1
0
Fork 0
mirror of https://codeberg.org/forgejo/forgejo.git synced 2024-12-25 13:19:37 -05:00
forgejo/routers/api/v1
Gusted 5488ec7d96
security: add permission check to 'delete branch after merge'
- Add a permission check that the doer has write permissions to the head
repository if the the 'delete branch after merge' is enabled when
merging a pull request.
- Unify the checks in the web and API router to `DeleteBranchAfterMerge`.
- Added integration tests.

(cherry picked from commit 266e0b2ce9)

Conflicts:
	tests/integration/pull_merge_test.go
  trivial context conflict
2024-10-28 06:32:10 +01:00
..
activitypub activitypub: warn instead of error 2024-03-24 07:12:31 +01:00
admin Fix empty field login_name in API response JSON when creating user (#30511) (#30516) 2024-04-21 18:07:51 +02:00
misc Port "Fix wrong test usage of AppSubURL" 2024-03-06 21:47:44 +01:00
notify drop log.Error in ReadRepoNotifications 2024-03-24 07:12:31 +01:00
org Missed return on error part of: Fix bug on avatar (#31008) (#31019) 2024-05-31 14:56:16 +02:00
packages remove util.OptionalBool and related functions (#29513) 2024-03-06 12:10:46 +08:00
repo security: add permission check to 'delete branch after merge' 2024-10-28 06:32:10 +01:00
settings Move context from modules to services (#29440) 2024-03-06 12:10:43 +08:00
shared Move context from modules to services (#29440) 2024-03-06 12:10:43 +08:00
swagger [SWAGGER] Make it consistent with reality 2024-06-19 06:40:17 +00:00
user Missed return on error part of: Fix bug on avatar (#31008) (#31019) 2024-05-31 14:56:16 +02:00
utils Move context from modules to services (#29440) 2024-03-06 12:10:43 +08:00
api.go Fix #2512 /api/forgejo/v1/version auth check (#2582) 2024-03-19 07:16:19 +00:00