bb2212d51e
Add invoice HMAC
...
This prevents entities which know the invoice hash (like all LN nodes on the payment path) from using the invoice hash on SN.
Only the user which created the invoice knows the HMAC and thus can use the invoice hash.
2023-08-10 07:10:07 +02:00
318088179a
Rename to useInvoiceable
2023-08-10 03:34:38 +02:00
f2f09b22c4
Fix invoice amount for comments
2023-07-30 23:45:08 +02:00
fd8510d59f
Use payment hash instead of invoice id as proof of payment
...
Our invoice IDs can be enumerated.
So there is a - even though very rare - chance that an attacker could find a paid invoice which is not used yet and use it for himself.
Random payment hashes prevent this.
Also, since we delete invoices after use, using database IDs as proof of payments are not suitable.
If a user tells us an invoice ID after we deleted it, we can no longer tell if the invoice was paid or not since the LN node only knows about payment hashes but nothing about the database IDs.
2023-07-30 23:45:07 +02:00
74893b09dd
Add anon comments and posts (link, discussion, poll)
2023-07-30 23:45:07 +02:00
ab2046ab0b
fix issues with new linting
2023-07-25 09:14:45 -05:00
6407455def
upgrade react-bootstrap
2023-07-24 13:53:53 -05:00
59f7b6ff26
Revert "Revert "shield your eyes; massive, squashed refactor; nextjs/react/react-dom/apollo upgrades""
...
This reverts commit 18910fa2ed
2023-07-23 10:08:43 -05:00
18910fa2ed
Revert "shield your eyes; massive, squashed refactor; nextjs/react/react-dom/apollo upgrades"
...
This reverts commit d0314ab73c
2023-07-23 09:16:12 -05:00
d0314ab73c
shield your eyes; massive, squashed refactor; nextjs/react/react-dom/apollo upgrades
2023-07-21 17:33:11 -05:00
431947eeee
different freebie rules
2023-06-20 12:55:45 -05:00
5bb6b5f2e7
placeholder when there aren't comments
2023-05-10 19:41:17 -05:00
183201a1b8
don't autofocus top-level reply
2023-02-24 10:08:15 -06:00
5d572c2fe3
Autofocus reply inputs ( #242 )
2023-02-24 09:52:09 -06:00
4cae1ae230
reuse validation on server
2023-02-08 13:39:53 -06:00
e13e37744e
stackernews bounties ( #227 )
...
bounties
2023-01-26 10:11:55 -06:00
a1690ed511
improve freebie wrt boost, get off free earlier
2022-11-01 14:32:56 -05:00
d9d426e5c3
add freebies
2022-09-27 16:19:15 -05:00
297270f34d
inform user when there are new comments
2022-09-02 11:53:44 -05:00
04d7e9c0ee
update cache of ancestors on comment and upvote
2022-09-01 16:53:39 -05:00
f65f6c1b28
remove meComments and clean up sats title
2022-09-01 16:20:20 -05:00
ddb4a30c4b
spam fees
2022-08-11 15:38:10 -05:00
cef8a33267
limit displayed comment depth
2022-05-17 17:09:15 -05:00
208f1b8da9
add explainer for 10x reply cost
2022-04-18 11:08:58 -05:00
89fb68f746
multiple comments with the same parent are exp in cost
2022-04-17 08:13:52 -05:00
7aa294b57e
less hasty fix preventing localStorage call on SSR
2022-01-08 09:31:37 -06:00
57f1e551a3
remove another localstorage reference on server
2022-01-07 22:22:50 -06:00
b6a530f5c4
comment draft saving
2022-01-07 12:55:40 -06:00
dd97710d71
many small design enhancements
2021-11-12 16:39:52 -06:00
b425d35e82
remove use of session where inapproriate
2021-09-24 18:04:59 -05:00
02c44dca63
refactor replies and full items
2021-09-23 15:09:07 -05:00
b4be2c613b
comment edit spagetti
2021-08-10 17:59:06 -05:00
d083845a77
auto grow textareas
2021-07-16 12:32:54 -05:00
129a80e661
1 sat action tooltip
2021-07-08 13:42:57 -05:00
605aac97ab
markdown previews
2021-07-01 18:51:58 -05:00
80ff13abd6
finish mvp
2021-05-24 19:08:56 -05:00
0eabe1463d
attempts at serializable transactions
2021-05-19 20:09:32 -05:00
84b69fc481
ranking mostly
2021-04-27 16:30:58 -05:00
c82c82bb7b
mostly clientside render
2021-04-26 19:55:48 -05:00
c626998952
attempts at voting before running into cache issues
2021-04-26 16:55:15 -05:00
ec3f6b922d
a bunch of new stuff
2021-04-22 17:14:32 -05:00
2e3824f1dc
most stuff works
2021-04-18 13:50:04 -05:00
6792d1d5ff
working comments with cache updates
2021-04-17 13:15:18 -05:00
28ed42fc29
more progress
2021-04-14 18:56:29 -05:00
ekzyis
keyan
ekzyis
Austin Kelsay