88900492a4
fix(backend): pgroongaでの検索時にはじめのキーワード以外が検索に使用されない問題を修正 ( #15496 )
...
* fix pgroona note.text query
* Update Changelog
---------
Co-authored-by: Hazelnoot <acomputerdog@gmail.com>
2025-02-15 19:26:02 +09:00
1c48d50bf2
fix(deps): update [backend] update dependencies ( #15494 )
...
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: おさむのひと <46447427+samunohito@users.noreply.github.com>
2025-02-15 17:02:11 +09:00
5d82e1b2d0
fix(deps): update deps @fastify/multipart to v9.0.3 [security] ( #15469 )
...
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2025-02-15 10:52:39 +09:00
ffd8cf07e6
update deps ( #15311 )
...
* wip
* bump misskey-dev/eslint-plugin
* lint fixes (backend)
* lint fixes (frontend)
* lint fixes (frontend-embed)
* rollback nsfwjs to 4.2.0
ref: infinitered/nsfwjs#904
* rollback openapi-typescript to v6
v7でOpenAPIのバリデーションが入るようになった関係でスコープ外での変更が避けられないため一時的に戻した
* lint fixes (misskey-js)
* temporarily disable errored lint rule (frontend-shared)
* fix lint
* temporarily ignore errored file for lint (frontend-shared)
* rollback simplewebauthn/server to 12.0.0
v13 contains breaking changes that require some decision making
* lint fixes (frontend-shared)
* build misskey-js with types
* fix(backend): migrate simplewebauthn/server to v12
* fix(misskey-js/autogen): ignore indent rules to generate consistent output
* attempt to fix test
changes due to capricorn86/happy-dom#1617 (XMLSerializer now produces valid XML)
* attempt to fix test
changes due to capricorn86/happy-dom#1617 (XMLSerializer now produces valid XML)
* fix test
* fix test
* fix test
* Apply suggestions from code review
Co-authored-by: anatawa12 <anatawa12@icloud.com>
* bump summaly to v5.2.0
* update tabler-icons to v3.30.0-based
---------
Co-authored-by: かっこかり <67428053+kakkokari-gtyih@users.noreply.github.com>
Co-authored-by: anatawa12 <anatawa12@icloud.com>
2025-02-15 10:24:22 +09:00
ebd06becbf
fix(backend): オブジェクトストレージの設定でPrefixを設定していなかった場合、nullが文字列として展開・ドメインの1つ後ろに'/'が挿入されないように ( #15432 )
2025-02-11 11:45:31 +00:00
e339293673
feat: アクセストークン発行時に通知するように ( #15422 )
...
* feat: アクセストークン発行時に通知するように (misskey-dev/misskey#13353 )
* fix: 不要な翻訳を削除/インデントを揃えるように
* chore(backend): 不要なawaitを削除
* chore: changelogへ追加
2025-02-11 01:15:33 +00:00
dc608aada0
fix(backend): correct `admin/meta` response schema ( #15434 )
2025-02-09 07:17:48 +00:00
231c2c2e54
fix(backend): `following/invalidate`でフォロワーを解除しようとしているユーザーの情報を返すように ( #15430 )
2025-02-08 12:51:30 +00:00
4b98b446be
enhance(frontend): クライアントエラー画面の多言語対応 ( #15411 )
...
* enhance(frontend): クライアントエラー画面のマルチリンガル対応
* Update Changelog
* update message
2025-02-08 08:31:28 +00:00
54fc232a23
fix(backend): use unique `operationId` in the OpenAPI schema ( #15420 )
...
* fix(backend): use unique `operationId` in the OpenAPI schema
* fix: read with UTF-8 encoding
2025-02-08 08:29:24 +00:00
d7b443d1f0
chore: update `.swcrc` schema link ( #15428 )
2025-02-08 17:21:32 +09:00
47a76bbc4c
fix: swcのjson-schemaのurlを変更 ( #15409 )
...
Co-authored-by: Esurio <esurio@esurio1673.net>
2025-02-07 02:36:58 +00:00
fbc6d0de54
enhance: ページslugに使用可能な文字を限定 ( #15395 )
...
* wip
* paramの正規表現で弾くように
* apiWithDialogを使用するように
* Update CHANGELOG.md
---------
Co-authored-by: kakkokari-gtyih <67428053+kakkokari-gtyih@users.noreply.github.com>
2025-02-05 01:39:46 +00:00
9c70a4e631
fix(build): corepackのバグの回避 ( #15387 )
...
* fix: disallow corepack from fetching latest manager version instead use specified version in package.json
* Update Changelog
* fix?
* apply COREPACK_DEFAULT_TO_LATEST: 0 to every github workflows
* Revert "apply COREPACK_DEFAULT_TO_LATEST: 0 to every github workflows"
This reverts commit 67f0dc31ad
2025-02-03 13:45:59 +00:00
40bfb1be09
fix(backend): お知らせのmetaタグ出力の条件が間違っていたのを修正 ( #15377 )
...
* fix(backend): お知らせのmetaタグ出力の条件が間違っていたのを修正
* Update Changelog
2025-02-01 13:36:10 +09:00
8232ea6956
fix(backend): デフォルト起動時のメインプロセスはHTTPサーバモジュールのみ読み込む ( #15355 )
2025-01-27 13:10:00 +00:00
ef29130057
fix(backend): ノートの閲覧にログイン必須にしてもFeedでノートが表示されてしまう問題を修正 ( #15083 )
...
Signed-off-by: eternal-flame-AD <yume@yumechi.jp>
Co-authored-by: syuilo <4439005+syuilo@users.noreply.github.com>
2025-01-26 06:03:42 +00:00
35104d87d5
revert(dev): フロントエンド・バックエンドを分離する開発モードを廃止 ( #15284 )
...
* Revert "chore: 開発モードでフロントエンドとバックエンドを独立して起動するようにする(再) (#12593 )"
This reverts commit b0039f094641be2548ce
2025-01-25 20:58:39 +09:00
d7fdcbc733
fix: 絵文字のライセンスのActivityPub contextを追加 ( #15318 )
2025-01-21 00:30:39 +00:00
8d7b1f285f
refactor: Refactor Endpoints to improve Developer Experience for adding Endpoints ( #15301 )
...
* chore: reorder endpoints to lexicographic code unit order
* refactor: import endpoints in one module and use them for generating EndpointsModule and endpoints
2025-01-20 12:15:23 +00:00
f9ad127aaf
feat: 新カスタム絵文字管理画面(β)の追加 ( #13473 )
...
* wip
* wip
* wip
* wip
* wip
* wip
* wip
* wip
* fix
* fix
* fix
* fix size
* fix register logs
* fix img autosize
* fix row selection
* support delete
* fix border rendering
* fix display:none
* tweak comments
* support choose pc file and drive file
* support directory drag-drop
* fix
* fix comment
* support context menu on data area
* fix autogen
* wip イベント整理
* イベントの整理
* refactor grid
* fix cell re-render bugs
* fix row remove
* fix comment
* fix validation
* fix utils
* list maximum
* add mimetype check
* fix
* fix number cell focus
* fix over 100 file drop
* remove log
* fix patchData
* fix performance
* fix
* support update and delete
* support remote import
* fix layout
* heightやめる
* fix performance
* add list v2 endpoint
* support pagination
* fix api call
* fix no clickable input text
* fix limit
* fix paging
* fix
* fix
* support search
* tweak logs
* tweak cell selection
* fix range select
* block delete
* add comment
* fix
* support import log
* fix dialog
* refactor
* add confirm dialog
* fix name
* fix autogen
* wip
* support image change and highlight row
* add columns
* wip
* support sort
* add role name
* add index to emoji
* refine context menu setting
* support role select
* remove unused buttons
* fix url
* fix MkRoleSelectDialog.vue
* add route
* refine remote page
* enter key search
* fix paste bugs
* fix copy/paste
* fix keyEvent
* fix copy/paste and delete
* fix comment
* fix MkRoleSelectDialog.vue and storybook scenario
* fix MkRoleSelectDialog.vue and storybook scenario
* add MkGrid.stories.impl.ts
* fix
* [wip] add custom-emojis-manager2.stories.impl.ts
* [wip] add custom-emojis-manager2.stories.impl.ts
* wip
* 課題はまだ残っているが、ひとまず完了
* fix validation and register roles
* fix upload
* optimize import
* patch from dev
* i18n
* revert excess fixes
* separate sort order component
* add SPDX
* revert excess fixes
* fix pre test
* fix bugs
* add type column
* fix types
* fix CHANGELOG.md
* fix lit
* lint
* tweak style
* refactor
* fix ci
* autogen
* Update types.ts
* CSS Module化
* fix log
* 縦スクロールを無効化
* MkStickyContainer化
* regenerate locales index.d.ts
* fix
* fix
* テスト
* ランダム値によるUI変更の抑制
* テスト
* tableタグやめる
* fix last-child css
* fix overflow css
* fix endpoint.ts
* tweak css
* 最新への追従とレイアウト微調整
* ソートキーの指定方法を他と合わせた
* fix focus
* fix layout
* v2エンドポイントのルールに対応
* 表示条件などを微調整
* fix MkDataCell.vue
* fix error code
* fix error
* add comment to MkModal.vue
* Update index.d.ts
* fix CHANGELOG.md
* fix color theme
* fix CHANGELOG.md
* fix CHANGELOG.md
* fix center
* fix: テーブルにフォーカスがあり、通常状態であるときはキーイベントの伝搬を止める
* fix: ロール選択用のダイアログにてコンディショナルロールを×ボタンで除外できなかったのを修正
* fix remote list folder
* sticky footers
* chore: fix ci error(just single line-break diff)
* fix loading
* fix like
* comma to space
* fix ci
* fix ci
* removed align-center
---------
Co-authored-by: osamu <46447427+sam-osamu@users.noreply.github.com>
Co-authored-by: syuilo <4439005+syuilo@users.noreply.github.com>
Co-authored-by: Sayamame-beans <61457993+Sayamame-beans@users.noreply.github.com>
2025-01-20 11:35:37 +00:00
dc48c49f95
refactor: WebhookDeliverJobDataのcontentフィールドの型を具体的に ( #15310 )
...
* WebhookDeliverJobDataのcontentフィールドの型を具体的に
* typeフィールドの型も変更
2025-01-19 12:08:29 +00:00
1ef62e9e33
fix(backend): clone schema before converting to OAS schema to avoid mutation ( #15294 )
...
* fix(backend): clone schema before converting to OAS schema to avoid mutation
* Update CHANGELOG.md
* fix: use deepClone
2025-01-18 04:05:33 +00:00
b16f5a781e
fix(backend): localOnlyなノートの時は配送処理そのものを起動しない ( #15020 )
...
* fix(backend): localOnlyなノートの時は配送処理そのものを起動しない
* fix CHANGELOG.md
* fix CHANGELOG.md
2025-01-17 23:35:47 +00:00
a328d52008
よくわからないリアクションに関するログが流れっぱなしなのを修正 ( #15303 )
2025-01-17 10:27:48 +00:00
6396243973
fix: タイムアウトを起こすe2eテストの時間設定を延長 ( #15283 )
2025-01-15 19:48:37 +09:00
d018fe58aa
fix(backend): Let MfmService.fromHtml accept ruby ( #15117 )
...
This fix makes `MfmService.fromHtml()` method accept `<ruby>` tags
and translate it to MFM's ruby characters syntax (`$[ruby ...]`).
このパッチは`MfmService.fromHtml()`メソッドが`<ruby>`タグをMFMの
読み仮名(ルビ)文法に翻訳する様に修正します。
2025-01-14 13:06:39 +00:00
f45fd01551
enhance(backend): 絵文字の連合でライセンス欄を相互にやり取りするように ( #15182 )
...
* enhance(backend): 絵文字の連合でライセンス欄を相互にやり取りするように
Co-authored-by: Kisaragi Marine <kisaragi.effective@gmail.com>
Co-authored-by: ruruke <123709459+ruruke@users.noreply.github.com>
* fix CHANGELOG.md
---------
Co-authored-by: Kisaragi Marine <kisaragi.effective@gmail.com>
Co-authored-by: ruruke <123709459+ruruke@users.noreply.github.com>
Co-authored-by: taichan <40626578+tai-cha@users.noreply.github.com>
Co-authored-by: syuilo <4439005+syuilo@users.noreply.github.com>
2025-01-14 12:49:35 +00:00
145c6cf2b5
fix: node.js の punycode モジュールが使用されている場所がある問題 ( #15248 )
...
* fix: punycode.js が使用されていない場所がある問題
* fix: use punycode/punycode.js on backend
* fix: use punycode/punycode.es6.js on backend
* fix: d.ts missing declare keyword
* chore: don't use punycode.js on backend
* update pnpm-lock.yaml
* chore: remove punycode.d.ts
* chore: use punycode.js instead of punycode npm package
* chore: bump psl to 1.15.0
* chore: bump nsfwjs to 4.2.0
4.2.1 is not usable because of https://github.com/infinitered/nsfwjs/issues/904
* chore: prevent loading node-fetch from tensorflow
* chore: DOMWindow['document'] => Document
IDK why DOMWindow['document'] fails, but might be related to tsc internal complexity limit
* fix: disable --trace-deprecation
---------
Co-authored-by: syuilo <4439005+syuilo@users.noreply.github.com>
2025-01-14 12:37:39 +00:00
71cecdbcf2
feat(backend): pgroongaに対応(configの構成変更あり) ( #14978 )
...
* feat(backend): pgroongaに対応(configの構成変更あり)
* fix CHANGELOG.md
* fix CHANGELOG.md
* add using provider logging
* fix CHANGELOG.md
* Update CHANGELOG.md
---------
Co-authored-by: syuilo <4439005+syuilo@users.noreply.github.com>
2025-01-14 12:01:01 +00:00
da9e05582d
fix(backend): `pages/update`のnameの重複チェックはnameプロパティがある時のみ行うように ( #15104 )
...
* fix(backend): pagesのnameの重複チェックはnameプロパティがある時のみ行うように
* Update Changelog
---------
Co-authored-by: syuilo <4439005+syuilo@users.noreply.github.com>
2025-01-14 11:30:49 +00:00
d2e22f9050
refactor: SystemWebhook/UserWebhookの配信処理呼び出し部分の改善 ( #15035 )
...
* UserWebhook側の対処
* SystemWebhook側の対処
* fix test
2025-01-14 11:14:02 +00:00
5445b023e5
enhance: 連合モードにあわせてフロントエンドを変化させるように ( #15112 )
...
* enhance(backend): metaにfederation modeに関する情報を公開
* enhance(frontend): 登録画面の注意書きを追加
* enhance(frontend): aboutページ・サーバー情報
* enhance(frontend): サーバー統計
* enhance(frontend): みつけるページ
* enhance(frontend): 検索
* enhance(frontend): ユーザー選択
* enhance(frontend): 設定画面
* enhance(frontend): ウィジェット
* enhance(frontend): リモートで開くオプション
* Update Changelog
* enhance(frontend): ステータスバー
* i18n
---------
Co-authored-by: syuilo <4439005+syuilo@users.noreply.github.com>
2025-01-14 11:08:54 +00:00
64501c69a1
feat(frontend): Botプロテクションの設定変更時は実際に検証を通過しないと保存できないようにする ( #15151 )
...
* feat(frontend): CAPTCHAの設定変更時は実際に検証を通過しないと保存できないようにする
* なしでも保存できるようにした
* fix CHANGELOG.md
* フォームが増殖するのを修正
* add comment
* add server-side verify
* fix ci
* fix
* fix
* fix i18n
* add current.ts
* fix text
* fix
* regenerate locales
* fix MkFormFooter.vue
---------
Co-authored-by: syuilo <4439005+syuilo@users.noreply.github.com>
2025-01-14 10:57:58 +00:00
7fbfc2e046
ApPersonServiceとApNoteServiceのuri <-> url比較を緩和 ( #15233 )
...
* wip
* https://github.com/misskey-dev/misskey/issues/15039#issuecomment-2576411861 の反映
Co-authored-by: Kagami Sascha Rosylight <saschanaz@outlook.com>
* fix CHANGELOG.md
* remove inspection
---------
Co-authored-by: Kagami Sascha Rosylight <saschanaz@outlook.com>
2025-01-14 10:47:02 +00:00
759b9f4cf1
feat(backend): config(default.yml)からSQLログ全文を出力するか否かを設定可能に ( #15268 )
...
* feature(backend): config(default.yml)からSQLログ全文を出力するか否かを設定可能に
* disableHighlightやめる
* refactor
2025-01-14 10:37:41 +00:00
6820878676
fix: unable to use AiService on arm64 ( #15261 )
2025-01-14 10:36:35 +00:00
c4192e81ed
enhance(backend): チャートの処理を一つずつ行うことでDBの同時接続とタイムアウトを削減 ( #15239 )
...
* sync charts one-at-a-time to reduce database contention and timeouts
* fix merge resolve failure
* Update Changelog
* update changelog
* add comments
---------
Co-authored-by: Hazelnoot <acomputerdog@gmail.com>
2025-01-11 13:43:42 +00:00
55713fcd65
fix(backend): apOrHtml Constraintが正しく評価されない問題を修正 ( #15213 )
...
* fix(backend/ActivityPubServerService): apOrHtml Constraintが正しく評価されない問題を修正 (MisskeyIO#869)
* Update Changelog
* indent
---------
Co-authored-by: あわわわとーにゅ <17376330+u1-liquid@users.noreply.github.com>
2025-01-08 10:35:09 +00:00
d7835313c3
fix(backend): ロックダウンされた期間指定のノートがStreaming経由でLTLに出現するのを修正 ( #15200 )
...
* fix(backend): skipHideなときにもロックダウンされたノートのprivate化をするように
* fix linting
* Update packages/backend/src/core/entities/NoteEntityService.ts
* Fix: type error
* Remove unneeded await
* Fix: typo
* Remove skipTreatVisibillity
2025-01-08 05:33:08 +00:00
8ad97e5ede
fix(backend): disableClustering設定時の初期化ロジックを調整 ( #15224 )
...
* fix(backend): disableClustering設定時の初期化ロジックを調整
* onlyServer かつ enableCluster な場合、メインプロセスでlistenするとワーカープロセス側のlistenと衝突するため、メインプロセスはforkのみに制限する(listenしない)
* ログの追加
* fix CHANGELOG.md
* fix comment
2025-01-07 12:19:59 +00:00
020882edcf
fix(backend): アプリ作成方式で作成したトークンの権限を表示するように ( #15177 )
2025-01-04 06:06:19 +00:00
79b3d2a711
pg_bigmが利用できるよう、ノートの検索をILIKE演算子でなくLIKE演算子でLOWER()をかけたテキストに対して行うように ( #15205 )
...
* Use LIKE-LOWER instead of ILIKE, which pg_bigm doesn't support.
* changelog: Enhance: pg_bigmが利用できるよう、ノートの検索をILIKE演算子でなくLIKE演算子でLOWER()をかけたテキストに対して行うように
2025-01-04 06:03:00 +00:00
f123be38b9
enhance(frontend): 照会の際にエラーを表示するように ( #15147 )
...
* enhance: 照会の失敗理由を表示するように
* Update Changelog
* fix
* fix test
* lookupErrors-> remoteLookupErrors
2024-12-19 16:05:33 +09:00
074b7b0bee
fix(frontend): 公開範囲がホームのノートの埋め込みウィジェットが読み込まれない問題を修正 ( #15102 )
...
* Resolve frontend/backend contradiction for home visibility embeds
This now uses the same check from `packages/frontend/src/scripts/get-note-menu.ts`
* Update Changelog
---------
Co-authored-by: CenTdemeern1 <timo.herngreen@gmail.com>
2024-12-10 10:36:03 +09:00
dd56623cde
fix: unable to upload to local object storage ( #15040 )
2024-11-24 20:44:59 +09:00
a0e91b5882
fix(backend): 起動前の疎通チェックが機能しなくなっていた問題を修正 ( #15043 )
...
* check harder for connectibility
`allSettled` does not throw if a promise is rejected, so
`check_connect` never actually failed
* Update Changelog
---------
Co-authored-by: dakkar <dakkar@thenautilus.net>
2024-11-24 20:43:47 +09:00
d176db517f
fix(backend/misskey-js): タイポ修正 ( #15046 )
2024-11-24 15:23:07 +09:00
a77ad7a16b
fix(backend): アドレス入力で直接ユーザのプロフィールページを表示した際、前提データが足りず描画に失敗する ( #15033 )
...
* fix(backend): アドレス入力で直接ユーザのプロフィールページを表示した際、前提データが足りず描画に失敗する
* fix CHANGELOG.md
2024-11-23 16:45:05 +09:00
04b221409c
fix(backend): use atomic command to improve security
2024-11-23 04:44:33 +09:00
f25fc5215b
fix(backend): Inboxのエラーをthrowせずreturnしている問題を修正 ( #15022 )
...
* fix exception handling for Like activities
(cherry picked from commit 8f42e8434eaebe3aba5d1980c57f49dd8ad0de91)
* fix exception handling for Announce activities
(cherry picked from commit cfc3ab4b045af0674122fa49176431860176358b)
* fix exception handling for Undo activities
* Update Changelog
---------
Co-authored-by: Hazelnoot <acomputerdog@gmail.com>
2024-11-22 12:14:41 +09:00
c1f19fad1e
fix(backend): fix apResolver ( #15010 )
...
* fix(backend): fix apResolver
* fix
* add comments
* tweak comment
2024-11-21 14:36:24 +09:00
3a6c2aa835
fix(backend): fix type error(s) in security fixes ( #15009 )
...
* Fix type error in security fixes
(cherry picked from commit fa3cf6c2996741e642955c5e2fca8ad785e83205)
* Fix error in test function calls
(cherry picked from commit 1758f29364eca3cbd13dbb5c84909c93712b3b3b)
* Fix style error
(cherry picked from commit 23c4aa25714af145098baa7edd74c1d217e51c1a)
* Fix another style error
(cherry picked from commit 36af07abe28bec670aaebf9f5af5694bb582c29a)
* Fix `.punyHost` misuse
(cherry picked from commit 6027b516e1c82324d55d6e54d0e17cbd816feb42)
* attempt to fix test: make yaml valid
---------
Co-authored-by: Julia Johannesen <julia@insertdomain.name>
2024-11-21 12:10:02 +09:00
53e827b18c
fix(backend): fix security patches ( #15008 )
2024-11-21 10:30:30 +09:00
0f59adc436
fix ap/show
2024-11-21 09:25:18 +09:00
9fdabe3666
fix(backend): use atomic command to improve security
...
Co-Authored-By: Acid Chicken <root@acid-chicken.com>
2024-11-21 09:22:15 +09:00
090e9392cd
Merge commit from fork
...
* fix(backend): check target IP before sending HTTP request
* fix(backend): allow accessing private IP when testing
* Apply suggestions from code review
Co-authored-by: anatawa12 <anatawa12@icloud.com>
* fix(backend): lint and typecheck
* fix(backend): add isLocalAddressAllowed option to getAgentByUrl and send (HttpRequestService)
* fix(backend): allow fetchSummaryFromProxy, trueMail to access local addresses
---------
Co-authored-by: anatawa12 <anatawa12@icloud.com>
Co-authored-by: syuilo <4439005+syuilo@users.noreply.github.com>
2024-11-21 08:27:09 +09:00
b9cb949eb1
Merge commit from fork
...
* Fix poll update spoofing
* fix: Disallow negative poll counts
---------
Co-authored-by: syuilo <4439005+syuilo@users.noreply.github.com>
2024-11-21 08:24:50 +09:00
5f675201f2
Merge commit from fork
...
* enhance: Add a few validation fixes from Sharkey
See the original MR on the GitLab instance:
https://activitypub.software/TransFem-org/Sharkey/-/merge_requests/484
Co-Authored-By: Dakkar <dakkar@thenautilus.net>
* fix: primitive 2: acceptance of cross-origin alternate
Co-Authored-By: Laura Hausmann <laura@hausmann.dev>
* fix: primitive 3: validation of non-final url
* fix: primitive 4: missing same-origin identifier validation of collection-wrapped activities
* fix: primitives 5 & 8: reject activities with non
string identifiers
Co-Authored-By: Laura Hausmann <laura@hausmann.dev>
* fix: primitive 6: reject anonymous objects that were fetched by their id
* fix: primitives 9, 10 & 11: http signature validation
doesn't enforce required headers or specify auth header name
Co-Authored-By: Laura Hausmann <laura@hausmann.dev>
* fix: primitive 14: improper validation of outbox, followers, following & shared inbox collections
* fix: code style for primitive 14
* fix: primitive 15: improper same-origin validation for
note uri and url
Co-Authored-By: Laura Hausmann <laura@hausmann.dev>
* fix: primitive 16: improper same-origin validation for user uri and url
* fix: primitive 17: note same-origin identifier validation can be bypassed by wrapping the id in an array
* fix: code style for primitive 17
* fix: check attribution against actor in notes
While this isn't strictly required to fix the exploits at hand, this
mirrors the fix in `ApQuestionService` for GHSA-5h8r-gq97-xv69, as a
preemptive countermeasure.
* fix: primitive 18: `ap/get` bypasses access checks
One might argue that we could make this one actually preform access
checks against the returned activity object, but I feel like that's a
lot more work than just restricting it to administrators, since, to me
at least, it seems more like a debugging tool than anything else.
* fix: primitive 19 & 20: respect blocks and hide more
Ideally, the user property should also be hidden (as leaving it in leaks
information slightly), but given the schema of the note endpoint, I
don't think that would be possible without introducing some kind of
"ghost" user, who is attributed for posts by users who have you blocked.
* fix: primitives 21, 22, and 23: reuse resolver
This also increases the default `recursionLimit` for `Resolver`, as it
theoretically will go higher that it previously would and could possibly
fail on non-malicious collection activities.
* fix: primitives 25-33: proper local instance checks
* revert: fix: primitive 19 & 20
This reverts commit 465a9fe6591de90f78bd3d084e3c01e65dc3cf3c.
---------
Co-authored-by: Dakkar <dakkar@thenautilus.net>
Co-authored-by: Laura Hausmann <laura@hausmann.dev>
Co-authored-by: syuilo <4439005+syuilo@users.noreply.github.com>
2024-11-21 08:20:09 +09:00
aa48a0e207
Fix: リノートミュートが新規投稿通知に対して作用していなかった問題を修正 ( #15006 )
...
* fix(backend): renoteMute doesn't work for note notification
* docs(changelog): update changelog
2024-11-21 08:00:50 +09:00
f0c3a4cc0b
perf(frontend): reduce api requests for non-logged-in enviroment ( #15001 )
...
* wip
* Update CHANGELOG.md
* wip
2024-11-21 07:58:34 +09:00
763c708253
Fix(backend): アカウント削除のモデレーションログが動作していないのを修正 ( #14996 ) ( #14997 )
...
* アカウント削除のモデレーションログが動作していないのを修正
* update CHANGELOG
2024-11-19 21:12:40 +09:00
7b9c884a5d
refactor(backend): SystemWebhookで送信されるペイロードの型を追加 ( #14980 )
2024-11-19 10:41:39 +09:00
e800c0f85a
fix(backend): お知らせ作成時に画像URL入力欄を空欄に変更できないのを修正 ( #14990 )
...
* fix(backend): アナウンスメントを作成ときに画像URLを後悔できないのを修正
Signed-off-by: eternal-flame-AD <yume@yumechi.jp>
* Update CHANGELOG.md
Co-authored-by: おさむのひと <46447427+samunohito@users.noreply.github.com>
---------
Signed-off-by: eternal-flame-AD <yume@yumechi.jp>
Co-authored-by: おさむのひと <46447427+samunohito@users.noreply.github.com>
2024-11-19 10:29:42 +09:00
b3c2de2b26
fix(backend): fallback sharedInbox to null in ApPersonService ( #14970 )
2024-11-16 18:53:28 +09:00
eef0c895bc
use execa 8.0.1
...
#14966
2024-11-15 19:48:31 +09:00
d9d92bcfbf
Revert "use nodemon 3.0.2"
...
This reverts commit ce1f84e5a3
2024-11-15 19:40:12 +09:00
ce1f84e5a3
use nodemon 3.0.2
...
#14966
2024-11-15 19:33:50 +09:00
c0d1682604
feat: 送信したフォローリクエストを確認できるように ( #14856 )
...
* FEAT: Allow users to view pending follow requests they sent
This commit implements the `following/requests/sent` interface firstly
implemented on Firefish, and provides a UI interface to view the pending
follow requests users sent.
* ux: should not show follow requests tab when have no pending sent follow req
* fix default followreq tab
* fix default followreq tab
* restore missing hasPendingReceivedFollowRequest in navbar
* refactor
* use tabler icons
* tweak design
* Revert "ux: should not show follow requests tab when have no pending sent follow req"
This reverts commit e580b92c37
2024-11-15 17:30:54 +09:00
e26e24b610
update deps ( #14950 )
...
* update deps
* wip
* Revert "wip"
This reverts commit 393de249fe
2024-11-15 17:22:00 +09:00
a11b77a415
fix(backend): Webhook Test一致性 ( #14863 )
...
* fix(backend): Webhook Test一致性
Signed-off-by: eternal-flame-AD <yume@yumechi.jp>
* UserWebhookPayload<'followed'> 修正
Signed-off-by: eternal-flame-AD <yume@yumechi.jp>
---------
Signed-off-by: eternal-flame-AD <yume@yumechi.jp>
2024-11-12 09:51:18 +09:00
4a62051ce7
fix(backend): ローカルユーザーへのメンションを含むノートが連合される際に正しいURLに変換されないことがある問題を修正 ( #14879 )
...
* fix: make sure mentions of local users get rendered correctly during AP delivery (resolves #645 )
* Update Changelog
* indent
---------
Co-authored-by: Laura Hausmann <laura@hausmann.dev>
Co-authored-by: syuilo <4439005+syuilo@users.noreply.github.com>
2024-11-09 10:58:09 +09:00
a4c5ce1413
enhance(backend) : リモートユーザーの照会をオリジナルにリダイレクトするように ( #12892 ) ( #14897 )
...
* enhance(backend) : リモートユーザーの照会をオリジナルにリダイレクトするように (#12892 )
* オリジンリダイレクトのテストをtodoとして追加。
e2eテストにリモートユーザー考慮のテストがなさそうなので。
次のコマンドで動くことは確認済みです。
curl "http://localhost:3000/@foo@bar " -H "accept: application/activity+json" -L
* Acctのパースを既存のパーサーでするように修正
* lint
2024-11-09 10:54:44 +09:00
e75b62f3f5
enhance(frontend): 個別お知らせページではmetaタグを出力するように ( #14902 )
...
* enhance(frontend): 個別お知らせページではmetaタグを出力するように
* Update Changelog
2024-11-09 10:53:09 +09:00
98b4717c45
fix(backend): SQLのサニタイズを強化 ( #14920 )
...
* Fix code scanning alert no. 28: Incomplete string escaping or encoding (MisskeyIO#800)
Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com>
(cherry picked from commit 443335c662✌️
---------
Co-authored-by: あわわわとーにゅ <17376330+u1-liquid@users.noreply.github.com>
2024-11-09 10:51:28 +09:00
794cb9ffe2
fix(backend): followedMessageではなくdescriptionになっていたのを修正 ( #14908 )
2024-11-07 17:16:51 +09:00
bca690f256
fix(backend): フォロワーへのメッセージの絵文字をemojisに含めるように ( #14904 )
2024-11-07 15:10:10 +09:00
b1c82213a3
fix(backend): FTT無効時にユーザーリストタイムラインが使用できない問題を修正 ( #14878 )
...
* fix: return getfromdb when FanoutTimeline is not enabled
* Update Changelog
* fix
---------
Co-authored-by: Lhc_fl <lhcfl@outlook.com>
2024-11-06 22:01:21 +09:00
6718a54f6f
fix(backend): ノートを連合する際にリモートユーザーのacctの大小文字を区別して処理している問題を修正 ( #14880 )
...
* fix: make sure outgoing remote mentions get resolved correctly if referenced with non-canonical casing (resolves #646 )
* Update Changelog
* Update Changelog
* indent
---------
Co-authored-by: Laura Hausmann <laura@hausmann.dev>
2024-11-03 08:26:51 +09:00
f30d19051f
enhance(backend): check_connect.js で全RedisとDBへの接続を確認するように ( #14853 )
...
* fix race conditions in check_connect.js
(cherry picked from commit 524ddb96770690455b82522104a543c5b0b1f3b3)
* fix
* Update Changelog
---------
Co-authored-by: Hazelnoot <acomputerdog@gmail.com>
2024-10-28 21:06:54 +09:00
8eb7749e44
fix(backend): Accept arrays in ActivityPub `icon` and `image` properties ( #14825 )
...
This is allowed according to the Activity vocabulary: https://www.w3.org/TR/activitystreams-vocabulary/#dfn-icon
The issue is noticeable in combination with Bridgy Fed: https://github.com/snarfed/bridgy-fed/issues/1408
2024-10-28 21:06:16 +09:00
74847bce30
enhance: アイコンデコレーション管理画面の改善
2024-10-28 20:42:14 +09:00
ec4358d1e8
fix(misskey-js): WebSocketの型定義をReconnectingWebsocketに依存するように ( #14850 )
...
* fix(misskey-js): WebSocketの型定義をReconnectingWebsocketに依存するように
* Update Changelog
* run api extractor
* fix
* fix
2024-10-28 11:43:05 +09:00
eeea4ec00b
fix(backend): 招待コード発行可能残り数算出に使用すべきロールポリシーの値が違うのを修正 ( #14834 )
...
* fix: should use invite limit cycle to calculate invite/limit
* Update Changelog
* Update changelog
---------
Co-authored-by: Lhc_fl <lhcfl@outlook.com>
2024-10-25 15:09:37 +09:00
48d1539f3b
Merge commit from fork
...
[ghsa-gq5q-c77c-v236](https://github.com/misskey-dev/misskey/security/advisories/ghsa-gq5q-c77c-v236 )
Signed-off-by: eternal-flame-AD <yume@yumechi.jp>
2024-10-22 18:17:56 +09:00
952fec5665
feat: 過去のノートを非公開化/フォロワーのみ表示可能にできる機能 ( #14814 )
...
* wip
* Update CHANGELOG.md
* wip
* wip
* wip
* Update privacy.vue
* wip
2024-10-22 17:08:53 +09:00
5c79d8db20
feat: ノートの閲覧にログイン必須にする設定 ( #14799 )
...
* wip
* wip
* wip
* Update packages/frontend/src/pages/note.vue
Co-authored-by: かっこかり <67428053+kakkokari-gtyih@users.noreply.github.com>
* wip
* Update WebhookTestService.ts
* Update privacy.vue
* wip
* rename
* Update locales/ja-JP.yml
Co-authored-by: Sayamame-beans <61457993+Sayamame-beans@users.noreply.github.com>
* 🎨
* wip
---------
Co-authored-by: かっこかり <67428053+kakkokari-gtyih@users.noreply.github.com>
Co-authored-by: Sayamame-beans <61457993+Sayamame-beans@users.noreply.github.com>
2024-10-21 12:49:29 +09:00
a3a99467f0
enhance(frontend): Bull Dashboard に relationship queue を追加 ( #14777 )
...
* spec(frontend): Bull Dashboard に relationship queue を追加 (MisskeyIO#751)
(cherry picked from commit a8bbccbefa
2024-10-19 17:25:11 +09:00
b990ae6b23
test(backend): add federation test ( #14582 )
...
* test(backend): add federation test
* fix(ci): install pnpm
* fix(ci): cd
* fix(ci): build entire project
* fix(ci): skip frontend build
* fix(ci): pull submodule when checkout
* chore: show log for debugging
* Revert "chore: show log for debugging"
This reverts commit a930964b8d#14728
* chore: enable eslint check
* perf: don't start linked services when test
* test(note): remote note deletion for moderation
* chore: define config template
* chore: write setup script
* refactor: omit unnecessary conditional
* refactor: clarify scope
* refactor: omit type assertion
* refactor: omit logs
* style
* refactor: redundant promise
* refactor: unnecessary imports
* refactor: use readable error code
* refactor: cache set in signin function
* refactor: optimize import
2024-10-15 13:37:00 +09:00
b5de525548
add note
2024-10-15 10:32:00 +09:00
5005cc8ae3
add note
2024-10-14 21:00:20 +09:00
f13c3909a0
refactor(backend): remove unnecessary any
2024-10-14 17:54:27 +09:00
77ebabb3dc
Revert "refactor"
...
This reverts commit 7fd8ef344b
2024-10-14 17:51:47 +09:00
7fd8ef344b
refactor
2024-10-14 17:43:44 +09:00
8b7290d6b0
enhance(backend): 個人宛のお知らせはわかったを押すとアーカイブするように ( #14762 )
...
* enhance(backend): 個人宛のお知らせはわかったを押すとアーカイブするように
* Update Changelog
* enhance(frontend): アーカイブ済みのものを読み込めるように
* Update Changelog
* fix changelog
* 🎨
2024-10-14 11:23:26 +09:00
064d6ca56f
fix(backend): RBT有効時、リノートのリアクションが反映されない問題を修正
2024-10-14 09:11:03 +09:00
33b34ad7b8
feat: 運営のアクティビティが一定期間ない場合は通知+招待制に移行した際に通知 ( #14757 )
...
* feat: 運営のアクティビティが一定期間ない場合は通知+招待制に移行した際に通知
* fix misskey-js.api.md
* Revert "feat: 運営のアクティビティが一定期間ない場合は通知+招待制に移行した際に通知"
This reverts commit 3ab953bdf8
2024-10-13 20:32:12 +09:00
5229f5de4d
refactor(backend): remove unnecessary .then
2024-10-13 20:32:02 +09:00
ff47fef572
feat: リモートサーバーのサーバー情報を収集しないオプション ( #14634 )
...
* wip
* wip
* Update FetchInstanceMetadataService.ts
* Update FetchInstanceMetadataService.ts
* Update types.ts
2024-10-13 20:22:16 +09:00
45d42b8641
feat: ユーザーの名前に禁止ワードを設定できるように ( #14756 )
...
* wip
* 🎨
* Enhance: モデレーター以上は制限の影響を受けないように
* refactor
* better error handling
* fix
* Revert "better error handling"
This reverts commit 5670b29cfa✌️
* モデレーター以上は影響ないことを明記
* 🎨
* update changelog
* spdx
* Update update.ts
* refactor
* eliminate `screen name`
* remove untracked file
---------
Co-authored-by: KanariKanaru <93921745+kanarikanaru@users.noreply.github.com>
2024-10-13 20:21:25 +09:00
かっこかり
renovate[bot]
syuilo
Esurio/1673beta
lqvp
zyoshoka
おさむのひと
饺子w (Yumechi)
Takeshi Umeda
anatawa12
Take-John
果物リン
Hong Minhee (洪 民憙)
taichan
4ster1sk
Yuba
rectcoordsystem
Julia
Sayamame-beans
zawa-ch.
CDN
momoirodouhu
Tamme Schichler