Realizing this blew my mind. Definitely more interesting than following people.
erre
joined 1 year ago
What kind of terrible markdown editor allows adding onload scripts to images though.. it's insane.
I'd be willing to bet they're using the API to make all the changes. The cookie has the jwt token. I don't believe you need the username (at least judging by the js API docs).
Looks like it's issuing a GET to https://zelensky.zip/save/{ENCODED_JWT_TOKEN_AND_NAV_FLAG}.
The ENCODED_JWT_TOKEN is from btoa(document.cookie+nav_flag) where nav_flag is essentially 'navAdmin' if the account hit is an admin or '' if the user hit is not an admin (it checks if the admin button in the nav exists). Their server is likely logging all incoming requests and they just need to do a quick decoding to get jwt tokens and a flag telling them if it's an admin account.
I'd be hesitant to visit Lemmy on a browser atm 😓
Extra content in exchange for an upvote 🤔
Yep, Lemmy is filling a Reddit-shaped hole. It's a bit different but nice.
Confirmed fixed, thank you!
If that's the case then that's a bug too, that's not a requirement in Lemmy. You can post to any community regardless of subscription.
However, I am subscribed to this community. If Connect is incorrectly requiring subscription to post then there's a bug there as well.
I was able to post here via Jerboa after all.
Try searching for https://lemdro.id/c/askandroid from vlemmy. You might be the first subscriber on that instance.
Tapping the post form submit button results in an error that says to pick one of the ten communities listed which I guess are those that horizontally scroll under the "community name" form field. So I guess I can only post to those.. not sure why it's limited. It's a bug unless I missed a new setting.
I had to create this post using Jerboa 😞
Connect version 1.0.69. Also applies to 1.0.71.
My instance restarted while browsing Lemmy. The error message output is raw html rather than a user-friendly message.
Not a huge deal but wanted to point it out.
Version 1.0.69
Connect is ridiculously stable and feature-complete for how new it is. Definitely deserves to be mentioned.
Thanks for the tip about brewing time, went with ~16 hours and it was plenty strong. Probably would've hated it at 24hrs 😅
cross-posted from: https://beehaw.org/post/911506
Turns out my passion flower plant is gonna give me fruit this year 🙂🙃🙂🙃
Turns out my passion flower plant is gonna give me fruit this year 🙂🙃🙂🙃
cross-posted from: https://beehaw.org/post/790495
This is the first year it flowers, hoping to get fruit this year.
This is the first year it flowers, hoping to get fruit this year.
view more: next ›
Looks like the instance is on the latest RC which includes the fix for the vulnerability.