squeegily/pleroma
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
3cb471ec06
pleroma/test/web/mastodon_api
History
Mike Verdone 3cb471ec06 Expose expires_at datetime in mastoAPI only for the activity actor 
In the "pleroma" section of the MastoAPI for status activities you can
see an expires_at item that states when the activity will expire, or
nothing if the activity will not expire.

The expires_at date is only visible to the person who posted the
activity. This is the conservative approach in case some attacker
decides to write a logger for expiring posts. However, in the future of
OCAP, signed requests, and all that stuff, this attack might not be that
likely. Some other pleroma dev should remove the restriction in the code
at that time, if they're satisfied with the security implications of
doing so.
2019-07-24 14:47:22 +02:00
..
mastodon_api_controller MastodonAPI: Add a way to update the background image. 2019-06-14 11:19:22 +02:00
account_view_test.exs Add pleroma.deactivated to the Account entity (Mastodon API) 2019-07-16 11:14:46 +00:00
list_view_test.exs
mastodon_api_controller_test.exs Expose expires_at datetime in mastoAPI only for the activity actor 2019-07-24 14:47:22 +02:00
notification_view_test.exs Use User.get_cached* everywhere 2019-04-22 07:20:43 +00:00
push_subscription_view_test.exs
scheduled_activity_view_test.exs
search_controller_test.exs [tests] Mock :crypt.crypt/2 function in AuthenticationPlugTest 2019-07-20 13:07:51 +00:00
status_view_test.exs Expose expires_at datetime in mastoAPI only for the activity actor 2019-07-24 14:47:22 +02:00
subscription_controller_test.exs