summaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
...
* Fix bug when a token is given public only (#32204) (#32218)Lunny Xiao2024-10-0911-55/+176
| | | Backport #32204
* Add null check for responseData.invalidTopics (#32212) (#32217)Giteabot2024-10-091-1/+1
| | | | | | | | | | Backport #32212 by @cloudchamb3r <img width="553" alt="Screenshot 2024-10-08 at 10 49 10 AM" src="https://github.com/user-attachments/assets/faeef64d-684a-4aba-b7fc-c7c6a0301abe"> `responseData.invalidTopics` can be null but it wasn't handled. Co-authored-by: cloudchamb3r <jizon0123@protonmail.com>
* Fix javascript error when an anonymous user visiting migration page (#32144) ↵Lunny Xiao2024-10-047-82/+53
| | | | | | | | | | | | | | (#32179) backport #32144 This PR fixes javascript errors when an anonymous user visits the migration page. It also makes task view checking more restrictive. The router moved from `/user/task/{id}/status` to `/username/reponame/-/migrate/status` because it's a migrate status. Co-authored-by: wxiaoguang <wxiaoguang@gmail.com>
* Fixed race condition when deleting documents by repoId in ElasticSearch ↵Giteabot2024-10-031-1/+27
| | | | | | | | | | (#32185) (#32188) Backport #32185 by @bsofiato Resolves #32184 Signed-off-by: Bruno Sofiato <bruno.sofiato@gmail.com> Co-authored-by: Bruno Sofiato <bruno.sofiato@gmail.com>
* Don't init singing keys if oauth2 provider disabled (#32177)Lunny Xiao2024-10-031-2/+6
| | | Backport #32148
* Upgrade some dependencies include minio-go (#32166)Lunny Xiao2024-10-033-70/+61
| | | | | backport #32156 Co-authored-by: Manuel Valls Fernández <manuel@valls.dev>
* Ensure `GetCSRF` doesn't return an empty token (#32130) (#32157)Giteabot2024-10-013-11/+9
| | | | | | | | | | | | | | | | | Backport #32130 by @wolfogre Since page templates keep changing, some pages that contained forms with CSRF token no longer have them. It leads to some calls of `GetCSRF` returning an empty string, which fails the tests. Like https://github.com/go-gitea/gitea/blob/3269b04d61ffe6a7ce462cd05ee150e4491124e8/tests/integration/attachment_test.go#L62-L63 The test did try to get the CSRF token and provided it, but it was empty. Co-authored-by: Jason Song <i@wolfogre.com>
* Fix the logic of finding the latest pull review commit ID (#32139) (#32165)Giteabot2024-10-0111-11/+88
| | | | | | | Backport #32139 by @Zettat123 Fix #31423 Co-authored-by: Zettat123 <zettat123@gmail.com>
* Don't join repository when loading action table data (#32127) (#32143)Lunny Xiao2024-09-302-5/+5
| | | backport #32127
* Fix wrong status of `Set up Job` when first step is skipped (#32120) (#32125)Giteabot2024-09-252-21/+49
| | | | | | | Backport #32120 by @yp05327 Fix #32089 Co-authored-by: yp05327 <576951401@qq.com>
* Fix bug in getting merged pull request by commit (#32079) (#32117)Zettat1232024-09-254-4/+22
| | | | | Backport #32079 Fix #32027
* Fix bug when deleting a migrated branch (#32075) (#32123)Giteabot2024-09-241-6/+7
| | | | | | | | Backport #32075 by @lunny After migrating a repository with pull request, the branch is missed and after the pull request merged, the branch cannot be deleted. Co-authored-by: Lunny Xiao <xiaolunwen@gmail.com>
* Include collaboration repositories on dashboard source/forks/mirrors list ↵Giteabot2024-09-241-1/+0
| | | | | | | | | | | | | | | | (#31946) (#32122) Backport #31946 by @lunny Fix #13489 In the original implementation, only `All` will display your owned and collaborated repositories. For other filters like `Source`, `Mirrors` and etc. will only display your owned repositories. This PR removed the limitations. Now except `collbrations`, other filters will always display your owned and collaborated repositories. Co-authored-by: Lunny Xiao <xiaolunwen@gmail.com>
* Truncate commit message during Discord webhook push events (#31970) (#32121)Giteabot2024-09-243-3/+32
| | | | | | | Backport #31970 by @kemzeb Resolves #31668. Co-authored-by: Kemal Zebari <60799661+kemzeb@users.noreply.github.com>
* Allow set branch protection in an empty repository (#32095) (#32119)Giteabot2024-09-243-18/+14
| | | | | | | Backport #32095 by @lunny Resolve #32093 Co-authored-by: Lunny Xiao <xiaolunwen@gmail.com>
* Fix panic when cloning with wrong ssh format. (#32076) (#32118)Giteabot2024-09-241-4/+7
| | | | | Backport #32076 by @lunny Co-authored-by: Lunny Xiao <xiaolunwen@gmail.com>
* Fix Bug in Issue/pulls list (#32081) (#32115)Giteabot2024-09-242-2/+3
|
* use rebuilt mssql-2017 image (#32109) (#32114)Giteabot2024-09-231-3/+4
| | | | | Backport #32109 by @techknowlogick Co-authored-by: techknowlogick <techknowlogick@gitea.com>
* Fix rename branch permission bug (#32066) (#32108)Giteabot2024-09-223-7/+6
| | | | | | | | | | Backport #32066 by @lunny The previous implementation requires admin permission to rename branches which should be write permission. Fix #31993 Co-authored-by: Lunny Xiao <xiaolunwen@gmail.com>
* Fix wrong last modify time (#32102) (#32104)Giteabot2024-09-224-3/+8
| | | | | | | | | Backport #32102 by @lunny Fix #31930 and more places which use `http.TimeFormat` wrongly. `http.TimeFormat` requires a UTC time. refer to https://pkg.go.dev/net/http#TimeFormat Co-authored-by: Lunny Xiao <xiaolunwen@gmail.com>
* Add bin to Composer Metadata (#32099) (#32106)Giteabot2024-09-222-1/+8
| | | | | | | | | | | | | | | | | Backport #32099 by @maantje This PR addresses the missing `bin` field in Composer metadata, which currently causes vendor-provided binaries to not be symlinked to `vendor/bin` during installation. In the current implementation, running `composer install` does not publish the binaries, leading to issues where expected binaries are not available. By properly declaring the `bin` field, this PR ensures that binaries are correctly symlinked upon installation, as described in the [Composer documentation](https://getcomposer.org/doc/articles/vendor-binaries.md). Co-authored-by: Jamie Schouten <j4mie@hey.com>
* Fix incorrect `/tokens` api (#32085) (#32092)Giteabot2024-09-222-20/+16
| | | | | | | | | | Backport #32085 by @KN4CK3R Fixes #32078 - Add missing scopes output. - Disallow empty scope. Co-authored-by: KN4CK3R <admin@oldschoolhack.me>
* Fix mssql ci with a new mssql version on ci (#32094)Lunny Xiao2024-09-231-1/+2
| | | backport from https://github.com/go-gitea/gitea/pull/32060
* Fix: database not update release when using `git push --tags --force` ↵Giteabot2024-09-192-8/+46
| | | | | | | | | (#32040) (#32074) Backport #32040 by @ExplodingDragon link: https://codeberg.org/forgejo/forgejo/issues/4274 Co-authored-by: Exploding Dragon <explodingfkl@gmail.com>
* Refactor CSRF protector (#32057) (#32069)wxiaoguang2024-09-187-172/+71
| | | #32057 improves the CSRF handling and is worth to backport
* Add missing comment reply handling (#32050) (#32065)Giteabot2024-09-182-166/+172
| | | | | | | | | | | | | Backport #32050 by @KN4CK3R Fixes #31937 - Add missing comment reply handling - Use `onGiteaRun` in the test because the fixtures are not present otherwise (did this behaviour change?) Compare without whitespaces. Co-authored-by: KN4CK3R <admin@oldschoolhack.me>
* Lazy load avatar images (#32051) (#32063)Giteabot2024-09-181-1/+1
| | | | | | | | | | | | | Backport #32051 by @hiifong Before: https://github.com/user-attachments/assets/7b1681ba-4781-432a-ae20-c07e94c1dbb6 After: https://github.com/user-attachments/assets/5154e160-e22c-460e-b0d9-28768486c178 Co-authored-by: hiifong <i@hiif.ong>
* Handle invalid target when creating releases using API (#31841) (#32043)Giteabot2024-09-173-1/+22
| | | | | | | | | | | Backport #31841 by @kemzeb A 500 status code was thrown when passing a non-existent target to the create release API. This snapshot handles this error and instead throws a 404 status code. Discovered while working on #31840. Co-authored-by: Kemal Zebari <60799661+kemzeb@users.noreply.github.com>
* Do not escape relative path in RPM primary index (#32038) (#32054)Giteabot2024-09-171-2/+1
| | | | | | | | | Backport #32038 by @KN4CK3R Fixes #32021 Do not escape the relative path. Co-authored-by: KN4CK3R <admin@oldschoolhack.me>
* Check if the `due_date` is nil when editing issues (#32035) (#32042)Giteabot2024-09-151-4/+10
| | | | | | | Backport #32035 by @Zettat123 Fix #32030 Co-authored-by: Zettat123 <zettat123@gmail.com>
* Fix container parallel upload bugs (#32022)Lunny Xiao2024-09-122-9/+31
| | | | | | | | This PR should be replaced by #31860 in v1.23. The aim of creating this PR is to fix it in 1.22 because globallock hasn't been introduced. Fix #27640 Fix #29563 Fix #31215
* Fix `/repos/{owner}/{repo}/pulls/{index}/files` endpoint not populating ↵Giteabot2024-09-121-12/+11
| | | | | | | | | | | | | `previous_filename` (#32017) (#32028) Backport #32017 by @charles-plutohealth --- `status == "rename"` should have read `status == "renamed"`. The typo means that file.PreviousFilename would never be populated, which e.g. breaks usage of the Github Action at https://github.com/dorny/paths-filter. Co-authored-by: charles-plutohealth <143208583+charles-plutohealth@users.noreply.github.com>
* Support allowed hosts for migrations to work with proxy (#32025) (#32026)Giteabot2024-09-114-11/+3
| | | | | | | | | | | Backport #32025 by @wolfogre Fix #32024. Follow #27655. After this PR, all usage of "new dial context" needs to provide a proxy, so I dropped the old `NewDialContext` and renamed `NewDialContextWithProxy` to `NewDialContext`. Co-authored-by: Jason Song <i@wolfogre.com>
* Increase `cacheContextLifetime` to reduce false reports (#32011) (#32023)Giteabot2024-09-112-7/+7
| | | | | | | | | | | | | | | | | | | | | | | Backport #32011 by @wolfogre Replace #32001. To prevent the context cache from being misused for long-term work (which would result in using invalid cache without awareness), the context cache is designed to exist for a maximum of 10 seconds. This leads to many false reports, especially in the case of slow SQL. This PR increases it to 5 minutes to reduce false reports. 5 minutes is not a very safe value, as a lot of changes may have occurred within that time frame. However, as far as I know, there has not been a case of misuse of context cache discovered so far, so I think 5 minutes should be OK. Please note that after this PR, if warning logs are found again, it should get attention, at that time it can be almost 100% certain that it is a misuse. Co-authored-by: Jason Song <i@wolfogre.com>
* Upgrade cache to v0.2.1 (#32003) (#32009)Lunny Xiao2024-09-072-34/+3
| | | | Fix #31757 Backport #32003
* Use forum.gitea.com instead of old URL (#31989) (#31992)Giteabot2024-09-076-7/+7
| | | | | Backport #31989 by @lunny Co-authored-by: Lunny Xiao <xiaolunwen@gmail.com>
* Add changelog for 1.22.2 (#31935)v1.22.2Lunny Xiao2024-09-061-0/+56
|
* Fix nuget/conan/container packages upload bugs (#31967) (#31982)Giteabot2024-09-0511-90/+512
| | | | | Backport #31967 by @lunny Co-authored-by: Lunny Xiao <xiaolunwen@gmail.com>
* Replace v-html with v-text in search inputbox (#31966) (#31973) (#31975)Lunny Xiao2024-09-0526-48/+47
| | | | | | | | | | Backport #31966, #31973 Cherry-pick 30da734f37f0bd60d13044374c1d5af54f2eb416, 74b1c589c6c1a4261556e1a1a868bbcb2964a5d3 Replace #31972 --------- Co-authored-by: techknowlogick <techknowlogick@noreply.gitea.com>
* Add lock for parallel maven upload (#31954)Lunny Xiao2024-09-032-0/+39
| | | | Backport #31851 Fix #30171
* Fix index too many file names bug (#31903) (#31953)Lunny Xiao2024-09-031-9/+32
| | | | | Try to fix #31884 Fix #28584 Backport #31903
* Prevent update pull refs manually and will not affect other refs update ↵Giteabot2024-09-023-0/+37
| | | | | | | | | | | | | | | | (#31931) (#31955) Backport #31931 by @lunny All refs under `refs/pull` should only be changed from Gitea inside but not by pushing from outside of Gitea. This PR will prevent the pull refs update but allow other refs to be updated on the same pushing with `--mirror` operations. The main changes are to add checks on `update` hook but not `pre-receive` because `update` will be invoked by every ref but `pre-receive` will revert all changes once one ref update fails. Co-authored-by: Lunny Xiao <xiaolunwen@gmail.com>
* Fix sort order for organization home and user profile page (#31921) (#31922)yp053272024-09-022-0/+8
| | | Backport #31921
* Fix 500 error when `state` params is set when editing issue/PR by API ↵Giteabot2024-09-013-10/+41
| | | | | | | | | (#31880) (#31952) Backport #31880 by @yp05327 A quick fix for #31871 Co-authored-by: yp05327 <576951401@qq.com>
* Upgrade micromatch to 4.0.8 (#31944)Lunny Xiao2024-08-301-11/+11
| | | backport #31939
* Update webpack to 5.94.0 (#31941)silverwind2024-08-292-24/+18
| | | | Update webpack on v1.22 branch because of https://github.com/go-gitea/gitea/security/dependabot/70.
* Fix search team (#31923) (#31942)Giteabot2024-08-301-1/+6
| | | | | | | Backport #31923 by @lunny Fix #20658 Co-authored-by: Lunny Xiao <xiaolunwen@gmail.com>
* Remove "dsa-1024" testcases from Test_SSHParsePublicKey and ↵Giteabot2024-08-251-2/+0
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Test_calcFingerprint (#31905) (#31914) Backport #31905 by @s4uliu5 DSA is considered inherently insecure and is already disabled/removed in OpenSSH 9.8. Therefore "dsa-1024" tescases are failing. ``` --- FAIL: Test_calcFingerprint (0.02s) --- FAIL: Test_calcFingerprint/dsa-1024 (0.00s) --- FAIL: Test_calcFingerprint/dsa-1024/SSHKeygen (0.00s) ssh_key_test.go:196: Error Trace: /src/gitea/models/asymkey/ssh_key_test.go:196 Error: Received unexpected error: Unable to verify key content [result: /tmp/gitea_keytest1239408114 is not a public key file. ] Test: Test_calcFingerprint/dsa-1024/SSHKeygen ssh_key_test.go:197: Error Trace: /src/gitea/models/asymkey/ssh_key_test.go:197 Error: Not equal: expected: "SHA256:fSIHQlpKMDsGPVAXI8BPYfRp+e2sfvSt1sMrPsFiXrc" actual : "" Diff: --- Expected +++ Actual @@ -1 +1 @@ -SHA256:fSIHQlpKMDsGPVAXI8BPYfRp+e2sfvSt1sMrPsFiXrc + Test: Test_calcFingerprint/dsa-1024/SSHKeygen FAIL ``` Fix #31624 Co-authored-by: Saulius Gurklys <s4uliu5@gmail.com>
* Don't return 500 if mirror url contains special chars (#31859) (#31895)Lunny Xiao2024-08-221-2/+4
| | | Backport #31859
* Upgrade bleve to 2.4.2 (#31894)Lunny Xiao2024-08-214-36/+55
| | | backport #31762
generated by cgit v1.2.3 (git 2.39.1) at 2025-04-05 00:55:35 +0000