gitea

mirror of https://github.com/go-gitea/gitea.git synced 2025-01-22 22:26:27 +01:00

History

M Hickford 34f509eb7a Parse OAuth Authorization header when request omits client secret (#21351 ) This fixes error "unauthorized_client: invalid client secret" when client includes secret in Authorization header rather than request body. OAuth spec permits both. Sanity validation that client id and client secret in request are consistent with Authorization header. Improve error descriptions. Error codes remain the same. Co-authored-by: wxiaoguang <wxiaoguang@gmail.com> Co-authored-by: zeripath <art27@cantab.net>		2022-10-07 10:53:49 +08:00
..
api	Add `stat` to `ToCommit` function for speed (#21337 )	2022-10-06 11:21:04 +08:00
common
install
private	Allow specifying SECRET_KEY_URI, similar to INTERNAL_TOKEN_URI (#19663 )	2022-10-02 01:26:33 +08:00
utils
web	Parse OAuth Authorization header when request omits client secret (#21351 )	2022-10-07 10:53:49 +08:00
init.go