ThibG
aa98655cf6
Fix dereferencing remote statuses not using the correct account ( #14656 )
...
Follow-up to #14359
In the case of limited toots, the receiver may not be explicitly part of the
audience. If a specific user's inbox URI was specified, it makes sense to
dereference the toot from the corresponding user, instead of trying to find
someone in the explicit audience.
2020-10-19 15:41:11 +02:00
Tdxdxoz
dd3a86eb04
Fix: also use custom private boost icon for detailed status ( #14471 )
...
* use custom private boost icon for detail status
* only use className
2020-10-19 15:40:51 +02:00
ThibG
aea0161e83
Add support for inlined objects in activity audience ( #14514 )
...
* Add support for inlined objects in activity audience
* Add tests
2020-10-19 15:40:42 +02:00
ThibG
8b448aecef
Fix tootctl media
commands not handling snowflake ids for media_attachments ( #14536 )
2020-10-19 15:40:34 +02:00
ThibG
6db143e424
Fix crash when failing to load emoji picker ( #14525 )
...
Fixes #14523
2020-10-19 15:40:22 +02:00
ThibG
3b699f1732
Fix thumbnail color extraction ( #14464 )
...
* Fix contrast calculation for thumbnail color extraction
Luminance calculation was using 0-255 RGB values instead of 0-1 sRGB values,
leading to incorrectly-computed contrast values.
Since we use ColorDiff already, just use its XYZ colorspace conversion code
to get the value.
* Require at least 3:1 contrast for both accent and foreground colors
* Lower required contrast for the accent color
2020-10-19 15:40:14 +02:00
ThibG
1995a5cb34
Fix audio/video player not using CDN_HOST in media paths on public pages ( #14486 )
2020-10-19 15:40:03 +02:00
ThibG
469c4c78a3
Fix audio player on Safari ( #14485 )
2020-10-19 15:39:48 +02:00
ThibG
399c5f0900
Change content-type to be always computed from file data ( #14452 )
...
* Change content-type to be always computed from file data
Restore previous behavior, detecting the content-type isn't very
expensive, and some instances may serve files as application/octet-stream
regardless of their true type, making fetching media from them fail, while
it used to work pre-3.2.0.
* Add test
2020-10-19 15:39:28 +02:00
ThibG
856cb96a2b
Fix new audio player features not working on Safari ( #14465 )
...
Fixes #14462
2020-10-19 15:39:18 +02:00
Takeshi Umeda
58c59af573
Fix an error when file_file_size is nil in tootctl media remove ( #14657 )
2020-10-19 14:49:31 +02:00
Eugen Rochko
3f4cceebd6
Fix videos with near-60 fps being rejected ( #14684 )
...
Fix #14668
2020-10-19 14:49:14 +02:00
Eugen Rochko
ce6aaed432
Remove dependency on goldfinger gem ( #14919 )
...
There are edge cases where requests to certain hosts timeout when
using the vanilla HTTP.rb gem, which the goldfinger gem uses. Now
that we no longer need to support OStatus servers, webfinger logic
is so simple that there is no point encapsulating it in a gem, so
we can just use our own Request class. With that, we benefit from
more robust timeout code and IPv4/IPv6 resolution.
Fix #14091
2020-10-19 14:48:54 +02:00
Eugen Rochko
8f79ed0487
Fix reported statuses not being included in warning e-mail ( #14778 )
2020-10-19 14:46:35 +02:00
ThibG
4acfc3ce83
Fix handling of Reject Follow when a matching follow relationship exists ( #14479 )
...
* Add tests
* Fix handling of Reject Follow when a matching follow relationship exists
Regression from #12199
2020-10-19 14:46:10 +02:00
Takeshi Umeda
c98b7751ca
Fix limited follower id in fan-out-on-write service ( #14709 )
2020-10-19 14:45:44 +02:00
Eugen Rochko
0abfa06b2f
Fix inefficiencies in fan-out-on-write service ( #14682 )
2020-10-19 14:45:30 +02:00
ThibG
aecdaf5a8c
Do not serve account actors at all in limited federation mode ( #14800 )
...
* Do not serve account actors at all in limited federation mode
When an account is fetched without a signature from an allowed instance,
return an error.
This isn't really an improvement in security, as the only information that was
previously returned was required protocol-level info, and the only personal bit
was the existence of the account. The existence of the account can still be
checked by issuing a webfinger query, as those are accepted without signatures.
However, this change makes it so that unallowed instances won't create account
records on their end when they find a reference to an unknown account.
The previous behavior of rendering a limited list of fields, instead of not
rendering the actor at all, was in order to prevent situations in which two
instances in Authorized Fetch mode or Limited Federation mode would fail to
reach each other because resolving an account would require a signed query…
from an account which can only be fetched with a signed query itself. However,
this should now be fine as fetching accounts is done by signing on behalf of
the special instance actor, which does not require any kind of valid signature
to be fetched.
* Fix tests
2020-10-19 14:45:12 +02:00
mayaeh
4130aef29c
Fix translation string ( #14986 )
2020-10-16 21:41:43 +02:00
mayaeh
fb5f3be18f
Fix strings that could not be translated ( #14980 )
2020-10-15 21:24:58 +02:00
Eugen Rochko
a69ca29473
Change how missing desktop notifications permission is displayed ( #14985 )
...
Add missing controls for new notification type
2020-10-15 16:24:47 +02:00
Takeshi Umeda
b4c4af18dc
Fix a bear check when the activity object is nil ( #14981 )
2020-10-13 22:41:00 +02:00
dependabot[bot]
bb180921a3
Bump jest from 26.5.2 to 26.5.3 ( #14969 )
...
Bumps [jest](https://github.com/facebook/jest ) from 26.5.2 to 26.5.3.
- [Release notes](https://github.com/facebook/jest/releases )
- [Changelog](https://github.com/facebook/jest/blob/master/CHANGELOG.md )
- [Commits](https://github.com/facebook/jest/compare/v26.5.2...v26.5.3 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2020-10-13 20:19:39 +09:00
dependabot[bot]
ec1d8b7121
Bump sass from 1.26.12 to 1.27.0 ( #14973 )
...
Bumps [sass](https://github.com/sass/dart-sass ) from 1.26.12 to 1.27.0.
- [Release notes](https://github.com/sass/dart-sass/releases )
- [Changelog](https://github.com/sass/dart-sass/blob/master/CHANGELOG.md )
- [Commits](https://github.com/sass/dart-sass/compare/1.26.12...1.27.0 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2020-10-13 16:41:47 +09:00
dependabot[bot]
37295d59c4
Bump eslint from 7.10.0 to 7.11.0 ( #14975 )
...
Bumps [eslint](https://github.com/eslint/eslint ) from 7.10.0 to 7.11.0.
- [Release notes](https://github.com/eslint/eslint/releases )
- [Changelog](https://github.com/eslint/eslint/blob/master/CHANGELOG.md )
- [Commits](https://github.com/eslint/eslint/compare/v7.10.0...v7.11.0 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2020-10-13 15:50:06 +09:00
dependabot[bot]
df8cbbf364
Bump terser-webpack-plugin from 4.2.2 to 4.2.3 ( #14971 )
...
Bumps [terser-webpack-plugin](https://github.com/webpack-contrib/terser-webpack-plugin ) from 4.2.2 to 4.2.3.
- [Release notes](https://github.com/webpack-contrib/terser-webpack-plugin/releases )
- [Changelog](https://github.com/webpack-contrib/terser-webpack-plugin/blob/master/CHANGELOG.md )
- [Commits](https://github.com/webpack-contrib/terser-webpack-plugin/compare/v4.2.2...v4.2.3 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2020-10-13 15:49:45 +09:00
dependabot[bot]
a8e8ee249a
Bump eslint-plugin-react from 7.21.3 to 7.21.4 ( #14968 )
...
Bumps [eslint-plugin-react](https://github.com/yannickcr/eslint-plugin-react ) from 7.21.3 to 7.21.4.
- [Release notes](https://github.com/yannickcr/eslint-plugin-react/releases )
- [Changelog](https://github.com/yannickcr/eslint-plugin-react/blob/master/CHANGELOG.md )
- [Commits](https://github.com/yannickcr/eslint-plugin-react/compare/v7.21.3...v7.21.4 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2020-10-13 15:49:16 +09:00
dependabot[bot]
5de866539e
Bump file-loader from 6.1.0 to 6.1.1 ( #14974 )
...
Bumps [file-loader](https://github.com/webpack-contrib/file-loader ) from 6.1.0 to 6.1.1.
- [Release notes](https://github.com/webpack-contrib/file-loader/releases )
- [Changelog](https://github.com/webpack-contrib/file-loader/blob/master/CHANGELOG.md )
- [Commits](https://github.com/webpack-contrib/file-loader/compare/v6.1.0...v6.1.1 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2020-10-13 15:47:40 +09:00
dependabot[bot]
06c3d36395
Bump rubocop from 0.92.0 to 0.93.0 ( #14967 )
...
Bumps [rubocop](https://github.com/rubocop-hq/rubocop ) from 0.92.0 to 0.93.0.
- [Release notes](https://github.com/rubocop-hq/rubocop/releases )
- [Changelog](https://github.com/rubocop-hq/rubocop/blob/master/CHANGELOG.md )
- [Commits](https://github.com/rubocop-hq/rubocop/compare/v0.92.0...v0.93.0 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2020-10-13 15:45:37 +09:00
dependabot[bot]
5b131f08e1
Bump tzinfo-data from 1.2020.1 to 1.2020.2 ( #14966 )
...
Bumps [tzinfo-data](https://github.com/tzinfo/tzinfo-data ) from 1.2020.1 to 1.2020.2.
- [Release notes](https://github.com/tzinfo/tzinfo-data/releases )
- [Commits](https://github.com/tzinfo/tzinfo-data/compare/v1.2020.1...v1.2020.2 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2020-10-13 15:27:16 +09:00
dependabot[bot]
658dbd7f84
Bump imports-loader from 1.1.0 to 1.2.0 ( #14976 )
...
Bumps [imports-loader](https://github.com/webpack-contrib/imports-loader ) from 1.1.0 to 1.2.0.
- [Release notes](https://github.com/webpack-contrib/imports-loader/releases )
- [Changelog](https://github.com/webpack-contrib/imports-loader/blob/master/CHANGELOG.md )
- [Commits](https://github.com/webpack-contrib/imports-loader/compare/v1.1.0...v1.2.0 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2020-10-13 15:23:27 +09:00
dependabot[bot]
fc87b15871
Bump sass-loader from 10.0.2 to 10.0.3 ( #14977 )
...
Bumps [sass-loader](https://github.com/webpack-contrib/sass-loader ) from 10.0.2 to 10.0.3.
- [Release notes](https://github.com/webpack-contrib/sass-loader/releases )
- [Changelog](https://github.com/webpack-contrib/sass-loader/blob/master/CHANGELOG.md )
- [Commits](https://github.com/webpack-contrib/sass-loader/compare/v10.0.2...v10.0.3 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2020-10-13 15:22:56 +09:00
dependabot[bot]
3547009c42
Bump compression-webpack-plugin from 6.0.2 to 6.0.3 ( #14979 )
...
Bumps [compression-webpack-plugin](https://github.com/webpack-contrib/compression-webpack-plugin ) from 6.0.2 to 6.0.3.
- [Release notes](https://github.com/webpack-contrib/compression-webpack-plugin/releases )
- [Changelog](https://github.com/webpack-contrib/compression-webpack-plugin/blob/master/CHANGELOG.md )
- [Commits](https://github.com/webpack-contrib/compression-webpack-plugin/compare/v6.0.2...v6.0.3 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2020-10-13 15:16:46 +09:00
ThibG
4c45b43cb8
Change how CDN_HOST is passed down to make assets build reproducible ( #14381 )
...
* Change how CDN_HOST is passed down to make assets build reproducible
* Change webpacker/webpack configuration to dynamically load publicPath based on meta header
* Fix embedded layout missing the cdn-host meta header
2020-10-13 01:19:35 +02:00
Alex Dunn
53b22d247f
helm: add optional cron job to run tootctl remove media
( #14396 )
2020-10-13 01:19:13 +02:00
OSAMU SATO
96761752ec
Add duration parameter to muting. ( #13831 )
...
* Adding duration to muting.
* Remove useless checks
2020-10-13 01:01:14 +02:00
ThibG
f54ca3d08e
Fix browser notification permission request logic ( #13543 )
...
* Add notification permission handling code
* Request notification permission when enabling any notification setting
* Add badge to notification settings when permissions insufficient
* Disable alerts by default, requesting permission and enable them on onboarding
2020-10-13 00:37:21 +02:00
Eugen Rochko
5e1364c448
Add IP-based rules ( #14963 )
2020-10-12 16:33:49 +02:00
ThibG
dc52a778e1
Fix issue checking for last unread notification when there are gaps ( #14960 )
2020-10-09 17:12:52 +02:00
ThibG
dac3e362fd
Fix unread notification marker not updating when mounting column ( #14954 )
2020-10-08 00:35:27 +02:00
Eugen Rochko
7d985f2aac
Remove dependency on goldfinger gem ( #14919 )
...
There are edge cases where requests to certain hosts timeout when
using the vanilla HTTP.rb gem, which the goldfinger gem uses. Now
that we no longer need to support OStatus servers, webfinger logic
is so simple that there is no point encapsulating it in a gem, so
we can just use our own Request class. With that, we benefit from
more robust timeout code and IPv4/IPv6 resolution.
Fix #14091
2020-10-08 00:34:57 +02:00
dependabot[bot]
a37732ef33
Bump eslint from 7.6.0 to 7.10.0 ( #14948 )
...
Bumps [eslint](https://github.com/eslint/eslint ) from 7.6.0 to 7.10.0.
- [Release notes](https://github.com/eslint/eslint/releases )
- [Changelog](https://github.com/eslint/eslint/blob/master/CHANGELOG.md )
- [Commits](https://github.com/eslint/eslint/compare/v7.6.0...v7.10.0 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2020-10-07 23:24:57 +09:00
dependabot[bot]
3f6ab34cc5
Bump jest from 26.4.2 to 26.5.2 ( #14951 )
...
Bumps [jest](https://github.com/facebook/jest ) from 26.4.2 to 26.5.2.
- [Release notes](https://github.com/facebook/jest/releases )
- [Changelog](https://github.com/facebook/jest/blob/master/CHANGELOG.md )
- [Commits](https://github.com/facebook/jest/compare/v26.4.2...v26.5.2 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2020-10-07 22:53:43 +09:00
dependabot[bot]
d175a3bf09
Bump mini-css-extract-plugin from 0.11.0 to 0.11.3 ( #14949 )
...
Bumps [mini-css-extract-plugin](https://github.com/webpack-contrib/mini-css-extract-plugin ) from 0.11.0 to 0.11.3.
- [Release notes](https://github.com/webpack-contrib/mini-css-extract-plugin/releases )
- [Changelog](https://github.com/webpack-contrib/mini-css-extract-plugin/blob/master/CHANGELOG.md )
- [Commits](https://github.com/webpack-contrib/mini-css-extract-plugin/compare/v0.11.0...v0.11.3 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2020-10-07 20:33:19 +09:00
dependabot[bot]
dcaff7d3d0
Bump eslint-plugin-react from 7.21.2 to 7.21.3 ( #14950 )
...
Bumps [eslint-plugin-react](https://github.com/yannickcr/eslint-plugin-react ) from 7.21.2 to 7.21.3.
- [Release notes](https://github.com/yannickcr/eslint-plugin-react/releases )
- [Changelog](https://github.com/yannickcr/eslint-plugin-react/blob/master/CHANGELOG.md )
- [Commits](https://github.com/yannickcr/eslint-plugin-react/compare/v7.21.2...v7.21.3 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2020-10-07 20:32:39 +09:00
dependabot[bot]
e2d20be499
Bump sass from 1.26.11 to 1.26.12 ( #14947 )
...
Bumps [sass](https://github.com/sass/dart-sass ) from 1.26.11 to 1.26.12.
- [Release notes](https://github.com/sass/dart-sass/releases )
- [Changelog](https://github.com/sass/dart-sass/blob/master/CHANGELOG.md )
- [Commits](https://github.com/sass/dart-sass/compare/1.26.11...1.26.12 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2020-10-07 20:32:07 +09:00
dependabot[bot]
0b03ee3de7
Bump @github/webauthn-json from 0.5.5 to 0.5.6 ( #14946 )
...
Bumps [@github/webauthn-json](https://github.com/github/webauthn-json ) from 0.5.5 to 0.5.6.
- [Release notes](https://github.com/github/webauthn-json/releases )
- [Commits](https://github.com/github/webauthn-json/compare/v0.5.5...v0.5.6 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2020-10-07 20:31:54 +09:00
dependabot[bot]
9114b84157
Bump babel-jest from 26.3.0 to 26.5.2 ( #14945 )
...
Bumps [babel-jest](https://github.com/facebook/jest/tree/HEAD/packages/babel-jest ) from 26.3.0 to 26.5.2.
- [Release notes](https://github.com/facebook/jest/releases )
- [Changelog](https://github.com/facebook/jest/blob/master/CHANGELOG.md )
- [Commits](https://github.com/facebook/jest/commits/v26.5.2/packages/babel-jest )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2020-10-07 20:29:19 +09:00
tateisu
7919418e4c
add S3_READ_TIMEOUT environment variable ( #14952 )
2020-10-06 21:29:22 +02:00
Yamagishi Kazutoshi
da10c5c707
Exclude dependency updates other than direct dependencies ( #14944 )
2020-10-06 19:16:30 +02:00