0
0
mirror of https://github.com/go-gitea/gitea.git synced 2024-12-04 20:35:26 +01:00
gitea/routers/api/v1
Lunny Xiao e97e883ad5
Add reverseproxy auth for API back with default disabled (#26703)
This feature was removed by #22219 to avoid possible CSRF attack.

This PR takes reverseproxy auth for API back but with default disabled.

To prevent possbile CSRF attack, the responsibility will be the
reverseproxy but not Gitea itself.

For those want to enable this `ENABLE_REVERSE_PROXY_AUTHENTICATION_API`,
they should know what they are doing.

---------

Co-authored-by: Giteabot <teabot@gitea.io>
2023-09-07 08:31:46 +00:00
..
activitypub Update tool dependencies, lock govulncheck and actionlint (#25655) 2023-07-09 11:58:06 +00:00
admin Move createrepository from module to service layer (#26927) 2023-09-06 12:08:51 +00:00
misc Move web/api context related testing function into a separate package (#26859) 2023-09-01 11:26:07 +00:00
notify
org Refactor secrets modification logic (#26873) 2023-09-05 15:21:02 +00:00
packages
repo Move createrepository from module to service layer (#26927) 2023-09-06 12:08:51 +00:00
settings
swagger refactor(API): refactor secret creation and update functionality (#26751) 2023-08-28 13:08:19 +08:00
user Refactor secrets modification logic (#26873) 2023-09-05 15:21:02 +00:00
utils
api.go Add reverseproxy auth for API back with default disabled (#26703) 2023-09-07 08:31:46 +00:00
auth_windows.go
auth.go