gitea

Mirrors/gitea

Fork 0

mirror of https://github.com/go-gitea/gitea.git synced 2025-11-26 03:32:55 +01:00

Commit Graph

Author	SHA1	Message	Date
Lunny Xiao	62d750eadb	Fix various permission & login related bugs (#36002 ) Permission & protection check: - Fix Delete Release permission check - Fix Update Pull Request with rebase branch protection check - Fix Issue Dependency permission check - Fix Delete Comment History ID check Information leaking: - Show unified message for non-existing user and invalid password - Fix #35984 - Don't expose release draft to non-writer users. - Make API returns signature's email address instead of the user profile's. Auth & Login: - Avoid GCM OAuth2 attempt when OAuth2 is disabled - Fix #35510 --------- Co-authored-by: wxiaoguang <wxiaoguang@gmail.com>	2025-11-22 07:16:08 +00:00

Author

SHA1

Message

Date

Lunny Xiao

62d750eadb

Fix various permission & login related bugs (#36002 )

Permission & protection check:

- Fix Delete Release permission check
- Fix Update Pull Request with rebase branch protection check
- Fix Issue Dependency permission check
- Fix Delete Comment History ID check

Information leaking:

- Show unified message for non-existing user and invalid password
    - Fix #35984
- Don't expose release draft to non-writer users.
- Make API returns signature's email address instead of the user
profile's.

Auth & Login:

- Avoid GCM OAuth2 attempt when OAuth2 is disabled
    - Fix #35510

---------

Co-authored-by: wxiaoguang <wxiaoguang@gmail.com>

2025-11-22 07:16:08 +00:00

1 Commits