chinwagsocial/app/controllers/api/v1/statuses
Claire 34aeef3453
Merge pull request from GHSA-58x8-3qxw-6hm7
* Fix insufficient permission checking for public timeline endpoints

Note that this changes unauthenticated access failure code from 401 to 422

* Add more tests for public timelines

* Require user token in `/api/v1/statuses/:id/translate` and `/api/v1/scheduled_statuses`
2024-07-04 16:26:49 +02:00
..
bookmarks_controller.rb Fix not being able to unbookmark toots when blocked by their author (#14604) 2020-08-19 19:02:06 +02:00
favourited_by_accounts_controller.rb Change REST API to return empty data for suspended accounts (#14765) 2020-09-11 15:16:29 +02:00
favourites_controller.rb Fix not being able to unfavorite toots one has lost access to (#15192) 2020-11-21 06:18:09 +01:00
histories_controller.rb Change /api/v1/statuses/:id/history to always return at least one item (#25510) 2023-07-06 13:45:40 +02:00
mutes_controller.rb Add more tests for ActivityPub controllers (#13585) 2020-05-03 16:30:36 +02:00
pins_controller.rb Remove useless respond_to calls (#13208) 2020-03-06 01:29:38 +01:00
reblogged_by_accounts_controller.rb Change REST API to return empty data for suspended accounts (#14765) 2020-09-11 15:16:29 +02:00
reblogs_controller.rb Fix race condition when reblogging a status (#25016) 2023-07-06 13:45:40 +02:00
sources_controller.rb Add support for editing for published statuses (#16697) 2022-01-19 22:37:27 +01:00
translations_controller.rb Merge pull request from GHSA-58x8-3qxw-6hm7 2024-07-04 16:26:49 +02:00