1
0
Fork 0
forgejo/modules/setting
Lunny Xiao b01dce2a6e
Allow render HTML with css/js external links (#19017)
* Allow render HTML with css/js external links

* Fix bug because of filename escape chars

* Fix lint

* Update docs about new configuration item

* Fix bug of render HTML in sub directory

* Add CSP head for displaying iframe in rendering file

* Fix test

* Apply suggestions from code review

Co-authored-by: delvh <dev.lh@web.de>

* Some improvements

* some improvement

* revert change in SanitizerDisabled of external renderer

* Add sandbox for iframe and support allow-scripts and allow-same-origin

* refactor

* fix

* fix lint

* fine tune

* use single option RENDER_CONTENT_MODE, use sandbox=allow-scripts

* fine tune CSP

* Apply suggestions from code review

Co-authored-by: wxiaoguang <wxiaoguang@gmail.com>

Co-authored-by: delvh <dev.lh@web.de>
Co-authored-by: wxiaoguang <wxiaoguang@gmail.com>
2022-06-16 11:33:23 +08:00
..
attachment.go format with gofumpt (#18184) 2022-01-20 18:46:10 +01:00
cache.go format with gofumpt (#18184) 2022-01-20 18:46:10 +01:00
cors.go format with gofumpt (#18184) 2022-01-20 18:46:10 +01:00
cron.go
cron_test.go format with gofumpt (#18184) 2022-01-20 18:46:10 +01:00
database.go Add deprecated log when using MySQL with utf8 charset (#19952) 2022-06-13 20:55:08 +08:00
database_sqlite.go Remove legacy +build: constraint (#19582) 2022-05-02 23:22:45 +08:00
database_test.go
directory.go Improve install code to avoid low-level mistakes. (#17779) 2021-12-01 15:50:01 +08:00
federation.go Federation: return useful statistic information for nodeinfo (#19561) 2022-05-02 21:35:45 +08:00
git.go format with gofumpt (#18184) 2022-01-20 18:46:10 +01:00
i18n.go Uppercase first languages letters (#19965) 2022-06-15 12:08:49 +02:00
indexer.go format with gofumpt (#18184) 2022-01-20 18:46:10 +01:00
indexer_test.go format with gofumpt (#18184) 2022-01-20 18:46:10 +01:00
lfs.go format with gofumpt (#18184) 2022-01-20 18:46:10 +01:00
log.go Update go tool dependencies (#19676) 2022-05-10 23:55:54 +02:00
mailer.go format with gofumpt (#18184) 2022-01-20 18:46:10 +01:00
markup.go Allow render HTML with css/js external links (#19017) 2022-06-16 11:33:23 +08:00
migrations.go format with gofumpt (#18184) 2022-01-20 18:46:10 +01:00
mime_type_map.go format with gofumpt (#18184) 2022-01-20 18:46:10 +01:00
mirror.go format with gofumpt (#18184) 2022-01-20 18:46:10 +01:00
oauth2_client.go OAuth2 login: Set account link to "login" as default behavior (#15768) 2021-05-07 16:15:16 +02:00
packages.go Fixed registry host value. (#19363) 2022-04-10 19:57:36 +08:00
picture.go Make AvatarRenderedSizeFactor configurable and set it to 3 (#17951) 2021-12-16 10:18:38 +08:00
project.go
proxy.go format with gofumpt (#18184) 2022-01-20 18:46:10 +01:00
queue.go Enable deprecation error for v1.17.0 (#18341) 2022-01-20 18:00:38 +01:00
repository.go Move some code into models/git (#19879) 2022-06-12 23:51:54 +08:00
service.go add configuration option to restrict users by default (#16256) 2021-07-15 15:19:48 -04:00
session.go format with gofumpt (#18184) 2022-01-20 18:46:10 +01:00
setting.go Make AppDataPath absolute against the AppWorkPath if it is not (#19815) 2022-06-06 10:43:17 -04:00
setting_test.go Add an abstract json layout to make it's easier to change json library (#16528) 2021-07-24 18:03:58 +02:00
storage.go Rework repository archive (#14723) 2021-06-23 17:12:38 -04:00
storage_test.go
task.go Enable deprecation error for v1.17.0 (#18341) 2022-01-20 18:00:38 +01:00
webhook.go Add packagist webhook (#18224) 2022-01-23 21:46:30 +08:00