Add proxy settings and support for migration and webhook

[lunny]

replace #15234, #16697 and fix #12018

This PR added a proxy supports which should be applied to every request to external http/https URL.
Follow requests will follow the proxy setting if no standalone setting.

• Git clone from external http/https URLs
• Migrate LFS datas from external git http/https URLs
• Migrate other datas via API from other git services http/https URLs
• Send webhooks to external URLs

And since webhook has supported standalone proxy before this PR, webhook's proxy settings will override the proxy settings.

This PR also added an option to ignore tls verify on migrations.

⚠️ BREAKING ⚠️

This PR means that by default Gitea will not obey the system proxy unless you set [proxy] ENABLED= true but leave the rest of the proxy configuration blank.

This is in contrast to previous behaviour where Gitea would partially obey system proxies.

[KN4CK3R]

The LFS client is missing. Otherwise lgtm.

[lunny]

The LFS client is missing. Otherwise lgtm.

done.

[codecov-commenter]

Codecov Report

Merging #16704 (6eca452) into main (422c30d) will decrease coverage by 0.01%.
The diff coverage is 50.36%.

@@            Coverage Diff             @@
##             main   #16704      +/-   ##
==========================================
- Coverage   45.37%   45.36%   -0.02%     
==========================================
  Files         758      760       +2     
  Lines       85381    85482     +101     
==========================================
+ Hits        38742    38779      +37     
- Misses      40358    40420      +62     
- Partials     6281     6283       +2     

Impacted Files	Coverage Δ
modules/migrations/gitea_downloader.go	0.90% <0.00%> (-0.03%)	⬇️
modules/migrations/gitlab.go	0.97% <0.00%> (-0.03%)	⬇️
modules/migrations/gogs.go	2.35% <0.00%> (-0.02%)	⬇️
services/mirror/mirror_pull.go	32.74% <0.00%> (ø)
modules/proxy/proxy.go	18.75% <18.75%> (ø)
modules/setting/proxy.go	45.45% <45.45%> (ø)
modules/repository/repo.go	47.32% <66.66%> (ø)
services/mirror/mirror_push.go	39.23% <66.66%> (ø)
modules/migrations/github.go	68.56% <71.42%> (+0.30%)	⬆️
modules/git/repo.go	47.71% <87.50%> (+2.31%)	⬆️
... and 13 more

---

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update 422c30d...6eca452. Read the comment docs.

[zeripath]

Suggested change

	- `PROXY_URL`: ****: Proxy server URL, support http://, https//, socks://, blank will follow environment http_proxy/https_proxy
	- `PROXY_URL`: **\<empty\>`**: Proxy server URL, support http://, https//, socks://, blank will follow environment http_proxy/https_proxy

[zeripath]

I think setting the proxy off by default is both breaking and the wrong thing to do.

We should have it on by default so that we defer to the system proxy by default.

[KN4CK3R]

Missing:

gitea/modules/migrations/gitlab.go

Line 317 in 274aeb3

resp, err := http.DefaultClient.Do(req)

gitea/modules/migrations/github.go

Line 298 in 274aeb3

resp, err := http.DefaultClient.Do(req)

gitea/modules/migrations/gitea_downloader.go

Line 285 in 274aeb3

resp, err := http.Get(asset.DownloadURL)

[lunny]

I think setting the proxy off by default is both breaking and the wrong thing to do.

We should have it on by default so that we defer to the system proxy by default.

I don't think it will break anything. off means follow operating system proxy setting.

[lunny]

@zeripath @KN4CK3R Both done.

[lafriks]

httpproxy.FromEnvironment().ProxyFunc()(url) should be used instead of custom logic as it also contains support for NO_PROXY env varaible

[lunny]

We cannot use that, because we will set it as envs of git clone.

[lafriks]

https_proxy or http_proxy should be used based on either https or http proxy protocol is used

[lunny]

@lafriks Could you send a PR to fix them?