forked from gitea/gitea
1
0
Fork 0
gitea/routers/api/v1
Lunny Xiao e97e883ad5
Add reverseproxy auth for API back with default disabled (#26703)
This feature was removed by #22219 to avoid possible CSRF attack.

This PR takes reverseproxy auth for API back but with default disabled.

To prevent possbile CSRF attack, the responsibility will be the
reverseproxy but not Gitea itself.

For those want to enable this `ENABLE_REVERSE_PROXY_AUTHENTICATION_API`,
they should know what they are doing.

---------

Co-authored-by: Giteabot <teabot@gitea.io>
2023-09-07 08:31:46 +00:00
..
activitypub Update tool dependencies, lock govulncheck and actionlint (#25655) 2023-07-09 11:58:06 +00:00
admin Move createrepository from module to service layer (#26927) 2023-09-06 12:08:51 +00:00
misc Move web/api context related testing function into a separate package (#26859) 2023-09-01 11:26:07 +00:00
notify Fix bugs related to notification endpoints (#25548) 2023-06-28 10:26:56 -04:00
org Refactor secrets modification logic (#26873) 2023-09-05 15:21:02 +00:00
packages Add CRAN package registry (#22331) 2023-05-22 10:57:49 +08:00
repo Move createrepository from module to service layer (#26927) 2023-09-06 12:08:51 +00:00
settings Implement FSFE REUSE for golang files (#21840) 2022-11-27 18:20:29 +00:00
swagger refactor(API): refactor secret creation and update functionality (#26751) 2023-08-28 13:08:19 +08:00
user Refactor secrets modification logic (#26873) 2023-09-05 15:21:02 +00:00
utils New webhook trigger for receiving Pull Request review requests (#24481) 2023-05-24 22:06:27 -04:00
api.go Add reverseproxy auth for API back with default disabled (#26703) 2023-09-07 08:31:46 +00:00
auth.go Implement FSFE REUSE for golang files (#21840) 2022-11-27 18:20:29 +00:00
auth_windows.go Implement FSFE REUSE for golang files (#21840) 2022-11-27 18:20:29 +00:00