mirror/forgejo
1
0
Fork 0
mirror of https://codeberg.org/forgejo/forgejo.git synced 2026-02-10 02:03:01 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
51ac1bf45ffbb4e49625ba511ddec938fdec6713
forgejo/services/issue
History
Gusted 4e83f85b75 feat: use keying for webhook secrets (#10059) 
- Follow up of forgejo/forgejo!5041, forgejo/forgejo!6074, forgejo/forgejo!8692, forgejo/forgejo!9923
- The `webhook` table contains a encrypted header authorization.
- Use `keying` to safely store this secret and bound them to the table, column and row id
- The migration isn't spectacular but does closely follow what we learned in the previous three migrations: use a transaction and delete records when you can't decrypt them.

Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10059
Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org>
Reviewed-by: oliverpool <oliverpool@noreply.codeberg.org>
Co-authored-by: Gusted <postmaster@gusted.xyz>
Co-committed-by: Gusted <postmaster@gusted.xyz>
2025-12-22 15:51:37 +01:00
..
assignee_test.go
assignee.go
comments_test.go
feat: use keying for webhook secrets (#10059)
2025-12-22 15:51:37 +01:00
comments.go
commit_test.go
refactor: migrate from lib/pq to jackc/pgx (#10219)
2025-11-30 17:47:45 +01:00
commit.go
content.go
issue_test.go
issue.go
chore: Dead Code: DeleteIssue Notify Topic (#10046)
2025-11-17 02:13:38 +01:00
label_test.go
label.go
main_test.go
milestone_test.go
milestone.go
fix: possible cause of invalid issue counts; cache invalidation occurs before a active transaction is committed (#10130)
2025-11-17 01:07:29 +01:00
pull.go
feat: avoid remote for codeowner's merge base (#9610)
2025-10-10 15:50:38 +02:00
reaction.go
status.go
template.go
feat: search in the docs directory for issue and pull request templates (#8863)
2025-08-26 22:08:10 +02:00