Mirrors/gitea
1
0
Fork 0
mirror of https://github.com/go-gitea/gitea.git synced 2025-12-28 05:14:09 +00:00
Code Issues Actions 3 Packages Projects Releases Wiki Activity
main
gitea/tests
History
silverwind 42d294941c
Some checks are pending
release-nightly / nightly-binary (push) Waiting to run
Details
release-nightly / nightly-container (push) Waiting to run
Details
Replace CSRF cookie with CrossOriginProtection (#36183) 
Removes the CSRF cookie in favor of
[`CrossOriginProtection`](https://pkg.go.dev/net/http#CrossOriginProtection)
which relies purely on HTTP headers.

Fixes: https://github.com/go-gitea/gitea/issues/11188
Fixes: https://github.com/go-gitea/gitea/issues/30333
Helps: https://github.com/go-gitea/gitea/issues/35107

TODOs:

- [x] Fix tests
- [ ] Ideally add tests to validates the protection

---------

Signed-off-by: wxiaoguang <wxiaoguang@gmail.com>
Co-authored-by: wxiaoguang <wxiaoguang@gmail.com>
2025-12-25 12:33:34 +02:00
..
e2e Fix actions lint (#36029) 2025-11-26 10:13:37 -08:00
fuzz Fix fuzz test (#33156) 2025-01-09 15:15:47 +08:00
gitea-lfs-meta
gitea-repositories-meta Fix corrupted external render content (#35946) 2025-11-14 08:31:11 +08:00
integration Replace CSRF cookie with CrossOriginProtection (#36183) 2025-12-25 12:33:34 +02:00
testdata/data Add artifacts test fixture (#30300) 2024-11-01 10:29:54 +08:00
mssql.ini.tmpl Fix LFS URL (#33840) 2025-03-10 17:36:02 +08:00
mysql.ini.tmpl Fix LFS URL (#33840) 2025-03-10 17:36:02 +08:00
pgsql.ini.tmpl Fix LFS URL (#33840) 2025-03-10 17:36:02 +08:00
sqlite.ini.tmpl Fix corrupted external render content (#35946) 2025-11-14 08:31:11 +08:00
test_utils.go Remove incorrect "db.DefaultContext" usages (#35366) 2025-08-28 03:52:43 +00:00