Gusted ce10ec2878 [SEC] Ensure propagation of API scopes for Conan and Container authentication ... - The Conan and Container packages use a different type of authentication. It first authenticates via the regular way (api tokens or user:password, handled via `auth.Basic`) and then generates a JWT token that is used by the package software (such as Docker) to do the action they wanted to do. This JWT token didn't properly propagate the API scopes that the token was generated for, and thus could lead to a 'scope escalation' within the Conan and Container packages, read access to write access. - Store the API scope in the JWT token, so it can be propagated on subsequent calls that uses that JWT token. - Integration test added. - Resolves #5128 (cherry picked from commit 5a871f6095)		2024-08-28 08:44:58 +00:00
..
api	[SEC] Ensure propagation of API scopes for Conan and Container authentication	2024-08-28 08:44:58 +00:00
common	Use relative links for commits, mentions, and issues in markdown (#29427)	2024-03-20 08:46:28 +01:00
install	Always load or generate oauth2 jwt secret (#30942)	2024-05-24 15:15:07 +02:00
private	enable linter testifylint on v7 (#4572)	2024-07-30 19:42:06 +00:00
utils	Improve user search display name (#29002)	2024-02-01 17:10:16 +00:00
web	Show lock owner instead of repo owner on LFS setting page (#31788) (#31817)	2024-08-18 07:01:03 +02:00
init.go	s/Gitea/Forgejo in various log messages and comments	2024-04-22 14:41:17 +00:00