-
-
Notifications
You must be signed in to change notification settings - Fork 5.6k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Disabling application elements fixed #13129
Conversation
Gitea does not remove all elements (UI, cron tasks) of some disabled features which makes UI unnecessarily complicated. This mod removes these unnecessary elements from UI/cron: * token edition in user settings is not available when ENABLE_SWAGGER=false, * application tab is not available in user settings if swagger and oauth2 are both disabled, * SSH keys editor is not displayed if SSH is disabled and tab name changed to more general "Keys", * resync_all_sshkeys cron task is disabled if SSH is disabled, * deploy keys tab is not displayed if SSH is disabled, * git hook access option hidden in user settings when git hooks are disabled, * git hook sync cron task removed when git hooks are disabled. Author-Change-Id: IB#1105071
Even with git hooks disabled and admin would still need access to the refresh all git hooks. The disabling of access to git hooks is to prevent arbitrary changes, whereas the button in dashboard sets it to what it should be |
What for? If gitea need some internal stuff in git hooks then it should configure it/upgrade it without admin intervention probably. Any reason to have cron job available for admin even if git hooks changes are disabled with DISABLE_GIT_HOOKS=true? Disabling git hooks should prevent any "human" changes in git hooks, even by admin. If manual repair is required - admin may temporarily set DISABLE_GIT_HOOKS=false + run cron job + disable hooks again after.
There should be an option do disallow any access to git hooks for security reasons. DISABLE_GIT_HOOKS=true seems best option to archive it. |
Please rebase your fork, your recent PRs are opened straight off with conflicts. |
Scratch that, it's already handled. |
|
Should consolidate existing I'm generally leaning towards having |
Is there any way to change or break git hooks in gitea repos when DISABLE_GIT_HOOKS=true (other than intentional messing from shell outside of gitea - this may be repaired with tmp setting change and running task)? Any reason for repairing repo git hooks after initial repo creation with correct gitea hooks if DISABLE_GIT_HOOKS was always true (=should forbid any changes in git hooks by gitea)? If newer gitea need to update its hooks after upgrade to newer gitea version it should probably do migration like in DB (migration cli?) and not require additional cron tasks. |
Remote touching git hooks is risky so DISABLE_GIT_HOOKS should disable touching it permanently, even with cron tasks if not absolutely necessarry. If repairing / mirgation is required - should probably be done using cli during service downtime. |
Recreating hooks during gitea web downtime using gitea cli seems also safer solution to avoid races during short period when files are absent during recreation in https://github.com/go-gitea/gitea/blob/master/modules/repository/hooks.go#L56 |
Changing configuration, moving servers and probably few other edge cases where they might get outdated.
Might also want to hide it when |
Removed redundant DisableSwagger; existing EnableSwagger is used instead. Fixed disabling registerRewriteAllPublicKeys and registerRewriteAllPrincipalKeys cron tasks. Author-Change-Id: IB#1105071
According to The Golden Rule of Rebasing... https://www.atlassian.com/git/tutorials/merging-vs-rebasing#the-golden-rule-of-rebasing ...we do not rebase public branches. Just merged current master to this PR and resolved conflicts.
Removed redundant DisableSwagger; existing EnableSwagger is used instead.
All sounds like admin cli tasks under downtime not cron business (see comment about race above also).
Dependency added (also && !setting.SSH.StartBuiltinServer like in ssh_key.go > rewriteAllPublicKeys()). New task registerRewriteAllPrincipalKeys will be disabled also in similar way. |
Codecov Report
@@ Coverage Diff @@
## master #13129 +/- ##
==========================================
- Coverage 42.08% 42.02% -0.06%
==========================================
Files 681 681
Lines 75121 75138 +17
==========================================
- Hits 31613 31577 -36
- Misses 38357 38414 +57
+ Partials 5151 5147 -4
Continue to review full report at Codecov.
|
External account management disabled when openid signin/signup is disabled. Author-Change-Id: IB#1105071
Just added one more enhancement - removing external account management when openid signin/up is disabled. Not 100% sure if its done right so please verify before merging. |
This mod introduces DISABLE_2FA parameter in [security] section of app.ini (by default set to false). If set to true it disables access to 2FA feature in user preferences (not required in some environments i.e. when reverse proxy auth is used). Authentication code using 2FA and any existing 2FA configuration are left untouched. This mod hides also security tab in user preferences when openid is also disabled; for this reason this mod is not separate PR but exiting PR enhancement. Author-Change-Id: IB#1105071
One mode change: 4b867e9 introduces DISABLE_2FA parameter in [security] section This mod hides also security tab in user preferences when openid is also |
2FA columns removed in user lists if 2FA is disabled. Fixes: 4b867e9 Author-Change-Id: IB#1105071
Would suggest not piling too many changes into one PR as it get's harder to review every time :) |
Why would there be need to disable 2FA to me it seems unnecessary |
2FA in gitea does not work if header auth is enabled so its unnecessarry in this scenario; more, 2FA should be an option not requirement (i.e. reverse proxy may take care of whole auth stuff); we want to use as clean vcs UI as possible without unnecessarry stuff thats why this parameter. BTW: please consider accepting new optional gitea features only if provided with parameter to disable it if not used. |
We don't plan to extend this PR; 2FA mod was included here because this mod hides also security tab which depends on 2FA switch. |
This pull request has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs during the next 2 months. Thank you for your contributions. |
Thanks for the PR. After reading the code and the comments, I feel that there are still many problems here.
I have a feeling that if some UI elements need to be hidden, we need a new and clear PR for that, instead of mixing things together. Since this PR has been |
Gitea does not use 2FA when reverse proxy auth is enabled. 2FA is hardcoded and cannot be disabled (i.e. when stronger authentication scheme is implemented on reverse proxy). Leaving unused elements like 2FA in UI should be avoided to make UI clean and to avoid unnecessarry maintanance (questions/problems from users). This mod introduces new `DISABLE_2FA` parameter in app.ini section `[security]`. When disabled (default when parameter is not present) gitea behaves as without this mod (2FA is available). When enabled, 2FA feature and its UI elements are not avaiable. This mod also hides those areas on Settings/Security page that are disabled in config and hides menu link to Security page if all its areas are disabled in config. Related: go-gitea#13129 Author-Change-Id: IB#1115243
Will spit changes to separate PR with update to current main.
|
This mod fixes disabling unnecessary SSH elements. Related: go-gitea#13129 Author-Change-Id: IB#1115249
Disabling unnecessary SSH elements was split into #18482 and only the EN locale was adjusted. |
This mod fixes disabling unnecessary GitHooks elements. Related: go-gitea#13129 Author-Change-Id: IB#1115251
Disabling unnecessary GitHooks elements was split into #18485. |
Thanks for this explanation; option to disable access tokens was split into #18488 with separate new parameter. |
Access tokens are hardcoded and cannot be disabled (i.e. when owner doesn't want this kind of authentication). This mod introduces new DISABLE_ACCESS_TOKENS parameter in app.ini section [security]. When disabled (default when parameter is not present) gitea behaves as without this mod (access tokens feature is available). When enabled, access tokens feature and its UI elements are not avaiable. This mod also hides those areas on Settings/Applications page that are disabled in config and hides menu link to Applications page if all its areas are disabled in config. Related: go-gitea#13129 Author-Change-Id: IB#1115254
This mod fixes disabling unnecessary OpenID elements. Related: go-gitea#13129 Author-Change-Id: IB#1115256
Disabling unnecessary OpenID elements was split into #18491. |
This mod fixes disabling unnecessary OpenID elements. Related: #13129 Author-Change-Id: IB#1115256
This mod fixes disabling unnecessary OpenID elements. Related: go-gitea#13129 Author-Change-Id: IB#1115256
This mod fixes disabling unnecessary GitHooks elements. Related: #13129 Author-Change-Id: IB#1115251
* Disable unnecessary GitHooks elements This mod fixes disabling unnecessary GitHooks elements. Related: #13129 Author-Change-Id: IB#1115251
Gitea does not remove all elements (UI, cron tasks) of some
disabled features which makes UI unnecessarily complicated.
This mod removes these unnecessary elements from UI/cron:
token edition in user settings is not available
when ENABLE_SWAGGER=false,
application tab is not available in user settings
if swagger and oauth2 are both disabled,
SSH keys editor is not displayed if SSH is disabled
and tab name changed to more general "Keys",
resync_all_sshkeys cron task is disabled if SSH
is disabled,
deploy keys tab is not displayed if SSH is disabled,
git hook access option hidden in user settings when
git hooks are disabled,
git hook sync cron task removed when git hooks
are disabled.
Author-Change-Id: IB#1105071