b50d91d58e
Merge pull request from GHSA-94w9-97p3-p368
...
* feat: improved csrf with session support
* fix: double submit cookie
* feat: add warning cookie extractor without session
* feat: add warning CsrfFromCookie SameSite
* fix: use byes.Equal instead
* fix: Overriden CookieName KeyLookup cookie:<name>
* feat: Create helpers.go
* feat: use compareTokens (constant time compare)
* feat: validate cookie to prevent token injection
* refactor: clean up csrf.go
* docs: update comment about Double Submit Cookie
* docs: update docs for CSRF changes
* feat: add DeleteToken
* refactor: no else
* test: add more tests
* refactor: re-order tests
* docs: update safe methods RCF add note
* test: add CSRF_Cookie_Injection_Exploit
* feat: add SingleUseToken config
* test: check for new token
* docs: use warning
* fix: always register type Token
* feat: use UUIDv4
* test: swap in UUIDv4 here too
2023-10-11 14:41:42 +02:00
59409f3841
improve sendFile documentation
2023-10-06 11:43:10 +02:00
5171f6b505
improve compress middleware documentation
2023-10-05 09:00:11 +02:00
d00f0b8348
✨ feat: add Reset method to Session struct in session middleware ( #2654 )
2023-10-02 15:19:35 +02:00
d86c257c89
✨ feat: add Delete method to Store struct in session middleware ( #2655 )
...
* ✨ feat: add Delete method to Store struct in session middleware
* ♻ refactor: enhance Delete method and test cases in session middleware
2023-10-02 15:19:18 +02:00
c0988de91e
📝 middleware: cors: update docs to better explain AllowOriginsFunc ( #2652 )
2023-09-28 08:28:35 +02:00
e6d6fbe5a8
✨ middleware: cors: allow disabling caching in preflight requests ( #2649 )
2023-09-27 15:06:24 +02:00
e547bea49e
Update cache.md
2023-09-20 09:14:58 +02:00
892b23bd46
✨ Add custom data property to favicon middleware config ( #2579 )
...
* Add custom data property to favicon middleware
* Update favicon middleware docs
* Fix formatting
2023-08-17 15:04:53 +02:00
443804e95d
improved the config section of the middleware readme´s
2023-07-24 17:03:11 +02:00
51ea636b60
improved the config section of the middleware readme´s ( #2552 )
2023-07-24 16:46:50 +02:00
08099b0635
📚 Docs: Fix link ( #2542 )
...
fix link
2023-07-15 20:20:29 +02:00
1603a148fe
Update logger.md
2023-06-22 13:21:14 +02:00
b308b2b7a6
Update logger.md
...
correct spacings
2023-06-22 13:07:33 +02:00
1b060cb150
🩹 Fix: default logger color behaviour ( #2513 )
...
* Fix logger colors
* Fix tests
Basically add ˙enableColors: true˙ back to default config
2023-06-22 13:06:37 +02:00
06ef450a8a
🚀 Add DisableColors to set the default output format ( #2493 )
...
Add DisableColor for default logger format
2023-06-05 13:20:45 +02:00
c56b4e66a0
middleware/adaptor: allow to convert fiber.Ctx to (net/http).Request ( #2461 )
2023-05-15 13:04:58 +02:00
c7c37d9b50
♻️ refactor: merge some external middlewares to core ( #2453 )
...
* ♻️ refactor: merge adaptor, helmet, keyauth, redirect, rewrite middlewares to core
* fix linting issues
* fix linting issues
* fix linting issues
* update
2023-05-10 08:01:49 +02:00
3c3f12b76c
[Feature]: Add filesystem config contentTypeCharset support ( #2438 )
...
* Update filesystem.go
* Update filesystem_test.go
* Update filesystem.md
* fmt
2023-05-02 08:40:20 +02:00
ee2b13c8c0
Update timeout.md
2023-04-14 12:18:00 +02:00
3b7a7d491b
📚 Docs: Fix import and comma issues ( #2410 )
...
Fix import and comma issues
2023-04-13 12:32:39 +08:00
866d5b7628
✨ feat(cors): Added new 'AllowOriginsFunc' function. ( #2394 )
...
* ✨ feat(cors): Added new 'AllowOriginsFunc' function.
* feat(cors): Added warning log for when both 'AllowOrigins' and 'AllowOriginsFunc' are set.
* feat(docs): Updated docs to include note about discouraging the use of this function in production workloads.
---------
Co-authored-by: RW <rene@gofiber.io>
2023-04-11 10:24:29 +02:00
8b1f9260a3
📚 Docs: Fix typos, and make middleware documentation more consistent ( #2408 )
...
Fix typos, and make docs more consistent
This fixes several typos in the ISSUE_TEMPLATES, as well as improve
their readability, also makes the documentation markdowns more
consistent
2023-04-10 10:48:12 +08:00
22b407e2e7
🐛 [Bug-Fix] add original timeout middleware ( #2367 )
...
* add original timeout middleware
* fix linter issues
* deprecate original timeout middleware
* update timeout middleware documentation
2023-04-09 16:05:51 +02:00
1f52799686
Refresh middleware documentation
2023-03-24 13:23:52 +01:00
d7b36cde54
🐛 requestid.Config.ContextKey is interface{} ( #2369 )
...
requestid.Config.ContextKey is interface{}
Consistent with c.Locals(key inteface{}, ...).
Fixes #2356
2023-03-14 19:37:10 +01:00
634f163e3f
🚀 [Feature]: SessionOnly when cookie.Expires is 0 ( #2152 )
...
* feature: session only for zero expire cookie #2145
* refactor condition to set MaxAge and Expire on cookie
* move checking zero maxage and expire in session middleware
Signed-off-by: Yves Tumushimire <yvestumushimire@gmail.com>
* feature: session only for zero expire cookie #2145
* refactor condition to set MaxAge and Expire on cookie
* move checking zero maxage and expire in session middleware
Signed-off-by: Yves Tumushimire <yvestumushimire@gmail.com>
* CR changes
* some updates
---------
Signed-off-by: Yves Tumushimire <yvestumushimire@gmail.com>
Co-authored-by: Muhammed Efe Çetin <efectn@protonmail.com>
Co-authored-by: René Werner <rene.werner@verivox.com>
2023-03-12 19:14:22 +01:00
15e9235383
📝 docs: remove README.mds from middleware dirs
2023-03-06 16:42:35 +03:00
f6b5ed6d26
update proxy docs
2023-02-25 10:57:12 +01:00
35e6825614
update proxy docs
2023-02-25 10:55:27 +01:00
a1eb0e69a6
📝 docs: fix example on envvar middleware
2023-02-25 12:43:57 +03:00
b3643198f8
📝 docs: automated synchronization with `gofiber/docs` ( #2344 )
...
Automated Synchronization with gofiber/docs repo
2023-02-25 10:29:07 +01:00
Jason McNeil
René Werner
KaptinLin
Jimmy Li
M. Efe Çetin
Jacob
f1rstmehul
cmd777
Anzhi
leonklingele
bcd
James Lucas
Hakan Kutluay
Benjamin Grosse
Tumushimire Yves