From c99b89f780f9d561ac0fbc2acf61291006396071 Mon Sep 17 00:00:00 2001 From: Vyr Cossont Date: Mon, 13 Oct 2025 19:15:24 +0200 Subject: [feature] granular admin scopes for custom emojis (#4489) This PR adds admin equivalents of the `read:custom_emojis` OAuth scope: `admin:read:custom_emojis` and `admin:write:custom_emojis`. This is so tools which only touch emojis can run without other admin permissions. (`slurp emojis import` is one such tool.) I've also sorted the admin section of the scopes lists alphabetically like the non-admin section, and updated the Swagger test script to print the same command path that it actually runs. ## API compatibility Neither [Mastodon](https://docs.joinmastodon.org/api/oauth-scopes/) nor Akkoma nor Iceshrimp.NET has an equivalent scope, so there are no alternate scope names to worry about. Co-authored-by: tobi Reviewed-on: https://codeberg.org/superseriousbusiness/gotosocial/pulls/4489 Co-authored-by: Vyr Cossont Co-committed-by: Vyr Cossont --- docs/swagger.go | 12 ++++++++---- 1 file changed, 8 insertions(+), 4 deletions(-) (limited to 'docs/swagger.go') diff --git a/docs/swagger.go b/docs/swagger.go index c549a3de3..3f0ed2249 100644 --- a/docs/swagger.go +++ b/docs/swagger.go @@ -26,11 +26,13 @@ // - admin: grants admin access to everything // - admin:read: grants admin read access to everything // - admin:read:accounts: grants admin read access to accounts +// - admin:read:custom_emojis: grants admin read access to custom emojis // - admin:read:domain_allows: grants admin read access to domain_allows // - admin:read:domain_blocks: grants admin read access to domain_blocks // - admin:read:reports: grants admin read access to reports // - admin:write: grants admin write access to everything // - admin:write:accounts: grants write read access to accounts +// - admin:write:custom_emojis: grants admin write access to custom emojis // - admin:write:domain_allows: grants admin write access to domain_allows // - admin:write:domain_blocks: grants write read access to domain_blocks // - admin:write:reports: grants admin write access to reports @@ -85,13 +87,15 @@ // admin: grants admin access to everything // admin:read: grants admin read access to everything // admin:read:accounts: grants admin read access to accounts -// admin:read:domain_allows: grants admin read access to domain_allows -// admin:read:domain_blocks: grants admin read access to domain_blocks +// admin:read:custom_emojis: grants admin read access to custom emojis +// admin:read:domain_allows: grants admin read access to domain allows +// admin:read:domain_blocks: grants admin read access to domain blocks // admin:read:reports: grants admin read access to reports // admin:write: grants admin write access to everything // admin:write:accounts: grants write read access to accounts -// admin:write:domain_allows: grants admin write access to domain_allows -// admin:write:domain_blocks: grants write read access to domain_blocks +// admin:write:custom_emojis: grants admin write access to custom emojis +// admin:write:domain_allows: grants admin write access to domain allows +// admin:write:domain_blocks: grants write read access to domain blocks // admin:write:reports: grants admin write access to reports // profile: grants read access to verify_credentials // push: grants read/write access to push -- cgit v1.2.3