7 Commits (cad9adeff41595ea32281dbc2918e653c3e3a839)

Author	SHA1	Message	Date
Lunny Xiao	a4e91c4197	Add proxy host into allow list (#20798) ... Co-authored-by: techknowlogick <techknowlogick@gitea.io>	3 years ago
wxiaoguang	f67a1030b3	Add tests for the host checking logic, clarify the behaviors (#20328) ... Before, the combination of AllowedDomains/BlockedDomains/AllowLocalNetworks is confusing. This PR adds tests for the logic, clarify the behaviors.	3 years ago
wxiaoguang	a51efb4c2c	Support `hostname:port` to pass host matcher's check #19543 (#19543) ... hostmatcher: split the hostname from the `hostname:port` string, use the correct hostname to do the match.	3 years ago
6543	60fbaa9068	remove not needed (#19128)	3 years ago
Gusted	ff2fd08228	Simplify parameter types (#18006) ... Remove repeated type declarations in function definitions.	3 years ago
wxiaoguang	013fb73068	Use `hostmatcher` to replace `matchlist`, improve security (#17605) ... Use hostmacher to replace matchlist. And we introduce a better DialContext to do a full host/IP check, otherwise the attackers can still bypass the allow/block list by a 302 redirection.	3 years ago
wxiaoguang	599ff1c054	Only allow webhook to send requests to allowed hosts (#17482)	3 years ago