mastodon/app/controllers/api/v1/statuses
Claire 502cf75b16
Merge pull request from GHSA-58x8-3qxw-6hm7
* Fix insufficient permission checking for public timeline endpoints

Note that this changes unauthenticated access failure code from 401 to 422

* Add more tests for public timelines

* Require user token in `/api/v1/statuses/:id/translate` and `/api/v1/scheduled_statuses`
2024-07-04 16:26:49 +02:00
..
base_controller.rb Add `Api::V1::Statuses::BaseController` base controller class (#27794) 2023-11-13 14:53:22 +00:00
bookmarks_controller.rb Add `Api::V1::Statuses::BaseController` base controller class (#27794) 2023-11-13 14:53:22 +00:00
favourited_by_accounts_controller.rb Move `pagination_params` into `API::BaseController` (#28845) 2024-05-30 14:56:48 +00:00
favourites_controller.rb Add `Api::V1::Statuses::BaseController` base controller class (#27794) 2023-11-13 14:53:22 +00:00
histories_controller.rb Remove `default_scope` from `StatusEdit` class (#28042) 2023-11-23 09:26:11 +00:00
mutes_controller.rb Add `Api::V1::Statuses::BaseController` base controller class (#27794) 2023-11-13 14:53:22 +00:00
pins_controller.rb Add `Api::V1::Statuses::BaseController` base controller class (#27794) 2023-11-13 14:53:22 +00:00
reblogged_by_accounts_controller.rb Move `pagination_params` into `API::BaseController` (#28845) 2024-05-30 14:56:48 +00:00
reblogs_controller.rb Add `Api::V1::Statuses::BaseController` base controller class (#27794) 2023-11-13 14:53:22 +00:00
sources_controller.rb Add `Api::V1::Statuses::BaseController` base controller class (#27794) 2023-11-13 14:53:22 +00:00
translations_controller.rb Merge pull request from GHSA-58x8-3qxw-6hm7 2024-07-04 16:26:49 +02:00