aboutsummaryrefslogtreecommitdiff
path: root/src/main/java/com/juick/config/SecurityConfig.java
AgeCommit message (Collapse)Author
2024-10-10`/api/v2/instance` is not served on legacy server anymoreGravatar Vitaly Takmazov
2024-09-09Clean up social loginGravatar Vitaly Takmazov
2024-05-19javax.inject -> jakarta.injectGravatar Vitaly Takmazov
2024-02-09API: accept authorization cookieGravatar Vitaly Takmazov
2024-01-21Delete login hash on logoutGravatar Vitaly Takmazov
2023-11-11Make sure HTTP requests actually use cachingGravatar Vitaly Takmazov
* OkHttp dispatcher is not used for synchronous requests * @Cacheable only works for bean method calls, refactor beans to use it correctly
2023-06-21VK: read premium status using Callback APIGravatar Vitaly Takmazov
2023-06-20Patreon webhook (WIP)Gravatar Vitaly Takmazov
2023-05-31Modernize spring-security configuration and minor changesGravatar Vitaly Takmazov
* Clean up warnings
2023-05-11Fix Actuator security configurationGravatar Vitaly Takmazov
2023-01-25Update security config for service workerGravatar Vitaly Takmazov
2023-01-23Minor cleanupGravatar Vitaly Takmazov
2023-01-22db refactoring: merge getMessages with isSubscribed queryGravatar Vitaly Takmazov
2023-01-18Cleanup unused codeGravatar Vitaly Takmazov
2023-01-14Pass tests with configured domainGravatar Vitaly Takmazov
2023-01-13OAuth: use static key idGravatar Vitaly Takmazov
2023-01-13Fix OpenAPI generationGravatar Vitaly Takmazov
* Use HandlerMethodArgumentResolver to pass visitor * Hide visitor from OpenAPI definitions * Drop unused AsciiDoc template
2023-01-11Fix OAuth loginGravatar Vitaly Takmazov
2023-01-10Restore Swagger UIGravatar Vitaly Takmazov
2023-01-09OAuth: update refresh token TTLGravatar Vitaly Takmazov
2023-01-09Enable CORS on oauth endpointsGravatar Vitaly Takmazov
2023-01-06Bearer token filter is not usedGravatar Vitaly Takmazov
2023-01-06Mastodon API: timelines and minor fixesGravatar Vitaly Takmazov
2023-01-06Mastodon API: conversationsGravatar Vitaly Takmazov
2023-01-05Update config copyrightsGravatar Vitaly Takmazov
2023-01-05ActivityPub: signed GET requests, fix Signature verificationGravatar Vitaly Takmazov
2023-01-04OAuth authentication for Mastodon and ActivityPub C2SGravatar Vitaly Takmazov
2023-01-04JWT authentication for APIGravatar Vitaly Takmazov
2022-12-24Cacheable ActivityPub profilesGravatar Vitaly Takmazov
2022-12-20Disable CSRF entirelyGravatar Vitaly Takmazov
2022-12-15Extract user to actor conversion code into ConverterGravatar Vitaly Takmazov
2022-12-15Cleanup Security configGravatar Vitaly Takmazov
2022-12-08CSRF protection requires sessionsGravatar Vitaly Takmazov
2022-12-08Spring beans should not be publicGravatar Vitaly Takmazov
2022-12-07Login: use `Referer` header to redirect after the successful loginGravatar Vitaly Takmazov
2022-12-03Add missing security configuration for h2 consoleGravatar Vitaly Takmazov
2022-11-25Spring Boot 3Gravatar Vitaly Takmazov
2022-06-27Drop outdated web security rulesGravatar Vitaly Takmazov
2021-10-24Handle .well-known/** requests with Spring SecurityGravatar Vitaly Takmazov
2020-04-04Initialize all components from configurationGravatar Vitaly Takmazov