mirror of
https://github.com/go-gitea/gitea.git
synced 2026-04-04 16:46:17 +02:00
0724344a8a
Fixes 10 CodeQL code scanning alerts: - Change `NewPagination`/`SetLinkHeader` to accept `int64` for total count, clamping internally to fix incorrect-integer-conversion alerts ([#110](https://github.com/go-gitea/gitea/security/code-scanning/110), [#114](https://github.com/go-gitea/gitea/security/code-scanning/114), [#115](https://github.com/go-gitea/gitea/security/code-scanning/115), [#116](https://github.com/go-gitea/gitea/security/code-scanning/116)) - Use `strconv.Atoi()` in `htmlrenderer.go` to avoid int64 intermediate ([#105](https://github.com/go-gitea/gitea/security/code-scanning/105), [#106](https://github.com/go-gitea/gitea/security/code-scanning/106)) - Clamp regex match indices in `escape_stream.go` to fix allocation-size-overflow ([#161](https://github.com/go-gitea/gitea/security/code-scanning/161), [#162](https://github.com/go-gitea/gitea/security/code-scanning/162), [#163](https://github.com/go-gitea/gitea/security/code-scanning/163)) - Cap slice pre-allocation in `GetIssueDependencies` ([#181](https://github.com/go-gitea/gitea/security/code-scanning/181)) --------- Co-authored-by: Claude (Opus 4.6) <noreply@anthropic.com> Co-authored-by: wxiaoguang <wxiaoguang@gmail.com>
76 lines
2.0 KiB
Go
76 lines
2.0 KiB
Go
// Copyright 2014 The Gogs Authors. All rights reserved.
|
|
// Copyright 2019 The Gitea Authors. All rights reserved.
|
|
// SPDX-License-Identifier: MIT
|
|
|
|
package admin
|
|
|
|
import (
|
|
"net/http"
|
|
"strconv"
|
|
|
|
"code.gitea.io/gitea/models/db"
|
|
system_model "code.gitea.io/gitea/models/system"
|
|
"code.gitea.io/gitea/modules/log"
|
|
"code.gitea.io/gitea/modules/setting"
|
|
"code.gitea.io/gitea/modules/templates"
|
|
"code.gitea.io/gitea/services/context"
|
|
)
|
|
|
|
const (
|
|
tplNotices templates.TplName = "admin/notice"
|
|
)
|
|
|
|
// Notices show notices for admin
|
|
func Notices(ctx *context.Context) {
|
|
ctx.Data["Title"] = ctx.Tr("admin.notices")
|
|
ctx.Data["PageIsAdminNotices"] = true
|
|
|
|
total := system_model.CountNotices(ctx)
|
|
page := max(ctx.FormInt("page"), 1)
|
|
|
|
notices, err := system_model.Notices(ctx, page, setting.UI.Admin.NoticePagingNum)
|
|
if err != nil {
|
|
ctx.ServerError("Notices", err)
|
|
return
|
|
}
|
|
ctx.Data["Notices"] = notices
|
|
|
|
ctx.Data["Total"] = total
|
|
|
|
ctx.Data["Page"] = context.NewPagination(total, setting.UI.Admin.NoticePagingNum, page, 5)
|
|
|
|
ctx.HTML(http.StatusOK, tplNotices)
|
|
}
|
|
|
|
// DeleteNotices delete the specific notices
|
|
func DeleteNotices(ctx *context.Context) {
|
|
strs := ctx.FormStrings("ids[]")
|
|
ids := make([]int64, 0, len(strs))
|
|
for i := range strs {
|
|
id, _ := strconv.ParseInt(strs[i], 10, 64)
|
|
if id > 0 {
|
|
ids = append(ids, id)
|
|
}
|
|
}
|
|
|
|
if err := db.DeleteByIDs[system_model.Notice](ctx, ids...); err != nil {
|
|
ctx.Flash.Error("DeleteNoticesByIDs: " + err.Error())
|
|
ctx.Status(http.StatusInternalServerError)
|
|
} else {
|
|
ctx.Flash.Success(ctx.Tr("admin.notices.delete_success"))
|
|
ctx.Status(http.StatusOK)
|
|
}
|
|
}
|
|
|
|
// EmptyNotices delete all the notices
|
|
func EmptyNotices(ctx *context.Context) {
|
|
if err := system_model.DeleteNotices(ctx, 0, 0); err != nil {
|
|
ctx.ServerError("DeleteNotices", err)
|
|
return
|
|
}
|
|
|
|
log.Trace("System notices deleted by admin (%s): [start: %d]", ctx.Doer.Name, 0)
|
|
ctx.Flash.Success(ctx.Tr("admin.notices.delete_success"))
|
|
ctx.Redirect(setting.AppSubURL + "/-/admin/notices")
|
|
}
|