1
0
mirror of https://github.com/go-gitea/gitea.git synced 2024-09-01 14:56:30 +00:00
gitea/modules/setting
zeripath 2e317d3f6e
Prevent security failure due to bad APP_ID () ()
Backport 

WebAuthn may cause a security exception if the provided APP_ID is not allowed for the
current origin. Therefore we should reattempt authentication without the appid
extension.

Also we should allow [u2f] as-well as [U2F] sections.

Signed-off-by: Andrew Thornton <art27@cantab.net>
Co-authored-by: Lunny Xiao <xiaolunwen@gmail.com>
2022-02-10 16:17:44 +01:00
..
attachment.go
cache.go Add LRU mem cache implementation () 2021-07-10 23:54:15 +02:00
cors.go
cron_test.go
cron.go
database_sqlite.go
database_test.go
database.go
directory.go
federation.go Add nodeinfo endpoint for federation purposes () 2021-09-28 01:38:06 +02:00
git.go
i18n.go
indexer_test.go
indexer.go
lfs.go
log.go
mailer.go
markup.go
migrations.go
mime_type_map.go
mirror.go
oauth2_client.go
picture.go
project.go
proxy.go Add proxy settings and support for migration and webhook () 2021-08-18 21:10:39 +08:00
queue.go
repository.go
service.go
session.go
setting_test.go
setting.go Prevent security failure due to bad APP_ID () () 2022-02-10 16:17:44 +01:00
storage_test.go
storage.go
task.go
webhook.go