Lunny Xiao
e09bee3a69
Merge branch 'release/v1.22' into lunny/backport_31863
1 day ago
Lunny Xiao
c2598b4642
Support HTTP POST requests to `/userinfo`, aligning to OpenID Core specification ( #32578 ) ( #32594 )
1 day ago
wxiaoguang
a290aab0e8
Fix debian package clean up ( #32351 ) ( #32590 )
...
Partially backport #32351
2 days ago
Job
f205af99c9
Fix PR creation on forked repositories ( #31863 )
...
Resolves #20475
2 days ago
Giteabot
8f6cc95734
Fix GetInactiveUsers ( #32540 ) ( #32588 )
...
Backport #32540 by @lunny
Fix #31480
Co-authored-by: Lunny Xiao <xiaolunwen@gmail.com>
2 days ago
Rowan Bohde
0b5da27570
allow the actions user to login via the jwt token ( #32527 ) ( #32580 )
...
Backport #32527
We have some actions that leverage the Gitea API that began receiving
401 errors, with a message that the user was not found. These actions
use the `ACTIONS_RUNTIME_TOKEN` env var in the actions job to
authenticate with the Gitea API. The format of this env var in actions
jobs changed with go-gitea/gitea/pull/28885 to be a JWT (with a
corresponding update to `act_runner`) Since it was a JWT, the OAuth
parsing logic attempted to parse it as an OAuth token, and would return
user not found, instead of falling back to look up the running task and
assigning it to the actions user.
Make ACTIONS_RUNTIME_TOKEN in action runners could be used, attempting
to parse Oauth JWTs. The code to parse potential old
`ACTION_RUNTIME_TOKEN` was kept in case someone is running an older
version of act_runner that doesn't support the Actions JWT.
2 days ago
wxiaoguang
81ec66c257
Fix submodule parsing ( #32571 ) ( #32577 )
...
A quick fix for #32568
Partially backport from #32571
2 days ago
Giteabot
3661b14d97
Remove unnecessary code ( #32560 ) ( #32567 )
...
Backport #32560 by @lunny
PushMirrors only be used in the repository setting page. So it should
not be loaded on every repository page.
Co-authored-by: Lunny Xiao <xiaolunwen@gmail.com>
3 days ago
Lunny Xiao
cf2d332443
Refactor find forks and fix possible bugs that weak permissions check ( #32528 ) ( #32547 )
...
Backport #32528
- Move models/GetForks to services/FindForks
- Add doer as a parameter of FindForks to check permissions
- Slight performance optimization for get forks API with batch loading
of repository units
- Add tests for forking repository to organizations
---------
Co-authored-by: wxiaoguang <wxiaoguang@gmail.com>
4 days ago
Giteabot
1b7031c5c2
Fix some places which doesn't repsect org full name setting ( #32243 ) ( #32550 )
...
Backport #32243 by @lunny
Partially fix #31345
Co-authored-by: Lunny Xiao <xiaolunwen@gmail.com>
4 days ago
Lunny Xiao
673fee427e
Refactor push mirror find and add check for updating push mirror ( #32539 ) ( #32549 )
...
backport #32539
---------
Co-authored-by: wxiaoguang <wxiaoguang@gmail.com>
4 days ago
wxiaoguang
578c02d652
Improve some sanitizer rules ( #32534 )
...
This is a backport-only fix for 1.22
1.23 has a proper fix #32533
5 days ago
Giteabot
6555cfcac3
Fix basic auth with webauthn ( #32531 ) ( #32536 )
...
Backport #32531 by @lunny
WebAuthn should behave the same way as TOTP. When enabled, basic auth
with username/password should need to WebAuthn auth, otherwise returned
401.
Co-authored-by: Lunny Xiao <xiaolunwen@gmail.com>
6 days ago
Giteabot
b6eef34874
Fix artifact v4 upload above 8MB ( #31664 ) ( #32523 )
6 days ago
Giteabot
d03dd04d65
Remove transaction for archive download ( #32186 ) ( #32520 )
...
Backport #32186 by @lunny
Since there is a status column in the database, the transaction is
unnecessary when downloading an archive. The transaction is blocking
database operations, especially with SQLite.
Replace #27563
Co-authored-by: Lunny Xiao <xiaolunwen@gmail.com>
1 week ago
Giteabot
257ce61023
Fix oauth2 error handle not return immediately ( #32514 ) ( #32516 )
...
Backport #32514 by lunny
Co-authored-by: Lunny Xiao <xiaolunwen@gmail.com>
1 week ago
Lunny Xiao
781310df77
Trim title before insert/update to database to match the size requirements of database ( #32498 ) ( #32507 )
1 week ago
Giteabot
f79f8e13e3
Fix nil panic if repo doesn't exist ( #32501 ) ( #32502 )
...
Backport #32501 by wxiaoguang
fix #32496
Co-authored-by: wxiaoguang <wxiaoguang@gmail.com>
1 week ago
Giteabot
a4263d341c
Add a doctor check to disable the "Actions" unit for mirrors ( #32424 ) ( #32497 )
...
Backport #32424 by @Zettat123
Resolve #32232
Users can disable the "Actions" unit for all mirror repos by running
```
gitea doctor check --run disable-mirror-actions-unit --fix
```
Co-authored-by: Zettat123 <zettat123@gmail.com>
1 week ago
6543
52a66d78d4
Update nix development environment vor v1.22.x ( #32495 )
...
just bump:
* golang: v1.22.2 -> v1.22.9
* nodejs: v20.12.2 -> v20.18.0
* python: v3.12.3 -> v3.12.7
1 week ago
wxiaoguang
ef339713c2
Refactor internal routers (partial backport, auth token const time comparing) ( #32473 ) ( #32479 )
...
Partially backport #32473 . LFS related changes are not in 1.22, so skip
them.
1. Ignore non-existing repos during migrations
2. Improve ReadBatchLine's comment
3. Use `X-Gitea-Internal-Auth` header for internal API calls and make
the comparing constant time (it wasn't a serous problem because in a
real world it's nearly impossible to timing-attack the token, but indeed
security related and good to fix and backport)
4. Fix route mock nil check
1 week ago
wxiaoguang
26437a03b0
Disable Oauth check if oauth disabled ( #32368 ) ( #32480 )
...
Partially backport Disable Oauth check if oauth disabled #32368
2 weeks ago
Giteabot
b48df1082e
cargo registry - respect renamed dependencies ( #32430 ) ( #32478 )
...
Backport #32430 by usbalbin
Co-authored-by: Albin Hedman <albin9604@gmail.com>
Co-authored-by: wxiaoguang <wxiaoguang@gmail.com>
2 weeks ago
Giteabot
eb5733636b
Fix broken releases when re-pushing tags ( #32435 ) ( #32449 )
...
Backport #32435 by @Zettat123
Fix #32427
---------
Co-authored-by: Zettat123 <zettat123@gmail.com>
Co-authored-by: Lunny Xiao <xiaolunwen@gmail.com>
2 weeks ago
Giteabot
62d8433194
Fix mermaid diagram height when initially hidden ( #32457 ) ( #32464 )
...
Backport #32457 by @silverwind
In a hidden iframe, `document.body.clientHeight` is not reliable. Use
`IntersectionObserver` to detect the visibility change and update the
height there.
Fixes: https://github.com/go-gitea/gitea/issues/32392
<img width="885" alt="image"
src="https://github.com/user-attachments/assets/a95ef6aa-27e7-443f-9d06-400ef27919ae ">
Co-authored-by: silverwind <me@silverwind.io>
2 weeks ago
Giteabot
22a93c1cdc
Only provide the commit summary for Discord webhook push events ( #32432 ) ( #32447 )
...
Backport #32432 by @kemzeb
Resolves #32371 .
#31970 should have just showed the commit summary, but
`strings.SplitN()` was misused such that we did not perform any
splitting at all and just used the message. This was not caught in the
unit test made in that PR since the test commit summary was > 50 (which
truncated away the commit description).
This snapshot resolves this and adds another unit test to ensure that we
only show the commit summary.
Co-authored-by: Kemal Zebari <60799661+kemzeb@users.noreply.github.com>
2 weeks ago
Lunny Xiao
16e51e91a1
Only query team tables if repository is under org when getting assignees ( #32414 ) ( #32426 )
...
backport #32414
It's unnecessary to query the team table if the repository is not under
organization when getting assignees.
2 weeks ago
wxiaoguang
936847b3da
Quick fix milestone deadline 9999 for 1.22 ( #32423 )
3 weeks ago
Lunny Xiao
7430d069b3
Fix created_unix for mirroring ( #32342 ) ( #32406 )
...
Fix #32233
Backport #32342
3 weeks ago
Lunny Xiao
a3b7b98336
Fix broken image when editing comment with non-image attachments ( #32319 ) ( #32345 )
...
Backport #32319
Fix #32316
---------
Co-authored-by: yp05327 <576951401@qq.com>
3 weeks ago
Zettat123
898f852d03
Fix `missing signature key` error when pulling Docker images with `SERVE_DIRECT` enabled ( #32365 ) ( #32397 )
...
Backport #32365
Fix #28121
I did some tests and found that the `missing signature key` error is
caused by an incorrect `Content-Type` header. Gitea correctly sets the
`Content-Type` header when serving files.
348d1d0f32/routers/api/packages/container/container.go (L712-L717)
However, when `SERVE_DIRECT` is enabled, the `Content-Type` header may
be set to an incorrect value by the storage service. To fix this issue,
we can use query parameters to override response header values.
https://docs.aws.amazon.com/AmazonS3/latest/API/API_GetObject.html <img
width="600px"
src="https://github.com/user-attachments/assets/f2ff90f0-f1df-46f9-9680-b8120222c555 "
/>
In this PR, I introduced a new parameter to the `URL` method to support
additional parameters.
```
URL(path, name string, reqParams url.Values) (*url.URL, error)
```
3 weeks ago
6543
9d62d7a443
Respect UI.ExploreDefaultSort setting again ( #32357 ) ( #32385 )
...
Backport #32357
fix regression of https://github.com/go-gitea/gitea/pull/29430
---
*Sponsored by Kithara Software GmbH*
3 weeks ago
Lunny Xiao
bf53ab26fa
Fix disable 2fa bug ( #32320 ) ( #32330 )
...
Backport #32320
4 weeks ago
Zettat123
0d11ba93dd
Fix the permission check for user search API and limit the number of returned users for `/user/search` ( #32310 )
...
Partially backport #32288
---------
Co-authored-by: wxiaoguang <wxiaoguang@gmail.com>
1 month ago
Lunny Xiao
b7d12347f3
Add warn log when deleting inactive users ( #32318 ) ( #32321 )
...
Backport #32318
Add log for the problem #31480
1 month ago
6543
b6f8372d7d
API: enhance SearchIssues swagger docs ( #32208 ) ( #32298 )
...
Backport #32208
This will result in better api clients generated out of the openapi docs for SearchIssues
---
*Sponsored by Kithara Software GmbH*
1 month ago
YR Chen
0c12252c23
Update github.com/go-enry/go-enry to v2.9.1 ( #32295 ) ( #32296 )
...
Backport #32295
`go-enry` v2.9.1 includes latest file patterns from Linguist, which can
identify more generated file type, eg. `pdm.lock`.
1 month ago
Zettat123
99cac1f50c
Always update expiration time when creating an artifact ( #32281 ) ( #32285 )
...
Backport #32281
Fix #32256
1 month ago
a1012112796
2a99607add
make `show stats` work when only one file changed ( #32244 ) ( #32268 )
...
Backport #32244
fix https://github.com/go-gitea/gitea/issues/32226
in https://github.com/go-gitea/gitea/pull/27775 , it do some changes to
only show diff file tree when more than one file changed. But looks it
also break the `diff-file-list` logic, which looks not expected change.
so try fix it.
/cc @silverwind
example view:
![image](https://github.com/user-attachments/assets/281e9c4f-a269-4d36-94eb-a132058aea87 )
Signed-off-by: a1012112796 <1012112796@qq.com>
1 month ago
cloudchamb3r
c1023b97aa
[v1.22 backport] Fix null errors on conversation holder ( #32258 ) ( #32266 ) ( #32282 )
...
Backport #32266
fix #32258
Errors in the issue was due to unhandled null check. so i fixed it.
### Detailed description for Issue & Fix
To reproduce that issue, the comment must be deleted on Conversation
tab.
#### Before Delete
<img width="1032" alt="image"
src="https://github.com/user-attachments/assets/72df61ba-7db6-44c9-bebc-ca1178dd27f1 ">
#### After Delete (AS-IS)
<img width="1010" alt="image"
src="https://github.com/user-attachments/assets/36fa537e-4f8e-4535-8d02-e538c50f0dd8 ">
gitea already have remove logic for `timeline-item-group`, but because
of null ref exception the later logic that removes `timeline-item-group`
could be not be called correctly.
1 month ago
wxiaoguang
7e0fd4c208
Warn users when they try to use a non-root-url to sign in/up ( #32272 ) ( #32273 )
1 month ago
wxiaoguang
db7349bc0d
Make `owner/repo/pulls` handlers use "PR reader" permission ( #32254 ) ( #32265 )
...
Backport #32254 (no conflict)
1 month ago
Zettat123
55562f9c79
Update scheduled tasks even if changes are pushed by "ActionsUser" ( #32246 ) ( #32252 )
...
Backport #32246
Fix #32219
Co-authored-by: delvh <dev.lh@web.de>
1 month ago
Giteabot
24b65f122a
Only rename a user when they should receive a different name ( #32247 ) ( #32249 )
...
Backport #32247 by @lunny
Fix #31996
Co-authored-by: Lunny Xiao <xiaolunwen@gmail.com>
1 month ago
Giteabot
bcfe1f91d2
Fix dropdown content overflow ( #31610 ) ( #32250 )
...
Backport #31610 by charles7668
close #31602
Co-authored-by: charles <30816317+charles7668@users.noreply.github.com>
Co-authored-by: wxiaoguang <wxiaoguang@gmail.com>
1 month ago
Giteabot
f15d5f0c4a
Fix checkbox bug on private/archive filter ( #32236 ) ( #32240 )
...
Backport #32236 by cloudchamb3r
fix #32235
Co-authored-by: cloudchamb3r <jizon0123@protonmail.com>
Co-authored-by: wxiaoguang <wxiaoguang@gmail.com>
1 month ago
Lunny Xiao
494017e478
Add release note for v1.22.3 ( #32205 )
...
Co-authored-by: sebastian-sauer <sauer.sebastian@gmail.com>
1 month ago
Lunny Xiao
56051d9b3b
Fix bug when a token is given public only ( #32204 ) ( #32218 )
...
Backport #32204
2 months ago
Giteabot
4815c4aeae
Add null check for responseData.invalidTopics ( #32212 ) ( #32217 )
...
Backport #32212 by @cloudchamb3r
<img width="553" alt="Screenshot 2024-10-08 at 10 49 10 AM"
src="https://github.com/user-attachments/assets/faeef64d-684a-4aba-b7fc-c7c6a0301abe ">
`responseData.invalidTopics` can be null but it wasn't handled.
Co-authored-by: cloudchamb3r <jizon0123@protonmail.com>
2 months ago
Lunny Xiao
2e3a191097
Fix javascript error when an anonymous user visiting migration page ( #32144 ) ( #32179 )
...
backport #32144
This PR fixes javascript errors when an anonymous user visits the
migration page.
It also makes task view checking more restrictive.
The router moved from `/user/task/{id}/status` to
`/username/reponame/-/migrate/status` because it's a migrate status.
Co-authored-by: wxiaoguang <wxiaoguang@gmail.com>
2 months ago