forgejo-federation

realaravinth/forgejo-federation

Fork 0

Commit graph

Author	SHA1	Message	Date
Aleksandr Bulyshchenko	ee878e3951	Support secure cookie for csrf-token (#3839 ) * dep: Update github.com/go-macaron/csrf Update github.com/go-macaron/csrf with dep to revision 503617c6b372 to fix issue of csrf-token security. This update includes following commits: - Add support for the Cookie HttpOnly flag - Support secure mode for csrf cookie Signed-off-by: Aleksandr Bulyshchenko <A.Bulyshchenko@globallogic.com> * routers: set csrf-token security depending on COOKIE_SECURE Signed-off-by: Aleksandr Bulyshchenko <A.Bulyshchenko@globallogic.com>	2018-05-22 02:09:48 +03:00
Antoine GIRARD	3f3383dc0a	Migrate to dep (#3972 ) * Update makefile to use dep * Migrate to dep * Fix some deps * Try to find a better version for golang.org/x/net * Try to find a better version for golang.org/x/oauth2	2018-05-21 15:34:20 +03:00
Thomas Boerger	1ebb35b988	Added all required dependencies	2016-11-04 08:43:11 +01:00

Author

SHA1

Message

Date

Aleksandr Bulyshchenko

ee878e3951

Support secure cookie for csrf-token (#3839 )

* dep: Update github.com/go-macaron/csrf

Update github.com/go-macaron/csrf with dep to revision 503617c6b372
to fix issue of csrf-token security.

This update includes following commits:
- Add support for the Cookie HttpOnly flag
- Support secure mode for csrf cookie

Signed-off-by: Aleksandr Bulyshchenko <A.Bulyshchenko@globallogic.com>

* routers: set csrf-token security depending on COOKIE_SECURE

Signed-off-by: Aleksandr Bulyshchenko <A.Bulyshchenko@globallogic.com>

2018-05-22 02:09:48 +03:00

Antoine GIRARD

3f3383dc0a

Migrate to dep (#3972 )

* Update makefile to use dep

* Migrate to dep

* Fix some deps

* Try to find a better version for golang.org/x/net

* Try to find a better version for golang.org/x/oauth2

2018-05-21 15:34:20 +03:00

Thomas Boerger

1ebb35b988

Added all required dependencies

2016-11-04 08:43:11 +01:00

3 commits