07818d5fa5
route: no session for routes without UI ( #6066 )
...
Not all routes need session, register session and CSRF middleware as global is a waste of resource, and creating a lot one-time off yet never used session records.
2020-04-05 06:36:08 +08:00
bae1d6ccd8
lfs: only remove file on io error ( #6062 )
2020-04-05 01:29:51 +08:00
3a5c93eeff
db: use gorm function to check `ErrRecordNotFound` ( #6060 )
2020-04-05 00:56:31 +08:00
4aff4d66ec
lfs: support upload retry ( #6061 )
2020-04-05 00:45:08 +08:00
53b91ef306
lfs: run e2e and fix minor issues ( #6059 )
2020-04-05 00:14:22 +08:00
34145c990d
lfs: implement HTTP routes ( #6035 )
...
* Bootstrap with GORM
* Fix lint error
* Set conn max lifetime to one minute
* Fallback to use gorm v1
* Define HTTP routes
* Finish authentication
* Save token updated
* Add docstring
* Finish authorization
* serveBatch rundown
* Define types in lfsutil
* Finish Batch
* authutil
* Finish basic
* Formalize response error
* Fix lint errors
* authutil: add tests
* dbutil: add tests
* lfsutil: add tests
* strutil: add tests
* Formalize 401 response
2020-04-04 21:14:15 +08:00
72111e698e
template: better diff handling of rename and deleted files ( #6048 )
...
* dep: bump github.com/gogs/git-module from 1.0.2 to 1.1.0
* template: better diff handling or rename and deleted files
2020-03-31 04:50:59 +08:00
dce70fe6d1
locale: sync from Crowdin ( #6046 )
2020-03-30 01:14:18 +08:00
4cbb43b860
gitutil: simplify mock with `t.Cleanup` ( #6033 )
...
* gitutil: simplify mock with t.Cleanup
* Scope mock to tests only
2020-03-29 20:15:42 +08:00
933206f1fe
gitutil: refactor the way to mock ( #6032 )
...
* Refactor the mock module store
* Only test on 1.14.x
2020-03-29 19:37:28 +08:00
a0651b62a7
dep: bump github.com/gogs/git-module from 1.0.1 to 1.0.2 ( #6030 )
2020-03-29 15:24:10 +08:00
470274204e
api: support get releases endpoint ( #6026 )
2020-03-28 21:56:11 +08:00
af0cfe112b
web: rename CSRF header ( #6027 )
2020-03-28 19:17:15 +08:00
a9dcf4ce74
github: use Actions for CI ( #6022 )
...
* Update golint.yml
* Update README.md
* Update README.md
* Update golint.yml
* Update golint.yml
* Rename golint.yml to go.yml
* Update go.yml
* Update go.yml
* Update go.yml
* Improve tests on Windows
* Delete files
2020-03-27 22:06:29 +08:00
14cd16f1f8
csrf: set cookie HttpOnly and Secure ( #6013 )
2020-03-27 00:08:46 +08:00
87053c5369
cmd: backup support exclude mirror repositories ( #6003 )
...
* cmd: backup support exclude mirror repositories
* Apply suggestions from code review
Co-authored-by: ᴜɴᴋɴᴡᴏɴ <u@gogs.io>
2020-03-24 22:03:05 +08:00
e14b6abf9d
http: always set header `X-Content-Type-Options` to `nosniff` ( #6008 )
2020-03-23 22:18:05 +08:00
740f814ce0
locale: sync from Crowdin ( #6006 )
2020-03-23 02:13:05 +08:00
22717a1c06
webhook: overhaul route handlers ( #6002 )
...
* Overual route handlers and fixes #5366
* Merge routes for repo and org
* Inject OrgRepoContext
* DRY validateWebhook
* DRY c.HasError
* Add tests
* Update CHANGELOG
2020-03-22 22:07:22 +08:00
82e511ddb1
cmd: init logging before `SetEngine` ( #6001 )
2020-03-22 14:11:52 +08:00
5843038a08
workflows: enable golangci-lint ( #5998 )
...
* Create golint.yml
* Update golint.yml
* Update golint.yml
* Fix errcheck
* Fix gosimple
* Fix staticcheck
2020-03-21 13:39:32 +08:00
958d8b6bb4
admin: use POST to run operations ( #5997 )
...
* admin: use POST to run operations
Fixed CSRF reported by Wenxu Wu of Tencent's Xuanwu Lab.
* Update CHANGELOG
2020-03-21 11:47:42 +08:00
a43fc9ad17
ipynb: sanitize rendered HTML ( #5996 )
...
* ipynb: sanitize rendered HTML
Fixes #5170
* Remove hardcode URL
* Add tests
2020-03-21 00:12:38 +08:00
c69a38652d
locale: sync from Crowdin ( #5991 )
2020-03-16 13:57:46 +08:00
a4de85dc80
util: add tests ( #5989 )
2020-03-16 01:54:08 +08:00
9e9ca66467
refactor: unify error handling in routing layer
2020-03-16 01:22:27 +08:00
82ff0c5852
email: check the owner when set as primary ( #5988 )
...
* email: check the owner when set as primary
Fixes a security issue reported by muxishuihan.
* Update CHANGELOG
2020-03-15 18:58:56 +08:00
328c23c5d4
public: make lessc compile minimize CSS ( #5987 )
2020-03-15 03:47:07 +08:00
268c692efd
api: group "/contents" with "" and "/*" #5985 ( #5986 )
...
This PR groups the contents api endpoint with both `""` and `/*` as
valid URL patterns.
When `""` is the URL pattern, this means that no repo path has'nt been
provided, in which case the path would be the default repo path.
When `"/*"` is the URL pattern, then this would return the contents at
the specified path if it's valid.
Github API v3 is conformant to this behavior and have verified it
locally.
2020-03-13 22:37:42 +08:00
927ffef864
api: minor changes to `/repo/owner/repo/git/trees` ( #5982 )
2020-03-11 01:28:26 +08:00
047bf94908
ci: enable go vet check ( #5981 )
...
* ci: enable go vet check
* Improve .travis.yml
2020-03-11 00:30:51 +08:00
880d0ec19f
api: overhaul `/repos/owner/repos/contents` ( #5980 )
...
* Fix import path renaming
* api: overhaul /repos/owner/repos/contents
2020-03-10 22:15:55 +08:00
2430612ad4
templates: fix not able to upload issue attachments ( #5978 )
2020-03-10 01:33:16 +08:00
e87f1107ca
commit: fix unexpected truncation in title
...
The commit message should not be treated as locale at all.
2020-03-09 02:08:53 +08:00
bebaf4c112
diff: remove misaligned space
2020-03-09 02:06:45 +08:00
6437d0180b
git: migrate to github.com/gogs/git-module@v1.0.0 ( #5958 )
...
* WIP
* Finish `internal/db/git_diff.go`
* FInish internal/db/mirror.go
* Finish internal/db/pull.go
* Finish internal/db/release.go
* Finish internal/db/repo.go
* Finish internal/db/repo_branch.go
* Finish internal/db/repo_editor.go
* Finish internal/db/update.go
* Save my work
* Add license header
* Compile!
* Merge master
* Finish internal/cmd/hook.go
* Finish internal/conf/static.go
* Finish internal/context/repo.go
* Finish internal/db/action.go
* Finish internal/db/git_diff.go
* Fix submodule URL inferring
* Finish internal/db/mirror.go
* Updat to beta.4
* css: update fonts
* Finish internal/db/pull.go
* Finish internal/db/release.go
* Finish internal/db/repo_branch.go
* Finish internal/db/wiki.go
* gitutil: enhance infer submodule UR
* Finish internal/route/api/v1/repo/commits.go
* mirror: only collect branch commits after sync
* mirror: fix tag support
* Finish internal/db/repo.go
* Finish internal/db/repo_editor.go
* Finish internal/db/update.go
* Finish internal/gitutil/pull_request.go
* Make it compile
* Finish internal/route/repo/setting.go
* Finish internal/route/repo/branch.go
* Finish internal/route/api/v1/repo/file.go
* Finish internal/route/repo/download.go
* Finish internal/route/repo/editor.go
* Use helper
* Finish internal/route/repo/issue.go
* Finish internal/route/repo/pull.go
* Finish internal/route/repo/release.go
* Finish internal/route/repo/repo.go
* Finish internal/route/repo/wiki.go
* Finish internal/route/repo/commit.go
* Finish internal/route/repo/view.go
* Finish internal/gitutil/tag.go
* go.sum
2020-03-08 19:09:31 +08:00
bf373f9da1
templates: show brand name in the footer ( #5974 )
2020-03-07 13:15:20 +08:00
5ad2fdcf0b
api: `GET /repos/:owner/:repo/contents/:path` ( #5963 )
...
* support API `GET /repos/:owner/:repo/contents/:path`
This PR adds support to #5949 :
`GET /repos/:owner/:repo/contents/:path`
Curl:
```bash
curl -H "Authorization: token REDACTED"
http://localhost:3000/api/v1/repos/root/testrepo/contents//master/README.md
-X GET | jq .
```
Curl Response:
```bash
{
"type": "blob",
"size": 12,
"name": "README.md",
"path": "README.md",
"sha": "70fcb456d436f08462602f26df6fb7e167e7a916",
"url": "http://localhost:3000/api/v1/repos/root/testrepo/contents/README.md ",
"git_url": "70fcb456d470fcb456d4http://localhost:3000/api/v1/root/testrepo/raw/README.md ",
"_links": {
"git": "70fcb456d4http://localhost:3000/api/v1/repos/root/testrepo/contents/README.md ",
"html": "70fcb456d4
2020-03-05 16:15:38 +08:00
8d37d418e7
locale: sync from Crowdin ( #5965 )
2020-03-04 02:28:13 +08:00
8df3350252
auth: redirect landing URL with subpath prepended ( #5964 )
2020-03-04 02:02:12 +08:00
931da04dc2
cmd/serv: improve hookMode handling ( #5960 )
...
- Allow remove primary logger at better location
- Use more appropriate log.Error to replace log.Fatal
2020-03-02 22:25:28 +08:00
7efa946b02
git: explicitly disable debug in prod mode ( #5959 )
...
After first time running the application and went through the installation, the flag was always true until restarted.
2020-03-02 22:09:09 +08:00
fe7b094b9e
log: fix tests
2020-03-02 01:14:26 +08:00
7382c23a17
cmd: init minimal logging config in hook mode
2020-03-02 01:01:52 +08:00
f04b2d4350
lint: fix some Golang CI lint issues ( #5955 )
2020-03-01 14:55:03 +08:00
9c65798902
conf: enhance app.ini comments
2020-03-01 13:23:59 +08:00
18e45aab98
template: improve admin config page
2020-03-01 03:21:13 +08:00
344b784d69
js: fix jQuery error
2020-02-29 23:52:35 +08:00
333998509f
css: fix /admin/config pre overflow
2020-02-29 23:34:03 +08:00
8796df8218
conf: add unit tests ( #5954 )
...
* conf: add tests for utils.go
* conf: add tests for static.go
* mock os/exec
* Run tests on Windows
* appveyor: fix gcc not found
* computed: add unit tests
* log: add unit tests
* log: fix tests on Windows
* conf: add some tests
* Finish adding tests
* Cover more cases
* Add tests for testutil
* Add more tests
2020-02-29 22:24:20 +08:00
ᴜɴᴋɴᴡᴏɴ
Philidor Green
Bharat Nallan