Age | Commit message (Collapse) | Author | |
---|---|---|---|
2024-10-10 | `/api/v2/instance` is not served on legacy server anymore | Vitaly Takmazov | |
2024-09-09 | Clean up social login | Vitaly Takmazov | |
2024-05-19 | javax.inject -> jakarta.inject | Vitaly Takmazov | |
2024-02-09 | API: accept authorization cookie | Vitaly Takmazov | |
2024-01-21 | Delete login hash on logout | Vitaly Takmazov | |
2023-11-11 | Make sure HTTP requests actually use caching | Vitaly Takmazov | |
* OkHttp dispatcher is not used for synchronous requests * @Cacheable only works for bean method calls, refactor beans to use it correctly | |||
2023-06-21 | VK: read premium status using Callback API | Vitaly Takmazov | |
2023-06-20 | Patreon webhook (WIP) | Vitaly Takmazov | |
2023-05-31 | Modernize spring-security configuration and minor changes | Vitaly Takmazov | |
* Clean up warnings | |||
2023-05-11 | Fix Actuator security configuration | Vitaly Takmazov | |
2023-01-25 | Update security config for service worker | Vitaly Takmazov | |
2023-01-23 | Minor cleanup | Vitaly Takmazov | |
2023-01-22 | db refactoring: merge getMessages with isSubscribed query | Vitaly Takmazov | |
2023-01-18 | Cleanup unused code | Vitaly Takmazov | |
2023-01-14 | Pass tests with configured domain | Vitaly Takmazov | |
2023-01-13 | OAuth: use static key id | Vitaly Takmazov | |
2023-01-13 | Fix OpenAPI generation | Vitaly Takmazov | |
* Use HandlerMethodArgumentResolver to pass visitor * Hide visitor from OpenAPI definitions * Drop unused AsciiDoc template | |||
2023-01-11 | Fix OAuth login | Vitaly Takmazov | |
2023-01-10 | Restore Swagger UI | Vitaly Takmazov | |
2023-01-09 | OAuth: update refresh token TTL | Vitaly Takmazov | |
2023-01-09 | Enable CORS on oauth endpoints | Vitaly Takmazov | |
2023-01-06 | Bearer token filter is not used | Vitaly Takmazov | |
2023-01-06 | Mastodon API: timelines and minor fixes | Vitaly Takmazov | |
2023-01-06 | Mastodon API: conversations | Vitaly Takmazov | |
2023-01-05 | Update config copyrights | Vitaly Takmazov | |
2023-01-05 | ActivityPub: signed GET requests, fix Signature verification | Vitaly Takmazov | |
2023-01-04 | OAuth authentication for Mastodon and ActivityPub C2S | Vitaly Takmazov | |
2023-01-04 | JWT authentication for API | Vitaly Takmazov | |
2022-12-24 | Cacheable ActivityPub profiles | Vitaly Takmazov | |
2022-12-20 | Disable CSRF entirely | Vitaly Takmazov | |
2022-12-15 | Extract user to actor conversion code into Converter | Vitaly Takmazov | |
2022-12-15 | Cleanup Security config | Vitaly Takmazov | |
2022-12-08 | CSRF protection requires sessions | Vitaly Takmazov | |
2022-12-08 | Spring beans should not be public | Vitaly Takmazov | |
2022-12-07 | Login: use `Referer` header to redirect after the successful login | Vitaly Takmazov | |
2022-12-03 | Add missing security configuration for h2 console | Vitaly Takmazov | |
2022-11-25 | Spring Boot 3 | Vitaly Takmazov | |
2022-06-27 | Drop outdated web security rules | Vitaly Takmazov | |
2021-10-24 | Handle .well-known/** requests with Spring Security | Vitaly Takmazov | |
2020-04-04 | Initialize all components from configuration | Vitaly Takmazov | |