honkoma/lib/pleroma/plugs
rinpatch 455a402c8a HTTP Security plug: rewrite &csp_string/0
- Directives are now separated with ";" instead of " ;",
according to https://www.w3.org/TR/CSP2/#policy-parsing
the space is optional
- Use an IO list, which at the end gets converted to a binary as
opposed to ++ing a bunch of arrays with binaries together and joining
them to a string. I doubt it gives any significant real world advantage,
but the code is cleaner and now I can sleep at night.
- The static part of csp is pre-joined to a single binary at compile time.
Same reasoning as the last point.
2020-05-27 21:31:47 +03:00
..
rate_limiter remote_ip plug adds remote_ip_found flag 2020-04-15 15:27:34 +03:00
admin_secret_authentication_plug.ex Update Copyrights 2020-03-03 16:44:49 -06:00
authentication_plug.ex AuthenticationPlug: Also update crypt passwords. 2020-05-17 11:40:25 +02:00
basic_auth_decoder_plug.ex Update Copyrights 2020-03-03 16:44:49 -06:00
cache.ex Update Copyrights 2020-03-03 16:44:49 -06:00
digest.ex Update Copyrights 2020-03-03 16:44:49 -06:00
ensure_authenticated_plug.ex Pleroma.Web.TwitterAPI.TwoFactorAuthenticationController -> Pleroma.Web.PleromaAPI.TwoFactorAuthenticationController 2020-05-07 08:14:54 +00:00
ensure_public_or_authenticated_plug.ex Automatic checks of authentication / instance publicity. Definition of missing OAuth scopes in AdminAPIController. Refactoring. 2020-04-21 16:29:19 +03:00
ensure_user_key_plug.ex Update Copyrights 2020-03-03 16:44:49 -06:00
expect_authenticated_check_plug.ex Automatic checks of authentication / instance publicity. Definition of missing OAuth scopes in AdminAPIController. Refactoring. 2020-04-21 16:29:19 +03:00
expect_public_or_authenticated_check_plug.ex Automatic checks of authentication / instance publicity. Definition of missing OAuth scopes in AdminAPIController. Refactoring. 2020-04-21 16:29:19 +03:00
federating_plug.ex Refactoring of :if_func / :unless_func plug options (general availability). Added tests for Pleroma.Web.Plug. 2020-04-30 18:19:51 +03:00
http_security_plug.ex HTTP Security plug: rewrite &csp_string/0 2020-05-27 21:31:47 +03:00
http_signature.ex Bump copyright years of files changed after 2020-01-07 2020-03-02 06:08:45 +01:00
idempotency_plug.ex Update Copyrights 2020-03-03 16:44:49 -06:00
instance_static.ex static-fe.css: Restore and move to /priv/static/static-fe 2020-05-02 08:28:42 +02:00
legacy_authentication_plug.ex [#1682] Fixed Basic Auth permissions issue by disabling OAuth scopes checks when password is provided. Refactored plugs skipping functionality. 2020-04-17 21:21:10 +03:00
mapped_signature_to_identity_plug.ex MappedSignatureToIdentityPlug: Fix. 2020-05-01 15:58:47 +02:00
oauth_plug.ex Update Copyrights 2020-03-03 16:44:49 -06:00
oauth_scopes_plug.ex Fixed OAuth restrictions for :api routes. Made auth info dropped for :api routes if OAuth check was neither performed nor explicitly skipped. 2020-04-22 18:50:25 +03:00
plug_helper.ex [#1682] Fixed Basic Auth permissions issue by disabling OAuth scopes checks when password is provided. Refactored plugs skipping functionality. 2020-04-17 21:21:10 +03:00
remote_ip.ex remote_ip plug adds remote_ip_found flag 2020-04-15 15:27:34 +03:00
session_authentication_plug.ex Update Copyrights 2020-03-03 16:44:49 -06:00
set_format_plug.ex Update Copyrights 2020-03-03 16:44:49 -06:00
set_locale_plug.ex Update Copyrights 2020-03-03 16:44:49 -06:00
set_user_session_id_plug.ex Update Copyrights 2020-03-03 16:44:49 -06:00
static_fe_plug.ex Merge branch 'static-accept-missing' into 'develop' 2020-03-13 18:46:54 +00:00
trailing_format_plug.ex Update Copyrights 2020-03-03 16:44:49 -06:00
uploaded_media.ex Uploads: Sandbox them in the CSP. 2020-04-15 12:05:22 +02:00
user_enabled_plug.ex Bump copyright years of files changed after 2020-01-07 2020-03-02 06:08:45 +01:00
user_fetcher_plug.ex Update Copyrights 2020-03-03 16:44:49 -06:00
user_is_admin_plug.ex Bump copyright years of files changed after 2020-01-07 2020-03-02 06:08:45 +01:00