release/v1.25 #36102
Closed
release/v1.25 #36102
+5,446
−2,437
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
…a#35537) Backport go-gitea#35536 by wxiaoguang Fix go-gitea#35533 Co-authored-by: wxiaoguang <wxiaoguang@gmail.com>
go-gitea#35567) (go-gitea#35577) Backport go-gitea#35567 by Exgene Co-authored-by: Kausthubh J Rao <105716675+Exgene@users.noreply.github.com> Co-authored-by: wxiaoguang <wxiaoguang@gmail.com> Co-authored-by: silverwind <me@silverwind.io>
…#35580) Backport go-gitea#35560 by @lunny Fix go-gitea#35518 Co-authored-by: Lunny Xiao <xiaolunwen@gmail.com> Co-authored-by: wxiaoguang <wxiaoguang@gmail.com>
…o-gitea#35586) Backport go-gitea#35583 by ita004 Co-authored-by: Shafi Ahmed <98274448+ita004@users.noreply.github.com> Co-authored-by: wxiaoguang <wxiaoguang@gmail.com>
…same as some tag (go-gitea#35552) (go-gitea#35582) Backport go-gitea#35552 by @lunny Use full reference name in the git command to avoid ambiguity. Fix go-gitea#35470 Co-authored-by: Lunny Xiao <xiaolunwen@gmail.com>
…a#35595) Backport go-gitea#35590 by @Zettat123 Depends on [gitea/act#143](https://gitea.com/gitea/act/pulls/143) The [`inputs` context](https://docs.github.com/en/actions/reference/workflows-and-actions/contexts#inputs-context) is used when parsing workflows so that `run-name` like `run-name: Deploy to ${{ inputs.deploy_target }}` can be parsed correctly. Co-authored-by: Zettat123 <zettat123@gmail.com>
…35584) (go-gitea#35609) Backport go-gitea#35584 by @shashank-netapp # Summary The Gitea codebase was logging `Elasticsearch` and `Meilisearch` connection strings directly to log files without sanitizing them. Since connection strings often contain credentials in the format `protocol://username:password@host:port`, this resulted in passwords being exposed in plain text in log output. Fix: - wrapped all instances of setting.Indexer.RepoConnStr and setting.Indexer.IssueConnStr with the `util.SanitizeCredentialURLs()` function before logging them. Fixes: go-gitea#35530 Co-authored-by: shashank-netapp <108022276+shashank-netapp@users.noreply.github.com> Co-authored-by: Lunny Xiao <xiaolunwen@gmail.com>
Backport go-gitea#35610 by @surya-purohit Updates the swagger documentation for the `diffpatch` API endpoint. The request body is corrected from the outdated `UpdateFileOptions` to the current `ApplyDiffPatchOptions` to match the code implementation. Closes [issue#35602](go-gitea#35602) --------- Co-authored-by: Surya Purohit <suryaprakash.sharma@sourcefuse.com> Co-authored-by: wxiaoguang <wxiaoguang@gmail.com> Co-authored-by: Lunny Xiao <xiaolunwen@gmail.com>
…tea#35614) Backport go-gitea#35604 by silverwind The test calls out to a web service which may be down or unreachable as seen in the linked issue. It's better for tests to not have such external dependencies to make them absolutely stable. Fixes: go-gitea#35571 Co-authored-by: silverwind <me@silverwind.io>
…-gitea#35615) Backport go-gitea#35591 by @lunny Fix go-gitea#34617 Co-authored-by: Lunny Xiao <xiaolunwen@gmail.com>
…a#35618) (go-gitea#35621) Backport go-gitea#35618 by @lutinglt go-gitea#35616 Before: running: <img width="45" height="34" alt="image" src="https://github.com/user-attachments/assets/e2508f98-2f1f-4b7e-a80c-30b406f42531" /> waiting: <img width="44" height="33" alt="image" src="https://github.com/user-attachments/assets/e7c8164e-fdc3-4546-b088-31166544edb0" /> --- After: running: <img width="49" height="43" alt="image" src="https://github.com/user-attachments/assets/b5a9b245-a995-458a-af23-d1723daa3692" /> waiting: <img width="42" height="44" alt="image" src="https://github.com/user-attachments/assets/ff72551e-cfb5-4665-af52-938ef0cf8f1c" /> `gitea-running.svg` is not an icon from the @ primer/octicon library, extracted from the Github page. Github did not assign a clear class name to this icon Signed-off-by: 鲁汀 <131967983+lutinglt@users.noreply.github.com> Co-authored-by: 鲁汀 <131967983+lutinglt@users.noreply.github.com> Co-authored-by: lutinglt <lutinglt@users.noreply.github.com>
…a#35636) Backport go-gitea#35628 by lutinglt Signed-off-by: 鲁汀 <131967983+lutinglt@users.noreply.github.com> Co-authored-by: 鲁汀 <131967983+lutinglt@users.noreply.github.com> Co-authored-by: wxiaoguang <wxiaoguang@gmail.com>
…35672) Backport go-gitea#35654 by wxiaoguang Co-authored-by: wxiaoguang <wxiaoguang@gmail.com>
Backport go-gitea#35655 by @lunny Co-authored-by: Lunny Xiao <xiaolunwen@gmail.com>
…35647) (go-gitea#35668) Backport go-gitea#35647 This PR moved the creation of pushing comments before pull request mergeable checking. So that when the pull request status changed, the comments should have been created. Co-authored-by: wxiaoguang <wxiaoguang@gmail.com>
…gitea#35679) (go-gitea#35680) Backport go-gitea#35679 by surya-purohit shows the main LFS filesize instead of the pointer filesize when viewing a file Co-authored-by: Surya Purohit <suryaprakash.sharma@sourcefuse.com> Co-authored-by: wxiaoguang <wxiaoguang@gmail.com>
Backport go-gitea#35684 by wxiaoguang
…35689) (go-gitea#35703) The event reported a completion status instead of requested, therefore sent an email Backport go-gitea#35689
…#35692) (go-gitea#35705) Backport go-gitea#35692 by wxiaoguang Fix go-gitea#23635 Co-authored-by: wxiaoguang <wxiaoguang@gmail.com>
Backport go-gitea#35708 by wxiaoguang Co-authored-by: wxiaoguang <wxiaoguang@gmail.com>
Backport go-gitea#35714 by wxiaoguang Co-authored-by: wxiaoguang <wxiaoguang@gmail.com>
…go-gitea#35719) Backport go-gitea#35693 by wxiaoguang Co-authored-by: wxiaoguang <wxiaoguang@gmail.com>
…-gitea#35720) Backport go-gitea#35519 by @a1012112796 fix go-gitea#35512 Co-authored-by: a1012112796 <1012112796@qq.com> Co-authored-by: wxiaoguang <wxiaoguang@gmail.com>
) (go-gitea#35724) Backport go-gitea#35721 by wxiaoguang Related: go-gitea#24573 Co-authored-by: wxiaoguang <wxiaoguang@gmail.com>
…tea#35488) (go-gitea#35726) Backport go-gitea#35488 by @kemzeb Fix go-gitea#35463. --------- Co-authored-by: Kemal Zebari <60799661+kemzeb@users.noreply.github.com> Co-authored-by: wxiaoguang <wxiaoguang@gmail.com>
…a#35730) (go-gitea#35731) Backport go-gitea#35727 and go-gitea#35730 --------- Signed-off-by: wxiaoguang <wxiaoguang@gmail.com>
…ea#35979) Backport go-gitea#35967 by @DrMaxNix Consistently use a `star` icon to highlight the default column of a project. The icon is both shown while viewing the project, as well as while changing the default status of this column. <img width="1065" height="370" alt="image" src="https://github.com/user-attachments/assets/1ca5773d-8eec-4b90-ad0b-22b1f4bd4cfd" /> Co-authored-by: DrMaxNix <git@drmaxnix.de>
…a#36004) Backport go-gitea#36002 Permission & protection check: - Fix Delete Release permission check - Fix Update Pull Request with rebase branch protection check - Fix Issue Dependency permission check - Fix Delete Comment History ID check Information leaking: - Show unified message for non-existing user and invalid password - Fix go-gitea#35984 - Don't expose release draft to non-writer users. - Make API returns signature's email address instead of the user profile's. Auth & Login: - Avoid GCM OAuth2 attempt when OAuth2 is disabled - Fix go-gitea#35510 --------- Co-authored-by: wxiaoguang <wxiaoguang@gmail.com>
~Wait go-gitea#35988~ --------- Signed-off-by: wxiaoguang <wxiaoguang@gmail.com> Co-authored-by: wxiaoguang <wxiaoguang@gmail.com>
Backport go-gitea#36010 by @wxiaoguang Fix go-gitea#35904 Co-authored-by: wxiaoguang <wxiaoguang@gmail.com>
Backport go-gitea#36021 by wxiaoguang 1. the `if` check in `handleCreateManifestResult` didn't handler err correctly 2. add more error details for debugging Co-authored-by: wxiaoguang <wxiaoguang@gmail.com>
… (go-gitea#36047) Backport go-gitea#36009 by @bytedream File changes since last review didn't decrease the viewed files counter --- <img width="440" height="178" alt="image" src="https://github.com/user-attachments/assets/da34fcf4-452f-4f71-8da2-97edbfc31fdd" /> Also reported here -> go-gitea#35803 (comment) Co-authored-by: bytedream <me@bytedream.dev> Co-authored-by: Lunny Xiao <xiaolunwen@gmail.com>
…itea#36053) Backport go-gitea#36041 by @hamkido - Updated error message in `incoming.go` to remove unnecessary wrapping of the error. - Corrected typo in error message in `wiki.go` for clarity. Co-authored-by: hamkido <hamki.do2000@gmail.com>
go-gitea#36045) (go-gitea#36054) Backport go-gitea#36045 Partially fix go-gitea#34710 The bug described in go-gitea#34710 can be divided into two parts: `push.paths` and `pull_request.paths`. This PR fixes the issue related to `pull_request.paths`. The root cause is that the check for whether the workflow can be triggered happens **before** updating the PR’s merge base. This causes the file-change detection to use the old merge base. Therefore, we need to update the merge base first and then check whether the workflow can be triggered.
Backport go-gitea#36058 by @lunny Fix go-gitea#20390 We should use `ReplacePrimaryEmailAddress` instead of `AdminAddOrSetPrimaryEmailAddress` when modify user's email from admin panel. And also we need a database transaction to keep deletion and insertion succeed at the same time. Co-authored-by: Lunny Xiao <xiaolunwen@gmail.com>
Backport toolchain change into 1.25. This is needed because of the govulncheck issue [present](https://github.com/go-gitea/gitea/actions/runs/19921920886/job/57112316941) in the branch. --------- Signed-off-by: silverwind <me@silverwind.io>
Backport go-gitea#36068 by @lunny Follow go-gitea#36058 for API edit user bug when editing email. - The Admin Edit User API includes a breaking change. Previously, when updating a user with an email from an unallowed domain, the request would succeed but return a warning in the response headers. Now, the request will fail and return an error in the response body instead. - Removed `AdminAddOrSetPrimaryEmailAddress` because it will not be used any where. Fix go-gitea#36058 (comment) Co-authored-by: Lunny Xiao <xiaolunwen@gmail.com>
…36055) (go-gitea#36083) Backport go-gitea#36055 by @lunny Replace go-gitea#36032 Fix go-gitea#36030 This PR use `net/smtp` instead of gomail's smtp. Now github.com/wneessen/go-mail will be used only for generating email message body. Co-authored-by: Lunny Xiao <xiaolunwen@gmail.com>
Backport go-gitea#36078 by @a1012112796 fix go-gitea#36071 looks that's because if an svg in hiden env, it's color added by `fill="url(#a)"` will become not usefull. by ai helping, I think moving it out of page by position is a good solution. fell free creat a new pull request if you have a better soluton. Thanks. <img width="2198" height="1120" alt="image" src="https://github.com/user-attachments/assets/bbf7c171-0b7f-412a-a1bc-aea3f1629636" /> Signed-off-by: a1012112796 <1012112796@qq.com> Co-authored-by: a1012112796 <1012112796@qq.com> Co-authored-by: wxiaoguang <wxiaoguang@gmail.com>
…#36039) (go-gitea#36090) Backport go-gitea#36039 by @lunny Fix go-gitea#36026 The redirect should be checked when original user/repo doesn't exist. Co-authored-by: Lunny Xiao <xiaolunwen@gmail.com>
There are a few vulnerabilities reported with: ``` npx pnpm audit ... 6 vulnerabilities found Severity: 2 moderate | 3 high | 1 critical ``` Fix them by upgrading.
GiteaBot
added
the
lgtm/need 2
github-actions
bot
added
modifies/translation
modifies/api
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
8 participants
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Add changelog for 1.25.0-rc0 (Add changelog for 1.25.0-rc0 #35531)
Fix markup init after issue comment editing (Fix markup init after issue comment editing #35536) (Fix markup init after issue comment editing (#35536) #35537)
Backport Fix markup init after issue comment editing #35536 by wxiaoguang
Fix Mermaid diagrams get stuck on loading after an edit #35533
Co-authored-by: wxiaoguang wxiaoguang@gmail.com
fix(webhook): prevent tag events from bypassing branch filters targets (fix(webhook): prevent tag events from bypassing branch filters targets #35449 #35567) (fix(webhook): prevent tag events from bypassing branch filters targets #35449 (#35567) #35577)
Backport fix(webhook): prevent tag events from bypassing branch filters targets #35449 #35567 by Exgene
Co-authored-by: Kausthubh J Rao 105716675+Exgene@users.noreply.github.com
Co-authored-by: wxiaoguang wxiaoguang@gmail.com
Co-authored-by: silverwind me@silverwind.io
Add rebase push display wrong comments bug (Add rebase push display wrong comments bug #35560) (Add rebase push display wrong comments bug (#35560) #35580)
Backport Add rebase push display wrong comments bug #35560 by @lunny
Fix Pull Request Timeline is Wrong When Force Pushing #35518
Co-authored-by: Lunny Xiao xiaolunwen@gmail.com
Co-authored-by: wxiaoguang wxiaoguang@gmail.com
fix: auto-expand and auto-scroll for actions logs (fix: auto-expand and auto-scroll for actions logs (#35570) #35583) (fix: auto-expand and auto-scroll for actions logs (#35570) (#35583) #35586)
Backport fix: auto-expand and auto-scroll for actions logs (#35570) #35583 by ita004
Co-authored-by: Shafi Ahmed 98274448+ita004@users.noreply.github.com
Co-authored-by: wxiaoguang wxiaoguang@gmail.com
Fix creating pull request failure when the target branch name is the same as some tag (Fix creating pull request failure when the target branch name is the same as some tag #35552) (Fix creating pull request failure when the target branch name is the same as some tag (#35552) #35582)
Backport Fix creating pull request failure when the target branch name is the same as some tag #35552 by @lunny
Use full reference name in the git command to avoid ambiguity.
Fix PR Error 500 with branch and tag sharing the same name if the tag create by git tag -a #35470
Co-authored-by: Lunny Xiao xiaolunwen@gmail.com
Use
inputscontext when parsing workflows (Useinputscontext when parsing workflows #35590) (Useinputscontext when parsing workflows (#35590) #35595)Backport Use
inputscontext when parsing workflows #35590 by @Zettat123Depends on gitea/act#143
The
inputscontext
is used when parsing workflows so that
run-namelikerun-name: Deploy to ${{ inputs.deploy_target }}can be parsed correctly.Co-authored-by: Zettat123 zettat123@gmail.com
Fixing issue Elasticsearch password print on clear in case of error #35530: Password Leak in Log Messages (Fix password leak in log messages #35584) (Fix password leak in log messages (#35584) #35609)
Backport Fix password leak in log messages #35584 by @shashank-netapp
Summary
The Gitea codebase was logging
ElasticsearchandMeilisearchconnection strings directly to log files without sanitizing them. Since
connection strings often contain credentials in the format
protocol://username:password@host:port, this resulted in passwordsbeing exposed in plain text in log output.
Fix:
setting.Indexer.IssueConnStr with the
util.SanitizeCredentialURLs()function before logging them.
Fixes: Elasticsearch password print on clear in case of error #35530
Co-authored-by: shashank-netapp 108022276+shashank-netapp@users.noreply.github.com
Co-authored-by: Lunny Xiao xiaolunwen@gmail.com
Fix diffpatch API endpoint (Fix diffpatch API endpoint #35610) (Fix diffpatch API endpoint (#35610) #35613)
Backport Fix diffpatch API endpoint #35610 by @surya-purohit
Updates the swagger documentation for the
diffpatchAPI endpoint.The request body is corrected from the outdated
UpdateFileOptionstothe current
ApplyDiffPatchOptionsto match the code implementation.Closes issue#35602
Co-authored-by: Surya Purohit suryaprakash.sharma@sourcefuse.com
Co-authored-by: wxiaoguang wxiaoguang@gmail.com
Co-authored-by: Lunny Xiao xiaolunwen@gmail.com
Mock external service in hcaptcha TestCaptcha (Mock external service in hcaptcha TestCaptcha #35604) (Mock external service in hcaptcha TestCaptcha (#35604) #35614)
Backport Mock external service in hcaptcha TestCaptcha #35604 by silverwind
The test calls out to a web service which may be down or unreachable as
seen in the linked issue. It's better for tests to not have such
external dependencies to make them absolutely stable.
Fixes: Flaky test:
TestCaptcha#35571Co-authored-by: silverwind me@silverwind.io
Fix inputing review comment will remove reviewer (Fix inputing review comment will remove reviewer #35591) (Fix inputing review comment will remove reviewer (#35591) #35615)
Backport Fix inputing review comment will remove reviewer #35591 by @lunny
Fix Review comment removes the reviewer for the PR #34617
Co-authored-by: Lunny Xiao xiaolunwen@gmail.com
The status icon of the Action step is consistent with GitHub (The status icon of the Action step is consistent with GitHub #35618) (The status icon of the Action step is consistent with GitHub (#35618) #35621)
Backport The status icon of the Action step is consistent with GitHub #35618 by @lutinglt
The status icon of the Action step is consistent with GitHub #35616
Before:
running:
waiting:
After:
running:
waiting:
gitea-running.svgis not an icon from the @ primer/octicon library,extracted from the Github page. Github did not assign a clear class name
to this icon
Signed-off-by: 鲁汀 131967983+lutinglt@users.noreply.github.com
Co-authored-by: 鲁汀 131967983+lutinglt@users.noreply.github.com
Co-authored-by: lutinglt lutinglt@users.noreply.github.com
Fix code tag style problem and LFS view bug (Fix code tag style problem and LFS view bug #35628) (Fix code tag style problem and LFS view bug (#35628) #35636)
Backport Fix code tag style problem and LFS view bug #35628 by lutinglt
Signed-off-by: 鲁汀 131967983+lutinglt@users.noreply.github.com
Co-authored-by: 鲁汀 131967983+lutinglt@users.noreply.github.com
Co-authored-by: wxiaoguang wxiaoguang@gmail.com
bump archives&rar dep (bump archives&rar dep #35637) (bump archives&rar dep (#35637) #35638)
Always create Actions logs stepsContainer (Always create Actions logs stepsContainer #35654) (Always create Actions logs stepsContainer (#35654) #35672)
Backport Always create Actions logs stepsContainer #35654 by wxiaoguang
Co-authored-by: wxiaoguang wxiaoguang@gmail.com
Fix a bug missed return (Fix a missed return in OAuth2 #35655) (Fix a missed return in OAuth2 (#35655) #35667)
Backport Fix a missed return in OAuth2 #35655 by @lunny
Co-authored-by: Lunny Xiao xiaolunwen@gmail.com
Fix missing Close when error occurs and abused connection pool (Fix missing Close when error occurs and abused connection pool #35658) (Fix missing Close when error occurs and abused connection pool (#35658) #35670)
Backport Fix missing Close when error occurs and abused connection pool #35658
Fix build (Fix build #35674)
backport Upgrade to go 1.25.3 #35656
Creating push comments before invoke pull request checking (Creating push comments before invoke pull request checking #35647) (Creating push comments before invoke pull request checking (#35647) #35668)
Backport Creating push comments before invoke pull request checking #35647
This PR moved the creation of pushing comments before pull request
mergeable checking. So that when the pull request status changed, the
comments should have been created.
Co-authored-by: wxiaoguang wxiaoguang@gmail.com
Use LFS object size instead of blob size when viewing a LFS file (Use LFS object size instead of blob size when viewing a LFS file #35679) (Use LFS object size instead of blob size when viewing a LFS file (#35679) #35680)
Backport Use LFS object size instead of blob size when viewing a LFS file #35679 by surya-purohit
shows the main LFS filesize instead of the pointer filesize when viewing
a file
Co-authored-by: Surya Purohit suryaprakash.sharma@sourcefuse.com
Co-authored-by: wxiaoguang wxiaoguang@gmail.com
Fix various bugs (Fix various bugs #35684) (Fix various bugs (#35684) #35696)
Backport Fix various bugs #35684 by wxiaoguang
Fix workflow run event status while rerunning a failed job (Fix workflow run event status while rerunning a failed job #35689) (Fix workflow run event status while rerunning a failed job (#35689) #35703)
The event reported a completion status instead of requested, therefore
sent an email
Backport Fix workflow run event status while rerunning a failed job #35689
Avoid emoji mismatch and allow to only enable chosen emojis (Avoid emoji mismatch and allow to only enable chosen emojis #35692) (Avoid emoji mismatch and allow to only enable chosen emojis (#35692) #35705)
Backport Avoid emoji mismatch and allow to only enable chosen emojis #35692 by wxiaoguang
Fix option to disable emoji replacements #23635
Co-authored-by: wxiaoguang wxiaoguang@gmail.com
Refactor legacy code (Refactor legacy code, fix LFS auth bypass, fix symlink bypass #35708) (Refactor legacy code, fix LFS auth bypass, fix symlink bypass (#35708) #35716)
Backport Refactor legacy code, fix LFS auth bypass, fix symlink bypass #35708 by wxiaoguang
Co-authored-by: wxiaoguang wxiaoguang@gmail.com
Fix various trivial problems (Fix various trivial problems #35714) (Fix various trivial problems (#35714) #35718)
Backport Fix various trivial problems #35714 by wxiaoguang
Co-authored-by: wxiaoguang wxiaoguang@gmail.com
Make restricted users can access public repositories (Make restricted users can access public repositories #35693) (Make restricted users can access public repositories (#35693) #35719)
Backport Make restricted users can access public repositories #35693 by wxiaoguang
Co-authored-by: wxiaoguang wxiaoguang@gmail.com
fix attachment file size limit in server backend (fix attachment file size limit in server backend #35519) (fix attachment file size limit in server backend (#35519) #35720)
Backport fix attachment file size limit in server backend #35519 by @a1012112796
fix Attachment size limit in app.ini not enforced for REST API uploads #35512
Co-authored-by: a1012112796 1012112796@qq.com
Co-authored-by: wxiaoguang wxiaoguang@gmail.com
Don't block site admin's operation if SECRET_KEY is lost (Don't block site admin's operation if SECRET_KEY is lost #35721) (Don't block site admin's operation if SECRET_KEY is lost (#35721) #35724)
Backport Don't block site admin's operation if SECRET_KEY is lost #35721 by wxiaoguang
Related: Improve decryption failure message #24573
Co-authored-by: wxiaoguang wxiaoguang@gmail.com
Honor delete branch on merge repo setting when using merge API (Honor delete branch on merge repo setting when using merge API #35488) (Honor delete branch on merge repo setting when using merge API (#35488) #35726)
Backport Honor delete branch on merge repo setting when using merge API #35488 by @kemzeb
Fix Merging a PR via the API does not honor the
Delete pull request branch after merge by defaultsetting #35463.Co-authored-by: Kemal Zebari 60799661+kemzeb@users.noreply.github.com
Co-authored-by: wxiaoguang wxiaoguang@gmail.com
Fix external render, make iframe render work (Fix external render #35727, Make external iframe render work #35730) (Fix external render, make iframe render work (#35727, #35730) #35731)
Backport Fix external render #35727 and Make external iframe render work #35730
Signed-off-by: wxiaoguang wxiaoguang@gmail.com
Fix review request webhook bug (Fix review request webhook bug #35339) (Fix review request webhook bug (#35339) #35596)
Frontport from Fix review request webhook bug #35339
Revert Disable unnecessary OpenID/OAuth2 elements #18491, fix oauth2 client link account (Revert #18491, fix oauth2 client link account #35745) (Revert #18491, fix oauth2 client link account (#35745) #35751)
Backport Revert #18491, fix oauth2 client link account #35745 by @wxiaoguang
Fix Oauth2 Provider must be enabled for Account Linking by login to work on Oauth2 Client #35744 by reverting Disable unnecessary OpenID/OAuth2 elements #18491
Co-authored-by: wxiaoguang wxiaoguang@gmail.com
Upgrade go mail to 0.7.2 (Upgrade go mail to 0.7.2 #35748) (Upgrade go mail to 0.7.2 (#35748) #35750)
backport Upgrade go mail to 0.7.2 #35748
Fix "ref-issue" handling in markup (Fix "ref-issue" handling in markup #35739) (Fix "ref-issue" handling in markup (#35739) #35771)
Backport Fix "ref-issue" handling in markup #35739 by wxiaoguang
This is a follow up for feat(diff): Enable commenting on expanded lines in PR diffs #35662, and also fix Make
ContextPopupstateless, improve fetching logic #31181, help Nonexistent issues get linked in commit messages and comments #30275, fixThe PRs link in release page will get network error #31161
Co-authored-by: wxiaoguang wxiaoguang@gmail.com
Update tab title when navigating file tree (Update tab title when navigating file tree #35757) (Update tab title when navigating file tree (#35757) #35772)
Backport Update tab title when navigating file tree #35757 by bytedream
Update release notes for 1.25.0 (Update release notes for 1.25.0 #35769)
Co-authored-by: wxiaoguang wxiaoguang@gmail.com
Fix actions schedule update issue (Fix actions schedule update issue #35767) (Fix actions schedule update issue (#35767) #35774)
Backport Fix actions schedule update issue #35767 by @Zettat123
Fix Action schedule #34472
Add integration tests for actions schedule update.
Co-authored-by: Zettat123 zettat123@gmail.com
Co-authored-by: wxiaoguang wxiaoguang@gmail.com
add pnpm to Snapcraft (add pnpm to Snapcraft #35778) (add pnpm to Snapcraft (#35778) #35779)
Backport add pnpm to Snapcraft #35778 by techknowlogick
Co-authored-by: techknowlogick techknowlogick@gitea.com
Fix actions rerun bug (Fix actions rerun bug #35783) (Fix actions rerun bug (#35783) #35784)
Backport Fix actions rerun bug #35783
Fix Actions re-run not working in Gitea 1.25 #35780, fix Re-running of workflow stalls in "waiting" state, unable to cancel. #35782
Rerunning a job or a run is only allowed when the job is done and the
run is done.
Related PR: Rerun job only when run is done #34970
gitea/routers/web/repo/actions/view.go
Line 239 in 98ff7d0
We don't need to check run status again in
rerunJobbecause the runstatus has been changed before
rerunJob.In fact, the bug described in the above issues will not occur on the
main branch. Because
getRunJobsis called before updating the run.gitea/routers/web/repo/actions/view.go
Lines 425 to 435 in 98ff7d0
So the run status that
rerunJobchecks is the old status.Co-authored-by: wxiaoguang wxiaoguang@gmail.com
Improve and fix markup code preview rendering (Improve and fix markup code preview rendering #35777) (Improve and fix markup code preview rendering (#35777) #35787)
Backport Improve and fix markup code preview rendering #35777 by @silverwind
likely thing the user wants to click
commit filter set
The only major difference to GitHub is now the missing line numbers.
Before:
After:
For comparison, GitHub rendering:
Co-authored-by: silverwind me@silverwind.io
Fix file extension on gogs.png (Fix file extension on gogs.png #35793) (Fix file extension on gogs.png (#35793) #35799)
Backport Fix file extension on gogs.png #35793 by @silverwind
During Download file
/assets/img/gogs.icofailed #35790, it was noticedthat this PNG image had the wrong file extension. I also verified
dingtalk.icoand that one is actually an.ico.Co-authored-by: silverwind me@silverwind.io
Fix cli "Before" handling (Fix cli "Before" handling #35797) (Fix cli "Before" handling (#35797) #35808)
Backport Fix cli "Before" handling #35797 by @wxiaoguang
Regression of Improve CLI commands #34973
Fix Git pull/push is hanging in 1.25.0 (fixed in 1.25 nightly and will be released as 1.25.1) #35796
Co-authored-by: wxiaoguang wxiaoguang@gmail.com
Fix clone mixed bug (Fix clone mixed bug #35810) (Fix clone mixed bug (#35810) #35822)
Revert gomail to v0.7.0 to fix sending mail failed (Revert gomail to v0.7.0 to fix sending mail failed #35816) (Revert gomail to v0.7.0 to fix sending mail failed (#35816) #35824)
Backport Revert gomail to v0.7.0 to fix sending mail failed #35816 by @lunny
Revert gomail to the last work version to fix Configuring Gmail results in 'Failed to issue MAIL command: 555 5.5.2 Syntax error' #35794
There is a problem between go mail v0.7.1 to prevent sending email work.
wneessen/go-mail@v0.7.0...v0.7.1
Co-authored-by: Lunny Xiao xiaolunwen@gmail.com
Fix circular spin animation direction (Fix circular spin animation direction #35785) (Fix circular spin animation direction (#35785) #35823)
Backport Fix circular spin animation direction #35785 by @lutinglt
Wait for the status icon to rotate clockwise instead of counterclockwise
before:
after:
This can be merged to 1.25
Signed-off-by: 鲁汀 131967983+lutinglt@users.noreply.github.com
Signed-off-by: wxiaoguang wxiaoguang@gmail.com
Co-authored-by: 鲁汀 131967983+lutinglt@users.noreply.github.com
Co-authored-by: lutinglt lutinglt@users.noreply.github.com
Co-authored-by: wxiaoguang wxiaoguang@gmail.com
upgrade go mail to 0.7.2 and fix the bug (upgrade go mail to 0.7.2 and fix the bug #35833) (upgrade go mail to 0.7.2 and fix the bug (#35833) #35837)
Backport upgrade go mail to 0.7.2 and fix the bug #35833 by @lunny
patch from
Sending mail doesn't work from v0.7.1 wneessen/go-mail#504 (comment).
Thanks to @wneessen
Co-authored-by: Lunny Xiao xiaolunwen@gmail.com
Fix viewed files number is not right if not all files loaded (Fix viewed files number is not right if not all files loaded #35821) (Fix viewed files number is not right if not all files loaded (#35821) #35844)
Fix Incorrect viewed files counter in huge PRs #35803
Backport Fix viewed files number is not right if not all files loaded #35821
Signed-off-by: silverwind me@silverwind.io
Co-authored-by: silverwind me@silverwind.io
Fix incorrect pull request counter (Fix incorrect pull request counter #35819) (Fix incorrect pull request counter (#35819) #35841)
Fix Pull requests show negative number -1 after merge #35781, Pull requests number showing "-1" (incorrect or negative PR count) #27472
Backport Fix incorrect pull request counter #35819
The PR will not correct the wrong numbers automatically.
There is a cron task
check_repo_statswhich will be run when Giteastart or midnight. It will correct the numbers.
Remove wrong code (Remove wrong code #35846) (Remove wrong code (#35846) #35856)
Backport Remove wrong code #35846 by @lunny
Follow Fix viewed files number is not right if not all files loaded #35821
Fix Fix viewed files number is not right if not all files loaded (#35821) #35844 (comment)
The reviewed file numbers and progress have been set from backend so
that we don't need to update the numbers when clicking
load more.Co-authored-by: Lunny Xiao xiaolunwen@gmail.com
Make ACME email optional (Make ACME email optional #35849) (Make ACME email optional (#35849) #35857)
Backport Make ACME email optional #35849 by @wxiaoguang
Fix a regression from Try to fix ACME path when renew #33668
Fix Breaking change in a 'patch' release #35847
Co-authored-by: wxiaoguang wxiaoguang@gmail.com
Add a doctor command to fix inconsistent run status (Add a doctor command to fix inconsistent run status #35840) (Add a doctor command to fix inconsistent run status (#35840) #35845)
Backport Add a doctor command to fix inconsistent run status #35840
Fix actions rerun bug #35783 fixes an actions rerun bug. Due to this bug, some runs may be
incorrectly marked as
StatusWaitingeven though all the jobs are indone status. These runs cannot be run or cancelled. This PR adds a new
doctor command to fix the inconsistent run status.
Add changelog for 1.25.1 and add missing chagnelog for 1.24.x (Add changelog for 1.25.1 and add missing chagnelog for 1.24.x #35838)
Fix gogit ListEntriesRecursiveWithSize (Fix gogit ListEntriesRecursiveWithSize #35862)
It needs to use full git path. Fix Endpoint repo/tree-list have no dirs with gogit on Windows #35852.
Fix pull description code label background (Fix pull description code label background #35865) (Fix pull description code label background (#35865) #35870)
Backport Fix pull description code label background #35865 by @silverwind
Fix visual regression from fix(webhook): prevent tag events from bypassing branch filters targets #35449 #35567:
Before:
After:
Co-authored-by: silverwind me@silverwind.io
fix(api/repo/contents): set the dates to now when not specified by the caller (fix(api/repo/contents): set the dates to now when not specified by the caller #35861) (fix(api/repo/contents): set the dates to now when not specified by the caller (#35861) #35874)
Backport fix(api/repo/contents): set the dates to now when not specified by the caller #35861 by @divyun
Since 1.25.0, the dates get set to
2001-01-01T00:00:00Z, when notspecified by the caller.
Fixes Contents POST APIs result in nil commit dates #35860
Co-authored-by: Divyun Raje Vaid mail@divyun.com
Remove padding override on
.ui .sha.label(Remove padding override on.ui .sha.label#35864) (Remove padding override on.ui .sha.label(#35864) #35873)Backport Remove padding override on
.ui .sha.label#35864 by @silverwindSince upgrading to v1.25, I noticed the SHA labels have slightly
different padding than before. I can't pinpoint exactly which change it
was. Fix it by removing the padding override on
.ui .sha.labelandmake the one on
.ui.label(2px 6px) take effect which matches 1.24rendering.
Before:
After:
Co-authored-by: silverwind me@silverwind.io
Contribution heatmap improvements (Contribution heatmap improvements #35876) (Contribution heatmap improvements (#35876) #35880)
Backport Contribution heatmap improvements #35876 by @silverwind
element from shifting on page load. This uses CSS container query
length
units
as I saw no other way because of the non-linear scaling of the element.
eliminating the need for absolute positioning.
Co-authored-by: silverwind me@silverwind.io
Co-authored-by: wxiaoguang wxiaoguang@gmail.com
Fix avatar upload error handling (Fix avatar upload error handling #35887) (Fix avatar upload error handling (#35887) #35890)
Backport Fix avatar upload error handling #35887
Fix conda null depend issue (Fix conda null depend issue #35900) (Fix conda null depend issue (#35900) #35902)
Backport Fix conda null depend issue #35900 by Luohaothu
This fixes issue Conda package registry invalid when package's dependency is empty #35895
Co-authored-by: Luohao Wang luohaothu@live.com
Fix team member access check (Fix team member access check #35899) (Fix team member access check (#35899) #35905)
Backport Fix team member access check #35899 by wxiaoguang
Fix Can't add User with "Owner" permissions on repo to branch protection rule #35499
Co-authored-by: wxiaoguang wxiaoguang@gmail.com
Display source code downloads last for release attachments (Display source code downloads last for release attachments #35897) (Display source code downloads last for release attachments (#35897) #35903)
Backport Display source code downloads last for release attachments #35897 by lutinglt
Typically, you want to download the binaries, not the source code.
Co-authored-by: 鲁汀 131967983+lutinglt@users.noreply.github.com
Co-authored-by: Lunny Xiao xiaolunwen@gmail.com
Fix Projects: Page title missing #35763: Add proper page title for project pages (Fix #35763: Add proper page title for project pages #35773) (Fix #35763: Add proper page title for project pages (#35773) #35909)
Backport Fix #35763: Add proper page title for project pages #35773 by @mithileshgupta12
Co-authored-by: Mithilesh Gupta mithileshgupta059@gmail.com
Co-authored-by: Mithilesh Gupta guptamithilesh@protonmail.com
Make OAuth2 issuer configurable (Make OAuth2 issuer configurable #35915) (Make OAuth2 issuer configurable (#35915) #35916)
Backport Make OAuth2 issuer configurable #35915 by wxiaoguang
Use correct form field for allowed force push users in branch protection API (Use correct form field for allowed force push users in branch protection API #35894) (Use correct form field for allowed force push users in branch protection API (#35894) #35908)
Backport Use correct form field for allowed force push users in branch protection API #35894 by zorrobiwan
Signed-off-by: Alberty Pascal github@albertyorban.be
Co-authored-by: Alberty Pascal github@albertyorban.be
Allow to display embed images/pdfs when SERVE_DIRECT was enabled on MinIO storage (Allow to display embed images/pdfs when SERVE_DIRECT was enabled on MinIO storage #35882) (Allow to display embed images/pdfs when SERVE_DIRECT was enabled on MinIO storage (#35882) #35917)
Backport Allow to display embed images/pdfs when SERVE_DIRECT was enabled on MinIO storage #35882 by lifegpc
Co-authored-by: lifegpc g1710431395@gmail.com
Co-authored-by: wxiaoguang wxiaoguang@gmail.com
Load jQuery as early as possible to support custom scripts (Load jQuery as early as possible to support custom scripts #35926) (Load jQuery as early as possible to support custom scripts (#35926) #35929)
Backport Load jQuery as early as possible to support custom scripts #35926 by wxiaoguang
Fix PlantUML example from documentation stopped working in Gitea 1.25 #35923
Co-authored-by: wxiaoguang wxiaoguang@gmail.com
Limit read bytes instead of ReadAll (Limit reading bytes instead of ReadAll #35928) (Limit reading bytes instead of ReadAll (#35928) #35934)
Backport Limit reading bytes instead of ReadAll #35928 by wxiaoguang
Co-authored-by: wxiaoguang wxiaoguang@gmail.com
Don't show unnecessary error message to end users for DeleteBranchAfterMerge (Don't show unnecessary error message to end users for DeleteBranchAfterMerge #35937) (Don't show unnecessary error message to end users for DeleteBranchAfterMerge (#35937) #35941)
Backport Don't show unnecessary error message to end users for DeleteBranchAfterMerge #35937 by wxiaoguang
Co-authored-by: wxiaoguang wxiaoguang@gmail.com
Fix corrupted external render content (Fix corrupted external render content #35946) (Fix corrupted external render content (#35946) and upgrade golang.org/x packages #35950)
Backport Fix corrupted external render content #35946 by wxiaoguang
Fix External render failed when content is binary #35944
Co-authored-by: wxiaoguang wxiaoguang@gmail.com
Fix container push tag overwriting (Fix container push tag overwriting #35936) (Fix container push tag overwriting (#35936) #35954)
Backport Fix container push tag overwriting #35936 by wxiaoguang
Fix Can't overwrite package tags #35853
Co-authored-by: wxiaoguang wxiaoguang@gmail.com
Misc CSS fixes (Misc CSS fixes #35888) (Misc CSS fixes (#35888) #35981)
Backport Misc CSS fixes #35888 by @silverwind
Fixes: The text of the "Re-run all jobs" button is out of bounds on mobile devices. #35913
Fixes: Wrong ui around the comment button #35942
Contains a number of minor CSS fixes.
Fix missing border on targeted speech bubble
Add padding to inline comments, slightly more padding around emoji
button
Center text on header in code search results
Tweak emoji selector, reducing font size primarily
Minor tweaks to repo sidebar, reduce font size by 1px, center "Release"
text with label.
Fix issue comment buttons being misaligned on mobile
Add highlight to actions re-run icon
Fix actions re-run button overflow
Signed-off-by: silverwind me@silverwind.io
Co-authored-by: silverwind me@silverwind.io
Co-authored-by: wxiaoguang wxiaoguang@gmail.com
Change project default column icon to 'star' (Change project default column icon to 'star' #35967) (Change project default column icon to 'star' (#35967) #35979)
Backport Change project default column icon to 'star' #35967 by @DrMaxNix
Consistently use a
staricon to highlight the default column of aproject.
The icon is both shown while viewing the project, as well as while
changing the default status of this column.
Co-authored-by: DrMaxNix git@drmaxnix.de
upgrade golang.org/x/crypto to 0.45.0 (upgrade golang.org/x/crypto to 0.45.0 #35988)
Fix various permission & login related bugs (Fix various permission & login related bugs #36002) (Fix various permission & login related bugs (#36002) #36004)
Backport Fix various permission & login related bugs #36002
Permission & protection check:
Information leaking:
profile's.
Auth & Login:
[oauth2].ENABLED=false, because ofWww-Authenticate: Basic realm="Gitea"#35510Co-authored-by: wxiaoguang wxiaoguang@gmail.com
Allow empty commit when merging pull request with squash style (Allow empty commit when merging pull request with squash style #35989) (Allow empty commit when merging pull request with squash style (#35989) #36003)
release notes for 1.25.2 (release notes for 1.25.2 #35986)
Wait upgrade golang.org/x/crypto to 0.45.0 #35988Signed-off-by: wxiaoguang wxiaoguang@gmail.com
Co-authored-by: wxiaoguang wxiaoguang@gmail.com
Add "site admin" back to profile menu (Add "site admin" back to profile menu #36010) (Add "site admin" back to profile menu (#36010) #36013)
Backport Add "site admin" back to profile menu #36010 by @wxiaoguang
Fix Site Administration issue is missing #35904
Co-authored-by: wxiaoguang wxiaoguang@gmail.com
Fix container registry error handling (Fix container registry error handling #36021) (Fix container registry error handling (#36021) #36037)
Backport Fix container registry error handling #36021 by wxiaoguang
ifcheck inhandleCreateManifestResultdidn't handler errcorrectly
Co-authored-by: wxiaoguang wxiaoguang@gmail.com
Fix incorrect viewed files counter if file has changed (Fix incorrect viewed files counter if file has changed #36009) (Fix incorrect viewed files counter if file has changed (#36009) #36047)
Backport Fix incorrect viewed files counter if file has changed #36009 by @bytedream
File changes since last review didn't decrease the viewed files counter
Also reported here ->
Incorrect viewed files counter in huge PRs #35803 (comment)
Co-authored-by: bytedream me@bytedream.dev
Co-authored-by: Lunny Xiao xiaolunwen@gmail.com
Fix error handling in mailer and wiki services (Fix error handling in mailer and wiki services #36041) (Fix error handling in mailer and wiki services (#36041) #36053)
Backport Fix error handling in mailer and wiki services #36041 by @hamkido
incoming.goto remove unnecessary wrappingof the error.
wiki.gofor clarity.Co-authored-by: hamkido hamki.do2000@gmail.com
Fix Actions
pull_request.pathsbeing triggered incorrectly by rebase (Fix Actionspull_request.pathsbeing triggered incorrectly by rebase #36045) (Fix Actionspull_request.pathsbeing triggered incorrectly by rebase (#36045) #36054)Backport Fix Actions
pull_request.pathsbeing triggered incorrectly by rebase #36045Partially fix Gitea Actions
pathsfilters incorrectly trigger during rebase operations #34710The bug described in Gitea Actions
pathsfilters incorrectly trigger during rebase operations #34710 can be divided into two parts:push.pathsand
pull_request.paths. This PR fixes the issue related topull_request.paths. The root cause is that the check for whether theworkflow can be triggered happens before updating the PR’s merge
base. This causes the file-change detection to use the old merge base.
Therefore, we need to update the merge base first and then check whether
the workflow can be triggered.
Fix bug when updating user email (Fix bug when updating user email #36058) (Fix bug when updating user email (#36058) #36066)
Backport Fix bug when updating user email #36058 by @lunny
Fix The user's home page pointed to in the commit message is wrong #20390
We should use
ReplacePrimaryEmailAddressinstead ofAdminAddOrSetPrimaryEmailAddresswhen modify user's email from adminpanel. And also we need a database transaction to keep deletion and
insertion succeed at the same time.
Co-authored-by: Lunny Xiao xiaolunwen@gmail.com
Bump toolchain to go1.25.5, misc fixes (Bump toolchain to go1.25.5, misc fixes #36082)
Backport toolchain change into 1.25. This is needed because of the
govulncheck issue
present
in the branch.
Signed-off-by: silverwind me@silverwind.io
Fix edit user email bug in API (Fix edit user email bug in API #36068) (Fix edit user email bug in API (#36068) #36081)
Backport Fix edit user email bug in API #36068 by @lunny
Follow Fix bug when updating user email #36058 for API edit user bug when editing email.
updating a user with an email from an unallowed domain, the request
would succeed but return a warning in the response headers. Now, the
request will fail and return an error in the response body instead.
AdminAddOrSetPrimaryEmailAddressbecause it will not be usedany where.
Fix Fix bug when updating user email #36058 (comment)
Co-authored-by: Lunny Xiao xiaolunwen@gmail.com
Use Golang net/smtp instead of gomail's smtp to send email (Use Golang net/smtp instead of gomail's smtp to send email #36055) (Use Golang net/smtp instead of gomail's smtp to send email (#36055) #36083)
Backport Use Golang net/smtp instead of gomail's smtp to send email #36055 by @lunny
Replace Use gomail library instead of gomail's smtp #36032
Fix go mail to 0.7.2 adding 8BITMIME to MAIL FROM causing SMTP failtures. #36030
This PR use
net/smtpinstead of gomail's smtp. Nowgithub.com/wneessen/go-mail will be used only for generating email
message body.
Co-authored-by: Lunny Xiao xiaolunwen@gmail.com
fix some file icon ui (fix some file icon ui #36078) (fix some file icon ui (#36078) #36088)
Backport fix some file icon ui #36078 by @a1012112796
fix File icon is not shown for *.kts and *.xml file #36071
looks that's because if an svg in hiden env, it's color added by
fill="url(#a)"will become not usefull. by ai helping, I think movingit out of page by position is a good solution. fell free creat a new
pull request if you have a better soluton. Thanks.
Signed-off-by: a1012112796 1012112796@qq.com
Co-authored-by: a1012112796 1012112796@qq.com
Co-authored-by: wxiaoguang wxiaoguang@gmail.com
Fix the bug when ssh clone with redirect user or repository (Fix the bug when ssh clone with redirect user or repository #36039) (Fix the bug when ssh clone with redirect user or repository (#36039) #36090)
Backport Fix the bug when ssh clone with redirect user or repository #36039 by @lunny
Fix Previously registered incorrect redirects will manifest starting with v1.25. #36026
The redirect should be checked when original user/repo doesn't exist.
Co-authored-by: Lunny Xiao xiaolunwen@gmail.com
pnpm-lock: upgrade deps to address vulnerabilities
There are a few vulnerabilities reported with:
Fix them by upgrading.