Skip to content
GitLab
Tags give the ability to mark specific points in history as being important
  • v1.15.2
    67ceb61f · Changelog 1.15.2 (#16940) · 
    v1.15.2

 ## [1.15.2](https://github.com/go-gitea/gitea/releases/tag/v1.15.2) - 2021-09-03

* BUGFIXES
  * Add unique constraint back into issue_index (#16938)
  * Close storage objects before cleaning (#16934) (#16942)

Signed-off-by: Andrew Thornton <art27@cantab.net>
  • v1.15.1
    3365611f · Changelog 1.15.1 (#16925) · 
    * BUGFIXES
  * Allow BASIC authentication access to /:owner/:repo/releases/download/* (#16916) (#16923)
  * Prevent leave changes dialogs due to autofill fields (#16912) (#16920)
  * Ignore review comment when ref commit is missed (#16905) (#16919)
  * Fix wrong attachment removal (#16915) (#16917)
  * Gitlab Migrator: dont ignore reactions of last request (#16903) (#16913)
  * Correctly return the number of Repositories for Organizations (#16807) (#16911)
  * Test if LFS object is accessible (#16865) (#16904)
  * Fix git.Blob.DataAsync(): close pipe since we return a NopCloser (#16899) (#16900)
  * Fix dump and restore respository (#16698) (#16898)
  * Repare and Improve GetDiffRangeWithWhitespaceBehavior (#16894) (#16895)
  * Fix wiki raw commit diff/patch view (#16891) (#16892)
  * Ensure wiki repos are all closed (#16886) (#16888)
  * List limited and private orgs if authenticated on API (#16866) (#16879)
  * Simplify split diff view generation and remove JS dependency (#16775) (#16863)
  * Ensure that the default visibility is set on the user create page (#16845) (#16862)
  * In Render tolerate not being passed a context (#16842) (#16858)
  * Upgrade xorm to v1.2.2 (#16663) & Add test to ensure that dumping of login sources remains correct (#16847) (#16848)
  * Report the correct number of pushes on the feeds (#16811) (#16822)
  * Add primary_key to issue_index (#16813) (#16820)
  * Prevent NPE on empty commit (#16812) (#16819)
  * Fix branch pagination error (#16805) (#16816)
  * Add missing return to handleSettingRemoteAddrError (#16794) (#16795)
  * Remove spurious / from issues.opened_by (#16793)
  * Ensure that template compilation panics are sent to the logs (#16788) (#16792)
  * Update caddyserver/certmagic (#16789) (#16790)
  • v1.14.7
    0e53baf6 · Add Changelog for 1.14.7 (#16924) · 
    * BUGFIXES
  * Add missing gitRepo close at GetDiffRangeWithWhitespaceBehavior (Partial #16894) (#16896)
  * Fix wiki raw commit diff/patch view (#16891) (#16893)
  * Ensure wiki repos are all closed (#16886) (#16889)
  * Upgrade xorm to v1.2.2 (#16663) & Add test to ensure that dumping of login sources remains correct (#16847) (#16849)
  * Recreate Tables should Recreate indexes on MySQL (#16718) (#16740)
  • v1.15.0
    f7e7477c · changelog for 1.15.0 (#16760) · 
    * BREAKING
  * Make app.ini permissions more restrictive (#16266)
  * Refactor Webhook + Add X-Hub-Signature (#16176)
  * Add asymmetric JWT signing (#16010)
  * Clean-up the settings hierarchy for issue_indexer queue (#16001)
  * Change default queue settings to be low go-routines (#15964)
  * Improve assets handler middleware (#15961)
  * Rename StaticUrlPrefix to AssetUrlPrefix (#15779)
  * Use a generic markup class to display externally rendered files and diffs (#15735)
  * Add frontend testing, require node 12 (#15315)
  * Move (custom) assets into subpath `/assets` (#15219)
  * Use level config in log section when sub log section not set level (#15176)
  * Links in markdown should be absolute to the repository not the server (#15088)
  * Upgrade to the latest version of golang-jwt (#16590) (#16606)
  * Set minimum supported version of go to 1.16 (#16710)
* SECURITY
  * Encrypt LDAP bind password in db with SECRET_KEY (#15547)
  * Remove random password in Dockerfiles (#15362)
  * Upgrade to the latest version of golang-jwt and increase minimum go to 1.15 (#16590) (#16606)
  * Correctly create of git-daemon-export-ok files (#16508) (#16514)
  * Don't show private user's repo in explore view (#16550) (#16554)
  * Update node tar dependency to 6.1.6 (#16622) (#16623)
* FEATURES
  * Update Go-Git to take advantage of LargeObjectThreshold (#16316)
  * Support custom mime type mapping for text files (#16304)
  * Link to previous blames in file blame page (#16259)
  * Add LRU mem cache implementation (#16226)
  * Localize Email Templates (#16200)
  * Make command in authorized keys a template (#16003)
  * Add possibility to make branch in branch page (#15960)
  * Add email headers (#15939)
  * Make tasklist checkboxes clickable (#15791)
  * Add selecting tags on the compare page (#15723)
  * Add cron job to delete old actions from database (#15688)
  * On open repository open common cat file batch and batch-check (#15667)
  * Add tag protection (#15629)
  * Add push to remote mirror repository (#15157)
  * Add Image Diff for SVG files (#14867)
  * Add dashboard milestone search and repo milestone search by name. (#14866)
  * Add LFS Migration and Mirror (#14726)
  * Improve notifications for WIP draft PR's (#14663)
  * Disable Stars config option (#14653)
  * GPG Key Ownership verification with Signed Token (#14054)
  * OAuth2 auto-register (#5123)
* API
  * Return updated repository when changing repository using API (#16420)
  * Let branch/tag name be a valid ref to get CI status (#16400)
  * Add endpoint to get commits of PR (#16300)
  * Allow COMMENT reviews to not specify a body (#16229)
  * Add subject-type filter to list notification API endpoints (#16177)
  * ListReleases add filter for draft and pre-releases (#16175)
  * ListIssues add more filters (#16174)
  * Issue Search Add filter for MilestoneNames (#16173)
  * GET / SET User Settings (#16169)
  * Expose repo.GetReviewers() & repo.GetAssignees() (#16168)
  * User expose counters (#16167)
  * Add repoGetTag (#16166)
  * Add repoCreateTag (#16165)
  * Creating a repo from a template repo via API (#15958)
  * Add Active and ProhibitLogin to API (#15689)
  * Add Location, Website and Description to API (#15675)
  * Expose resolver via API (#15167)
  * Swagger AccessToken fixes (#16574) (#16597)
  * Set AllowedHeaders on API CORS handler (#16524) (#16618)
* ENHANCEMENTS
  * Support HTTP/2 in Let's Encrypt (#16371)
  * Introduce NotifySubjectType (#16320)
  * Add forge emojies (#16296)
  * Implemented head_commit for webhooks (#16282)
  * Upgrade Gliderlabs SSH to 0.3.3 and add FailedConnectionCallback (#16278)
  * Add previous/next buttons to review comments (#16273)
  * Review comments: break-word for long file names (#16272)
  * Add configuration to restrict allowed user visibility modes (#16271)
  * Add scroll-margin-top to account for sticky header (#16269)
  * Add --quiet and --verbose to gitea web to control initial logging (#16260)
  * Use gitea logging module for git module (#16243)
  * Add tests for all webhooks (#16214)
  * Add button to delete undeleted repositories from failed migrations (#16197)
  * Speed up git diff highlight generation (#16180)
  * Add OpenID claims "profile" and "email". (#16141)
  * Reintroduce squash merge default comment as a config setting (#16134)
  * Add sanitizer rules per renderer (#16110)
  * Improve performance of dashboard list orgs (#16099)
  * Refactor assert statements in tests (#16089)
  * Add sso.Group, context.Auth, context.APIAuth to allow auth special routes (#16086)
  * Remove unnecessary goroutine (#16080)
  * Add attachments for PR reviews (#16075)
  * Make the github migration less rate limit waiting to get comment per page from repository but not per issue (#16070)
  * Add Visible modes function from Organisation to Users too (#16069)
  * Add checkbox to delete pull branch after successful merge (#16049)
  * Make commit info cancelable (#16032)
  * Make modules/context.Context a context.Context (#16031)
  * Unified custom config creation (#16012)
  * Make sshd_config more flexible regarding connections (#16009)
  * Append to existing trailers in generated squash commit message (#15980)
  * Always store primary email address into email_address table and also the state (#15956)
  * Load issue/PR context popup data only when needed (#15955)
  * Remove remaining fontawesome usage in templates (#15952)
  * Remove fomantic accordion module (#15951)
  * Small refactoring of modules/private (#15947)
  * Double the avatar size factor (#15941)
  * Add curl to rootless docker image (#15908)
  * Replace clipboard.js with async clipboard api (#15899)
  * Allow custom highlight mapping beyond file extensions (#15808)
  * Add trace logging to SSO methods (#15803)
  * Refactor routers directory (#15800)
  * Allow only internal registration (#15795)
  * Add a new internal hook to save ssh log (#15787)
  * Respect default merge message syntax when parsing item references (#15772)
  * OAuth2 login: Set account link to "login" as default behavior (#15768)
  * Use single shared random string generation function (#15741)
  * Hold the event source when there are no listeners (#15725)
  * Code comments improvements (#15722)
  * Provide OIDC compliant user info endpoint (#15721)
  * Fix webkit calendar icon color on arc-green (#15713)
  * Improve Light Chroma style (#15699)
  * Only use boost workers for leveldb shadow queues (#15696)
  * Add compare tag dropdown to releases page (#15695)
  * Add caret styling CSS (#15651)
  * Remove x-ua-compatible meta tag (#15640)
  * Refactor of link creation (#15619)
  * Add a new table issue_index to store the max issue index so that issue could be deleted with no duplicated index (#15599)
  * Rewrite of the LFS server (#15523)
  * Display more repository type on admin repository management (#15440)
  * Remove usage of some JS globals (#15378)
  * SHA in merged commit comment should be rendered ui sha (#15376)
  * Add well-known config for OIDC (#15355)
  * Use route rather than use thus reducing the number of stack frames (#15301)
  * Code Formats, Nits & Unused Func/Var deletions (#15286)
  * Let package git depend on setting but not opposite (#15241)
  * Fixed sanitize errors (#15240)
  * response simple text message for not html request when 404 (#15229)
  * Remove file-loader dependency (#15196)
  * Refactor renders (#15175)
  * Add mimetype mapping settings (#15133)
  * Add Status Updates whilst Gitea migrations are occurring (#15076)
  * Reload locales in initialisation if needed by utilizing i18n.Reset (#15073)
  * Counterwork seemingly unclickable repo button labels (#15064)
  * Add DefaultMergeStyle option to repository (#14789)
  * Added support for gopher URLs. (#14749)
  * Rework repository archive (#14723)
  * Add links to toggle WIP status (#14677)
  * Add Tabular Diff for CSV files (#14661)
  * Use milestone deadline when sorting issues (#14551)
* BUGFIXES
  * Fix invalid params and typo of email templates (#16394)
  * Fix activation of primary email addresses (#16385)
  * Fix calculation for finalPage in repo-search component (#16382)
  * Specify user in rootless container numerically (#16361)
  * Detect encoding changes while parsing diff (#16330)
  * Fix U2F error reasons always hidden (#16327)
  * Prevent zombie processes (#16314)
  * Escape reference to `user` table in models.SearchEmails (#16313)
  * Fix default push instructions on empty repos (#16302)
  * Fix modified files list in webhooks when there is a space (#16288)
  * Fix webhook commits wrong hash on HEAD reset (#16283)
  * Fuzzer finds an NPE due to incorrect URLPrefix (#16249)
  * Don't WARN log UserNotExist errors on ExternalUserLogin failure (#16238)
  * Do not show No match found for tribute (#16231)
  * Fix "Copy Link" for pull requests (#16230)
  * Fix diff expansion is missing final line in a file (#16222)
  * Fix private repo permission problem (#16142)
  * Fix not able to update local created non-urlencoded wiki pages (#16139)
  * More efficiently parse shas for shaPostProcessor (#16101)
  * Fix `doctor --run check-db-consistency --fix` with label fix (#16094)
  * Prevent webhook action buttons from shifting (#16087)
  * Change default TMPDIR path in rootless containers (#16077)
  * Fix typo and add TODO notice (#16064)
  * Use git log name-status in get last commit (#16059)
  * Fix 500 Error with branch and tag sharing the same name (#16040)
  * Fix get tag when migration (#16014)
  * Add custom emoji support (#16004)
  * Use filepath.ToSlash and Join in indexer defaults and queues (#15971)
  * Add permission check for ``GenerateRepository`` (#15946)
  * Ensure settings for Service and Mailer are read on the install page (#15943)
  * Fix layout of milestone view (#15927)
  * Unregister non-matching serviceworkers (#15834)
  * Multiple Queue improvements: LevelDB Wait on empty, shutdown empty shadow level queue, reduce goroutines etc (#15693)
  * Attachment support repository route (#15580)
  * Fix missing icons and colorpicker when mounted on suburl (#15501)
  * Create a session on ReverseProxy and ensure that ReverseProxy users cannot change username (#15304)
  * Prevent double-login for Git HTTP and LFS and simplify login (#15303)
  * Resolve Object { type: "error", data: undefined } in stopwatch.js (#15278)
  * Fix heatmap activity (#15252)
  * Remove vendored copy of fomantic-dropdown (#15193)
  * Update repository size on cron gc task (#15177)
  * Add NeedPostProcess for Parser interface to improve performance of csv parser and some external parser (#15153)
  * Add code block highlight to orgmode back (#14222)
  * Remove User.GetOrganizations() (#14032)
  * Restore Accessibility for Dropdown (#16576) (#16617)
  * Pass down SignedUserName down to AccessLogger context (#16605) (#16616)
  * Fix table alignment in markdown (#16596) (#16602)
  * Fix 500 on first wiki page (#16586) (#16598)
  * Lock goth/gothic and Re-attempt OAuth2 registration on login if registration failed at startup (#16564) (#16570)
  * Upgrade levelqueue to v0.4.0 (#16560) (#16561)
  * Handle too long PR titles correctly (#16517) (#16549)
  * Fix data race in bleve indexer (#16474) (#16509)
  * Restore CORS on git smart http protocol (#16496) (#16506)
  * Fix race in log (#16490) (#16505)
  * Fix prepareWikiFileName to respect existing unescaped files (#16487) (#16498)
  * Make cancel from CatFileBatch and CatFileBatchCheck wait for the command to end (#16479) (#16480)
  * Update notification table with only latest data (#16445) (#16469)
  * Fix crash following ldap authentication update (#16447) (#16448)
  * Fix direct creation of external users on admin page (partial #16612) (#16613)
  * Prevent 500 on draft releases without tag (#16634) (#16636)
  * Restore creation of git-daemon-export-ok files (#16508) (#16514)
  * Fix data race in bleve indexer (#16474) (#16509)
  * Restore CORS on git smart http protocol (#16496) (#16506)
  * Fix race in log (#16490) (#16505)
  * Fix prepareWikiFileName to respect existing unescaped files (#16487) (#16498)
  * Make cancel from CatFileBatch and CatFileBatchCheck wait for the command to end (#16479) (#16480)
  * Update notification table with only latest data (#16445) (#16469)
  * Fix crash following ldap authentication update (#16447) (#16448)
  * Restore compatibility with SQLServer 2008 R2 in migrations (#16638)
  * Fix direct creation of external users on admin page (#16613)
  * Fix go-git implementation of GetNote when passed a non-existent commit (#16658) (#16659)
  * Fix NPE in fuzzer (#16680) (#16682)
  * Set issue_index when finishing migration (#16685) (#16687)
  * Skip patch download when no patch file exists (#16356) (#16681)
  * Ensure empty lines are copiable and final new line too (#16678) (#16692)
  * Fix wrong user in OpenID response (#16736) (#16741)
  * Do not use thin scrollbars on Firefox (#16738) (#16745)
  * Recreate Tables should Recreate indexes on MySQL (#16718) (#16739)
  * Keep attachments on tasklist update (#16750) (#16757)
* TESTING
  * Bump `postgres` and `mysql` versions (#15710)
  * Add tests for clone from wiki (#15513)
  * Fix Benchmark tests, remove a broken one & add two new  (#15250)
  * Create Proper Migration tests (#15116)
* TRANSLATION
  * Use a special name for update default branch on repository setting (#15893)
  * Fix mirror_lfs source string in en-US locale (#15369)
* BUILD
  * Upgrade xorm to v1.1.1 (#16339)
  * Disable legal comments in esbuild (#15929)
  * Switch to Node 16 to build fronted  (#15804)
  * Use esbuild to minify CSS (#15756)
  * Use binary version of revive linter (#15739)
  * Fix: npx webpack make: *** [Makefile:699: public/js/index.js] Error -… (#15465)
  * Stop packaging node_modules in release tarballs (#15273)
  * Introduce esbuild on webpack (#14578)
* DOCS
  * Update queue workers documentation (#15999)
  * Comment out app.example.ini (#15807)
  * Improve logo customization docs (#15754)
  * Add some response status on api docs (#15399)
  * Rework Token API comments (#15162)
  * Add better errors for disabled account recovery (#15117)
* MISC
  * Remove utf8 option from installation page (#16126)
  * Use Wants= over Requires= in systemd file (#15897)
  • v1.15.0-rc3
    1a2256bf · Changelog for 1.15.0-rc3 (#16621) · 
    1.15.0-rc3

* BREAKING
  * Upgrade to the latest version of golang-jwt and increase minimum go to 1.15 (#16590) (#16606)
* SECURITY
  * Upgrade to the latest version of golang-jwt and increase minimum go to 1.15 (#16590) (#16606)
  * Correctly create of git-daemon-export-ok files (#16508) (#16514)
  * Don't show private user's repo in explore view (#16550) (#16554)
  * Update node tar dependency to 6.1.6 (#16622) (#16623)
* API
  * Swagger AccessToken fixes (#16574) (#16597)
  * Set AllowedHeaders on API CORS handler (#16524) (#16618)
* BUGFIXES
  * Restore Accessibility for Dropdown (#16576) (#16617)
  * Pass down SignedUserName down to AccessLogger context (#16605) (#16616)
  * Fix table alignment in markdown (#16596) (#16602)
  * Fix 500 on first wiki page (#16586) (#16598)
  * Lock goth/gothic and Re-attempt OAuth2 registration on login if registration failed at startup (#16564) (#16570)
  * Upgrade levelqueue to v0.4.0 (#16560) (#16561)
  * Handle too long PR titles correctly (#16517) (#16549)
  * Fix data race in bleve indexer (#16474) (#16509)
  * Restore CORS on git smart http protocol (#16496) (#16506)
  * Fix race in log (#16490) (#16505)
  * Fix prepareWikiFileName to respect existing unescaped files (#16487) (#16498)
  * Make cancel from CatFileBatch and CatFileBatchCheck wait for the command to end (#16479) (#16480)
  * Update notification table with only latest data (#16445) (#16469)
  * Revert to use alpine 3.13 (#16451) (#16452)
  * Fix crash following ldap authentication update (#16447) (#16448)
  * Fix direct creation of external users on admin page (partial #16612) (#16613)
  * Prevent 500 on draft releases without tag (#16634) (#16636)
  • v1.14.6
    bb054fdf · Changelog for 1.14.6 (#16619) · 
    [1.14.6](https://github.com/go-gitea/gitea/releases/tag/v1.14.6) - 2021-08-04

* SECURITY
  * Bump github.com/markbates/goth from v1.67.1 to v1.68.0 (#16538) (#16540)
  * Switch to maintained JWT lib (#16532) (#16535)
  * Upgrade to latest version of golang-jwt (as forked for 1.14) (#16590) (#16607)
* BUGFIXES
  * Add basic edit ldap auth test & actually fix #16252 (#16465) (#16495)
  * Make cancel from CatFileBatch and CatFileBatchCheck wait for the command to end (#16479) (#16481)
  • v1.15.0-rc2
    0b06b201 · Add basic edit ldap auth test & actually fix #16252 (#16465) (#16494) · 
    * BUGFIXES
  * Restore creation of git-daemon-export-ok files (#16508) (#16514)
  * Fix data race in bleve indexer (#16474) (#16509)
  * Restore CORS on git smart http protocol (#16496) (#16506)
  * Fix race in log (#16490) (#16505)
  * Fix prepareWikiFileName to respect existing unescaped files (#16487) (#16498)
  * Make cancel from CatFileBatch and CatFileBatchCheck wait for the command to end (#16479) (#16480)
  * Update notification table with only latest data (#16445) (#16469)
  * Revert to use alpine 3.13 to fix multiple seccomp related issues with Docker <20 (#16451) (#16452)
  * Fix crash following ldap authentication update (#16447) (#16448)
  • v1.14.5
    62fa153f · Changelog for v1.14.5 (#16450) · 
    * SECURITY
  * Hide mirror passwords on repo settings page (#16022) (#16355)
  * Update bluemonday to v1.0.15 (#16379) (#16380)
* BUGFIXES
  * Retry rename on lock induced failures (#16435) (#16439)
  * Validate issue index before querying DB (#16406) (#16410)
  * Fix crash following ldap authentication update (#16447) (#16449)
* ENHANCEMENTS
  * Redirect on bad CSRF instead of presenting bad page (#14937) (#16378)
  • v1.16.0-dev
    8df3d657 · Change @every 24h default schedules to @midnight (#16431) · 
    v1.16.0-dev
  • v1.15.0-rc1
    195c9999 · Changelog for v1.15.0-rc1 (#16422) · 
    1.15.0-rc1

* BREAKING
  * Make app.ini permissions more restrictive (#16266)
  * Refactor Webhook + Add X-Hub-Signature (#16176)
  * Add asymmetric JWT signing (#16010)
  * Clean-up the settings hierarchy for issue_indexer queue (#16001)
  * Change default queue settings to be low go-routines (#15964)
  * Improve assets handler middleware (#15961)
  * Rename StaticUrlPrefix to AssetUrlPrefix (#15779)
  * Use a generic markup class to display externally rendered files and diffs (#15735)
  * Add frontend testing, require node 12 (#15315)
  * Move (custom) assets into subpath `/assets` (#15219)
  * Use level config in log section when sub log section not set level (#15176)
  * Links in markdown should be absolute to the repository not the server (#15088)
* SECURITY
  * Encrypt LDAP bind password in db with SECRET_KEY (#15547)
  * Remove random password in Dockerfiles (#15362)
* FEATURES
  * Update Go-Git to take advantage of LargeObjectThreshold (#16316)
  * Support custom mime type mapping for text files (#16304)
  * Link to previous blames in file blame page (#16259)
  * Add LRU mem cache implementation (#16226)
  * Localize Email Templates (#16200)
  * Make command in authorized keys a template (#16003)
  * Add possibility to make branch in branch page (#15960)
  * Add email headers (#15939)
  * Make tasklist checkboxes clickable (#15791)
  * Add selecting tags on the compare page (#15723)
  * Add cron job to delete old actions from database (#15688)
  * On open repository open common cat file batch and batch-check (#15667)
  * Add tag protection (#15629)
  * Add push to remote mirror repository (#15157)
  * Add Image Diff for SVG files (#14867)
  * Add dashboard milestone search and repo milestone search by name. (#14866)
  * Add LFS Migration and Mirror (#14726)
  * Improve notifications for WIP draft PR's (#14663)
  * Disable Stars config option (#14653)
  * Add option to provide signature for a token to verify key ownership (#14054)
  * OAuth2 auto-register (#5123)
* API
  * Return updated repository when changing repository using API (#16420)
  * Let branch/tag name be a valid ref to get CI status (#16400)
  * Add endpoint to get commits of PR (#16300)
  * Allow COMMENT reviews to not specify a body (#16229)
  * Add subject-type filter to list notification API endpoints (#16177)
  * ListReleases add filter for draft and pre-releases (#16175)
  * ListIssues add more filters (#16174)
  * Issue Search Add filter for MilestoneNames (#16173)
  * GET / SET User Settings (#16169)
  * Expose repo.GetReviewers() & repo.GetAssignees() (#16168)
  * User expose counters (#16167)
  * Add repoGetTag (#16166)
  * Add repoCreateTag (#16165)
  * Creating a repo from a template repo via API (#15958)
  * Add Active and ProhibitLogin to API (#15689)
  * Add Location, Website and Description to API (#15675)
  * Expose resolver via API (#15167)
* ENHANCEMENTS
  * Support HTTP/2 in Let's Encrypt (#16371)
  * Introduce NotifySubjectType (#16320)
  * Add forge emojies (#16296)
  * Implemented head_commit for webhooks (#16282)
  * Upgrade Gliderlabs SSH to 0.3.3 and add FailedConnectionCallback (#16278)
  * Add previous/next buttons to review comments (#16273)
  * Review comments: break-word for long file names (#16272)
  * Add configuration to restrict allowed user visibility modes (#16271)
  * Add scroll-margin-top to account for sticky header (#16269)
  * Add --quiet and --verbose to gitea web to control initial logging (#16260)
  * Use gitea logging module for git module (#16243)
  * Add tests for all webhooks (#16214)
  * Add button to delete undeleted repositories from failed migrations (#16197)
  * Speed up git diff highlight generation (#16180)
  * Add OpenID claims "profile" and "email". (#16141)
  * Reintroduce squash merge default comment as a config setting (#16134)
  * Add sanitizer rules per renderer (#16110)
  * Improve performance of dashboard list orgs (#16099)
  * Refactor assert statements in tests (#16089)
  * Add sso.Group, context.Auth, context.APIAuth to allow auth special routes (#16086)
  * Remove unnecessary goroutine (#16080)
  * Add attachments for PR reviews (#16075)
  * Make the github migration less rate limit waiting to get comment per page from repository but not per issue (#16070)
  * Add Visible modes function from Organisation to Users too (#16069)
  * Add checkbox to delete pull branch after successful merge (#16049)
  * Make commit info cancelable (#16032)
  * Make modules/context.Context a context.Context (#16031)
  * Unified custom config creation (#16012)
  * Make sshd_config more flexible regarding connections (#16009)
  * Append to existing trailers in generated squash commit message (#15980)
  * Always store primary email address into email_address table and also the state (#15956)
  * Load issue/PR context popup data only when needed (#15955)
  * Remove remaining fontawesome usage in templates (#15952)
  * Remove fomantic accordion module (#15951)
  * Small refactoring of modules/private (#15947)
  * Double the avatar size factor (#15941)
  * Add curl to rootless docker image (#15908)
  * Replace clipboard.js with async clipboard api (#15899)
  * Allow custom highlight mapping beyond file extensions (#15808)
  * Add trace logging to SSO methods (#15803)
  * Refactor routers directory (#15800)
  * Allow only internal registration (#15795)
  * Add a new internal hook to save ssh log (#15787)
  * Respect default merge message syntax when parsing item references (#15772)
  * OAuth2 login: Set account link to "login" as default behavior (#15768)
  * Use single shared random string generation function (#15741)
  * Hold the event source when there are no listeners (#15725)
  * Code comments improvements (#15722)
  * Provide OIDC compliant user info endpoint (#15721)
  * Fix webkit calendar icon color on arc-green (#15713)
  * Improve Light Chroma style (#15699)
  * Only use boost workers for leveldb shadow queues (#15696)
  * Add compare tag dropdown to releases page (#15695)
  * Add caret styling CSS (#15651)
  * Remove x-ua-compatible meta tag (#15640)
  * Refactor of link creation (#15619)
  * Add a new table issue_index to store the max issue index so that issue could be deleted with no duplicated index (#15599)
  * Rewrite of the LFS server (#15523)
  * Display more repository type on admin repository management (#15440)
  * Remove usage of some JS globals (#15378)
  * SHA in merged commit comment should be rendered ui sha (#15376)
  * Add well-known config for OIDC (#15355)
  * Use route rather than use thus reducing the number of stack frames (#15301)
  * Code Formats, Nits & Unused Func/Var deletions (#15286)
  * Let package git depend on setting but not opposite (#15241)
  * Fixed sanitize errors (#15240)
  * response simple text message for not html request when 404 (#15229)
  * Remove file-loader dependency (#15196)
  * Refactor renders (#15175)
  * Add mimetype mapping settings (#15133)
  * Add Status Updates whilst Gitea migrations are occurring (#15076)
  * Reload locales in initialisation if needed by utilizing i18n.Reset (#15073)
  * Counterwork seemingly unclickable repo button labels (#15064)
  * Add DefaultMergeStyle option to repository (#14789)
  * Added support for gopher URLs. (#14749)
  * Rework repository archive (#14723)
  * Add links to toggle WIP status (#14677)
  * Add Tabular Diff for CSV files (#14661)
  * Use milestone deadline when sorting issues (#14551)
* BUGFIXES
  * Fix invalid params and typo of email templates (#16394)
  * Fix activation of primary email addresses (#16385)
  * Fix calculation for finalPage in repo-search component (#16382)
  * Specify user in rootless container numerically (#16361)
  * Detect encoding changes while parsing diff (#16330)
  * Fix U2F error reasons always hidden (#16327)
  * Prevent zombie processes (#16314)
  * Escape reference to `user` table in models.SearchEmails (#16313)
  * Fix default push instructions on empty repos (#16302)
  * Fix modified files list in webhooks when there is a space (#16288)
  * Fix webhook commits wrong hash on HEAD reset (#16283)
  * Fuzzer finds an NPE due to incorrect URLPrefix (#16249)
  * Don't WARN log UserNotExist errors on ExternalUserLogin failure (#16238)
  * Do not show No match found for tribute (#16231)
  * Fix "Copy Link" for pull requests (#16230)
  * Fix diff expansion is missing final line in a file (#16222)
  * Fix private repo permission problem (#16142)
  * Fix not able to update local created non-urlencoded wiki pages (#16139)
  * More efficiently parse shas for shaPostProcessor (#16101)
  * Fix `doctor --run check-db-consistency --fix` with label fix (#16094)
  * Prevent webhook action buttons from shifting (#16087)
  * Change default TMPDIR path in rootless containers (#16077)
  * Fix typo and add TODO notice (#16064)
  * Use git log name-status in get last commit (#16059)
  * Fix 500 Error with branch and tag sharing the same name (#16040)
  * Fix get tag when migration (#16014)
  * Add custom emoji support (#16004)
  * Use filepath.ToSlash and Join in indexer defaults and queues (#15971)
  * Add permission check for ``GenerateRepository`` (#15946)
  * Ensure settings for Service and Mailer are read on the install page (#15943)
  * Fix layout of milestone view (#15927)
  * Unregister non-matching serviceworkers (#15834)
  * Multiple Queue improvements: LevelDB Wait on empty, shutdown empty shadow level queue, reduce goroutines etc (#15693)
  * Attachment support repository route (#15580)
  * Fix missing icons and colorpicker when mounted on suburl (#15501)
  * Create a session on ReverseProxy and ensure that ReverseProxy users cannot change username (#15304)
  * Prevent double-login for Git HTTP and LFS and simplify login (#15303)
  * Resolve Object { type: "error", data: undefined } in stopwatch.js (#15278)
  * Fix heatmap activity (#15252)
  * Remove vendored copy of fomantic-dropdown (#15193)
  * Update repository size on cron gc task (#15177)
  * Add NeedPostProcess for Parser interface to improve performance of csv parser and some external parser (#15153)
  * Add code block highlight to orgmode back (#14222)
  * Remove User.GetOrganizations() (#14032)
* TESTING
  * Bump `postgres` and `mysql` versions (#15710)
  * Add tests for clone from wiki (#15513)
  * Fix Benchmark tests, remove a broken one & add two new  (#15250)
  * Create Proper Migration tests (#15116)
* TRANSLATION
  * Use a special name for update default branch on repository setting (#15893)
  * Fix mirror_lfs source string in en-US locale (#15369)
* BUILD
  * Upgrade xorm to v1.1.1 (#16339)
  * Alpine 3.14 released (#16170)
  * Disable legal comments in esbuild (#15929)
  * Switch to Node 16 to build fronted  (#15804)
  * Use esbuild to minify CSS (#15756)
  * Use binary version of revive linter (#15739)
  * Fix: npx webpack make: *** [Makefile:699: public/js/index.js] Error -… (#15465)
  * Stop packaging node_modules in release tarballs (#15273)
  * Introduce esbuild on webpack (#14578)
* DOCS
  * Update queue workers documentation (#15999)
  * Comment out app.example.ini (#15807)
  * Improve logo customization docs (#15754)
  * Add some response status on api docs (#15399)
  * Rework Token API comments (#15162)
  * Add better errors for disabled account recovery (#15117)
* MISC
  * Remove utf8 option from installation page (#16126)
  * Use Wants= over Requires= in systemd file (#15897)
  • v1.14.4
    d0b8e3c8 · Changelog for v1.14.4 (#16348) · 
    * BUGFIXES
  * Fix relative links in postprocessed images (#16334) (#16340)
  * Fix list_options GetStartEnd (#16303) (#16305)
  * Fix API to use author for commits instead of committer (#16276) (#16277)
  * Handle misencoding of login_source cfg in mssql (#16268) (#16275)
  * Fixed issues not updated by commits (#16254) (#16261)
  * Improve efficiency in FindRenderizableReferenceNumeric and getReference (#16251) (#16255)
  * Use html.Parse rather than html.ParseFragment (#16223) (#16225)
  * Fix milestone counters on new issue (#16183) (#16224)
  * reqOrgMembership calls need to be preceded by reqToken (#16198) (#16219)
  • v1.14.3
    8cfd6695 · Changelog v1.14.3 (#16131) · 
    v1.14.3

* SECURITY
  * Encrypt migration credentials at rest (#15895) (#16187)
  * Only check access tokens if they are likely to be tokens (#16164) (#16171)
  * Add missing SameSite settings for the i_like_gitea cookie (#16037) (#16039)
  * Fix setting of SameSite on cookies (#15989) (#15991)
* API
  * Repository object only count releases as releases (#16184) (#16190)
  * EditOrg respect RepoAdminChangeTeamAccess option (#16184) (#16190)
  * Fix overly strict edit pr permissions (#15900) (#16081)
* BUGFIXES
  * Run processors on whole of text (#16155) (#16185)
  * Class `issue-keyword` is being incorrectly stripped off spans (#16163) (#16172)
  * Fix language switch for install page (#16043) (#16128)
  * Fix bug on getIssueIDsByRepoID (#16119) (#16124)
  * Set self-adjusting deadline for connection writing (#16068) (#16123)
  * Fix http path bug (#16117) (#16120)
  * Fix data URI scramble (#16098) (#16118)
  * Merge all deleteBranch as one function and also fix bug when delete branch don't close related PRs (#16067) (#16097)
  * git migration: don't prompt interactively for clone credentials (#15902) (#16082)
  * Fix case change in ownernames (#16045) (#16050)
  * Don't manipulate input params in email notification (#16011) (#16033)
  * Remove branch URL before IssueRefURL (#15968) (#15970)
  * Fix layout of milestone view (#15927) (#15940)
  * GitHub Migration, migrate draft releases too (#15884) (#15888)
  * Close the gitrepo when deleting the repository (#15876) (#15887)
  * Upgrade xorm to v1.1.0 (#15869) (#15885)
  * Fix blame row height alignment (#15863) (#15883)
  * Fix error message when saving generated LOCAL_ROOT_URL config (#15880) (#15882)
  * Backport Fix LFS commit finder not working (#15856) (#15874)
  * Stop calling WriteHeader in Write (#15862) (#15873)
  * Add timeout to writing to responses (#15831) (#15872)
  * Return go-get info on subdirs (#15642) (#15871)
  * Restore PAM user autocreation functionality (#15825) (#15867)
  * Fix truncate utf8 string (#15828) (#15854)
  * Fix bound address/port for caddy's certmagic library (#15758) (#15848)
  * Upgrade unrolled/render to v1.1.1 (#15845) (#15846)
  * Queue manager FlushAll can loop rapidly - add delay (#15733) (#15840)
  * Tagger can be empty, as can Commit and Author - tolerate this (#15835) (#15839)
  * Set autocomplete off on branches selector (#15809) (#15833)
  * Add missing error to Doctor log (#15813) (#15824)
  * Move restore repo to internal router and invoke from command to avoid open the same db file or queues files (#15790) (#15816)
* ENHANCEMENTS
  * Removable media support to snap package (#16136) (#16138)
  * Move sans-serif fallback font higher than emoji fonts (#15855) (#15892)
* DOCKER
  * Only write config in environment-to-ini if there are changes (#15861) (#15868)
  * Only offer hostcertificates if they exist (#15849) (#15853)
  • v1.14.2
    1112fef9 · Changelog v1.14.2 (#15794) · 
    v1.14.2

* API
  * Make change repo settings work on empty repos (#15778) (#15789)
  * Add pull "merged" notification subject status to API (#15344) (#15654)
* BUGFIXES
  * Ensure that ctx.Written is checked after issues(...) calls (#15797) (#15798)
  * Use pulls in commit graph unless pulls are disabled (#15734 & #15740 & #15774) (#15775)
  * Set GIT_DIR correctly if it is not set (#15751) (#15769)
  * Fix bug where repositories appear unadopted (#15757) (#15767)
  * Not show `ref-in-new-issue` pop when issue was disabled (#15761) (#15765)
  * Drop back to use IsAnInteractiveSession for SVC (#15749) (#15762)
  * Fix setting version table in dump (#15753) (#15759)
  * Fix close button change on delete in simplemde area (#15737) (#15747)
  * Defer closing the gitrepo until the end of the wrapped context functions (#15653) (#15746)
  * Fix some ui bug about draft release (#15137) (#15745)
  * Only log Error on getLastCommitStatus error to let pull list still be visible (#15716) (#15715)
  * Move tooltip down to allow selection of Remove File on error (#15672) (#15714)
  * Fix setting redis db path (#15698) (#15708)
  * Fix DB session cleanup (#15697) (#15700)
  * Fixed several activation bugs (#15473) (#15685)
  * Delete references if repository gets deleted (#15681) (#15684)
  * Fix orphaned objects deletion bug (#15657) (#15683)
  * Delete protected branch if repository gets removed (#15658) (#15676)
  * Remove spurious set name from eventsource.sharedworker.js (#15643) (#15652)
  * Not update updated uinx for `git gc` (#15637) (#15641)
  * Fix commit graph author link (#15627) (#15630)
  * Fix webhook timeout bug (#15613) (#15621)
  * Resolve panic on failed interface conversion in migration v156 (#15604) (#15610)
  * Fix missing storage init (#15589) (#15598)
  * If the default branch is not present do not report error on stats indexing (#15546 & #15583) (#15594)
  * Fix lfs management find (#15537) (#15578)
  * Fix NPE on view commit with notes (#15561) (#15573)
  * Fix bug on commit graph (#15517) (#15530)
  * Send size to /avatars if requested (#15459) (#15528)
  * Prevent migration 156 failure if tag commit missing (#15519) (#15527)
* ENHANCEMENTS
  * Display conflict-free merge messages for pull requests (#15773) (#15796)
  * Exponential Backoff for ByteFIFO (#15724) (#15793)
  * Issue list alignment tweaks (#15483) (#15766)
  * Implement delete release attachments and update release attachments' name (#14130) (#15666)
  * Add placeholder text to deploy key textarea (#15575) (#15576)
  * Project board improvements (#15429) (#15560)
  * Repo branch page: label size, PR ref, new PR button alignment (#15363) (#15365)
* MISC
  * Fix webkit calendar icon color on arc-green (#15713) (#15728)
  * Performance improvement for last commit cache and show-ref (#15455) (#15701)
  * Bump unrolled/render to v1.1.0 (#15581) (#15608)
  * Add ETag header (#15370) (#15552)
  • v1.14.1
    918d3d96 · Changelog v1.14.1 (#15498) · 
    v1.14.1

* BUGFIXES
  * Fix bug clone wiki (#15499) (#15502)
  * Github Migration ignore rate limit, if not enabled (#15490) (#15495)
  * Use subdir for URL (#15446) (#15493)
  * Query the DB for the hash before inserting in to email_hash (#15457) (#15491)
  * Ensure review dismissal only dismisses the correct review (#15477) (#15489)
  * Use index of the supported tags to choose user lang (#15452) (#15488)
  * Fix wrong file link in code search page (#15466) (#15486)
  * Quick template fix for built-in SSH server in admin config (#15464) (#15481)
  * Prevent superfluous response.WriteHeader (#15456) (#15476)
  * Fix ambiguous argument error on tags (#15432) (#15474)
  * Add created_unix instead of expiry to migration (#15458) (#15463)
  * Fix repository search (#15428) (#15442)
  * Prevent NPE on avatar direct rendering if federated avatars disabled (#15434) (#15439)
  * Fix wiki clone urls (#15430) (#15431)
  * Fix dingtalk icon url at webhook (#15417) (#15426)
  * Standardise icon on projects PR page (#15387) (#15408)
* ENHANCEMENTS
  * Add option to skip LFS/attachment files for `dump` (#15407) (#15492)
  * Clone panel fixes (#15436)
  * Use semantic dropdown for code search query type (#15276) (#15364)
* BUILD
  * Build go-git variants for windows (#15482) (#15487)
  * Lock down build-images dependencies (Partial #15479) (#15480)
* MISC
  * Performance improvement for list pull requests (#15447) (#15500)
  * Fix potential copy lfs records failure when fork a repository (#15441) (#15485)
  • v1.14.0
    55e159ca · Changelog v1.14.0 (#15360) · 
    v1.14.0

* SECURITY
  * Respect approved email domain list for externally validated user registration (#15014)
  * Add reverse proxy configuration support for remote IP address detection (#14959)
  * Ensure validation occurs on clone addresses too (#14994)
* BREAKING
  * Fix double 'push tag' action feed (#15078) (#15083)
  * Remove possible resource leak (#15067) (#15082)
  * Handle unauthorized user events gracefully (#15071) (#15074)
  * Restore Access.log following migration to Chi framework (Stops access logging of /api/internal routes) (#14475)
  * Migrate from Macaron to Chi framework (#14293)
  * Deprecate building for mips (#14174)
  * Consolidate Logos and update README header (#14136)
  * Inline manifest.json (#14038)
  * Store repository data in data path if not previously set (#13991)
  * Rename "gitea" png to "logo" (#13974)
  * Standardise logging of failed authentication attempts in internal SSH (#13962)
  * Add markdown support in organization description (#13549)
  * Improve users management through the CLI (#6001) (#10492)
* FEATURES
  * Create a new issue with reference to lines of code from file view (#14863)
  * Repository transfer has to be confirmed, if user can not create repo for new owner (#14792)
  * Allow blocking some email domains from registering an account (#14667)
  * Create a new issue based on reference to an issue comment (#14366)
  * Add support to migrate from gogs (#14342)
  * Add pager to the branches page (#14202)
  * Minimal OpenID Connect implementation (#14139)
  * Display current stopwatch in navbar (#14122)
  * Display SVG files as images instead of text (#14101)
  * Disable SSH key deletion of externally managed Keys (#13985)
  * Add support for ed25519_sk and ecdsa_sk SSH keys (#13462)
  * Add support for Mastodon OAuth2 provider (#13293)
  * Add gitea sendmail command (#13079)
  * Create DB session provider(based on xorm) (#13031)
  * Add dismiss review feature (#12674)
  * Make manual merge autodetection optional and add manual merge as merge method (#12543)
  * Dump github/gitlab/gitea repository data to a local directory and restore to gitea (#12244)
  * Create Rootless Docker image (#10154)
* API
  * Speedup issue search (#15179) (#15192)
  * Get pull, return head branch sha, even if deleted (#14931)
  * Export LFS & TimeTracking function status (#14753)
  * Show Gitea version in swagger (#14654)
  * Fix PATCH /repos/{owner}/{repo} panic (#14637)
  * Add Restricted Field to User (#14630)
  * Add support for ref parameter to get raw file API (#14602)
  * Add affected files of commits to commit struct (#14579)
  * Fix CJK fonts again and misc. font issues (#14575)
  * Add delete release by tag & delete tag (#14563) & (#13358)
  * Add pagination to ListBranches (#14524)
  * Add signoff option in commit form (#14516)
  * GetRelease by tag only return release (#14397)
  * Add MirrorInterval to the API (#14163)
  * Make BasicAuth Prefix case insensitive (#14106)
  * Add user filter to issueTrackedTimes, enable usage for issue managers (#14081)
  * Add ref to create/edit issue options & deprecated assignee (#13992)
  * Add Ref to Issue (#13946)
  * Expose default theme in meta and API (#13809)
  * Send error message when CSRF token is missing (#13676)
  * List, Check, Add & delete endpoints for repository teams (#13630)
  * Admin EditUser: Make FullName, Email, Website & Location optional (#13562)
  * Add more filters to issues search (#13514)
  * Add review request api (#11355)
* BUGFIXES
  * Fix delete nonexist oauth application 500 and prevent deadlock (#15384) (#15396)
  * Always set the merge base used to merge the commit (#15352) (#15385)
  * Upgrade to bluemonday 1.0.7 (#15379) (#15380)
  * Turn RepoRef and RepoAssignment back into func(*Context) (#15372) (#15377)
  * Move FCGI req.URL.Path fix-up to the FCGI listener (#15292) (#15361)
  * Show diff on rename with diff changes (#15338) (#15339)
  * Fix handling of logout event (#15323) (#15337)
  * Fix CanCreateRepo check (#15311) (#15321)
  * Fix xorm log stack level (#15285) (#15316)
  * Fix bug in Wrap (#15302) (#15309)
  * Drop the event source if we are unauthorized (#15275) (#15280)
  * Backport Fix graph pagination (#15225)  (#15249)
  * Prevent NPE in CommentMustAsDiff if no hunk header (#15199) (#15200)
  * should run RetrieveRepoMetas() for empty pr (#15187) (#15190)
  * Move setting to enable closing issue via commit in non default branch to repo settings (#14965)
  * Show correct issues for team dashboard (#14952)
  * Ensure that new pull request button works on forked forks owned by owner of the root and reduce ambiguity (#14932)
  * Only allow issue labels from owner repository or organization (#14928)
  * Fix alignment of People and Teams right arrow on org homepage (#14924)
  * Fix overdue marking of closed issues and milestones (#14923)
  * Prevent panic when empty MilestoneID in repo/issue/list (#14911)
  * Fix migration context data (#14910)
  * Handle URLs with trailing slash (#14852)
  * Add CORS config on to /login/oauth/access_token endpoint (#14850)
  * Make searching issues by keyword case insensitive on DB (#14848)
  * Prevent use of double sub-path and incorrect asset path in manifest (#14827)
  * Fix link account ui (#14763)
  * Fix preview status switch button on wiki editor (#14742)
  * Fix github download on migration (#14703)
  * Fix svg spacing (#14638)
  * Prevent adding nil label to .AddedLabels or .RemovedLabels (#14623)
  * Truncated organizations name (#14615)
  * Exclude the current dump file from the dump (#14606)
  * Use OldRef instead of CommitSHA for DeleteBranch comments (#14604)
  * Ensure memcache caching works when TTL greater than 30 days (#14592)
  * Remove NULs byte arrays passed to PostProcess (#14587)
  * Restore detection of branches are equal on compare page (#14586)
  * Fix incorrect key name so registerManualConfirm works (#14455)
  * Fix close/reopen with comment (#14436)
  * Allow passcode invalid error to appear (#14371)
  * Escape branch names in compare url (#14364)
  * Label and milestone webhooks on issue/pull creation (#14363)
  * Handle NotifyCreateRef as create branch in feeds (#14245)
  * Prevent clipping input text in Chrome + Segoe UI Font (#14179)
  * Fix UI on edit auth source page (#14137)
  * Fix git.parseTagData (#14105)
  * Refactor get tag to remove unnecessary steps (#14058)
  * Fix integrations test error with space in CURDIR path (#14056)
  * Dropdown triangle fixes (#14028)
  * Fix label of --id in admin delete user (#14005)
  * Cause NotifyMigrateRepository to emit a repo create webhook (#14004)
  * Update HEAD to match defaultBranch in template generation (#13948)
  * Fix action avatar loading (#13909)
  * Fix issue participants (#13893)
  * Fix avatar template error (#13833)
  * Fix review request notification email links when external issue tracker is enabled (#13723)
  * Fix blame line alignment (#13542)
  * Include OriginalAuthor in Reaction constraint (#13505)
  * Comments on review should have the same sha (#13448)
  * Fix whitespace rendering in diff (#13415)
  * Fixed git args duplication (#13411)
  * Fix bug on release publisherid migrations (#13410)
  * Fix --port setting (#13288)
  * Keep database transactions not too big (#13254)
  * Git version check, ignore pre-releases constraints (#13234)
  * Handle and propagate errors when checking if paths are Dirs, Files or Exist (#13186)
  * Update Mirror IsEmpty status on synchronize (#13185)
  * Use GO variable in go-check target (#13146) (#13147)
* ENHANCEMENTS
  * UI style improvements
  * Dropzone styling improvements (#15291) (#15374)
  * Add size to Save function (#15264) (#15270)
  * Monaco improvements (#15333) (#15345)
  * Support .mailmap in code activity stats (#15009)
  * Sort release attachments by name (#15008)
  * Add ui.explore settings to control view of explore pages (#14094)
  * Make internal SSH server host key path configurable (#14918)
  * Hide resync all ssh principals when using internal ssh server (#14904)
  * Add SameSite setting for cookies (#14900)
  * Move Bleve and Elastic code indexers to use a common cat-file --batch (#14781)
  * Add environment-to-ini to docker image (#14762)
  * Add preview support for wiki editor when disable simpleMDE (#14757)
  * Add easyMDE(simpleMDE) support for release content editor (#14744)
  * Organization removal confirmation using name not password (#14738)
  * Make branch names in PR description clickable (#14716)
  * Add Password Algorithm option to install page (#14701)
  * Add fullTextSearch to dropdowns by default (#14694)
  * Fix truncated organization names (#14655)
  * Whitespace in commits (#14650)
  * Sort / move project boards (#14634)
  * Make fileheader sticky in diffs (#14616)
  * Add helper descriptions on new repo page (#14591)
  * Move the stopwatches to the eventsource stream (#14588)
  * Add Content-Length header to HEAD requests (#14542)
  * Add Image Diff options in Diff view (#14450)
  * Improve Description in new/ edit Project template (#14429)
  * Allow ssh-keygen on Windows to detect ssh key type (#14413)
  * Display error if twofaSecret cannot be retrieved (#14372)
  * Sort issue search results by revelance (#14353)
  * Implement ghost comment mitigation (#14349)
  * Upgrade blevesearch dependency to v2.0.1 (#14346)
  * Add edit, delete and reaction support to code review comments on issue page (#14339)
  * Merge default and system webhooks under one menu (#14244)
  * Add option for administrator to reset user 2FA (#14243)
  * Add option to change username to the admin panel (#14229)
  * Check for 'main' as potential default branch name (#14193)
  * Project: show referenced PRs in issue cards (#14183)
  * Use caddy's certmagic library for extensible/robust ACME handling (#14177)
  * CLI support for OAuth sources custom icons (#14166)
  * Custom icons for OAuth sources (#14161)
  * Team dashboards (#14159)
  * KanBan: be able to set default board (#14147)
  * Disable Fomantic's custom scrollbars (#14109)
  * Add UI to delete tracked times (#14100)
  * Rework heatmap permissions (#14080)
  * Issue and pull request filters on organization dashboard (#14072)
  * Fix webhook list styling (#14001)
  * Show dropdown with all statuses for commit (#13977)
  * Show status check for merged PRs (#13975)
  * Diff stat improvements (#13954)
  * Report permissions denied in internal SSH (#13953)
  * Markdown task list improvements (#13952)
  * Heatmap days clickable (#13935)
  * chore: use octicon-mirror for feeds display (#13928)
  * Move diff split code into own template file (#13919)
  * Markdown: Enable wrapping in code blocks and a color tweak (#13894)
  * Do not reload page after adding comments in Pull Request reviews (#13877)
  * Add pull request manually merge instruction (#13840)
  * add thumbnail preview section to issue attachments (#13826)
  * Move Repo APIFormat to convert package (#13787)
  * Move notification APIFormat (#13783)
  * Swap swagger-ui with swagger-ui-dist (#13777)
  * User Settings: Ignore empty language codes & validate (#13755)
  * Improve migrate page and add card CSS (#13751)
  * Add block on official review requests branch protection (#13705)
  * Add review requested filter on pull request overview (#13701)
  * Use chronological commit order in default squash message (#13696)
  * Clickable links in pull request (and issue) titles (#13695)
  * Support shortened commit SHAs in URLs (#13686)
  * Use native git variants by default with go-git variants as build tag (#13673)
  * Don't render dropdown when only 1 merge style is available (#13670)
  * Move webhook type from int to string (#13664)
  * Direct avatar rendering (#13649)
  * Verify password for local-account activation (#13631)
  * Prevent clone protocol button flash on page load (#13626)
  * Remove fetch request from heatmap (#13623)
  * Refactor combine label comments with tests (#13619)
  * Move metrics from macaron to chi (#13601)
  * Issue and Pulls lists rework (#13594)
  * HTTP cache rework and enable caching for storage assets (#13569)
  * Use mount but not register for chi routes (#13555)
  * Use monaco for the git hook editor (#13552)
  * Make heatmap colors more distinct (#13533)
  * Lazy-load issue reviewers and assignees avatars (#13526)
  * Change search and filter icons to SVG (#13473)
  * Create tag on ui (#13467)
  * updateSize when create a repo with init commit (#13441)
  * Added title and action buttons to Project view page (#13437)
  * Override fomantic monospace fonts and set size (#13435)
  * Rework focused comment styling (#13434)
  * Tags cleanup (#13428)
  * Various style tweaks (#13418)
  * Refactor push update (#13381)
  * Comment box tweaks and SVG dropdown triangles (#13376)
  * Various style fixes (#13372)
  * Change repo home page icons to SVG (#13364)
  * Use CSS Vars for primary color (#13361)
  * Refactor image paste code (#13354)
  * Switch from SimpleMDE to EasyMDE (#13333)
  * Group Label Changed Comments in timeline (#13304)
  * Make the logger an interface (#13294)
  * Fix PR/Issue titles on mobile (#13292)
  * Rearrange the order of the merged by etc. in locale (#13284)
  * Replace footer and modal icons with SVG (#13245)
  * Issues overview should not show issues from archived repos (#13220)
  * Show stale label for stale code comment which is marked as resolved (#13213)
  * Use CSS Variables for fonts, remove postcss-loader (#13204)
  * Add mentionable teams to tributeValues and change team mention rules to gh's style (#13198)
  * Move install pages out of main macaron routes (#13195)
  * Update outdated label to use Fomantic UI style (#13181)
  * Added option to disable webhooks (#13176)
  * Change order of possible-owner organizations to alphabetical (#13160)
  * Log IP on SSH authentication failure for Built-in SSH server (#13150)
  * Added option to disable migrations (#13114)
  * New "Add Mirror" Button in the Organization view (#13105)
  * Manually approve new registration (#13083)
  * Cron job to cleanup hook_task table (#13080)
  * Use the headline comment of pull-request as the squash commit's message (#13071)
  * Clarify the suffices and prefixes of setting.AppSubURL and setting.AppURL (#12999)
  * Slightly simplify the queue settings code to help reduce the risk of problems (#12976)
  * Add precise search type for Elastic Search (#12869)
  * Move APIFormat functions into convert package (#12856)
  * Multiple GitGraph improvements: Exclude PR heads, Add branch/PR links, Show only certain branches, (#12766)
  * Add TrN for repository limit (#12492)
  * Refactor doctor (#12264)
  * Add the tag list page to the release page (#12096)
  * Redirect on changed user and org name (#11649)
  * load U2F js only on pages which need it (#11585)
  * Make archival asynchronous (#11296)
  * Introduce go chi web framework as frontend of macaron, so that we can move routes from macaron to chi step by step (#7420)
  * Improve vfsgen to not unzip bindata files but send to browser directly (#7109)
  * Enhance release list (#6025)
* DOCS
  * Swagger show models by default (#14880)
  * Add missing repo.projects unit into swagger (#14876)
  * Update docs and comments to remove macaron (#14491)
  * Issue template addition: Are you using Gitea behind CloudFlare? (#14098)
  * Generate man pages (#13901)
  * Reformat/fine-tune docs (#13897)
  * Added Table of Contents to long documentation pages (#13890)
  * Add docs command (#13429)
  * Update external-renderers.en-us.md (#13165)
* MISC
  * Add builds for apple M1 (darwin arm64) (#14951)
  * Migrate to use jsoniter instead of encoding/json (#14841)
  * Reduce make verbosity (#13803)
  * Add git command error directory on log (#13194)
  • v1.13.7
    ef2cb41d · Update Changelog (#15322) · 
    v1.13.7

* SECURITY
  * Update to bluemonday-1.0.6 (#15294) (#15298)
  * Clusterfuzz found another way (#15160) (#15169)
* API
  * Fix wrong user returned in API (#15139) (#15150)
* BUGFIXES
  * Add 'fonts' into 'KnownPublicEntries' (#15188) (#15317)
  * Speed up `enry.IsVendor` (#15213) (#15246)
  * Response 404 for diff/patch of a commit that not exist (#15221) (#15238)
  * Prevent NPE in CommentMustAsDiff if no hunk header (#15199) (#15201)
* MISC
  * Add size to Save function (#15264) (#15271)
  • v1.14.0-rc2
    e99534cf · Fix Migration 176 yet again (#15132) · 
    v1.14.0-rc2

* SECURITY
  * Fix bug on avatar middleware (#15124) (#15125)
  * Fix another clusterfuzz identified issue (#15096) (#15113)
  * Update to goldmark 1.3.3 (#15059) (#15060)
* BUGFIXES
  * Fix the v176 migration (#15110) (#15111)
  * Fix double 'push tag' action feed (#15078) (#15083)
  * Remove possible resource leak (#15067) (#15082)
  * Handle unauthorized user events gracefully (#15071) (#15074)
  • v1.13.6
    6dfa92bb · Changelog v1.13.6 (#15129) · 
    v1.13.6

* SECURITY
  * Fix bug on avatar middleware (#15124) (#15125)
  * Fix another clusterfuzz identified issue (#15096) (#15114)
* API
  * Fix nil exeption for get pull reviews API #15104 (#15106)
* BUGFIXES
  * Fix markdown rendering in milestone content (#15056) (#15092)
  • v1.13.5
    b0819efa · Place wrapper around comment as diff to catch panics (#15085) (#15086) · 
    v1.13.5

* SECURITY
  * Update to goldmark 1.3.3 (#15059) (#15061)
* API
  * Fix set milestone on PR creation (#14981) (#15001)
  * Prevent panic when editing forked repos by API (#14960) (#14963)
* BUGFIXES
  * Fix bug when upload on web (#15042) (#15055)
  * Delete Labels & IssueLabels on Repo Delete too (#15039) (#15051)
  * another clusterfuzz spotted issue (#15032) (#15034)
  * Fix postgres ID sequences broken by recreate-table (#15015) (#15029)
  * Fix several render issues (#14986) (#15013)
  * Make sure sibling images get a link too (#14979) (#14995)
  * Fix Anchor jumping with escaped query components (#14969) (#14977)
  * fix release mail html template (#14976)
  * Fix excluding more than two labels on issues list (#14962) (#14973)
  * don't mark each comment poster as OP (#14971) (#14972)
  * Add "captcha" to list of reserved usernames (#14930)
  * Re-enable import local paths after reversion from #13610 (#14925) (#14927)
  • v1.14.0-rc1
    ed60fe09 · Update release date (#15065) · 
    * SECURITY
  * Respect approved email domain list for externally validated user registration (#15014)
  * Add reverse proxy configuration support for remote IP address detection (#14959)
  * Ensure validation occurs on clone addresses too (#14994)
* BREAKING
  * Restore Access.log following migration to Chi framework (Stops access logging of /api/internal routes) (#14475)
  * Migrate from Macaron to Chi framework (#14293)
  * Deprecate building for mips (#14174)
  * Consolidate Logos and update README header (#14136)
  * Inline manifest.json (#14038)
  * Store repository data in data path if not previously set (#13991)
  * Rename "gitea" png to "logo" (#13974)
  * Standardise logging of failed authentication attempts in internal SSH (#13962)
  * Add markdown support in organization description (#13549)
  * Improve users management through the CLI (#6001) (#10492)
* FEATURES
  * Create a new issue with reference to lines of code from file view (#14863)
  * Repository transfer has to be confirmed, if user can not create repo for new owner (#14792)
  * Allow blocking some email domains from registering an account (#14667)
  * Create a new issue based on reference to an issue comment (#14366)
  * Add support to migrate from gogs (#14342)
  * Add pager to the branches page (#14202)
  * Minimal OpenID Connect implementation (#14139)
  * Display current stopwatch in navbar (#14122)
  * Display SVG files as images instead of text (#14101)
  * Disable SSH key deletion of externally managed Keys (#13985)
  * Add support for ed25519_sk and ecdsa_sk SSH keys (#13462)
  * Add support for Mastodon OAuth2 provider (#13293)
  * Add gitea sendmail command (#13079)
  * Create DB session provider(based on xorm) (#13031)
  * Add dismiss review feature (#12674)
  * Make manual merge autodetection optional and add manual merge as merge method (#12543)
  * Dump github/gitlab/gitea repository data to a local directory and restore to gitea (#12244)
  * Create Rootless Docker image (#10154)
* API
  * Get pull, return head branch sha, even if deleted (#14931)
  * Export LFS & TimeTracking function status (#14753)
  * Show Gitea version in swagger (#14654)
  * Fix PATCH /repos/{owner}/{repo} panic (#14637)
  * Add Restricted Field to User (#14630)
  * Add support for ref parameter to get raw file API (#14602)
  * Add affected files of commits to commit struct (#14579)
  * Fix CJK fonts again and misc. font issues (#14575)
  * Add delete release by tag & delete tag (#14563) & (#13358)
  * Add pagination to ListBranches (#14524)
  * Add signoff option in commit form (#14516)
  * GetRelease by tag only return release (#14397)
  * Add MirrorInterval to the API (#14163)
  * Make BasicAuth Prefix case insensitive (#14106)
  * Add user filter to issueTrackedTimes, enable usage for issue managers (#14081)
  * Add ref to create/edit issue options & deprecated assignee (#13992)
  * Add Ref to Issue (#13946)
  * Expose default theme in meta and API (#13809)
  * Send error message when CSRF token is missing (#13676)
  * List, Check, Add & delete endpoints for repository teams (#13630)
  * Admin EditUser: Make FullName, Email, Website & Location optional (#13562)
  * Add more filters to issues search (#13514)
  * Add review request api (#11355)
* BUGFIXES
  * Move setting to enable closing issue via commit in non default branch to repo settings (#14965)
  * Show correct issues for team dashboard (#14952)
  * Ensure that new pull request button works on forked forks owned by owner of the root and reduce ambiguity (#14932)
  * Only allow issue labels from owner repository or organization (#14928)
  * Fix alignment of People and Teams right arrow on org homepage (#14924)
  * Fix overdue marking of closed issues and milestones (#14923)
  * Prevent panic when empty MilestoneID in repo/issue/list (#14911)
  * Fix migration context data (#14910)
  * Handle URLs with trailing slash (#14852)
  * Add CORS config on to /login/oauth/access_token endpoint (#14850)
  * Make searching issues by keyword case insensitive on DB (#14848)
  * Prevent use of double sub-path and incorrect asset path in manifest (#14827)
  * Fix link account ui (#14763)
  * Fix preview status switch button on wiki editor (#14742)
  * Fix github download on migration (#14703)
  * Fix svg spacing (#14638)
  * Prevent adding nil label to .AddedLabels or .RemovedLabels (#14623)
  * Truncated organizations name (#14615)
  * Exclude the current dump file from the dump (#14606)
  * Use OldRef instead of CommitSHA for DeleteBranch comments (#14604)
  * Ensure memcache caching works when TTL greater than 30 days (#14592)
  * Remove NULs byte arrays passed to PostProcess (#14587)
  * Restore detection of branches are equal on compare page (#14586)
  * Fix incorrect key name so registerManualConfirm works (#14455)
  * Fix close/reopen with comment (#14436)
  * Allow passcode invalid error to appear (#14371)
  * Escape branch names in compare url (#14364)
  * Label and milestone webhooks on issue/pull creation (#14363)
  * Handle NotifyCreateRef as create branch in feeds (#14245)
  * Prevent clipping input text in Chrome + Segoe UI Font (#14179)
  * Fix UI on edit auth source page (#14137)
  * Fix git.parseTagData (#14105)
  * Refactor get tag to remove unnecessary steps (#14058)
  * Fix integrations test error with space in CURDIR path (#14056)
  * Dropdown triangle fixes (#14028)
  * Fix label of --id in admin delete user (#14005)
  * Cause NotifyMigrateRepository to emit a repo create webhook (#14004)
  * Update HEAD to match defaultBranch in template generation (#13948)
  * Fix action avatar loading (#13909)
  * Fix issue participants (#13893)
  * Fix avatar template error (#13833)
  * Fix review request notification email links when external issue tracker is enabled (#13723)
  * Fix blame line alignment (#13542)
  * Include OriginalAuthor in Reaction constraint (#13505)
  * Comments on review should have the same sha (#13448)
  * Fix whitespace rendering in diff (#13415)
  * Fixed git args duplication (#13411)
  * Fix bug on release publisherid migrations (#13410)
  * Fix --port setting (#13288)
  * Keep database transactions not too big (#13254)
  * Git version check, ignore pre-releases constraints (#13234)
  * Handle and propagate errors when checking if paths are Dirs, Files or Exist (#13186)
  * Update Mirror IsEmpty status on synchronize (#13185)
  * Use GO variable in go-check target (#13146) (#13147)
* ENHANCEMENTS
  * UI style improvements
  * Support .mailmap in code activity stats (#15009)
  * Sort release attachments by name (#15008)
  * Add ui.explore settings to control view of explore pages (#14094)
  * Make internal SSH server host key path configurable (#14918)
  * Hide resync all ssh principals when using internal ssh server (#14904)
  * Add SameSite setting for cookies (#14900)
  * Move Bleve and Elastic code indexers to use a common cat-file --batch (#14781)
  * Add environment-to-ini to docker image (#14762)
  * Add preview support for wiki editor when disable simpleMDE (#14757)
  * Add easyMDE(simpleMDE) support for release content editor (#14744)
  * Organization removal confirmation using name not password (#14738)
  * Make branch names in PR description clickable (#14716)
  * Add Password Algorithm option to install page (#14701)
  * Add fullTextSearch to dropdowns by default (#14694)
  * Fix truncated organization names (#14655)
  * Whitespace in commits (#14650)
  * Sort / move project boards (#14634)
  * Make fileheader sticky in diffs (#14616)
  * Add helper descriptions on new repo page (#14591)
  * Move the stopwatches to the eventsource stream (#14588)
  * Add Content-Length header to HEAD requests (#14542)
  * Add Image Diff options in Diff view (#14450)
  * Improve Description in new/ edit Project template (#14429)
  * Allow ssh-keygen on Windows to detect ssh key type (#14413)
  * Display error if twofaSecret cannot be retrieved (#14372)
  * Sort issue search results by revelance (#14353)
  * Implement ghost comment mitigation (#14349)
  * Upgrade blevesearch dependency to v2.0.1 (#14346)
  * Add edit, delete and reaction support to code review comments on issue page (#14339)
  * Merge default and system webhooks under one menu (#14244)
  * Add option for administrator to reset user 2FA (#14243)
  * Add option to change username to the admin panel (#14229)
  * Check for 'main' as potential default branch name (#14193)
  * Project: show referenced PRs in issue cards (#14183)
  * Use caddy's certmagic library for extensible/robust ACME handling (#14177)
  * CLI support for OAuth sources custom icons (#14166)
  * Custom icons for OAuth sources (#14161)
  * Team dashboards (#14159)
  * KanBan: be able to set default board (#14147)
  * Disable Fomantic's custom scrollbars (#14109)
  * Add UI to delete tracked times (#14100)
  * Rework heatmap permissions (#14080)
  * Issue and pull request filters on organization dashboard (#14072)
  * Fix webhook list styling (#14001)
  * Show dropdown with all statuses for commit (#13977)
  * Show status check for merged PRs (#13975)
  * Diff stat improvements (#13954)
  * Report permissions denied in internal SSH (#13953)
  * Markdown task list improvements (#13952)
  * Heatmap days clickable (#13935)
  * chore: use octicon-mirror for feeds display (#13928)
  * Move diff split code into own template file (#13919)
  * Markdown: Enable wrapping in code blocks and a color tweak (#13894)
  * Do not reload page after adding comments in Pull Request reviews (#13877)
  * Add pull request manually merge instruction (#13840)
  * add thumbnail preview section to issue attachments (#13826)
  * Move Repo APIFormat to convert package (#13787)
  * Move notification APIFormat (#13783)
  * Swap swagger-ui with swagger-ui-dist (#13777)
  * User Settings: Ignore empty language codes & validate (#13755)
  * Improve migrate page and add card CSS (#13751)
  * Add block on official review requests branch protection (#13705)
  * Add review requested filter on pull request overview (#13701)
  * Use chronological commit order in default squash message (#13696)
  * Clickable links in pull request (and issue) titles (#13695)
  * Support shortened commit SHAs in URLs (#13686)
  * Use native git variants by default with go-git variants as build tag (#13673)
  * Don't render dropdown when only 1 merge style is available (#13670)
  * Move webhook type from int to string (#13664)
  * Direct avatar rendering (#13649)
  * Verify password for local-account activation (#13631)
  * Prevent clone protocol button flash on page load (#13626)
  * Remove fetch request from heatmap (#13623)
  * Refactor combine label comments with tests (#13619)
  * Move metrics from macaron to chi (#13601)
  * Issue and Pulls lists rework (#13594)
  * HTTP cache rework and enable caching for storage assets (#13569)
  * Use mount but not register for chi routes (#13555)
  * Use monaco for the git hook editor (#13552)
  * Make heatmap colors more distinct (#13533)
  * Lazy-load issue reviewers and assignees avatars (#13526)
  * Change search and filter icons to SVG (#13473)
  * Create tag on ui (#13467)
  * updateSize when create a repo with init commit (#13441)
  * Added title and action buttons to Project view page (#13437)
  * Override fomantic monospace fonts and set size (#13435)
  * Rework focused comment styling (#13434)
  * Tags cleanup (#13428)
  * Various style tweaks (#13418)
  * Refactor push update (#13381)
  * Comment box tweaks and SVG dropdown triangles (#13376)
  * Various style fixes (#13372)
  * Change repo home page icons to SVG (#13364)
  * Use CSS Vars for primary color (#13361)
  * Refactor image paste code (#13354)
  * Switch from SimpleMDE to EasyMDE (#13333)
  * Group Label Changed Comments in timeline (#13304)
  * Make the logger an interface (#13294)
  * Fix PR/Issue titles on mobile (#13292)
  * Rearrange the order of the merged by etc. in locale (#13284)
  * Replace footer and modal icons with SVG (#13245)
  * Issues overview should not show issues from archived repos (#13220)
  * Show stale label for stale code comment which is marked as resolved (#13213)
  * Use CSS Variables for fonts, remove postcss-loader (#13204)
  * Add mentionable teams to tributeValues and change team mention rules to gh's style (#13198)
  * Move install pages out of main macaron routes (#13195)
  * Update outdated label to use Fomantic UI style (#13181)
  * Added option to disable webhooks (#13176)
  * Change order of possible-owner organizations to alphabetical (#13160)
  * Log IP on SSH authentication failure for Built-in SSH server (#13150)
  * Added option to disable migrations (#13114)
  * New "Add Mirror" Button in the Organization view (#13105)
  * Manually approve new registration (#13083)
  * Cron job to cleanup hook_task table (#13080)
  * Use the headline comment of pull-request as the squash commit's message (#13071)
  * Clarify the suffices and prefixes of setting.AppSubURL and setting.AppURL (#12999)
  * Slightly simplify the queue settings code to help reduce the risk of problems (#12976)
  * Add precise search type for Elastic Search (#12869)
  * Move APIFormat functions into convert package (#12856)
  * Multiple GitGraph improvements: Exclude PR heads, Add branch/PR links, Show only certain branches, (#12766)
  * Add TrN for repository limit (#12492)
  * Refactor doctor (#12264)
  * Add the tag list page to the release page (#12096)
  * Redirect on changed user and org name (#11649)
  * load U2F js only on pages which need it (#11585)
  * Make archival asynchronous (#11296)
  * Introduce go chi web framework as frontend of macaron, so that we can move routes from macaron to chi step by step (#7420)
  * Improve vfsgen to not unzip bindata files but send to browser directly (#7109)
  * Enhance release list (#6025)
* DOCS
  * Swagger show models by default (#14880)
  * Add missing repo.projects unit into swagger (#14876)
  * Update docs and comments to remove macaron (#14491)
  * Issue template addition: Are you using Gitea behind CloudFlare? (#14098)
  * Generate man pages (#13901)
  * Reformat/fine-tune docs (#13897)
  * Added Table of Contents to long documentation pages (#13890)
  * Add docs command (#13429)
  * Update external-renderers.en-us.md (#13165)
* MISC
  * Add builds for apple M1 (darwin arm64) (#14951)
  * Migrate to use jsoniter instead of encoding/json (#14841)
  * Reduce make verbosity (#13803)
  * Add git command error directory on log (#13194)