MirrorHub/forgejo
0
0
Fork 0
mirror of https://codeberg.org/forgejo/forgejo.git synced 2024-12-29 01:24:10 +01:00
Code Issues Projects Releases Packages Wiki Activity
forgejo/modules
History
Gusted 89b1723d35
[FEAT] Enable INVALIDATE_REFRESH_TOKENS 
- It's possible to detect if refresh tokens are used more than once, if
it's used more than it's a indication of a replay attack and it should
invalidate the associated access token. This behavior is controlled by
the `INVALIDATE_REFRESH_TOKENS` setting.
- Altough in a normal scenario where TLS is being used, it should be
very hard to get to situation where replay attacks are being used, but
this is better safe than sorry.
- Enable `INVALIDATE_REFRESH_TOKENS` by default.
2024-07-22 20:45:13 +02:00
..
actions Add support for workflow_dispatch (#3334) 2024-06-28 05:17:11 +00:00
activitypub FIX: use proper time format (activitypub/client) (#4132) 2024-06-14 15:22:37 +00:00
analyze
assetfs
auth Enable unparam linter (#31277) 2024-06-16 13:42:58 +02:00
avatar
base test: enforce tenv usage in tests 2024-07-17 23:07:41 +02:00
cache test: remove performance sensitive test 2024-07-04 07:03:54 +02:00
charset
container
csv
emoji
eventsource
forgefed
generate
git Fix slow patch checking with commits that add or remove many files (#31548) 2024-07-07 07:33:01 +02:00
gitgraph
gitrepo
graceful
hcaptcha
highlight
hostmatcher
html
httpcache
httplib
indexer Fix bug filtering issues which have no project (#31337) 2024-06-16 13:42:59 +02:00
issue/template
json
label
lfs Support legacy _links LFS batch responses (#31513) 2024-06-29 07:56:18 +02:00
log
markup [BUG] Don't panic on empty blockquote 2024-07-21 01:10:20 +02:00
mcaptcha
metrics
migration [CHORE] Update jsonschema library to v6 2024-07-15 17:20:50 +02:00
nosql
optional
options
packages Extract and display readme and comments for Composer packages (#30927) 2024-06-16 13:42:59 +02:00
paginator
pprof
private fix(hook): ignore unknown push options instead of failing 2024-07-02 21:39:01 +02:00
process
proxy
proxyprotocol
public
queue Revert "update redis mock" 2024-07-17 06:36:36 +02:00
recaptcha
references Refactor to use UnsafeStringToBytes (#31358) 2024-06-16 13:42:58 +02:00
regexplru
repository fix(repository): git push to an adopted repository fails 2024-06-16 19:06:06 +02:00
secret
session
setting [FEAT] Enable INVALIDATE_REFRESH_TOKENS 2024-07-22 20:45:13 +02:00
sitemap
ssh
storage
structs Add support for workflow_dispatch (#3334) 2024-06-28 05:17:11 +00:00
svg
sync
system Refactor to use UnsafeStringToBytes (#31358) 2024-06-16 13:42:58 +02:00
templates
test
testlogger
timeutil
translation
turnstile
typesniffer
updatechecker
uri
user test: enforce tenv usage in tests 2024-07-17 23:07:41 +02:00
util Refactor to use UnsafeStringToBytes (#31358) 2024-06-16 13:42:58 +02:00
validation
web Delete legacy cookie before setting new cookie (#31306) 2024-06-16 08:21:32 +02:00
webhook Add support for workflow_dispatch (#3334) 2024-06-28 05:17:11 +00:00