1
0
mirror of https://github.com/mastodon/mastodon synced 2024-11-25 07:36:31 +09:00
mastodon/app/controllers
Patrick Figel 537d2939b1 Suppress CSRF token warnings (#6240)
CSRF token checking was enabled for API controllers in #6223,
producing "Can't verify CSRF token authenticity" log spam. This
disables logging of failed CSRF checks.

This also changes the protection strategy for
PushSubscriptionsController to use exceptions, making it consistent
with other controllers that use sessions.
2018-01-15 06:51:23 +01:00
..
activitypub Revert #5772 (#6221) 2018-01-08 10:57:52 +01:00
admin keep the same filters and page when doing custom emojo stuff (fixes #6112) (#6114) 2017-12-30 02:43:43 +01:00
api Suppress CSRF token warnings (#6240) 2018-01-15 06:51:23 +01:00
auth Add confirmation step for email changes (#6071) 2018-01-02 16:55:00 +01:00
concerns Add more instance stats APIs (#6125) 2017-12-29 19:52:04 +01:00
oauth Fix #1165 - before_action was called before protect_from_forgery 2017-04-08 02:30:50 +02:00
settings Fix #6022 - Prevent nested migrated accounts, or migrations to self (#6026) 2017-12-14 21:35:30 +01:00
well_known Make host_meta/webfinger replies cacheable (fixes #6100) (#6101) 2017-12-27 18:21:12 +01:00
about_controller.rb Redesign the landing page, mount public timeline on it (#4122) 2017-07-11 15:27:59 +02:00
account_follow_controller.rb Restful refactor of accounts/ routes (#2133) 2017-04-19 13:52:37 +02:00
account_unfollow_controller.rb Restful refactor of accounts/ routes (#2133) 2017-04-19 13:52:37 +02:00
accounts_controller.rb Cache JSON of immutable ActivityPub representations (#6171) 2018-01-04 01:21:38 +01:00
application_controller.rb Fix force_ssl conditional (#6201) 2018-01-07 15:19:23 +01:00
authorize_follows_controller.rb Show mastodon on modal (#6129) 2018-01-02 05:07:56 +01:00
emojis_controller.rb Cache JSON of immutable ActivityPub representations (#6171) 2018-01-04 01:21:38 +01:00
follower_accounts_controller.rb Encode custom emojis as resolveable objects in ActivityPub (#5243) 2017-10-07 17:43:42 +02:00
following_accounts_controller.rb Encode custom emojis as resolveable objects in ActivityPub (#5243) 2017-10-07 17:43:42 +02:00
home_controller.rb When web UI URL used while logged out, redirect to static page (#4954) 2017-09-15 00:57:08 +02:00
intents_controller.rb Add protocol handler. Handle follow intents (#4511) 2017-08-14 04:53:31 +02:00
invites_controller.rb Add consumable invites (#5814) 2017-11-27 16:07:59 +01:00
manifests_controller.rb Make Chrome splash screen same color as web UI's background color (#5169) 2017-10-02 01:23:32 +02:00
media_controller.rb Extract authorization policy for viewing statuses (#3150) 2017-05-29 18:22:22 +02:00
media_proxy_controller.rb Fix incomplete account records being read (#4998) 2017-09-19 06:53:16 +02:00
remote_follow_controller.rb Show mastodon on modal (#6129) 2018-01-02 05:07:56 +01:00
shares_controller.rb Show mastodon on modal (#6129) 2018-01-02 05:07:56 +01:00
statuses_controller.rb Make sure private toots remain private and do not end up in HTTP caches (#6175) 2018-01-04 14:39:38 +01:00
stream_entries_controller.rb Update status embeds (#4742) 2017-08-30 10:23:43 +02:00
tags_controller.rb Redesign public hashtag pages (#5237) 2017-10-07 20:00:35 +02:00