1
0
Fork 0
forgejo/routers/web/repo
wxiaoguang 013fb73068
Use hostmatcher to replace matchlist, improve security (#17605)
Use hostmacher to replace matchlist.

And we introduce a better DialContext to do a full host/IP check, otherwise the attackers can still bypass the allow/block list by a 302 redirection.
2021-11-20 17:34:05 +08:00
..
activity.go Move unit into models/unit/ (#17576) 2021-11-09 20:57:58 +01:00
attachment.go Move attachment into models/repo/ (#17650) 2021-11-19 21:39:57 +08:00
blame.go Add .gitattribute assisted language detection to blame, diff and render (#17590) 2021-11-17 20:37:00 +00:00
branch.go Fixed commit count. (#17698) 2021-11-17 23:50:17 +00:00
commit.go Fixed commit count. (#17698) 2021-11-17 23:50:17 +00:00
compare.go Remove unused user paramater (#17723) 2021-11-19 08:37:13 +00:00
download.go Download lfs in git and web workflow from minio/s3 directly (#16731) 2021-08-21 20:22:06 +02:00
editor.go Multiple Escaping Improvements (#17551) 2021-11-16 18:18:25 +00:00
editor_test.go Decouple unit test code from business code (#17623) 2021-11-12 22:36:47 +08:00
http.go Move EmailAddress & UserRedirect into models/user/ (#17607) 2021-11-11 15:03:30 +08:00
http_test.go
issue.go Move attachment into models/repo/ (#17650) 2021-11-19 21:39:57 +08:00
issue_content_history.go Move unit into models/unit/ (#17576) 2021-11-09 20:57:58 +01:00
issue_dependency.go Rename context.Query to context.Form (#16562) 2021-07-29 03:42:15 +02:00
issue_label.go Use a standalone struct name for Organization (#17632) 2021-11-19 19:41:40 +08:00
issue_label_test.go Decouple unit test, remove intermediate unittestbridge package (#17662) 2021-11-16 16:53:21 +08:00
issue_lock.go
issue_stopwatch.go Multiple Escaping Improvements (#17551) 2021-11-16 18:18:25 +00:00
issue_test.go A better go code formatter, and now make fmt can run in Windows (#17684) 2021-11-17 20:34:35 +08:00
issue_timetrack.go
issue_watch.go
lfs.go Multiple Escaping Improvements (#17551) 2021-11-16 18:18:25 +00:00
main_test.go Decouple unit test code from business code (#17623) 2021-11-12 22:36:47 +08:00
middlewares.go Move user functions into user.go (#17659) 2021-11-18 13:58:42 +08:00
migrate.go Use hostmatcher to replace matchlist, improve security (#17605) 2021-11-20 17:34:05 +08:00
milestone.go Multiple Escaping Improvements (#17551) 2021-11-16 18:18:25 +00:00
projects.go Multiple Escaping Improvements (#17551) 2021-11-16 18:18:25 +00:00
projects_test.go Decouple unit test code from business code (#17623) 2021-11-12 22:36:47 +08:00
pull.go Use a standalone struct name for Organization (#17632) 2021-11-19 19:41:40 +08:00
pull_review.go Rename ctx.Form() to ctx.FormString() and move code into own file (#16571) 2021-08-11 02:31:13 +02:00
release.go Multiple Escaping Improvements (#17551) 2021-11-16 18:18:25 +00:00
release_test.go Decouple unit test, remove intermediate unittestbridge package (#17662) 2021-11-16 16:53:21 +08:00
repo.go Move attachment into models/repo/ (#17650) 2021-11-19 21:39:57 +08:00
search.go Related refactors to ctx.FormX functions (#16567) 2021-08-11 18:08:52 +03:00
setting.go Use hostmatcher to replace matchlist, improve security (#17605) 2021-11-20 17:34:05 +08:00
setting_protected_branch.go Use a standalone struct name for Organization (#17632) 2021-11-19 19:41:40 +08:00
settings_test.go Decouple unit test, remove intermediate unittestbridge package (#17662) 2021-11-16 16:53:21 +08:00
tag.go Use a standalone struct name for Organization (#17632) 2021-11-19 19:41:40 +08:00
topic.go Related refactors to ctx.FormX functions (#16567) 2021-08-11 18:08:52 +03:00
view.go Add pagination to fork list (#17639) 2021-11-18 22:45:56 +08:00
webhook.go Multiple Escaping Improvements (#17551) 2021-11-16 18:18:25 +00:00
wiki.go Multiple Escaping Improvements (#17551) 2021-11-16 18:18:25 +00:00
wiki_test.go Multiple Escaping Improvements (#17551) 2021-11-16 18:18:25 +00:00