Ryo Kusnadi
fa70db801e
Add Skipper Unit Test In BasicBasicAuthConfig and Add More Detail Explanation regarding BasicAuthValidator ( #2461 )
...
* Add Skipper Unit Test In BasicBasicAuthConfig and Add More detail explanation regarding BasicAuthValidator
* Simplify Skipper Unit Test
2024-02-18 15:47:13 +02:00
Georg Müller
ea529bbab6
binder: allow binding to a nil map
2024-02-13 20:16:18 +02:00
toim
29aab274b3
In Go 1.22 finding name of function with reflection has changed. change tests to work with that.
2024-02-07 07:54:21 +02:00
toim
51c54f4734
CI: Use Go 1.22
2024-02-07 07:54:21 +02:00
Suwon Chae
76994d17d5
Remove default charset from 'application/json' Content-Type header ( #2568 )
...
Fixes #2567
2024-02-06 07:41:33 +02:00
Martti T
f12fdb09cd
CI: upgrade actions/checkout to v4 and actions/setup-go to v5 ( #2584 )
...
* CI: upgrade actions/checkout to v4
* CI: upgrade actions/setup-go to v5
2024-01-28 17:16:51 +02:00
Martti T
b835498241
Reorder paragraphs in README.md ( #2581 )
2024-01-24 07:45:40 -08:00
Marcus Kohlberg
d262120690
README.md: add Encore as sponsor ( #2579 )
...
There wasn't a sponsors section so I had to design one, hope you think it makes sense.
2024-01-22 19:26:05 -08:00
Martti T
60fc2fb1b7
binder: make binding to Map work better with string destinations ( #2554 )
2023-12-20 15:32:51 +02:00
Martti T
226e4f076a
Changelog for v4.11.4 ( #2564 )
...
Changelog for v4.11.4
2023-12-20 15:24:30 +02:00
Martti T
209c6a199a
Update deps and mark Go version to 1.18 as this is what golang.org/x/* use. ( #2563 )
2023-12-20 15:17:20 +02:00
Nicu Maxian
287a82c228
Upgrade golang.org/x/crypto to v0.17.0 to fix vulnerability issue ( #2562 )
...
Co-authored-by: Nicu MAXIAN <nicu@numeral.io>
2023-12-19 18:07:23 +02:00
Martti T
584cb85a6b
request logger: add example for Slog https://pkg.go.dev/log/slog ( #2543 )
2023-11-07 15:09:43 +02:00
Martti T
4b26cde851
Changelog for v4.11.3 ( #2542 )
2023-11-07 14:19:32 +02:00
Martti T
14daeb9680
Security: c.Attachment and c.Inline should escape name in Content-Disposition
header to avoid 'Reflect File Download' vulnerability. ( #2541 )
...
This is same as Go std does it 9d836d41d0/src/mime/multipart/writer.go (L132)
2023-11-07 14:10:06 +02:00
Martti T
50ebcd8d7c
refactor context tests to be separate functions ( #2540 )
2023-11-07 13:40:22 +02:00
Kai Ratzeburg
c7d6d4373f
proxy middleware: reuse echo request context ( #2537 )
2023-11-05 18:01:01 +02:00
Martti T
69a0de8415
Mark unmarshallable yaml struct tags as ignored ( #2536 )
2023-10-24 21:12:13 +03:00
Martti T
98a523756d
Changelog for v4.11.2 ( #2529 )
2023-10-11 08:32:23 +03:00
Štefan Baebler
89ae0e5f2c
Bump dependancies ( #2522 )
...
Bump:
* golang.org/x/net v0.12.0 -> v0.15.0
* golang.org/x/crypto v0.11.0 -> v0.13.0
* github.com/stretchr/testify v1.8.1 -> v1.8.4
go mod tidy
2023-10-11 07:47:09 +03:00
Štefan Baebler
5780908c7c
Fix CVE-2023-39325 / CVE-2023-44487 ( #2527 )
...
Bump golang.org/x/net from v0.12.0 to v0.17.0
Related:
* https://github.com/golang/go/issues/63417
* https://www.cve.org/CVERecord?id=CVE-2023-44487
2023-10-11 07:14:52 +03:00
Martti T
4bc3e475e3
cors middleware: allow sending Access-Control-Max-Age: 0
value with config.MaxAge being negative number. ( #2518 )
2023-09-19 08:24:47 +03:00
eiei114
3950c444b7
fix some typos ( #2511 )
2023-09-13 22:41:58 +03:00
Martti T
77d5ae6a91
Use Go 1.21 in CI ( #2505 )
2023-08-12 09:01:30 +03:00
Trim21
e6b96f8873
docs: add comments to util.go randomString
( #2494 )
...
* Update util.go
2023-07-22 23:47:35 +03:00
Trim21
b3ec8e0fdd
fix(sec): randomString
bias ( #2492 )
...
* fix(sec): `randomString` bias when using bytes vs int64
* use pooled buffed random reader
2023-07-22 07:08:34 +03:00
toimtoimtoim
626f13e338
CSRF/RequestID mw: switch math/random usage to crypto/random
2023-07-21 13:10:56 +03:00
Mobina Noori
3f8ae15b57
delete unused context in body_limit.go ( #2483 )
...
* delete unused context in body_limit.go
---------
Co-authored-by: mobinanoori018 <mobinanoori21@gmail.com>
2023-07-21 11:07:25 +03:00
Vishal Rana
4598a4a745
Update README.md
2023-07-18 09:20:05 -07:00
Vishal Rana
18d32589cd
Update README.md
2023-07-18 08:51:02 -07:00
toimtoimtoim
a2e7085094
Changelog for v4.11.1
2023-07-16 20:41:57 +03:00
toimtoimtoim
130be07425
fix gzip not sending response code for no content responses (404, 301/302 redirects etc)
2023-07-16 20:35:09 +03:00
toimtoimtoim
60af056959
Changelog for v4.11.0
2023-07-14 23:18:22 +03:00
toimtoimtoim
ac7a9621a1
bump version to 4.10.0
2023-07-14 23:18:22 +03:00
Martti T
1ee8e22faa
do not use global timeNow variables ( #2477 )
2023-07-11 23:36:05 +03:00
bahdanmelchankatote
44ead54c8c
Upgrade packages ( #2475 )
2023-07-10 12:24:39 +03:00
Ingo Oppermann
42f07ed880
gzip response only if it exceeds a minimal length ( #2267 )
...
* gzip response only if it exceeds a minimal length
If the response is too short, e.g. a few bytes, compressing the
response makes it even larger. The new parameter MinLength to the
GzipConfig struct allows to set a threshold (in bytes) as of which
response size the compression should be applied. If the response
is shorter, no compression will be applied.
2023-05-31 08:53:33 +03:00
Martin Desrumaux
fbfe2167f1
fix(DefaultHTTPErrorHandler): return error message when message is an error ( #2456 )
...
* fix(DefaultHTTPErrorHandler): return error message when message is an error
2023-05-29 23:26:53 +03:00
toimtoimtoim
8e425c0431
gofmt fixes to comments
2023-05-12 22:14:29 +03:00
mikemherron
0ae74648b9
Support retries of failed proxy requests ( #2414 )
...
Support retries of failed proxy requests
2023-05-12 20:36:24 +03:00
Samuel Berthe
deb17d2388
Doc: adding slog.Handler for Echo logging
2023-05-01 09:01:36 +03:00
cui fliter
0d47b7e6a9
fix misuses of a vs an
...
Signed-off-by: cui fliter <imcusg@gmail.com>
2023-04-22 21:37:45 +03:00
Mihard
7d54690cdc
Proper colon support in reverse ( #2416 )
...
* Adds support of the escaped colon in echo.Reverse
---------
Co-authored-by: Mihard <mihard@webird.ru>
2023-04-16 21:13:47 +03:00
Simba Peng
de1c798143
Check whether is nil before invoking centralized error handling.
2023-04-15 21:48:33 +03:00
imxyb
a7802ea523
add supprt for go1.20 http.rwUnwrapper
2023-04-06 13:37:41 +03:00
imxyb
c0bc886b78
refactor: use strings.ReplaceAll directly
2023-03-31 20:59:08 +03:00
ivansmaliakou
f22ba6725c
documentation: changed description for Bind()
method of Context interface
. Because Bind()
` binds not only request body, but also path and query params
2023-03-16 07:46:03 +02:00
toimtoimtoim
ec642f7df1
Fix group.RouteNotFound not working when group has attached middlewares
2023-03-02 23:14:52 +02:00
Becir Basic
5b36ce3612
Fixes the concurrency issue of calling the Next()
proxy target on RRB ( #2409 )
...
* Fixes the concurrency issue of calling the `Next()` proxy target on round robin balancer
- fixed concurrency issue in `AddTarget()`
- moved `rand.New()` to the random balancer initializer func.
- internal code reorganized eliminating unnecessary pointer redirection
- employing `sync.Mutex` instead of `RWMutex` which brings additional overhead of tracking readers and writers. No need for that since the guarded code has no long-running operations, hence no realistic congestion.
- added additional guards without which the code would otherwise panic (e.g., the case where a random value is calculation when targets list is empty)
- added descriptions for func return values, what to expect in which case.
- Improve code test coverage
---------
Co-authored-by: Becir Basic <bb@neotel.at>
2023-02-24 20:32:41 +02:00
Omkar
1e575b7b56
Added a optional config variable to disable centralized error handler in recovery middleware ( #2410 )
...
Added a config variable to disable centralized error handler in recovery middleware
2023-02-24 13:09:40 +02:00