Mastodon v3.1.4 Release Notes

Release Date: 2020-05-14 // about 2 months ago
  • Mastodon

    πŸ”„ Changelog

    βž• Added

    • βž• Add vi to available locales (taicv)
    • βž• Add ability to remove identity proofs from account (Gargron)
    • βž• Add ability to exclude local content from federated timeline (noellabo, noellabo)
      • Add remote param to GET /api/v1/timelines/public REST API
      • Add public/remote / public:remote variants to streaming API
      • "Remote only" option in federated timeline column settings in web UI
    • βž• Add ability to exclude remote content from hashtag timelines in web UI (noellabo)
      • No changes to REST API
      • "Local only" option in hashtag column settings in web UI
    • βž• Add Capistrano tasks that reload the services after deploying (berkes)
    • βž• Add invites_enabled attribute to GET /api/v1/instance in REST API (ThibG)
    • βž• Add tootctl emoji export command (lfuelling)
    • βž• Add separate cache directory for non-local uploads (Gargron, Hanage999, mayaeh)
      • Add tootctl upgrade storage-schema command to move old non-local uploads to the cache directory
      • ⚠️ You are not required to run this command for the new storage schema to function! Old files will simply remain where they are while new files will be saved under the cache directory. The command would incur data transfer costs with your storage provider
    • βž• Add buttons to delete header and avatar from profile settings (sternenseemann)
    • βž• Add emoji graphics and shortcodes from Twemoji 12.1.5 (DeeUnderscore)

    πŸ”„ Changed

    • πŸ”„ Change error message when trying to migrate to an account that does not have current account set as an alias to be more clear (TheEvilSkeleton)
    • πŸ”„ Change delivery failure tracking to work with hostnames instead of URLs (Gargron, noellabo, noellabo, noellabo)
    • πŸ’… Change Content-Security-Policy to not need unsafe-inline style-src (ThibG, ThibG, ThibG, ThibG, ThibG)
    • πŸ”„ Change how RSS items are titled and formatted (ThibG, ykzts)

    πŸ›  Fixed

    • πŸ›  Fix dropdown of muted and followed accounts offering option to hide boosts in web UI (ThibG)
    • πŸ›  Fix "You are already signed in" alert being shown at wrong times (ThibG)
    • πŸ›  Fix retrying of failed-to-download media files not actually working (noellabo)
    • πŸ›  Fix first poll option not being focused when adding a poll in web UI (ThibG)
    • πŸ›  Fix sr locale being selected over sr-Latn (ThibG)
    • πŸ›  Fix error within error when limiting backtrace to 3 lines (Gargron)
    • πŸ›  Fix tootctl media remove-orphans crashing on "Import" files (ThibG)
    • πŸ›  Fix regression in tootctl media remove-orphans (Gargron)
    • πŸ›  Fix old unique jobs digests not having been cleaned up (Gargron)
    • πŸ›  Fix own following/followers not showing muted users (ThibG)
    • πŸ›  Fix list of followed people ignoring sorting on Follows & Followers page (taras2358)
    • πŸ›  Fix wrong pgHero Content-Security-Policy when CDN_HOST is set (ThibG)
    • πŸ›  Fix needlessly deduplicating usernames on collisions with remote accounts when signing-up through SAML/CAS (kaiyou)
    • πŸ›  Fix page incorrectly scrolling when bringing up dropdown menus in web UI (ThibG)
    • πŸ›  Fix messed up z-index when NoScript blocks media/previews in web UI (ThibG)
    • πŸ›  Fix "See what's happening" page showing public instead of local timeline for logged-in users (ThibG)
    • πŸ›  Fix not being able to resolve public resources in development environment (Gargron)
    • πŸ›  Fix uninformative error message when uploading unsupported image files (ThibG)
    • πŸ›  Fix expanded video player issues in web UI (ThibG, eai04191)
    • πŸ›  Fix and refactor keyboard navigation in dropdown menus in web UI (ThibG)
    • πŸ›  Fix uploaded image orientation being messed up in some browsers in web UI (ThibG)
    • πŸ›  Fix actions log crash when displaying updates of deleted announcements in admin UI (ThibG)
    • πŸ›  Fix search not working due to proxy settings when using hidden services (Gargron)
    • πŸ›  Fix poll refresh button not being debounced in web UI (rasjonell, ThibG)
    • πŸ›  Fix confusing error when failing to add an alias to an unknown account (ThibG)
    • πŸ›  Fix "Email changed" notification sometimes having wrong e-mail (ThibG)
    • πŸ›  Fix varioues issues on the account aliases page (ThibG)
    • πŸ›  Fix API footer link in web UI (bubblineyuri)
    • πŸ›  Fix pagination of following, followers, follow requests, blocks and mutes lists in web UI (ThibG)
    • πŸ›  Fix styling of polls in JS-less fallback on public pages (ThibG)
    • πŸ›  Fix trying to delete already deleted file when post-processing (Gargron)

    πŸ”’ Security

    • πŸ›  Fix Doorkeeper vulnerability that exposed app secret to users who authorized the app and reset secret of the web UI that could have been exposed (dependabot-preview[bot], Gargron)
      • For apps that self-register on behalf of every individual user (such as most mobile apps), this is a non-issue
      • The issue only affects developers of apps who are shared between multiple users, such as server-side apps like cross-posters

    ⬆️ Upgrade notes

    ⬆️ > As always, make sure you have backups of the database before performing any upgrades. If you are using docker-compose, this is how a backup command might look: docker exec mastodon_db_1 pg_dump -Fc -U postgres postgres > name_of_the_backup.dump

    🐳 Non-Docker only:

    • Install dependencies: bundle install and yarn install

    🐳 Both Docker and non-Docker:

    1. Run database migrations:
      • Non-Docker: RAILS_ENV=production bundle exec rails db:migrate
      • Docker: docker-compose run --rm web rails db:migrate 🍱 2. Precompile the assets:
      • Non-Docker: RAILS_ENV=production bundle exec rails assets:precompile
      • Docker: The assets are already precompiled during the build step
    2. Restart all Mastodon processes

Previous changes from v3.1.3

  • Mastodon

    πŸ”„ Changelog

    βž• Added

    • βž• Add ability to filter audit log in admin UI (Gargron)
    • βž• Add titles to warning presets in admin UI (Gargron)
    • βž• Add option to include resolved DNS records when blacklisting e-mail domains in admin UI (Gargron)
    • βž• Add ability to delete files uploaded for settings in admin UI (ThibG)
    • βž• Add sorting by username, creation and last activity in admin UI (ThibG)
    • βž• Add explanation as to why unlocked accounts may have follow requests in web UI (ThibG)
    • βž• Add link to bookmarks to dropdown in web UI (mayaeh)
    • βž• Add support for links to statuses in announcements to be opened in web UI (ThibG, ThibG)
    • βž• Add tooltips to audio/video player buttons in web UI (ariasuni)
    • βž• Add submit button to the top of preferences pages (guigeekz)
    • βž• Add specific rate limits for posting, following and reporting (Gargron, Gargron)
      • 300 posts every 3 hours
      • 400 follows or follow requests every 24 hours
      • 400 reports every 24 hours
    • βž• Add federation support for the "hide network" preference (ThibG)
    • βž• Add --skip-media-remove option to tootctl statuses remove (tateisu)

    πŸ”„ Changed

    • πŸ”„ Change design of polls in web UI (Sasha-Sorokin, ThibG)
    • πŸ”„ Change status click areas in web UI to be bigger (ariasuni)
    • πŸ”„ Change tootctl media remove-orphans to work for all classes (Gargron)
    • πŸ”„ Change local media attachments to perform heavy processing asynchronously (Gargron)
    • πŸ”„ Change video uploads to always be converted to H264/MP4 (Gargron, ThibG, ThibG)
    • πŸ”„ Change video uploads to enforce certain limits (Gargron)
      • Dimensions smaller than 1920x1200px
      • Frame rate at most 60fps
    • πŸ”„ Change the tooltip "Toggle visibility" to "Hide media" in web UI (ariasuni)
    • πŸ”„ Change description of privacy levels to be more intuitive in web UI (ariasuni)
    • πŸ”„ Change GIF label to be displayed even when autoplay is enabled in web UI (koyuawsmbrtn)
    • πŸ”„ Change the string "Hide everything from …" to "Block domain …" in web UI (ThibG, mayaeh)
    • πŸ”„ Change wording of media display preferences to be more intuitive (ariasuni)

    πŸ—„ Deprecated

    • POST /api/v1/media β†’ POST /api/v2/media (Gargron)

    πŸ›  Fixed

    • Fix tootctl media remove-orphans ignoring PAPERCLIP_ROOT_PATH (Gargron)
    • πŸ›  Fix returning results when searching for URL with non-zero offset (Gargron)
    • πŸ›  Fix pinning a column in web UI sometimes redirecting out of web UI (Gargron)
    • πŸ›  Fix background jobs not using locks like they are supposed to (Gargron)
    • πŸ›  Fix content warning being unnecessarily cleared when hiding content warning input in web UI (ThibG)
    • πŸ›  Fix "Show more" not switching to "Show less" on public pages (ThibG)
    • πŸ›  Fix import overwrite option not being selectable (noellabo)
    • πŸ›  Fix wrong color for ellipsis in boost confirmation dialog in web UI (ariasuni)
    • πŸ›  Fix unnecessary unfollowing when importing follows with overwrite option (noellabo)
    • πŸ›  Fix 404 and 410 API errors being silently discarded in web UI (ThibG)
    • πŸ›  Fix OCR not working on Safari because of unsupported worker-src CSP (ThibG)
    • πŸ›  Fix media not being marked sensitive when a content warning is set with no text (ThibG)
    • πŸ›  Fix crash after deleting announcements in web UI (codesections, ThibG)
    • πŸ›  Fix bookmarks not being searchable (Kjwon15, noellabo)
    • πŸ›  Fix reported accounts not being whitelisted from further spam checks when resolving a spam check report (ThibG)
    • πŸ›  Fix web UI crash in single-column mode on prehistoric browsers (ThibG)
    • πŸ›  Fix some timeouts when searching for URLs (ThibG)
    • πŸ›  Fix detailed view of direct messages displaying a 0 boost count in web UI (ThibG)
    • πŸ›  Fix regression in β€œEdit media” modal in web UI (ThibG)
    • πŸ›  Fix public posts from silenced accounts not being changed to unlisted visibility (ThibG)
    • πŸ›  Fix error when searching for URLs that contain the mention syntax (ThibG)
    • πŸ›  Fix text area above/right of emoji picker being accidentally clickable in web UI (ariasuni)
    • πŸ›  Fix too large announcements not being scrollable in web UI (ThibG)
    • πŸ›  Fix tootctl media remove-orphans crashing when encountering invalid media (ThibG)
    • πŸ›  Fix installation failing when Redis password contains special characters (ThibG)
    • πŸ›  Fix announcements with fully-qualified mentions to local users crashing web UI (ThibG)

    πŸ”’ Security

    • πŸ›  Fix re-sending of e-mail confirmation not being rate limited (Gargron)

    ⬆️ Upgrade notes

    ⬆️ > As always, make sure you have backups of the database before performing any upgrades. If you are using docker-compose, this is how a backup command might look: docker exec mastodon_db_1 pg_dump -Fc -U postgres postgres > name_of_the_backup.dump

    🐳 Non-Docker only:

    • ⬆️ The recommended Ruby version has been bumped to 2.6.6. You can upgrade, or you can continue using the old version by overwriting the .ruby-version file with e.g. 2.6.5 or 2.6.1 which were recommended previously
    • Install dependencies: bundle install and yarn install

    🐳 Both Docker and non-Docker:

    1. Run database migrations:
      • Non-Docker: RAILS_ENV=production bundle exec rails db:migrate
      • Docker: docker-compose run --rm web rails db:migrate 🍱 2. Precompile the assets:
      • Non-Docker: RAILS_ENV=production bundle exec rails assets:precompile
      • Docker: The assets are already precompiled during the build step
    2. Restart all Mastodon processes