gitea

mirror of https://github.com/go-gitea/gitea.git synced 2025-12-28 05:14:09 +00:00

History

silverwind 42d294941c Some checks are pending release-nightly / nightly-binary (push) Waiting to run Details release-nightly / nightly-container (push) Waiting to run Details Replace CSRF cookie with `CrossOriginProtection` (#36183 ) Removes the CSRF cookie in favor of [`CrossOriginProtection`](https://pkg.go.dev/net/http#CrossOriginProtection) which relies purely on HTTP headers. Fixes: https://github.com/go-gitea/gitea/issues/11188 Fixes: https://github.com/go-gitea/gitea/issues/30333 Helps: https://github.com/go-gitea/gitea/issues/35107 TODOs: - [x] Fix tests - [ ] Ideally add tests to validates the protection --------- Signed-off-by: wxiaoguang <wxiaoguang@gmail.com> Co-authored-by: wxiaoguang <wxiaoguang@gmail.com>		2025-12-25 12:33:34 +02:00
..
content	Fix various bugs (#36139 )	2025-12-12 18:56:05 +00:00
metadata	Fix outdated tmpl code (#32953 )	2024-12-23 11:21:11 +08:00
shared	Replace CSRF cookie with `CrossOriginProtection` (#36183 )	2025-12-25 12:33:34 +02:00
settings.tmpl	Replace CSRF cookie with `CrossOriginProtection` (#36183 )	2025-12-25 12:33:34 +02:00
view.tmpl	refactor organization menu (#33928 )	2025-04-10 12:12:55 -07:00