42d294941c
Replace CSRF cookie with CrossOriginProtection ( #36183 )
...
Removes the CSRF cookie in favor of
[`CrossOriginProtection`](https://pkg.go.dev/net/http#CrossOriginProtection )
which relies purely on HTTP headers.
Fixes: https://github.com/go-gitea/gitea/issues/11188
Fixes: https://github.com/go-gitea/gitea/issues/30333
Helps: https://github.com/go-gitea/gitea/issues/35107
TODOs:
- [x] Fix tests
- [ ] Ideally add tests to validates the protection
---------
Signed-off-by: wxiaoguang <[email protected] >
Co-authored-by: wxiaoguang <[email protected] >
2025-12-25 12:33:34 +02:00
8f051d598c
Added Description Field for Secrets and Variables ( #33526 )
...
Fixes #33484
---------
Co-authored-by: wxiaoguang <[email protected] >
2025-03-17 19:24:54 +00:00
cc1fdc84ca
Use test context in tests and new loop system in benchmarks ( #33648 )
...
Replace all contexts in tests with go1.24 t.Context()
---------
Co-authored-by: Giteabot <[email protected] >
Co-authored-by: wxiaoguang <[email protected] >
2025-02-20 09:57:40 +00:00
c422f179dd
Enhance routers for the Actions variable operations ( #33547 )
...
- Find the variable before updating or deleting
- Move the main logic from `routers/web/repo/setting/variables.go` to
`routers/web/shared/actions/variables.go`.
---------
Co-authored-by: wxiaoguang <[email protected] >
Co-authored-by: Giteabot <[email protected] >
2025-02-11 04:44:04 +08:00