Lerking/gitea
1
0
Fork 0
mirror of https://github.com/go-gitea/gitea.git synced 2026-01-05 03:41:06 +01:00
Code Issues Actions 3 Packages Projects Releases Wiki Activity
20,169 Commits 19 Branches 244 Tags
main
Commit Graph

4 Commits

Author SHA1 Message Date
silverwind
42d294941c Replace CSRF cookie with CrossOriginProtection (#36183)
Some checks failed
release-nightly / nightly-binary (push) Has been cancelled
Details
release-nightly / nightly-container (push) Has been cancelled
Details 
Removes the CSRF cookie in favor of
[`CrossOriginProtection`](https://pkg.go.dev/net/http#CrossOriginProtection)
which relies purely on HTTP headers.

Fixes: https://github.com/go-gitea/gitea/issues/11188
Fixes: https://github.com/go-gitea/gitea/issues/30333
Helps: https://github.com/go-gitea/gitea/issues/35107

TODOs:

- [x] Fix tests
- [ ] Ideally add tests to validates the protection

---------

Signed-off-by: wxiaoguang <wxiaoguang@gmail.com>
Co-authored-by: wxiaoguang <wxiaoguang@gmail.com>
 2025-12-25 12:33:34 +02:00
John Smith
8f051d598c Added Description Field for Secrets and Variables (#33526) 
Fixes #33484

---------

Co-authored-by: wxiaoguang <wxiaoguang@gmail.com>
 2025-03-17 19:24:54 +00:00
TheFox0x7
cc1fdc84ca Use test context in tests and new loop system in benchmarks (#33648) 
Replace all contexts in tests with go1.24 t.Context()

---------

Co-authored-by: Giteabot <teabot@gitea.io>
Co-authored-by: wxiaoguang <wxiaoguang@gmail.com>
 2025-02-20 09:57:40 +00:00
Jason Song
c422f179dd Enhance routers for the Actions variable operations (#33547) 
- Find the variable before updating or deleting
- Move the main logic from `routers/web/repo/setting/variables.go` to
`routers/web/shared/actions/variables.go`.

---------

Co-authored-by: wxiaoguang <wxiaoguang@gmail.com>
Co-authored-by: Giteabot <teabot@gitea.io>
 2025-02-11 04:44:04 +08:00