Lunny Xiao f3bdcc58af

Fix OAuth2 authorization code expiry and reuse handling (#36797) ...

- set OAuth2 authorization code `ValidUntil` on creation and add expiry
checks during exchange
- return a specific error when codes are invalidated twice to prevent
concurrent reuse
- add unit tests covering validity timestamps, expiration, and double
invalidation

---
Generate by a coding agent with Codex 5.2

---------

Signed-off-by: Lunny Xiao <xiaolunwen@gmail.com>
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>

2026-03-06 05:00:44 +00:00

..

api

Fix org permission API visibility checks for hidden members and private orgs (#36798)

2026-03-05 20:32:15 -08:00

common

Refactor avatar package, support default avatar fallback (#36788)

2026-03-01 13:32:35 +00:00

install

Use "Enable Gravatar" but not "Disable" (#36771)

2026-02-27 16:39:26 +00:00

private

Fix bug when pushing mirror with wiki (#36795)

2026-03-02 20:58:07 +00:00

utils

Refactor older tests to use testify (#33140)

2025-01-09 09:21:47 +08:00

web

Fix OAuth2 authorization code expiry and reuse handling (#36797)

2026-03-06 05:00:44 +00:00

init.go

Instance-wide (global) info banner and maintenance mode (#36571)

2026-02-26 23:16:11 +08:00