add test

hide mentions of muted accounts (in home col)
also cleans up some old crap
2025-12-13 15:58:50 +00:00 · 2017-10-19 22:00:03 +00:00 · 2017-10-19 21:38:41 +00:00
1137 changed files with 9887 additions and 55520 deletions
--- a/.codeclimate.yml
+++ b/.codeclimate.yml
@@ -1,36 +1,21 @@
-version: "2"
+engines:
 checks:
  argument-count:
    enabled: false
  complex-logic:
    enabled: false
  file-lines:
    enabled: false
  method-complexity:
    enabled: false
  method-count:
    enabled: false
  method-lines:
    enabled: false
  nested-control-flow:
    enabled: false
  return-statements:
    enabled: false
  similar-code:
    enabled: false
  identical-code:
    enabled: false
 plugins:
  brakeman:
    enabled: true
  bundler-audit:
    enabled: true
  duplication:
    enabled: false
  eslint:
    enabled: true
  rubocop:
    enabled: true
  scss-lint:
    enabled: true
-exclude_patterns:
+ratings:
  paths:
  - "**.rb"
  - "**.js"
  - "**.scss"
 exclude_paths:
 - spec/
 - vendor/asset
--- a/.env.nanobox
+++ b/.env.nanobox
@@ -35,17 +35,6 @@ PAPERCLIP_SECRET=$PAPERCLIP_SECRET
 SECRET_KEY_BASE=$SECRET_KEY_BASE
 OTP_SECRET=$OTP_SECRET
 # VAPID keys (used for push notifications)
 # You can generate the keys using the following command (first is the private key, second is the public one)
 # You should only generate this once per instance. If you later decide to change it, all push subscription will
 # be invalidated, requiring the users to access the website again to resubscribe.
 #
 # Generate with `rake mastodon:webpush:generate_vapid_key` task (`nanobox run bundle exec rake mastodon:webpush:generate_vapid_key`)
 #
 # For more information visit https://rossta.net/blog/using-the-web-push-api-with-vapid.html
 VAPID_PRIVATE_KEY=$VAPID_PRIVATE_KEY
 VAPID_PUBLIC_KEY=$VAPID_PUBLIC_KEY
 # Registrations
 # Single user mode will disable registrations and redirect frontpage to the first profile
 # SINGLE_USER_MODE=true
@@ -73,7 +62,7 @@ SMTP_FROM_ADDRESS=notifications@${APP_NAME}.nanoapp.io
 #SMTP_CA_FILE=/etc/ssl/certs/ca-certificates.crt
 #SMTP_OPENSSL_VERIFY_MODE=peer
 #SMTP_ENABLE_STARTTLS_AUTO=true
-#SMTP_TLS=true
+
 # Optional user upload path and URL (images, avatars). Default is :rails_root/public/system. If you set this variable, you are responsible for making your HTTP server (eg. nginx) serve these files.
 # PAPERCLIP_ROOT_PATH=/var/lib/mastodon/public-system
@@ -102,23 +91,6 @@ SMTP_FROM_ADDRESS=notifications@${APP_NAME}.nanoapp.io
 # S3_ENDPOINT=
 # S3_SIGNATURE_VERSION=
 # Swift (optional)
 # SWIFT_ENABLED=true
 # SWIFT_USERNAME=
 # For Keystone V3, the value for SWIFT_TENANT should be the project name
 # SWIFT_TENANT=
 # SWIFT_PASSWORD=
 # Keystone V2 and V3 URLs are supported. Use a V3 URL if possible to avoid
 # issues with token rate-limiting during high load.
 # SWIFT_AUTH_URL=
 # SWIFT_CONTAINER=
 # SWIFT_OBJECT_URL=
 # SWIFT_REGION=
 # Defaults to 'default'
 # SWIFT_DOMAIN_NAME=
 # Defaults to 60 seconds. Set to 0 to disable
 # SWIFT_CACHE_TTL=
 # Optional alias for S3 if you want to use Cloudfront or Cloudflare in front
 # S3_CLOUDFRONT_HOST=
--- a/.env.production.sample
+++ b/.env.production.sample
@@ -11,11 +11,10 @@ DB_PASS=
 DB_PORT=5432
 # Federation
-# Note: Changing LOCAL_DOMAIN at a later time will cause unwanted side effects, including breaking all existing federation.
+# Note: Changing LOCAL_DOMAIN or LOCAL_HTTPS at a later time will cause unwanted side effects.
 # LOCAL_DOMAIN should *NOT* contain the protocol part of the domain e.g https://example.com.
 LOCAL_DOMAIN=example.com 
-
+LOCAL_HTTPS=true
 # Changing LOCAL_HTTPS in production is no longer supported. (Mastodon will always serve https:// links)
 # Use this only if you need to run mastodon on a different domain than the one used for federation.
 # You can read more about this option on https://github.com/tootsuite/documentation/blob/master/Running-Mastodon/Serving_a_different_domain.md
@@ -135,6 +134,3 @@ STREAMING_CLUSTER_NUM=1
 # If you use Docker, you may want to assign UID/GID manually.
 # UID=1000
 # GID=1000
 # Maximum allowed character count
 # MAX_TOOT_CHARS=500
--- a/.eslintrc.yml
+++ b/.eslintrc.yml
@@ -29,11 +29,6 @@ settings:
  import/ignore:
  - node_modules
  - \\.(css|scss|json)$
  import/resolver:
    node:
      moduleDirectory:
        - node_modules
        - app/javascript
 rules:
  brace-style: warn
--- a/.gitmodules
+++ b/.gitmodules
--- a/.travis.yml
+++ b/.travis.yml
@@ -27,14 +27,11 @@ addons:
  apt:
    sources:
    - trusty-media
    - sourceline: deb https://dl.yarnpkg.com/debian/ stable main
      key_url: https://dl.yarnpkg.com/debian/pubkey.gpg
    packages:
    - ffmpeg
    - libicu-dev
    - libprotobuf-dev
    - protobuf-compiler
-    - yarn
+    - libicu-dev
 rvm:
  - 2.3.4
@@ -45,6 +42,7 @@ services:
 install:
  - nvm install
  - npm install -g yarn
  - bundle install --path=vendor/bundle --without development production --retry=3 --jobs=16
  - yarn install
--- a/.github/CODEOWNERS
+++ b/.github/CODEOWNERS
--- a/CODE_OF_CONDUCT.md
+++ b/CODE_OF_CONDUCT.md
@@ -1,46 +0,0 @@
 # Contributor Covenant Code of Conduct
 ## Our Pledge
 In the interest of fostering an open and welcoming environment, we as contributors and maintainers pledge to making participation in our project and our community a harassment-free experience for everyone, regardless of age, body size, disability, ethnicity, gender identity and expression, level of experience, nationality, personal appearance, race, religion, or sexual identity and orientation.
 ## Our Standards
 Examples of behavior that contributes to creating a positive environment include:
 * Using welcoming and inclusive language
 * Being respectful of differing viewpoints and experiences
 * Gracefully accepting constructive criticism
 * Focusing on what is best for the community
 * Showing empathy towards other community members
 Examples of unacceptable behavior by participants include:
 * The use of sexualized language or imagery and unwelcome sexual attention or advances
 * Trolling, insulting/derogatory comments, and personal or political attacks
 * Public or private harassment
 * Publishing others' private information, such as a physical or electronic address, without explicit permission
 * Other conduct which could reasonably be considered inappropriate in a professional setting
 ## Our Responsibilities
 Project maintainers are responsible for clarifying the standards of acceptable behavior and are expected to take appropriate and fair corrective action in response to any instances of unacceptable behavior.
 Project maintainers have the right and responsibility to remove, edit, or reject comments, commits, code, wiki edits, issues, and other contributions that are not aligned to this Code of Conduct, or to ban temporarily or permanently any contributor for other behaviors that they deem inappropriate, threatening, offensive, or harmful.
 ## Scope
 This Code of Conduct applies both within project spaces and in public spaces when an individual is representing the project or its community. Examples of representing a project or community include using an official project e-mail address, posting via an official social media account, or acting as an appointed representative at an online or offline event. Representation of a project may be further defined and clarified by project maintainers.
 ## Enforcement
 Instances of abusive, harassing, or otherwise unacceptable behavior may be reported by contacting the project team at beatrix.bitrot@gmail.com. The project team will review and investigate all complaints, and will respond in a way that it deems appropriate to the circumstances. The project team is obligated to maintain confidentiality with regard to the reporter of an incident. Further details of specific enforcement policies may be posted separately.
 Project maintainers who do not follow or enforce the Code of Conduct in good faith may face temporary or permanent repercussions as determined by other members of the project's leadership.
 ## Attribution
 This Code of Conduct is adapted from the [Contributor Covenant][homepage], version 1.4, available at [http://contributor-covenant.org/version/1/4][version]
 [homepage]: http://contributor-covenant.org
 [version]: http://contributor-covenant.org/version/1/4/
--- a/6
+++ b/6
@@ -7,8 +7,8 @@ ENV UID=991 GID=991 \
    RAILS_SERVE_STATIC_FILES=true \
    RAILS_ENV=production NODE_ENV=production
-ARG YARN_VERSION=1.3.2
+ARG YARN_VERSION=1.1.0
-ARG YARN_DOWNLOAD_SHA256=6cfe82e530ef0837212f13e45c1565ba53f5199eec2527b85ecbcd88bf26821d
+ARG YARN_DOWNLOAD_SHA256=171c1f9ee93c488c0d774ac6e9c72649047c3f896277d88d0f805266519430f3
 ARG LIBICONV_VERSION=1.15
 ARG LIBICONV_DOWNLOAD_SHA256=ccf536620a45458d26ba83887a983b96827001e92a13847b45e4925cc8913178
@@ -48,7 +48,7 @@ RUN apk -U upgrade \
 && rm yarn.tar.gz \
 && mv /tmp/src/yarn-v$YARN_VERSION /opt/yarn \
 && ln -s /opt/yarn/bin/yarn /usr/local/bin/yarn \
- && wget -O libiconv.tar.gz "https://ftp.gnu.org/pub/gnu/libiconv/libiconv-$LIBICONV_VERSION.tar.gz" \
+ && wget -O libiconv.tar.gz "http://ftp.gnu.org/pub/gnu/libiconv/libiconv-$LIBICONV_VERSION.tar.gz" \
 && echo "$LIBICONV_DOWNLOAD_SHA256 *libiconv.tar.gz" | sha256sum -c - \
 && tar -xzf libiconv.tar.gz -C /tmp/src \
 && rm libiconv.tar.gz \
--- a/37
+++ b/37
@@ -14,13 +14,10 @@ gem 'pg', '~> 0.20'
 gem 'pghero', '~> 1.7'
 gem 'dotenv-rails', '~> 2.2'
-gem 'aws-sdk', '~> 2.10', require: false
+gem 'aws-sdk', '~> 2.9'
-gem 'fog-core', '~> 1.45'
+gem 'fog-openstack', '~> 0.1'
 gem 'fog-local', '~> 0.4', require: false
 gem 'fog-openstack', '~> 0.1', require: false
 gem 'paperclip', '~> 5.1'
 gem 'paperclip-av-transcoder', '~> 0.6'
 gem 'posix-spawn'
 gem 'active_model_serializers', '~> 0.10'
 gem 'addressable', '~> 2.5'
@@ -29,7 +26,7 @@ gem 'browser'
 gem 'charlock_holmes', '~> 0.7.5'
 gem 'iso-639'
 gem 'cld3', '~> 3.2.0'
-gem 'devise', '~> 4.3'
+gem 'devise', '~> 4.2'
 gem 'devise-two-factor', '~> 3.0'
 gem 'doorkeeper', '~> 4.2'
 gem 'fast_blank', '~> 1.0'
@@ -41,15 +38,16 @@ gem 'http', '~> 2.2'
 gem 'http_accept_language', '~> 2.1'
 gem 'httplog', '~> 0.99'
 gem 'idn-ruby', require: 'idn'
-gem 'kaminari', '~> 1.1'
+gem 'kaminari', '~> 1.0'
 gem 'link_header', '~> 0.0'
 gem 'mime-types', '~> 3.1'
-gem 'nokogiri', '~> 1.8'
+gem 'nokogiri', '~> 1.7'
 gem 'nsa', '~> 0.2'
-gem 'oj', '~> 3.3'
+gem 'oj', '~> 3.0'
 gem 'ostatus2', '~> 2.0'
-gem 'ox', '~> 2.8'
+gem 'ox', '~> 2.5'
 gem 'pundit', '~> 1.1'
 gem 'rabl', '~> 0.13'
 gem 'rack-attack', '~> 5.0'
 gem 'rack-cors', '~> 0.4', require: 'rack/cors'
 gem 'rack-timeout', '~> 0.4'
@@ -59,7 +57,6 @@ gem 'redis', '~> 3.3', require: ['redis', 'redis/connection/hiredis']
 gem 'mario-redis-lock', '~> 1.2', require: 'redis_lock'
 gem 'rqrcode', '~> 0.10'
 gem 'ruby-oembed', '~> 0.12', require: 'oembed'
 gem 'ruby-progressbar', '~> 1.4'
 gem 'sanitize', '~> 4.4'
 gem 'sidekiq', '~> 5.0'
 gem 'sidekiq-scheduler', '~> 2.1'
@@ -78,15 +75,15 @@ gem 'json-ld-preloaded', '~> 2.2.1'
 gem 'rdf-normalize', '~> 0.3.1'
 group :development, :test do
-  gem 'fabrication', '~> 2.18'
+  gem 'fabrication', '~> 2.16'
  gem 'fuubar', '~> 2.2'
  gem 'i18n-tasks', '~> 0.9', require: false
  gem 'pry-rails', '~> 0.3'
-  gem 'rspec-rails', '~> 3.7'
+  gem 'rspec-rails', '~> 3.6'
 end
 group :test do
-  gem 'capybara', '~> 2.15'
+  gem 'capybara', '~> 2.14'
  gem 'climate_control', '~> 0.2'
  gem 'faker', '~> 1.7'
  gem 'microformats', '~> 4.0'
@@ -94,13 +91,13 @@ group :test do
  gem 'rspec-sidekiq', '~> 3.0'
  gem 'simplecov', '~> 0.14', require: false
  gem 'webmock', '~> 3.0'
-  gem 'parallel_tests', '~> 2.17'
+  gem 'parallel_tests', '~> 2.14'
 end
 group :development do
  gem 'active_record_query_trace', '~> 1.5'
  gem 'annotate', '~> 2.7'
-  gem 'better_errors', '~> 2.4'
+  gem 'better_errors', '~> 2.1'
  gem 'binding_of_caller', '~> 0.7'
  gem 'bullet', '~> 5.5'
  gem 'letter_opener', '~> 1.4'
@@ -108,15 +105,15 @@ group :development do
  gem 'rubocop', require: false
  gem 'brakeman', '~> 4.0', require: false
  gem 'bundler-audit', '~> 0.6', require: false
-  gem 'scss_lint', '~> 0.55', require: false
+  gem 'scss_lint', '~> 0.53', require: false
-  gem 'capistrano', '~> 3.10'
+  gem 'capistrano', '~> 3.8'
-  gem 'capistrano-rails', '~> 1.3'
+  gem 'capistrano-rails', '~> 1.2'
  gem 'capistrano-rbenv', '~> 2.1'
  gem 'capistrano-yarn', '~> 2.0'
 end
 group :production do
-  gem 'lograge', '~> 0.7'
+  gem 'lograge', '~> 0.5'
  gem 'redis-rails', '~> 5.0'
 end
--- a/Gemfile.lock
+++ b/Gemfile.lock
@@ -24,11 +24,11 @@ GEM
      erubi (~> 1.4)
      rails-dom-testing (~> 2.0)
      rails-html-sanitizer (~> 1.0, >= 1.0.3)
-    active_model_serializers (0.10.7)
+    active_model_serializers (0.10.6)
      actionpack (>= 4.1, < 6)
      activemodel (>= 4.1, < 6)
      case_transform (>= 0.2)
-      jsonapi-renderer (>= 0.1.1.beta1, < 0.3)
+      jsonapi-renderer (>= 0.1.1.beta1, < 0.2)
    active_record_query_trace (1.5.4)
    activejob (5.1.4)
      activesupport (= 5.1.4)
@@ -57,25 +57,25 @@ GEM
      encryptor (~> 3.0.0)
    av (0.9.0)
      cocaine (~> 0.5.3)
-    aws-sdk (2.10.100)
+    aws-sdk (2.10.46)
-      aws-sdk-resources (= 2.10.100)
+      aws-sdk-resources (= 2.10.46)
-    aws-sdk-core (2.10.100)
+    aws-sdk-core (2.10.46)
      aws-sigv4 (~> 1.0)
      jmespath (~> 1.0)
-    aws-sdk-resources (2.10.100)
+    aws-sdk-resources (2.10.46)
-      aws-sdk-core (= 2.10.100)
+      aws-sdk-core (= 2.10.46)
    aws-sigv4 (1.0.2)
    bcrypt (3.1.11)
-    better_errors (2.4.0)
+    better_errors (2.3.0)
      coderay (>= 1.0.0)
      erubi (>= 1.0.0)
      rack (>= 0.9.0)
-    binding_of_caller (0.7.3)
+    binding_of_caller (0.7.2)
      debug_inspector (>= 0.0.1)
-    bootsnap (1.1.5)
+    bootsnap (1.1.3)
      msgpack (~> 1.0)
    brakeman (4.0.1)
-    browser (2.5.2)
+    browser (2.5.1)
    builder (3.2.3)
    bullet (5.6.1)
      activesupport (>= 3.0.0)
@@ -83,23 +83,23 @@ GEM
    bundler-audit (0.6.0)
      bundler (~> 1.2)
      thor (~> 0.18)
-    capistrano (3.10.0)
+    capistrano (3.9.1)
      airbrussh (>= 1.0.0)
      i18n
      rake (>= 10.0.0)
      sshkit (>= 1.9.0)
-    capistrano-bundler (1.3.0)
+    capistrano-bundler (1.2.0)
      capistrano (~> 3.1)
      sshkit (~> 1.2)
-    capistrano-rails (1.3.1)
+    capistrano-rails (1.3.0)
      capistrano (~> 3.1)
      capistrano-bundler (~> 1.1)
-    capistrano-rbenv (2.1.3)
+    capistrano-rbenv (2.1.1)
      capistrano (~> 3.1)
      sshkit (~> 1.3)
    capistrano-yarn (2.0.2)
      capistrano (~> 3.0)
-    capybara (2.16.1)
+    capybara (2.15.1)
      addressable
      mini_mime (>= 0.1.3)
      nokogiri (>= 1.3.3)
@@ -110,7 +110,7 @@ GEM
      activesupport
    charlock_holmes (0.7.5)
    chunky_png (1.3.8)
-    cld3 (3.2.1)
+    cld3 (3.2.0)
      ffi (>= 1.1.0, < 1.10.0)
    climate_control (0.2.0)
    cocaine (0.5.8)
@@ -121,7 +121,7 @@ GEM
    connection_pool (2.2.1)
    crack (0.4.3)
      safe_yaml (~> 1.0.0)
-    crass (1.0.3)
+    crass (1.0.2)
    debug_inspector (0.0.3)
    devise (4.3.0)
      bcrypt (~> 3.0)
@@ -129,11 +129,11 @@ GEM
      railties (>= 4.1.0, < 5.2)
      responders
      warden (~> 1.2.3)
-    devise-two-factor (3.0.2)
+    devise-two-factor (3.0.0)
-      activesupport (< 5.2)
+      activesupport
      attr_encrypted (>= 1.3, < 4, != 2)
      devise (~> 4.0)
-      railties (< 5.2)
+      railties
      rotp (~> 2.0)
    diff-lcs (1.3)
    docile (1.1.5)
@@ -150,12 +150,12 @@ GEM
      thread
      thread_safe
    encryptor (3.0.0)
-    erubi (1.7.0)
+    erubi (1.6.1)
-    et-orbi (1.0.8)
+    et-orbi (1.0.5)
      tzinfo
    excon (0.59.0)
    execjs (2.7.0)
-    fabrication (2.18.0)
+    fabrication (2.16.3)
    faker (1.8.4)
      i18n (~> 0.5)
    fast_blank (1.0.0)
@@ -167,9 +167,7 @@ GEM
    fog-json (1.0.2)
      fog-core (~> 1.0)
      multi_json (~> 1.10)
-    fog-local (0.4.0)
+    fog-openstack (0.1.21)
      fog-core (~> 1.27)
    fog-openstack (0.1.22)
      fog-core (>= 1.40)
      fog-json (>= 1.0)
      ipaddress (>= 0.8)
@@ -177,14 +175,14 @@ GEM
    fuubar (2.2.0)
      rspec-core (~> 3.0)
      ruby-progressbar (~> 1.4)
-    globalid (0.4.1)
+    globalid (0.4.0)
      activesupport (>= 4.2.0)
    goldfinger (2.0.1)
      addressable (~> 2.5)
      http (~> 2.2)
      nokogiri (~> 1.8)
      oj (~> 3.0)
-    hamlit (2.8.5)
+    hamlit (2.8.4)
      temple (>= 0.8.0)
      thor
      tilt
@@ -196,7 +194,7 @@ GEM
    hamster (3.0.0)
      concurrent-ruby (~> 1.0)
    hashdiff (0.3.7)
-    highline (1.7.10)
+    highline (1.7.8)
    hiredis (0.6.1)
    hkdf (0.3.0)
    htmlentities (4.3.4)
@@ -213,9 +211,8 @@ GEM
    httplog (0.99.7)
      colorize
      rack
-    i18n (0.9.1)
+    i18n (0.8.6)
-      concurrent-ruby (~> 1.0)
+    i18n-tasks (0.9.18)
    i18n-tasks (0.9.19)
      activesupport (>= 4.0.2)
      ast (>= 2.1.0)
      easy_translate (>= 0.5.0)
@@ -230,27 +227,27 @@ GEM
    iso-639 (0.2.8)
    jmespath (1.3.1)
    json (2.1.0)
-    json-ld (2.1.7)
+    json-ld (2.1.5)
      multi_json (~> 1.12)
-      rdf (~> 2.2, >= 2.2.8)
+      rdf (~> 2.2)
    json-ld-preloaded (2.2.2)
      json-ld (~> 2.1, >= 2.1.5)
      multi_json (~> 1.11)
      rdf (~> 2.2)
-    jsonapi-renderer (0.2.0)
+    jsonapi-renderer (0.1.3)
-    jwt (2.1.0)
+    jwt (1.5.6)
-    kaminari (1.1.1)
+    kaminari (1.0.1)
      activesupport (>= 4.1.0)
-      kaminari-actionview (= 1.1.1)
+      kaminari-actionview (= 1.0.1)
-      kaminari-activerecord (= 1.1.1)
+      kaminari-activerecord (= 1.0.1)
-      kaminari-core (= 1.1.1)
+      kaminari-core (= 1.0.1)
-    kaminari-actionview (1.1.1)
+    kaminari-actionview (1.0.1)
      actionview
-      kaminari-core (= 1.1.1)
+      kaminari-core (= 1.0.1)
-    kaminari-activerecord (1.1.1)
+    kaminari-activerecord (1.0.1)
      activerecord
-      kaminari-core (= 1.1.1)
+      kaminari-core (= 1.0.1)
-    kaminari-core (1.1.1)
+    kaminari-core (1.0.1)
    launchy (2.4.3)
      addressable (~> 2.3)
    letter_opener (1.4.1)
@@ -260,19 +257,18 @@ GEM
      letter_opener (~> 1.0)
      railties (>= 3.2)
    link_header (0.0.8)
-    lograge (0.7.1)
+    lograge (0.6.0)
      actionpack (>= 4, < 5.2)
      activesupport (>= 4, < 5.2)
      railties (>= 4, < 5.2)
      request_store (~> 1.0)
-    loofah (2.1.1)
+    loofah (2.0.3)
      crass (~> 1.0.2)
      nokogiri (>= 1.5.9)
-    mail (2.7.0)
+    mail (2.6.6)
-      mini_mime (>= 0.1.1)
+      mime-types (>= 1.16, < 4)
    mario-redis-lock (1.2.0)
      redis (~> 3, >= 3.0.5)
-    method_source (0.9.0)
+    method_source (0.8.2)
    microformats (4.0.7)
      json
      nokogiri
@@ -280,8 +276,8 @@ GEM
      mime-types-data (~> 3.2015)
    mime-types-data (3.2016.0521)
    mimemagic (0.3.2)
-    mini_mime (1.0.0)
+    mini_mime (0.1.4)
-    mini_portile2 (2.3.0)
+    mini_portile2 (2.2.0)
    minitest (5.10.3)
    msgpack (1.1.0)
    multi_json (1.12.2)
@@ -289,8 +285,8 @@ GEM
      net-ssh (>= 2.6.5)
    net-ssh (4.2.0)
    nio4r (2.1.0)
-    nokogiri (1.8.1)
+    nokogiri (1.8.0)
-      mini_portile2 (~> 2.3.0)
+      mini_portile2 (~> 2.2.0)
    nokogumbo (1.4.13)
      nokogiri
    nsa (0.2.4)
@@ -298,13 +294,15 @@ GEM
      concurrent-ruby (~> 1.0.0)
      sidekiq (>= 3.5.0)
      statsd-ruby (~> 1.2.0)
-    oj (3.3.9)
+    oj (3.3.5)
    openssl (2.0.5)
    orm_adapter (0.5.0)
-    ostatus2 (2.0.2)
+    ostatus2 (2.0.1)
      addressable (~> 2.4)
      http (~> 2.0)
      nokogiri (~> 1.6)
-    ox (2.8.2)
+      openssl (~> 2.0)
    ox (2.6.0)
    paperclip (5.1.0)
      activemodel (>= 4.2.0)
      activesupport (>= 4.2.0)
@@ -315,25 +313,27 @@ GEM
      av (~> 0.9.0)
      paperclip (>= 2.5.2)
    parallel (1.12.0)
-    parallel_tests (2.19.0)
+    parallel_tests (2.15.0)
      parallel
-    parser (2.4.0.2)
+    parser (2.4.0.0)
-      ast (~> 2.3)
+      ast (~> 2.2)
    pg (0.21.0)
    pghero (1.7.0)
      activerecord
-    pkg-config (1.2.8)
+    pkg-config (1.2.7)
    posix-spawn (0.3.13)
    powerpack (0.1.1)
-    pry (0.11.3)
+    pry (0.10.4)
      coderay (~> 1.1.0)
-      method_source (~> 0.9.0)
+      method_source (~> 0.8.1)
      slop (~> 3.4)
    pry-rails (0.3.6)
      pry (>= 0.10.4)
-    public_suffix (3.0.1)
+    public_suffix (3.0.0)
-    puma (3.11.0)
+    puma (3.10.0)
    pundit (1.1.0)
      activesupport (>= 3.0.0)
    rabl (0.13.1)
      activesupport (>= 2.3.14)
    rack (2.0.3)
    rack-attack (5.0.1)
      rack
@@ -342,7 +342,7 @@ GEM
      rack
    rack-proxy (0.6.2)
      rack
-    rack-test (0.8.2)
+    rack-test (0.7.0)
      rack (>= 1.0, < 3)
    rack-timeout (0.4.2)
    rails (5.1.4)
@@ -379,34 +379,31 @@ GEM
      thor (>= 0.18.1, < 2.0)
    rainbow (2.2.2)
      rake
-    rake (12.3.0)
+    rake (12.1.0)
-    rb-fsevent (0.10.2)
+    rdf (2.2.9)
    rb-inotify (0.9.10)
      ffi (>= 0.5.0, < 2)
    rdf (2.2.12)
      hamster (~> 3.0)
      link_header (~> 0.0, >= 0.0.8)
    rdf-normalize (0.3.2)
      rdf (~> 2.0)
-    redis (3.3.5)
+    redis (3.3.3)
-    redis-actionpack (5.0.2)
+    redis-actionpack (5.0.1)
      actionpack (>= 4.0, < 6)
      redis-rack (>= 1, < 3)
-      redis-store (>= 1.1.0, < 2)
+      redis-store (>= 1.1.0, < 1.4.0)
-    redis-activesupport (5.0.4)
+    redis-activesupport (5.0.3)
      activesupport (>= 3, < 6)
-      redis-store (>= 1.3, < 2)
+      redis-store (~> 1.3.0)
-    redis-namespace (1.6.0)
+    redis-namespace (1.5.3)
-      redis (>= 3.0.4)
+      redis (~> 3.0, >= 3.0.4)
-    redis-rack (2.0.3)
+    redis-rack (2.0.2)
      rack (>= 1.5, < 3)
-      redis-store (>= 1.2, < 2)
+      redis-store (>= 1.2, < 1.4)
    redis-rails (5.0.2)
      redis-actionpack (>= 5.0, < 6)
      redis-activesupport (>= 5.0, < 6)
      redis-store (>= 1.2, < 2)
-    redis-store (1.4.1)
+    redis-store (1.3.0)
-      redis (>= 2.2, < 5)
+      redis (>= 2.2)
    request_store (1.3.2)
    responders (2.4.0)
      actionpack (>= 4.2.0, < 5.3)
@@ -414,27 +411,27 @@ GEM
    rotp (2.1.2)
    rqrcode (0.10.1)
      chunky_png (~> 1.0)
-    rspec-core (3.7.0)
+    rspec-core (3.6.0)
-      rspec-support (~> 3.7.0)
+      rspec-support (~> 3.6.0)
-    rspec-expectations (3.7.0)
+    rspec-expectations (3.6.0)
      diff-lcs (>= 1.2.0, < 2.0)
-      rspec-support (~> 3.7.0)
+      rspec-support (~> 3.6.0)
-    rspec-mocks (3.7.0)
+    rspec-mocks (3.6.0)
      diff-lcs (>= 1.2.0, < 2.0)
-      rspec-support (~> 3.7.0)
+      rspec-support (~> 3.6.0)
-    rspec-rails (3.7.2)
+    rspec-rails (3.6.1)
      actionpack (>= 3.0)
      activesupport (>= 3.0)
      railties (>= 3.0)
-      rspec-core (~> 3.7.0)
+      rspec-core (~> 3.6.0)
-      rspec-expectations (~> 3.7.0)
+      rspec-expectations (~> 3.6.0)
-      rspec-mocks (~> 3.7.0)
+      rspec-mocks (~> 3.6.0)
-      rspec-support (~> 3.7.0)
+      rspec-support (~> 3.6.0)
    rspec-sidekiq (3.0.3)
      rspec-core (~> 3.0, >= 3.0.0)
      sidekiq (>= 2.4.0)
-    rspec-support (3.7.0)
+    rspec-support (3.6.0)
-    rubocop (0.51.0)
+    rubocop (0.50.0)
      parallel (~> 1.10)
      parser (>= 2.3.3.1, < 3.0)
      powerpack (~> 0.1)
@@ -442,7 +439,7 @@ GEM
      ruby-progressbar (~> 1.7)
      unicode-display_width (~> 1.0, >= 1.0.1)
    ruby-oembed (0.12.0)
-    ruby-progressbar (1.9.0)
+    ruby-progressbar (1.8.3)
    rufus-scheduler (3.4.2)
      et-orbi (~> 1.0)
    safe_yaml (1.0.4)
@@ -450,24 +447,20 @@ GEM
      crass (~> 1.0.2)
      nokogiri (>= 1.4.4)
      nokogumbo (~> 1.4.1)
-    sass (3.5.3)
+    sass (3.4.25)
-      sass-listen (~> 4.0.0)
+    scss_lint (0.54.0)
    sass-listen (4.0.0)
      rb-fsevent (~> 0.9, >= 0.9.4)
      rb-inotify (~> 0.9, >= 0.9.7)
    scss_lint (0.56.0)
      rake (>= 0.9, < 13)
-      sass (~> 3.5.3)
+      sass (~> 3.4.20)
-    sidekiq (5.0.5)
+    sidekiq (5.0.4)
      concurrent-ruby (~> 1.0)
      connection_pool (~> 2.2, >= 2.2.0)
      rack-protection (>= 1.5.0)
-      redis (>= 3.3.4, < 5)
+      redis (~> 3.3, >= 3.3.3)
    sidekiq-bulk (0.1.1)
      activesupport
      sidekiq
-    sidekiq-scheduler (2.1.10)
+    sidekiq-scheduler (2.1.9)
-      redis (>= 3, < 5)
+      redis (~> 3)
      rufus-scheduler (~> 3.2)
      sidekiq (>= 3)
      tilt (>= 1.4.0)
@@ -484,6 +477,7 @@ GEM
      json (>= 1.8, < 3)
      simplecov-html (~> 0.10.0)
    simplecov-html (0.10.2)
    slop (3.6.0)
    sprockets (3.7.1)
      concurrent-ruby (~> 1.0)
      rack (> 1, < 3)
@@ -491,7 +485,7 @@ GEM
      actionpack (>= 4.0)
      activesupport (>= 4.0)
      sprockets (>= 3.0.0)
-    sshkit (1.15.1)
+    sshkit (1.14.0)
      net-scp (>= 1.1.2)
      net-ssh (>= 2.8.0)
    statsd-ruby (1.2.1)
@@ -506,9 +500,9 @@ GEM
    tilt (2.0.8)
    twitter-text (1.14.7)
      unf (~> 0.1.0)
-    tzinfo (1.2.4)
+    tzinfo (1.2.3)
      thread_safe (~> 0.1)
-    tzinfo-data (1.2017.3)
+    tzinfo-data (1.2017.2)
      tzinfo (>= 1.0.0)
    uglifier (3.2.0)
      execjs (>= 0.3.0, < 3)
@@ -519,20 +513,20 @@ GEM
    uniform_notifier (1.10.0)
    warden (1.2.7)
      rack (>= 1.0)
-    webmock (3.1.1)
+    webmock (3.1.0)
      addressable (>= 2.3.6)
      crack (>= 0.3.2)
      hashdiff
-    webpacker (3.0.2)
+    webpacker (3.0.1)
      activesupport (>= 4.2)
      rack-proxy (>= 0.6.1)
      railties (>= 4.2)
-    webpush (0.3.3)
+    webpush (0.3.2)
      hkdf (~> 0.2)
-      jwt (~> 2.0)
+      jwt
    websocket-driver (0.6.5)
      websocket-extensions (>= 0.1.0)
-    websocket-extensions (0.1.3)
+    websocket-extensions (0.1.2)
    xpath (2.1.0)
      nokogiri (~> 1.3)
@@ -544,31 +538,29 @@ DEPENDENCIES
  active_record_query_trace (~> 1.5)
  addressable (~> 2.5)
  annotate (~> 2.7)
-  aws-sdk (~> 2.10)
+  aws-sdk (~> 2.9)
-  better_errors (~> 2.4)
+  better_errors (~> 2.1)
  binding_of_caller (~> 0.7)
  bootsnap
  brakeman (~> 4.0)
  browser
  bullet (~> 5.5)
  bundler-audit (~> 0.6)
-  capistrano (~> 3.10)
+  capistrano (~> 3.8)
-  capistrano-rails (~> 1.3)
+  capistrano-rails (~> 1.2)
  capistrano-rbenv (~> 2.1)
  capistrano-yarn (~> 2.0)
-  capybara (~> 2.15)
+  capybara (~> 2.14)
  charlock_holmes (~> 0.7.5)
  cld3 (~> 3.2.0)
  climate_control (~> 0.2)
-  devise (~> 4.3)
+  devise (~> 4.2)
  devise-two-factor (~> 3.0)
  doorkeeper (~> 4.2)
  dotenv-rails (~> 2.2)
-  fabrication (~> 2.18)
+  fabrication (~> 2.16)
  faker (~> 1.7)
  fast_blank (~> 1.0)
  fog-core (~> 1.45)
  fog-local (~> 0.4)
  fog-openstack (~> 0.1)
  fuubar (~> 2.2)
  goldfinger (~> 2.0)
@@ -582,29 +574,29 @@ DEPENDENCIES
  idn-ruby
  iso-639
  json-ld-preloaded (~> 2.2.1)
-  kaminari (~> 1.1)
+  kaminari (~> 1.0)
  letter_opener (~> 1.4)
  letter_opener_web (~> 1.3)
  link_header (~> 0.0)
-  lograge (~> 0.7)
+  lograge (~> 0.5)
  mario-redis-lock (~> 1.2)
  microformats (~> 4.0)
  mime-types (~> 3.1)
-  nokogiri (~> 1.8)
+  nokogiri (~> 1.7)
  nsa (~> 0.2)
-  oj (~> 3.3)
+  oj (~> 3.0)
  ostatus2 (~> 2.0)
-  ox (~> 2.8)
+  ox (~> 2.5)
  paperclip (~> 5.1)
  paperclip-av-transcoder (~> 0.6)
-  parallel_tests (~> 2.17)
+  parallel_tests (~> 2.14)
  pg (~> 0.20)
  pghero (~> 1.7)
  pkg-config (~> 1.2)
  posix-spawn
  pry-rails (~> 0.3)
  puma (~> 3.10)
  pundit (~> 1.1)
  rabl (~> 0.13)
  rack-attack (~> 5.0)
  rack-cors (~> 0.4)
  rack-timeout (~> 0.4)
@@ -617,13 +609,12 @@ DEPENDENCIES
  redis-namespace (~> 1.5)
  redis-rails (~> 5.0)
  rqrcode (~> 0.10)
-  rspec-rails (~> 3.7)
+  rspec-rails (~> 3.6)
  rspec-sidekiq (~> 3.0)
  rubocop
  ruby-oembed (~> 0.12)
  ruby-progressbar (~> 1.4)
  sanitize (~> 4.4)
-  scss_lint (~> 0.55)
+  scss_lint (~> 0.53)
  sidekiq (~> 5.0)
  sidekiq-bulk (~> 0.1.1)
  sidekiq-scheduler (~> 2.1)
@@ -644,4 +635,4 @@ RUBY VERSION
   ruby 2.4.2p198
 BUNDLED WITH
-   1.16.1
+   1.15.4
--- a/.github/ISSUE_TEMPLATE.md
+++ b/.github/ISSUE_TEMPLATE.md
--- a/2
+++ b/2
@@ -83,7 +83,7 @@ Vagrant.configure(VAGRANTFILE_API_VERSION) do |config|
  config.vm.provider :virtualbox do |vb|
    vb.name = "mastodon"
-    vb.customize ["modifyvm", :id, "--memory", "4096"]
+    vb.customize ["modifyvm", :id, "--memory", "2048"]
    # Disable VirtualBox DNS proxy to skip long-delay IPv6 resolutions.
    # https://github.com/mitchellh/vagrant/issues/1172
--- a/app/controllers/about_controller.rb
+++ b/app/controllers/about_controller.rb
@@ -1,7 +1,6 @@
 # frozen_string_literal: true
 class AboutController < ApplicationController
  before_action :set_pack
  before_action :set_body_classes
  before_action :set_instance_presenter, only: [:show, :more, :terms]
@@ -22,10 +21,6 @@ class AboutController < ApplicationController
  helper_method :new_user
  def set_pack
    use_pack action_name == 'show' ? 'about' : 'common'
  end
  def set_instance_presenter
    @instance_presenter = InstancePresenter.new
  end
--- a/app/controllers/accounts_controller.rb
+++ b/app/controllers/accounts_controller.rb
@@ -2,13 +2,11 @@
 class AccountsController < ApplicationController
  include AccountControllerConcern
-
+  include SignatureVerification
  before_action :set_cache_headers
  def show
    respond_to do |format|
      format.html do
        use_pack 'public'
        @pinned_statuses = []
        if current_account && @account.blocking?(current_account)
@@ -28,11 +26,10 @@ class AccountsController < ApplicationController
      end
      format.json do
-        skip_session!
+        render json: @account,
-
+               serializer: ActivityPub::ActorSerializer,
-        render_cached_json(['activitypub', 'actor', @account.cache_key], content_type: 'application/activity+json') do
+               adapter: ActivityPub::Adapter,
-          ActiveModelSerializers::SerializableResource.new(@account, serializer: ActivityPub::ActorSerializer, adapter: ActivityPub::Adapter)
+               content_type: 'application/activity+json'
        end
      end
    end
  end
@@ -51,7 +48,7 @@ class AccountsController < ApplicationController
  end
  def default_statuses
-    @account.statuses.not_local_only.where(visibility: [:public, :unlisted])
+    @account.statuses.where(visibility: [:public, :unlisted])
  end
  def only_media_scope
--- a/app/controllers/activitypub/follows_controller.rb
+++ b/app/controllers/activitypub/follows_controller.rb
@@ -1,22 +0,0 @@
 # frozen_string_literal: true
 class ActivityPub::FollowsController < Api::BaseController
  include SignatureVerification
  def show
    render json: follow_request,
           serializer: ActivityPub::FollowSerializer,
           adapter: ActivityPub::Adapter,
           content_type: 'application/activity+json'
  end
  private
  def follow_request
    FollowRequest.includes(:account).references(:account).find_by!(
      id: params.require(:id),
      accounts: { domain: nil, username: params.require(:account_username) },
      target_account: signed_request_account
    )
  end
 end
--- a/app/controllers/admin/account_moderation_notes_controller.rb
+++ b/app/controllers/admin/account_moderation_notes_controller.rb
@@ -1,41 +1,31 @@
 # frozen_string_literal: true
-module Admin
+class Admin::AccountModerationNotesController < Admin::BaseController
-  class AccountModerationNotesController < BaseController
+  def create
-    before_action :set_account_moderation_note, only: [:destroy]
+    @account_moderation_note = current_account.account_moderation_notes.new(resource_params)
-
+    if @account_moderation_note.save
-    def create
+      @target_account = @account_moderation_note.target_account
-      authorize AccountModerationNote, :create?
+      redirect_to admin_account_path(@target_account.id), notice: I18n.t('admin.account_moderation_notes.created_msg')
-
+    else
-      @account_moderation_note = current_account.account_moderation_notes.new(resource_params)
+      @account = @account_moderation_note.target_account
-
+      @moderation_notes = @account.targeted_moderation_notes.latest
-      if @account_moderation_note.save
+      render template: 'admin/accounts/show'
        redirect_to admin_account_path(@account_moderation_note.target_account_id), notice: I18n.t('admin.account_moderation_notes.created_msg')
      else
        @account          = @account_moderation_note.target_account
        @moderation_notes = @account.targeted_moderation_notes.latest
        render template: 'admin/accounts/show'
      end
    end
    def destroy
      authorize @account_moderation_note, :destroy?
      @account_moderation_note.destroy!
      redirect_to admin_account_path(@account_moderation_note.target_account_id), notice: I18n.t('admin.account_moderation_notes.destroyed_msg')
    end
    private
    def resource_params
      params.require(:account_moderation_note).permit(
        :content,
        :target_account_id
      )
    end
    def set_account_moderation_note
      @account_moderation_note = AccountModerationNote.find(params[:id])
    end
  end
  def destroy
    @account_moderation_note = AccountModerationNote.find(params[:id])
    @target_account = @account_moderation_note.target_account
    @account_moderation_note.destroy
    redirect_to admin_account_path(@target_account.id), notice: I18n.t('admin.account_moderation_notes.destroyed_msg')
  end
  private
  def resource_params
    params.require(:account_moderation_note).permit(
      :content,
      :target_account_id
    )
  end
 end
--- a/app/controllers/admin/accounts_controller.rb
+++ b/app/controllers/admin/accounts_controller.rb
@@ -2,57 +2,29 @@
 module Admin
  class AccountsController < BaseController
-    before_action :set_account, only: [:show, :subscribe, :unsubscribe, :redownload, :enable, :disable, :memorialize]
+    before_action :set_account, only: [:show, :subscribe, :unsubscribe, :redownload]
    before_action :require_remote_account!, only: [:subscribe, :unsubscribe, :redownload]
    before_action :require_local_account!, only: [:enable, :disable, :memorialize]
    def index
      authorize :account, :index?
      @accounts = filtered_accounts.page(params[:page])
    end
    def show
      authorize @account, :show?
      @account_moderation_note = current_account.account_moderation_notes.new(target_account: @account)
      @moderation_notes = @account.targeted_moderation_notes.latest
    end
    def subscribe
      authorize @account, :subscribe?
      Pubsubhubbub::SubscribeWorker.perform_async(@account.id)
      redirect_to admin_account_path(@account.id)
    end
    def unsubscribe
      authorize @account, :unsubscribe?
      Pubsubhubbub::UnsubscribeWorker.perform_async(@account.id)
      redirect_to admin_account_path(@account.id)
    end
    def memorialize
      authorize @account, :memorialize?
      @account.memorialize!
      log_action :memorialize, @account
      redirect_to admin_account_path(@account.id)
    end
    def enable
      authorize @account.user, :enable?
      @account.user.enable!
      log_action :enable, @account.user
      redirect_to admin_account_path(@account.id)
    end
    def disable
      authorize @account.user, :disable?
      @account.user.disable!
      log_action :disable, @account.user
      redirect_to admin_account_path(@account.id)
    end
    def redownload
      authorize @account, :redownload?
      @account.reset_avatar!
      @account.reset_header!
      @account.save!
@@ -70,10 +42,6 @@ module Admin
      redirect_to admin_account_path(@account.id) if @account.local?
    end
    def require_local_account!
      redirect_to admin_account_path(@account.id) unless @account.local? && @account.user.present?
    end
    def filtered_accounts
      AccountFilter.new(filter_params).results
    end
@@ -89,8 +57,7 @@ module Admin
        :username,
        :display_name,
        :email,
-        :ip,
+        :ip
        :staff
      )
    end
  end
--- a/app/controllers/admin/action_logs_controller.rb
+++ b/app/controllers/admin/action_logs_controller.rb
@@ -1,9 +0,0 @@
 # frozen_string_literal: true
 module Admin
  class ActionLogsController < BaseController
    def index
      @action_logs = Admin::ActionLog.page(params[:page])
    end
  end
 end
--- a/app/controllers/admin/base_controller.rb
+++ b/app/controllers/admin/base_controller.rb
@@ -2,16 +2,8 @@
 module Admin
  class BaseController < ApplicationController
-    include Authorization
+    before_action :require_admin!
    include AccountableConcern
    layout 'admin'
    before_action :require_staff!
    before_action :set_pack
    def set_pack
      use_pack 'admin'
    end
  end
 end
--- a/app/controllers/admin/confirmations_controller.rb
+++ b/app/controllers/admin/confirmations_controller.rb
@@ -2,19 +2,15 @@
 module Admin
  class ConfirmationsController < BaseController
    before_action :set_user
    def create
-      authorize @user, :confirm?
+      account_user.confirm
      @user.confirm!
      log_action :confirm, @user
      redirect_to admin_accounts_path
    end
    private
-    def set_user
+    def account_user
-      @user = Account.find(params[:account_id]).user || raise(ActiveRecord::RecordNotFound)
+      Account.find(params[:account_id]).user || raise(ActiveRecord::RecordNotFound)
    end
  end
 end
--- a/app/controllers/admin/custom_emojis_controller.rb
+++ b/app/controllers/admin/custom_emojis_controller.rb
@@ -3,82 +3,50 @@
 module Admin
  class CustomEmojisController < BaseController
    before_action :set_custom_emoji, except: [:index, :new, :create]
    before_action :set_filter_params
    def index
-      authorize :custom_emoji, :index?
+      @custom_emojis = filtered_custom_emojis.page(params[:page])
      @custom_emojis = filtered_custom_emojis.eager_load(:local_counterpart).page(params[:page])
    end
    def new
      authorize :custom_emoji, :create?
      @custom_emoji = CustomEmoji.new
    end
    def create
      authorize :custom_emoji, :create?
      @custom_emoji = CustomEmoji.new(resource_params)
      if @custom_emoji.save
        log_action :create, @custom_emoji
        redirect_to admin_custom_emojis_path, notice: I18n.t('admin.custom_emojis.created_msg')
      else
        render :new
      end
    end
    def update
      authorize @custom_emoji, :update?
      if @custom_emoji.update(resource_params)
        log_action :update, @custom_emoji
        flash[:notice] = I18n.t('admin.custom_emojis.updated_msg')
      else
        flash[:alert] =  I18n.t('admin.custom_emojis.update_failed_msg')
      end
      redirect_to admin_custom_emojis_path(page: params[:page], **@filter_params)
    end
    def destroy
-      authorize @custom_emoji, :destroy?
+      @custom_emoji.destroy
-      @custom_emoji.destroy!
+      redirect_to admin_custom_emojis_path, notice: I18n.t('admin.custom_emojis.destroyed_msg')
      log_action :destroy, @custom_emoji
      flash[:notice] = I18n.t('admin.custom_emojis.destroyed_msg')
      redirect_to admin_custom_emojis_path(page: params[:page], **@filter_params)
    end
    def copy
-      authorize @custom_emoji, :copy?
+      emoji = CustomEmoji.new(domain: nil, shortcode: @custom_emoji.shortcode, image: @custom_emoji.image)
      emoji = CustomEmoji.find_or_initialize_by(domain: nil,
                                                shortcode: @custom_emoji.shortcode)
      emoji.image = @custom_emoji.image
      if emoji.save
        log_action :create, emoji
        flash[:notice] = I18n.t('admin.custom_emojis.copied_msg')
      else
        flash[:alert] = I18n.t('admin.custom_emojis.copy_failed_msg')
      end
-      redirect_to admin_custom_emojis_path(page: params[:page], **@filter_params)
+      redirect_to admin_custom_emojis_path(params[:page])
    end
    def enable
      authorize @custom_emoji, :enable?
      @custom_emoji.update!(disabled: false)
-      log_action :enable, @custom_emoji
+      redirect_to admin_custom_emojis_path, notice: I18n.t('admin.custom_emojis.enabled_msg')
      flash[:notice] = I18n.t('admin.custom_emojis.enabled_msg')
      redirect_to admin_custom_emojis_path(page: params[:page], **@filter_params)
    end
    def disable
      authorize @custom_emoji, :disable?
      @custom_emoji.update!(disabled: true)
-      log_action :disable, @custom_emoji
+      redirect_to admin_custom_emojis_path, notice: I18n.t('admin.custom_emojis.disabled_msg')
      flash[:notice] = I18n.t('admin.custom_emojis.disabled_msg')
      redirect_to admin_custom_emojis_path(page: params[:page], **@filter_params)
    end
    private
@@ -87,12 +55,8 @@ module Admin
      @custom_emoji = CustomEmoji.find(params[:id])
    end
    def set_filter_params
      @filter_params = filter_params.to_hash.symbolize_keys
    end
    def resource_params
-      params.require(:custom_emoji).permit(:shortcode, :image, :visible_in_picker)
+      params.require(:custom_emoji).permit(:shortcode, :image)
    end
    def filtered_custom_emojis
@@ -102,9 +66,7 @@ module Admin
    def filter_params
      params.permit(
        :local,
-        :remote,
+        :remote
        :by_domain,
        :shortcode
      )
    end
  end
--- a/app/controllers/admin/domain_blocks_controller.rb
+++ b/app/controllers/admin/domain_blocks_controller.rb
@@ -5,37 +5,28 @@ module Admin
    before_action :set_domain_block, only: [:show, :destroy]
    def index
      authorize :domain_block, :index?
      @domain_blocks = DomainBlock.page(params[:page])
    end
    def new
      authorize :domain_block, :create?
      @domain_block = DomainBlock.new
    end
    def create
      authorize :domain_block, :create?
      @domain_block = DomainBlock.new(resource_params)
      if @domain_block.save
        DomainBlockWorker.perform_async(@domain_block.id)
        log_action :create, @domain_block
        redirect_to admin_domain_blocks_path, notice: I18n.t('admin.domain_blocks.created_msg')
      else
        render :new
      end
    end
-    def show
+    def show; end
      authorize @domain_block, :show?
    end
    def destroy
      authorize @domain_block, :destroy?
      UnblockDomainService.new.call(@domain_block, retroactive_unblock?)
      log_action :destroy, @domain_block
      redirect_to admin_domain_blocks_path, notice: I18n.t('admin.domain_blocks.destroyed_msg')
    end
--- a/app/controllers/admin/email_domain_blocks_controller.rb
+++ b/app/controllers/admin/email_domain_blocks_controller.rb
@@ -5,22 +5,17 @@ module Admin
    before_action :set_email_domain_block, only: [:show, :destroy]
    def index
      authorize :email_domain_block, :index?
      @email_domain_blocks = EmailDomainBlock.page(params[:page])
    end
    def new
      authorize :email_domain_block, :create?
      @email_domain_block = EmailDomainBlock.new
    end
    def create
      authorize :email_domain_block, :create?
      @email_domain_block = EmailDomainBlock.new(resource_params)
      if @email_domain_block.save
        log_action :create, @email_domain_block
        redirect_to admin_email_domain_blocks_path, notice: I18n.t('admin.email_domain_blocks.created_msg')
      else
        render :new
@@ -28,9 +23,7 @@ module Admin
    end
    def destroy
-      authorize @email_domain_block, :destroy?
+      @email_domain_block.destroy
      @email_domain_block.destroy!
      log_action :destroy, @email_domain_block
      redirect_to admin_email_domain_blocks_path, notice: I18n.t('admin.email_domain_blocks.destroyed_msg')
    end
--- a/app/controllers/admin/instances_controller.rb
+++ b/app/controllers/admin/instances_controller.rb
@@ -3,12 +3,10 @@
 module Admin
  class InstancesController < BaseController
    def index
      authorize :instance, :index?
      @instances = ordered_instances
    end
    def resubscribe
      authorize :instance, :resubscribe?
      params.require(:by_domain)
      Pubsubhubbub::SubscribeWorker.push_bulk(subscribeable_accounts.pluck(:id))
      redirect_to admin_instances_path
--- a/app/controllers/admin/invites_controller.rb
+++ b/app/controllers/admin/invites_controller.rb
@@ -1,47 +0,0 @@
 # frozen_string_literal: true
 module Admin
  class InvitesController < BaseController
    def index
      authorize :invite, :index?
      @invites = filtered_invites.includes(user: :account).page(params[:page])
      @invite  = Invite.new
    end
    def create
      authorize :invite, :create?
      @invite      = Invite.new(resource_params)
      @invite.user = current_user
      if @invite.save
        redirect_to admin_invites_path
      else
        @invites = Invite.page(params[:page])
        render :index
      end
    end
    def destroy
      @invite = Invite.find(params[:id])
      authorize @invite, :destroy?
      @invite.expire!
      redirect_to admin_invites_path
    end
    private
    def resource_params
      params.require(:invite).permit(:max_uses, :expires_in)
    end
    def filtered_invites
      InviteFilter.new(filter_params).results
    end
    def filter_params
      params.permit(:available, :expired)
    end
  end
 end
--- a/app/controllers/admin/reported_statuses_controller.rb
+++ b/app/controllers/admin/reported_statuses_controller.rb
@@ -2,29 +2,26 @@
 module Admin
  class ReportedStatusesController < BaseController
    include Authorization
    before_action :set_report
    before_action :set_status, only: [:update, :destroy]
    def create
-      authorize :status, :update?
+      @form = Form::StatusBatch.new(form_status_batch_params)
-
+      flash[:alert] = t('admin.statuses.failed_to_execute') unless @form.save
      @form         = Form::StatusBatch.new(form_status_batch_params.merge(current_account: current_account))
      flash[:alert] = I18n.t('admin.statuses.failed_to_execute') unless @form.save
      redirect_to admin_report_path(@report)
    end
    def update
-      authorize @status, :update?
+      @status.update(status_params)
      @status.update!(status_params)
      log_action :update, @status
      redirect_to admin_report_path(@report)
    end
    def destroy
      authorize @status, :destroy?
      RemovalWorker.perform_async(@status.id)
      log_action :destroy, @status
      render json: @status
    end
--- a/app/controllers/admin/reports_controller.rb
+++ b/app/controllers/admin/reports_controller.rb
@@ -5,17 +5,14 @@ module Admin
    before_action :set_report, except: [:index]
    def index
      authorize :report, :index?
      @reports = filtered_reports.page(params[:page])
    end
    def show
      authorize @report, :show?
      @form = Form::StatusBatch.new
    end
    def update
      authorize @report, :update?
      process_report
      redirect_to admin_report_path(@report)
    end
@@ -25,17 +22,12 @@ module Admin
    def process_report
      case params[:outcome].to_s
      when 'resolve'
-        @report.update!(action_taken_by_current_attributes)
+        @report.update(action_taken_by_current_attributes)
        log_action :resolve, @report
      when 'suspend'
        Admin::SuspensionWorker.perform_async(@report.target_account.id)
        log_action :resolve, @report
        log_action :suspend, @report.target_account
        resolve_all_target_account_reports
      when 'silence'
-        @report.target_account.update!(silenced: true)
+        @report.target_account.update(silenced: true)
        log_action :resolve, @report
        log_action :silence, @report.target_account
        resolve_all_target_account_reports
      else
        raise ActiveRecord::RecordNotFound
--- a/app/controllers/admin/resets_controller.rb
+++ b/app/controllers/admin/resets_controller.rb
@@ -2,19 +2,17 @@
 module Admin
  class ResetsController < BaseController
-    before_action :set_user
+    before_action :set_account
    def create
-      authorize @user, :reset_password?
+      @account.user.send_reset_password_instructions
      @user.send_reset_password_instructions
      log_action :reset_password, @user
      redirect_to admin_accounts_path
    end
    private
-    def set_user
+    def set_account
-      @user = Account.find(params[:account_id]).user || raise(ActiveRecord::RecordNotFound)
+      @account = Account.find(params[:account_id])
    end
  end
 end
--- a/app/controllers/admin/roles_controller.rb
+++ b/app/controllers/admin/roles_controller.rb
@@ -1,27 +0,0 @@
 # frozen_string_literal: true
 module Admin
  class RolesController < BaseController
    before_action :set_user
    def promote
      authorize @user, :promote?
      @user.promote!
      log_action :promote, @user
      redirect_to admin_account_path(@user.account_id)
    end
    def demote
      authorize @user, :demote?
      @user.demote!
      log_action :demote, @user
      redirect_to admin_account_path(@user.account_id)
    end
    private
    def set_user
      @user = Account.find(params[:account_id]).user || raise(ActiveRecord::RecordNotFound)
    end
  end
 end
--- a/app/controllers/admin/settings_controller.rb
+++ b/app/controllers/admin/settings_controller.rb
@@ -13,21 +13,14 @@ module Admin
      closed_registrations_message
      open_deletion
      timeline_preview
      show_staff_badge
      bootstrap_timeline_accounts
      thumbnail
      min_invite_role
      activity_api_enabled
      peers_api_enabled
    ).freeze
    BOOLEAN_SETTINGS = %w(
      open_registrations
      open_deletion
      timeline_preview
      show_staff_badge
      activity_api_enabled
      peers_api_enabled
    ).freeze
    UPLOAD_SETTINGS = %w(
@@ -35,13 +28,10 @@ module Admin
    ).freeze
    def edit
      authorize :settings, :show?
      @admin_settings = Form::AdminSettings.new
    end
    def update
      authorize :settings, :update?
      settings_params.each do |key, value|
        if UPLOAD_SETTINGS.include?(key)
          upload = SiteUpload.where(var: key).first_or_initialize(var: key)
--- a/app/controllers/admin/silences_controller.rb
+++ b/app/controllers/admin/silences_controller.rb
@@ -5,16 +5,12 @@ module Admin
    before_action :set_account
    def create
-      authorize @account, :silence?
+      @account.update(silenced: true)
      @account.update!(silenced: true)
      log_action :silence, @account
      redirect_to admin_accounts_path
    end
    def destroy
-      authorize @account, :unsilence?
+      @account.update(silenced: false)
      @account.update!(silenced: false)
      log_action :unsilence, @account
      redirect_to admin_accounts_path
    end
--- a/app/controllers/admin/statuses_controller.rb
+++ b/app/controllers/admin/statuses_controller.rb
@@ -2,6 +2,8 @@
 module Admin
  class StatusesController < BaseController
    include Authorization
    helper_method :current_params
    before_action :set_account
@@ -10,39 +12,31 @@ module Admin
    PER_PAGE = 20
    def index
      authorize :status, :index?
      @statuses = @account.statuses
      if params[:media]
        account_media_status_ids = @account.media_attachments.attached.reorder(nil).select(:status_id).distinct
        @statuses.merge!(Status.where(id: account_media_status_ids))
      end
      @statuses = @statuses.preload(:media_attachments, :mentions).page(params[:page]).per(PER_PAGE)
-      @form     = Form::StatusBatch.new
+
      @form = Form::StatusBatch.new
    end
    def create
-      authorize :status, :update?
+      @form = Form::StatusBatch.new(form_status_batch_params)
-
+      flash[:alert] = t('admin.statuses.failed_to_execute') unless @form.save
      @form         = Form::StatusBatch.new(form_status_batch_params.merge(current_account: current_account))
      flash[:alert] = I18n.t('admin.statuses.failed_to_execute') unless @form.save
      redirect_to admin_account_statuses_path(@account.id, current_params)
    end
    def update
-      authorize @status, :update?
+      @status.update(status_params)
      @status.update!(status_params)
      log_action :update, @status
      redirect_to admin_account_statuses_path(@account.id, current_params)
    end
    def destroy
      authorize @status, :destroy?
      RemovalWorker.perform_async(@status.id)
      log_action :destroy, @status
      render json: @status
    end
@@ -66,7 +60,6 @@ module Admin
    def current_params
      page = (params[:page] || 1).to_i
      {
        media: params[:media],
        page: page > 1 && page,
--- a/app/controllers/admin/subscriptions_controller.rb
+++ b/app/controllers/admin/subscriptions_controller.rb
@@ -3,7 +3,6 @@
 module Admin
  class SubscriptionsController < BaseController
    def index
      authorize :subscription, :index?
      @subscriptions = ordered_subscriptions.page(requested_page)
    end
--- a/app/controllers/admin/suspensions_controller.rb
+++ b/app/controllers/admin/suspensions_controller.rb
@@ -5,16 +5,12 @@ module Admin
    before_action :set_account
    def create
      authorize @account, :suspend?
      Admin::SuspensionWorker.perform_async(@account.id)
      log_action :suspend, @account
      redirect_to admin_accounts_path
    end
    def destroy
-      authorize @account, :unsuspend?
+      @account.update(suspended: false)
      @account.unsuspend!
      log_action :unsuspend, @account
      redirect_to admin_accounts_path
    end
--- a/app/controllers/admin/two_factor_authentications_controller.rb
+++ b/app/controllers/admin/two_factor_authentications_controller.rb
@@ -5,9 +5,7 @@ module Admin
    before_action :set_user
    def destroy
      authorize @user, :disable_2fa?
      @user.disable_two_factor!
      log_action :disable_2fa, @user
      redirect_to admin_accounts_path
    end
--- a/app/controllers/api/base_controller.rb
+++ b/app/controllers/api/base_controller.rb
@@ -72,4 +72,19 @@ class Api::BaseController < ApplicationController
  def render_empty
    render json: {}, status: 200
  end
  def set_maps(statuses) # rubocop:disable Style/AccessorMethodName
    if current_account.nil?
      @reblogs_map    = {}
      @favourites_map = {}
      @mutes_map      = {}
      return
    end
    status_ids       = statuses.compact.flat_map { |s| [s.id, s.reblog_of_id] }.uniq
    conversation_ids = statuses.compact.map(&:conversation_id).compact.uniq
    @reblogs_map     = Status.reblogs_map(status_ids, current_account)
    @favourites_map  = Status.favourites_map(status_ids, current_account)
    @mutes_map       = Status.mutes_map(conversation_ids, current_account)
  end
 end
--- a/app/controllers/api/v1/accounts/lists_controller.rb
+++ b/app/controllers/api/v1/accounts/lists_controller.rb
@@ -1,20 +0,0 @@
 # frozen_string_literal: true
 class Api::V1::Accounts::ListsController < Api::BaseController
  before_action -> { doorkeeper_authorize! :read }
  before_action :require_user!
  before_action :set_account
  respond_to :json
  def index
    @lists = @account.lists.where(account: current_account)
    render json: @lists, each_serializer: REST::ListSerializer
  end
  private
  def set_account
    @account = Account.find(params[:account_id])
  end
 end
--- a/app/controllers/api/v1/accounts/search_controller.rb
+++ b/app/controllers/api/v1/accounts/search_controller.rb
@@ -17,13 +17,12 @@ class Api::V1::Accounts::SearchController < Api::BaseController
    AccountSearchService.new.call(
      params[:q],
      limit_param(DEFAULT_ACCOUNTS_LIMIT),
-      current_account,
+      resolving_search?,
-      resolve: truthy_param?(:resolve),
+      current_account
      following: truthy_param?(:following)
    )
  end
-  def truthy_param?(key)
+  def resolving_search?
-    params[key] == 'true'
+    params[:resolve] == 'true'
  end
 end
--- a/app/controllers/api/v1/accounts_controller.rb
+++ b/app/controllers/api/v1/accounts_controller.rb
@@ -13,9 +13,9 @@ class Api::V1::AccountsController < Api::BaseController
  end
  def follow
-    FollowService.new.call(current_user.account, @account.acct, reblogs: params[:reblogs])
+    FollowService.new.call(current_user.account, @account.acct)
-    options = @account.locked? ? {} : { following_map: { @account.id => { reblogs: params[:reblogs] } }, requested_map: { @account.id => false } }
+    options = @account.locked? ? {} : { following_map: { @account.id => true }, requested_map: { @account.id => false } }
    render json: @account, serializer: REST::RelationshipSerializer, relationships: relationships(options)
  end
@@ -51,7 +51,7 @@ class Api::V1::AccountsController < Api::BaseController
    @account = Account.find(params[:id])
  end
-  def relationships(**options)
+  def relationships(options = {})
    AccountRelationshipsPresenter.new([@account.id], current_user.account_id, options)
  end
 end
--- a/app/controllers/api/v1/instances/activity_controller.rb
+++ b/app/controllers/api/v1/instances/activity_controller.rb
@@ -1,36 +0,0 @@
 # frozen_string_literal: true
 class Api::V1::Instances::ActivityController < Api::BaseController
  before_action :require_enabled_api!
  respond_to :json
  def show
    render_cached_json('api:v1:instances:activity:show', expires_in: 1.day) { activity }
  end
  private
  def activity
    weeks = []
    12.times do |i|
      day     = i.weeks.ago.to_date
      week_id = day.cweek
      week    = Date.commercial(day.cwyear, week_id)
      weeks << {
        week: week.to_time.to_i.to_s,
        statuses: Redis.current.get("activity:statuses:local:#{week_id}") || '0',
        logins: Redis.current.pfcount("activity:logins:#{week_id}").to_s,
        registrations: Redis.current.get("activity:accounts:local:#{week_id}") || '0',
      }
    end
    weeks
  end
  def require_enabled_api!
    head 404 unless Setting.activity_api_enabled
  end
 end
--- a/app/controllers/api/v1/instances/peers_controller.rb
+++ b/app/controllers/api/v1/instances/peers_controller.rb
@@ -1,17 +0,0 @@
 # frozen_string_literal: true
 class Api::V1::Instances::PeersController < Api::BaseController
  before_action :require_enabled_api!
  respond_to :json
  def index
    render_cached_json('api:v1:instances:peers:index', expires_in: 1.day) { Account.remote.domains }
  end
  private
  def require_enabled_api!
    head 404 unless Setting.peers_api_enabled
  end
 end
--- a/app/controllers/api/v1/lists/accounts_controller.rb
+++ b/app/controllers/api/v1/lists/accounts_controller.rb
@@ -1,97 +0,0 @@
 # frozen_string_literal: true
 class Api::V1::Lists::AccountsController < Api::BaseController
  before_action -> { doorkeeper_authorize! :read },    only: [:show]
  before_action -> { doorkeeper_authorize! :write }, except: [:show]
  before_action :require_user!
  before_action :set_list
  after_action :insert_pagination_headers, only: :show
  def show
    @accounts = load_accounts
    render json: @accounts, each_serializer: REST::AccountSerializer
  end
  def create
    ApplicationRecord.transaction do
      list_accounts.each do |account|
        @list.accounts << account
      end
    end
    render_empty
  end
  def destroy
    ListAccount.where(list: @list, account_id: account_ids).destroy_all
    render_empty
  end
  private
  def set_list
    @list = List.where(account: current_account).find(params[:list_id])
  end
  def load_accounts
    if unlimited?
      @list.accounts.all
    else
      @list.accounts.paginate_by_max_id(limit_param(DEFAULT_ACCOUNTS_LIMIT), params[:max_id], params[:since_id])
    end
  end
  def list_accounts
    Account.find(account_ids)
  end
  def account_ids
    Array(resource_params[:account_ids])
  end
  def resource_params
    params.permit(account_ids: [])
  end
  def insert_pagination_headers
    set_pagination_headers(next_path, prev_path)
  end
  def next_path
    return if unlimited?
    if records_continue?
      api_v1_list_accounts_url pagination_params(max_id: pagination_max_id)
    end
  end
  def prev_path
    return if unlimited?
    unless @accounts.empty?
      api_v1_list_accounts_url pagination_params(since_id: pagination_since_id)
    end
  end
  def pagination_max_id
    @accounts.last.id
  end
  def pagination_since_id
    @accounts.first.id
  end
  def records_continue?
    @accounts.size == limit_param(DEFAULT_ACCOUNTS_LIMIT)
  end
  def pagination_params(core_params)
    params.permit(:limit).merge(core_params)
  end
  def unlimited?
    params[:limit] == '0'
  end
 end
--- a/app/controllers/api/v1/lists_controller.rb
+++ b/app/controllers/api/v1/lists_controller.rb
@@ -1,43 +0,0 @@
 # frozen_string_literal: true
 class Api::V1::ListsController < Api::BaseController
  before_action -> { doorkeeper_authorize! :read },    only: [:index, :show]
  before_action -> { doorkeeper_authorize! :write }, except: [:index, :show]
  before_action :require_user!
  before_action :set_list, except: [:index, :create]
  def index
    @lists = List.where(account: current_account).all
    render json: @lists, each_serializer: REST::ListSerializer
  end
  def show
    render json: @list, serializer: REST::ListSerializer
  end
  def create
    @list = List.create!(list_params.merge(account: current_account))
    render json: @list, serializer: REST::ListSerializer
  end
  def update
    @list.update!(list_params)
    render json: @list, serializer: REST::ListSerializer
  end
  def destroy
    @list.destroy!
    render_empty
  end
  private
  def set_list
    @list = List.where(account: current_account).find(params[:id])
  end
  def list_params
    params.permit(:title)
  end
 end
--- a/app/controllers/api/v1/reports_controller.rb
+++ b/app/controllers/api/v1/reports_controller.rb
@@ -19,7 +19,7 @@ class Api::V1::ReportsController < Api::BaseController
      comment: report_params[:comment]
    )
-    User.staff.includes(:account).each { |u| AdminMailer.new_report(u.account, @report).deliver_later }
+    User.admins.includes(:account).each { |u| AdminMailer.new_report(u.account, @report).deliver_later }
    render json: @report, serializer: REST::ReportSerializer
  end
--- a/app/controllers/api/v1/search_controller.rb
+++ b/app/controllers/api/v1/search_controller.rb
@@ -1,8 +1,6 @@
 # frozen_string_literal: true
 class Api::V1::SearchController < Api::BaseController
  include Authorization
  RESULTS_LIMIT = 10
  before_action -> { doorkeeper_authorize! :read }
@@ -11,24 +9,12 @@ class Api::V1::SearchController < Api::BaseController
  respond_to :json
  def index
-    @search = Search.new(search)
+    @search = Search.new(search_results)
    render json: @search, serializer: REST::SearchSerializer
  end
  private
  def search
    search_results.tap do |search|
      search[:statuses].keep_if do |status|
        begin
          authorize status, :show?
        rescue Mastodon::NotPermittedError
          false
        end
      end
    end
  end
  def search_results
    SearchService.new.call(
      params[:q],
--- a/app/controllers/api/v1/timelines/direct_controller.rb
+++ b/app/controllers/api/v1/timelines/direct_controller.rb
@@ -1,60 +0,0 @@
 # frozen_string_literal: true
 class Api::V1::Timelines::DirectController < Api::BaseController
  before_action -> { doorkeeper_authorize! :read }, only: [:show]
  before_action :require_user!, only: [:show]
  after_action :insert_pagination_headers, unless: -> { @statuses.empty? }
  respond_to :json
  def show
    @statuses = load_statuses
    render json: @statuses, each_serializer: REST::StatusSerializer, relationships: StatusRelationshipsPresenter.new(@statuses, current_user&.account_id)
  end
  private
  def load_statuses
    cached_direct_statuses
  end
  def cached_direct_statuses
    cache_collection direct_statuses, Status
  end
  def direct_statuses
    direct_timeline_statuses.paginate_by_max_id(
      limit_param(DEFAULT_STATUSES_LIMIT),
      params[:max_id],
      params[:since_id]
    )
  end
  def direct_timeline_statuses
    Status.as_direct_timeline(current_account)
  end
  def insert_pagination_headers
    set_pagination_headers(next_path, prev_path)
  end
  def pagination_params(core_params)
    params.permit(:local, :limit).merge(core_params)
  end
  def next_path
    api_v1_timelines_direct_url pagination_params(max_id: pagination_max_id)
  end
  def prev_path
    api_v1_timelines_direct_url pagination_params(since_id: pagination_since_id)
  end
  def pagination_max_id
    @statuses.last.id
  end
  def pagination_since_id
    @statuses.first.id
  end
 end
--- a/app/controllers/api/v1/timelines/home_controller.rb
+++ b/app/controllers/api/v1/timelines/home_controller.rb
@@ -31,7 +31,7 @@ class Api::V1::Timelines::HomeController < Api::BaseController
  end
  def account_home_feed
-    HomeFeed.new(current_account)
+    Feed.new(:home, current_account)
  end
  def insert_pagination_headers
--- a/app/controllers/api/v1/timelines/list_controller.rb
+++ b/app/controllers/api/v1/timelines/list_controller.rb
@@ -1,66 +0,0 @@
 # frozen_string_literal: true
 class Api::V1::Timelines::ListController < Api::BaseController
  before_action -> { doorkeeper_authorize! :read }
  before_action :require_user!
  before_action :set_list
  before_action :set_statuses
  after_action :insert_pagination_headers, unless: -> { @statuses.empty? }
  def show
    render json: @statuses,
           each_serializer: REST::StatusSerializer,
           relationships: StatusRelationshipsPresenter.new(@statuses, current_user.account_id)
  end
  private
  def set_list
    @list = List.where(account: current_account).find(params[:id])
  end
  def set_statuses
    @statuses = cached_list_statuses
  end
  def cached_list_statuses
    cache_collection list_statuses, Status
  end
  def list_statuses
    list_feed.get(
      limit_param(DEFAULT_STATUSES_LIMIT),
      params[:max_id],
      params[:since_id]
    )
  end
  def list_feed
    ListFeed.new(@list)
  end
  def insert_pagination_headers
    set_pagination_headers(next_path, prev_path)
  end
  def pagination_params(core_params)
    params.permit(:limit).merge(core_params)
  end
  def next_path
    api_v1_timelines_list_url params[:id], pagination_params(max_id: pagination_max_id)
  end
  def prev_path
    api_v1_timelines_list_url params[:id], pagination_params(since_id: pagination_since_id)
  end
  def pagination_max_id
    @statuses.last.id
  end
  def pagination_since_id
    @statuses.first.id
  end
 end
--- a/app/controllers/api/web/push_subscriptions_controller.rb
+++ b/app/controllers/api/web/push_subscriptions_controller.rb
@@ -28,8 +28,6 @@ class Api::Web::PushSubscriptionsController < Api::BaseController
      },
    }
    data.deep_merge!(params[:data]) if params[:data]
    web_subscription = ::Web::PushSubscription.create!(
      endpoint: params[:subscription][:endpoint],
      key_p256dh: params[:subscription][:keys][:p256dh],
--- a/app/controllers/application_controller.rb
+++ b/app/controllers/application_controller.rb
@@ -12,14 +12,12 @@ class ApplicationController < ActionController::Base
  helper_method :current_account
  helper_method :current_session
-  helper_method :current_flavour
+  helper_method :current_theme
  helper_method :current_skin
  helper_method :single_user_mode?
  rescue_from ActionController::RoutingError, with: :not_found
  rescue_from ActiveRecord::RecordNotFound, with: :not_found
  rescue_from ActionController::InvalidAuthenticityToken, with: :unprocessable_entity
  rescue_from Mastodon::NotPermittedError, with: :forbidden
  before_action :store_current_location, except: :raise_not_found, unless: :devise_controller?
  before_action :check_suspension, if: :user_signed_in?
@@ -42,10 +40,6 @@ class ApplicationController < ActionController::Base
    redirect_to root_path unless current_user&.admin?
  end
  def require_staff!
    redirect_to root_path unless current_user&.staff?
  end
  def check_suspension
    forbidden if current_user.account.suspended?
  end
@@ -54,75 +48,6 @@ class ApplicationController < ActionController::Base
    new_user_session_path
  end
  def pack(data, pack_name, skin = 'default')
    return nil unless pack?(data, pack_name)
    pack_data = {
      common: pack_name == 'common' ? nil : resolve_pack(data['name'] ? Themes.instance.flavour(current_flavour) : Themes.instance.core, 'common', skin),
      flavour: data['name'],
      pack: pack_name,
      preload: nil,
      skin: nil,
      supported_locales: data['locales'],
    }
    if data['pack'][pack_name].is_a?(Hash)
      pack_data[:common] = nil if data['pack'][pack_name]['use_common'] == false
      pack_data[:pack] = nil unless data['pack'][pack_name]['filename']
      if data['pack'][pack_name]['preload']
        pack_data[:preload] = [data['pack'][pack_name]['preload']] if data['pack'][pack_name]['preload'].is_a?(String)
        pack_data[:preload] = data['pack'][pack_name]['preload'] if data['pack'][pack_name]['preload'].is_a?(Array)
      end
      if skin != 'default' && data['skin'][skin]
        pack_data[:skin] = skin if data['skin'][skin].include?(pack_name)
      else  #  default skin
        pack_data[:skin] = 'default' if data['pack'][pack_name]['stylesheet']
      end
    end
    pack_data
  end
  def pack?(data, pack_name)
    if data['pack'].is_a?(Hash) && data['pack'].key?(pack_name)
      return true if data['pack'][pack_name].is_a?(String) || data['pack'][pack_name].is_a?(Hash)
    end
    false
  end
  def nil_pack(data, pack_name, skin = 'default')
    {
      common: pack_name == 'common' ? nil : resolve_pack(data['name'] ? Themes.instance.flavour(current_flavour) : Themes.instance.core, 'common', skin),
      flavour: data['name'],
      pack: nil,
      preload: nil,
      skin: nil,
      supported_locales: data['locales'],
    }
  end
  def resolve_pack(data, pack_name, skin = 'default')
    result = pack(data, pack_name, skin)
    unless result
      if data['name'] && data.key?('fallback')
        if data['fallback'].nil?
          return nil_pack(data, pack_name, skin)
        elsif data['fallback'].is_a?(String) && Themes.instance.flavour(data['fallback'])
          return resolve_pack(Themes.instance.flavour(data['fallback']), pack_name)
        elsif data['fallback'].is_a?(Array)
          data['fallback'].each do |fallback|
            return resolve_pack(Themes.instance.flavour(fallback), pack_name) if Themes.instance.flavour(fallback)
          end
        end
        return nil_pack(data, pack_name, skin)
      end
      return data.key?('name') && data['name'] != Setting.default_settings['flavour'] ? resolve_pack(Themes.instance.flavour(Setting.default_settings['flavour']), pack_name) : nil_pack(data, pack_name, skin)
    end
    result
  end
  def use_pack(pack_name)
    @core = resolve_pack(Themes.instance.core, pack_name)
    @theme = resolve_pack(Themes.instance.flavour(current_flavour), pack_name, current_skin)
  end
  protected
  def forbidden
@@ -153,14 +78,9 @@ class ApplicationController < ActionController::Base
    @current_session ||= SessionActivation.find_by(session_id: cookies.signed['_session_id'])
  end
-  def current_flavour
+  def current_theme
-    return Setting.default_settings['flavour'] unless Themes.instance.flavours.include? current_user&.setting_flavour
+    return Setting.default_settings['theme'] unless Themes.instance.names.include? current_user&.setting_theme
-    current_user.setting_flavour
+    current_user.setting_theme
  end
  def current_skin
    return 'default' unless Themes.instance.skins_for(current_flavour).include? current_user&.setting_skin
    current_user.setting_skin
  end
  def cache_collection(raw, klass)
@@ -179,7 +99,7 @@ class ApplicationController < ActionController::Base
    unless uncached_ids.empty?
      uncached = klass.where(id: uncached_ids).with_includes.map { |item| [item.id, item] }.to_h
-      uncached.each_value do |item|
+      uncached.values.each do |item|
        Rails.cache.write(item.cache_key, item)
      end
    end
@@ -196,26 +116,4 @@ class ApplicationController < ActionController::Base
      end
    end
  end
  def render_cached_json(cache_key, **options)
    options[:expires_in] ||= 3.minutes
    options[:public]     ||= true
    cache_key              = cache_key.join(':') if cache_key.is_a?(Enumerable)
    content_type           = options.delete(:content_type) || 'application/json'
    data = Rails.cache.fetch(cache_key, { raw: true }.merge(options)) do
      yield.to_json
    end
    expires_in options[:expires_in], public: options[:public]
    render json: data, content_type: content_type
  end
  def set_cache_headers
    response.headers['Vary'] = 'Accept'
  end
  def skip_session!
    request.session_options[:skip] = true
  end
 end
--- a/app/controllers/auth/confirmations_controller.rb
+++ b/app/controllers/auth/confirmations_controller.rb
@@ -3,11 +3,9 @@
 class Auth::ConfirmationsController < Devise::ConfirmationsController
  layout 'auth'
-  before_action :set_pack
+  def show
-
+    super do |user|
-  private
+      BootstrapTimelineWorker.perform_async(user.account_id) if user.errors.empty?
-
+    end
  def set_pack
    use_pack 'auth'
  end
 end
--- a/app/controllers/auth/passwords_controller.rb
+++ b/app/controllers/auth/passwords_controller.rb
@@ -2,7 +2,6 @@
 class Auth::PasswordsController < Devise::PasswordsController
  before_action :check_validity_of_reset_password_token, only: :edit
  before_action :set_pack
  layout 'auth'
@@ -18,8 +17,4 @@ class Auth::PasswordsController < Devise::PasswordsController
  def reset_password_token_is_valid?
    resource_class.with_reset_password_token(params[:reset_password_token]).present?
  end
  def set_pack
    use_pack 'auth'
  end
 end
--- a/app/controllers/auth/registrations_controller.rb
+++ b/app/controllers/auth/registrations_controller.rb
@@ -5,7 +5,6 @@ class Auth::RegistrationsController < Devise::RegistrationsController
  before_action :check_enabled_registrations, only: [:new, :create]
  before_action :configure_sign_up_params, only: [:create]
  before_action :set_pack
  before_action :set_sessions, only: [:edit, :update]
  before_action :set_instance_presenter, only: [:new, :create, :update]
@@ -17,16 +16,13 @@ class Auth::RegistrationsController < Devise::RegistrationsController
  def build_resource(hash = nil)
    super(hash)
-
+    resource.locale = I18n.locale
    resource.locale      = I18n.locale
    resource.invite_code = params[:invite_code] if resource.invite_code.blank?
    resource.build_account if resource.account.nil?
  end
  def configure_sign_up_params
    devise_parameter_sanitizer.permit(:sign_up) do |u|
-      u.permit({ account_attributes: [:username] }, :email, :password, :password_confirmation, :invite_code)
+      u.permit({ account_attributes: [:username] }, :email, :password, :password_confirmation)
    end
  end
@@ -38,32 +34,12 @@ class Auth::RegistrationsController < Devise::RegistrationsController
    new_user_session_path
  end
  def after_update_path_for(_resource)
    edit_user_registration_path
  end
  def check_enabled_registrations
-    redirect_to root_path if single_user_mode? || !allowed_registrations?
+    redirect_to root_path if single_user_mode? || !Setting.open_registrations
  end
  def allowed_registrations?
    Setting.open_registrations || (invite_code.present? && Invite.find_by(code: invite_code)&.valid_for_use?)
  end
  def invite_code
    if params[:user]
      params[:user][:invite_code]
    else
      params[:invite_code]
    end
  end
  private
  def set_pack
    use_pack %w(edit update).include?(action_name) ? 'admin' : 'auth'
  end
  def set_instance_presenter
    @instance_presenter = InstancePresenter.new
  end
--- a/app/controllers/auth/sessions_controller.rb
+++ b/app/controllers/auth/sessions_controller.rb
@@ -8,7 +8,6 @@ class Auth::SessionsController < Devise::SessionsController
  skip_before_action :require_no_authentication, only: [:create]
  skip_before_action :check_suspension, only: [:destroy]
  prepend_before_action :authenticate_with_two_factor, if: :two_factor_enabled?, only: [:create]
  prepend_before_action :set_pack
  before_action :set_instance_presenter, only: [:new]
  def create
@@ -63,7 +62,7 @@ class Auth::SessionsController < Devise::SessionsController
    if user_params[:otp_attempt].present? && session[:otp_user_id]
      authenticate_with_two_factor_via_otp(user)
-    elsif user&.valid_password?(user_params[:password])
+    elsif user && user.valid_password?(user_params[:password])
      prompt_for_two_factor(user)
    end
  end
@@ -86,10 +85,6 @@ class Auth::SessionsController < Devise::SessionsController
  private
  def set_pack
    use_pack 'auth'
  end
  def set_instance_presenter
    @instance_presenter = InstancePresenter.new
  end
--- a/app/controllers/authorize_follows_controller.rb
+++ b/app/controllers/authorize_follows_controller.rb
@@ -4,8 +4,6 @@ class AuthorizeFollowsController < ApplicationController
  layout 'modal'
  before_action :authenticate_user!
  before_action :set_pack
  before_action :set_body_classes
  def show
    @account = located_account || render(:error)
@@ -25,10 +23,6 @@ class AuthorizeFollowsController < ApplicationController
  private
  def set_pack
    use_pack 'modal'
  end
  def follow_attempt
    FollowService.new.call(current_account, acct_without_prefix)
  end
@@ -64,8 +58,4 @@ class AuthorizeFollowsController < ApplicationController
  def acct_params
    params.fetch(:acct, '')
  end
  def set_body_classes
    @body_classes = 'modal-layout'
  end
 end
--- a/app/controllers/concerns/accountable_concern.rb
+++ b/app/controllers/concerns/accountable_concern.rb
@@ -1,9 +0,0 @@
 # frozen_string_literal: true
 module AccountableConcern
  extend ActiveSupport::Concern
  def log_action(action, target)
    Admin::ActionLog.create(account: current_account, action: action, target: target)
  end
 end
--- a/app/controllers/concerns/authorization.rb
+++ b/app/controllers/concerns/authorization.rb
@@ -2,7 +2,6 @@
 module Authorization
  extend ActiveSupport::Concern
  include Pundit
  def pundit_user
--- a/app/controllers/concerns/rate_limit_headers.rb
+++ b/app/controllers/concerns/rate_limit_headers.rb
@@ -44,8 +44,7 @@ module RateLimitHeaders
  end
  def api_throttle_data
-    most_limited_type, = request.env['rack.attack.throttle_data'].min_by { |_, v| v[:limit] }
+    request.env['rack.attack.throttle_data']['api']
    request.env['rack.attack.throttle_data'][most_limited_type]
  end
  def request_time
--- a/app/controllers/concerns/user_tracking_concern.rb
+++ b/app/controllers/concerns/user_tracking_concern.rb
@@ -17,7 +17,6 @@ module UserTrackingConcern
    # Mark as signed-in today
    current_user.update_tracked_fields!(request)
    ActivityTracker.record('activity:logins', current_user.id)
    # Regenerate feed if needed
    regenerate_feed! if user_needs_feed_update?
--- a/app/controllers/emojis_controller.rb
+++ b/app/controllers/emojis_controller.rb
@@ -2,16 +2,14 @@
 class EmojisController < ApplicationController
  before_action :set_emoji
  before_action :set_cache_headers
  def show
    respond_to do |format|
      format.json do
-        skip_session!
+        render json: @emoji,
-
+               serializer: ActivityPub::EmojiSerializer,
-        render_cached_json(['activitypub', 'emoji', @emoji.cache_key], content_type: 'application/activity+json') do
+               adapter: ActivityPub::Adapter,
-          ActiveModelSerializers::SerializableResource.new(@emoji, serializer: ActivityPub::EmojiSerializer, adapter: ActivityPub::Adapter)
+               content_type: 'application/activity+json'
        end
      end
    end
  end
--- a/app/controllers/follower_accounts_controller.rb
+++ b/app/controllers/follower_accounts_controller.rb
@@ -7,9 +7,7 @@ class FollowerAccountsController < ApplicationController
    @follows = Follow.where(target_account: @account).recent.page(params[:page]).per(FOLLOW_PER_PAGE).preload(:account)
    respond_to do |format|
-      format.html do
+      format.html
        use_pack 'public'
      end
      format.json do
        render json: collection_presenter,
--- a/app/controllers/following_accounts_controller.rb
+++ b/app/controllers/following_accounts_controller.rb
@@ -7,9 +7,7 @@ class FollowingAccountsController < ApplicationController
    @follows = Follow.where(account: @account).recent.page(params[:page]).per(FOLLOW_PER_PAGE).preload(:target_account)
    respond_to do |format|
-      format.html do
+      format.html
        use_pack 'public'
      end
      format.json do
        render json: collection_presenter,
--- a/app/controllers/home_controller.rb
+++ b/app/controllers/home_controller.rb
@@ -2,11 +2,11 @@
 class HomeController < ApplicationController
  before_action :authenticate_user!
  before_action :set_pack
  before_action :set_initial_state_json
  def index
    @body_classes = 'app-body'
    @frontend     = (params[:frontend] and Rails.configuration.x.available_frontends.include? params[:frontend] + '.js') ? params[:frontend] : 'mastodon'
  end
  private
@@ -38,10 +38,6 @@ class HomeController < ApplicationController
    redirect_to(default_redirect_path)
  end
  def set_pack
    use_pack 'home'
  end
  def set_initial_state_json
    serializable_resource = ActiveModelSerializers::SerializableResource.new(InitialStatePresenter.new(initial_state_params), serializer: InitialStateSerializer)
    @initial_state_json   = serializable_resource.to_json
--- a/app/controllers/invites_controller.rb
+++ b/app/controllers/invites_controller.rb
@@ -1,48 +0,0 @@
 # frozen_string_literal: true
 class InvitesController < ApplicationController
  include Authorization
  layout 'admin'
  before_action :authenticate_user!
  before_action :set_pack
  def index
    authorize :invite, :create?
    @invites = Invite.where(user: current_user)
    @invite  = Invite.new(expires_in: 1.day.to_i)
  end
  def create
    authorize :invite, :create?
    @invite      = Invite.new(resource_params)
    @invite.user = current_user
    if @invite.save
      redirect_to invites_path
    else
      @invites = Invite.where(user: current_user)
      render :index
    end
  end
  def destroy
    @invite = Invite.where(user: current_user).find(params[:id])
    authorize @invite, :destroy?
    @invite.expire!
    redirect_to invites_path
  end
  private
  def set_pack
    use_pack 'settings'
  end
  def resource_params
    params.require(:invite).permit(:max_uses, :expires_in)
  end
 end
--- a/app/controllers/oauth/authorizations_controller.rb
+++ b/app/controllers/oauth/authorizations_controller.rb
@@ -5,7 +5,6 @@ class Oauth::AuthorizationsController < Doorkeeper::AuthorizationsController
  before_action :store_current_location
  before_action :authenticate_resource_owner!
  before_action :set_pack
  include Localized
@@ -14,8 +13,4 @@ class Oauth::AuthorizationsController < Doorkeeper::AuthorizationsController
  def store_current_location
    store_location_for(:user, request.url)
  end
  def set_pack
    use_pack 'auth'
  end
 end
--- a/app/controllers/oauth/authorized_applications_controller.rb
+++ b/app/controllers/oauth/authorized_applications_controller.rb
@@ -5,7 +5,6 @@ class Oauth::AuthorizedApplicationsController < Doorkeeper::AuthorizedApplicatio
  before_action :store_current_location
  before_action :authenticate_resource_owner!
  before_action :set_pack
  include Localized
@@ -14,8 +13,4 @@ class Oauth::AuthorizedApplicationsController < Doorkeeper::AuthorizedApplicatio
  def store_current_location
    store_location_for(:user, request.url)
  end
  def set_pack
    use_pack 'settings'
  end
 end
--- a/app/controllers/remote_follow_controller.rb
+++ b/app/controllers/remote_follow_controller.rb
@@ -4,7 +4,6 @@ class RemoteFollowController < ApplicationController
  layout 'modal'
  before_action :set_account
  before_action :set_pack
  before_action :gone, if: :suspended_account?
  def new
@@ -32,10 +31,6 @@ class RemoteFollowController < ApplicationController
    { acct: session[:remote_follow] }
  end
  def set_pack
    use_pack 'modal'
  end
  def set_account
    @account = Account.find_local!(params[:account_username])
  end
@@ -43,8 +38,4 @@ class RemoteFollowController < ApplicationController
  def suspended_account?
    @account.suspended?
  end
  def set_body_classes
    @body_classes = 'modal-layout'
  end
 end
--- a/app/controllers/settings/applications_controller.rb
+++ b/app/controllers/settings/applications_controller.rb
@@ -1,7 +1,9 @@
 # frozen_string_literal: true
-class Settings::ApplicationsController < Settings::BaseController
+class Settings::ApplicationsController < ApplicationController
  layout 'admin'
  before_action :authenticate_user!
  before_action :set_application, only: [:show, :update, :destroy, :regenerate]
  before_action :prepare_scopes, only: [:create, :update]
--- a/app/controllers/settings/base_controller.rb
+++ b/app/controllers/settings/base_controller.rb
@@ -1,12 +0,0 @@
 # frozen_string_literal: true
 class Settings::BaseController < ApplicationController
  layout 'admin'
  before_action :authenticate_user!
  before_action :set_pack
  def set_pack
    use_pack 'settings'
  end
 end
--- a/app/controllers/settings/deletes_controller.rb
+++ b/app/controllers/settings/deletes_controller.rb
@@ -1,8 +1,10 @@
 # frozen_string_literal: true
-class Settings::DeletesController < Settings::BaseController
+class Settings::DeletesController < ApplicationController
  layout 'admin'
-  prepend_before_action :check_enabled_deletion
+  before_action :check_enabled_deletion
  before_action :authenticate_user!
  def show
    @confirmation = Form::DeleteConfirmation.new
--- a/app/controllers/settings/exports_controller.rb
+++ b/app/controllers/settings/exports_controller.rb
@@ -1,6 +1,10 @@
 # frozen_string_literal: true
-class Settings::ExportsController < Settings::BaseController
+class Settings::ExportsController < ApplicationController
  layout 'admin'
  before_action :authenticate_user!
  def show
    @export = Export.new(current_account)
  end
--- a/app/controllers/settings/flavours_controller.rb
+++ b/app/controllers/settings/flavours_controller.rb
@@ -1,35 +0,0 @@
 # frozen_string_literal: true
 class Settings::FlavoursController < Settings::BaseController
  def index
    redirect_to action: 'show', flavour: current_flavour
  end
  def show
    unless Themes.instance.flavours.include?(params[:flavour]) or params[:flavour] == current_flavour
      redirect_to action: 'show', flavour: current_flavour
    end
    @listing = Themes.instance.flavours
    @selected = params[:flavour]
  end
  def update
    user_settings.update(user_settings_params(params[:flavour]).to_h)
    redirect_to action: 'show', flavour: params[:flavour]
  end
  private
  def user_settings
    UserSettingsDecorator.new(current_user)
  end
  def user_settings_params(flavour)
    params.require(:user).merge({ setting_flavour: flavour }).permit(
      :setting_flavour,
      :setting_skin
    )
  end
 end
--- a/app/controllers/settings/follower_domains_controller.rb
+++ b/app/controllers/settings/follower_domains_controller.rb
@@ -2,7 +2,11 @@
 require 'sidekiq-bulk'
-class Settings::FollowerDomainsController < Settings::BaseController
+class Settings::FollowerDomainsController < ApplicationController
  layout 'admin'
  before_action :authenticate_user!
  def show
    @account = current_account
    @domains = current_account.followers.reorder('MIN(follows.id) DESC').group('accounts.domain').select('accounts.domain, count(accounts.id) as accounts_from_domain').page(params[:page]).per(10)
--- a/app/controllers/settings/imports_controller.rb
+++ b/app/controllers/settings/imports_controller.rb
@@ -1,6 +1,9 @@
 # frozen_string_literal: true
-class Settings::ImportsController < Settings::BaseController
+class Settings::ImportsController < ApplicationController
  layout 'admin'
  before_action :authenticate_user!
  before_action :set_account
  def show
--- a/app/controllers/settings/keyword_mutes_controller.rb
+++ b/app/controllers/settings/keyword_mutes_controller.rb
@@ -1,61 +0,0 @@
 # frozen_string_literal: true
 class Settings::KeywordMutesController < Settings::BaseController
  before_action :load_keyword_mute, only: [:edit, :update, :destroy]
  def index
    @keyword_mutes = paginated_keyword_mutes_for_account
  end
  def new
    @keyword_mute = keyword_mutes_for_account.build
  end
  def create
    @keyword_mute = keyword_mutes_for_account.create(keyword_mute_params)
    if @keyword_mute.persisted?
      redirect_to settings_keyword_mutes_path, notice: I18n.t('generic.changes_saved_msg')
    else
      render :new
    end
  end
  def update
    if @keyword_mute.update(keyword_mute_params)
      redirect_to settings_keyword_mutes_path, notice: I18n.t('generic.changes_saved_msg')
    else
      render :edit
    end
  end
  def destroy
    @keyword_mute.destroy!
    redirect_to settings_keyword_mutes_path, notice: I18n.t('generic.changes_saved_msg')
  end
  def destroy_all
    keyword_mutes_for_account.delete_all
    redirect_to settings_keyword_mutes_path, notice: I18n.t('generic.changes_saved_msg')
  end
  private
  def keyword_mutes_for_account
    Glitch::KeywordMute.where(account: current_account)
  end
  def load_keyword_mute
    @keyword_mute = keyword_mutes_for_account.find(params[:id])
  end
  def keyword_mute_params
    params.require(:keyword_mute).permit(:keyword, :whole_word)
  end
  def paginated_keyword_mutes_for_account
    keyword_mutes_for_account.order(:keyword).page params[:page]
  end
 end
--- a/app/controllers/settings/migrations_controller.rb
+++ b/app/controllers/settings/migrations_controller.rb
@@ -1,34 +0,0 @@
 # frozen_string_literal: true
 class Settings::MigrationsController < ApplicationController
  layout 'admin'
  before_action :authenticate_user!
  def show
    @migration = Form::Migration.new(account: current_account.moved_to_account)
  end
  def update
    @migration = Form::Migration.new(resource_params)
    if @migration.valid? && migration_account_changed?
      current_account.update!(moved_to_account: @migration.account)
      ActivityPub::UpdateDistributionWorker.perform_async(current_account.id)
      redirect_to settings_migration_path, notice: I18n.t('migrations.updated_msg')
    else
      render :show
    end
  end
  private
  def resource_params
    params.require(:migration).permit(:acct)
  end
  def migration_account_changed?
    current_account.moved_to_account_id != @migration.account&.id &&
      current_account.id != @migration.account&.id
  end
 end
--- a/app/controllers/settings/notifications_controller.rb
+++ b/app/controllers/settings/notifications_controller.rb
@@ -1,6 +1,10 @@
 # frozen_string_literal: true
-class Settings::NotificationsController < Settings::BaseController
+class Settings::NotificationsController < ApplicationController
  layout 'admin'
  before_action :authenticate_user!
  def show; end
  def update
@@ -22,7 +26,7 @@ class Settings::NotificationsController < Settings::BaseController
  def user_settings_params
    params.require(:user).permit(
      notification_emails: %i(follow follow_request reblog favourite mention digest),
-      interactions: %i(must_be_follower must_be_following must_be_following_dm)
+      interactions: %i(must_be_follower must_be_following)
    )
  end
 end
--- a/app/controllers/settings/preferences_controller.rb
+++ b/app/controllers/settings/preferences_controller.rb
@@ -1,6 +1,10 @@
 # frozen_string_literal: true
-class Settings::PreferencesController < Settings::BaseController
+class Settings::PreferencesController < ApplicationController
  layout 'admin'
  before_action :authenticate_user!
  def show; end
  def update
@@ -33,12 +37,12 @@ class Settings::PreferencesController < Settings::BaseController
      :setting_default_sensitive,
      :setting_unfollow_modal,
      :setting_boost_modal,
      :setting_favourite_modal,
      :setting_delete_modal,
      :setting_auto_play_gif,
      :setting_reduce_motion,
      :setting_system_font_ui,
      :setting_noindex,
      :setting_theme,
      notification_emails: %i(follow follow_request reblog favourite mention digest),
      interactions: %i(must_be_follower must_be_following)
    )
--- a/app/controllers/settings/profiles_controller.rb
+++ b/app/controllers/settings/profiles_controller.rb
@@ -1,8 +1,11 @@
 # frozen_string_literal: true
-class Settings::ProfilesController < Settings::BaseController
+class Settings::ProfilesController < ApplicationController
  include ObfuscateFilename
  layout 'admin'
  before_action :authenticate_user!
  before_action :set_account
  obfuscate_filename [:account, :avatar]
--- a/app/controllers/settings/sessions_controller.rb
+++ b/app/controllers/settings/sessions_controller.rb
@@ -1,6 +1,5 @@
 # frozen_string_literal: true
 #  Intentionally does not inherit from BaseController
 class Settings::SessionsController < ApplicationController
  before_action :set_session, only: :destroy
--- a/app/controllers/settings/two_factor_authentication/confirmations_controller.rb
+++ b/app/controllers/settings/two_factor_authentication/confirmations_controller.rb
@@ -2,7 +2,11 @@
 module Settings
  module TwoFactorAuthentication
-    class ConfirmationsController < BaseController
+    class ConfirmationsController < ApplicationController
      layout 'admin'
      before_action :authenticate_user!
      def new
        prepare_two_factor_form
      end
--- a/app/controllers/settings/two_factor_authentication/recovery_codes_controller.rb
+++ b/app/controllers/settings/two_factor_authentication/recovery_codes_controller.rb
@@ -2,7 +2,11 @@
 module Settings
  module TwoFactorAuthentication
-    class RecoveryCodesController < BaseController
+    class RecoveryCodesController < ApplicationController
      layout 'admin'
      before_action :authenticate_user!
      def create
        @recovery_codes = current_user.generate_otp_backup_codes!
        current_user.save!
--- a/app/controllers/settings/two_factor_authentications_controller.rb
+++ b/app/controllers/settings/two_factor_authentications_controller.rb
@@ -1,7 +1,10 @@
 # frozen_string_literal: true
 module Settings
-  class TwoFactorAuthenticationsController < BaseController
+  class TwoFactorAuthenticationsController < ApplicationController
    layout 'admin'
    before_action :authenticate_user!
    before_action :verify_otp_required, only: [:create]
    def show
--- a/app/controllers/shares_controller.rb
+++ b/app/controllers/shares_controller.rb
@@ -4,7 +4,6 @@ class SharesController < ApplicationController
  layout 'modal'
  before_action :authenticate_user!
  before_action :set_pack
  before_action :set_body_classes
  def show
@@ -25,11 +24,7 @@ class SharesController < ApplicationController
    }
  end
  def set_pack
    use_pack 'share'
  end
  def set_body_classes
-    @body_classes = 'modal-layout compose-standalone'
+    @body_classes = 'compose-standalone'
  end
 end
--- a/app/controllers/statuses_controller.rb
+++ b/app/controllers/statuses_controller.rb
@@ -10,12 +10,10 @@ class StatusesController < ApplicationController
  before_action :set_link_headers
  before_action :check_account_suspension
  before_action :redirect_to_original, only: [:show]
  before_action :set_cache_headers
  def show
    respond_to do |format|
      format.html do
        use_pack 'public'
        @ancestors   = @status.reply? ? cache_collection(@status.ancestors(current_account), Status) : []
        @descendants = cache_collection(@status.descendants(current_account), Status)
@@ -23,25 +21,22 @@ class StatusesController < ApplicationController
      end
      format.json do
-        skip_session! unless @stream_entry.hidden?
+        render json: @status,
-
+               serializer: ActivityPub::NoteSerializer,
-        render_cached_json(['activitypub', 'note', @status.cache_key], content_type: 'application/activity+json', public: !@stream_entry.hidden?) do
+               adapter: ActivityPub::Adapter,
-          ActiveModelSerializers::SerializableResource.new(@status, serializer: ActivityPub::NoteSerializer, adapter: ActivityPub::Adapter)
+               content_type: 'application/activity+json'
        end
      end
    end
  end
  def activity
-    skip_session!
+    render json: @status,
-
+           serializer: ActivityPub::ActivitySerializer,
-    render_cached_json(['activitypub', 'activity', @status.cache_key], content_type: 'application/activity+json', public: !@stream_entry.hidden?) do
+           adapter: ActivityPub::Adapter,
-      ActiveModelSerializers::SerializableResource.new(@status, serializer: ActivityPub::ActivitySerializer, adapter: ActivityPub::Adapter)
+           content_type: 'application/activity+json'
    end
  end
  def embed
    use_pack 'embed'
    response.headers['X-Frame-Options'] = 'ALLOWALL'
    render 'stream_entries/embed', layout: 'embedded'
  end
--- a/app/controllers/stream_entries_controller.rb
+++ b/app/controllers/stream_entries_controller.rb
@@ -14,7 +14,6 @@ class StreamEntriesController < ApplicationController
  def show
    respond_to do |format|
      format.html do
        use_pack 'public'
        @ancestors   = @stream_entry.activity.reply? ? cache_collection(@stream_entry.activity.ancestors(current_account), Status) : []
        @descendants = cache_collection(@stream_entry.activity.descendants(current_account), Status)
      end
--- a/app/controllers/tags_controller.rb
+++ b/app/controllers/tags_controller.rb
@@ -9,7 +9,6 @@ class TagsController < ApplicationController
    respond_to do |format|
      format.html do
        use_pack 'about'
        serializable_resource = ActiveModelSerializers::SerializableResource.new(InitialStatePresenter.new(initial_state_params), serializer: InitialStateSerializer)
        @initial_state_json   = serializable_resource.to_json
      end
--- a/app/controllers/well_known/host_meta_controller.rb
+++ b/app/controllers/well_known/host_meta_controller.rb
@@ -1,19 +1,15 @@
 # frozen_string_literal: true
 module WellKnown
-  class HostMetaController < ActionController::Base
+  class HostMetaController < ApplicationController
    include RoutingHelper
    before_action { response.headers['Vary'] = 'Accept' }
    def show
      @webfinger_template = "#{webfinger_url}?resource={uri}"
      respond_to do |format|
        format.xml { render content_type: 'application/xrd+xml' }
      end
      expires_in(3.days, public: true)
    end
  end
 end
--- a/app/controllers/well_known/webfinger_controller.rb
+++ b/app/controllers/well_known/webfinger_controller.rb
@@ -1,25 +1,23 @@
 # frozen_string_literal: true
 module WellKnown
-  class WebfingerController < ActionController::Base
+  class WebfingerController < ApplicationController
    include RoutingHelper
    before_action { response.headers['Vary'] = 'Accept' }
    def show
      @account = Account.find_local!(username_from_resource)
      @canonical_account_uri = @account.to_webfinger_s
      @magic_key = pem_to_magic_key(@account.keypair.public_key)
      respond_to do |format|
        format.any(:json, :html) do
-          render json: @account, serializer: WebfingerSerializer, content_type: 'application/jrd+json'
+          render formats: :json, content_type: 'application/jrd+json'
        end
        format.xml do
          render content_type: 'application/xrd+xml'
        end
      end
      expires_in(3.days, public: true)
    rescue ActiveRecord::RecordNotFound
      head 404
    end
@@ -37,6 +35,21 @@ module WellKnown
      WebfingerResource.new(resource_user).username
    end
    def pem_to_magic_key(public_key)
      modulus, exponent = [public_key.n, public_key.e].map do |component|
        result = []
        until component.zero?
          result << [component % 256].pack('C')
          component >>= 8
        end
        result.reverse.join
      end
      (['RSA'] + [modulus, exponent].map { |n| Base64.urlsafe_encode64(n) }).join('.')
    end
    def resource_param
      params.require(:resource)
    end
--- a/app/helpers/admin/action_logs_helper.rb
+++ b/app/helpers/admin/action_logs_helper.rb
@@ -1,103 +0,0 @@
 # frozen_string_literal: true
 module Admin::ActionLogsHelper
  def log_target(log)
    if log.target
      linkable_log_target(log.target)
    else
      log_target_from_history(log.target_type, log.recorded_changes)
    end
  end
  def linkable_log_target(record)
    case record.class.name
    when 'Account'
      link_to record.acct, admin_account_path(record.id)
    when 'User'
      link_to record.account.acct, admin_account_path(record.account_id)
    when 'CustomEmoji'
      record.shortcode
    when 'Report'
      link_to "##{record.id}", admin_report_path(record)
    when 'DomainBlock', 'EmailDomainBlock'
      link_to record.domain, "https://#{record.domain}"
    when 'Status'
      link_to record.account.acct, TagManager.instance.url_for(record)
    end
  end
  def log_target_from_history(type, attributes)
    case type
    when 'CustomEmoji'
      attributes['shortcode']
    when 'DomainBlock', 'EmailDomainBlock'
      link_to attributes['domain'], "https://#{attributes['domain']}"
    when 'Status'
      tmp_status = Status.new(attributes)
      link_to tmp_status.account&.acct || "##{tmp_status.account_id}", TagManager.instance.url_for(tmp_status)
    end
  end
  def relevant_log_changes(log)
    if log.target_type == 'CustomEmoji' && [:enable, :disable, :destroy].include?(log.action)
      log.recorded_changes.slice('domain')
    elsif log.target_type == 'CustomEmoji' && log.action == :update
      log.recorded_changes.slice('domain', 'visible_in_picker')
    elsif log.target_type == 'User' && [:promote, :demote].include?(log.action)
      log.recorded_changes.slice('moderator', 'admin')
    elsif log.target_type == 'DomainBlock'
      log.recorded_changes.slice('severity', 'reject_media')
    elsif log.target_type == 'Status' && log.action == :update
      log.recorded_changes.slice('sensitive')
    end
  end
  def log_extra_attributes(hash)
    safe_join(hash.to_a.map { |key, value| safe_join([content_tag(:span, key, class: 'diff-key'), '=', log_change(value)]) }, ' ')
  end
  def log_change(val)
    return content_tag(:span, val, class: 'diff-neutral') unless val.is_a?(Array)
    safe_join([content_tag(:span, val.first, class: 'diff-old'), content_tag(:span, val.last, class: 'diff-new')], '→')
  end
  def icon_for_log(log)
    case log.target_type
    when 'Account', 'User'
      'user'
    when 'CustomEmoji'
      'file'
    when 'Report'
      'flag'
    when 'DomainBlock'
      'lock'
    when 'EmailDomainBlock'
      'envelope'
    when 'Status'
      'pencil'
    end
  end
  def class_for_log_icon(log)
    case log.action
    when :enable, :unsuspend, :unsilence, :confirm, :promote, :resolve
      'positive'
    when :create
      opposite_verbs?(log) ? 'negative' : 'positive'
    when :update, :reset_password, :disable_2fa, :memorialize
      'neutral'
    when :demote, :silence, :disable, :suspend
      'negative'
    when :destroy
      opposite_verbs?(log) ? 'positive' : 'negative'
    else
      ''
    end
  end
  private
  def opposite_verbs?(log)
    %w(DomainBlock EmailDomainBlock).include?(log.target_type)
  end
 end
--- a/app/helpers/admin/filter_helper.rb
+++ b/app/helpers/admin/filter_helper.rb
@@ -1,12 +1,10 @@
 # frozen_string_literal: true
 module Admin::FilterHelper
-  ACCOUNT_FILTERS      = %i(local remote by_domain silenced suspended recent username display_name email ip staff).freeze
+  ACCOUNT_FILTERS = %i(local remote by_domain silenced suspended recent username display_name email ip).freeze
-  REPORT_FILTERS       = %i(resolved account_id target_account_id).freeze
+  REPORT_FILTERS = %i(resolved account_id target_account_id).freeze
  INVITE_FILTER        = %i(available expired).freeze
  CUSTOM_EMOJI_FILTERS = %i(local remote by_domain shortcode).freeze
-  FILTERS = ACCOUNT_FILTERS + REPORT_FILTERS + INVITE_FILTER + CUSTOM_EMOJI_FILTERS
+  FILTERS = ACCOUNT_FILTERS + REPORT_FILTERS
  def filter_link_to(text, link_to_params, link_class_params = link_to_params)
    new_url = filtered_url_for(link_to_params)
@@ -14,13 +12,13 @@ module Admin::FilterHelper
    link_to text, new_url, class: filter_link_class(new_class)
  end
-  def table_link_to(icon, text, path, **options)
+  def table_link_to(icon, text, path, options = {})
    link_to safe_join([fa_icon(icon), text]), path, options.merge(class: 'table-action-link')
  end
  def selected?(more_params)
    new_url = filtered_url_for(more_params)
-    filter_link_class(new_url) == 'selected'
+    filter_link_class(new_url) == 'selected' ? true : false
  end
  private
--- a/app/helpers/application_helper.rb
+++ b/app/helpers/application_helper.rb
@@ -5,7 +5,7 @@ module ApplicationHelper
    current_page?(path) ? 'active' : ''
  end
-  def active_link_to(label, path, **options)
+  def active_link_to(label, path, options = {})
    link_to label, path, options.merge(class: active_nav_class(path))
  end
@@ -35,11 +35,6 @@ module ApplicationHelper
    Rails.env.production? ? site_title : "#{site_title} (Dev)"
  end
  def can?(action, record)
    return false if record.nil?
    policy(record).public_send("#{action}?")
  end
  def fa_icon(icon, attributes = {})
    class_names = attributes[:class]&.split(' ') || []
    class_names << 'fa'
@@ -48,10 +43,6 @@ module ApplicationHelper
    content_tag(:i, nil, attributes.merge(class: class_names.join(' ')))
  end
  def custom_emoji_tag(custom_emoji)
    image_tag(custom_emoji.image.url, class: 'emojione', alt: ":#{custom_emoji.shortcode}:")
  end
  def opengraph(property, content)
    tag(:meta, content: content, property: property)
  end
--- a/app/helpers/jsonld_helper.rb
+++ b/app/helpers/jsonld_helper.rb
@@ -9,28 +9,6 @@ module JsonLdHelper
    value.is_a?(Array) ? value.first : value
  end
  # The url attribute can be a string, an array of strings, or an array of objects.
  # The objects could include a mimeType. Not-included mimeType means it's text/html.
  def url_to_href(value, preferred_type = nil)
    single_value = if value.is_a?(Array) && !value.first.is_a?(String)
                     value.find { |link| preferred_type.nil? || ((link['mimeType'].presence || 'text/html') == preferred_type) }
                   elsif value.is_a?(Array)
                     value.first
                   else
                     value
                   end
    if single_value.nil? || single_value.is_a?(String)
      single_value
    else
      single_value['href']
    end
  end
  def as_array(value)
    value.is_a?(Array) ? value : [value]
  end
  def value_or_id(value)
    value.is_a?(String) || value.nil? ? value : value['id']
  end
--- a/app/helpers/routing_helper.rb
+++ b/app/helpers/routing_helper.rb
@@ -4,7 +4,6 @@ module RoutingHelper
  extend ActiveSupport::Concern
  include Rails.application.routes.url_helpers
  include ActionView::Helpers::AssetTagHelper
  include Webpacker::Helper
  included do
    def default_url_options
@@ -12,16 +11,12 @@ module RoutingHelper
    end
  end
-  def full_asset_url(source, **options)
+  def full_asset_url(source, options = {})
    source = ActionController::Base.helpers.asset_url(source, options) unless use_storage?
    URI.join(root_url, source).to_s
  end
  def full_pack_url(source, **options)
    full_asset_url(asset_pack_path(source, options))
  end
  private
  def use_storage?
--- a/app/helpers/settings/keyword_mutes_helper.rb
+++ b/app/helpers/settings/keyword_mutes_helper.rb
@@ -1,2 +0,0 @@
 module Settings::KeywordMutesHelper
 end
--- a/app/helpers/settings_helper.rb
+++ b/app/helpers/settings_helper.rb
@@ -10,7 +10,6 @@ module SettingsHelper
    eo: 'Esperanto',
    es: 'Español',
    fa: 'فارسی',
    gl: 'Galego',
    fi: 'Suomi',
    fr: 'Français',
    he: 'עברית',
@@ -28,9 +27,6 @@ module SettingsHelper
    pt: 'Português',
    'pt-BR': 'Português do Brasil',
    ru: 'Русский',
    sk: 'Slovensky',
    sr: 'Српски',
    'sr-Latn': 'Srpski (latinica)',
    sv: 'Svenska',
    th: 'ภาษาไทย',
    tr: 'Türkçe',
--- a/app/javascript/core/common.js
+++ b/app/javascript/core/common.js
@@ -1,8 +0,0 @@
 //  This file will be loaded on all pages, regardless of theme.
 import { start } from 'rails-ujs';
 import 'font-awesome/css/font-awesome.css';
 require.context('../images/', true);
 start();
--- a/app/javascript/core/embed.js
+++ b/app/javascript/core/embed.js
@@ -1,23 +0,0 @@
 //  This file will be loaded on embed pages, regardless of theme.
 window.addEventListener('message', e => {
  const data = e.data || {};
  if (!window.parent || data.type !== 'setHeight') {
    return;
  }
  function setEmbedHeight () {
    window.parent.postMessage({
      type: 'setHeight',
      id: data.id,
      height: document.getElementsByTagName('html')[0].scrollHeight,
    }, '*');
  };
  if (['interactive', 'complete'].includes(document.readyState)) {
    setEmbedHeight();
  } else {
    document.addEventListener('DOMContentLoaded', setEmbedHeight);
  }
 });
--- a/app/javascript/core/public.js
+++ b/app/javascript/core/public.js
@@ -1,25 +0,0 @@
 //  This file will be loaded on public pages, regardless of theme.
 const { delegate } = require('rails-ujs');
 delegate(document, '.webapp-btn', 'click', ({ target, button }) => {
  if (button !== 0) {
    return true;
  }
  window.location.href = target.href;
  return false;
 });
 delegate(document, '.status__content__spoiler-link', 'click', ({ target }) => {
  const contentEl = target.parentNode.parentNode.querySelector('.e-content');
  if (contentEl.style.display === 'block') {
    contentEl.style.display = 'none';
    target.parentNode.style.marginBottom = 0;
  } else {
    contentEl.style.display = 'block';
    target.parentNode.style.marginBottom = null;
  }
  return false;
 });
--- a/Show More
+++ b/Show More
Author	SHA1	Message	Date
beatrix-bitrot	1ba51a4c35	add test	2017-10-19 22:00:03 +00:00
beatrix-bitrot	b10608299e	hide mentions of muted accounts (in home col) also cleans up some old crap	2017-10-19 21:38:41 +00:00