USEFULL
/
gogs
mirror of https://github.com/gogs/gogs.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
5,464 Commits
11 Branches
82 Tags
312 MiB
Commit Graph

180 Commits (1ce5171ae170750298c150874e718740dd7ef69f)

Author SHA1 Message Date
Joe Chen 47297c0510
gofmt 2022-08-02 10:44:36 +08:00
Joe Chen 7be49a8f2f
netutil: allow using `*` to match any hostname (#7111) 
# Conflicts:
#	internal/netutil/netutil_test.go
 2022-08-02 10:38:46 +08:00
Joe Chen 7f147eb573
webhook: validate against hostname instead of full URL (#7075) 
# Conflicts:
#	CHANGELOG.md
 2022-08-02 10:37:45 +08:00
Joe Chen a24b22c909
http: clean request path from Git endpoints (#7022) 2022-06-07 21:26:15 +08:00
Joe Chen 20923a8829
pathutil: check both styles of `os.PathSeparator` (#7020) 2022-06-07 21:25:51 +08:00
Joe Chen deeb3f73e4
repo_editor: check both styles of `os.PathSeparator` in all systems (#7005) 
# Conflicts:
#	CHANGELOG.md
 2022-06-07 21:24:37 +08:00
Joe Chen 1bc379f4d4
pull: ignore PR status check if head repository is missing (#7004) 
# Conflicts:
#	internal/db/pull.go
 2022-06-07 21:23:38 +08:00
Joe Chen 8e8b185ea1
http: fix non-sense `NotFound` call (#7003) 2022-06-07 21:21:29 +08:00
Joe Chen 42ad18a245
repo: remove hard-coded branch name in init (#6999) 2022-06-07 21:20:54 +08:00
Joe Chen 4c6cac637f
task generate 2022-05-31 16:41:40 +08:00
Toby Simmons 6a6cdb209b
csrf: sanitize token after reading from cookie (#6969) 
Co-authored-by: Joe Chen <jc@unknwon.io>
 2022-05-31 16:39:05 +08:00
1135 2d58fd163f
repo_editor: prohibits uploading files to `.git.` directory (#6970) 
Co-authored-by: Joe Chen <jc@unknwon.io>
 2022-05-31 16:38:43 +08:00
Joe Chen 5250403d60
repo_editor: prohibit move files to to `.git` directory (#6986) 
# Conflicts:
#	CHANGELOG.md
 2022-05-31 16:38:36 +08:00
Joe Chen bcebe673d1
webhook: revalidate local hostname before each delivery (#6988) 
# Conflicts:
#	CHANGELOG.md
 2022-05-31 16:38:07 +08:00
Joe Chen 8b395a49b3
chore: fix lint errors (#6951) 2022-05-16 20:59:09 +08:00
Joe Chen bc77440b30
attachment: set CSP header in the serving endpoint (#6926) 2022-05-05 16:01:44 +08:00
E99p1ant 8a046c22a8
context: fix Access-Control-Allow-Credentials header typo (#6381) 2022-04-06 21:30:38 +08:00
Joe Chen 1bf5d89386
run task generate 2022-03-19 14:08:46 +08:00
Joe Chen 4e10265568
chore: run `task generate` (#6844) 
# Conflicts:
#	.github/workflows/go.yml
#	internal/assets/templates/templates_gen.go
 2022-03-15 22:44:47 +08:00
Joe Chen eddae31ada
conf: add allowlist for accessing local network (#6842) 
# Conflicts:
#	CHANGELOG.md
#	internal/assets/conf/conf_gen.go
#	internal/assets/templates/templates_gen.go
#	internal/conf/static.go
#	internal/conf/testdata/TestInit.golden.ini
 2022-03-14 23:54:23 +08:00
Joe Chen 0fef3c9082
repo_editor: check upload `TreePath` and file name (#6838) 2022-03-14 00:37:34 +08:00
ysf 64102be2c9
security: fix improper PAM authorization handling (#6819) 
Co-authored-by: Joe Chen <jc@unknwon.io>
# Conflicts:
#	CHANGELOG.md
#	internal/auth/pam/pam.go
 2022-03-11 14:52:11 +08:00
Michael Rowley 91f2cde5e9
security: fix SSRF in repository migration (#6812) 
Co-authored-by: Joe Chen <jc@unknwon.io>
# Conflicts:
#	CHANGELOG.md
#	internal/route/repo/webhook.go
 2022-03-11 14:51:32 +08:00
Joe Chen 01a2c68abb
ci: sync workflows from `main` branch (#6730) 2022-01-16 19:51:14 +08:00
Joe Chen 5a04c47cf0
markup: use default link formation when no format in metas (#6723) 
# Conflicts:
#	CHANGELOG.md
 2022-01-13 10:19:59 +08:00
stypr ec84506da4
repo: disallow urlencoded new lines in git protocol paths (#6420) 
Co-authored-by: ᴜɴᴋɴᴡᴏɴ <u@gogs.io>
 2020-11-27 18:53:38 +08:00
Matheus Mosca eb3386c4aa
context: add X-Frame-Options header (#6411) 
Co-authored-by: ᴜɴᴋɴᴡᴏɴ <u@gogs.io>
# Conflicts:
#	CHANGELOG.md
 2020-11-11 12:20:58 +08:00
ᴜɴᴋɴᴡᴏɴ fbe34c8c61
lfs: ask client to always send the same value for the HTTP header (#6369) 
# Conflicts:
#	go.sum
 2020-10-06 13:12:56 +08:00
Jeff e6b4c467e8
markup: render SHA links without branch prefix (#6350) 
Co-authored-by: Zhukov Roman <zhukov.roman@gmail.com>
Co-authored-by: ᴜɴᴋɴᴡᴏɴ <u@gogs.io>
 2020-10-06 13:08:27 +08:00
ᴜɴᴋɴᴡᴏɴ 6b6bfe8bb0
cmd/serv: use different log files for ORMs in hook mode (#6361) 
# Conflicts:
#	CHANGELOG.md
#	go.sum
#	internal/db/db.go
#	internal/db/models.go
 2020-09-29 22:36:02 +08:00
ᴜɴᴋɴᴡᴏɴ 1a051ae5f8
release: update version to 0.12.2 2020-09-26 16:50:07 +08:00
ᴜɴᴋɴᴡᴏɴ ca54cbd055
action: fix issue reference regexp and error handling (#6352) 2020-09-26 16:23:40 +08:00
ᴜɴᴋɴᴡᴏɴ 672625b55c
gitutil: infer submodule with baseURL when it is a relative path (#6337) 
# Conflicts:
#	internal/assets/templates/templates_gen.go
#	internal/conf/testdata/TestInit.golden.ini
 2020-09-18 16:21:16 +08:00
ᴜɴᴋɴᴡᴏɴ 98c65f319f
web: correctly serving go-get pages for subdirs (#6318) 
* web: correctly serving go-get page for subdirs

* Update CHANGELOG

* Fix golint error
# Conflicts:
#	CHANGELOG.md
 2020-09-09 20:15:44 +08:00
ᴜɴᴋɴᴡᴏɴ d7a6bb8bcb
db: fix wrong column type of `login_source` (#6283) 
# Conflicts:
#	CHANGELOG.md
 2020-08-27 14:46:26 +08:00
Kosadchiy db037495de
issue: fix timestamp updating (#6210) 
Co-authored-by: ᴜɴᴋɴᴡᴏɴ <u@gogs.io>
 2020-08-27 14:46:06 +08:00
ᴜɴᴋɴᴡᴏɴ 39bdd5c2cd
assets: make generate (#6265) 2020-08-22 19:13:00 +08:00
ᴜɴᴋɴᴡᴏɴ c7a10dd90d
locale: sync from Crowdin (#6263) 2020-08-22 17:49:33 +08:00
ᴜɴᴋɴᴡᴏɴ 178b73fecd
repo: users have access to base repository can also view forks (#6261) 2020-08-22 13:17:45 +08:00
ᴜɴᴋɴᴡᴏɴ bc8428ca42
conf: make generate for #6237 (#6260) 2020-08-22 01:49:51 +08:00
ᴜɴᴋɴᴡᴏɴ c6143edb44
osutil: update docstring and tests (#6255) 2020-08-19 21:30:01 +08:00
bibo38 252d0fd977
osutil: use system API to get the username when env vars are empty (#6246) 
As Golang supports getting usernames via the standard library, this function
is now used to get the username if the environment variables are empty.
Using the standard library as a fallback is intended to keep compability
to existing implementations that rely on the environment variables dictating
the current username.
 2020-08-19 21:17:16 +08:00
ᴜɴᴋɴᴡᴏɴ f3993b9cdb
organization: limit showing at most 12 members in profile page (#6254) 2020-08-17 21:09:22 +08:00
ᴜɴᴋɴᴡᴏɴ a961afe52b
db: fix update team panic (#6253) 
* db: fix update team panic

* Update CHANGELOG
 2020-08-16 21:31:08 +08:00
ᴜɴᴋɴᴡᴏɴ 516c7ab505
locale: sync from Crowdin (#6191) 2020-06-08 11:08:27 +08:00
ᴜɴᴋɴᴡᴏɴ 7e99a6ce42
locale: sync from Crowdin (#6174) 2020-05-24 18:59:43 +08:00
ᴜɴᴋɴᴡᴏɴ 44ea9604ed
locale: sync from Crowdin (#6156) 2020-05-10 12:33:07 +08:00
ᴜɴᴋɴᴡᴏɴ 9fd4f5562d
all: use semver to compare versions (#6147) 2020-05-04 18:48:23 +08:00
ᴜɴᴋɴᴡᴏɴ 9bb218734c
db: use GORM to backup and restore non-legacy tables (#6142) 2020-05-04 16:25:57 +08:00
ᴜɴᴋɴᴡᴏɴ 4e1f38ce28
lfs: show configs in admin ui (#6128) 
* Rename template consts

* Display new DB options

* Display LFS configs
 2020-04-21 18:07:17 +08:00