forked from gitea/gitea
1
0
Fork 0
gitea/modules/auth
zeripath e74c4e1be9
Add option to increase provided OAuth2 token maximum size (#11180)
Some OAuth2 providers return quite large structured tokens >32767 bytes.
Gitea currently has a fixed maximum of 32767 bytes for these and
unfortunately due to the convoluted nature of the dependent libraries the
error returned is rather opaque.

Here we manage the error a little better - detecting the rather opaque
github.com/gorilla/securecookie.errEncodedValueTooLong and converting
it to a more readable error.

Further we provide a configurable option to increase the maximum size of
the provided OAuth2 tokens.

Fix #9907

Signed-off-by: Andrew Thornton <art27@cantab.net>

Co-authored-by: techknowlogick <techknowlogick@gitea.io>
2020-04-23 00:47:23 +02:00
..
ldap Add restricted user filter to LDAP authentication (#10600) 2020-03-05 08:30:33 +02:00
oauth2 Add option to increase provided OAuth2 token maximum size (#11180) 2020-04-23 00:47:23 +02:00
openid Use gitea forked macaron (#7933) 2019-08-23 12:40:29 -04:00
pam Various fixes in login sources (#10428) 2020-02-23 13:52:05 -06:00
sso Remove check on username if AccessToken authentication (#11015) 2020-04-14 13:32:03 -05:00
admin.go Change admin dashboard to POST (#10465) 2020-02-25 16:54:13 -06:00
auth.go Add single sign-on support via SSPI on Windows (#8463) 2019-11-23 01:33:31 +02:00
auth_form.go Add restricted user filter to LDAP authentication (#10600) 2020-03-05 08:30:33 +02:00
org.go Team permission to create repository in organization (#8312) 2019-11-20 19:27:49 +08:00
repo_branch_form.go Use gitea forked macaron (#7933) 2019-08-23 12:40:29 -04:00
repo_form.go Prevent merge of outdated PRs on protected branches (#11012) 2020-04-16 22:00:36 -03:00
repo_form_test.go Use gitea forked macaron (#7933) 2019-08-23 12:40:29 -04:00
user_form.go Add support for database schema in PostgreSQL (#8819) 2020-01-20 16:45:14 +01:00
user_form_auth_openid.go Use gitea forked macaron (#7933) 2019-08-23 12:40:29 -04:00
user_form_test.go Block registration based on email domain (#5157) 2018-11-14 20:00:04 -05:00