e97e883ad5
Add reverseproxy auth for API back with default disabled ( #26703 )
...
This feature was removed by #22219 to avoid possible CSRF attack.
This PR takes reverseproxy auth for API back but with default disabled.
To prevent possbile CSRF attack, the responsibility will be the
reverseproxy but not Gitea itself.
For those want to enable this `ENABLE_REVERSE_PROXY_AUTHENTICATION_API`,
they should know what they are doing.
---------
Co-authored-by: Giteabot <teabot@gitea.io>
2023-09-07 08:31:46 +00:00
1221221595
Add "dir=auto" for input/textarea elements by default ( #26735 )
...
Co-authored-by: silverwind <me@silverwind.io>
Co-authored-by: Giteabot <teabot@gitea.io>
2023-09-07 08:00:20 +00:00
d1dca38a2a
Fix schedule actions still running even if workflow disalbed ( #26939 )
...
Fix #26782
2023-09-07 10:25:46 +08:00
1ee4882b88
Fix the missing repo count ( #26942 )
...
The commit
(958d148043😝
BTW, the `leave` button is in a weird position
2023-09-07 01:44:47 +00:00
419003adb2
Improve SSH Key / GPG Key / Deploy Key UI ( #26949 )
...
1. In many cases, the `flex-list` has previous and next `gt-hidden`
siblings, so relax the CSS selector to remove all ".segument .flex-list"
paddings.
2. Make the "Add key" button can toggle
3. Move help message into the related segment(panel). Otherwise users
would misread the message, eg: the SSH help seemed for GPG because they
are so near
4. Move modal element into the segment element, otherwise it affects the
layout
2023-09-07 01:13:11 +00:00
9860dba566
[skip ci] Updated translations via Crowdin
2023-09-07 00:22:15 +00:00
e596806217
Update nginx recommendations ( #26924 )
...
- `Connection` and `Upgrade` [needed for
websockets](https://www.nginx.com/blog/websocket-nginx/ )
- ~~`X-Real-IP` unnecessary and duplicate with `X-Forwarded-For`. [chi
checks both
headers](https://github.com/go-chi/chi/blob/master/middleware/realip.go ),
but XFF is definitely the more "standard" one.~~
2023-09-06 17:49:45 +00:00
d1353ad55a
docs: Update Profile README information ( #26947 )
...
Follow-up of https://github.com/go-gitea/gitea/pull/26295
2023-09-06 10:22:50 -04:00
2715ef6558
Fix scoped label layout ( #26932 )
...
Fix #26931
2023-09-06 12:22:38 +00:00
b9df9fa2e2
Move createrepository from module to service layer ( #26927 )
...
Repository creation depends on many models, so moving it to service
layer is better.
2023-09-06 12:08:51 +00:00
b3d88ada01
Add a documentation note for Windows Service ( #26938 )
...
Service may fail to start at boot time with timeout
Resolves #26934
Co-authored-by: Nikolay Kobzarev <n.kobzarev@aeronavigator.ru>
2023-09-06 11:14:12 +00:00
a7d9a70552
allow "latest" to be used in release vTag when downloading file ( #26748 )
...
Hello,
In the discord I saw
[someone](https://discord.com/channels/322538954119184384/1069795723178160168/1145061200644800514 )
complaining that you can't use the "latest" keyword as release tag to
download a specific file:
In his example:
https://www.uberwald.me/gitea/public/fvtt-ecryme/releases/latest/system.json
However the latest keyword works for the release page, so I think it's a
good thing to implement this on the release attachment download url too.
---------
Co-authored-by: wxiaoguang <wxiaoguang@gmail.com>
2023-09-06 11:06:04 +00:00
9b0743ae33
Extract common code to new template ( #26933 )
...
Same as #26903
2023-09-06 10:11:06 +00:00
7812ce86dc
Show always repo count in header ( #26842 )
...
A few pages don't load the repo count of an user/org, so it is not shown
in the header. This happens mostly on org pages, but the package
settings applies to the user page as well.
Before:
After:
Seen on #26826
Regression of #25928
2023-09-06 09:34:26 +00:00
958d148043
Show always repo count in header ( #26842 )
...
A few pages don't load the repo count of an user/org, so it is not shown
in the header. This happens mostly on org pages, but the package
settings applies to the user page as well.
Before:
After:
Seen on #26826
Regression of #25928
2023-09-06 08:49:36 +00:00
460a2b0edf
Artifacts retention and auto clean up ( #26131 )
...
Currently, Artifact does not have an expiration and automatic cleanup
mechanism, and this feature needs to be added. It contains the following
key points:
- [x] add global artifact retention days option in config file. Default
value is 90 days.
- [x] add cron task to clean up expired artifacts. It should run once a
day.
- [x] support custom retention period from `retention-days: 5` in
`upload-artifact@v3`.
- [x] artifacts link in actions view should be non-clickable text when
expired.
2023-09-06 07:41:06 +00:00
113eb5fc24
Fix UI anomalies ( #26929 )
2023-09-06 07:00:45 +00:00
0850be6750
Fix the display of org level badges ( #26504 )
...
Follow #24654 #22705 #24232
In some pages we still have missing badges, for example:
2023-09-06 14:38:14 +08:00
31c92d9695
Add missing translation ( #26926 )
...
Fix #26923
2023-09-05 22:13:08 -04:00
97aa749578
Vendor `jquery.are-you-sure` with strict mode fixes ( #26901 )
...
Extract from https://github.com/go-gitea/gitea/pull/25940 and because
https://github.com/go-gitea/gitea/pull/26743 does seem to need more
work.
This will be required if we are to run our JS in [strict
mode](https://developer.mozilla.org/en-US/docs/Web/JavaScript/Reference/Strict_mode ).
Previously, the two variables `$fields` and `$dirtyForms` polluted
`window`:
<img width="1145" alt="image"
src="https://github.com/go-gitea/gitea/assets/115237/e0270a0e-b881-4ed7-9cc4-e9ab25c0a2bc ">
2023-09-06 00:02:44 +00:00
01e71e2a47
Fix the secret regexp pattern on web page ( #26910 )
...
The error is caused by the web page not handling the post form
failure, which is 400 bad requests in this case.
2023-09-05 20:15:19 +00:00
bfa22a473e
Add @chenrui333 as maintainer ( #26917 )
...
relates to https://gitea.com/gitea/homebrew-gitea/pulls/179
Signed-off-by: Rui Chen <rui@chenrui.dev>
2023-09-05 14:47:07 -04:00
540bf9fa6d
Move notification interface to services layer ( #26915 )
...
Extract from #22266
2023-09-05 18:37:47 +00:00
084eacb5d4
fetch emails of currently displayed user on admin page ( #26918 )
...
Currently, this fetches the emails from the user viewing the page. This
PR changes it to show the emails from the user whose page it is.
2023-09-05 17:56:21 +00:00
5f7fa27a44
Improve LDAP group config documentation, fixes #21159 ( #21227 )
...
Improve the wording of the LDAP group attributes documentation and
expand the examples.
2023-09-05 13:18:53 -04:00
e67ddaa0f8
update footer link to new landing page ( #26916 )
...
as title
Co-authored-by: Giteabot <teabot@gitea.io>
2023-09-05 16:44:07 +00:00
0eebeeec90
Remove `Named` interface ( #26913 )
...
`Named` is implemented by every `Method` and future implementations
should implement the method too.
2023-09-05 15:58:30 +00:00
a99b96cbcd
Refactor secrets modification logic ( #26873 )
...
- Share code between web and api
- Add some tests
2023-09-05 15:21:02 +00:00
e9f5067653
Add missing `reqToken()` to notifications endpoints ( #26914 )
...
They currently throw a Internal Server Error when you use them without a
token. Now they correctly return a `token is required` error.
This is no security issue. If you use this endpoints with a token that
don't have the correct permission, you get the correct error. This is
not affected by this PR.
2023-09-05 14:43:34 +00:00
f79f6a26ae
feat(API): add routes and functions for managing user's secrets ( #26909 )
...
- Add routes for creating or updating a user's actions secrets in
`routers/api/v1/api.go`
- Add a new file `routers/api/v1/user/action.go` with functions for
creating or updating a user's secrets and deleting a user's secret
- Modify the `templates/swagger/v1_json.tmpl` file to include the routes
for creating or updating a user's secrets and deleting a user's secret
---------
Signed-off-by: Bo-Yi Wu <appleboy.tw@gmail.com>
Co-authored-by: KN4CK3R <admin@oldschoolhack.me>
2023-09-05 14:02:50 +00:00
f064d716c3
Move feed notification service layer ( #26908 )
...
Extract from #22266
2023-09-05 13:00:52 +00:00
65588b732c
Extract common code to new template ( #26903 )
...
I noticed that the code of several new webhook pages is highly
repetitive, so I pulled out the common parts to a new template, unified
reference, unified maintenance
---------
Co-authored-by: KN4CK3R <admin@oldschoolhack.me>
2023-09-05 12:00:28 +00:00
6c73c0da53
Move ui notification to service layer ( #26907 )
...
Extract from #22266
2023-09-05 11:15:42 +00:00
dc2dd76d98
Remove duplicated notify mail configuration on tests ( #26912 )
...
Extract from #22266
Co-authored-by: Giteabot <teabot@gitea.io>
2023-09-05 12:34:36 +02:00
aa678b8098
Move indexer notification to service layer ( #26906 )
...
Extract from #22266
2023-09-05 10:07:57 +00:00
a66d883a18
Move mail notification logic to service layer ( #26905 )
...
Extract from #22266
2023-09-05 17:26:59 +08:00
0b10df67ce
Improve DeleteByID ( #26904 )
2023-09-05 08:11:35 +02:00
1859c5b636
Update backup instructions to align with archive structure ( #26902 )
...
Signed-off-by: JonRB <jon.roadleybattin@gmail.com>
fixes https://github.com/go-gitea/gitea/issues/25878
2023-09-05 09:26:12 +08:00
682552378f
More fixes for the "commit-body" ( #26898 )
...
The changes for "commit-body" in #26877 are not ideal.
The reason is: the "commit-body" is usually a `<pre>`, it has default
margins. In most cases, we do not need that large margin. So, this PR
introduces a general but small margin for all "commit-body" elements.
Then these `gt-m-0` could be removed.
The `:not` selector is not needed, because the `.timeline-item` selector
is already clear enough.
2023-09-04 13:38:59 +00:00
c17fd68be7
Show queue's active worker number ( #26896 )
2023-09-04 21:07:32 +08:00
51cfe0e7de
Remove CSS `has` selector and improve various styles ( #26891 )
...
Replace #26850
Major changes:
1. Remove all `has` selectors, it is still not supported by firefox.
Actually there could be some more general and clearer approaches
2. Remove `two-toggle-buttons`, the `.ui.buttons` just works well
3. Rewrite the `.ui.buttons` border styles, see the screenshots
4. Remove the "fine-tuning" paddings from the the flex children, they
could layout themselves well.
2023-09-04 18:22:46 +08:00
a38cf868c5
[skip ci] Updated licenses and gitignores
2023-09-04 00:23:31 +00:00
1bfb3f78f6
Update documents to fix some links ( #26885 )
2023-09-03 18:45:20 +00:00
99a5595408
clarify aspects of the dump command ( #26887 )
...
clarify aspects of the dump command
Possibly closes #26862
---------
Co-authored-by: delvh <dev.lh@web.de>
2023-09-03 14:44:01 -04:00
918accaafa
Relocate the `RSS user feed` button ( #26882 )
...
before:
after:
Co-authored-by: KN4CK3R <admin@oldschoolhack.me>
2023-09-03 11:06:59 +00:00
fc039167d2
Use Go 1.21 and update dependencies ( #26878 )
...
To make sure Gitea's next release's lifecycle could have active Golang
support.
And min/max are builtin now.
2023-09-03 10:34:57 +00:00
7477c93d62
Update docs about attachment path ( #26883 )
...
This change was caused by #26271 , for configuration as below:
```
[attachment]
ENABLE = true
PATH = data/attachments
MAX_SIZE = 100
MAX_FILES = 5
```
Before #26271 , the resolved path is ${AppWorkPath}/${attachments.PATH}
(such as `/var/lib/gitea/data/attachments`)
After #26271 , the resolved path is ${AppDataPath}/${attachments.PATH}
(such as `/var/lib/gitea/data/data/attachments`)
Fix https://github.com/go-gitea/gitea/issues/26864
Follow https://github.com/go-gitea/gitea/pull/26271
2023-09-03 11:40:10 +02:00
fba7150ca9
Refactor "shortsha" ( #26877 )
...
The old code used complex `if` blocks and strange HTML layouts.
<details>
</details>
This PR refactors the template code and remove legacy CSS styles. The UI
doesn't change much.
2023-09-03 02:58:52 +00:00
f1fe102c8c
Fix wrong review requested number ( #26784 )
...
Fix the wrong review requested number mentioned by #18808 .
Fix #18808
Before:
After:
2023-09-03 02:12:38 +00:00
c802c46a9b
Refactor `og:description` to limit the max length ( #26876 )
...
1. The `og:description` should be "a one to two sentence description of
your object"
* It shouldn't output all the user inputted content -- it would be
pretty huge.
* Maybe it only needs at most 300 bytes.
2. Do not render commit message as HTML
2023-09-03 01:43:29 +00:00
Lunny Xiao
wxiaoguang
Nanguan Lin
GiteaBot
silverwind
Panagiotis "Ivory" Vasilopoulos
KazzmanK
merlleu
Kerwin Bryant
JakobDev
FuXiaoHei
yp05327
Rui Chen
techknowlogick
Sven Seeberg
techknowlogick
KN4CK3R
Bo-Yi Wu
JonRB
BeYonme
CaiCandong