We use cookies to ensure you get the best experience on our website
Home Esplora
Accedi
egonr
/
gogs
mirror da https://github.com/gogs/gogs
1
0
Forka 0
File
Sfoglia il codice sorgente

security: require authentication for attachment uploads (#8128)

https://github.com/gogs/gogs/security/advisories/GHSA-fc3h-92p8-h36f

Co-authored-by: Claude Opus 4.5 <noreply@anthropic.com>
ᴊᴏᴇ ᴄʜᴇɴ 1 settimana fa
parent
7306b955a9
commit
628216d588
1 ha cambiato i file con 4 aggiunte e 1 eliminazioni
Visualizzazione separata Mostra Diff Stats
  1. 4 1
      internal/cmd/web.go

+ 4 - 1
internal/cmd/web.go
Vedi File 

@@ -329,9 +329,12 @@ func runWeb(c *cli.Context) error {
 
 					return
 
 				}
 
 			})
 
+		}, ignSignIn)
 
+
 
+		m.Group("", func() {
 
 			m.Post("/issues/attachments", repo.UploadIssueAttachment)
 
 			m.Post("/releases/attachments", repo.UploadReleaseAttachment)
 
-		}, ignSignIn)
 
+		}, reqSignIn)
 
 
 		m.Group("/:username", func() {
 
 			m.Post("/action/:action", user.Action)