Age | Commit message (Expand) | Author |
2023-01-11 | Fix OAuth login | Vitaly Takmazov |
2023-01-10 | Restore Swagger UI | Vitaly Takmazov |
2023-01-09 | OAuth: update refresh token TTL | Vitaly Takmazov |
2023-01-09 | Enable CORS on oauth endpoints | Vitaly Takmazov |
2023-01-06 | Bearer token filter is not used | Vitaly Takmazov |
2023-01-06 | Mastodon API: timelines and minor fixes | Vitaly Takmazov |
2023-01-06 | Mastodon API: conversations | Vitaly Takmazov |
2023-01-05 | Update config copyrights | Vitaly Takmazov |
2023-01-05 | ActivityPub: signed GET requests, fix Signature verification | Vitaly Takmazov |
2023-01-04 | OAuth authentication for Mastodon and ActivityPub C2S | Vitaly Takmazov |
2023-01-04 | JWT authentication for API | Vitaly Takmazov |
2022-12-24 | Cacheable ActivityPub profiles | Vitaly Takmazov |
2022-12-20 | Disable CSRF entirely | Vitaly Takmazov |
2022-12-15 | Extract user to actor conversion code into Converter | Vitaly Takmazov |
2022-12-15 | Cleanup Security config | Vitaly Takmazov |
2022-12-08 | CSRF protection requires sessions | Vitaly Takmazov |
2022-12-08 | Spring beans should not be public | Vitaly Takmazov |
2022-12-07 | Login: use `Referer` header to redirect after the successful login | Vitaly Takmazov |
2022-12-03 | Add missing security configuration for h2 console | Vitaly Takmazov |
2022-11-25 | Spring Boot 3 | Vitaly Takmazov |
2022-06-27 | Drop outdated web security rules | Vitaly Takmazov |
2021-10-24 | Handle .well-known/** requests with Spring Security | Vitaly Takmazov |
2020-04-04 | Initialize all components from configuration | Vitaly Takmazov |