mastodon

mirror of https://github.com/lunaisnotaboy/mastodon.git synced 2024-09-11 20:57:44 +00:00

History

David Leadbeater 69378eac99 Don't allow URLs that contain non-normalized paths to be verified (#20999 ) * Don't allow URLs that contain non-normalized paths to be verified This stops things like https://example.com/otheruser/../realuser where "/otheruser" appears to be the verified URL, but the actual URL being verified is "/realuser" due to the "/../". Also fix a test to use 'https', so it is testing the right thing, now that since #20304 https is required. * missing do		2022-11-20 19:28:13 +01:00
..
account	Don't allow URLs that contain non-normalized paths to be verified (#20999 )	2022-11-20 19:28:13 +01:00
admin
concerns
trends
web
account_alias_spec.rb
account_conversation_spec.rb	Add conversations API (#8832 )	2018-10-07 23:44:58 +02:00
account_deletion_request_spec.rb
account_domain_block_spec.rb
account_filter_spec.rb
account_migration_spec.rb
account_moderation_note_spec.rb
account_spec.rb	Fix typos (#19849 )	2022-11-08 17:32:03 +01:00
account_statuses_cleanup_policy_spec.rb	Fix some flaky tests that randomly failed because of item ordering (#17509 )	2022-02-10 22:00:10 +01:00
account_statuses_filter_spec.rb
announcement_mute_spec.rb
announcement_reaction_spec.rb
announcement_spec.rb
appeal_spec.rb	Add appeals (#17364 )	2022-02-14 21:27:53 +01:00
backup_spec.rb
block_spec.rb
canonical_email_block_spec.rb
conversation_mute_spec.rb
conversation_spec.rb
custom_emoji_category_spec.rb
custom_emoji_filter_spec.rb
custom_emoji_spec.rb
custom_filter_keyword_spec.rb
custom_filter_spec.rb
device_spec.rb
domain_allow_spec.rb
domain_block_spec.rb	Allow blocking TLDs, and fix TLD blocks not being editable (#12805 )	2020-01-08 22:42:05 +01:00
email_domain_block_spec.rb
encrypted_message_spec.rb
export_spec.rb
favourite_spec.rb
featured_tag_spec.rb
follow_recommendation_suppression_spec.rb
follow_request_spec.rb
follow_spec.rb
home_feed_spec.rb
identity_spec.rb	Add spec for Identity.find_for_oauth (#9441 )	2018-12-06 17:38:49 +09:00
import_spec.rb
invite_spec.rb	Change account suspensions to be reversible by default (#14726 )	2020-09-15 14:37:58 +02:00
ip_block_spec.rb
list_account_spec.rb
list_spec.rb
login_activity_spec.rb
marker_spec.rb
media_attachment_spec.rb
mention_spec.rb
mute_spec.rb
notification_spec.rb
one_time_key_spec.rb
poll_spec.rb
poll_vote_spec.rb
preview_card_spec.rb
preview_card_trend_spec.rb
public_feed_spec.rb	Refactor and improve tests (#17386 )	2022-01-28 00:46:42 +01:00
relationship_filter_spec.rb
relay_spec.rb
remote_follow_spec.rb
report_filter_spec.rb
report_spec.rb	Change how changes to media attachments are stored for edits (#17696 )	2022-03-09 09:06:17 +01:00
rule_spec.rb
scheduled_status_spec.rb
session_activation_spec.rb
setting_spec.rb	Update Mastodon to Rails 6.1 (#15910 )	2021-03-24 10:44:31 +01:00
site_upload_spec.rb
status_edit_spec.rb
status_pin_spec.rb	Add support for private pinned posts (#16954 )	2022-01-17 00:49:55 +01:00
status_spec.rb
status_stat_spec.rb
status_trend_spec.rb
system_key_spec.rb
tag_feed_spec.rb
tag_follow_spec.rb
tag_spec.rb	Change how hashtags are normalized (#18795 )	2022-07-13 15:03:28 +02:00
unavailable_domain_spec.rb
user_invite_request_spec.rb
user_role_spec.rb
user_spec.rb
webauthn_credentials_spec.rb	Fix validates :sign_count of WebauthnCredential (#14806 )	2020-09-16 20:16:46 +02:00
webhook_spec.rb