Commit Graph

141 Commits

Author SHA1 Message Date
localhost_frssoft 53dd0c50ef removed session id from register 2023-11-06 12:17:09 +03:00
localhost_frssoft ab58d8a900 Merge remote-tracking branch 'upstream/master' into localhost_custom 2023-11-06 12:07:24 +03:00
r f4881e7267 Remove form-action CSP directive
Chrome incorrectly restricts the redirect URL to the sources specified
in the form-action value, which prevents the instance oauth page from
loading.
2023-10-25 06:40:34 +00:00
r 9b053e32ec Fix replace syntax 2023-10-22 11:11:21 +00:00
r 67b13c71ba Use CSP header to restrict resource loading
This helps mitigate XSS exploits.
Users will have to save the settings again to make the custom CSS
work.
2023-10-15 15:53:44 +00:00
localhost_frssoft 96a0d7cf05 fix merge conflicts 2023-10-12 16:07:27 +03:00
localhost_frssoft 4379eab5bf merge with upstream 2023-10-12 15:32:55 +03:00
localhost_frssoft 3762ccfb83 true remote timeline 2023-10-12 15:15:07 +03:00
r 927072e26a Remove unused session ID field 2023-10-07 10:20:11 +00:00
r c7f40c1e15 Cleanup oauth redirect URL generation 2023-10-07 09:19:56 +00:00
r d297eb5658 Use stricter cookie attributes 2023-10-07 09:11:43 +00:00
r b83a00aa2c Revoke oauth token on signout 2023-10-02 06:44:26 +00:00
r 81bdc7c705 Add profile edit page 2023-10-01 13:04:07 +00:00
r e50f12b615 Restrict instance domain in single_instance mode 2023-09-18 10:07:54 +00:00
r 60392e61c7 Disable access log by default
Access logs aren't really useful during normal operation. Add a new flag
-v to enable the verbose logging mode, which is still useful during the
development.

Also remove the log_file config because it's no longer useful.
2023-09-09 06:38:52 +00:00
r 426e9ad14f Fix display name and title on mute page 2023-09-08 14:46:40 +00:00
localhost_frssoft fa5eaa4442 Just merge with upstream/master 2023-03-18 14:59:40 +03:00
r 5147897c6c Add support for expiring mutes 2022-12-17 08:26:51 +00:00
localhost_frssoft e924503f2d Tagged timeline improvments and visible now 2022-12-14 02:56:26 +03:00
localhost_frssoft 8c41878b6d Partially selectable reblogs visibility (fluoride required fix) 2022-12-02 04:45:19 +03:00
localhost_frssoft 0f060f09c9 Added sign up support. Tested on mastodon
But required test on GoToSocial.
Confirmation inside bloat-fe not supported
2022-11-13 00:00:02 +03:00
localhost_frssoft f9702f81a9 Merge patch and add useredit template...
Patch from: https://git.freesoftwareextremist.com/bloat/commit/?id=887ed241d64ba5db3fd3d87194fb5595e5ad7d73
Patch description:
Use cookies for session
Remove the server side session storage and store all the session related data
in the client side cookies. This decreases the exposure of the auth tokens.
It also simplifies the installation process as bloat no longer requires write
access to the filesystem.

This is a breaking change, all the existing sessions will stop working.
2022-11-12 01:20:49 +03:00
localhost_frssoft 1160d00ee1 Editing user profile; Warning! Mastodon compatibility broken and editing may lost your bio 2022-11-04 20:55:42 +03:00
localhost_frssoft 53353c0e64 Feature: Bare bones Editing implimented 2022-10-31 18:26:16 +03:00
localhost_frssoft 4df1f096be Added pin\unpin statuses; Status ID in code tag 2022-10-31 15:43:36 +03:00
localhost_frssoft e6019323f6 Support send akkoma custom reactions 2022-10-26 01:16:13 +03:00
localhost_frssoft ca99d0a789 Added view pinned statuses in accounts 2022-10-26 00:44:22 +03:00
r 887ed241d6 Use cookies for session storage
Remove the server side session storage and store all the session related data
in the client side cookies. This decreases the exposure of the auth tokens.
It also simplifies the installation process as bloat no longer requires write
access to the filesystem.

This is a breaking change, all the existing sessions will stop working.
2022-10-25 14:14:46 +00:00
localhost_frssoft cbbebe6b15 Added optional filter for emojis on instance 2022-10-21 02:03:19 +03:00
localhost_frssoft c5d552e7d8 Added filter reactions settings; Change allowed emoji filter; Emoji module correct commit 2022-10-20 02:15:50 +03:00
localhost_frssoft 9cdac3e623 Added prototype send pleroma emoji reactions via reactions page 2022-10-19 19:15:52 +03:00
localhost_frssoft 81a52fe7c6 Add reactions page 2022-10-19 17:33:43 +03:00
localhost_frssoft 927bd6127c Add unreact and reaction count; added mark self reactions as "*" 2022-10-19 15:47:31 +03:00
localhost_frssoft f452fab462 FEATURE: Pleroma reactions implemented partially 2022-10-17 20:01:11 +03:00
localhost_frssoft 0cd239b8aa Added hiden tag timeline; css style fix for edit status notification 2022-10-17 04:48:46 +03:00
localhost_frssoft e83dbe7ca9 Spoiler text for statuses posting\replying 2022-10-17 01:46:26 +03:00
localhost_frssoft 7d54da6380 Add some information about instance 2022-10-13 01:41:34 +03:00
localhost_frssoft 7dd90ac015 Added page about instance 2022-10-12 13:34:41 +03:00
r 2d49ff9fb4 Switch to html/template 2022-03-30 15:52:30 +00:00
r c390a0c327 Add lists 2022-02-11 11:49:23 +00:00
r 556a87e8e8 Remove poll type from notification exclude 2021-12-13 14:31:20 +00:00
r db29c3d874 Add an option to hide unsupported notifications 2021-12-13 13:58:15 +00:00
r 4d68062f2d Add "mute (keep notifications)" button 2021-10-29 14:20:15 +00:00
r 7d389d2258 Show signin button in case of an auth error 2021-10-23 13:41:41 +00:00
r 816281c225 Add quick reply 2021-09-05 17:17:59 +00:00
r 469f2d1d25 Fix HTML escaping 2021-04-23 10:19:09 +00:00
r 76c5baef6a Add option for user CSS 2021-04-03 09:24:39 +00:00
r 2cb6a515ac Update error page
- Add retry button for GET requests
- Only show signin button when it's a session error
2021-04-03 06:40:32 +00:00
r 6c5de76562 Refactor 2021-03-28 16:12:41 +00:00
r 6ddcb16694 Add username to page title
Makes it easier to search a user page in browser history
2021-01-30 16:55:55 +00:00