0
0
Fork 0
mirror of https://github.com/go-gitea/gitea synced 2024-11-15 06:21:23 +01:00
gitea/routers/web/auth
Shivaram Lingamneni e1cf760d2f
OIDC: case-insensitive comparison for auth scheme Basic (#31706)
@kylef pointed out on https://github.com/go-gitea/gitea/pull/31632 that
[RFC7617](https://www.rfc-editor.org/rfc/rfc7617.html#section-2)
mandates case-insensitive comparison of the scheme field `Basic`. #31632
copied a case-sensitive comparison from
https://github.com/go-gitea/gitea/pull/6293. This PR fixes both
comparisons.

The issue only affects OIDC, since the implementation for normal Gitea
endpoints is already correct:


930ca92d7c/services/auth/basic.go (L55-L58)
2024-07-26 19:51:45 +00:00
..
2fa.go Move context from modules to services (#29440) 2024-02-27 08:12:22 +01:00
auth.go allow synchronizing user status from OAuth2 login providers (#31572) 2024-07-16 20:33:16 +02:00
auth_test.go Refactor names (#31405) 2024-06-19 06:32:45 +08:00
linkaccount.go Improve oauth2 client "preferred username field" logic and the error handling (#30622) 2024-04-25 11:22:32 +00:00
main_test.go make writing main test easier (#27270) 2023-09-28 01:38:53 +00:00
oauth.go OIDC: case-insensitive comparison for auth scheme Basic (#31706) 2024-07-26 19:51:45 +00:00
oauth_test.go Bump github.com/golang-jwt/jwt to v5 (#25975) 2023-07-19 09:57:10 +00:00
openid.go Move context from modules to services (#29440) 2024-02-27 08:12:22 +01:00
password.go Clean up log messages (#30313) 2024-04-07 19:17:06 +08:00
webauthn.go Add Passkey login support (#31504) 2024-06-29 22:50:03 +00:00