akkoma

History

Oneric dff532ac72 api: ensure only visible posts are interactable It doesn't make sense to like, react, reply, etc to something you cannot see and is unexpected for the author of the interacted with post and might make them believe the reacting user actually _can_ see the post. Wrt to fav, reblog, reaction indexes the missing visibility check was also leaking some (presumably/hopefully) low-severity data. Add full-API test for all modes of interactions with private posts.	2025-11-22 00:00:00 +00:00
..
controllers	api: ensure only visible posts are interactable	2025-11-22 00:00:00 +00:00
views	Allow reacting with remote emoji when they exist on the post (#200 )	2022-09-04 23:31:41 +00:00

Oneric dff532ac72 api: ensure only visible posts are interactable

It doesn't make sense to like, react, reply, etc to something you cannot
see and is unexpected for the author of the interacted with post and
might make them believe the reacting user actually _can_ see the post.

Wrt to fav, reblog, reaction indexes the missing visibility check was
also leaking some (presumably/hopefully) low-severity data.

Add full-API test for all modes of interactions with private posts.

2025-11-22 00:00:00 +00:00

controllers

api: ensure only visible posts are interactable

2025-11-22 00:00:00 +00:00

views

Allow reacting with remote emoji when they exist on the post (#200 )

2022-09-04 23:31:41 +00:00