0
Fork 0
mirror of https://codeberg.org/forgejo/forgejo.git synced 2024-12-23 07:43:18 -05:00
forgejo/modules/context
Giteabot 7679f4d51a
Fix open redirect check for more cases (#25143) (#25154)
Backport #25143 by @lafriks

If redirect_to parameter has set value starting with `\\example.com`
redirect will be created with header `Location: /\\example.com` that
will redirect to example.com domain.

Co-authored-by: Lauris BH <lauris@nix.lv>
2023-06-08 18:03:42 +02:00
..
access_log.go Fix regression: access log template, gitea manager cli command (#24838) 2023-05-22 09:38:38 +08:00
api.go Decouple the different contexts from each other (#24786) 2023-05-21 09:50:53 +08:00
api_org.go Implement FSFE REUSE for golang files (#21840) 2022-11-27 18:20:29 +00:00
api_test.go Implement FSFE REUSE for golang files (#21840) 2022-11-27 18:20:29 +00:00
base.go Decouple the different contexts from each other (#24786) 2023-05-21 09:50:53 +08:00
captcha.go Add new captcha: cloudflare turnstile (#22369) 2023-02-05 15:29:03 +08:00
context.go Fix install page context, make the install page tests really test (#24858) 2023-05-23 09:29:15 +08:00
context_cookie.go Improve Gitea's web context, decouple "issue template" code into service package (#24590) 2023-05-09 01:30:14 +02:00
context_model.go Improve Gitea's web context, decouple "issue template" code into service package (#24590) 2023-05-09 01:30:14 +02:00
context_request.go Decouple the different contexts from each other (#24786) 2023-05-21 09:50:53 +08:00
context_response.go Fix open redirect check for more cases (#25143) (#25154) 2023-06-08 18:03:42 +02:00
context_test.go Use standard HTTP library to serve files (#24693) 2023-05-13 16:04:57 +02:00
csrf.go Refactor cookie (#24107) 2023-04-13 15:45:33 -04:00
org.go Decouple the different contexts from each other (#24786) 2023-05-21 09:50:53 +08:00
package.go Fix install page context, make the install page tests really test (#24858) 2023-05-23 09:29:15 +08:00
pagination.go Make branches list page operations remember current page (#23420) 2023-03-14 13:11:38 +08:00
permission.go Redesign Scoped Access Tokens (#24767) 2023-06-04 20:57:16 +02:00
private.go Decouple the different contexts from each other (#24786) 2023-05-21 09:50:53 +08:00
repo.go Decouple the different contexts from each other (#24786) 2023-05-21 09:50:53 +08:00
response.go Fix regression: access log template, gitea manager cli command (#24838) 2023-05-22 09:38:38 +08:00
utils.go Decouple the different contexts from each other (#24786) 2023-05-21 09:50:53 +08:00
xsrf.go Update gitea-vet to check FSFE REUSE (#22004) 2022-12-02 22:14:57 +08:00
xsrf_test.go Update gitea-vet to check FSFE REUSE (#22004) 2022-12-02 22:14:57 +08:00