MokoConsulting/MokoGitea-Fork
1
0
Fork 0
Code Issues 162 Pull Requests Releases 96 Wiki Activity

feat: make metadata/manifest GET endpoint publicly accessible (#676) #677

Closed
jmiller wants to merge 1 commits from fix/676-public-metadata into main
pull from: fix/676-public-metadata
merge into: :main
Conversation 0 Commits 1 Files Changed 1
+4 -6
jmiller commented 2026-06-21 15:07:58 +00:00
Owner
Copy Link
Copy Source

Summary\n\nRemoves reqRepoReader auth requirement from GET /repos/{owner}/{repo}/metadata and /manifest endpoints, making them publicly accessible for public repos without authentication.\n\n## Changes\n\n- routers/api/v1/api.go: Split Combo routes into separate Get/Put routes\n- GET: no auth required (public repos accessible anonymously)\n- PUT: still requires reqToken() + reqAdmin()\n\n## Why\n\n- CI workflows need platform type without a token\n- Package registries need version info\n- Metadata is non-sensitive (version, platform, element name)\n- Matches existing pattern (badges are already public)\n\nCloses #676

## Summary\n\nRemoves `reqRepoReader` auth requirement from GET `/repos/{owner}/{repo}/metadata` and `/manifest` endpoints, making them publicly accessible for public repos without authentication.\n\n## Changes\n\n- `routers/api/v1/api.go`: Split `Combo` routes into separate `Get`/`Put` routes\n- GET: no auth required (public repos accessible anonymously)\n- PUT: still requires `reqToken()` + `reqAdmin()`\n\n## Why\n\n- CI workflows need platform type without a token\n- Package registries need version info\n- Metadata is non-sensitive (version, platform, element name)\n- Matches existing pattern (badges are already public)\n\nCloses #676
jmiller added 1 commit 2026-06-21 15:07:59 +00:00
feat: make metadata/manifest GET endpoint publicly accessible (#676)
Universal: PR Check / Build RC Package (pull_request) Blocked by required conditions
Details
Universal: PR Check / Report Issues (pull_request) Blocked by required conditions
Details
Generic: Repo Health / Scripts governance (pull_request) Blocked by required conditions
Details
Generic: Repo Health / Repository health (pull_request) Blocked by required conditions
Details
Generic: Repo Health / Report Issues (pull_request) Blocked by required conditions
Details
Universal: PR Check / Branch Policy (pull_request) Failing after 1s
Details
Generic: Repo Health / Site Health (pull_request) Has been skipped
Details
Generic: Repo Health / Access control (pull_request) Successful in 2s
Details
Universal: PR Check / Validate PR (pull_request) Failing after 7s
Details
Branch Cleanup / Delete merged branch (pull_request) Has been skipped
Details
RC Revert / Rename rc/ back to dev/ (pull_request) Has been skipped
Details
Universal: Workflow Sync Trigger / Sync workflows to live repos (pull_request) Has been skipped
Details
Universal: Auto Version Bump / Version Bump (push) Successful in 10s
Details
PR RC Release / Build RC Release (pull_request) Failing after 1m2s
Details
Universal: PR Check / Secret Scan (pull_request) Successful in 1m3s
Details
Universal: Pre-Release / Build Pre-Release (${{ inputs.stability || github.ref_name }}) (push) Successful in 35s
Details
Universal: Build & Release / Promote to RC (pull_request) Has been skipped
Details
Universal: Build & Release / Build & Release Pipeline (pull_request) Has been skipped
Details
Publish to Composer / Publish Package (release) Failing after 22s
Details
f570e3e488 
Remove reqRepoReader auth requirement from GET /repos/{owner}/{repo}/metadata
and /manifest endpoints. PUT (update) still requires token + admin.
jmiller closed this pull request 2026-06-21 15:08:18 +00:00
jmiller deleted branch fix/676-public-metadata 2026-06-21 15:08:18 +00:00

Pull request closed

This pull request cannot be reopened because the branch was deleted.
Sign in to join this conversation.
Reviewers
No Reviewers
Labels
Clear labels
breaking-change
Breaking API or behavior change
 ci-cd
CI/CD pipeline changes
 config
Configuration changes
 dependencies
Dependency updates
 deploy-failure
Deployment failed
 docker
Docker/container changes
 documentation
Documentation changes
 feature: wiki
Wiki system enhancements
 good first issue
Good for newcomers
 health-check
Repo health check result
 help wanted
Extra attention needed
 mokostandards
Related to MokoStandards framework
 push-failure
Git push operation failed
 security
Security vulnerability or hardening
 size/l
200-500 lines changed
 size/m
50-200 lines changed
 size/s
10-50 lines changed
 size/xl
500+ lines changed
 size/xs
< 10 lines changed
 standards-drift
Deviates from MokoStandards
 standards-update
MokoStandards compliance update
 sync-failure
Sync or mirror failed
 tech-debt
Technical debt and TODO/FIXME items
 upstream
upstream
Inherited from upstream Gitea
 work-in-progress
Draft or incomplete work
No labels
Priority -
Type -
Milestone
No items
No Milestone
Assignees
Clear assignees
jmiller (Jonathan Miller) moko-deploy (Moko Deploy Bot)
No Assignees
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: MokoConsulting/MokoGitea-Fork#677
Delete Branch "fix/676-public-metadata"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?