Dan Church 67da4c1b25

Set type="password" on all auth_token fields (#22175) ...

Set `type="password"` on all `auth_token` fields

Seen when migrating from other hosting platforms.

1. Prevents exposing the token to screen capture/cameras/eyeballs.
2. Prevents the browser from saving the value in its autocomplete
dictionary, which often is not secure.

![exposed auth
token](https://user-images.githubusercontent.com/615684/208541005-e2c9c6b0-3c6c-4a56-95d9-357b987aa0c8.png)

Closes #22174

---------

Signed-off-by: Dan Church <amphetamachine@gmail.com>
Co-authored-by: silverwind <me@silverwind.io>

2023-04-23 10:28:27 -04:00

..

codebase.tmpl

Add context cache as a request level cache (#22294)

2023-02-15 21:37:34 +08:00

git.tmpl

Add context cache as a request level cache (#22294)

2023-02-15 21:37:34 +08:00

gitbucket.tmpl

Add context cache as a request level cache (#22294)

2023-02-15 21:37:34 +08:00

gitea.tmpl

Set type="password" on all auth_token fields (#22175)

2023-04-23 10:28:27 -04:00

github.tmpl

Set type="password" on all auth_token fields (#22175)

2023-04-23 10:28:27 -04:00

gitlab.tmpl

Set type="password" on all auth_token fields (#22175)

2023-04-23 10:28:27 -04:00

gogs.tmpl

Set type="password" on all auth_token fields (#22175)

2023-04-23 10:28:27 -04:00

helper.tmpl

Add templates to customize text when creating and migrating repositories

2023-01-24 22:36:48 -05:00

migrate.tmpl

Group template helper functions, remove Printf, improve template error messages (#23982)

2023-04-08 21:15:22 +08:00

migrating.tmpl

Remove incorrect HTML self close tag (#23748)

2023-03-27 18:05:51 +02:00

onedev.tmpl

Add context cache as a request level cache (#22294)

2023-02-15 21:37:34 +08:00

options.tmpl

Refactor hiding-methods, remove jQuery show/hide, remove .hide class, remove inline style=display:none (#22950)

2023-02-19 12:06:14 +08:00