bab448681d
models/user: handle case when user doesn't belong to any organization ( #4258 )
2017-03-08 22:21:31 -05:00
295d251232
mirror: update repository updated_unix after sync ( #2807 )
2017-03-08 17:47:44 -05:00
83f6b8e847
Protected branches: allow whitelist bypass require pull request check ( #4207 )
2017-03-08 16:43:36 -05:00
e6dbfd918c
security: fix vulnerability in changing username
...
Reported by João Arnaut.
2017-03-07 14:07:20 -05:00
c2f0711db0
Update locale
2017-03-06 23:37:46 -05:00
8b73c8076f
modules/markdown: fix wrong raw link to internal images
2017-03-05 16:54:00 -05:00
e9838a83ce
routers/repo/http: only prompt HTTP Basic Authentication when intended
...
Sometimes user could simply request wrong URL, but if that wrong URL
has nothing related Git HTTP operations, HTTP Basic Authentication
should not prompted. Instead, clean 404 page should be presented.
The patch also supports Git HTTP operations without '.git' suffix
to the repository name, which addresses #4226 and #4189 .
2017-03-04 21:26:32 -05:00
ebd95dd082
models/org: reduce to 2 SQL executions for GetOrgIDsByUserID
...
This also addresses #4231 . It is now ignoring nonexistent
organizations returned from 'org_user' table.
This was a bug caused in older version that didn't cleanup
'org_user' table when delete an organization.
2017-03-03 18:26:51 -05:00
f7b7d008b6
setting: fix Webhook.SkipTLSVerify didn't load ( #4228 )
2017-03-02 22:08:39 -05:00
600f748cb0
vendor: update golang.org/x/crypto/ssh
...
Related to #4160
2017-03-01 21:33:58 -05:00
e08161a302
hook: fix can’t be executed while run as service on Windows ( #4207 )
2017-02-28 22:58:52 -05:00
d43f5f17fd
webhook: fix push panic to organizational repository ( #4206 )
2017-02-28 10:28:48 -05:00
fd667ca1d8
Merge branch 'master' of github.com:gogits/gogs into develop
2017-02-28 06:22:28 -05:00
9d40b8a83c
Bump version
2017-02-28 05:45:50 -05:00
ca2cfaf71e
cmd: able to backup and restore
...
Not very robust, must execute under correct workdir.
Addresses #2072 , #3708 , #648
2017-02-27 22:48:19 -05:00
7fe13e72d8
cmd: refactoring command name
2017-02-27 22:47:12 -05:00
b3757e424f
Prepare release
2017-02-27 18:38:16 -05:00
e28bc7023f
modes/org: code format for PR #4194
2017-02-26 15:29:16 -05:00
10b93efc4a
repo: able to add organization member as repository collaborator
2017-02-24 13:56:02 -05:00
6072e9a52c
repo: add protect branch whitelist ( #4177 )
...
Add options to add users and teams to whitelist of a protected
branch. This is only available for organizational repositories.
2017-02-23 18:25:12 -05:00
b78e03934d
models/access: hasAccess only need userID not user object
2017-02-23 16:15:25 -05:00
266c8f5a85
release: fix unable to edit release of a fork repository
2017-02-23 11:35:33 -05:00
054e97d614
csrf: able to set custom cookie name
...
Add new config option '[session] CSRF_COOKIE_NAME'.
2017-02-22 21:46:43 -05:00
28983c94ff
comment: only show title of commit message from a commit ref ( #3206 )
2017-02-22 08:25:26 -05:00
60aca9ea18
webhook: also only enable certain types ( #3356 )
...
Add new config option '[webhook] TYPES’.
2017-02-21 20:21:25 -05:00
0f3155660e
webhook: minor improvements on Discord
2017-02-21 13:58:00 -05:00
437df04d8c
Prepare release
2017-02-21 12:17:39 -05:00
8216360da8
webhook: support color for Discord
2017-02-21 11:36:19 -05:00
5895d43574
editor: redirect to new pull request page after create new branch
2017-02-20 22:29:15 -05:00
6002d72603
router: fix 404 when repository name contains dot
...
E.g. atomi.github.io
2017-02-20 18:05:34 -05:00
934734a85a
diff: able to highlight line with hashtag URL
2017-02-20 16:16:32 -05:00
2322de653c
models/webhook: fix bad query
2017-02-20 01:04:02 -05:00
7de71333c6
repo: several minor improvements
...
1. Fix sample content didn't show up when hook doesn't exist.
2. Fix CSS 'word-break' to use 'break-word' not 'break-all'.
3. Fix single quote in 'locale_en-US.ini' file.
2017-02-19 13:18:16 -05:00
cd9b29ff3f
api: add list user and organization's repositories ( #3984 )
2017-02-18 23:37:16 -05:00
0a2f87f941
cron: add repository archive cleanup ( #4061 )
2017-02-18 19:35:59 -05:00
21d538a738
install: able to enable builtin SSH server ( #3773 )
2017-02-18 12:47:35 -05:00
a07b1f630a
webhook: add native Discord support
2017-02-18 00:54:56 -05:00
266586e866
repo: assignee can be anyone who has read access ( #3739 )
2017-02-17 22:17:27 -05:00
07801cbf09
repo/release: add pagination ( #2164 )
2017-02-17 17:41:55 -05:00
7e09d210ba
Initial version of protected branches ( #776 )
...
- Able to restrict force push and deletion
- Able to restrict direct push
2017-02-17 15:10:50 -05:00
5155f026b4
Security: fix XSS attack on milestone
...
Reported by Miguel Ángel Jimeno.
2017-02-17 08:06:48 -05:00
d521e716dd
refactoring: SSH and HTTP push procees is now unified
...
We used to handle SSH and HTTP push separately which produces
duplicated code, but now with post-receive hook, the process
is unified to one single place and much cleaner.
Thus, UpdateTask struct is removed.
Narrow down the range of Git HTTP routes to reduce condufsing
HTTP Basic Authentication window popup on browser.
By detecting <old-commit, new-commit, ref-name> inside post-receive
hook, Git HTTP doesn't need to read the whole content body anymore,
which completely solve the RAM problem reported in #636 .
2017-02-16 16:33:49 -05:00
f129e0ecb5
repo/editor: fix breadcrumb path cuts parent dirs ( #3859 )
2017-02-16 08:34:49 -05:00
88143f1934
models/repo: UpdateLocalCopy should always aceept valid branch name
2017-02-16 06:28:37 -05:00
3137665e6e
Simplify description
2017-02-15 22:29:31 -05:00
f97b250509
Security: prevent XSS attach on wiki page
...
Reported by Miguel Ángel Jimeno.
2017-02-15 18:05:02 -05:00
32a868d431
wiki: handle '#' in edit page ( #3767 )
2017-02-15 05:10:00 -05:00
039dc33367
git: delegate all server-side Git hooks ( #1623 )
2017-02-14 16:22:16 -05:00
f4aedda13a
org/team: make 'new' as reserved for team name ( #3789 )
2017-02-14 03:16:02 -05:00
d02e7d9e6a
install: no need to check SMTPFrom is not set ( #4118 )
2017-02-13 04:20:03 -05:00
Unknwon