mirror of
https://gitee.com/gitea/gitea.git
synced 2024-12-15 10:00:49 +08:00
67da4c1b25
Set `type="password"` on all `auth_token` fields Seen when migrating from other hosting platforms. 1. Prevents exposing the token to screen capture/cameras/eyeballs. 2. Prevents the browser from saving the value in its autocomplete dictionary, which often is not secure. ![exposed auth token](https://user-images.githubusercontent.com/615684/208541005-e2c9c6b0-3c6c-4a56-95d9-357b987aa0c8.png) Closes #22174 --------- Signed-off-by: Dan Church <amphetamachine@gmail.com> Co-authored-by: silverwind <me@silverwind.io> |
||
---|---|---|
.. | ||
codebase.tmpl | ||
git.tmpl | ||
gitbucket.tmpl | ||
gitea.tmpl | ||
github.tmpl | ||
gitlab.tmpl | ||
gogs.tmpl | ||
helper.tmpl | ||
migrate.tmpl | ||
migrating.tmpl | ||
onedev.tmpl | ||
options.tmpl |