mastodon/app/lib
Eugen Rochko c5fa4aba91 HTTP signatures (#4146)
* Add Request class with HTTP signature generator

Spec: https://tools.ietf.org/html/draft-cavage-http-signatures-06

* Add HTTP signature verification concern

* Add test for SignatureVerification concern

* Add basic test for Request class

* Make PuSH subscribe/unsubscribe requests use new Request class

Accidentally fix lease_seconds not being set and sent properly, and
change the new minimum subscription duration to 1 day

* Make all PuSH workers use new Request class

* Make Salmon sender use new Request class

* Make FetchLinkService use new Request class

* Make FetchAtomService use the new Request class

* Make Remotable use the new Request class

* Make ResolveRemoteAccountService use the new Request class

* Add more tests

* Allow +-30 seconds window for signed request to remain valid

* Disable time window validation for signed requests, restore 7 days
as PuSH subscription duration (which was previous default due to a bug)
2017-07-14 20:41:49 +02:00
..
settings Refactor Setting (#3302) 2017-05-25 14:14:36 +02:00
application_extension.rb Conditional validations no longer accept strings for if/unless (#3124) 2017-05-19 03:11:23 +02:00
atom_serializer.rb Remove redundant code in AtomSerializer and spec (#3528) 2017-06-03 20:51:08 +02:00
exceptions.rb Add check for visibility.nil? even though it can't ever be, to check for race conditions 2017-04-03 22:54:46 +02:00
extractor.rb Skip formatting for cashtag in status text (#3275) 2017-05-24 14:32:53 +02:00
feed_manager.rb Reduce number of commands in FeedManager#trim (#3989) 2017-06-29 01:17:26 +02:00
formatter.rb Remove some arguments of Formatter.instance.format and spec (#3541) 2017-06-04 14:58:57 +02:00
hash_object.rb Migrate from ledermann/rails-settings to rails-settings-cached which allows global settings 2017-01-12 20:46:24 +01:00
inline_renderer.rb Refactor JSON templates to be generated with ActiveModelSerializers instead of Rabl (#4090) 2017-07-07 04:02:06 +02:00
language_detector.rb Language detection defaults to nil (#3666) 2017-06-09 18:09:37 +02:00
provider_discovery.rb HTTP signatures (#4146) 2017-07-14 20:41:49 +02:00
request.rb HTTP signatures (#4146) 2017-07-14 20:41:49 +02:00
sanitize_config.rb Whitelist allowed classes for federated statuses (#3810) 2017-06-17 20:26:05 +02:00
status_filter.rb Fix regression from #3490 - filter out hidden statuses from ancestors/descendants even if the viewer is anonymous (#3752) 2017-06-15 02:00:08 +02:00
stream_entry_finder.rb Improve api oembed controller (#3450) 2017-05-30 16:30:06 -04:00
tag_manager.rb Remove some code in TagManager and spec (#3547) 2017-06-04 16:14:25 +02:00
user_settings_decorator.rb Add option to opt out of search engines on public profile/status pages (#4199) 2017-07-14 16:41:02 +02:00
webfinger_resource.rb Allow webfinger controller to reply to user@WEB_DOMAIN in addition to user@LOCAL_DOMAIN (#2351) 2017-04-23 14:19:54 +02:00