gitea

mirror of https://github.com/go-gitea/gitea.git synced 2025-12-28 05:14:09 +00:00

History

silverwind 42d294941c Some checks are pending release-nightly / nightly-binary (push) Waiting to run Details release-nightly / nightly-container (push) Waiting to run Details Replace CSRF cookie with `CrossOriginProtection` (#36183 ) Removes the CSRF cookie in favor of [`CrossOriginProtection`](https://pkg.go.dev/net/http#CrossOriginProtection) which relies purely on HTTP headers. Fixes: https://github.com/go-gitea/gitea/issues/11188 Fixes: https://github.com/go-gitea/gitea/issues/30333 Helps: https://github.com/go-gitea/gitea/issues/35107 TODOs: - [x] Fix tests - [ ] Ideally add tests to validates the protection --------- Signed-off-by: wxiaoguang <wxiaoguang@gmail.com> Co-authored-by: wxiaoguang <wxiaoguang@gmail.com>		2025-12-25 12:33:34 +02:00
..
auth	Replace CSRF cookie with `CrossOriginProtection` (#36183 )	2025-12-25 12:33:34 +02:00
dashboard	Improve img lazy loading (#34804 )	2025-06-21 14:53:22 +08:00
notification	Replace CSRF cookie with `CrossOriginProtection` (#36183 )	2025-12-25 12:33:34 +02:00
overview	[Feature] Private README.md for organization (#32872 )	2024-12-31 04:22:09 +00:00
settings	Replace CSRF cookie with `CrossOriginProtection` (#36183 )	2025-12-25 12:33:34 +02:00
code.tmpl	Unify search boxes (#29530 )	2024-03-14 23:24:59 +00:00
heatmap.tmpl	Contribution heatmap improvements (#35876 )	2025-11-06 09:23:48 +01:00
profile.tmpl	Forks repository list page follow other repositories page (#34784 )	2025-06-21 12:27:25 -07:00