aiforge

Commit Graph

Author	SHA1	Message	Date
mrsdizzie	e3ba109c25	Don't Unescape redirect_to cookie value (#6399 ) redirect_to holds a value that we want to redirect back to after login. This value can be a path with intentonally escaped values and we should not unescape it. Fixes #4475	7 years ago
zeripath	3b3a44562c	Do not display the raw OpenID error in the UI (#5705 ) * Do not display the raw OpenID error in the UI If there are no `WHITELIST_URIS` or `BLACKLIST_URIS` set in the openid section of the app.ini, it is possible that gitea can leak sensitive information about the local network through the error provided by the UI. This PR hides the error information and logs it. Fix #4973 Signed-off-by: Andrew Thornton <art27@cantab.net> * Update auth_openid.go Place error log within the `err != nil` branch.	7 years ago
SagePtr	5609ad7415	Make cookies HttpOnly and obey COOKIE_SECURE flag (#4706 )	7 years ago
Fluf	54004cb5ab	Add Recaptcha functionality to Gitea (#4044 )	7 years ago
Lauris BH	8ca0fd9526	Refactor and simplify redirect to url (#3674 )	8 years ago
Codruț Constantin Gușoi	467c9eed17	Implements generator cli for secrets (#3531 ) Signed-off-by: Codruț Constantin Gușoi <codrut.gusoi@gmail.com>	8 years ago
Morgan Bazalgette	8c916631f0	Handle refactor (#3339 ) * Replace all ctx.Handle with ctx.ServerError or ctx.NotFound * Change Handle(403) to NotFound, avoid using macaron's NotFound	8 years ago
Sandro Santilli	f337efc034	Add OpenID configuration in install page (#2276 )	8 years ago
Lunny Xiao	08a2088db4	Only update needed columns when update user (#2296 ) * only update needed columns when update user * fix missing update_unix column	8 years ago
Lauris BH	96b13d94ec	Make time diff translatable (#2057 )	8 years ago
Jonas Östanbäck	dd3884fdea	xxx_active_code_live setting in printed in hours and minutes instead … (#1814 ) * xxx_active_code_live setting in printed in hours and minutes instead of just hours * Update app.ini description of xxx_code_lives settings	9 years ago
Sandro Santilli	dca5fdb5cc	Allow ENABLE_OPENID_SIGNUP to depend on DISABLE_REGISTRATION (#1369 ) * Allow ENABLE_OPENID_SIGNUP to depend on DISABLE_REGISTRATION Omit the configuration variable (the default) to be dependent. Fixes #1363 * Move OpenID settings under Service object * Show OpenID SignUp and SignIn status in admin panel / configuration	9 years ago
Sandro Santilli	7ef4727cca	Run "make fmt" with go-1.6 (#1333 )	9 years ago
Sandro Santilli	d650d98fee	Add captcha support to OpenID based signup	9 years ago
Sandro Santilli	f8863080a2	Login via OpenID-2.0 (#618 )	9 years ago

15 Commits (eaa334b9d45aa3e06fe3081d2dbe608b2ccb2fe4)