opensource/gitea
1
0
Fork 0
mirror of https://gitcode.com/gitea/gitea.git synced 2025-06-01 15:55:15 +08:00
Code Issues Packages Projects Releases Wiki Activity

Refactor CSRF protection modules, make sure CSRF tokens can be up-to-date. (#19337)

Browse Source 
Do a refactoring to the CSRF related code, remove most unnecessary functions.
Parse the generated token's issue time, regenerate the token every a few minutes.
This commit is contained in:
wxiaoguang
2022-04-08 13:21:05 +08:00
committed by GitHub
parent 3c3d49899f
commit 84ceaa98bd
10 changed files with 170 additions and 196 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
routers/web/auth/oauth.go
View File

@ -1007,7 +1007,7 @@ func handleOAuth2SignIn(ctx *context.Context, source *auth.Source, u *user_model
log.Error("Error storing session: %v", err)
}
// Clear whatever CSRF has right now, force to generate a new one
// Clear whatever CSRF cookie has right now, force to generate a new one
middleware.DeleteCSRFCookie(ctx.Resp)
// Register last login