custom-app.ini.patch

@@ -1,6 +1,6 @@
-diff -rub forgejo-src-10.0.0/custom/conf/app.example.ini forgejo-src-10.0.0-patched/custom/conf/app.example.ini
---- forgejo-src-10.0.0/custom/conf/app.example.ini	2025-01-16 07:37:10.000000000 +0100
-+++ forgejo-src-10.0.0-patched/custom/conf/app.example.ini	2025-01-16 14:05:03.035772154 +0100
+diff -rub forgejo-src-8.0.0/custom/conf/app.example.ini forgejo-src-8.0.0-patched/custom/conf/app.example.ini
+--- forgejo-src-8.0.0/custom/conf/app.example.ini	2024-07-30 06:40:03.000000000 +0200
++++ forgejo-src-8.0.0-patched/custom/conf/app.example.ini	2024-08-01 20:24:55.972480197 +0200
 @@ -51,7 +51,7 @@
  ;APP_DISPLAY_NAME_FORMAT = {APP_NAME}: {APP_SLOGAN}
  ;;
@@ -10,7 +10,7 @@ diff -rub forgejo-src-10.0.0/custom/conf/app.example.ini forgejo-src-10.0.0-patc
  ;;
  ;; Application run mode, affects performance and debugging: "dev" or "prod", default is "prod"
  ;; Mode "dev" makes Gitea easier to develop and debug, values other than "dev" are treated as "prod" which is for production use.
-@@ -284,15 +284,15 @@
+@@ -284,15 +284,17 @@
  ;; $ openssl pkcs12 -in cert.pfx -out cert.pem -nokeys
  ;; $ openssl pkcs12 -in cert.pfx -out key.pem -nocerts -nodes
  ;; Paths are relative to CUSTOM_PATH
@@ -21,34 +21,39 @@ diff -rub forgejo-src-10.0.0/custom/conf/app.example.ini forgejo-src-10.0.0-patc
  ;;
  ;; Root directory containing templates and static files.
  ;; default is the path where Gitea is executed
--;STATIC_ROOT_PATH = ; Will default to the built-in value _`StaticRootPath`_
+ ;STATIC_ROOT_PATH = ; Will default to the built-in value _`StaticRootPath`_
 +STATIC_ROOT_PATH = /usr/share/forgejo
  ;;
  ;; Default path for App data
--;APP_DATA_PATH = data ; relative paths will be made absolute with _`AppWorkPath`_
-+;APP_DATA_PATH = /var/lib/forgejo/data
+ ;APP_DATA_PATH = data ; relative paths will be made absolute with _`AppWorkPath`_
++APP_DATA_PATH = /var/lib/forgejo/data
  ;;
  ;; Enable gzip compression for runtime-generated content, static resources excluded
  ;ENABLE_GZIP = false
-@@ -303,7 +303,7 @@
- ;ENABLE_PPROF = false
+@@ -304,6 +306,7 @@
  ;;
  ;; PPROF_DATA_PATH, use an absolute path when you start gitea as service
--;PPROF_DATA_PATH = data/tmp/pprof ; Path is relative to _`AppWorkPath`_
+ ;PPROF_DATA_PATH = data/tmp/pprof ; Path is relative to _`AppWorkPath`_
 +PPROF_DATA_PATH = /var/lib/forgejo/data/tmp/pprof
  ;;
  ;; Landing page, can be "home", "explore", "organizations", "login", or any URL such as "/org/repo" or even "https://anotherwebsite.com"
  ;; The "login" choice is not a security measure but just a UI flow change, use REQUIRE_SIGNIN_VIEW to force users to log in.
-@@ -370,7 +370,7 @@
+@@ -355,10 +358,10 @@
  ;;
- ;DB_TYPE = mysql
- ;HOST = 127.0.0.1:3306 ; can use socket e.g. /var/run/mysqld/mysqld.sock
--;NAME = gitea
+ ;; MySQL Configuration
+ ;;
+-DB_TYPE = mysql
+-HOST = 127.0.0.1:3306 ; can use socket e.g. /var/run/mysqld/mysqld.sock
+-NAME = gitea
+-USER = root
++;DB_TYPE = mysql
++;HOST = 127.0.0.1:3306 ; can use socket e.g. /var/run/mysqld/mysqld.sock
 +;NAME = forgejo
- ;USER = root
++;USER = root
  ;PASSWD = ;Use PASSWD = `your password` for quoting if you use special characters in the password.
  ;SSL_MODE = false ; either "false" (default), "true", or "skip-verify"
-@@ -382,7 +382,7 @@
+ ;CHARSET_COLLATION = ; Empty as default, Gitea will try to find a case-sensitive collation. Don't change it unless you clearly know what you need.
+@@ -369,7 +372,7 @@
  ;;
  ;DB_TYPE = postgres
  ;HOST = 127.0.0.1:5432 ; can use socket e.g. /var/run/postgresql/
@@ -57,7 +62,33 @@ diff -rub forgejo-src-10.0.0/custom/conf/app.example.ini forgejo-src-10.0.0-patc
  ;USER = root
  ;PASSWD =
  ;SCHEMA =
-@@ -573,14 +573,14 @@
+@@ -379,21 +382,10 @@
+ ;;
+ ;; SQLite Configuration
+ ;;
+-;DB_TYPE = sqlite3
+-;PATH= ; defaults to data/forgejo.db
+-;SQLITE_TIMEOUT = ; Query timeout defaults to: 500
+-;SQLITE_JOURNAL_MODE = ; defaults to sqlite database default (often DELETE), can be used to enable WAL mode. https://www.sqlite.org/pragma.html#pragma_journal_mode
+-;;
+-;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;
+-;;
+-;; MSSQL Configuration
+-;;
+-;DB_TYPE = mssql
+-;HOST = 172.17.0.2:1433
+-;NAME = gitea
+-;USER = SA
+-;PASSWD = MwantsaSecurePassword1
+-;CHARSET_COLLATION = ; Empty as default, Gitea will try to find a case-sensitive collation. Don't change it unless you clearly know what you need.
++DB_TYPE = sqlite3
++PATH= /var/lib/forgejo/data/forgejo.db ; defaults to data/forgejo.db
++SQLITE_TIMEOUT = ; Query timeout defaults to: 500
++SQLITE_JOURNAL_MODE = ; defaults to sqlite database default (often DELETE), can be used to enable WAL mode. https://www.sqlite.org/pragma.html#pragma_journal_mode
+ ;;
+ ;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;
+ ;;
+@@ -579,14 +571,14 @@
  ;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;
  ;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;
  ;; Root path for the log files - defaults to %(GITEA_WORK_DIR)/log
@@ -74,7 +105,7 @@ diff -rub forgejo-src-10.0.0/custom/conf/app.example.ini forgejo-src-10.0.0-patc
  ;;
  ;; Either "Trace", "Debug", "Info", "Warn", "Error" or "None", default is "Info"
  LEVEL = Info
-@@ -962,7 +962,7 @@
+@@ -946,7 +938,7 @@
  ;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;
  ;; Root path for storing all repository data. By default, it is set to %(APP_DATA_PATH)s/gitea-repositories.
  ;; A relative path is interpreted as _`AppWorkPath`_/%(ROOT)s
@@ -83,7 +114,7 @@ diff -rub forgejo-src-10.0.0/custom/conf/app.example.ini forgejo-src-10.0.0-patc
  ;;
  ;; The script type this server supports. Usually this is `bash`, but some users report that only `sh` is available.
  ;SCRIPT_TYPE = bash
-@@ -1081,7 +1081,7 @@
+@@ -1065,7 +1057,7 @@
  ;ENABLED = true
  ;;
  ;; Path for uploads. Defaults to `data/tmp/uploads` (content gets deleted on gitea restart)
@@ -92,43 +123,42 @@ diff -rub forgejo-src-10.0.0/custom/conf/app.example.ini forgejo-src-10.0.0-patc
  ;;
  ;; Comma-separated list of allowed file extensions (`.zip`), mime types (`text/plain`) or wildcard type (`image/*`, `audio/*`, `video/*`). Empty value or `*/*` allows all types.
  ;ALLOWED_TYPES =
-@@ -1460,7 +1460,7 @@
+@@ -1444,7 +1436,7 @@
  ;ISSUE_INDEXER_TYPE = bleve
  ;;
  ;; Issue indexer storage path, available when ISSUE_INDEXER_TYPE is bleve
 -;ISSUE_INDEXER_PATH = indexers/issues.bleve ; Relative paths will be made absolute against _`AppWorkPath`_.
-+ISSUE_INDEXER_PATH = /var/lib/forgejo/indexers/issues.bleve
++;ISSUE_INDEXER_PATH = /var/lib/forgejo/indexers/issues.bleve ; Relative paths will be made absolute against _`AppWorkPath`_.
  ;;
  ;; Issue indexer connection string, available when ISSUE_INDEXER_TYPE is elasticsearch (e.g. http://elastic:password@localhost:9200) or meilisearch (e.g. http://:apikey@localhost:7700)
  ;ISSUE_INDEXER_CONN_STR =
-@@ -1487,7 +1487,7 @@
+@@ -1471,7 +1463,7 @@
  ;REPO_INDEXER_TYPE = bleve
  ;;
  ;; Index file used for code search. available when `REPO_INDEXER_TYPE` is bleve
 -;REPO_INDEXER_PATH = indexers/repos.bleve
-+REPO_INDEXER_PATH = /var/lib/forgejo/indexers.bleve
++;REPO_INDEXER_PATH = /var/lib/forgejo/indexers/repos.bleve
  ;;
  ;; Code indexer connection string, available when `REPO_INDEXER_TYPE` is elasticsearch. i.e. http://elastic:changeme@localhost:9200
  ;REPO_INDEXER_CONN_STR =
-@@ -1525,7 +1525,7 @@
- ;TYPE = persistable-channel
+@@ -1510,6 +1502,7 @@
  ;;
  ;; data-dir for storing persistable queues and level queues, individual queues will default to `queues/common` meaning the queue is shared.
--;DATADIR = queues/ ; Relative paths will be made absolute against `%(APP_DATA_PATH)s`.
-+DATADIR = /var/lib/forgejo/queues
+ ;DATADIR = queues/ ; Relative paths will be made absolute against `%(APP_DATA_PATH)s`.
++DATADIR = /var/lib/forgejo/queues/
  ;;
  ;; Default queue length before a channel queue will block
  ;LENGTH = 100000
-@@ -1872,7 +1872,7 @@
+@@ -1852,7 +1845,7 @@
  ;; file: session file path, e.g. `data/sessions`
  ;; redis: `redis://127.0.0.1:6379/0?pool_size=100&idle_timeout=180s` (or `redis+cluster://127.0.0.1:6379/0?pool_size=100&idle_timeout=180s` for a Redis cluster)
  ;; mysql: go-sql-driver/mysql dsn config string, e.g. `root:password@/session_table`
 -;PROVIDER_CONFIG = data/sessions ; Relative paths will be made absolute against _`AppWorkPath`_.
-+PROVIDER_CONFIG = /var/lib/forgejo/data/sessions
++;PROVIDER_CONFIG = /var/lib/forgejo/data/sessions ; Relative paths will be made absolute against _`AppWorkPath`_.
  ;;
  ;; Session cookie name
  ;COOKIE_NAME = i_like_gitea
-@@ -1959,7 +1959,7 @@
+@@ -1939,7 +1932,7 @@
  ;;
  ;; Path for attachments. Defaults to `attachments`. Only available when STORAGE_TYPE is `local`
  ;; Relative paths will be resolved to `${AppDataPath}/${attachment.PATH}`
@@ -137,7 +167,7 @@ diff -rub forgejo-src-10.0.0/custom/conf/app.example.ini forgejo-src-10.0.0-patc
  ;;
  ;; Minio endpoint to connect only available when STORAGE_TYPE is `minio`
  ;MINIO_ENDPOINT = localhost:9000
-@@ -1985,7 +1985,7 @@
+@@ -1965,7 +1958,7 @@
  ;MINIO_LOCATION = us-east-1
  ;;
  ;; Minio base path on the bucket only available when STORAGE_TYPE is `minio`
@@ -146,7 +176,7 @@ diff -rub forgejo-src-10.0.0/custom/conf/app.example.ini forgejo-src-10.0.0-patc
  ;;
  ;; Minio enabled ssl only available when STORAGE_TYPE is `minio`
  ;MINIO_USE_SSL = false
-@@ -2568,10 +2568,10 @@
+@@ -2548,10 +2541,10 @@
  ;;
  ;STORAGE_TYPE = local
  ;; override the minio base path if storage type is minio
@@ -159,7 +189,7 @@ diff -rub forgejo-src-10.0.0/custom/conf/app.example.ini forgejo-src-10.0.0-patc
  ;;
  ;; Maximum count of package versions a single owner can have (`-1` means no limits)
  ;LIMIT_TOTAL_OWNER_COUNT = -1
-@@ -2640,10 +2640,10 @@
+@@ -2618,10 +2611,10 @@
  ;STORAGE_TYPE = local
  ;;
  ;; Where your lfs files reside, default is data/lfs.
@@ -172,7 +202,7 @@ diff -rub forgejo-src-10.0.0/custom/conf/app.example.ini forgejo-src-10.0.0-patc
  
  ;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;
  ;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;
-@@ -2663,10 +2663,10 @@
+@@ -2641,10 +2634,10 @@
  ;STORAGE_TYPE = local
  ;;
  ;; Where your lfs files reside, default is data/lfs.

dont-strip.patch

@@ -1,28 +0,0 @@
-diff -rub forgejo-src-9.0.0/Makefile forgejo-src-9.0.0-patched/Makefile
---- forgejo-src-9.0.0/Makefile	2024-10-16 05:56:39.000000000 +0200
-+++ forgejo-src-9.0.0-patched/Makefile	2024-10-17 16:41:54.550837598 +0200
-@@ -803,7 +803,7 @@
- 
- .PHONY: install $(TAGS_PREREQ)
- install: $(wildcard *.go)
--	CGO_CFLAGS="$(CGO_CFLAGS)" $(GO) install -v -tags '$(TAGS)' -ldflags '-s -w $(LDFLAGS)'
-+	CGO_CFLAGS="$(CGO_CFLAGS)" $(GO) install -v -tags '$(TAGS)' -ldflags '$(LDFLAGS)'
- 
- .PHONY: build
- build: frontend backend
-@@ -831,13 +831,13 @@
- 	@echo "NOT NEEDED: THIS IS A NOOP AS OF Forgejo 7.0 BUT KEPT FOR BACKWARD COMPATIBILITY"
- 
- $(EXECUTABLE): $(GO_SOURCES) $(TAGS_PREREQ)
--	CGO_CFLAGS="$(CGO_CFLAGS)" $(GO) build $(GOFLAGS) $(EXTRA_GOFLAGS) -tags '$(TAGS)' -ldflags '-s -w $(LDFLAGS)' -o $@
-+	CGO_CFLAGS="$(CGO_CFLAGS)" $(GO) build $(GOFLAGS) $(EXTRA_GOFLAGS) -tags '$(TAGS)' -ldflags '$(LDFLAGS)' -o $@
- 
- forgejo: $(EXECUTABLE)
- 	ln -f $(EXECUTABLE) forgejo
- 
- static-executable: $(GO_SOURCES) $(TAGS_PREREQ)
--	CGO_CFLAGS="$(CGO_CFLAGS)" $(GO) build $(GOFLAGS) $(EXTRA_GOFLAGS) -tags 'netgo osusergo $(TAGS)' -ldflags '-s -w -linkmode external -extldflags "-static" $(LDFLAGS)' -o $(EXECUTABLE)
-+	CGO_CFLAGS="$(CGO_CFLAGS)" $(GO) build $(GOFLAGS) $(EXTRA_GOFLAGS) -tags 'netgo osusergo $(TAGS)' -ldflags '-linkmode external -extldflags "-static" $(LDFLAGS)' -o $(EXECUTABLE)
- 
- .PHONY: release
- release: frontend generate release-linux release-copy release-compress vendor release-sources release-check

forgejo-src-10.0.0.tar.gz

@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:b1d48d2aafa88f7a4ca8d38d93dc084bb762902d401da2a0b547fb7628b29853
-size 56895191

forgejo-src-10.0.1.tar.gz

@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:3c6be3d48481da4ec38d754bd19ea3696408dbdb575a5648b125f4df4911bcca
-size 56997906

forgejo-src-8.0.3.tar.gz

@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:b543532cf01453967c331063639b172600cccd62d815e6815a4f05a25a0b0795
+size 53477625

forgejo-src-8.0.3.tar.gz.asc

@@ -0,0 +1,7 @@
+-----BEGIN PGP SIGNATURE-----
+
+iHUEABYIAB0WIQTrEU9ebA3CvN0YNVCkthotxZI3EAUCZtsxWAAKCRCkthotxZI3
+EAh8AP90yVVcubO3mXqS/+WHEMdpUTd6jjLt7zMKSX3yHHU2qQEA0p0lql1rQB+Z
+MlThqgELrTiJexK2AbxVadvxRFKBqQc=
+=tHBI
+-----END PGP SIGNATURE-----

forgejo-src-9.0.0.tar.gz

@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:21364d6c1635711189f25da5dc343b3b28e8ade20a5f00202301ccc364adc1d2
-size 53905348

forgejo-src-9.0.0.tar.gz.asc

@@ -1,7 +0,0 @@
------BEGIN PGP SIGNATURE-----
-
-iHUEABYIAB0WIQTrEU9ebA3CvN0YNVCkthotxZI3EAUCZw/5ogAKCRCkthotxZI3
-EKC/AP9zdT9HGtdr1R84h8wJfMQryhV2VHQ0DZIvHL3OJU1OgAEAmT7X00H/MgRB
-oNnConnjMe+xLtIntIFitFFXd971oQ0=
-=JQRz
------END PGP SIGNATURE-----

forgejo-src-9.0.1.tar.gz

@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:6748c49677374947eb619b13f9ede983682ae117b8c0405442cc9afc847c4040
-size 53961959

forgejo-src-9.0.1.tar.gz.asc

@@ -1,7 +0,0 @@
------BEGIN PGP SIGNATURE-----
-
-iHUEABYIAB0WIQTrEU9ebA3CvN0YNVCkthotxZI3EAUCZx+nywAKCRCkthotxZI3
-ENlLAQCGXdYLfhCxIU8bKx+n2hvTvkbJPmPxs7FVhDtggAuq5gEAxubIGrthDqw9
-Qr9g7bvuMR7solGMkjzsB73IHqMsXwU=
-=g0qb
------END PGP SIGNATURE-----

forgejo-src-9.0.2.tar.gz

@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:4de691751256e75258573815f14406905999e991c1d9790c6069dfef47319e1d
-size 53992927

forgejo-src-9.0.2.tar.gz.asc

@@ -1,7 +0,0 @@
------BEGIN PGP SIGNATURE-----
-
-iHUEABYIAB0WIQTrEU9ebA3CvN0YNVCkthotxZI3EAUCZzeoLwAKCRCkthotxZI3
-EH4iAP9XuioervFeW/MxfUHj1/zL2knDYYZAKnuWcPi19BytYwEA3KxcVlrvTgWL
-oZBSoqn0BWtIkmlOtRxDxu8mBGXrRgw=
-=/4OE
------END PGP SIGNATURE-----

forgejo.changes

@@ -1,302 +1,3 @@
--------------------------------------------------------------------
-Sat Feb  8 19:51:39 UTC 2025 - Richard Rahl <rrahl0@opensuse.org>
-
-- update to 10.0.1:
-  * Verify the ID of Forgejo Actions web endpoints belongs to the repository to
-    prevent the deletion of runners or variables or the modification of
-    variables
-  * Enforce permissions on publicly available user or organizations projects to
-    not leak information from issues and pull requests that belong to private
-    repositories
-  * fix(ui): display verified icon for default gpg key
-  * fix: load settings for valid user and email check
-  * Teach the doctor to remove orphaned two_factor with forgejo doctor check --run check-db-consistency --fix
-  * fix: listing tokens must not require basic auth
-
--------------------------------------------------------------------
-Thu Jan 16 15:16:58 UTC 2025 - Richard Rahl <rrahl0@opensuse.org>
-
-- update to 10.0.0:
-  full changelog at https://codeberg.org/forgejo/forgejo/src/branch/forgejo/release-notes-published/10.0.0.md
-  * Fix and refactor markdown rendering
-  * migrate TOTP secrets to keying
-  * Ensure source_id parameter is not skipped when set to 0 and correctly
-    filter users in /api/v1/admin/users endpoint
-  * Rework user profile settings
-  * Rework new repository dialog
-  * Show repository size on mobile
-  * Add links to commit lists in contributors graph page
-  * Add copy path button to file view
-  * Put issue actions in a single row on mobile
-  * Don't display email in profile settings when hidden
-  * Highlight user mention in comments and commit messages
-  * When bleve is used for issue search, a fuzzy search now applies to each
-    word instead of all of them, as if they were a phrase
-  * Add search to releases page
-  * Combine review requests comments
-  * If you select a portion of a comment and use the 'Quote reply' feature in
-    the context menu, only that portion will be quoted
-  * Set "your repositories" as the default filter for org dashboards
-  * Add button to create a Markdown table in a comment
-  * Add a bullet symbol between author and committer
-  * Added link to show all Issues/PullRequests
-  * Fix Action log UI race condition that occasionally prevents logs from loading
-  * Fix wiki search overflowing on wide screens
-  * Move "forgot_password"-link to fix login tab order
-  * Update help links on page with no workflows
-  * Add Low German to list of default languages
-  * i18n: Add dummy language for checking translation keys
-  * Updates for translations
-  * Add summary card for repos and releases
-  * Implement update branch API
-  * Allow changing default branch update style
-  * Add sorting functionality to /api/v1/admin/users endpoint
-  * Add Swift login endpoint
-  * Make LFS http_client parallel within a batch
-  * Improve performance of notifications page for MySQL
-  * Filepath filter for code search
-  * Add option to disable builtin authentication
-  * Add github compatible tarball download API endpoints
-  * Improve performance of allowed org repo creation query
-  * Allow the actions user to login via the jwt token
-  * Add a "summary card" to issues & PRs for consumption by OpenGraph clients
-  * Add a doctor check to disable the "Actions" unit for mirrors
-  * Make AVIF Images work with Forgejo
-  * Trim spaces from repo names on form submission
-  * Add new [lfs_client].BATCH_SIZE and [server].LFS_MAX_BATCH_SIZE config settings.
-  * Add setting to block disposable emails
-  * mermaid: Add the Kanban board diagram type.
-  * mermaid: Class diagram includes a new "classBox" shape, classDef statement,
-    support for styling the default class and lollipop interfaces.
-  * Add DISABLE_ORGANIZATIONS_PAGE and DISABLE_CODE_PAGE settings for explore pages
-  * Add branch deletion for scheduled PRs
-  * The requested_reviewers data is included in more webhook events.
-  * Support migrating GitHub/GitLab PR draft status.
-  * Language detection in the repository learned about the following languages:
-    - Java Template Engine, Noir, Cylc, iCalendar, vCard (aka. VCF: Virtual
-      Contact File) and Variant Call Format (VCF), B4X, Carbon, LiveCode
-      Script, Dune (OCaml build system)
-  * Allow filtering pull requests by poster in the API.
-  * Add support for searching users by email.
-  * New mermaid flowchart shapes.
-  * Code search results when using the bleve indexer are sorted by relevance.
-  * Add bin to Composer Metadata.
-  * Support regexp in git-grep search
-  * Git notes can be modified via the API or the UI
-
--------------------------------------------------------------------
-Fri Dec 13 05:19:57 UTC 2024 - Richard Rahl <rrahl0@opensuse.org>
-
-- update to 9.0.3:
-  * When Forgejo is configured to run the internal ssh server with
-    [server].START_SSH_SERVER=true, it was possible for a registered user to
-    impersonate another user
-  * Revert "allow synchronizing user status from OAuth2 login providers" Fix
-  * wiki search overflowing on wide screens Do not rewrite ssh keys files when
-  * deleting a user without one fix: doctor fails with pq: syntax error at or
-  * near "." whilst counting
-    Authorization token without existing User
-  * fix: Do not delete global Oauth2 applications Strict matching of allowed
-  * content for sanitizer for asciicast
-    and csv rendering
-  * fix: remove softbreak from github legacy callout fix: correct permission
-  * loading for limited organisation fix: clean up log files that no longer
-  * exist fix: return correct type in GetSubModule Improve Swagger documentation
-  * for user endpoints fix: normalize guessed languages from enry Show page
-  * titles in wiki search results fix(test): TestGitAttributeCheckerError must
-  * allow broken pipe fix: check read permissions for code owner review requests
-  * fix: use better code to group UID and stopwatches fix: api repo compare with
-  * commit hashes bug: correctly generate oauth2 jwt signing key
-- disable gpg verification for this release
-
--------------------------------------------------------------------
-Sat Nov 16 03:16:51 UTC 2024 - Richard Rahl <rrahl0@opensuse.org>
-
-- update to 9.0.2:
-  * it was possible to use a token sent via email for secondary email validation
-    to reset the password instead. In other words, a token sent for a given
-    action (registration, password reset or secondary email validation) could
-    be used to perform a different action.
-  * a fork of a public repository would show in the list of forks, even if its
-    owner was not a public user or organization.
-  * the members of an organization team with read access to a repository (e.g.
-    to read issues) but no read access to the code could read the RSS or atom
-    feeds which include the commit activity. Reading the RSS or atom feeds is
-    now denied unless the team has read permissions on the code.
-  * the tokens used when replying by email to issues or pull requests were
-    weaker than the rfc2104 recommendations.
-  * a registered user could modify the update frequency of any push mirror.
-  * it was possible to use basic authorization (i.e. user:password) for requests
-    to the API even when security keys were enrolled for a user.
-  * some markup sanitation rules were not as strong as they could be.
-  * when Forgejo is configured to enable instance wide search (e.g. with bleve),
-    results found in the repositories of private or limited users were displayed
-    to anonymous visitors.
-  * fix: handle renamed dependency for cargo registry.
-  * support www.github.com for migrations.
-  * move forgot_password-link to fix login tab order.
-  * code owners will not be mentioned when a pull request comes from a forked
-    repository.
-  * labels are missing in the pull request payload removing a label.
-  * in a Forgejo Actions workflow, the unlabeled event type for pull requests
-    was incorrectly mapped to the labeled event type.
-  * when a Forgejo Actions issue or pull request workflow is triggered by an
-    labeled or unlabeled event type, it misses information about the label added
-    or removed. It is now available in the label data member of the event payload.
-  * pull request workflow must always update the head SHA commit status.
-  * fix git-grep for code search when git version is below 2.38.
-
--------------------------------------------------------------------
-Mon Oct 28 17:09:05 UTC 2024 - Richard Rahl <rrahl0@opensuse.org>
-
-- update to 9.0.1:
-  * Forgejo generates a token which is used to authenticate web endpoints that
-    are only meant to be used internally, for instance when the SSH daemon is
-    used to push a commit with Git. The verification of this token was not done
-    in constant time and was susceptible to timing attacks.
-  * Because of a missing permission check, the branch used to propose a pull
-    request to a repository can always be deleted by the user performing the merge.
-  * Fix boolean inputs in workflow_dispatch
-  * package arch database not updating when uploading "any" architecture
-  * correct SQL query for active issues
-  * specify default value for EXPLORE_DEFAULT_SORT.
-  * fix: Add recentupdated as recognized sort option
-  * Update dependency mermaid to v11.3.0 (v9.0/forgejo)
-  * Always update expiration time when creating an artifact
-  * Update scheduled tasks even if changes are pushed by "ActionsUser"
-  * Fix disable 2fa bug
-  * i18n: update of translations from Codeberg Translate
-  * fix: make branch protection work for new branches
-  * link to security policy in security.txt
-  * fix: don't show truncated comments in RSS/Atom feeds
-  * fix: typo on releases for source code downloads
-  * Revert "add gap between branch dropdown and PR button"
-  * fix: Don't double escape delete branch text
-  * fix: Add server logging for OAuth server errors
-  * forgejo-cli is now a symlink and cannot be used for sanity checks
-  * fix: correct documentation for non 200 responses in swagger
-- forgejo is since 9.0.0 GPL-3.0-or-later
-
--------------------------------------------------------------------
-Thu Oct 17 14:52:33 UTC 2024 - Richard Rahl <rrahl0@opensuse.org>
-
-- update to 9.0.0:
-  * OIDC integrations that POST to /login/oauth/introspect without sending HTTP
-    basic authentication will now fail
-  * The public scope of an application token does not filter out private repositories,
-    organizations or packages in some cases
-  * Drop support to build Forgejo with the optional go-git Git backend
-  * Set created_by as the default filter for /issues and /pulls
-  * Set fuzzy as default for issue search.
-  * Improve commit graph layout.
-  * Add support for iconify icons.
-  * Allow multi-line relationship labels.
-  * Adds architecture diagrams which allows users to show relations between services.
-  * Improve diffs generated by Forgejo.
-  * Add rel="nofollow" to in-list labels.
-  * Distinguish between new tags, releases and pre-releases on activity page.
-  * Highlighted code search results.
-  * Refactor repo migration items.
-  * Add package counter to repo/user/org overview pages.
-  * Replace vue-bar-graph with chart.js.
-  * Add more emoji and code block rendering in issues.
-  * Bad spacing on new release page.
-  * Milestone assignment in new issue.
-  * git-grep: ensure bounded default for MatchesPerFile.
-  * Incorrect go to citation button.
-  * Incorrect HTMX support for profile card.
-  * Accessibility keyboard support for test actions.
-  * Update pull request icons.
-  * "Assign to me" button on PR and Issues.
-  * Add architecture-specific removal support for arch package.
-  * Add bin to Composer Metadata.
-  * Internationalization user experience improvements on team permissions and issue closing.
-  * Support allowed hosts for migrations to work with proxy.
-  * Trivial default quota configuration.
-  * Language detection in the repository learned about the following languages:
-    Luau, BQN, Cron table, NMODL, Pkl, templ, FIRRTL, Julia REPL, Caddyfile.
-  * The following extensions or filenames in a repository are associated with the matching language:
-    .sublime-color-scheme, MODULE.bazel.lock, Cargo.toml.orig, tsx, justfile, .zig.zon, .envrc.
-  * Remove support for Couchbase as a session provider; it instead will now fallback to the file provider.
-  * git-grep: allow searching for words with initial dashes.
-  * git-grep: skip binary files.
-  * Forgejo Actions logs are compressed by default.
-  * Support grouping by any path for arch package.
-  * Remove expensive nearest branch calculatations ($.BranchName) from commit diff view
-  * Allow push mirrors to use a SSH key as the authentication method for the mirroring action
-    instead of using user:password authentication.
-  * Use UTC as a timezone when running scheduled actions tasks.
-  * The actions logs older than [actions].LOG_RETENTION_DAYS days are removed (the default is 365).
-  * Add signature support for the RPM module.
-  * Allow color and background-color style properties for table cells.
-  * support pull_request_target event for commit status.
-  * support delete user email in admin panel.
-  * Notify owner about TOTP enrollment.
-  * Email notifications are now sent when account security changes are made: password changed
-  * Enable INVALIDATE_REFRESH_TOKENS.
-  * Sort milestones by name by default instead of the due date.
-  * allow synchronizing user status from OAuth2 login providers.
-  * add option to change mail from user display name.
-  * issue Templates: add option to have dropdown printed list.
-  * the default setting attachment.ALLOWED_TYPES was adjusted to allow .webp attachments in issues
-  * Convert milestone to HTMX.
-  * Use the full user name in emails to address the recipient, when available.
-  * Enhancing OAuth2 Provider with Granular Scopes for Resource Access.
-  * Display URLs in .sh-session files.
-  * The caching of contributor stats was improved
-  * Add support for LFS server implementations which have batch API responses in an older/deprecated schema.
-  * Forgejo Actions artifacts support range requests to resume a download.
-  * Added the foundations of a flexible, configurable quota system.
-  * Logs journald integration.
-  * A release asset can be a URL instead of a file.
-  * Don't allow owner team with incorrect unit access (includes doctor fix).
-  * Schedule workflows are canceled when pushing to the default branch.
-  * Incorrect Discord webhook JSON for issue events.
-  * wrong last modify time.
-  * Repo Activity: count new issues that were closed.
-  * incorrect /tokens API.
-  * Do not escape relative path in RPM primary index.
-  * Handle invalid target when creating releases using API.
-  * /repos/{owner}/{repo}/pulls/{index}/files endpoint not populating previous_filename.
-  * Improve textarea paste.
-  * Handle "close" actionable references for manual merges.
-  * Team admins are allowed to search team members via the API.
-  * Don't return 500 if mirror url contains special chars.
-  * Agit automerge is not working properly.
-  * Improve the display of PR & issue short links.
-  * Migrate scoped GitLab labels as scoped Forgejo labels.
-  * /repos/{owner}/{repo}/pulls/{index} requested_reviewers contains null for teams.
-  * Validate title length when updating an issue.
-  * Hide the "Details" link of commit status when the user cannot access actions.
-  * Runner registration token via API is broken for repo level runners.
-  * Deleted projects causes bad popover text on issues.
-  * Distinguish LFS object errors to ignore missing objects during migration.
-  * When viewing the revision history of wiki pages, the pagination links are broken
-  * Also rename the head branch of open pull requests when renaming a branch.
-  * add return type to GetRawFileOrLFS and GetRawFile.
-  * properly filter issue list given no assignees filter.
-  * Cron task to cleanup dangling container images with version sha256:*.
-  * Allow updates to runners' secrets.
-  * Do not fire webhook notifications for updates and deletions of comments that are part of an ongoing review
-  * Fixed social media previews for links to wiki pages.
-  * Updated translations
-  * Improve the clarity of confirmation in email messages.
-  * Fine tune language for units.
-  * Improve translation strings for webhook events.
-  * Allow different translations of creation links and titles.
-  * English strings improvements for internationalization.
-
--------------------------------------------------------------------
-Wed Oct  9 13:22:28 UTC 2024 - Richard Rahl <rrahl0@opensuse.org>
-
-- add dont-strip.patch for not stripping the main binary (so we can
-  create debuginfo package)
-
--------------------------------------------------------------------
-Wed Oct  9 05:46:17 UTC 2024 - Tuukka Pasanen <tuukka.pasanen@ilmi.fi>
-
-- Add package environment-to-ini for OCI containers
-
 -------------------------------------------------------------------
 Tue Sep 10 07:49:29 UTC 2024 - Richard Rahl <rrahl0@opensuse.org>
 

forgejo.spec

@@ -1,7 +1,7 @@
 #
 # spec file for package forgejo
 #
-# Copyright (c) 2025 SUSE LLC
+# Copyright (c) 2024 SUSE LLC
 #
 # All modifications and additions to the file contributed by third parties
 # remain the property of their copyright owners, unless otherwise agreed
@@ -30,16 +30,15 @@
 %endif
 %endif
 Name:           forgejo
-Version:        10.0.1
+Version:        8.0.3
 Release:        0
 Summary:        Self-hostable forge
-License:        GPL-3.0-or-later
+License:        MIT
 Group:          Development/Tools/Version Control
 URL:            https://forgejo.org
 Source0:        https://codeberg.org/%{name}/%{name}/releases/download/v%{version}/%{name}-src-%{version}.tar.gz
-# something is broken with the verification, works fine manually
-#Source1:        https://codeberg.org/%{name}/%{name}/releases/download/v%{version}/%{name}-src-%{version}.tar.gz.asc
-#Source2:        https://keyserver.ubuntu.com/pks/lookup?op=get&search=0xeb114f5e6c0dc2bcdd183550a4b61a2dc5923710#/%{name}.keyring
+Source1:        https://codeberg.org/%{name}/%{name}/releases/download/v%{version}/%{name}-src-%{version}.tar.gz.asc
+Source2:        http://keyserver.ubuntu.com/pks/lookup?op=get&search=0xeb114f5e6c0dc2bcdd183550a4b61a2dc5923710#/%{name}.keyring
 Source3:        package-lock.json
 Source4:        node_modules.spec.inc
 %include        %{_sourcedir}/node_modules.spec.inc
@@ -52,9 +51,8 @@ Source10:       %{name}.apparmor
 Source11:       %{name}.firewalld
 Source99:       get-sources.sh
 Patch0:         custom-app.ini.patch
-Patch1:         dont-strip.patch
 BuildRequires:  golang-packaging
-BuildRequires:  golang(API) = 1.23
+BuildRequires:  golang(API) = 1.22
 ## node >= 20
 %if 0%{?suse_version} == 1500
 BuildRequires:  nodejs-devel-default
@@ -113,24 +111,9 @@ Requires:       selinux-policy-targeted
 This package adds SELinux enforcement to %{name}.
 %endif
 
-%package environment-to-ini
-Summary:        Configuration params via environment variables for %{name}
-Requires:       %{name} = %{version}-%{release}
-
-%description environment-to-ini
-OCI Container users can change arbitrary configuration
-via environment variables with this tool
-
-Forgejo needs to use an ini file for configuration because the running
-environment that starts the OCI container may not be the same as that used
-by the hooks. An ini file also gives a good default and means that
-users do not have to completely provide a full environment.
-
 %description
-Providing Git hosting for your project, friends, company or community? Forgejo
-(/for'd͡ʒe.jo/ inspired by forĝejo – the Esperanto word for forge) has you
-covered with its intuitive interface, light and easy hosting and a lot of
-builtin functionality.
+Providing Git hosting for your project, friends, company or community? Forgejo (/for'd͡ʒe.jo/ inspired by forĝejo
+– the Esperanto word for forge) has you covered with its intuitive interface, light and easy hosting and a lot of builtin functionality.
 
 %prep
 %autosetup -p1 -n %{name}-src-%{version}
@@ -138,16 +121,14 @@ local-npm-registry %{_sourcedir} install --also=dev
 
 %build
 %sysusers_generate_pre %{SOURCE6} %{name} %{name}.conf
-export TAGS="bindata timetzdata sqlite sqlite_unlock_notify"
 export EXTRA_GOFLAGS="-buildmode=pie -mod=vendor"
+export TAGS="bindata timetzdata sqlite sqlite_unlock_notify"
 %make_build build
-go build ${EXTRA_GOFLAGS} -o contrib/environment-to-ini/environment-to-ini contrib/environment-to-ini/environment-to-ini.go
 
 %install
 install -d %{buildroot}%{_bindir}
 install -d %{buildroot}%{_datadir}/%{name}
 install -d %{buildroot}%{_datadir}/%{name}/{conf,https,mailer}
-install -Dm0755 contrib/environment-to-ini/environment-to-ini %{buildroot}%{_bindir}
 ln -s %{name} %{buildroot}%{_bindir}/gitea
 install -d %{buildroot}%{_sharedstatedir}/%{name}/{data,https,indexers,queues,repositories}
 install -d %{buildroot}%{_sysconfdir}/%{name}
@@ -200,6 +181,10 @@ semodule -r %{name} 2>/dev/null || :
 %postun
 %service_del_postun %{name}.service
 
+%check
+#as of now, broken
+#%%make_build test
+
 %files
 %license LICENSE
 %doc README.md RELEASE-NOTES.md CONTRIBUTING.md
@@ -231,7 +216,4 @@ semodule -r %{name} 2>/dev/null || :
 %files firewalld
 %{_prefix}/lib/firewalld/services/%{name}.xml
 
-%files environment-to-ini
-%{_bindir}/environment-to-ini
-
 %changelog

node_modules.obscpio

@@ -1,3 +1,3 @@
 version https://git-lfs.github.com/spec/v1
-oid sha256:dc57741d1c3deeec7d2dca960342eb9cfcc1bf8fd3b7385564bc317e9c44a31d
-size 206754640
+oid sha256:dd1ad2428c1b1e75e403b81f397718994274d5f918e686ab3cf7b58386f4afb7
+size 276615400