source.dussan.org Git - gitea.git/commit

]> source.dussan.org Git - gitea.git/commit

author	zeripath <art27@cantab.net>
	Sun, 4 Nov 2018 15:42:15 +0000 (15:42 +0000)
committer	techknowlogick <hello@techknowlogick.com>
	Sun, 4 Nov 2018 15:42:15 +0000 (10:42 -0500)
commit	c0bbbdd30b8161e34d34b9aaf398fd050a16f254
tree	59a762a2b41ef4e4dda54f28210684023a5db4b6	tree \| snapshot
parent	f95c9667707376626f810abbb2e738e766003185	commit \| diff

Backport #5250 on v1.6: Fix Issue 5249 and protect /api/v1/admin routes with CSRF token (#5272)

* Add CSRF checking to reqToken and place CSRF in the post for deadline creation

Fixes #5226, #5249

* /api/v1/admin/users routes should have reqToken middleware

Git with a cup of tea! Painless self-hosted all-in-one software development service, including Git hosting, code review, team collaboration, package registry and CI/CD: https://github.com/go-gitea/gitea

RSS Atom

integrations/api_admin_test.go		diff \| blob \| history
integrations/git_test.go		diff \| blob \| history
modules/context/api.go		diff \| blob \| history
public/js/index.js		diff \| blob \| history
routers/api/v1/api.go		diff \| blob \| history