FreakU
/
mastodon
Archived
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
This repository has been archived on 2024-07-22. You can view files and clone it, but cannot push or open issues or pull requests.
mastodon/app/controllers/api/v1
History
Claire 62c6e12fa5
Fix admin API unconditionally requiring CSRF token (#17975) 
Fixes #17898

Since #17204, the admin API has only been available through the web
application because of the unconditional requirement to provide a valid CSRF
token.

This commit changes it back to `null_session`, which should make it work
both with session-based authentication (provided a CSRF token) and with a
bearer token.
 		2022-04-06 20:57:18 +02:00
..
accounts Fix performance of account timelines (#17709) 2022-03-08 09:14:39 +01:00
admin Fix admin API unconditionally requiring CSRF token (#17975) 2022-04-06 20:57:18 +02:00
announcements
apps
crypto
emails Fix `POST /api/v1/emails/confirmations` not being available after sign-up (#17743) 2022-03-12 04:14:25 +01:00
featured_tags
instances Add graphs and retention metrics to admin dashboard (#16829) 2021-10-14 20:44:59 +02:00
lists
polls
push
statuses Add edit history to web UI (#17390) 2022-02-09 01:17:07 +01:00
timelines
trends Fix `GET /api/v1/trends/tags` missing `offset` param in REST API (#17973) 2022-04-06 20:56:57 +02:00
accounts_controller.rb Change `follow` scope to be covered by `read` and `write` scopes in REST API (#17678) 2022-03-03 16:13:40 +01:00
announcements_controller.rb
apps_controller.rb
blocks_controller.rb Change `follow` scope to be covered by `read` and `write` scopes in REST API (#17678) 2022-03-03 16:13:40 +01:00
bookmarks_controller.rb
conversations_controller.rb
custom_emojis_controller.rb
directories_controller.rb
domain_blocks_controller.rb Change `follow` scope to be covered by `read` and `write` scopes in REST API (#17678) 2022-03-03 16:13:40 +01:00
endorsements_controller.rb
favourites_controller.rb
featured_tags_controller.rb
filters_controller.rb
follow_requests_controller.rb Fix duplicate notifications being possible after poll expiration (#17697) 2022-03-04 01:06:33 +01:00
instances_controller.rb
lists_controller.rb
markers_controller.rb
media_controller.rb Allow editing media attachments for scheduled toots (#17690) 2022-03-03 16:13:58 +01:00
mutes_controller.rb Change `follow` scope to be covered by `read` and `write` scopes in REST API (#17678) 2022-03-03 16:13:40 +01:00
notifications_controller.rb Add `types` param to `GET /api/v1/notifications` in REST API (#17767) 2022-03-15 04:11:29 +01:00
polls_controller.rb
preferences_controller.rb
reports_controller.rb Fix report category not being saved in REST API (#17682) 2022-03-02 18:57:08 +01:00
scheduled_statuses_controller.rb
statuses_controller.rb Add rate limit for editing (#17728) 2022-03-09 20:06:51 +01:00
streaming_controller.rb
suggestions_controller.rb