You cannot select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
mastodon/app/controllers/concerns
ThibG fa929d8b81
Tweak signature verification (#15069)
* Add more specific error message when request body digest is invalid

This may help other implementors debug their implementation.

* Relax Host parameter requirement to GET requests

The only POST requests processed by Mastodon need objects/actors (including
their host) to be explicitly mentioned in the request's body, so replaying
a legitimate request to another host should not be a security issue.

* Support Digest headers using multiple algorithms or lowercase alogirthm names
5 years ago
..
account_controller_concern.rb Add ActivityPub secure mode (#11269) 6 years ago
account_owned_concern.rb Add whitelist mode (#11291) 6 years ago
accountable_concern.rb Add logging of admin actions (#5757) 8 years ago
authorization.rb Add moderator role and add pundit policies for admin actions (#5635) 8 years ago
cache_concern.rb Make Array-creation behavior of Paginable more predictable (#14687) 5 years ago
challengable_concern.rb Bump rubocop from 0.86.0 to 0.88.0 (#14412) 5 years ago
export_controller_concern.rb Refactor settings controllers (#14767) 5 years ago
localized.rb Fix not working I18n on 2FA and Sign in token page (#14087) 5 years ago
rate_limit_headers.rb Add specific rate limits for posting and following (#13172) 5 years ago
session_tracking_concern.rb Update session activation time (fixes #5605) (#7408) 7 years ago
sign_in_token_authentication_concern.rb Fix not working I18n on 2FA and Sign in token page (#14087) 5 years ago
signature_authentication.rb Allow retrieval of private statuses (single or in outbox) using HTTP signatures (#6225) 8 years ago
signature_verification.rb Tweak signature verification (#15069) 5 years ago
status_controller_concern.rb Refactor controllers for statuses, accounts, and more (#11249) 6 years ago
two_factor_authentication_concern.rb Add WebAuthn as an alternative 2FA method (#14466) 5 years ago
user_tracking_concern.rb Fix #6331 (#6341) 8 years ago