Commit Graph

5812 Commits

Author SHA1 Message Date
0c24f4dce2 Add support for Gemini urls (#15013)
This PR updates the `valid_url` regex and sanitizer allowlist to provide
support for Gemini urls.

Closes #14991
2020-10-19 17:02:13 +02:00
4130aef29c Fix translation string (#14986) 2020-10-16 21:41:43 +02:00
fb5f3be18f Fix strings that could not be translated (#14980) 2020-10-15 21:24:58 +02:00
a69ca29473 Change how missing desktop notifications permission is displayed (#14985)
Add missing controls for new notification type
2020-10-15 16:24:47 +02:00
b4c4af18dc Fix a bear check when the activity object is nil (#14981) 2020-10-13 22:41:00 +02:00
4c45b43cb8 Change how CDN_HOST is passed down to make assets build reproducible (#14381)
* Change how CDN_HOST is passed down to make assets build reproducible

* Change webpacker/webpack configuration to dynamically load publicPath based on meta header

* Fix embedded layout missing the cdn-host meta header
2020-10-13 01:19:35 +02:00
96761752ec Add duration parameter to muting. (#13831)
* Adding duration to muting.

* Remove useless checks
2020-10-13 01:01:14 +02:00
f54ca3d08e Fix browser notification permission request logic (#13543)
* Add notification permission handling code

* Request notification permission when enabling any notification setting

* Add badge to notification settings when permissions insufficient

* Disable alerts by default, requesting permission and enable them on onboarding
2020-10-13 00:37:21 +02:00
5e1364c448 Add IP-based rules (#14963) 2020-10-12 16:33:49 +02:00
dc52a778e1 Fix issue checking for last unread notification when there are gaps (#14960) 2020-10-09 17:12:52 +02:00
dac3e362fd Fix unread notification marker not updating when mounting column (#14954) 2020-10-08 00:35:27 +02:00
7d985f2aac Remove dependency on goldfinger gem (#14919)
There are edge cases where requests to certain hosts timeout when
using the vanilla HTTP.rb gem, which the goldfinger gem uses. Now
that we no longer need to support OStatus servers, webfinger logic
is so simple that there is no point encapsulating it in a gem, so
we can just use our own Request class. With that, we benefit from
more robust timeout code and IPv4/IPv6 resolution.

Fix #14091
2020-10-08 00:34:57 +02:00
63770d3aac Ignore alt-key hotkeys in text fields (#14942)
Fixes #14862

This used to be the case until #13987, which introduced a hotkey to toggle
the Content Warning field.

Unfortunately, MacOS relies on the “alt” key for many things, including
composing text (see #14862), therefore, even if that makes the CW toggle
hotkey significantly less useful, it makes sense to not interfere with
composing toots.
2020-10-05 22:04:06 +02:00
5a9ad221bf Update translation files (#14920) 2020-10-05 02:57:38 +02:00
a549415868 Fix regressions in icon buttons in web UI (#14915) 2020-10-04 15:02:36 +02:00
bec8b12bb5 Fix mark as read in notifications to be saved immediately (#14907)
* Fix mark as read in notifications to be saved immediately

* fix code style
2020-10-01 04:17:46 +02:00
65136600e3 Fix logging out on mobile (#14901)
Fixes #14900
2020-09-30 19:31:17 +02:00
78e45a5285 Add option to disable swiping motions across the WebUI (#13885)
Fixes #13882
2020-09-30 19:31:03 +02:00
f5d08f2417 Fix unread notification markers (#14897) 2020-09-29 15:30:56 +02:00
82951920f7 Fix bell button causing a brief “Cancel follow request” on locked accounts (#14896) 2020-09-28 21:44:29 +02:00
d88a79b456 Add pop-out player for audio/video in web UI (#14870)
Fix #11160
2020-09-28 13:29:43 +02:00
d60290044e Add environment variable to allow requests to some private addresses (#14722) 2020-09-26 20:57:39 +02:00
ff89025979 Add unread notification markers (#14818)
* Add unread notification markers

Fixes #14804

* Allow IntersectionObserverArticle's children to be updated
2020-09-26 20:57:07 +02:00
03b6b034b9 add og:published_time to opengraph meta tags (#14865) 2020-09-24 23:32:13 +02:00
b655a7f88f Fix a slow query for TagFeed (#14861)
* Fix a slow query for TagFeed

* rename tags to tag_ids
2020-09-23 16:01:54 +02:00
070026e634 Fix method of the DELETE DATA button (#14855) 2020-09-21 20:37:19 +02:00
8c8bf0289f Fix not being able to enable status notifications in Web Push API (#14822) 2020-09-21 17:48:55 +02:00
974b1b79ce Add option to be notified when a followed user posts (#13546)
* Add bell button

Fix #4890

* Remove duplicate type from post-deployment migration

* Fix legacy class type mappings

* Improve query performance with better index

* Fix validation

* Remove redundant index from notifications
2020-09-18 17:26:45 +02:00
eaea2311aa Fix home TL marker code mishandling gaps (#14809) 2020-09-16 20:17:40 +02:00
aab867b0e8 Fix notification filter bar incorrectly filtering gaps (#14808) 2020-09-16 20:17:16 +02:00
5d3c8baa9a Fix validates :sign_count of WebauthnCredential (#14806) 2020-09-16 20:16:46 +02:00
ed099d8bdc Change account suspensions to be reversible by default (#14726) 2020-09-15 14:37:58 +02:00
bbcbf12215 Fix unreadable placeholder text color in high contrast theme in web UI (#14803)
Fix #14717
2020-09-15 09:24:24 +02:00
b67caf9be4 Add paragraph about browser add-ons when encountering some errors (#14801)
* Add paragraph about browser add-ons when encountering some errors

When a crash is caused by a NotFoundError exception, add a paragraph
to the error page mentioning browser add-ons.

Indeed, crashes with NotFoundError are often caused by browser extensions
messing with the DOM in ways React.JS can't recover from (e.g. issues #13325
and #14731).

* Reword error messages
2020-09-14 15:05:22 +02:00
cd4ec7cd74 Do not serve account actors at all in limited federation mode (#14800)
* Do not serve account actors at all in limited federation mode

When an account is fetched without a signature from an allowed instance,
return an error.

This isn't really an improvement in security, as the only information that was
previously returned was required protocol-level info, and the only personal bit
was the existence of the account. The existence of the account can still be
checked by issuing a webfinger query, as those are accepted without signatures.

However, this change makes it so that unallowed instances won't create account
records on their end when they find a reference to an unknown account.

The previous behavior of rendering a limited list of fields, instead of not
rendering the actor at all, was in order to prevent situations in which two
instances in Authorized Fetch mode or Limited Federation mode would fail to
reach each other because resolving an account would require a signed query…
from an account which can only be fetched with a signed query itself. However,
this should now be fine as fetching accounts is done by signing on behalf of
the special instance actor, which does not require any kind of valid signature
to be fetched.

* Fix tests
2020-09-14 13:04:29 +02:00
42c4322ce7 Fix reported statuses not being included in warning e-mail (#14778) 2020-09-13 12:52:17 +02:00
fa0c71f0d9 allow pagination by min_id and max_id (#14776)
* allow pagination by min_id and max_id

* also AccountConversation allows min_id,max_id pair

* also home,list TL allows min_id,max_id pair
2020-09-12 17:09:49 +02:00
4e4b3a0c8e Refactor settings controllers (#14767)
- Disallow suspended accounts from revoking sessions and apps
- Allow suspended accounts to access exports
2020-09-11 20:56:35 +02:00
e6b272e5c9 Change REST API to return empty data for suspended accounts (#14765) 2020-09-11 15:16:29 +02:00
91eecd1b3c Add border around 🕺 emoji (#14769)
Fixes #14768
2020-09-10 19:08:03 +02:00
fcb9350ff8 Change web UI to show empty profile for suspended accounts (#14766) 2020-09-10 00:07:19 +02:00
65760f59df Refactor feed manager (#14761) 2020-09-08 03:41:16 +02:00
517af45e32 Fix multiple boosts of a same toot erroneously appearing in TL (#14759)
* Check for and record reblog info atomically

Instead of using ZREVRANK to determine whether a reblog is a new reblog or not,
use ZADD's NX option to perform the check/addition option atomically.

* Replace ZREVRANK call with ZSCORE key which is more efficient

* Make tests a bit stricter

* Fix off-by-one
2020-09-07 18:00:15 +02:00
e79d719e92 Changed tag most_used to recently_used (#14760) 2020-09-07 17:47:41 +02:00
e8bc187845 Refactor how public and tag timelines are queried (#14728) 2020-09-07 11:02:04 +02:00
a6121a159c Remove obsolete IndexedDB operations from web UI (#14730)
Storing objects in IndexedDB was disabled in #7932, but we were
still trying to read objects from it before making an API call
2020-09-04 20:22:40 +02:00
272aa4a109 Fix direct visibility style for light theme (#14727) 2020-09-04 08:49:56 +02:00
abee40b232 Add outbox attribute to instance actor (#14721)
It's not useful for now, but it's required by ActivityPub
2020-09-02 18:42:50 +02:00
33ad850c98 Added account featured tags API (#11817) 2020-09-02 02:13:10 +02:00
17340365bb Add featured hashtags as an ActivityPub collection (#11595) 2020-09-02 02:11:12 +02:00