Commit Graph

168 Commits (ab810a8f9466d88c8d3bcbae330ac8fb8761c5cc)
 

Author SHA1 Message Date
Danielle McLean ab810a8f94
Simplify the auth code format a little: the 'me' value can be computed from the user ID and so is redundant 6 years ago
Danielle McLean 43a56e865e
Add the current user's ID to the auth code, will be handy when making a token since we need to know who the token's for 6 years ago
Danielle McLean 40810d6310
Refactor the actual JWT calls into separate functions since I'll be needing them for tokens as well as auth codes 6 years ago
Danielle McLean 6f6bb4e534
Improve JWT security by specifying the algorithm used, and also use shorter key names to make the code a little shorter 6 years ago
Danielle McLean 6b1cd896ea
Handle IndieAuth redirect URIs that already have query parameters 6 years ago
Danielle McLean b658bf5c79
Default to form encoding rather than JSON, since legacy clients that don't support JSON usually also don't ask for a certain format 6 years ago
Danielle McLean 92cd38cbb0
Make relative redirect URIs redirect to the right place, by urljoining them with the client ID 6 years ago
Danielle McLean 1c09be1b1c
Switch from database-persisted auth codes to stateless JSON Web Tokens :) 6 years ago
Danielle McLean 41d490ea80
Put the shortcuts for returning 40* responses into lemoncurry.utils 6 years ago
Danielle McLean 1e56d5a09a
Install django-model-utils and use it for automatic timestamp fields on entries 6 years ago
Danielle McLean 4b4ab324cc
Enable analytics in production 6 years ago
Danielle McLean 06278935b6
Add support for selecting scopes during IndieAuth's 'code' type 6 years ago
Danielle McLean 0a202a215d
Include references to the Atom and RSS feeds in the host-meta 6 years ago
Danielle McLean 387e7d859c
Smarter handling of IndieAuth code verification, including verifying the response type is correct 6 years ago
Danielle McLean 5555cdfd1e
Render the entry content to HTML when syndicating it as Atom or RSS 6 years ago
Danielle McLean 730a2bcb9d
Added support for RSS and Atom feeds, because why not 6 years ago
Danielle McLean c34ec965a1
Improved host-meta support, with correct JRD format and more links to stuff 6 years ago
Danielle McLean ee9992603c
1.5.2 6 years ago
Danielle McLean 5aa4eed816
Add simple /robots.txt support 6 years ago
Danielle McLean 7090db3c37
Add JSON-LD support to entries too, mostly so Google can understand the site a little better 6 years ago
Danielle McLean 371401d441
Teach users how to generate their own JSON-LD representation rather than doing it in the view code 6 years ago
Danielle McLean a86188fcb6
Put the JSON-LD version of my user profile inside my h-card, so it's easy to access with an mf2 parser if you want it (although I dunno why you would) 6 years ago
Danielle McLean 91fc632703
Tweak the styling of entry footers 6 years ago
Danielle McLean b053ba3c88
Order sites by domain rather than by name 6 years ago
Danielle McLean 8a9f41759e
Add a field site.domain, so that profiles can be labeled as username@domain, WebFinger style 6 years ago
Danielle McLean 76305543fa
Just glue the netloc and path together rather than using urlunparse - it doesn't need to be a valid URL, just a nice-looking one 6 years ago
Danielle McLean 71295e30f0
1.5.1 6 years ago
Danielle McLean 52106f1d3f
Make shortlinks discoverable by displaying them on each entry, with extraneous bits trimmed out 6 years ago
Danielle McLean 65ff5f947a
Set the short base URL to my new short domain 6 years ago
Danielle McLean 93e3fa5412
Add a Forwardfile for development 6 years ago
Danielle McLean e0dfdafdc0
Delegate OpenID authentication to IndieAuth - OpenID is barely used nowadays but this is such a tiny change I might as well do it 6 years ago
Danielle McLean 3f4c5bbc11
Replace use of abandoned rev="canonical" with rel="shortlink" 6 years ago
Danielle McLean bfa7f68edc
Make POST /indie/auth return a 403 if parameters are missing, rather than a 500 6 years ago
Danielle McLean d87d49e67b
Default the Accept header to */* if there isn't one provided 6 years ago
Danielle McLean e8214b45ef
Use an absolute URI for the IndieAuth authorisation endpoint - many IndieAuth clients don't resolve the relative URI correctly 6 years ago
Danielle McLean 75ed4503c8
Make some little quality-of-life improvements to the Django admin for my models 6 years ago
Danielle McLean 63b0ec45e9
Keep images in entry content inside the card, oops 6 years ago
Danielle McLean 53b7b86515
Whoops, allow images in bleached content 6 years ago
Danielle McLean e5d3af1b51
Make redirect_uri verification optional because many IndieAuth clients don't implement it - show a stylish icon to convey whether the client was verified 6 years ago
Danielle McLean 3c95eeeefb
Insist on Python 3.6, since the 'secrets' module for making secure tokens isn't available in 3.5 6 years ago
Danielle McLean 486eec2448
1.5.0 6 years ago
Danielle McLean 360063845e
Make the IndieAuth authorisation endpoint discoverable :o 6 years ago
Danielle McLean acce72e90e
Implement the auth-code verification step, producing a complete IndieAuth implementation for 'id' type (nothing for 'code' type yet tho) 6 years ago
Danielle McLean 8b4a14ffa3
On approving an IndieAuth request, actually generate an auth code and redirect 6 years ago
Danielle McLean 221d548e4a
Give better 'me' normalisation to IndieAuth processing + Aadd a simple POST route for actually submitting the form 6 years ago
Danielle McLean 6bdcce1844
1.4.5 6 years ago
Danielle McLean 54bed15585
In production, move the static and media directories out of the app directory (which puts them in the lemoncurry user's home dir) 6 years ago
Danielle McLean 7027c74035
Install django-shorturls to generate simple shortpermalinks for entries :3 6 years ago
Danielle McLean 21786d6e6c
Install django-annoying, which provides some nice shortcuts for common operations 6 years ago
Danielle McLean 88bf1e580c
1.4.4 6 years ago