]> cat aescling's git repositories - mastodon.git/commit
Move signature verification stoplight to the requests themselves (#10813)
authorThibG <thib@sitedethib.com>
Thu, 23 May 2019 13:22:39 +0000 (15:22 +0200)
committerEugen Rochko <eugen@zeonfederated.com>
Thu, 23 May 2019 13:22:39 +0000 (15:22 +0200)
commit89d600bedb023a9656b98d22deab10f8c051a664
treea41002eecde6b82c0c2af50c48310efe1bee0996
parent369eb63321bd76b58202c537445d91e15e12ff3a
Move signature verification stoplight to the requests themselves (#10813)

* Move signature verification stoplight to the requests themselves

This avoids blocking messages from known keys for 5 minutes when only one fails…

* Put the stoplight on the actual client IP, not a potential reverse proxy
app/controllers/concerns/signature_verification.rb