third_party/gitea - gitea - Tokarchuk Codebase

Author	SHA1	Message	Date
zeripath	2e12161620	Fix bugs with WebAuthn preventing sign in and registration. (#22651 ) (#22721 ) Partial Backport #22651 This PR fixes a longstanding bug within webauthn due to the backend using URLEncodedBase64 but the javascript using decoding using plain base64. This causes intermittent issues with users reporting decoding errors. Fix #22507 Signed-off-by: Andrew Thornton <art27@cantab.net> Co-authored-by: wxiaoguang <wxiaoguang@gmail.com> Co-authored-by: Lunny Xiao <xiaolunwen@gmail.com>	2 years ago
zeripath	2f76608221	Prevent security failure due to bad APP_ID (#18678 ) WebAuthn may cause a security exception if the provided APP_ID is not allowed for the current origin. Therefore we should reattempt authentication without the appid extension. Also we should allow [u2f] as-well as [U2F] sections. Signed-off-by: Andrew Thornton <art27@cantab.net> Co-authored-by: Lunny Xiao <xiaolunwen@gmail.com>	3 years ago
silverwind	19b017f398	Use explicit jQuery import, remove unused eslint globals (#18435 ) - Don't rely on globals (window.$) for jQuery import - Remove eslint globals no longer in use	3 years ago
wxiaoguang	9837773f0e	Prevent showing webauthn error for every time visiting `/user/settings/security` (#18385 )	3 years ago
zeripath	d7c2a2951c	Webauthn nits (#18284 ) This contains some additional fixes and small nits related to #17957 Signed-off-by: Andrew Thornton <art27@cantab.net> Co-authored-by: 6543 <6543@obermui.de> Co-authored-by: wxiaoguang <wxiaoguang@gmail.com>	3 years ago
Lunny Xiao	35c3553870	Support webauthn (#17957 ) Migrate from U2F to Webauthn Co-authored-by: Andrew Thornton <art27@cantab.net> Co-authored-by: 6543 <6543@obermui.de> Co-authored-by: wxiaoguang <wxiaoguang@gmail.com>	3 years ago