aiden
/
mastodon
mirror of https://github.com/mastodon/mastodon
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
mastodon/config/initializers
History
Claire cfa583fa71
Remove support for OAUTH_REDIRECT_AT_SIGN_IN () 
Fixes 

Introduced in , OAUTH_REDIRECT_AT_SIGN_IN allowed skipping the log-in form
to instead redirect to the external OmniAuth login provider.

However, it did not prevent the log-in form on /about introduced by  from
appearing, and completely broke with the introduction of .

As I restoring that previous log-in flow without introducing a security
vulnerability may require extensive care and knowledge of how OmniAuth works,
this commit removes support for OAUTH_REDIRECT_AT_SIGN_IN instead for the time
being.
..
0_post_deployment_migrations.rb Add post-deployment migration system ()
1_hosts.rb Fix host check on healthcheck path not being disabled ()
2_whitelist_mode.rb Remove the terms blacklist and whitelist from UX ()
active_model_serializers.rb Fix ActivityPub context not being dynamically computed ()
application_controller_renderer.rb Update Mastodon to Rails 6.1 ()
assets.rb HTML e-mails for UserMailer ()
backtrace_silencers.rb Update Mastodon to Rails 6.1 ()
blacklists.rb Remove the terms blacklist and whitelist from UX ()
cache_buster.rb Add cache buster feature for media files ()
chewy.rb Fix ElasticSearch to Elasticsearch ()
content_security_policy.rb Fix autoloading deprecation warnings from Rails 6 ()
cookies_serializer.rb Upgrade to Rails 5.0.0.1
cors.rb Use same CORS policy for /@:username and /users/:username ()
devise.rb Remove IP tracking columns from users table ()
doorkeeper.rb Fix app name, website and redirect URIs not having a maximum length ()
fast_blank.rb Fixed code quality issues ()
ffmpeg.rb add ffmpeg initializer ()
filter_parameter_logging.rb Added optional two-factor authentication
http_client_proxy.rb Refactor monkey-patching of Goldfinger ()
httplog.rb Version bumps for ruby and misc gems ()
inflections.rb Prepare Mastodon for zeitwerk autoloader ()
json_ld.rb Fix preloaded JSON-LD context for identity not being used ()
kaminari_config.rb Add ability to filter audit log in admin UI ()
mail_delivery_job.rb Fix mailer jobs for deleted notifications erroring out ()
makara.rb Drop dependency on secure_headers, fix response headers ()
mime_types.rb Set correct content-type for ActivityPub JSON ()
oj.rb Remove rabl dependency ()
omniauth.rb Remove support for OAUTH_REDIRECT_AT_SIGN_IN ()
open_uri_redirection.rb Optimize some regex matching ()
paperclip.rb Fix autoloading deprecation warnings from Rails 6 ()
permissions_policy.rb Update Mastodon to Rails 6.1 ()
preload_link_headers.rb Update Mastodon to Rails 6.1 ()
premailer_rails.rb HTML e-mails for UserMailer ()
rack_attack.rb Fix media API limit ()
rack_attack_logging.rb Change rate limits for various paths ()
redis.rb Change Redis#exists calls to Redis#exists? to avoid deprecation warning ()
session_activations.rb Revocable sessions ()
session_store.rb Add Ruby 3.0 support ()
sidekiq.rb Fix warnings on Rails boot ()
simple_form.rb Fixed code quality issues ()
single_user_mode.rb Add single user mode
statsd.rb Remove unused StatsD code and expose StatsD as a global variable ()
stoplight.rb Fix stoplight logging to stderr separate from Rails logger ()
strong_migrations.rb Fix migration failure due to StrongMigrations on production env ()
suppress_csrf_warnings.rb Fix autoloading deprecation warnings from Rails 6 ()
trusted_proxies.rb Fix error
twitter_regex.rb Minor memory optimizations ()
vapid.rb Lint pass ()
webauthn.rb Add WebAuthn as an alternative 2FA method ()
wrap_parameters.rb Upgrade to Rails 5.0.0.1