lamp/atproto
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
2,067 Commits 1 Branch 0 Tags 32 MiB
Commit Graph

2067 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Miles Zimmerman
bba1ba739e
chore: update docker/setup-buildx-action github action to v2 (#975) 
chore: update docker/setup-buildx-action to v2
 2023-05-12 19:39:25 -05:00
James Garbutt
49ee070cd6
test (api, common, common-web): add further tests (#950) 2023-05-12 17:11:50 -05:00
Daniel Holmgren
e4ffcf0034
service <> service auth (#1026) 
* wip

* working into cfg & dev-env

* fix appview test util

* bump xrpc server version

* no check did on deciding to mount appview proxy
 2023-05-12 16:45:28 -05:00
devin ivy
1cbffd63ef
Reports by active action type (#1028) 
* Lexicon updates for getting mod reports by active action type

* Update pds and bsky to support getting mod reports by active action type
 2023-05-12 16:45:15 -05:00
Daniel Holmgren
5804716504
Bring your own DID (#1011) 
* allow bringing your own did

* tests + tidy

* one more check/test

* fix typo

* better err names
 2023-05-12 16:18:49 -05:00
dholms
deabb71da4 v0.3.3 2023-05-11 16:30:50 -05:00
dholms
2753a5a739 v0.1.8 2023-05-11 16:30:36 -05:00
dholms
0e0b310603 v0.3.2 2023-05-11 16:28:48 -05:00
dholms
7f72478e15 v0.1.7 2023-05-11 16:28:48 -05:00
Elijah
aee4d6b381
use blob as fetch fallback (#1012) 2023-05-11 16:19:09 -05:00
Paul Frazee
df6ed7d5c0
Add account preferences APIs (#1013) 
* Add lexicons for account preferences

* Move prefs to app.bsky, codegen

* Setup model and services for user prefs

* Setup xrpc methods for prefs

* Test preferences, fixes

* Tidy

* Tidy

---------

Co-authored-by: Devin Ivy <devinivy@gmail.com>
 2023-05-11 15:44:00 -05:00
dholms
5fd5c869ea bump pds version 2023-05-11 15:01:01 -05:00
dholms
2d3053481a v0.3.1 2023-05-11 14:47:27 -05:00
Daniel Holmgren
e32dc025e8
Mute lists (#986) 
* possible schemas

* more lexicons

* codegen

* tables

* hook up processor

* getlist route

* add getListBlocks route

* migration

* didnt save something

* add reason + facets

* description facets

* get facets into db

* add to accnt deletion tests before i forget

* tests & bugfixes

* quickfix

* move defs to .graph

* add purpose

* remove unused actor defs

* add creator info to list view

* refactor to graph service

* lexicons

* impl

* writer methods

* bug in accnt service

* handle blobs

* tests

* fix typos

* tidy

* fix snap

* pr feedback

* missed drop index in migration

* remove listitem reason

* allow puts for lists

* make mute lists idempotent

* test mute list updates

* fix up

* fix err test

* update snap
 2023-05-11 14:29:08 -05:00
Patryk
a7c2b4ae11
Add block record duplicate detection (#1027) 
* Add block record duplicate detection

* Update packages/pds/src/services/record/index.ts

---------

Co-authored-by: Daniel Holmgren <dtholmgren@gmail.com>
 2023-05-11 11:00:24 -04:00
devin ivy
5f0db0c844
Update zod version, some perf improvements (#1021) 
* Update zod version, some perf improvements

* Fix circular type ref
 2023-05-11 10:57:12 -04:00
dholms
3783889c49 bump @atproto/did-resolver 2023-05-10 23:24:33 -05:00
dholms
2f43fb7454 bump api package version 2023-05-10 20:50:56 -05:00
bnewbold
7368020068
pds: place-holder robots.txt, and a text base-level route (/) (#995) 
* pds: place-holder robots.txt and / (as txt)

robots.txt: want to be explicit about allowing crawling (generically)

/: a bit of dev-experience polish. in prod we already redirect this
route, but may be helpful for self-hosting folks and people just
exploring

* pds: move basic routes (health, robots.txt, /) to separate file
 2023-05-10 17:08:52 -07:00
Patryk
0e35bc3899
Make BskyAgent instantiation 4 times faster (#1018) 
Improve BskyAgent performance

By using z.discriminatedUnion instead of z.union
we can hint to zod at which field it should look when
validating/parsing schemas

This improves BskyAgent instantiation time around 4 times,
when creating 10 agents using stuff from #1015,
the time went down from ~1200ms to 330ms
 2023-05-10 12:22:58 -04:00
Daniel Holmgren
89b783eec9
Update how sequencer invalidation works (#1014) 
* invalidatedBy -> invalidated

* fix test

* dont remake fkey constraint sqlite

* sqlite migration

* appeasing sqlite

* sqlite finally happy?

* Fix sqlite migration, run proxy tests thru postgres when configured

* Fix pg schemas in proxy tests

---------

Co-authored-by: Devin Ivy <devinivy@gmail.com>
 2023-05-10 11:01:56 -04:00
bnewbold
a449d793a6
disallow new registration of .arpa, .local, etc handles (#1016) 
* handles: test 'dotless' disallowed; move .arpa/.local proto-level test

* handles: disallow infra/reserved handles
 2023-05-09 16:35:06 -07:00
devin ivy
977202fa2b
Fix indexed record datetimes (#1009) 
* Normalize record datetimes used for sort to simplified iso

* Update tests and snapshots for alternate valid datetime formats

* Fix notifications race during record update
 2023-05-09 12:53:33 -04:00
devin ivy
c3c75322bf
Sync-up account deletion indexes migration (#1006) 2023-05-09 12:52:56 -04:00
Daniel Holmgren
d30b0f93e1
Disable account invites (#1004) 
* enable disabling account invites

* xtra test

* couple fixes

* allow re-enabling user accoutn invites

* add in getter route for if invites are disabled or not

* fix admin search test

* gneerated type on user account
 2023-05-09 09:24:12 -05:00
Daniel Holmgren
51503384b6
No cache invalidation on blob deletion (#1008) 
no invalidate on blob deletion
 2023-05-09 08:57:45 -05:00
Daniel Holmgren
b20a5045a2
Rebase route (#948) 
* tidy rebase query

* add rebase route

* bring tests up to speed

* add tx check
 2023-05-09 05:54:48 -05:00
Daniel Holmgren
c8e6adbbf5
Clean up what's hot (#1002) 
* changes to clean up whats hot

* fix test

* add quote posts back in & use underwear label instead of no-promote

* tidy
 2023-05-08 18:26:11 -05:00
devin ivy
41793b7ff9
Add indexes to support account deletion (#1003) 
* Add indexes to support account deletion

* Temporarily skip index creation in migration
 2023-05-08 18:47:25 -04:00
devin ivy
facd310fde
Add april to contributors for sec disclosure (#978) 2023-05-08 17:24:22 -05:00
Jaga Santagostino
652eb50da6
Update README.md example (#993) 
Update README.md
 2023-05-08 17:24:01 -05:00
Gabe
4a91ae1f50
fix: macos install (#982) 
fix: add updated node-gyp dep

This fixes better-sqlite3 from using an old version of node-gyp to build from source.
 2023-05-08 17:23:34 -05:00
Wes Todd
b01e47b617
fix: updated repository field for packages (#994) 2023-05-08 11:38:42 -04:00
Daniel Holmgren
aabbf43a7f
Blessed hell thread (#988) 
give notifs in blessed hell thread
 2023-05-05 20:51:57 -05:00
Daniel Holmgren
8e5f2bd2dc
Do not give deeply nested notifs (#987) 
do not give deeply nested notifs
 2023-05-05 19:00:02 -05:00
Daniel Holmgren
bfe59e2bd3
Do not filter on negative labels on getPopular (#985) 
do not filter on negative labels on whats hot
 2023-05-05 18:59:49 -05:00
bnewbold
8c19ce991a
moderation action 'escalate' type (#976) 
* lex: 'escalate' mod action type

* api: codegen for escalate mod action type

* pds: codegen+impl esclate mod action type

* bsky: codegen+impl esclate mod action type

* pds: prettier:fix

* Tidy

---------

Co-authored-by: Devin Ivy <devinivy@gmail.com>
 2023-05-04 12:32:27 -07:00
Daniel Holmgren
b75436b9cb
Delete user state on account delete (#970) 
* Delete user state on account delete

* blocks too
 2023-05-03 22:39:57 -05:00
devin ivy
6976fb3e7d
Add lily to contributors for sec disclosure (#965) 2023-05-03 21:29:33 -04:00
Daniel Holmgren
015fe1226c
Delete dereferenced blobs (#959) 
* delete dereferenced blobs

* invalidate cache for delete blobs

* start testing

* test & cleanup

* rm blob cleanup logic on rebases

* make disk blob deletes idempotent

* move blob deletion to background queue
 2023-05-03 18:34:55 -05:00
Daniel Holmgren
fc15c1b0ea
Security policy (#954) 
* drafted security policy

* update email

* update wording

* more words
 2023-05-02 17:07:32 -05:00
Daniel Holmgren
b182344fef
Avoid sequencer retry loop (#958) 
* avoid seq loop

* tidy

* comments
 2023-05-02 17:07:18 -05:00
devin ivy
a1666776b3
Log requests to subscribeRepos (#957) 2023-05-02 17:37:23 -04:00
Daniel Holmgren
4555596212
Filter server-side labels (#956) 
filter server side labels
 2023-05-02 16:00:41 -05:00
devin ivy
b1493650f4
Perform account deletion async (#951) 
* Perform takedown then background hard-deletion process for deleteAccount

* Remove transactions from account deletion process, perform steps sequentially
 2023-05-02 14:24:59 -04:00
devin ivy
142c77cadd
Disallow writes of bad records (#955) 
* Disallow writes of bad records

* Increase obj depth to hit stack issue on more systems
 2023-05-02 13:44:07 -04:00
Mustafa Yafes Akbaş
dc51cafa3d
Fix SSRF vulnerability on blob (#893) 
* Add hostname and protocol validation for pds in getBlob()

Hostname and protocol validation for the pds' url in the getBlob() to prevent potential SSRF (Server-Side Request Forgery) attacks by ensuring that only valid protocols and hostnames are used in the URL. Function also will now throw a 400 error if detects any invalid.

* Migrate changes

* delete the line with console.log...
 2023-05-02 11:51:25 -05:00
Daniel Holmgren
86fae264d3
Sequencer race condition (#906) 
* wip

* split out seq invalidations

* wip

* fix

* comments

* 2 db hits

* cleanup

* re-add comment
 2023-05-02 11:39:25 -05:00
Roj
fa95f5b20f
Return InternalServerError instead of XRPCNotSupported when a falsy value is thrown (#894) 
* Return `XRPCError` instead of 404 if a handler errors

Currently, if there is an uncaught error inside a handler, a 404 response is returned instead of the error itself. This fixes that.

* Catch it in the higher-level catch block

* Add test

* merge

* Improve test
 2023-05-02 11:39:07 -05:00
Ryan Winchester
5333258771
Fix NSID name length error message typo (#918) 
The name length limit is 128 not 127.
 2023-05-02 11:24:30 -05:00