Commit graph

20 commits

Author SHA1 Message Date
Peter Hoffmann
fb14458010 fix: Add secret to all webhook's payload where it has been missing ()
* fix: Add secret to all webhook's payload where it has been missing

affects webhooks for:
* Delete
* Fork
* IssueComment
* Release
2018-10-28 18:03:02 -04:00
Antonio Huete Jimenez
99c09dfbfa Update vendor/golang.org/x/sys () 2018-10-26 19:18:40 -04:00
Antoine GIRARD
2af57c7820 Update x/net () 2018-10-26 19:05:56 -04:00
Kim "BKC" Carlbäcker
aeb5655c25 Update go-macaron/session to latest mast to fix RCE-bug () 2018-10-25 19:53:39 +08:00
Mura Li
317ddb7283 Update vendor/github.com/mattn/go-sqlite3 ()
To fix build failure on Windows/386
2018-10-24 16:18:51 +08:00
Mura Li
2ce72d4e00 Update vendor/go-sqlite3 () 2018-10-23 13:28:10 +08:00
Mura Li
dba955be7c Upgrade gopkg.in/testfixtures.v2 () 2018-10-02 15:20:02 -04:00
Lauris BH
ab5b245182 Disable debug routes unless PPROF is enabled in configuration () 2018-09-29 18:44:06 -04:00
OvermindDL1
07af31d004 Fix to follow the OpenID Connect Audiences spec ()
Signed-off-by: Gabriel Robertson <overminddl1@gmail.com>
2018-09-20 22:17:34 +03:00
Lauris BH
fa4663e61e Add push webhook support for mirrored repositories () 2018-09-06 22:06:09 -04:00
EnricoFerro
912953e82a API /admin/users/{username} missing parameter () 2018-08-23 19:59:47 -04:00
Fluf
b82c14b3d2 add letsencrypt to Gitea () 2018-08-21 09:56:50 -04:00
Lauris BH
0c59edaafa Update xorm to latest version and fix correct user table referencing in sql () 2018-07-20 10:10:17 +08:00
techknowlogick
ab55ca7ebd
Add ability to delete a token ()
Fix 
2018-07-06 21:54:30 -04:00
Antoine GIRARD
74f9f98f78 Simply remove tidb and deps () 2018-07-04 16:23:23 -04:00
techknowlogick
9d4c1ddfa1
Dep upgrade mysql lib ()
*  update gopkg file to add sql dep
2018-07-03 17:58:31 -04:00
David Schneiderbauer
0be2b34cec update git vendor () 2018-05-27 21:47:34 +03:00
Magnus Lindvall
cdb9478774 LDAP Public SSH Keys synchronization ()
* Add LDAP Key Synchronization feature

Signed-off-by: Magnus Lindvall <magnus@dnmgns.com>

* Add migration: add login source id column for public_key table

* Only update keys if needed

* Add function to only list pubkey synchronized from ldap

* Only list pub ssh keys synchronized from ldap. Do not sort strings as ExistsInSlice does it.

* Only get keys belonging to current login source id

* Set default login source id to 0

* Some minor cleanup. Add integration tests (updete dep testify)
2018-05-24 07:59:02 +03:00
Aleksandr Bulyshchenko
ee878e3951 Support secure cookie for csrf-token ()
* dep: Update github.com/go-macaron/csrf

Update github.com/go-macaron/csrf with dep to revision 503617c6b372
to fix issue of csrf-token security.

This update includes following commits:
- Add support for the Cookie HttpOnly flag
- Support secure mode for csrf cookie

Signed-off-by: Aleksandr Bulyshchenko <A.Bulyshchenko@globallogic.com>

* routers: set csrf-token security depending on COOKIE_SECURE

Signed-off-by: Aleksandr Bulyshchenko <A.Bulyshchenko@globallogic.com>
2018-05-22 02:09:48 +03:00
Antoine GIRARD
3f3383dc0a Migrate to dep ()
* Update makefile to use dep

* Migrate to dep

* Fix some deps

* Try to find a better version for golang.org/x/net

* Try to find a better version for golang.org/x/oauth2
2018-05-21 15:34:20 +03:00