sascha
/
nextcloud-server
mirror of https://github.com/nextcloud/server.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
83,893 Commits
623 Branches
1167 Tags
8.6 GiB
Commit Graph

33 Commits (jtr/fix-public-exceptions-http-codes)

Author SHA1 Message Date
Robin Appelman 064e1133f5 feat: allow admins to configure additional sensitive config values 
Signed-off-by: Robin Appelman <robin@icewind.nl>
 2025-08-05 19:16:14 +07:00
Côme Chilliet aac79bad9b
fix: Move config.php taint trust upstream directly in OC\Config class 
This solves some false-positive psalm taint errors

Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>
 2025-02-17 15:26:20 +07:00
Robert Riemann ab8fdad6ca
add sse_c_key from S3 object storage properties config to list of sensitive values 
Signed-off-by: Robert Riemann <robert@riemann.cc>
 2024-12-05 19:25:36 +07:00
Joas Schilling 1e5cb82cc1
fix(config): Mark more configs as sensitive 
Signed-off-by: Joas Schilling <coding@schilljs.com>
 2024-10-28 14:56:19 +07:00
Robin Appelman 9d0248545d
fix: mark systemconfig value as not being tainted because they are implicitly trusted 
Signed-off-by: Robin Appelman <robin@icewind.nl>
 2024-08-28 10:27:14 +07:00
Joas Schilling 710a69b4b5
feat(log): Allow to combine log.conditions to only log (app&user) 
Signed-off-by: Joas Schilling <coding@schilljs.com>
 2024-07-30 13:18:09 +07:00
Andy Scherzinger dae7c159f7
chore: Add SPDX header 
Signed-off-by: Andy Scherzinger <info@andy-scherzinger.de>
 2024-05-24 13:11:22 +07:00
Joas Schilling 03f38c9b06
fix: Mark more configs as sensitive 
Signed-off-by: Joas Schilling <coding@schilljs.com>
 2024-05-17 11:45:25 +07:00
derschiw 28807b2a12
fix(SystemConfig.php): Add 'updater.server.url' to Private Variables 
Add "updater.server.url" to the privacy redacted values, as it may contain the enterprise key.

Signed-off-by: derschiw <37687705+derschiw@users.noreply.github.com>
 2024-05-13 10:37:17 +07:00
Maxence Lange f7d0c74b10 lazy AppConfig 
Signed-off-by: Maxence Lange <maxence@artificial-owl.com>
 2024-01-15 15:45:13 +07:00
Joas Schilling 6294f0f4bc
fix(systemreport): Mark more configs as sensitive 
Signed-off-by: Joas Schilling <coding@schilljs.com>
 2024-01-09 13:08:27 +07:00
Joas Schilling 6c0b862e75
fix(systemreport): Mask onlyoffice secret as sensitive 
Signed-off-by: Joas Schilling <coding@schilljs.com>
 2023-09-29 16:36:19 +07:00
Côme Chilliet f5c361cf44
composer run cs:fix 
Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>
 2023-01-20 11:45:08 +07:00
Joas Schilling 663cf04469
Mark more config values as sensitive 
Signed-off-by: Joas Schilling <coding@schilljs.com>
 2022-11-11 09:02:28 +07:00
Joas Schilling 1e27aed4dc
Censor more configs 
Signed-off-by: Joas Schilling <coding@schilljs.com>
 2022-03-01 21:08:16 +07:00
Joas Schilling 6302ff0f96
Mark split database configs as sensitive 
Signed-off-by: Joas Schilling <coding@schilljs.com>
 2022-02-23 10:31:17 +07:00
Julien Veyssier 9d6c286ce6
consider some config keys under 'objectstore_multibucket' as sensitive 
Signed-off-by: Julien Veyssier <eneiluj@posteo.net>
 2021-10-05 18:26:06 +07:00
John Molakvoæ (skjnldsv) 215aef3cbd
Update php licenses 
Signed-off-by: John Molakvoæ (skjnldsv) <skjnldsv@protonmail.com>
 2021-06-04 22:02:41 +07:00
Christoph Wurst 41b5e5923a
Use exactly one empty line after the namespace declaration 
For PSR2

Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
 2020-04-09 11:48:10 +07:00
Christoph Wurst 5bf3d1bb38
Update license headers 
Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
 2019-12-05 15:38:45 +07:00
Daniel Kesselberg f81c6adad6
Add information about credentials 
Signed-off-by: Daniel Kesselberg <mail@danielkesselberg.de>
 2019-10-31 20:42:41 +07:00
Daniel Kesselberg 83af640780
Remove objectstore credentials 
Also remove the username for Swift v2 and add todo for unclear keys.

Signed-off-by: Daniel Kesselberg <mail@danielkesselberg.de>
 2019-10-27 00:51:39 +07:00
Daniel Kesselberg 8e44e0134a
Remove objectstore credentials 
S3: key and secret
Swift v3: user.name and user.password

Signed-off-by: Daniel Kesselberg <mail@danielkesselberg.de>
 2019-10-27 00:41:01 +07:00
Morris Jobke f9e70c2ab6
Merge pull request #7020 from Fiech/master 
Extended list of sensitive configuration values (2)
 2017-11-07 10:27:53 +07:00
Morris Jobke 0eebff152a
Update license headers 
Signed-off-by: Morris Jobke <hey@morrisjobke.de>
 2017-11-06 16:56:19 +07:00
Johannes Schlichenmaier 84cc13f57b Extended list of sensitive configuration values 
In accordance with the issuetemplate app issue:
https://github.com/nextcloud/issuetemplate/issues/27

Signed-off-by: Johannes Schlichenmaier <johannes@schlichenmaier.info>
 2017-10-31 01:30:50 +07:00
Johannes Schlichenmaier bde78decc2 Extended list of sensitive configuration values 
In accordance with the issuetemplate app issue:
https://github.com/nextcloud/issuetemplate/issues/27

Signed-off-by: Johannes Schlichenmaier <johannes@schlichenmaier.info>
 2017-10-29 23:46:59 +07:00
Joas Schilling e6e79c34b1
Don't show mail domain and from in config report 
Signed-off-by: Joas Schilling <coding@schilljs.com>
 2017-07-07 09:53:55 +07:00
Joas Schilling 5dc6899d1a
Fix tests 
Signed-off-by: Joas Schilling <coding@schilljs.com>
 2017-01-12 10:49:22 +07:00
Joas Schilling ba87db3fcc
Fix others 2016-07-21 18:13:57 +07:00
Morris Jobke 390a996297
Sanitize more config options and stack traces 2016-07-08 14:13:16 +07:00
Lukas Reschke aba539703c
Update license headers 2016-05-26 19:57:24 +07:00
Roeland Jago Douma f52c5b31b6
Move more from \OC to PSR-4 
* \OC\OCSClient
* \OC\Preview
* \OC\PreviewManager
* \OC\Repair
* \OC\RepairException
* \OC\Search
* \OC\ServerContainer
* \OC\ServerNotAvailableException
* \OC\ServiceUnavailableException
* \OC\Setup
* \OC\Streamer
* \OC\SubAdmin
* \OC\SystemConfig
* \OC\TagManager
* \OC\Tags
* \OC\TempManager
* \OC\TemplateLayout
* \OC\URLGenerator
* \OC\Updater
 2016-04-29 15:08:01 +07:00