	ef8deb0878	Fix OpenGraph/LinkedData embeds having incorrectly-generated iframes (#16978 )	2021-11-13 03:30:27 +01:00
Jeong Arm	1723b4f6b3	Rename, move, fix code	2021-11-12 19:51:35 +01:00
Jeong Arm	8b8d58c670	Rename, move, fix code	2021-11-12 19:51:35 +01:00
Jeong Arm	675b222ac5	Fix admin sidebar on Mobile layout	2021-11-12 19:51:35 +01:00
Jeong Arm	3238e60823	Fix admin sidebar on Mobile layout	2021-11-12 19:51:35 +01:00
Claire	b5960bd1f2	Fix some glitch-soc styling issues due to different class names Partial fix to #1629	2021-11-12 16:29:36 +01:00
Claire	f33878969a	Fix some glitch-soc styling issues due to different class names Partial fix to #1629	2021-11-12 16:29:36 +01:00
Yusuke Nakamura	786e5e634c	Build container image by GitHub Actions (#16973 ) * Build container image by GitHub Actions * Trigger docker build only pushed to main branch * Tweak tagging imgae - "edge" is the main branch - "latest" is the tagged latest release	2021-11-12 05:18:29 +01:00
Yusuke Nakamura	e510302a7c	Build container image by GitHub Actions (#16973 ) * Build container image by GitHub Actions * Trigger docker build only pushed to main branch * Tweak tagging imgae - "edge" is the main branch - "latest" is the tagged latest release	2021-11-12 05:18:29 +01:00
Claire	65a727c888	Fix "bundle exec rails mastodon:setup" crashing in some circumstances (#16976 ) Fix regression from #16896	2021-11-11 14:00:30 +01:00
Claire	18b885ee3a	Fix "bundle exec rails mastodon:setup" crashing in some circumstances (#16976 ) Fix regression from #16896	2021-11-11 14:00:30 +01:00
Shlee	15ac5f2a2f	[CircleCI] Test using Postgres 14 (#16948 ) * Update config.yml * Update config.yml	2021-11-06 17:13:51 +01:00
Shlee	1114935e64	[CircleCI] Test using Postgres 14 (#16948 ) * Update config.yml * Update config.yml	2021-11-06 17:13:51 +01:00
Eugen Rochko	8925737d2c	Forward port version bumps to 3.4.2 and 3.4.3 (#16945 ) * Bump version to 3.4.2 * Bump version to 3.4.3	2021-11-06 05:32:14 +01:00
Eugen Rochko	2251db42ec	Forward port version bumps to 3.4.2 and 3.4.3 (#16945 ) * Bump version to 3.4.2 * Bump version to 3.4.3	2021-11-06 05:32:14 +01:00
Claire	810f477838	Merge pull request #1628 from ClearlyClaire/glitch-soc/merge-upstream Merge upstream changes	2021-11-06 00:33:55 +01:00
Claire	a25839340e	Merge pull request #1628 from ClearlyClaire/glitch-soc/merge-upstream Merge upstream changes	2021-11-06 00:33:55 +01:00
Claire	21e3306721	Merge branch 'main' into glitch-soc/merge-upstream	2021-11-06 00:15:38 +01:00
Claire	4bb6b1a1e7	Merge branch 'main' into glitch-soc/merge-upstream	2021-11-06 00:15:38 +01:00
Claire	9e122d774d	Fix reviving revoked sessions and invalidating login (#16943 ) Up until now, we have used Devise's Rememberable mechanism to re-log users after the end of their browser sessions. This mechanism relies on a signed cookie containing a token. That token was stored on the user's record, meaning it was shared across all logged in browsers, meaning truly revoking a browser's ability to auto-log-in involves revoking the token itself, and revoking access from all logged-in browsers. We had a session mechanism that dynamically checks whether a user's session has been disabled, and would log out the user if so. However, this would only clear a session being actively used, and a new one could be respawned with the `remember_user_token` cookie. In practice, this caused two issues: - sessions could be revived after being closed from /auth/edit (security issue) - auto-log-in would be disabled for all browsers after logging out from one of them This PR removes the `remember_token` mechanism and treats the `_session_id` cookie/token as a browser-specific `remember_token`, fixing both issues.	2021-11-06 00:13:58 +01:00
Claire	6da135a493	Fix reviving revoked sessions and invalidating login (#16943 ) Up until now, we have used Devise's Rememberable mechanism to re-log users after the end of their browser sessions. This mechanism relies on a signed cookie containing a token. That token was stored on the user's record, meaning it was shared across all logged in browsers, meaning truly revoking a browser's ability to auto-log-in involves revoking the token itself, and revoking access from all logged-in browsers. We had a session mechanism that dynamically checks whether a user's session has been disabled, and would log out the user if so. However, this would only clear a session being actively used, and a new one could be respawned with the `remember_user_token` cookie. In practice, this caused two issues: - sessions could be revived after being closed from /auth/edit (security issue) - auto-log-in would be disabled for all browsers after logging out from one of them This PR removes the `remember_token` mechanism and treats the `_session_id` cookie/token as a browser-specific `remember_token`, fixing both issues.	2021-11-06 00:13:58 +01:00
Claire	925adbf7af	Fix AccountNote not having a maximum length (#16942 )	2021-11-06 00:12:25 +01:00
Claire	87085a5152	Fix AccountNote not having a maximum length (#16942 )	2021-11-06 00:12:25 +01:00
Eugen Rochko	4dc87ffc06	Add support for structured data and more OpenGraph tags to link cards (#16938 ) Save preview cards under their canonical URL Increase max redirects to follow from 2 to 3	2021-11-05 23:23:05 +01:00
Eugen Rochko	39cdf61ab7	Add support for structured data and more OpenGraph tags to link cards (#16938 ) Save preview cards under their canonical URL Increase max redirects to follow from 2 to 3	2021-11-05 23:23:05 +01:00
Claire	91bd8b921b	Fix handling announcements with links (#16941 ) Broken since #15827	2021-11-05 21:14:35 +01:00
Claire	989c67d29d	Fix handling announcements with links (#16941 ) Broken since #15827	2021-11-05 21:14:35 +01:00
Jeong Arm	33110dee93	Fix statuses order in account's statuses admin page (#16937 )	2021-11-04 15:49:35 +01:00
Jeong Arm	458830ee7c	Fix statuses order in account's statuses admin page (#16937 )	2021-11-04 15:49:35 +01:00
dependabot[bot]	27226444d1	Bump @babel/preset-env from 7.15.8 to 7.16.0 (#16923 ) Bumps [@babel/preset-env](https://github.com/babel/babel/tree/HEAD/packages/babel-preset-env) from 7.15.8 to 7.16.0. - [Release notes](https://github.com/babel/babel/releases) - [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md) - [Commits](https://github.com/babel/babel/commits/v7.16.0/packages/babel-preset-env) --- updated-dependencies: - dependency-name: "@babel/preset-env" dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2021-11-02 22:15:45 +09:00
dependabot[bot]	afb2b19ff5	Bump @babel/preset-env from 7.15.8 to 7.16.0 (#16923 ) Bumps [@babel/preset-env](https://github.com/babel/babel/tree/HEAD/packages/babel-preset-env) from 7.15.8 to 7.16.0. - [Release notes](https://github.com/babel/babel/releases) - [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md) - [Commits](https://github.com/babel/babel/commits/v7.16.0/packages/babel-preset-env) --- updated-dependencies: - dependency-name: "@babel/preset-env" dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2021-11-02 22:15:45 +09:00
dependabot[bot]	1fab15e868	Bump @babel/preset-react from 7.14.5 to 7.16.0 (#16926 ) Bumps [@babel/preset-react](https://github.com/babel/babel/tree/HEAD/packages/babel-preset-react) from 7.14.5 to 7.16.0. - [Release notes](https://github.com/babel/babel/releases) - [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md) - [Commits](https://github.com/babel/babel/commits/v7.16.0/packages/babel-preset-react) --- updated-dependencies: - dependency-name: "@babel/preset-react" dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2021-11-02 21:57:45 +09:00
dependabot[bot]	47243e9815	Bump @babel/preset-react from 7.14.5 to 7.16.0 (#16926 ) Bumps [@babel/preset-react](https://github.com/babel/babel/tree/HEAD/packages/babel-preset-react) from 7.14.5 to 7.16.0. - [Release notes](https://github.com/babel/babel/releases) - [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md) - [Commits](https://github.com/babel/babel/commits/v7.16.0/packages/babel-preset-react) --- updated-dependencies: - dependency-name: "@babel/preset-react" dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2021-11-02 21:57:45 +09:00
dependabot[bot]	ffd5671fae	Bump @babel/plugin-proposal-decorators from 7.15.8 to 7.16.0 (#16924 ) Bumps [@babel/plugin-proposal-decorators](https://github.com/babel/babel/tree/HEAD/packages/babel-plugin-proposal-decorators) from 7.15.8 to 7.16.0. - [Release notes](https://github.com/babel/babel/releases) - [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md) - [Commits](https://github.com/babel/babel/commits/v7.16.0/packages/babel-plugin-proposal-decorators) --- updated-dependencies: - dependency-name: "@babel/plugin-proposal-decorators" dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2021-11-02 21:52:51 +09:00
dependabot[bot]	547642fc36	Bump @babel/plugin-proposal-decorators from 7.15.8 to 7.16.0 (#16924 ) Bumps [@babel/plugin-proposal-decorators](https://github.com/babel/babel/tree/HEAD/packages/babel-plugin-proposal-decorators) from 7.15.8 to 7.16.0. - [Release notes](https://github.com/babel/babel/releases) - [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md) - [Commits](https://github.com/babel/babel/commits/v7.16.0/packages/babel-plugin-proposal-decorators) --- updated-dependencies: - dependency-name: "@babel/plugin-proposal-decorators" dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2021-11-02 21:52:51 +09:00
dependabot[bot]	f50cb26c77	Bump @babel/plugin-transform-runtime from 7.15.8 to 7.16.0 (#16927 ) Bumps [@babel/plugin-transform-runtime](https://github.com/babel/babel/tree/HEAD/packages/babel-plugin-transform-runtime) from 7.15.8 to 7.16.0. - [Release notes](https://github.com/babel/babel/releases) - [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md) - [Commits](https://github.com/babel/babel/commits/v7.16.0/packages/babel-plugin-transform-runtime) --- updated-dependencies: - dependency-name: "@babel/plugin-transform-runtime" dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2021-11-02 21:39:29 +09:00

... 204 205 206 207 208 ...

38626 commits