mastodon

History

Eugen Rochko 1618b68bfa HTTP signatures (#4146 ) * Add Request class with HTTP signature generator Spec: https://tools.ietf.org/html/draft-cavage-http-signatures-06 * Add HTTP signature verification concern * Add test for SignatureVerification concern * Add basic test for Request class * Make PuSH subscribe/unsubscribe requests use new Request class Accidentally fix lease_seconds not being set and sent properly, and change the new minimum subscription duration to 1 day * Make all PuSH workers use new Request class * Make Salmon sender use new Request class * Make FetchLinkService use new Request class * Make FetchAtomService use the new Request class * Make Remotable use the new Request class * Make ResolveRemoteAccountService use the new Request class * Add more tests * Allow +-30 seconds window for signed request to remain valid * Disable time window validation for signed requests, restore 7 days as PuSH subscription duration (which was previous default due to a bug)		2017-07-14 20:41:49 +02:00
..
account_controller_concern.rb	Restful refactor of accounts/ routes (#2133 )	2017-04-19 13:52:37 +02:00
authorization.rb	Extract authorization policy for viewing statuses (#3150 )	2017-05-29 18:22:22 +02:00
export_controller_concern.rb	Remove exports/base controller in favor of shared concern (#3444 )	2017-05-30 19:06:01 +02:00
localized.rb	Improve default language decision and spec (#3351 )	2017-06-10 09:44:02 +02:00
obfuscate_filename.rb	Remove methods from ObfuscateFilename and spec (#3347 )	2017-05-29 18:14:16 +02:00
rate_limit_headers.rb	Coverage improvement and concern extraction for rate limit headers in API controller (#3625 )	2017-06-07 17:23:26 +02:00
signature_verification.rb	HTTP signatures (#4146 )	2017-07-14 20:41:49 +02:00
user_tracking_concern.rb	Fix #2619 - When redis feed is empty, fall back to database (#3721 )	2017-06-14 13:37:03 +02:00