| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2020-07-14 | Security/fix permission bugs (#966) | ryexandra | |
| * secure the `EditPost` API endpoint * Check user is moderator in BanFromCommunity * secure the `EditComment` API endpoint * pass orig `read` prob when not explicitly updating it. * Block random users from adding mods. * use cleaner logic from `EditPost` * prevent editing a community by a mod from transfering ownership to them * secure `read` action in `EditPrivateMessage` * Add check in UserMention * only let the indended recipient mark as read * simplify booleans to satisfy clippy * requested changes + cargo +nightly fmt * fix to pass federation tests for deleting comments and posts Co-authored-by: chiminh <chiminh.tutanota.com> Co-authored-by: Hex Bear <buildadangtrain@protonmail.com> | |||
| 2020-07-13 | Make reads from activitypub objects immutable | Felix Ableitner | |
| 2020-07-10 | Split code into cargo workspaces (#67) | nutomic | |
| More fixes - fixed docker builds - fixed mentions regex test - fixed DATABASE_URL stuff - change schema path in diesel.toml Address review comments - add jsonb column back into activity table - remove authors field from cargo.toml - adjust LEMMY_DATABASE_URL env var usage - rename all occurences of LEMMY_DATABASE_URL to DATABASE_URL Decouple utils and db Split code into cargo workspaces Co-authored-by: Felix Ableitner <me@nutomic.com> Reviewed-on: https://yerbamate.dev/LemmyNet/lemmy/pulls/67 | |||
| 2020-07-08 | Migrate user and group to new activitystreams library | Felix Ableitner | |
| 2020-07-01 | Federation async (#848) | Riley | |
| * Asyncify more * I guess these changed * Clean PR a bit * Convert more away from failure error * config changes for testing federation * It was DNS So actix-web's client relies on TRust DNS Resolver to figure out where to send data, but TRust DNS Resolver seems to not play nice with docker, which expressed itself as not resolving the name to an IP address _the first time_ when making a request. The fix was literally to make the request again (which I limited to 3 times total, and not exceeding the request timeout in total) * Only retry for connecterror Since TRust DNS Resolver was causing ConnectError::Timeout, this change limits the retry to only this error, returning immediately for any other error * Use http sig norm 0.4.0-alpha for actix-web 3.0 support * Blocking function, retry http requests * cargo +nightly fmt * Only create one pictrs dir * Don't yarn build * cargo +nightly fmt | |||
| 2020-06-03 | migrate tombstone | Felix Ableitner | |
| 2020-05-16 | Rework imports | Felix | |
| 2020-05-14 | Use ActorType for sign/verify, instead of passing raw privatekey/actor_id | Felix | |
| 2020-05-14 | Add helper function for Activity::create() | Felix | |
| 2020-05-05 | Federated private messages. | Dessalines | |
 |
index : lemmy | |
| Contrib clone of lemmy | matthias |
| summaryrefslogtreecommitdiffstats |