Gusted 1c64bad453 fix: improve OAuth2 experience (#11715) ... - fix: show oauth2 retrieve error - `true` indicates it only should be shown when the page is rendered directly via `ctx.HTML` and not propagated if it redirects. As you can see this always redirects and means the error is not shown. - Has the funny behavior that you get redirected to `/user/login` without any indication what went wrong, no errors in the logs either. - fix: pre-process OAuth2 client ID and secret - Spaces should are not appropriate for these input, remove them. - Manually copying and pasting client ID and secret from Github OAuth2 applications seems prone to introduce whitespaces. - The error of having a incorrect client ID is more noticeable (404 page for the user). - The error of having a incorrect client secret is not noticeable (404 page for the goth library but no mention it's the wrong secret). Reported-by: marijnh Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11715 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Reviewed-by: Andreas Ahlenstorf <aahlenst@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>		2026-03-17 18:44:23 +01:00
..
api	feat: expose attempt number of ActionRunJob in HTTP API (#11687)	2026-03-17 02:58:34 +01:00
common	chore: fix typos throughout the codebase (#10753)	2026-01-26 22:57:33 +01:00
install	fix: don't clobber authorized_keys file during installation (#10948)	2026-01-23 18:38:09 +01:00
private	refactor: replace ActionRunnerToken.OwnerID & RepoID with optional.Option[int64] (#11601)	2026-03-10 03:19:16 +01:00
utils	[PORT] drop utils.IsExternalURL (and expand IsRiskyRedirectURL tests) (#3167)	2024-04-15 13:03:08 +00:00
web	fix: improve OAuth2 experience (#11715)	2026-03-17 18:44:23 +01:00
init.go	fix: don't clobber authorized_keys file during installation (#10948)	2026-01-23 18:38:09 +01:00