0
Fork 0
mirror of https://codeberg.org/forgejo/forgejo.git synced 2024-12-30 11:23:56 -05:00
forgejo/modules/context
Giteabot 7679f4d51a
Fix open redirect check for more cases (#25143) (#25154)
Backport #25143 by @lafriks

If redirect_to parameter has set value starting with `\\example.com`
redirect will be created with header `Location: /\\example.com` that
will redirect to example.com domain.

Co-authored-by: Lauris BH <lauris@nix.lv>
2023-06-08 18:03:42 +02:00
..
access_log.go Fix regression: access log template, gitea manager cli command (#24838) 2023-05-22 09:38:38 +08:00
api.go Decouple the different contexts from each other (#24786) 2023-05-21 09:50:53 +08:00
api_org.go
api_test.go
base.go Decouple the different contexts from each other (#24786) 2023-05-21 09:50:53 +08:00
captcha.go
context.go Fix install page context, make the install page tests really test (#24858) 2023-05-23 09:29:15 +08:00
context_cookie.go
context_model.go
context_request.go Decouple the different contexts from each other (#24786) 2023-05-21 09:50:53 +08:00
context_response.go Fix open redirect check for more cases (#25143) (#25154) 2023-06-08 18:03:42 +02:00
context_test.go
csrf.go
org.go Decouple the different contexts from each other (#24786) 2023-05-21 09:50:53 +08:00
package.go Fix install page context, make the install page tests really test (#24858) 2023-05-23 09:29:15 +08:00
pagination.go
permission.go Redesign Scoped Access Tokens (#24767) 2023-06-04 20:57:16 +02:00
private.go Decouple the different contexts from each other (#24786) 2023-05-21 09:50:53 +08:00
repo.go Decouple the different contexts from each other (#24786) 2023-05-21 09:50:53 +08:00
response.go Fix regression: access log template, gitea manager cli command (#24838) 2023-05-22 09:38:38 +08:00
utils.go Decouple the different contexts from each other (#24786) 2023-05-21 09:50:53 +08:00
xsrf.go
xsrf_test.go