Merge remote-tracking branch 'remotes/origin/develop' into restricted-relations-embedding

2020-05-08 21:37:55 +03:00 · 2020-05-08 21:37:55 +03:00 · b2924ab1fb
commit b2924ab1fb
parent d5cdc907e3 570940a3fd
218 changed files with 7799 additions and 2891 deletions
--- a/config/config.exs
+++ b/config/config.exs
@ -238,7 +238,18 @@ config :pleroma, :instance,
  account_field_value_length: 2048,
  external_user_synchronization: true,
  extended_nickname_format: true,
-  cleanup_attachments: false
+  cleanup_attachments: false,
+  multi_factor_authentication: [
+    totp: [
+      # digits 6 or 8
+      digits: 6,
+      period: 30
+    ],
+    backup_codes: [
+      number: 5,
+      length: 16
+    ]
+  ]

 config :pleroma, :feed,
  post_title: %{
@ -560,8 +571,6 @@ config :pleroma, :email_notifications,
    inactivity_threshold: 7
  }

-config :pleroma, :notifications, enable_follow_request_notifications: false
-
 config :pleroma, :oauth2,
  token_expires_in: 600,
  issue_new_refresh_token: true,
@ -653,6 +662,8 @@ config :pleroma, :restrict_unauthenticated,
  profiles: %{local: false, remote: false},
  activities: %{local: false, remote: false}

+config :pleroma, Pleroma.Web.ApiSpec.CastAndValidate, strict: false
+
 # Import environment specific config. This must remain at the bottom
 # of this file so it overrides the configuration defined above.
 import_config "#{Mix.env()}.exs"
--- a/config/description.exs
+++ b/config/description.exs
@ -919,6 +919,62 @@ config :pleroma, :config_description, [
        key: :external_user_synchronization,
        type: :boolean,
        description: "Enabling following/followers counters synchronization for external users"
+      },
+      %{
+        key: :multi_factor_authentication,
+        type: :keyword,
+        description: "Multi-factor authentication settings",
+        suggestions: [
+          [
+            totp: [digits: 6, period: 30],
+            backup_codes: [number: 5, length: 16]
+          ]
+        ],
+        children: [
+          %{
+            key: :totp,
+            type: :keyword,
+            description: "TOTP settings",
+            suggestions: [digits: 6, period: 30],
+            children: [
+              %{
+                key: :digits,
+                type: :integer,
+                suggestions: [6],
+                description:
+                  "Determines the length of a one-time pass-code, in characters. Defaults to 6 characters."
+              },
+              %{
+                key: :period,
+                type: :integer,
+                suggestions: [30],
+                description:
+                  "a period for which the TOTP code will be valid, in seconds. Defaults to 30 seconds."
+              }
+            ]
+          },
+          %{
+            key: :backup_codes,
+            type: :keyword,
+            description: "MFA backup codes settings",
+            suggestions: [number: 5, length: 16],
+            children: [
+              %{
+                key: :number,
+                type: :integer,
+                suggestions: [5],
+                description: "number of backup codes to generate."
+              },
+              %{
+                key: :length,
+                type: :integer,
+                suggestions: [16],
+                description:
+                  "Determines the length of backup one-time pass-codes, in characters. Defaults to 16 characters."
+              }
+            ]
+          }
+        ]
      }
    ]
  },
@ -2247,6 +2303,7 @@ config :pleroma, :config_description, [
        children: [
          %{
            key: :active,
+            label: "Enabled",
            type: :boolean,
            description: "Globally enable or disable digest emails"
          },
@ -2273,20 +2330,6 @@ config :pleroma, :config_description, [
      }
    ]
  },
-  %{
-    group: :pleroma,
-    key: :notifications,
-    type: :group,
-    description: "Notification settings",
-    children: [
-      %{
-        key: :enable_follow_request_notifications,
-        type: :boolean,
-        description:
-          "Enables notifications on new follow requests (causes issues with older PleromaFE versions)."
-      }
-    ]
-  },
  %{
    group: :pleroma,
    key: Pleroma.Emails.UserEmail,
@ -3208,5 +3251,19 @@ config :pleroma, :config_description, [
        ]
      }
    ]
+  },
+  %{
+    group: :pleroma,
+    key: Pleroma.Web.ApiSpec.CastAndValidate,
+    type: :group,
+    children: [
+      %{
+        key: :strict,
+        type: :boolean,
+        description:
+          "Enables strict input validation (useful in development, not recommended in production)",
+        suggestions: [false]
+      }
+    ]
  }
 ]
--- a/config/dev.exs
+++ b/config/dev.exs
@ -52,6 +52,8 @@ config :pleroma, Pleroma.Repo,
  hostname: "localhost",
  pool_size: 10

+config :pleroma, Pleroma.Web.ApiSpec.CastAndValidate, strict: true
+
 if File.exists?("./config/dev.secret.exs") do
  import_config "dev.secret.exs"
 else
--- a/config/test.exs
+++ b/config/test.exs
@ -56,6 +56,19 @@ config :pleroma, :rich_media,
  ignore_hosts: [],
  ignore_tld: ["local", "localdomain", "lan"]

+config :pleroma, :instance,
+  multi_factor_authentication: [
+    totp: [
+      # digits 6 or 8
+      digits: 6,
+      period: 30
+    ],
+    backup_codes: [
+      number: 2,
+      length: 6
+    ]
+  ]
+
 config :web_push_encryption, :vapid_details,
  subject: "mailto:administrator@example.com",
  public_key:
@ -96,6 +109,8 @@ config :pleroma, Pleroma.Emails.NewUsersDigestEmail, enabled: true

 config :pleroma, Pleroma.Plugs.RemoteIp, enabled: false

+config :pleroma, Pleroma.Web.ApiSpec.CastAndValidate, strict: true
+
 if File.exists?("./config/test.secret.exs") do
  import_config "test.secret.exs"
 else