Allow reports with long comments from remote instances, but truncate #25028
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
…to 5000 characters
Comment on lines
+43
to
+46
| # A report is considered local if the reporter is local | ||
| delegate :local?, to: :account | ||
|
|
||
| validates :comment, length: { maximum: 1_000 }, if: :local? |
There was a problem hiding this comment.
Alternatively, you could rewrite the test as something like if: -> { account&.local? }
I'll double-check the possible consequences, but that sounds about right. |
I would say this is intentional, however, I am not actually sure all code making use of |
ClearlyClaire
approved these changes
May 22, 2023
skerit
pushed a commit
to 11ways/mastodon
that referenced
this pull request
Jul 7, 2023
Merged
ClearlyClaire
pushed a commit
that referenced
this pull request
Sep 5, 2023
ClearlyClaire
pushed a commit
that referenced
this pull request
Sep 5, 2023
ClearlyClaire
pushed a commit
that referenced
this pull request
Sep 5, 2023
ClearlyClaire
pushed a commit
that referenced
this pull request
Sep 5, 2023
ClearlyClaire
pushed a commit
that referenced
this pull request
Sep 5, 2023
ClearlyClaire
pushed a commit
that referenced
this pull request
Sep 5, 2023
nrdufour
added a commit
to nrdufour/home-ops
that referenced
this pull request
Sep 7, 2023
This PR contains the following updates: | Package | Update | Change | |---|---|---| | [ghcr.io/mastodon/mastodon](https://github.com/mastodon/mastodon) | patch | `v4.1.6` -> `v4.1.7` | --- ### Release Notes <details> <summary>mastodon/mastodon (ghcr.io/mastodon/mastodon)</summary> ### [`v4.1.7`](https://github.com/mastodon/mastodon/releases/tag/v4.1.7) [Compare Source](mastodon/mastodon@v4.1.6...v4.1.7) <h1><picture> <source media="(prefers-color-scheme: dark)" srcset="./lib/assets/wordmark.dark.png?raw=true"> <source media="(prefers-color-scheme: light)" srcset="./lib/assets/wordmark.light.png?raw=true"> <img alt="Mastodon" src="./lib/assets/wordmark.light.png?raw=true" height="34"> </picture></h1> #### Changelog ##### Changed - Change remote report processing to accept reports with long comments, but truncate them ([ThisIsMissEm](mastodon/mastodon#25028)) ##### Fixed - **Fix blocking subdomains of an already-blocked domain** ([ClearlyClaire](mastodon/mastodon#26392)) - Fix `/api/v1/timelines/tag/:hashtag` allowing for unauthenticated access when public preview is disabled ([danielmbrasil](mastodon/mastodon#26237)) - Fix inefficiencies in `PlainTextFormatter` ([ClearlyClaire](mastodon/mastodon#26727)) #### Upgrade notes To get the code for v4.1.7, use `git fetch && git checkout v4.1.7`. > As always, **make sure you have backups of the database before performing any upgrades**. If you are using docker-compose, this is how a backup command might look: `docker exec mastodon_db_1 pg_dump -Fc -U postgres postgres > name_of_the_backup.dump` ##### Dependencies External dependencies have not changed compared to v4.1.6, the compatible Ruby, PostgreSQL, Node, Elasticsearch and Redis versions are the same, that is: - Ruby: 2.7 to 3.0 - PostgreSQL: 9.5 or newer - Elasticsearch (optional, for full-text search): 7.x - Redis: 4 or newer - Node: >= 14, < 18 - ImageMagick: 6.9.7-7 or newer > If your uploaded images are broken after the upgrade, it means your installed ImageMagick version is older than the new minimum version (6.9.7-7), for example if you are running Ubuntu 18.04. If this happens, you can find more information and ways to fix it [on this page](mastodon/mastodon#25776). ##### Update steps The following instructions are for updating from 4.1.6. If you are upgrading directly from an earlier release, please carefully read the upgrade notes for the skipped releases as well, as they often require extra steps such as database migrations. **Non-Docker only:** 1. Install dependencies: `bundle install` and `yarn install --frozen-lockfile` **Both Docker and non-Docker:** 1. Restart all Mastodon processes </details> --- ### Configuration 📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined). 🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzNi4yMy4yIiwidXBkYXRlZEluVmVyIjoiMzYuMjMuMiIsInRhcmdldEJyYW5jaCI6Im1haW4ifQ==--> Reviewed-on: https://git.home/nrdufour/home-ops/pulls/74 Co-authored-by: Renovate <renovate@ptinem.io> Co-committed-by: Renovate <renovate@ptinem.io>
minacle
referenced
this pull request
in uri-life/mastodon
Sep 19, 2023
Roboron3042
pushed a commit
to Roboron3042/mastodon
that referenced
this pull request
Sep 21, 2023
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This is an attempted fix for #24975. I didn't understand exactly the logic for the following, which is to say my confidence in this PR not having unintended side-effects is low, despite all the tests passing:
So added explicit
url_foranduri_forhandling for Flag's (reports), makinglocal?become delegated to if the account making the report is local or not.I do note that in
url_for, the linereturn target.url if target.respond_to?(:local?) && !target.local?may not work if the target only has auriand noturlproperty/method, I'm not sure if this is intentional or not?Further, I noticed that
generate_uri_foris returning not the value the code implies it may be returning, and that there was no test coverage for using ReportService to create local reports, despite this being how ReportService is used (it's used for both API reports and ActivityPub Flag's)