1
0
Fork 0
forked from fedi/mastodon
mastodon/app
Claire 62c6e12fa5
Fix admin API unconditionally requiring CSRF token (#17975)
Fixes #17898

Since #17204, the admin API has only been available through the web
application because of the unconditional requirement to provide a valid CSRF
token.

This commit changes it back to `null_session`, which should make it work
both with session-based authentication (provided a CSRF token) and with a
bearer token.
2022-04-06 20:57:18 +02:00
..
chewy Fix error MethodError in Chewy::Strategy::Sidekiq::Worker (#17912) 2022-03-31 00:49:24 +02:00
controllers Fix admin API unconditionally requiring CSRF token (#17975) 2022-04-06 20:57:18 +02:00
helpers Fix unusual number formatting in some locales (#17929) 2022-04-01 23:59:13 +02:00
javascript Replace deprecated String.prototype.substr() (#17949) 2022-04-04 12:19:45 -04:00
lib Fix error MethodError in Chewy::Strategy::Sidekiq::Worker (#17912) 2022-03-31 00:49:24 +02:00
mailers Refactor formatter (#17828) 2022-03-26 02:53:34 +01:00
models Fix error MethodError in Chewy::Strategy::Sidekiq::Worker (#17912) 2022-03-31 00:49:24 +02:00
policies Spelling (#17705) 2022-03-06 22:51:40 +01:00
presenters Add /api/v1/accounts/familiar_followers to REST API (#17700) 2022-03-07 09:36:47 +01:00
serializers fix: returns nil instead of empty URL on status.application.website (#17962) 2022-04-05 12:00:31 +02:00
services Refactor response_to_recipient? CTE (#17899) 2022-03-30 10:26:51 +02:00
validators Fix being able to post URLs longer than 4096 characters (#17908) 2022-03-30 14:46:03 +02:00
views Refactor account and status formatting (#17877) 2022-03-28 01:17:17 +02:00
workers Fix clean_discarded_statuses (#17822) 2022-03-19 09:24:08 +01:00