Nemcio/NodeBB
1
0
Fork 0
mirror of https://github.com/NodeBB/NodeBB.git synced 2025-11-01 11:35:55 +01:00
Code Issues Packages Projects Releases Wiki Activity
28,662 Commits 74 Branches 483 Tags
a226ee9e9186048c521d0afb28a1462719f50c99
Commit Graph

23 Commits

Author SHA1 Message Date
Julian Lam
a226ee9e91 fix: re-enable logging only for dev mode 2024-10-12 22:49:24 -04:00
Julian Lam
8ef0df57e6 refactor: check HTTP signatures on all activitypub requests 
- `validate` is now renamed `assertPayload`
- HTTP signature checking is now in new middleware `verify`
- `verify` is now called on all routes in activitypub controller
- Rejects on signature failure for POST requests
 2024-10-07 14:08:57 -04:00
Julian Lam
7e23e192d8 chore: restore activity history check in AP inbox middleware now that NodeBB sends unique IDs with applicable activities 2024-07-04 14:59:10 -04:00
Julian Lam
6e2178b0dc feat: instance-level allow andd deny list for federatioN 2024-06-17 15:50:27 -04:00
Julian Lam
d0a1ebcff7 feat: store encountered instances by last seen date 2024-06-17 15:08:22 -04:00
Julian Lam
f6d4d5630e chore: lint 2024-06-14 11:49:25 -04:00
Julian Lam
bb0360bf01 chore: commenting out logic that drops requests if the id has already been seen, due to a regression in interoperability between NodeBB instances 2024-06-11 14:17:40 -04:00
Barış Soner Uşaklı
869df3c2bc refactor: unused winston 2024-06-08 12:44:01 -04:00
Barış Soner Uşaklı
2ae5857005 refactor: remove verbose logs, 2024-06-07 12:13:28 -04:00
Julian Lam
4e9cd8efc0 feat: track incoming requests by id, analytics increment for some metrics, ignore repeated requests by id 
closes #12574
 2024-05-14 12:07:18 -04:00
Julian Lam
ccd187e000 feat: Note deletion logic and refactoring, #12551 2024-05-09 15:49:03 -04:00
Julian Lam
596a5e4ba2 fix: update signature parsing logic to handle values with equal signs in them, closes #12538 2024-04-28 23:25:46 -04:00
Julian Lam
c3365908b8 fix: save modified actor back to req.body 2024-04-12 11:08:31 -04:00
Opliko
18ba2e38ec feat: noremalize actor property in middleware 2024-04-12 16:42:54 +02:00
Opliko
c92b5e07a7 fix: use a slightly better error code to indicate object resolution failure 2024-04-10 18:15:50 +02:00
Opliko
102c174e03 feat: resolve objects from ids in middleware 2024-04-09 23:58:00 +02:00
Opliko
c30c12881c fix: support ldjson with ActivityStreams profile in actor queries 2024-04-08 20:06:26 +02:00
Julian Lam
719bb0a0ec chore: add verbose logging to middleware.validate 2024-04-05 16:03:41 -04:00
Julian Lam
1bd8f9a1fa feat: fine-grained privileges integration for fediverse users and world pseudo-category 2024-02-26 11:39:32 -05:00
Julian Lam
92a8951bca fix: check origin only if object is a string 2024-02-21 14:05:54 -05:00
Julian Lam
a94341f489 feat: security, cross-check key ownership against received actor 2024-02-21 13:43:56 -05:00
Julian Lam
d18e65c473 feat: send proper content-type on AP S2S responses 2024-02-05 14:11:32 -05:00
Julian Lam
538776f9c7 refactor: move activitypub-related middlewares to their own file 2024-01-18 11:50:14 -05:00