382 Commits (e3dbfa3c493835964d45bcea856feaebbc947084)

Author SHA1 Message Date
Claire c863f76a62 Add logging for Rails cache timeouts (#21667)
2 years ago
Claire d5fad31a45 Add form-action CSP directive (#20781)
2 years ago
trwnh 2e118aa0e6 Add missing admin scopes (fix #20892) (#20918)
2 years ago
Eugen Rochko c0b3ebd307 Fix wrong directive `unsafe-wasm-eval` to `wasm-unsafe-eval` (#20729)
2 years ago
prplecake a4f1043bb3 Use "unsafe-wasm-eval" instead of "unsafe-eval" in script-src CSP (#20606)
2 years ago
Eugen Rochko e18c8537e6 Fix rate limiting for paths with formats (#20675)
2 years ago
Matt Corallo 88b46d0a8f Add `Cache-Control` header to openstack-stored files (#20610)
2 years ago
David Hewitt df557906fb Allow unsetting x-amz-acl S3 Permission headers (#20510)
2 years ago
prplecake d870657f80 Add "unsafe-eval" to script-src CSP (#18817)
2 years ago
Eugen Rochko d53e1fc6d9 Fix vacuum scheduler missing lock, locks never expiring (#19458)
2 years ago
Eugen Rochko a593188ded Add user content translations with configurable backends (#19218)
2 years ago
Eugen Rochko ecddc06474 Change "Allow trends without prior review" setting to include statuses (#17977)
2 years ago
Jeong Arm 30113597e5 Support "http_hidden_proxy" ENV var for hidden service only proxy (#18427)
2 years ago
Eugen Rochko 38d04135bf Change how hashtags are normalized (#18795)
2 years ago
Claire 45a777f9d8 Fix CAS_DISPLAY_NAME, SAML_DISPLAY_NAME and OIDC_DISPLAY_NAME being ignored (#18568)
2 years ago
Eugen Rochko 89d4d6fd3b Fix confirmation redirect to app without `Location` header (#18523)
2 years ago
Eugen Rochko f4cab3ebad Change search indexing to use batches to minimize resource usage (#18451)
3 years ago
Eugen Rochko a8e694233c Fix opening and closing Redis connections instead of using a pool (#18171)
3 years ago
Claire 2d9ef045c5 Fix stoplight not using REDIS_NAMESPACE (#18160)
3 years ago
Eugen Rochko 553889bc7c Fix single Redis connection being used across all threads (#18135)
3 years ago
Eugen Rochko b7a6bba0b7 Fix cookies secure flag being set when served over Tor (#17992)
3 years ago
Holger fb3fc6cab4 fix: `s3_force_single_request` not parsed (#17922)
3 years ago
Eugen Rochko 5a7219e532 Refactor formatter (#17828)
3 years ago
Claire c3551f4f80 Fix PgHero suggesting migrations (#17807)
3 years ago
Yamagishi Kazutoshi 1d96010836 Fix LetterOpennerWeb CSP (#17770)
3 years ago
dependabot[bot] 0bc38b0a8a Bump rack-attack from 6.5.0 to 6.6.0 (#17405)
3 years ago
chandrn7 ce5bebf108 Allow login through OpenID Connect (#16221)
3 years ago
Josh Soref 1c070bd94c Spelling (#17705)
3 years ago
luzpaz b97e7364f3 Fix various typos (#17621)
3 years ago
Claire 9f9e82918f Fix error when trying to register (#17600)
3 years ago
zunda 8009c67a09 Avoid return within block (#17590)
3 years ago
Jeong Arm ec4e4ada63 Throttle IPv6 signup for subnet (#17588)
3 years ago
Claire 12bb24ea35 Remove support for OAUTH_REDIRECT_AT_SIGN_IN (#17287)
3 years ago
Eugen Rochko 7b3972c270 Remove IP tracking columns from users table (#16409)
3 years ago
Jeong Arm df31a1a8e6 Fix media API limit (#17272)
3 years ago
Eugen Rochko 9a8784829f Fix warnings on Rails boot (#16946)
3 years ago
Takeshi Umeda 8b87566072 Fix ElasticSearch to Elasticsearch (#17050)
3 years ago
Takeshi Umeda 869faf5f87 Bump chewy from 5.2.0 to 7.2.3 (supports Elasticsearch 7.x) (#16915)
3 years ago
Claire 9e122d774d Fix reviving revoked sessions and invalidating login (#16943)
3 years ago
Jeong Arm 31fb810ffa Support authentication for ElasticSearch (#16890)
3 years ago
Claire e4dc1e1d2a Minor memory optimizations (#16507)
3 years ago
Daniel 8632cc7dc5 New env variable: CAS_SECURITY_ASSUME_EMAIL_IS_VERIFIED (#16655)
3 years ago
Claire 9c1d3086af Fix inefficiencies in auto-linking code (#16506)
3 years ago
Claire 5892f7582d Fix mailer jobs for deleted notifications erroring out (#16294)
4 years ago
Claire b818d6090a Fix host check on healthcheck path not being disabled (#16270)
4 years ago
Jeong Arm c527f69d2f Disable host check on healthcheck path (#16243)
4 years ago
Takeshi Umeda 00f4204d05 Add a Redis environment variable for sidekiq (#16188)
4 years ago
Claire 86f5fad111 Add Ruby 3.0 support (#16046)
4 years ago
Takeshi Umeda d9f25e3c16 Fix guard against DNS rebinding attacks (#16095)
4 years ago
Takeshi Umeda 5646786c80 Add guard against DNS rebinding attacks (#16087)
4 years ago