* Add hostname and protocol validation for pds in getBlob()
Hostname and protocol validation for the pds' url in the getBlob() to prevent potential SSRF (Server-Side Request Forgery) attacks by ensuring that only valid protocols and hostnames are used in the URL. Function also will now throw a 400 error if detects any invalid.
* Migrate changes
* delete the line with console.log...
* Return `XRPCError` instead of 404 if a handler errors
Currently, if there is an uncaught error inside a handler, a 404 response is returned instead of the error itself. This fixes that.
* Catch it in the higher-level catch block
* Add test
* merge
* Improve test
Somehow the output of this log line has been ending up in datadog under
the wrong 'service' (with the 'service' being an "wss://"-prefixed URL,
not "pds" or "bav" or whatever expected).
Tweaks the 'service' key, and some others that might have conflict.
Tune "porn", "sexual", and "nudity" label categorization, including
re-structuring of code paths.
This comes out of some image testing as well as review of Hive API docs.
* block lexicons
* table schema
* block processing
* Actor-block migration
* Add blocked post lexicon to getPostThread
* getBlocks routes
* Add missing lexicons to bsky
* Add block state to actor views
* throw on blocked accounts in getAuthorFeed
* blcok state in profile views
* Update getPostThread to support block views, update existing test
* strip out blocks out oof timeline & popular
* more routes
* Test blocked posts in threads
* Support blocks on record embeds
* notifs
* Update pds test snapshots w/ block state
* fix search
* Update pds actor search snapshots w/ blocks
* test
* tests
* update lex
* fix up from returning blocking as record
* ci for branch
* fix build issue in bsky
* more blocks tests
* fix actor search test
* hook getBlocks up to router
* bugfix & actually test lol
---------
Co-authored-by: Devin Ivy <devinivy@gmail.com>
* Background notification creation/deletion
* Add todo
* Update tests for backgrounded notifs
* Add index to notifications supporting record deletion
* Use profile_agg to power getSuggestions
* Fetch record blocks separately from getting notification resultset
* Update background queue to drain pending tasks
* Lengthen pass reset and invite codes, invalidation on reset
* Tidy
* Adjust token format for reset and deletion
* Update invite codes to use same token gen as pass reset and acct deletion
* fix up a couple of tsc errors in app view merge
* wip
* simple proxy
* use dev-env for appview tests
* process all in blob resolver
* another test fix
* wip
* copy proxied tests & add mutes to getFollows/getFollowers
* tidy & add mutes to likes
* more routes + getAuthorFeed tests
* more testing
* tests for feed views
* thread testing
* finished tests for threads
* temporarily skip some tests
* cleaning up & updating test names
* separate db schema for appview
* rearrange
* typo
* add notifications
* re-enable notifs on pds appview
* update schemas
* updated some bsky snaps
* wip
* refactor did-resolver
* clean up deps
* some fixups + caching utilities
* fix up & move to appCtx
* neat its working
* update bsky tests to new auth
* rm unused pds config var
* tidy
* check exp in seconds
* cache dids in postgres
* add migration & did-cache
* start tests
* couple helpers around cache invalidation
* fix expired check
* wip
* change cache semantics
* did cache testing
* do some cache revalidation in indexing
* fix config
* fix issue w did-resolver test-env prototype
* use map instead of record
* stale + expired
* tests
* clear entry method
* fix up build
* expired dids
* clear missing dids
* better verify payload
* bump test timeout
* fix notifs test
* fix up proxied actor search tests
* update snaps to include labels
* fix dev env
* fix up moderation route auth
* fix more auth headers
* fix auth on getPosts
* increase jest timeouts
* fix snaps
* remove commited .env files; exclude in gitignore
* bsky: distinct postgresql database in dev mode
* github CI: build and upload 'bsky' container to GHCR
This isn't how we deploy, but is useful for public access and things
like integration tests.
* Makefile: run-dev-appview
* In-progress work on optimizing actor search
* Tidy-up approach to using trgm index on actor search, apply to bsky appview
* Set trigram on session rather than on db via migration
devin ivy
Mustafa Yafes Akbaş
Daniel Holmgren
Roj
Ryan Winchester
Max Graey
bnewbold
Wes Bos
Paul Frazee
Kim Hallberg