Movatterモバイル変換

[0]ホーム
URL:

Alert GO-2024-3228: Coder vulnerable to post-auth URL redirection to untrusted site ('Open Redirect') in github.com/coder/coder
Notice  The highest tagged major version isv2.

site

package
v0.27.3Latest Latest
Warning

This package is not in the latest version of its module.

Go to latest Published: Aug 1, 2023 License:AGPL-3.0Imports:38Imported by:0

Details

Repository

github.com/coder/coder

Links

Documentation

Index

Constants

This section is empty.

Variables

This section is empty.

Functions

funcExtractOrReadBinFSadded inv0.7.4

func ExtractOrReadBinFS(deststring, siteFSfs.FS) (http.FileSystem, map[string]string,error)

ExtractOrReadBinFS checks the provided fs for compressed coder binaries andextracts them into dest/bin if found. As a fallback, the provided FS ischecked for a /bin directory, if it is non-empty it is returned. Finallydest/bin is returned as a fallback allowing binaries to be manually placed indest (usually ${CODER_CACHE_DIRECTORY}/site/bin).

Returns a http.FileSystem that serves unpacked binaries, and a map of binaryname to SHA1 hash. The returned hash map may be incomplete or contain hashesfor missing files.

funcFSadded inv0.6.1

func FS()fs.FS

funcRenderStaticErrorPageadded inv0.9.3

func RenderStaticErrorPage(rwhttp.ResponseWriter, r *http.Request, dataErrorPageData)

RenderStaticErrorPage renders the static error page. This is used by apprequests to avoid dependence on the dashboard but maintain the ability torender a friendly error page on subdomains.

funcShouldCacheFileadded inv0.6.1

func ShouldCacheFile(reqFilestring)bool

Types

typeErrorPageDataadded inv0.9.3

type ErrorPageData struct {Statusint// HideStatus will remove the status code from the page.HideStatusboolTitlestringDescriptionstringRetryEnabledboolDashboardURLstring}

ErrorPageData contains the variables that are found insite/static/error.html.

typeHandleradded inv0.6.1

type Handler struct {AppearanceFetcher func(ctxcontext.Context) (codersdk.AppearanceConfig,error)// RegionsFetcher will attempt to fetch the more detailed WorkspaceProxy data, but will fall back to the// regions if the user does not have the correct permissions.RegionsFetcher func(ctxcontext.Context) (any,error)Entitlementsatomic.Pointer[codersdk.Entitlements]Experimentsatomic.Pointer[codersdk.Experiments]// contains filtered or unexported fields}

funcNewadded inv0.25.0

func New(opts *Options) *Handler

func (*Handler)ServeHTTPadded inv0.25.0

func (h *Handler) ServeHTTP(rwhttp.ResponseWriter, r *http.Request)

typeOptionsadded inv0.25.0

type Options struct {BinFShttp.FileSystemBinHashes     map[string]stringDatabasedatabase.StoreSiteFSfs.FSOAuth2Configs *httpmw.OAuth2ConfigsDocsURLstring}

Source Files

View all Source files

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f orF : Jump to
y orY : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic.Learn more.
[8]ページ先頭
©2009-2025 Movatter.jp