抱歉,您的浏览器无法访问本站

本页面需要浏览器支持(启用)JavaScript


了解详情 >

Gitea_1.15.4_is_released

jolheiser

Gitea 1.15.4 is released

Fri Oct 8, 2021 by jolheiser

We are proud to present the release of Gitea version 1.15.4.

We highly encourage users to update to this version for some important bug-fixes.

We have merged 20 pull requests to release this version.

❗ We remind users that a bug was discovered with gitea dump in 1.14.3–1.14.6 and 1.15.0. Database dumps from these versions cause broken fields in the repo_unit and login_source tables causing the issue identified in #16961. Users on 1.14.x must upgrade to 1.14.7 before running gitea dump. If this is not possible and you are affected #17137 provides a new gitea doctor command to fix the repo_unit issue:

gitea doctor --fix --run fix-broken-repo-units

A command to provide an automatic fix for problems with the login_source table does not appear definitely possible and if you are affected please contact the maintainers.

You can download one of our pre-built binaries from our downloads page - make sure to select the correct platform! For further details on how to install, follow our installation guide.

We would also like to thank all of our supporters on Open Collective who are helping to sustain us financially.

Have you heard? We now have a swag shop! 👕 🍵

Changelog

1.15.4 - 2021-10-08

  • BUGFIXES
    • Raw file API: don’t try to interpret 40char filenames as commit SHA (#17185) (#17272)
    • Don’t allow merged PRs to be reopened (#17192) (#17271)
    • Fix incorrect repository count on organization tab of dashboard (#17256) (#17266)
    • Fix unwanted team review request deletion (#17257) (#17264)
    • Fix broken Activities link in team dashboard (#17255) (#17258)
    • API pull’s head/base have correct permission(#17214) (#17245)
    • Fix stange behavior of DownloadPullDiffOrPatch in incorect index (#17223) (#17227)
    • Upgrade xorm to v1.2.5 (#17177) (#17188)
    • Fix missing repo link in issue/pull assigned emails (#17183) (#17184)
    • Fix bug of get context user (#17169) (#17172)
    • Nicely handle missing user in collaborations (#17049) (#17166)
    • Add Horizontal scrollbar to inner menu on Chrome (#17086) (#17164)
    • Fix wrong i18n keys (#17150) (#17153)
    • Fix Archive Creation: correct transaction ending (#17151)
    • Prevent panic in Org mode HighlightCodeBlock (#17140) (#17141)
    • Create doctor command to fix repo_units broken by dumps from 1.14.3-1.14.6 (#17136) (#17137)
  • ENHANCEMENT
    • Check user instead of organization when creating a repo from a template via API (#16346) (#17195)
  • TRANSLATION
    • v1.15 fix Sprintf format ‘verbs’ in locale files (#17187)

Gitea_1.15.3_is_released

norwin

Gitea 1.15.3 is released

Thu Sep 23, 2021 by norwin

We are proud to present the release of Gitea version 1.15.3.

17 pull requests went into this patch release, and we highly encourage users to update to this version for some important bug-fixes.

You can download one of our pre-built binaries from our downloads page - make sure to select the correct platform! For further details on how to install, follow our installation guide.

We would also like to thank all of our supporters on Open Collective who are helping to sustain us financially.

Have you heard? We now have a swag shop! 👕 🍵

Changelog

1.15.3 - 2021-09-19

Tea_0.8.0_is_released

norwin

Tea 0.8.0 is released

Thu Sep 23, 2021 by norwin

We are proud to present the release of tea version 0.8.0, a CLI tool that allows you to work with pull requests, issues and more in your terminal.

You can download prebuilt binaries from dl.gitea.io/tea, for more options look at the README.md.

This release mostly contains bugfixes and changes to consolidate flag names between commands, but also ships a major new feature:

Interaction with Notifications

  • Notifications can now be listed with more fine-grained selection filters than what Gitea’s web UI provides. Want to get all notifications about updated PRs in this repo? Easy!

    tea notifications --repo gitea/tea --types commit
    

    Need an overview over all pinned notifications across repos?

    tea notifications --mine --states pinned
    

    Get back on that notification you accidentally marked as read?

    tea notifications --states=read
    
  • Additionally, there are now actions to mark notifications as (un)read & to (un)pin them. Want to mark all notifications in a single repo as read? Easy!

    tea notifications read --repo gitea/tea
    

Changelog

v0.8.0 - 2021-09-22

  • BREAKING
    • tea notifications --all has moved to tea notifications --mine (#389)
    • tea notifications now only works with the context of a remote repo. (#389) To run this outside of a local git dir, run either tea n --mine or tea n --repo
  • FEATURES
    • Add notifications subcommands (#389)
    • Add tea pr merge (#348)
  • BUGFIXES
    • Don’t skip reading the local repo when --repo specifies a repo slug (#398)
    • Fix adding login without token on private instances (#392)
    • Correctly match login by ssh host with port (#391)
    • Fix printing issue deadline (#388)
    • Return useful error on wrong sshkey path (#374)
    • Fix parsing of --description for issue/pr create (#371)
    • Add missing flags (#369)
    • Check negative limit command parameter (#358) (#359)
    • Add missing flags to org & labels subcommands (#357)
  • ENHANCEMENTS
    • Don’t require a body for comment PR reviews (#399)
    • Accept more main branch names for login detection (#396)
    • Make local repo optional for tea pr create(#393)
    • Notifications Add State Field (#384)
    • Improve error messages (#370)
    • Add tab completion for fish shell (#364)
    • Text editor selection: follow unix defacto standards (#356)
  • BUILD
    • Enable release builds for darwin/arm64 (#360)
  • MISC
    • Update Dependencies (#390)

Have you heard? We now have a swag shop! 👕 🍵

Gitea_1.15.2_is_released

zeripath

Gitea 1.15.2 is released

Fri Sep 3, 2021 by zeripath

Unfortunately following the release of 1.15.1 it has become apparent that there is an issue with upgrading from 1.15.0 to 1.15.1 due to problem with a table constraint that was unexpectedly automatically dropped. Users who upgraded straight from 1.14.x to 1.15.1 are not affected and users who upgraded from 1.15.0 to 1.15.1 can fix the problem using gitea doctor recreate-table issue_index or upgrade to 1.15.2.

We have merged 3 pull requests to release version 1.15.2.

You can download one of our pre-built binaries from our downloads page - make sure to select the correct platform! For further details on how to install, follow our installation guide.

We would also like to thank all of our supporters on Open Collective who are helping to sustain us financially.

Have you heard? We now have a swag shop! 👕 🍵

Changelog

1.15.2 - 2021-09-03

  • BUGFIXES
    • Add unique constraint back into issue_index (#16938)
    • Close storage objects before cleaning (#16934) (#16942)

Gitea_1.15.1_and_1.14.7_are_released

zeripath

Gitea 1.15.1 and 1.14.7 are released

Thu Sep 2, 2021 by zeripath

We are proud to present the release of Gitea version 1.15.1 (and v1.14.7). We have specially released v1.14.7 as it contains an important fix for an issue with gitea dump on versions 1.14.3-1.14.6 and version 1.15.0.

We highly encourage users on versions v1.14.3-v1.14.7 to update to v1.14.7 before creating their backup dump files, and then update to v1.15.1 for some important bug-fixes.

We have merged 26 pull requests to release version 1.15.1 and 6 pull requests to release version 1.14.7.

You can download one of our pre-built binaries for 1.15.1 from our downloads page (1.14.7) - make sure to select the correct platform! For further details on how to install, follow our installation guide.

We would also like to thank all of our supporters on Open Collective who are helping to sustain us financially.

Have you heard? We now have a swag shop! 👕 🍵

Changelog

1.15.1 - 2021-09-02

  • BUGFIXES
    • Allow BASIC authentication access to /:owner/:repo/releases/download/* (#16916) (#16923)
    • Prevent leave changes dialogs due to autofill fields (#16912) (#16920)
    • Ignore review comment when ref commit is missed (#16905) (#16919)
    • Fix wrong attachment removal (#16915) (#16917)
    • Gitlab Migrator: dont ignore reactions of last request (#16903) (#16913)
    • Correctly return the number of Repositories for Organizations (#16807) (#16911)
    • Test if LFS object is accessible (#16865) (#16904)
    • Fix git.Blob.DataAsync(): close pipe since we return a NopCloser (#16899) (#16900)
    • Fix dump and restore respository (#16698) (#16898)
    • Repair and Improve GetDiffRangeWithWhitespaceBehavior (#16894) (#16895)
    • Fix wiki raw commit diff/patch view (#16891) (#16892)
    • Ensure wiki repos are all closed (#16886) (#16888)
    • List limited and private orgs if authenticated on API (#16866) (#16879)
    • Simplify split diff view generation and remove JS dependency (#16775) (#16863)
    • Ensure that the default visibility is set on the user create page (#16845) (#16862)
    • In Render tolerate not being passed a context (#16842) (#16858)
    • Upgrade xorm to v1.2.2 (#16663) & Add test to ensure that dumping of login sources remains correct (#16847) (#16848)
    • Report the correct number of pushes on the feeds (#16811) (#16822)
    • Add primary_key to issue_index (#16813) (#16820)
    • Prevent NPE on empty commit (#16812) (#16819)
    • Fix branch pagination error (#16805) (#16816)
    • Add missing return to handleSettingRemoteAddrError (#16794) (#16795)
    • Remove spurious / from issues.opened_by (#16793)
    • Ensure that template compilation panics are sent to the logs (#16788) (#16792)
    • Update caddyserver/certmagic (#16789) (#16790)

1.14.7 - 2021-09-02

  • BUGFIXES
    • Add missing gitRepo close at GetDiffRangeWithWhitespaceBehavior (Partial #16894) (#16896)
    • Fix wiki raw commit diff/patch view (#16891) (#16893)
    • Ensure wiki repos are all closed (#16886) (#16889)
    • Upgrade xorm to v1.2.2 (#16663) & Add test to ensure that dumping of login sources remains correct (#16847) (#16849)
    • Recreate Tables should Recreate indexes on MySQL (#16718) (#16740)

Gitea_1.15.0_is_released

zeripath

Gitea 1.15.0 is released

Sun Aug 22, 2021 by zeripath

We are proud to present the release of Gitea version 1.15.0.

We have merged 488 pull requests to release this version.

You can download one of our pre-built binaries from our downloads page - make sure to select the correct platform! For further details on how to install, follow our installation guide.

We would also like to thank all of our supporters on Open Collective who are helping to sustain us financially.

Have you heard? We now have a swag shop! 👕 🍵
Sample images below.

shirt hoodie ladies

Now, on to the changes!

Breaking Changes (or potentially breaking)

❗ Upgrade to the latest version of golang-jwt and increase minimum go to 1.16 (#16590) (#16606) (#16710)

The minimum version of Go Gitea can be compiled with has been increased to 1.16 as Go 1.14 and Go 1.15 are no longer supported by the go developers.

❗ Changed mapping of :latest on docker #16421

The docker tag logic has changed to map :latest to match the latest tag on the 1.15 branch and :dev to represent the latest build on the main branch. Users who wish to use the development version of Gitea - with all its latest features should switch to use the :dev tag for docker. We would like to encourage at least some users to consider using :dev.

❗ More restrictive app.ini permissions #16266

The default file permissions mode for app.ini has changed to -rw------- when Gitea creates this file.

❗ Webhook Refactors #16176

Webhook payloads have been changed so that the Secret field is no longer passed as part of the payload and the history shows the real URL that was sent in the webhook.

❗ Asymmetric JWT Signing Key #16010

We have added asymmetric JWT signing and Gitea will use an asymmetric keypair for JWT signing by default.

  • Asymmetric algorithms require a secret asymmetric key pair to be in JWT_SIGNING_PRIVATE_KEY_FILE (by default APP_DATA_PATH/jwt), a pair will be generated if it is not present. (NB: this was originally in CUSTOM_PATH but was changed by #16227)
  • The original symmetric JWT_SECRET will only be used if JWT_SIGNING_ALGORITHM is set to HS256 (previous default), HS384 or HS512.
  • As a result of the change of algorithm gitea OAuth2 tokens (and potentially the client secret) will need to be regenerated unless you change your JWT_SIGNING_ALGORITHM back to HS256.
  • Legacy installations of Drone assume a short key length, however as no automated migrations are run by Drone you’ll need to do them manually if the column type for user_oauth_token and user_oauth_refresh are limited to 500 characters.
-- an example manual migration for Drone database connected to postgresql
alter table users alter column user_oauth_token type bytea using convert_to(user_oauth_token, 'LATIN1');
alter table users alter column user_oauth_refresh type bytea using convert_to(user_oauth_refresh, 'LATIN1');

❗ Clean-up the settings hierarchy for issue_indexer queue #16001

We have changed the priority of settings below:

  • [queue.issue_indexer] TYPE now overrides [indexers] ISSUE_INDEXER_QUEUE_TYPE
  • [queue.issue_indexer] DATADIR overrides [indexers] ISSUE_INDEXER_QUEUE_DIR
  • [queue.issue_indexer] CONN_STR overrides [indexers] ISSUE_INDEXER_QUEUE_CONN_STR
  • [queue.issue_indexer] BATCH_LENGTH overrides [indexers] ISSUE_INDEXER_QUEUE_BATCH_NUMBER
  • [queue.issue_indexer] LENGTH overrides [indexers] UPDATE_BUFFER_LEN

It is not expected that many people will experience effects from this change.

❗ Change default queue settings to be low go-routines #15964

We have changed the default configuration for queues to make them low goroutines by default:

  • As a result of this PR instead of each queue having their own level db by default, the queues will use a common level db. It is recommended to ensure that queues are empty before upgrading using gitea manager flush-queues or on the admin pages.
  • Starting workers are now 0 with boost workers at 1. If you have explicitly set BOOST_WORKERS = 0 you will need to explicitly set WORKERS to at least 1. Administrators of busy sites should tune their WORKERS, BOOST_WORKERS, & DATADIR parameters as needed.

❗ Merged assets handler middleware #15961

This PR merges two assets handler middleware as one and move it before session middleware to reduce unnecessary memory usage. The additional support for CORS on assets may cause some breakage for sites using CDN assets. Administrators should change [cors] section in the app.ini to add the domains if enabled.

❗ Rename StaticUrlPrefix to AssetUrlPrefix #15779

This PR renames the template variable StaticUrlPrefix to AssetUrlPrefix. Administrators with Custom templates that use the StaticUrlPrefix will need update these to use AssetUrlPrefix.

❗ Use markup class for rendering External markup #15735

This PR essentially changes the markdown css class to markup. Administrators with css/less customization targeting the .markdown class should update these to use .markup.

❗ Update Node to v12 #15315

This PR increases the minimum required node version for compiling the frontend to v12.

❗ Add /assets as root dir of public files #15219

This PR moves root directory of public files from / to /assets.

All pages and resources rendered from custom/public will now be rendered at /assets instead of /. This means that if you have a impressum.html - you need to update links to this to /assets/impressum.html. Similarly for users of STL renderers and external markup renderers.

Administrators should check custom templates to ensure that these are correct.

If you have previously placed robots.txt within custom/public you must move it to custom instead.

❗ Inherit log level in sub log section #15176

Sub loggers will inherit their log level from the main log level - previously these would default to info. Administrators should check their log configuration.

This PR changes the rendering of links in markdown to make them absolute to the current repository in keeping with Github. This may change rendering of some pages however, the previous behaviour was not compatible with Github so was a bug.

Major Features

OAuth2 auto-register (#5123)

auto-registration for OAuth2 users

Thanks to @mgjm

GPG Key Ownership verification with Signed Token (#14054)

Prior to this PR, Gitea would only allow a key to be added to a user if one (or more) of the key’s identities match an activated email address for that user. Gitea will then only verify commits if the committer email address matches an activated email address in the key. This PR provides a slightly different mechanism: if the user provides a signature for automatically generated token the key will be marked as verified. Following verification of ownership of a key, commits signed by this key where the committer email address matches an activated email address for the user will be verified.

Further, the identities that a key will match are now shown on the GPG key page. These are the identities that are present in the key and were activated for the user at the time of addition of the key to the user.

Thanks to @zeripath for this feature.

Add LFS Migration and Mirror (#14726)

Implemented downloading of remote LFS files with a custom HTTP/Filesystem client.

commits

Thanks to @KN4CK3R

Add Image Diff for SVG files (#14867)

Added support for diffing svg images.

commits

Thanks to @KN4CK3R

Add push to remote mirror repository (#15157)

Adds the ability to push-mirror a repository to a remote destination.

commits

Thanks to @KN4CK3R

Add tag protection (#15629)

Protected tags allow control over who has permission to create and update tags.

commits

Thanks to @KN4CK3R

Add Tabular Diff for CSV files (#14661)

The rendering of csv files does match the diff style.

commits

Thanks to @KN4CK3R

Make tasklist checkboxes clickable (#15791)

This PR makes tasklist checkboxes clickable.

commits

Thanks to @KN4CK3R

Email Templates Localization (#16200)

Emails are now sent localized to the user’s chosen locale.

Thanks to @6543 for this feature.

Adds a link to each blame hunk, to view the blame of an earlier version of the file

commits

Thanks to @noerw

Add previous/next buttons to review comments (#16273)

Adds buttons to navigate to the previous / next unresolved review comments

commits

Thanks to @jpraet

Changelog

1.15.0 - 2021-08-21

  • BREAKING
    • Make app.ini permissions more restrictive (#16266)
    • Refactor Webhook + Add X-Hub-Signature (#16176)
    • Add asymmetric JWT signing (#16010)
    • Clean-up the settings hierarchy for issue_indexer queue (#16001)
    • Change default queue settings to be low go-routines (#15964)
    • Improve assets handler middleware (#15961)
    • Rename StaticUrlPrefix to AssetUrlPrefix (#15779)
    • Use a generic markup class to display externally rendered files and diffs (#15735)
    • Add frontend testing, require node 12 (#15315)
    • Move (custom) assets into subpath /assets (#15219)
    • Use level config in log section when sub log section not set level (#15176)
    • Links in markdown should be absolute to the repository not the server (#15088)
    • Upgrade to the latest version of golang-jwt (#16590) (#16606)
    • Set minimum supported version of go to 1.16 (#16710)
  • SECURITY
    • Encrypt LDAP bind password in db with SECRET_KEY (#15547)
    • Remove random password in Dockerfiles (#15362)
    • Upgrade to the latest version of golang-jwt and increase minimum go to 1.15 (#16590) (#16606)
    • Correctly create of git-daemon-export-ok files (#16508) (#16514)
    • Don’t show private user’s repo in explore view (#16550) (#16554)
    • Update node tar dependency to 6.1.6 (#16622) (#16623)
  • FEATURES
    • Update Go-Git to take advantage of LargeObjectThreshold (#16316)
    • Support custom mime type mapping for text files (#16304)
    • Link to previous blames in file blame page (#16259)
    • Add LRU mem cache implementation (#16226)
    • Localize Email Templates (#16200)
    • Make command in authorized keys a template (#16003)
    • Add possibility to make branch in branch page (#15960)
    • Add email headers (#15939)
    • Make tasklist checkboxes clickable (#15791)
    • Add selecting tags on the compare page (#15723)
    • Add cron job to delete old actions from database (#15688)
    • On open repository open common cat file batch and batch-check (#15667)
    • Add tag protection (#15629)
    • Add push to remote mirror repository (#15157)
    • Add Image Diff for SVG files (#14867)
    • Add dashboard milestone search and repo milestone search by name. (#14866)
    • Add LFS Migration and Mirror (#14726)
    • Improve notifications for WIP draft PR’s (#14663)
    • Disable Stars config option (#14653)
    • GPG Key Ownership verification with Signed Token (#14054)
    • OAuth2 auto-register (#5123)
  • API
    • Return updated repository when changing repository using API (#16420)
    • Let branch/tag name be a valid ref to get CI status (#16400)
    • Add endpoint to get commits of PR (#16300)
    • Allow COMMENT reviews to not specify a body (#16229)
    • Add subject-type filter to list notification API endpoints (#16177)
    • ListReleases add filter for draft and pre-releases (#16175)
    • ListIssues add more filters (#16174)
    • Issue Search Add filter for MilestoneNames (#16173)
    • GET / SET User Settings (#16169)
    • Expose repo.GetReviewers() & repo.GetAssignees() (#16168)
    • User expose counters (#16167)
    • Add repoGetTag (#16166)
    • Add repoCreateTag (#16165)
    • Creating a repo from a template repo via API (#15958)
    • Add Active and ProhibitLogin to API (#15689)
    • Add Location, Website and Description to API (#15675)
    • Expose resolver via API (#15167)
    • Swagger AccessToken fixes (#16574) (#16597)
    • Set AllowedHeaders on API CORS handler (#16524) (#16618)
  • ENHANCEMENTS
    • Support HTTP/2 in Let’s Encrypt (#16371)
    • Introduce NotifySubjectType (#16320)
    • Add forge emojies (#16296)
    • Implemented head_commit for webhooks (#16282)
    • Upgrade Gliderlabs SSH to 0.3.3 and add FailedConnectionCallback (#16278)
    • Add previous/next buttons to review comments (#16273)
    • Review comments: break-word for long file names (#16272)
    • Add configuration to restrict allowed user visibility modes (#16271)
    • Add scroll-margin-top to account for sticky header (#16269)
    • Add –quiet and –verbose to gitea web to control initial logging (#16260)
    • Use gitea logging module for git module (#16243)
    • Add tests for all webhooks (#16214)
    • Add button to delete undeleted repositories from failed migrations (#16197)
    • Speed up git diff highlight generation (#16180)
    • Add OpenID claims “profile” and “email”. (#16141)
    • Reintroduce squash merge default comment as a config setting (#16134)
    • Add sanitizer rules per renderer (#16110)
    • Improve performance of dashboard list orgs (#16099)
    • Refactor assert statements in tests (#16089)
    • Add sso.Group, context.Auth, context.APIAuth to allow auth special routes (#16086)
    • Remove unnecessary goroutine (#16080)
    • Add attachments for PR reviews (#16075)
    • Make the github migration less rate limit waiting to get comment per page from repository but not per issue (#16070)
    • Add Visible modes function from Organisation to Users too (#16069)
    • Add checkbox to delete pull branch after successful merge (#16049)
    • Make commit info cancelable (#16032)
    • Make modules/context.Context a context.Context (#16031)
    • Unified custom config creation (#16012)
    • Make sshd_config more flexible regarding connections (#16009)
    • Append to existing trailers in generated squash commit message (#15980)
    • Always store primary email address into email_address table and also the state (#15956)
    • Load issue/PR context popup data only when needed (#15955)
    • Remove remaining fontawesome usage in templates (#15952)
    • Remove fomantic accordion module (#15951)
    • Small refactoring of modules/private (#15947)
    • Double the avatar size factor (#15941)
    • Add curl to rootless docker image (#15908)
    • Replace clipboard.js with async clipboard api (#15899)
    • Allow custom highlight mapping beyond file extensions (#15808)
    • Add trace logging to SSO methods (#15803)
    • Refactor routers directory (#15800)
    • Allow only internal registration (#15795)
    • Add a new internal hook to save ssh log (#15787)
    • Respect default merge message syntax when parsing item references (#15772)
    • OAuth2 login: Set account link to “login” as default behavior (#15768)
    • Use single shared random string generation function (#15741)
    • Hold the event source when there are no listeners (#15725)
    • Code comments improvements (#15722)
    • Provide OIDC compliant user info endpoint (#15721)
    • Fix webkit calendar icon color on arc-green (#15713)
    • Improve Light Chroma style (#15699)
    • Only use boost workers for leveldb shadow queues (#15696)
    • Add compare tag dropdown to releases page (#15695)
    • Add caret styling CSS (#15651)
    • Remove x-ua-compatible meta tag (#15640)
    • Refactor of link creation (#15619)
    • Add a new table issue_index to store the max issue index so that issue could be deleted with no duplicated index (#15599)
    • Rewrite of the LFS server (#15523)
    • Display more repository type on admin repository management (#15440)
    • Remove usage of some JS globals (#15378)
    • SHA in merged commit comment should be rendered ui sha (#15376)
    • Add well-known config for OIDC (#15355)
    • Use route rather than use thus reducing the number of stack frames (#15301)
    • Code Formats, Nits & Unused Func/Var deletions (#15286)
    • Let package git depend on setting but not opposite (#15241)
    • Fixed sanitize errors (#15240)
    • response simple text message for not html request when 404 (#15229)
    • Remove file-loader dependency (#15196)
    • Refactor renders (#15175)
    • Add mimetype mapping settings (#15133)
    • Add Status Updates whilst Gitea migrations are occurring (#15076)
    • Reload locales in initialisation if needed by utilizing i18n.Reset (#15073)
    • Counterwork seemingly unclickable repo button labels (#15064)
    • Add DefaultMergeStyle option to repository (#14789)
    • Added support for gopher URLs. (#14749)
    • Rework repository archive (#14723)
    • Add links to toggle WIP status (#14677)
    • Add Tabular Diff for CSV files (#14661)
    • Use milestone deadline when sorting issues (#14551)
  • BUGFIXES
    • Fix invalid params and typo of email templates (#16394)
    • Fix activation of primary email addresses (#16385)
    • Fix calculation for finalPage in repo-search component (#16382)
    • Specify user in rootless container numerically (#16361)
    • Detect encoding changes while parsing diff (#16330)
    • Fix U2F error reasons always hidden (#16327)
    • Prevent zombie processes (#16314)
    • Escape reference to user table in models.SearchEmails (#16313)
    • Fix default push instructions on empty repos (#16302)
    • Fix modified files list in webhooks when there is a space (#16288)
    • Fix webhook commits wrong hash on HEAD reset (#16283)
    • Fuzzer finds an NPE due to incorrect URLPrefix (#16249)
    • Don’t WARN log UserNotExist errors on ExternalUserLogin failure (#16238)
    • Do not show No match found for tribute (#16231)
    • Fix “Copy Link” for pull requests (#16230)
    • Fix diff expansion is missing final line in a file (#16222)
    • Fix private repo permission problem (#16142)
    • Fix not able to update local created non-urlencoded wiki pages (#16139)
    • More efficiently parse shas for shaPostProcessor (#16101)
    • Fix doctor --run check-db-consistency --fix with label fix (#16094)
    • Prevent webhook action buttons from shifting (#16087)
    • Change default TMPDIR path in rootless containers (#16077)
    • Fix typo and add TODO notice (#16064)
    • Use git log name-status in get last commit (#16059)
    • Fix 500 Error with branch and tag sharing the same name (#16040)
    • Fix get tag when migration (#16014)
    • Add custom emoji support (#16004)
    • Use filepath.ToSlash and Join in indexer defaults and queues (#15971)
    • Add permission check for GenerateRepository (#15946)
    • Ensure settings for Service and Mailer are read on the install page (#15943)
    • Fix layout of milestone view (#15927)
    • Unregister non-matching serviceworkers (#15834)
    • Multiple Queue improvements: LevelDB Wait on empty, shutdown empty shadow level queue, reduce goroutines etc (#15693)
    • Attachment support repository route (#15580)
    • Fix missing icons and colorpicker when mounted on suburl (#15501)
    • Create a session on ReverseProxy and ensure that ReverseProxy users cannot change username (#15304)
    • Prevent double-login for Git HTTP and LFS and simplify login (#15303)
    • Resolve Object { type: “error”, data: undefined } in stopwatch.js (#15278)
    • Fix heatmap activity (#15252)
    • Remove vendored copy of fomantic-dropdown (#15193)
    • Update repository size on cron gc task (#15177)
    • Add NeedPostProcess for Parser interface to improve performance of csv parser and some external parser (#15153)
    • Add code block highlight to orgmode back (#14222)
    • Remove User.GetOrganizations() (#14032)
    • Restore Accessibility for Dropdown (#16576) (#16617)
    • Pass down SignedUserName down to AccessLogger context (#16605) (#16616)
    • Fix table alignment in markdown (#16596) (#16602)
    • Fix 500 on first wiki page (#16586) (#16598)
    • Lock goth/gothic and Re-attempt OAuth2 registration on login if registration failed at startup (#16564) (#16570)
    • Upgrade levelqueue to v0.4.0 (#16560) (#16561)
    • Handle too long PR titles correctly (#16517) (#16549)
    • Fix data race in bleve indexer (#16474) (#16509)
    • Restore CORS on git smart http protocol (#16496) (#16506)
    • Fix race in log (#16490) (#16505)
    • Fix prepareWikiFileName to respect existing unescaped files (#16487) (#16498)
    • Make cancel from CatFileBatch and CatFileBatchCheck wait for the command to end (#16479) (#16480)
    • Update notification table with only latest data (#16445) (#16469)
    • Fix crash following ldap authentication update (#16447) (#16448)
    • Fix direct creation of external users on admin page (partial #16612) (#16613)
    • Prevent 500 on draft releases without tag (#16634) (#16636)
    • Restore creation of git-daemon-export-ok files (#16508) (#16514)
    • Fix data race in bleve indexer (#16474) (#16509)
    • Restore CORS on git smart http protocol (#16496) (#16506)
    • Fix race in log (#16490) (#16505)
    • Fix prepareWikiFileName to respect existing unescaped files (#16487) (#16498)
    • Make cancel from CatFileBatch and CatFileBatchCheck wait for the command to end (#16479) (#16480)
    • Update notification table with only latest data (#16445) (#16469)
    • Fix crash following ldap authentication update (#16447) (#16448)
    • Restore compatibility with SQLServer 2008 R2 in migrations (#16638)
    • Fix direct creation of external users on admin page (#16613)
    • Fix go-git implementation of GetNote when passed a non-existent commit (#16658) (#16659)
    • Fix NPE in fuzzer (#16680) (#16682)
    • Set issue_index when finishing migration (#16685) (#16687)
    • Skip patch download when no patch file exists (#16356) (#16681)
    • Ensure empty lines are copiable and final new line too (#16678) (#16692)
    • Fix wrong user in OpenID response (#16736) (#16741)
    • Do not use thin scrollbars on Firefox (#16738) (#16745)
    • Recreate Tables should Recreate indexes on MySQL (#16718) (#16739)
    • Keep attachments on tasklist update (#16750) (#16757)
  • TESTING
    • Bump postgres and mysql versions (#15710)
    • Add tests for clone from wiki (#15513)
    • Fix Benchmark tests, remove a broken one & add two new (#15250)
    • Create Proper Migration tests (#15116)
  • TRANSLATION
    • Use a special name for update default branch on repository setting (#15893)
    • Fix mirror_lfs source string in en-US locale (#15369)
  • BUILD
    • Upgrade xorm to v1.1.1 (#16339)
    • Disable legal comments in esbuild (#15929)
    • Switch to Node 16 to build fronted (#15804)
    • Use esbuild to minify CSS (#15756)
    • Use binary version of revive linter (#15739)
    • Fix: npx webpack make: *** [Makefile:699: public/js/index.js] Error -… (#15465)
    • Stop packaging node_modules in release tarballs (#15273)
    • Introduce esbuild on webpack (#14578)
  • DOCS
    • Update queue workers documentation (#15999)
    • Comment out app.example.ini (#15807)
    • Improve logo customization docs (#15754)
    • Add some response status on api docs (#15399)
    • Rework Token API comments (#15162)
    • Add better errors for disabled account recovery (#15117)
  • MISC
    • Remove utf8 option from installation page (#16126)
    • Use Wants= over Requires= in systemd file (#15897)

… or reporting bugs

If you lack the time or knowledge to do any of the above, just using Gitea and sharing the word is enough to make us happy! One thing you can always do is to report any bugs you find on the Gitea issue tracker.

Before opening an issue, read the contribution guidelines about reporting bugs. After opening an issue, try to stick around a while to answer any questions we might have. Replies greatly help us find the root cause of an issue.

Thanks

This release would not have been possible without the pull requests from the following people:

Gitea_1.14.6_is_released

zeripath

Gitea 1.14.6 is released

Thu Aug 5, 2021 by zeripath

We are proud to present the release of Gitea version 1.14.6.

We highly encourage users to update to this version for some security fixes.

We have merged 6 pull requests to release this version.

We would like to give a special thanks to @6543 and @zeripath for submitting the security patches for this release.

You can download one of our pre-built binaries from our downloads page - make sure to select the correct platform! For further details on how to install, follow our installation guide.

We would also like to thank all of our supporters on Open Collective who are helping to sustain us financially.

Have you heard? We now have a swag shop! 👕 🍵

Changelog

1.14.6 - 2021-08-04

  • SECURITY
    • Bump github.com/markbates/goth from v1.67.1 to v1.68.0 (#16538) (#16540)
    • Switch to maintained JWT lib (#16532) (#16535)
    • Upgrade to latest version of golang-jwt (as forked for 1.14) (#16590) (#16607)
  • BUGFIXES
    • Add basic edit ldap auth test & actually fix #16252 (#16465) (#16495)
    • Make cancel from CatFileBatch and CatFileBatchCheck wait for the command to end (#16479) (#16481)

Gitea_1.14.5_is_released

zeripath

Gitea 1.14.5 is released

Fri Jul 16, 2021 by zeripath

We are proud to present the release of Gitea version 1.14.5.

We highly encourage users to update to this version for some important bug-fixes.

We have merged 8 pull requests to release this version.

We would like to give a special thanks to @6543 and @zeripath for submitting the security patches for this release.

You can download one of our pre-built binaries from our downloads page - make sure to select the correct platform! For further details on how to install, follow our installation guide.

We would also like to thank all of our supporters on Open Collective who are helping to sustain us financially.

Have you heard? We now have a swag shop! 👕 🍵

Changelog

1.14.5 - 2021-07-16

  • SECURITY
  • BUGFIXES
    • Retry rename on lock induced failures (#16435) (#16439)
    • Validate issue index before querying DB (#16406) (#16410)
    • Fix crash following ldap authentication update (#16447) (#16449)
  • ENHANCEMENTS
    • Redirect on bad CSRF instead of presenting bad page (#14937) (#16378)

Gitea_1.14.4_is_released

zeripath

Gitea 1.14.4 is released

Tue Jul 6, 2021 by zeripath

We are proud to present the release of Gitea version 1.14.4.

We highly encourage users to update to this version for some important bug-fixes.

We have merged 11 pull requests to release this version.

You can download one of our pre-built binaries from our downloads page - make sure to select the correct platform! For further details on how to install, follow our installation guide.

We would also like to thank all of our supporters on Open Collective who are helping to sustain us financially.

Have you heard? We now have a swag shop! 👕 🍵

Changelog

1.14.4 - 2021-07-06

  • BUGFIXES
    • Fix relative links in postprocessed images (#16334) (#16340)
    • Fix list_options GetStartEnd (#16303) (#16305)
    • Fix API to use author for commits instead of committer (#16276) (#16277)
    • Handle misencoding of login_source cfg in mssql (#16268) (#16275)
    • Fixed issues not updated by commits (#16254) (#16261)
    • Improve efficiency in FindRenderizableReferenceNumeric and getReference (#16251) (#16255)
    • Use html.Parse rather than html.ParseFragment (#16223) (#16225)
    • Fix milestone counters on new issue (#16183) (#16224)
    • reqOrgMembership calls need to be preceded by reqToken (#16198) (#16219)

Gitea_1.14.3_is_released

6543

Gitea 1.14.3 is released

Fri Jun 18, 2021 by 6543

We are proud to present the release of Gitea version 1.14.3.

We highly encourage users to update to this version for some important bug-fixes.

We have merged 45 pull requests to release this version.

We would like to give a special thanks the reporters of security issues in this release. Thanks to CTurt (Google) for reporting #16117 and @lunny for submitting security patch. Thanks to @knassar702 for reporting #16185 and @zeripath for submitting the patch to resolve this issue.

You can download one of our pre-built binaries from our downloads page - make sure to select the correct platform! For further details on how to install, follow our installation guide.

We would also like to thank all of our supporters on Open Collective who are helping to sustain us financially.

Have you heard? We now have a swag shop! 👕 🍵

Changelog

1.14.3 - 2021-06-18

  • SECURITY
    • Encrypt migration credentials at rest (#15895) (#16187)
    • Only check access tokens if they are likely to be tokens (#16164) (#16171)
    • Add missing SameSite settings for the i_like_gitea cookie (#16037) (#16039)
    • Fix setting of SameSite on cookies (#15989) (#15991)
  • API
    • Repository object only count releases as releases (#16184) (#16190)
    • EditOrg respect RepoAdminChangeTeamAccess option (#16184) (#16190)
    • Fix overly strict edit pr permissions (#15900) (#16081)
  • BUGFIXES
    • Run processors on whole of text (#16155) (#16185)
    • Class issue-keyword is being incorrectly stripped off spans (#16163) (#16172)
    • Fix language switch for install page (#16043) (#16128)
    • Fix bug on getIssueIDsByRepoID (#16119) (#16124)
    • Set self-adjusting deadline for connection writing (#16068) (#16123)
    • Fix http path bug (#16117) (#16120)
    • Fix data URI scramble (#16098) (#16118)
    • Merge all deleteBranch as one function and also fix bug when delete branch don’t close related PRs (#16067) (#16097)
    • git migration: don’t prompt interactively for clone credentials (#15902) (#16082)
    • Fix case change in ownernames (#16045) (#16050)
    • Don’t manipulate input params in email notification (#16011) (#16033)
    • Remove branch URL before IssueRefURL (#15968) (#15970)
    • Fix layout of milestone view (#15927) (#15940)
    • GitHub Migration, migrate draft releases too (#15884) (#15888)
    • Close the gitrepo when deleting the repository (#15876) (#15887)
    • Upgrade xorm to v1.1.0 (#15869) (#15885)
    • Fix blame row height alignment (#15863) (#15883)
    • Fix error message when saving generated LOCAL_ROOT_URL config (#15880) (#15882)
    • Backport Fix LFS commit finder not working (#15856) (#15874)
    • Stop calling WriteHeader in Write (#15862) (#15873)
    • Add timeout to writing to responses (#15831) (#15872)
    • Return go-get info on subdirs (#15642) (#15871)
    • Restore PAM user autocreation functionality (#15825) (#15867)
    • Fix truncate utf8 string (#15828) (#15854)
    • Fix bound address/port for caddy’s certmagic library (#15758) (#15848)
    • Upgrade unrolled/render to v1.1.1 (#15845) (#15846)
    • Queue manager FlushAll can loop rapidly - add delay (#15733) (#15840)
    • Tagger can be empty, as can Commit and Author - tolerate this (#15835) (#15839)
    • Set autocomplete off on branches selector (#15809) (#15833)
    • Add missing error to Doctor log (#15813) (#15824)
    • Move restore repo to internal router and invoke from command to avoid open the same db file or queues files (#15790) (#15816)
  • ENHANCEMENTS
    • Removable media support to snap package (#16136) (#16138)
    • Move sans-serif fallback font higher than emoji fonts (#15855) (#15892)
  • DOCKER
    • Only write config in environment-to-ini if there are changes (#15861) (#15868)
    • Only offer hostcertificates if they exist (#15849) (#15853)