mastodon/app
ThibG aa80292170 Improve streaming server security (#10818)
* Check OAuth token scopes in the streaming API

* Use Sec-WebSocket-Protocol instead of query string to pass WebSocket token

Inspired by https://github.com/kubevirt/kubevirt/issues/1242
2019-05-24 15:23:38 +02:00
..
chewy
controllers Move signature verification stoplight to the requests themselves (#10813) 2019-05-24 15:23:38 +02:00
helpers Add invite request to pending account notification e-mail (#10528) 2019-04-10 00:36:01 +02:00
javascript Improve streaming server security (#10818) 2019-05-24 15:23:38 +02:00
lib Fix possible race condition when processing statuses (#10815) 2019-05-24 15:23:38 +02:00
mailers
models Fix “invited by” not showing up for invited accounts in admin interface (#10791) 2019-05-19 22:32:25 +02:00
policies
presenters Improve blocked view of profiles (#10491) 2019-04-07 04:59:13 +02:00
serializers Add blurhash (#10630) 2019-04-27 03:24:09 +02:00
services Prevent from publicly boosting one's own private toots (#10775) 2019-05-19 16:25:40 +02:00
validators Fix “invited by” not showing up for invited accounts in admin interface (#10791) 2019-05-19 22:32:25 +02:00
views add og:image:alt for media attachments in embeds (#10779) 2019-05-19 16:26:00 +02:00
workers Retry ActivityPub inbox delivery on HTTP 401 and 408 errors (#10812) 2019-05-24 15:23:38 +02:00