Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

add skip secondary authorization option for public oauth2 clients #31454

Open
wants to merge 7 commits into
base: main
Choose a base branch
from
Open

add skip secondary authorization option for public oauth2 clients #31454

wants to merge 7 commits into from

Conversation

denyskon
Copy link
Member

Followup to #30790

Add an option to allow skipping the manual authorization on every request for public clients.

As this measure is not a hard requirement by the OAuth2 spec and all the major competitors of Gitea not implementing it, make it opt-out to allow for consistent user experience and simplified workflow for users who need it.

@GiteaBot GiteaBot added the lgtm/need 2 This PR needs two approvals by maintainers to be considered for merging. label Jun 21, 2024
@pull-request-size pull-request-size bot added the size/L Denotes a PR that changes 100-499 lines, ignoring generated files. label Jun 21, 2024
@github-actions github-actions bot added modifies/translation modifies/api This PR adds API routes or modifies them modifies/go Pull requests that update Go code modifies/templates This PR modifies the template files modifies/migrations modifies/js labels Jun 21, 2024
@denyskon denyskon added this to the 1.23.0 milestone Jun 21, 2024
@denyskon denyskon added type/enhancement An improvement of existing functionality topic/api Concerns mainly the API labels Jun 21, 2024
@denyskon
Copy link
Member Author

(easier to review with disabled whitespace changes :)

delvh
delvh reviewed Jun 28, 2024
View reviewed changes
web_src/js/features/oauth2-settings.js Outdated Show resolved Hide resolved
models/migrations/v1_23/v300.go Outdated Show resolved Hide resolved
routers/web/auth/oauth.go Show resolved Hide resolved
@denyskon denyskon requested a review from delvh June 28, 2024 21:38
delvh
delvh approved these changes Jun 28, 2024
View reviewed changes
Copy link
Member

@delvh delvh left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I don't think I'm able to test this, so here's my approval.

@GiteaBot GiteaBot added lgtm/need 1 This PR needs approval from one additional maintainer to be merged. and removed lgtm/need 2 This PR needs two approvals by maintainers to be considered for merging. labels Jun 28, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@delvh delvh delvh approved these changes

Assignees
No one assigned
Labels
lgtm/need 1 This PR needs approval from one additional maintainer to be merged. modifies/api This PR adds API routes or modifies them modifies/go Pull requests that update Go code modifies/js modifies/migrations modifies/templates This PR modifies the template files modifies/translation size/L Denotes a PR that changes 100-499 lines, ignoring generated files. topic/api Concerns mainly the API type/enhancement An improvement of existing functionality
Projects
None yet
Milestone
1.23.0
Development

Successfully merging this pull request may close these issues.

None yet
3 participants
@denyskon @delvh @GiteaBot