chinwagsocial/spec/requests
Claire 34aeef3453
Merge pull request from GHSA-58x8-3qxw-6hm7
* Fix insufficient permission checking for public timeline endpoints

Note that this changes unauthenticated access failure code from 401 to 422

* Add more tests for public timelines

* Require user token in `/api/v1/statuses/:id/translate` and `/api/v1/scheduled_statuses`
2024-07-04 16:26:49 +02:00
..
api Merge pull request from GHSA-58x8-3qxw-6hm7 2024-07-04 16:26:49 +02:00
account_show_page_spec.rb
catch_all_route_request_spec.rb
content_security_policy_spec.rb Fix CSP headers being unintendedly wide (#26105) 2023-07-21 16:07:43 +02:00
disabled_oauth_endpoints_spec.rb Disable administrative doorkeeper routes (#29187) 2024-02-14 11:34:46 +01:00
host_meta_request_spec.rb
link_headers_spec.rb
localization_spec.rb
omniauth_callbacks_spec.rb Fix user creation failure handling in OAuth paths (#29207) 2024-02-14 23:16:39 +01:00
signature_verification_spec.rb Fix Mastodon not correctly processing HTTP Signatures with query strings (#28476) 2024-01-24 15:31:06 +01:00
webfinger_request_spec.rb