mirror of
https://git.pleroma.social/pleroma/pleroma.git
synced 2025-01-04 22:38:41 +00:00
Merge branch 'mergeback/2.8.0' into 'develop'
Mergeback/2.8.0 See merge request pleroma/pleroma!4302
This commit is contained in:
commit
64660423c5
70 changed files with 129 additions and 61 deletions
59
CHANGELOG.md
59
CHANGELOG.md
|
@ -4,6 +4,65 @@ All notable changes to this project will be documented in this file.
|
||||||
|
|
||||||
The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/).
|
The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/).
|
||||||
|
|
||||||
|
## 2.8.0
|
||||||
|
|
||||||
|
### Changed
|
||||||
|
- Metadata: Do not include .atom feed links for remote accounts
|
||||||
|
- Bumped `fast_html` to v2.3.0, which notably allows to use system-installed lexbor with passing `WITH_SYSTEM_LEXBOR=1` environment variable at build-time
|
||||||
|
- Dedupe upload filter now uses a three-level sharding directory structure
|
||||||
|
- Deprecate `/api/v1/pleroma/accounts/:id/subscribe`/`unsubscribe`
|
||||||
|
- Restrict incoming activities from unknown actors to a subset that does not imply a previous relationship and early rejection of unrecognized activity types.
|
||||||
|
- Elixir 1.14 and Erlang/OTP 23 is now the minimum supported release
|
||||||
|
- Support `id` param in `GET /api/v1/statuses`
|
||||||
|
- LDAP authentication has been refactored to operate as a GenServer process which will maintain an active connection to the LDAP server.
|
||||||
|
- Fix 'Setting a marker should mark notifications as read'
|
||||||
|
- Adjust more Oban workers to enforce unique job constraints.
|
||||||
|
- Oban updated to 2.18.3
|
||||||
|
- Publisher behavior improvement when snoozing Oban jobs due to Gun connection pool contention.
|
||||||
|
- Poll results refreshing is handled asynchronously and will not attempt to keep fetching updates to a closed poll.
|
||||||
|
- Tuning for release builds to lower CPU usage.
|
||||||
|
- Rich Media preview fetching will skip making an HTTP HEAD request to check a URL for allowed content type and length if the Tesla adapter is Gun or Finch
|
||||||
|
- Fix nonexisting user will not generate metadata for search engine opt-out
|
||||||
|
- Update Oban to 2.18
|
||||||
|
- Worker configuration is no longer available. This only affects custom max_retries values for a couple Oban queues.
|
||||||
|
|
||||||
|
### Added
|
||||||
|
- Add metadata provider for ActivityPub alternate links
|
||||||
|
- Added support for argon2 passwords and their conversion for migration from Akkoma fork to upstream.
|
||||||
|
- Respect :restrict_unauthenticated for hashtag rss/atom feeds
|
||||||
|
- LDAP configuration now permits overriding the CA root certificate file for TLS validation.
|
||||||
|
- LDAP now supports users changing their passwords
|
||||||
|
- Include list id in StatusView
|
||||||
|
- Added MRF.FODirectReply which changes replies to followers-only posts to be direct.
|
||||||
|
- Add `id_filter` to MRF to filter URLs and their domain prior to fetching
|
||||||
|
- Added MRF.QuietReply which prevents replies to public posts from being published to the timelines
|
||||||
|
- Add `group_key` to notifications
|
||||||
|
- Allow providing avatar/header descriptions
|
||||||
|
- Added RemoteReportPolicy from Rebased for handling bogus federated reports
|
||||||
|
- scrubbers/default: Allow "mention hashtag" classes used by Mastodon
|
||||||
|
- Added dependencies for Swoosh's Mua mail adapter
|
||||||
|
- Include session scopes in TokenView
|
||||||
|
|
||||||
|
### Fixed
|
||||||
|
- Verify a local Update sent through AP C2S so users can only update their own objects
|
||||||
|
- Fixed malformed follow requests that cause them to appear stuck pending due to the recipient being unable to process them.
|
||||||
|
- Fix incoming Block activities being rejected
|
||||||
|
- STARTTLS certificate and hostname verification for LDAP authentication
|
||||||
|
- LDAPS connections (implicit TLS) are now supported.
|
||||||
|
- Fix /api/v2/media returning the wrong status code (202) for media processed synchronously
|
||||||
|
- Miscellaneous fixes for Meilisearch support
|
||||||
|
- Fix pleroma_ctl mix task calls sometimes not being found
|
||||||
|
- Add a rate limiter to the OAuth App creation endpoint and ensure registered apps are assigned to users.
|
||||||
|
- ReceiverWorker will cancel processing jobs instead of retrying if the user cannot be fetched due to 403, 404, or 410 errors or if the account is disabled locally.
|
||||||
|
- Address case where instance reachability status couldn't be updated
|
||||||
|
- Remote Fetcher Worker recognizes more permanent failure errors
|
||||||
|
- StreamerView: Do not leak follows count if hidden
|
||||||
|
- Imports of blocks, mutes, and follows would retry repeatedly due to incorrect error handling and all work executed in a single job
|
||||||
|
- Make vapid_config return empty array, fixing preloading for instances without push notifications configured
|
||||||
|
|
||||||
|
### Removed
|
||||||
|
- Remove stub for /api/v1/accounts/:id/identity_proofs (deprecated by Mastodon 3.5.0)
|
||||||
|
|
||||||
## 2.7.1
|
## 2.7.1
|
||||||
|
|
||||||
### Changed
|
### Changed
|
||||||
|
|
|
@ -1 +0,0 @@
|
||||||
Add metadata provider for ActivityPub alternate links
|
|
|
@ -1 +0,0 @@
|
||||||
Added support for argon2 passwords and their conversion for migration from Akkoma fork to upstream.
|
|
|
@ -1 +0,0 @@
|
||||||
Metadata: Do not include .atom feed links for remote accounts
|
|
|
@ -1 +0,0 @@
|
||||||
- Bumped `fast_html` to v2.3.0, which notably allows to use system-installed lexbor with passing `WITH_SYSTEM_LEXBOR=1` environment variable at build-time
|
|
|
@ -1 +0,0 @@
|
||||||
Fixed a formatting issue that had a required commend embedded in a textblock, and change the language to make it a bit more idiomatic.
|
|
|
@ -1 +0,0 @@
|
||||||
Dedupe upload filter now uses a three-level sharding directory structure
|
|
|
@ -1 +0,0 @@
|
||||||
Deprecate `/api/v1/pleroma/accounts/:id/subscribe`/`unsubscribe`
|
|
|
@ -1 +0,0 @@
|
||||||
Restrict incoming activities from unknown actors to a subset that does not imply a previous relationship and early rejection of unrecognized activity types.
|
|
|
@ -1 +0,0 @@
|
||||||
Elixir 1.14 and Erlang/OTP 23 is now the minimum supported release
|
|
|
@ -1 +0,0 @@
|
||||||
Fixed malformed follow requests that cause them to appear stuck pending due to the recipient being unable to process them.
|
|
|
@ -1 +0,0 @@
|
||||||
Support `id` param in `GET /api/v1/statuses`
|
|
|
@ -1 +0,0 @@
|
||||||
Repesct :restrict_unauthenticated for hashtag rss/atom feeds
|
|
|
@ -1 +0,0 @@
|
||||||
Remove stub for /api/v1/accounts/:id/identity_proofs (deprecated by Mastodon 3.5.0)
|
|
|
@ -1 +0,0 @@
|
||||||
Fix incoming Block activities being rejected
|
|
|
@ -1 +0,0 @@
|
||||||
LDAP configuration now permits overriding the CA root certificate file for TLS validation.
|
|
|
@ -1 +0,0 @@
|
||||||
LDAP now supports users changing their passwords
|
|
|
@ -1 +0,0 @@
|
||||||
LDAP authentication has been refactored to operate as a GenServer process which will maintain an active connection to the LDAP server.
|
|
|
@ -1 +0,0 @@
|
||||||
STARTTLS certificate and hostname verification for LDAP authentication
|
|
|
@ -1 +0,0 @@
|
||||||
LDAPS connections (implicit TLS) are now supported.
|
|
|
@ -1 +0,0 @@
|
||||||
Include list id in StatusView
|
|
|
@ -1 +0,0 @@
|
||||||
Fix /api/v2/media returning the wrong status code (202) for media processed synchronously
|
|
|
@ -1 +0,0 @@
|
||||||
Miscellaneous fixes for Meilisearch support
|
|
|
@ -1 +0,0 @@
|
||||||
Fix pleroma_ctl mix task calls sometimes not being found
|
|
|
@ -1 +0,0 @@
|
||||||
Added MRF.FODirectReply which changes replies to followers-only posts to be direct.
|
|
|
@ -1 +0,0 @@
|
||||||
Add `id_filter` to MRF to filter URLs and their domain prior to fetching
|
|
|
@ -1 +0,0 @@
|
||||||
Added MRF.QuietReply which prevents replies to public posts from being published to the timelines
|
|
|
@ -1 +0,0 @@
|
||||||
Add `group_key` to notifications
|
|
|
@ -1 +0,0 @@
|
||||||
Fix 'Setting a marker should mark notifications as read'
|
|
|
@ -1 +0,0 @@
|
||||||
Add a rate limiter to the OAuth App creation endpoint and ensure registered apps are assigned to users.
|
|
|
@ -1 +0,0 @@
|
||||||
ReceiverWorker will cancel processing jobs instead of retrying if the user cannot be fetched due to 403, 404, or 410 errors or if the account is disabled locally.
|
|
|
@ -1 +0,0 @@
|
||||||
Adjust more Oban workers to enforce unique job constraints.
|
|
|
@ -1 +0,0 @@
|
||||||
Oban updated to 2.18.3
|
|
|
@ -1 +0,0 @@
|
||||||
Publisher behavior improvement when snoozing Oban jobs due to Gun connection pool contention.
|
|
|
@ -1 +0,0 @@
|
||||||
Poll results refreshing is handled asynchronously and will not attempt to keep fetching updates to a closed poll.
|
|
|
@ -1 +0,0 @@
|
||||||
Allow providing avatar/header descriptions
|
|
|
@ -1 +0,0 @@
|
||||||
Address case where instance reachability status couldn't be updated
|
|
|
@ -1 +0,0 @@
|
||||||
Tuning for release builds to lower CPU usage.
|
|
|
@ -1 +0,0 @@
|
||||||
Remote Fetcher Worker recognizes more permanent failure errors
|
|
|
@ -1 +0,0 @@
|
||||||
Added RemoteReportPolicy from Rebased for handling bogus federated reports
|
|
|
@ -1 +0,0 @@
|
||||||
Rich Media preview fetching will skip making an HTTP HEAD request to check a URL for allowed content type and length if the Tesla adapter is Gun or Finch
|
|
|
@ -1 +0,0 @@
|
||||||
scrubbers/default: Allow "mention hashtag" classes used by Mastodon
|
|
|
@ -1 +0,0 @@
|
||||||
Fix nonexisting user will not generate metadata for search engine opt-out
|
|
|
@ -1 +0,0 @@
|
||||||
StreamerView: Do not leak follows count if hidden
|
|
|
@ -1 +0,0 @@
|
||||||
Added dependencies for Swoosh's Mua mail adapter
|
|
|
@ -1 +0,0 @@
|
||||||
Include session scopes in TokenView
|
|
|
@ -1 +0,0 @@
|
||||||
Update Oban to 2.18
|
|
|
@ -1 +0,0 @@
|
||||||
Imports of blocks, mutes, and follows would retry repeatedly due to incorrect error handling and all work executed in a single job
|
|
|
@ -1 +0,0 @@
|
||||||
Make vapid_config return empty array, fixing preloading for instances without push notifications configured
|
|
|
@ -1 +0,0 @@
|
||||||
Worker configuration is no longer available. This only affects custom max_retries values for a couple Oban queues.
|
|
|
@ -482,7 +482,7 @@ defmodule Pleroma.Web.ActivityPub.ActivityPubController do
|
||||||
|> put_status(:forbidden)
|
|> put_status(:forbidden)
|
||||||
|> json(message)
|
|> json(message)
|
||||||
|
|
||||||
{:error, message} ->
|
{:error, message} when is_binary(message) ->
|
||||||
conn
|
conn
|
||||||
|> put_status(:bad_request)
|
|> put_status(:bad_request)
|
||||||
|> json(message)
|
|> json(message)
|
||||||
|
|
|
@ -169,7 +169,7 @@ defmodule Pleroma.Web.ActivityPub.ObjectValidator do
|
||||||
meta = Keyword.put(meta, :object_data, object_data),
|
meta = Keyword.put(meta, :object_data, object_data),
|
||||||
{:ok, update_activity} <-
|
{:ok, update_activity} <-
|
||||||
update_activity
|
update_activity
|
||||||
|> UpdateValidator.cast_and_validate()
|
|> UpdateValidator.cast_and_validate(meta)
|
||||||
|> Ecto.Changeset.apply_action(:insert) do
|
|> Ecto.Changeset.apply_action(:insert) do
|
||||||
update_activity = stringify_keys(update_activity)
|
update_activity = stringify_keys(update_activity)
|
||||||
{:ok, update_activity, meta}
|
{:ok, update_activity, meta}
|
||||||
|
@ -177,7 +177,7 @@ defmodule Pleroma.Web.ActivityPub.ObjectValidator do
|
||||||
{:local, _} ->
|
{:local, _} ->
|
||||||
with {:ok, object} <-
|
with {:ok, object} <-
|
||||||
update_activity
|
update_activity
|
||||||
|> UpdateValidator.cast_and_validate()
|
|> UpdateValidator.cast_and_validate(meta)
|
||||||
|> Ecto.Changeset.apply_action(:insert) do
|
|> Ecto.Changeset.apply_action(:insert) do
|
||||||
object = stringify_keys(object)
|
object = stringify_keys(object)
|
||||||
{:ok, object, meta}
|
{:ok, object, meta}
|
||||||
|
@ -207,9 +207,16 @@ defmodule Pleroma.Web.ActivityPub.ObjectValidator do
|
||||||
"Answer" -> AnswerValidator
|
"Answer" -> AnswerValidator
|
||||||
end
|
end
|
||||||
|
|
||||||
|
cast_func =
|
||||||
|
if type == "Update" do
|
||||||
|
fn o -> validator.cast_and_validate(o, meta) end
|
||||||
|
else
|
||||||
|
fn o -> validator.cast_and_validate(o) end
|
||||||
|
end
|
||||||
|
|
||||||
with {:ok, object} <-
|
with {:ok, object} <-
|
||||||
object
|
object
|
||||||
|> validator.cast_and_validate()
|
|> cast_func.()
|
||||||
|> Ecto.Changeset.apply_action(:insert) do
|
|> Ecto.Changeset.apply_action(:insert) do
|
||||||
object = stringify_keys(object)
|
object = stringify_keys(object)
|
||||||
{:ok, object, meta}
|
{:ok, object, meta}
|
||||||
|
|
|
@ -6,6 +6,8 @@ defmodule Pleroma.Web.ActivityPub.ObjectValidators.UpdateValidator do
|
||||||
use Ecto.Schema
|
use Ecto.Schema
|
||||||
|
|
||||||
alias Pleroma.EctoType.ActivityPub.ObjectValidators
|
alias Pleroma.EctoType.ActivityPub.ObjectValidators
|
||||||
|
alias Pleroma.Object
|
||||||
|
alias Pleroma.User
|
||||||
|
|
||||||
import Ecto.Changeset
|
import Ecto.Changeset
|
||||||
import Pleroma.Web.ActivityPub.ObjectValidators.CommonValidations
|
import Pleroma.Web.ActivityPub.ObjectValidators.CommonValidations
|
||||||
|
@ -31,23 +33,50 @@ defmodule Pleroma.Web.ActivityPub.ObjectValidators.UpdateValidator do
|
||||||
|> cast(data, __schema__(:fields))
|
|> cast(data, __schema__(:fields))
|
||||||
end
|
end
|
||||||
|
|
||||||
defp validate_data(cng) do
|
defp validate_data(cng, meta) do
|
||||||
cng
|
cng
|
||||||
|> validate_required([:id, :type, :actor, :to, :cc, :object])
|
|> validate_required([:id, :type, :actor, :to, :cc, :object])
|
||||||
|> validate_inclusion(:type, ["Update"])
|
|> validate_inclusion(:type, ["Update"])
|
||||||
|> validate_actor_presence()
|
|> validate_actor_presence()
|
||||||
|> validate_updating_rights()
|
|> validate_updating_rights(meta)
|
||||||
end
|
end
|
||||||
|
|
||||||
def cast_and_validate(data) do
|
def cast_and_validate(data, meta \\ []) do
|
||||||
data
|
data
|
||||||
|> cast_data
|
|> cast_data
|
||||||
|> validate_data
|
|> validate_data(meta)
|
||||||
end
|
end
|
||||||
|
|
||||||
# For now we only support updating users, and here the rule is easy:
|
def validate_updating_rights(cng, meta) do
|
||||||
# object id == actor id
|
if meta[:local] do
|
||||||
def validate_updating_rights(cng) do
|
validate_updating_rights_local(cng)
|
||||||
|
else
|
||||||
|
validate_updating_rights_remote(cng)
|
||||||
|
end
|
||||||
|
end
|
||||||
|
|
||||||
|
# For local Updates, verify the actor can edit the object
|
||||||
|
def validate_updating_rights_local(cng) do
|
||||||
|
actor = get_field(cng, :actor)
|
||||||
|
updated_object = get_field(cng, :object)
|
||||||
|
|
||||||
|
if {:ok, actor} == ObjectValidators.ObjectID.cast(updated_object) do
|
||||||
|
cng
|
||||||
|
else
|
||||||
|
with %User{} = user <- User.get_cached_by_ap_id(actor),
|
||||||
|
{_, %Object{} = orig_object} <- {:object, Object.normalize(updated_object)},
|
||||||
|
:ok <- Object.authorize_access(orig_object, user) do
|
||||||
|
cng
|
||||||
|
else
|
||||||
|
_e ->
|
||||||
|
cng
|
||||||
|
|> add_error(:object, "Can't be updated by this actor")
|
||||||
|
end
|
||||||
|
end
|
||||||
|
end
|
||||||
|
|
||||||
|
# For remote Updates, verify the host is the same.
|
||||||
|
def validate_updating_rights_remote(cng) do
|
||||||
with actor = get_field(cng, :actor),
|
with actor = get_field(cng, :actor),
|
||||||
object = get_field(cng, :object),
|
object = get_field(cng, :object),
|
||||||
{:ok, object_id} <- ObjectValidators.ObjectID.cast(object),
|
{:ok, object_id} <- ObjectValidators.ObjectID.cast(object),
|
||||||
|
|
2
mix.exs
2
mix.exs
|
@ -4,7 +4,7 @@ defmodule Pleroma.Mixfile do
|
||||||
def project do
|
def project do
|
||||||
[
|
[
|
||||||
app: :pleroma,
|
app: :pleroma,
|
||||||
version: version("2.7.51"),
|
version: version("2.8.0"),
|
||||||
elixir: "~> 1.14",
|
elixir: "~> 1.14",
|
||||||
elixirc_paths: elixirc_paths(Mix.env()),
|
elixirc_paths: elixirc_paths(Mix.env()),
|
||||||
compilers: Mix.compilers(),
|
compilers: Mix.compilers(),
|
||||||
|
|
|
@ -1644,6 +1644,28 @@ defmodule Pleroma.Web.ActivityPub.ActivityPubControllerTest do
|
||||||
assert json_response(conn, 403)
|
assert json_response(conn, 403)
|
||||||
end
|
end
|
||||||
|
|
||||||
|
test "it rejects update activity of object from other actor", %{conn: conn} do
|
||||||
|
note_activity = insert(:note_activity)
|
||||||
|
note_object = Object.normalize(note_activity, fetch: false)
|
||||||
|
user = insert(:user)
|
||||||
|
|
||||||
|
data = %{
|
||||||
|
type: "Update",
|
||||||
|
object: %{
|
||||||
|
id: note_object.data["id"]
|
||||||
|
}
|
||||||
|
}
|
||||||
|
|
||||||
|
conn =
|
||||||
|
conn
|
||||||
|
|> assign(:user, user)
|
||||||
|
|> put_req_header("content-type", "application/activity+json")
|
||||||
|
|> post("/users/#{user.nickname}/outbox", data)
|
||||||
|
|
||||||
|
assert json_response(conn, 400)
|
||||||
|
assert note_object == Object.normalize(note_activity, fetch: false)
|
||||||
|
end
|
||||||
|
|
||||||
test "it increases like count when receiving a like action", %{conn: conn} do
|
test "it increases like count when receiving a like action", %{conn: conn} do
|
||||||
note_activity = insert(:note_activity)
|
note_activity = insert(:note_activity)
|
||||||
note_object = Object.normalize(note_activity, fetch: false)
|
note_object = Object.normalize(note_activity, fetch: false)
|
||||||
|
|
Loading…
Reference in a new issue