catstodon/app/controllers/api/v1
Eugen Rochko 48fee1a800
Fix poll API not requiring authentication on non-public polls (#10960)
* Fix poll API not requiring authentication on non-public polls

That API does not reveal the content of the status, i.e. the question
itself, nor who the author is, nor which status it belongs to, but it
does reveal the poll options and how many answers they got

Fix #10959

* Add test
2019-06-04 20:10:26 +02:00
..
accounts Improve blocked view of profiles (#10491) 2019-04-07 04:59:13 +02:00
apps Add vapid_key to the application entity in the REST API (#10058) 2019-02-16 05:27:05 +01:00
instances Explicitly disable storage of REST API results (#10655) 2019-05-03 20:39:19 +02:00
lists Extract counters from accounts table to account_stats table (#9295) 2018-11-19 00:43:52 +01:00
polls Add polls (#10111) 2019-03-03 22:18:23 +01:00
push Fix web push notifications for polls (#10864) 2019-05-28 00:26:08 +02:00
statuses Improve blocked view of profiles (#10491) 2019-04-07 04:59:13 +02:00
timelines Fix tagged param not being normalized before querying tags (#10249) 2019-03-13 13:02:13 +01:00
accounts_controller.rb Improve blocked view of profiles (#10491) 2019-04-07 04:59:13 +02:00
apps_controller.rb Fix #5104 - GET /api/v1/apps/verify_credentials to confirm app works (#5112) 2017-09-30 22:05:42 +02:00
blocks_controller.rb Extract counters from accounts table to account_stats table (#9295) 2018-11-19 00:43:52 +01:00
conversations_controller.rb Add unread indicator to conversations (#9009) 2018-10-19 01:47:29 +02:00
custom_emojis_controller.rb Explicitly disable storage of REST API results (#10655) 2019-05-03 20:39:19 +02:00
domain_blocks_controller.rb Add more granular OAuth scopes (#7929) 2018-07-05 18:31:35 +02:00
endorsements_controller.rb Extract counters from accounts table to account_stats table (#9295) 2018-11-19 00:43:52 +01:00
favourites_controller.rb Support min_id-based pagination in REST API (#8736) 2018-09-28 02:23:45 +02:00
filters_controller.rb Add option to not consider word boundaries when processing keyword filtering (#7975) 2018-07-09 02:22:09 +02:00
follow_requests_controller.rb Extract counters from accounts table to account_stats table (#9295) 2018-11-19 00:43:52 +01:00
follows_controller.rb Add more granular OAuth scopes (#7929) 2018-07-05 18:31:35 +02:00
instances_controller.rb Explicitly disable storage of REST API results (#10655) 2019-05-03 20:39:19 +02:00
lists_controller.rb Fix low-hanging rubocop gripes (#8458) 2018-08-26 19:22:46 +02:00
media_controller.rb Add more granular OAuth scopes (#7929) 2018-07-05 18:31:35 +02:00
mutes_controller.rb Make Api::V1::MutesController paginate properly (#8472) 2018-08-26 21:30:17 +02:00
notifications_controller.rb Add account_id param to GET /api/v1/notifications (#10796) 2019-05-21 13:28:49 +02:00
polls_controller.rb Fix poll API not requiring authentication on non-public polls (#10960) 2019-06-04 20:10:26 +02:00
preferences_controller.rb Add a preferences API so apps can share basic behaviours (#10109) 2019-03-15 02:39:20 +01:00
reports_controller.rb Add unread indicator to conversations (#9009) 2018-10-19 01:47:29 +02:00
scheduled_statuses_controller.rb Add scheduled statuses (#9706) 2019-01-05 12:43:28 +01:00
search_controller.rb Add type, limit, offset, min_id, max_id, account_id to search API (#10091) 2019-02-26 15:21:36 +01:00
statuses_controller.rb Add toot source to delete result to ease Delete & Redraft (#10669) 2019-05-11 06:46:43 +02:00
streaming_controller.rb Clean up for api/base controller (#3629) 2017-06-07 20:09:25 +02:00
suggestions_controller.rb Add API method to remove a suggestion (#7978) 2018-07-07 21:09:54 +02:00