summaryrefslogtreecommitdiffstats
path: root/routers/repo/http.go
Commit message (Collapse)AuthorAgeFilesLines
* fix .netrc authentication (#2700)David Schneiderbauer2017-10-151-10/+24
| | | | | | * provide both possible authentication solutions Signed-off-by: David Schneiderbauer <dschneiderbauer@gmail.com>
* fix go get subpackage bug (#2584)Lunny Xiao2017-09-231-21/+1
| | | | | | * fix go get subpackage bug * merge the duplicated funtions
* Only allow token authentication with 2FA enabled (#2184)Moritz Heiber2017-07-261-6/+32
| | | | | | | | | | | | | | * Don't allow for plain username/password authentication when 2FA is enabled * Removed debugging statement * Don't assume a token belongs to a given user, handle two-factor errors properly * Simplified user/token matching, refactored error handling for two-factor authentication * Change authentication response to avoid bruteforcing * Add TODO item as a comment for changing the response for security purposes
* Fix: `http: multiple response.WriteHeader calls` (#2038)Shuanglei Tao2017-06-281-1/+0
| | | We can't change the http status code here, because the response has been written.
* fix admin lost permission caused by #947Lunny Xiao2017-05-191-1/+1
|
* Add units to team (#947)Lunny Xiao2017-05-181-0/+8
| | | | | | | | | | | | | | | | | | * add units to team * fix lint * finish team setting backend * finished permission controll on routes * fix import blank line * add unit check on ssh/http pull and push and fix test failed * fix fixtures data * remove unused code
* Remove env user salt since no need to use (#1515)Lunny Xiao2017-05-061-1/+0
| | | | | | * remove env user salt since no need to use * remove unused variable from update.go
* fix go get sub package and add domain on installation to let go get work ↵Lunny Xiao2017-04-211-0/+25
| | | | | | | | | | defaultly (#1518) * fix go get sub package and add domain on installation to let go get work defaultly * fix import sequence * fix .git problem
* Refactor and fix incorrect comment (#1247)Ethan Koenig2017-03-151-2/+2
|
* Move push update to post-receive and protected branch check to pre-receive ↵Lunny Xiao2017-02-251-161/+35
| | | | | | | | | | | | (#1030) * move all push update to git hook post-receive and protected branch check to git hook pre-receive * add SSH_ORIGINAL_COMMAND check back * remove all unused codes * fix the import
* Oauth2 consumer (#679)Willem van Dreumel2017-02-221-6/+6
| | | | | | | | | | | | | | | | | | | | | | | | | * initial stuff for oauth2 login, fails on: * login button on the signIn page to start the OAuth2 flow and a callback for each provider Only GitHub is implemented for now * show login button only when the OAuth2 consumer is configured (and activated) * create macaron group for oauth2 urls * prevent net/http in modules (other then oauth2) * use a new data sessions oauth2 folder for storing the oauth2 session data * add missing 2FA when this is enabled on the user * add password option for OAuth2 user , for use with git over http and login to the GUI * add tip for registering a GitHub OAuth application * at startup of Gitea register all configured providers and also on adding/deleting of new providers * custom handling of errors in oauth2 request init + show better tip * add ExternalLoginUser model and migration script to add it to database * link a external account to an existing account (still need to handle wrong login and signup) and remove if user is removed * remove the linked external account from the user his settings * if user is unknown we allow him to register a new account or link it to some existing account * sign up with button on signin page (als change OAuth2Provider structure so we can store basic stuff about providers) * from gorilla/sessions docs: "Important Note: If you aren't using gorilla/mux, you need to wrap your handlers with context.ClearHandler as or else you will leak memory!" (we're using gorilla/sessions for storing oauth2 sessions) * use updated goth lib that now supports getting the OAuth2 user if the AccessToken is still valid instead of re-authenticating (prevent flooding the OAuth2 provider)
* Protected branches system (#339)Denis Denisov2017-02-211-11/+86
| | | | | | | | | | | | | | | | | | | | * Protected branches system * Moved default branch to branches section (`:org/:reponame/settings/branches`). * Initial support Protected Branch. - Admin does not restrict - Owner not to limit - To write permission restrictions * reformat tmpl * finished the UI and add/delete protected branch response * remove unused comment * indent all the template files and remove ru translations since we use crowdin * fix the push bug
* fix gofmt errorBo-Yi Wu2016-12-301-1/+1
| | | | Signed-off-by: Bo-Yi Wu <appleboy.tw@gmail.com>
* push + pull now works with reverse proxy + basic auth on apache 2.4Gogs2016-12-291-62/+75
|
* update code.gitea.io/git (#450)Lunny Xiao2016-12-221-1/+1
|
* golint fixed for routers (#208)Lunny Xiao2016-11-241-5/+7
|
* Update import paths from github.com/go-gitea to code.gitea.io (#135)Sandro Santilli2016-11-101-6/+6
| | | | | | | - Update import paths from github.com/go-gitea to code.gitea.io - Fix import path for travis See https://docs.travis-ci.com/user/languages/go#Go-Import-Path
* ACCESS_MODE_* -> AccessMode*Sandro Santilli2016-11-071-4/+4
|
* Merge pull request #50 from 0xbaadf00d/feature/2583-disablehttpcloningRachid Zarouali2016-11-071-0/+5
|\ | | | | Disable HTTP cloning
| * rename variable + fix wiki linkThibault Meyer2016-10-041-1/+1
| |
| * Can disable GIT interactions by HTTP protocolThibault Meyer2016-09-181-0/+5
| |
* | Replace gogits/git-module dependency with go-gitea/git (#94)Sandro Santilli2016-11-061-1/+1
| | | | | | | | | | | | | | | | * Replace gogits/git-module dependency with go-gitea/git Fixes #92 * Remove git alias for git module import (not needed)
* | Change import reference to match gitea instead of gogs (#37)Rémy Boulanouar2016-11-031-5/+5
|/
* General code quality improvementUnknwon2016-08-161-4/+3
|
* Replace convert.To with APIFormat callsUnknwon2016-08-141-1/+3
|
* #2246 fully support of webhooks for pull requestUnknwon2016-08-141-1/+1
|
* Refactor User.Id to User.IDUnknwon2016-07-241-2/+2
|
* Fixes #3110 (#3136)Franz Schmidt2016-06-271-1/+1
|
* repo/http: clean codeUnknwon2016-06-011-258/+194
|
* Add route for #2846Unknwon2016-03-211-1/+1
|
* Rename module: middleware -> contextUnknwon2016-03-111-4/+4
|
* #2650 fix possbility that use email as pusher user nameUnknwon2016-02-171-2/+9
| | | | | | | | | | Remove the possibility of using email as user name when user actually push through combination of email and password with HTTP. Also refactor update action function to replcae tons of arguments with single PushUpdateOptions struct. And define the user who pushes code as pusher, therefore variable names shouldn't be confusing any more.
* Use pretty 404 pages in repo.HTTPBackendFlorian Kaiser2016-02-021-6/+4
|
* typo fixzhuharev2016-01-061-2/+2
|
* #2311 improve HTTP auth error messageUnknwon2015-12-301-6/+9
|
* #2114 External URL for wikiUnknwon2015-12-111-0/+1
|
* finish wikiUnknwon2015-11-301-67/+66
|
* introduce git-shellUnknwon2015-11-261-1/+1
|
* #1681 some fixes for builtin SSH server on WindowsUnknwon2015-11-231-3/+3
|
* go vet and fix #1890Unknwon2015-11-081-1/+1
|
* New push to head repo of head branch: regenerate patch and retest applyUnknwon2015-10-241-2/+3
|
* #842 able to use access token replace basic authUnknwon2015-09-021-1/+1
|
* token recent activityUnknwon2015-08-191-1/+5
|
* try to fix HTTP ops not GCUnknwon2015-08-171-0/+1
|
* work on #1493Unknwon2015-08-171-1/+1
|
* WIP: create PR - choose branchUnknwon2015-08-081-2/+2
|
* allow anonymous SSH cloneUnknwon2015-08-051-2/+2
|
* #835: Realtime webhooksUnknwon2015-07-251-1/+4
|
* Set Content-Type to text/plain for http status 401Linquize2015-03-281-7/+7
| | | | This is because git command line shows the failure reason only if Content-Type is text/plain.
* #1040: dashboard no longer accessible when repo is missingUnknwon2015-03-161-1/+1
|
generated by cgit v1.2.3 (git 2.39.1) at 2025-02-08 19:28:12 +0000