Gusted a14be197eb [GITEA] rework long-term authentication ... - The current architecture is inherently insecure, because you can construct the 'secret' cookie value with values that are available in the database. Thus provides zero protection when a database is dumped/leaked. - This patch implements a new architecture that's inspired from: [Paragonie Initiative](https://paragonie.com/blog/2015/04/secure-authentication-php-with-long-term-persistence#secure-remember-me-cookies). - Integration testing is added to ensure the new mechanism works. - Removes a setting, because it's not used anymore. (cherry picked from commit eff097448b) [GITEA] rework long-term authentication (squash) add migration Reminder: the migration is run via integration tests as explained in the commit "[DB] run all Forgejo migrations in integration tests" (cherry picked from commit 4accf7443c)		2023-10-09 22:17:28 +02:00
..
e2e	Require MySQL 8.0, PostgreSQL 12, MSSQL 2012 (#27337)	2023-10-03 13:27:57 -04:00
fuzz	Move fuzz tests into tests/fuzz (#22376)	2023-01-09 15:30:14 +08:00
gitea-lfs-meta	Test views of LFS files (#22196)	2022-12-23 07:41:56 +08:00
gitea-repositories-meta	[GITEA] Detect file rename and show in history	2023-10-09 20:44:25 +02:00
integration	[GITEA] rework long-term authentication	2023-10-09 22:17:28 +02:00
testdata/data/attachments/a/0	Allow get release download files and lfs files with oauth2 token format (#26430)	2023-10-01 10:41:52 +00:00
mssql.ini.tmpl	[CI] set PASSWORD_HASH_ALGO = argon2 for integration tests	2023-10-09 17:15:31 +02:00
mysql.ini.tmpl	[CI] disable meilisearch/elasticsearch test, no server yet in CI	2023-10-09 18:25:28 +02:00
pgsql.ini.tmpl	[CI] set PASSWORD_HASH_ALGO = argon2 for integration tests	2023-10-09 17:15:31 +02:00
sqlite.ini.tmpl	[TESTS] increase test-sqlite log level to Trace	2023-10-09 19:11:02 +02:00
test_utils.go	[TESTS] tests.AddFixtures helper loads additional per-test fixtures	2023-10-09 19:11:03 +02:00