gitea

Commit Graph

Author	SHA1	Message	Date
zeripath	37458bffbf	Fix panic when an invalid oauth2 name is passed (#20820 ) (#20900 )	2 years ago
6543	09f2e1e1a2	WebAuthn CredentialID field needs to be increased in size (#20530 ) (#20555 ) WebAuthn have updated their specification to set the maximum size of the CredentialID to 1023 bytes. This is somewhat larger than our current size and therefore we need to migrate. The PR changes the struct to add CredentialIDBytes and migrates the CredentialID string to the bytes field before another migration drops the old CredentialID field. Another migration renames this field back. Fix #20457 Signed-off-by: Andrew Thornton <art27@cantab.net> Co-authored-by: zeripath <art27@cantab.net>	2 years ago
Lunny Xiao	fd7d83ace6	Move almost all functions' parameter db.Engine to context.Context (#19748 ) * Move almost all functions' parameter db.Engine to context.Context * remove some unnecessary wrap functions	2 years ago
6543	f41c2bec4c	Delete user related oauth stuff on user deletion too (#19677 ) * delete user related oauth stuff on user deletion too * extend doctor check-db-consistency	3 years ago
Lunny Xiao	772ad761eb	Fix some slice problems (incorrect slice length) (#19592 )	3 years ago
Lunny Xiao	b8911fb456	Use a struct as test options (#19393 ) * Use a struct as test options * Fix name * Fix test	3 years ago
zeripath	3a29a23cdc	Attempt to fix the webauthn migration again - part 3 (#18770 ) v208.go is seriously broken as it misses an ID() check. We need to no-op and remigrate all of the u2f keys. See #18756 Signed-off-by: Andrew Thornton <art27@cantab.net>	3 years ago
Gusted	aa23f477b7	Use `CryptoRandomBytes` instead of `CryptoRandomString` (#18439 ) - Switch to use `CryptoRandomBytes` instead of `CryptoRandomString`, OAuth's secrets are copied pasted and don't need to avoid dubious characters etc. - `CryptoRandomBytes` gives ![2^256 = 1.15 * 10^77](https://render.githubusercontent.com/render/math?math=2^256%20=%201.15%20\cdot%2010^77) `CryptoRandomString` gives ![62^44 = 7.33 * 10^78](https://render.githubusercontent.com/render/math?math=62^44%20=%207.33%20\cdot%2010^78) possible states. - Add a prefix, such that code scanners can easily grep these in source code. - 32 Bytes + prefix	3 years ago
wxiaoguang	49dd906753	Use base32 for 2FA scratch token (#18384 ) * Use base32 for 2FA scratch token * rename Secure* to Crypto*, add comments	3 years ago
6543	54e9ee37a7	format with gofumpt (#18184 ) * gofumpt -w -l . * gofumpt -w -l -extra . * Add linter * manual fix * change make fmt	3 years ago
zeripath	d7c2a2951c	Webauthn nits (#18284 ) This contains some additional fixes and small nits related to #17957 Signed-off-by: Andrew Thornton <art27@cantab.net> Co-authored-by: 6543 <6543@obermui.de> Co-authored-by: wxiaoguang <wxiaoguang@gmail.com>	3 years ago
Lunny Xiao	35c3553870	Support webauthn (#17957 ) Migrate from U2F to Webauthn Co-authored-by: Andrew Thornton <art27@cantab.net> Co-authored-by: 6543 <6543@obermui.de> Co-authored-by: wxiaoguang <wxiaoguang@gmail.com>	3 years ago
Lunny Xiao	de8e3948a5	Refactor auth package (#17962 )	3 years ago

13 Commits (c0754e9d1998827a4be7b7297d87cb6e5e31500d)