Affected by GO-2022-0442 and 9 other vulnerabilities

GO-2022-0442: Arbitrary file deletion in gitea in code.gitea.io/gitea

GO-2022-0450: Shell command injection in gitea in code.gitea.io/gitea

GO-2022-0609: Gitea Missing Authorization vulnerability in code.gitea.io/gitea

GO-2022-0612: Stored Cross-site Scripting in gitea in code.gitea.io/gitea

GO-2022-1065: Gitea vulnerable to Argument Injection in code.gitea.io/gitea

GO-2023-1894: code.gitea.io/gitea Open Redirect vulnerability

GO-2023-1999: Gitea erroneous repo clones in code.gitea.io/gitea

GO-2024-2752: Gitea Open Redirect in code.gitea.io/gitea

GO-2024-2769: Gitea allowed assignment of private issues in code.gitea.io/gitea

GO-2024-3056: Gitea Cross-site Scripting Vulnerability in code.gitea.io/gitea

db

package

v1.16.0 Latest Latest Go to latest Published: Jan 30, 2022 License: MIT Imports: 4 Imported by: 2

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

This section is empty.

This section is empty.

func Authenticate(user *user_model.User, login, password string) (*user_model.User, error)

Authenticate authenticates the provided user against the DB

type Source struct{}

Source is a password authentication service

func (source *Source) Authenticate(user *user_model.User, login, password string) (*user_model.User, error)

Authenticate queries if login/password is valid against the PAM, and create a local user if success when enabled.

func (source *Source) FromDB(bs []byte) error

FromDB fills up an OAuth2Config from serialized format.

func (source *Source) ToDB() ([]byte, error)

ToDB exports an SMTPConfig to a serialized format.