rvba/forgejo
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
forgejo/routers/web/repo/setting
History
Gusted 9f955b300b
fix: don't allow credentials in migrate/push mirror URL 
Do not allow credentials to be present in the URLs that are provided for
migrations and push mirrors. They have to be given via the dedicated
input fields. Give a error when this happens.

There's nothing wrong with trying have the backend "correct" this, but
would be a larger patch than necessary in the context of a security fix.
This can be done in public.
2025-08-30 08:07:23 +02:00
..
avatar.go feat: detect Interlisp sources as text (#8377) 2025-07-02 07:38:46 +02:00
collaboration.go chore: branding import path (#7337) 2025-03-27 19:40:14 +00:00
default_branch.go chore: branding import path (#7337) 2025-03-27 19:40:14 +00:00
deploy_key.go chore: branding import path (#7337) 2025-03-27 19:40:14 +00:00
git_hooks.go chore: branding import path (#7337) 2025-03-27 19:40:14 +00:00
lfs.go feat: detect Interlisp sources as text (#8377) 2025-07-02 07:38:46 +02:00
main_test.go chore: branding import path (#7337) 2025-03-27 19:40:14 +00:00
protected_branch.go chore: branding import path (#7337) 2025-03-27 19:40:14 +00:00
protected_tag.go chore: branding import path (#7337) 2025-03-27 19:40:14 +00:00
runners.go chore: branding import path (#7337) 2025-03-27 19:40:14 +00:00
secrets.go chore: branding import path (#7337) 2025-03-27 19:40:14 +00:00
setting.go fix: don't allow credentials in migrate/push mirror URL 2025-08-30 08:07:23 +02:00
settings_test.go chore: QoL improvements to tests (#7917) 2025-05-21 15:45:56 +02:00
variables.go chore: branding import path (#7337) 2025-03-27 19:40:14 +00:00
webhook.go Actions Failure, Succes, Recover Webhooks (#7508) 2025-06-03 14:29:19 +02:00