nextcloud-server

Commit Graph

Author	SHA1	Message	Date
Christoph Wurst	829ca3df55	fix(session): Only mark sessions of permanent tokens as app passwords Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	2025-04-09 07:48:30 +07:00
Louis Chemineau	483eaa7e72	fix(users): Don't crash if disabled user is missing in the database Signed-off-by: Louis Chemineau <louis@chmn.me>	2024-09-23 16:59:58 +07:00
Christoph Wurst	3534f3dd7a	fix(session): Do not update authtoken last_check for passwordless Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	2024-05-29 13:23:05 +07:00
Git'Fellow	980b14f629	fix(session): Avoid two useless authtoken DB queries for every anonymous request Co-Authored-By: Christoph Wurst <christoph@winzerhof-wurst.at> Signed-off-by: Git'Fellow <12234510+solracsf@users.noreply.github.com> Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	2024-01-17 09:16:22 +07:00
Julius Härtl	1712df7881	perf: Use more performant way to obtain and check the email as a login name with token login Signed-off-by: Julius Härtl <jus@bitgrid.net>	2024-01-09 15:02:38 +07:00
Joas Schilling	aa5f037af7	chore: apply changes from Nextcloud coding standards 1.1.1 Signed-off-by: Joas Schilling <coding@schilljs.com> Signed-off-by: Benjamin Gaussorgues <benjamin.gaussorgues@nextcloud.com>	2023-11-23 10:36:13 +07:00
Joas Schilling	25309bcb45	techdebt(DI): Use public IThrottler interface which exists since Nextcloud 25 Signed-off-by: Joas Schilling <coding@schilljs.com>	2023-08-28 15:50:45 +07:00
Joas Schilling	ad12a740cb	fix!: Remove symfony EventDispatcherInterface from User Signed-off-by: Joas Schilling <coding@schilljs.com>	2023-07-27 23:13:37 +07:00
Joas Schilling	b91957e3df	fix(dav): Abort requests with 429 instead of waiting Signed-off-by: Joas Schilling <coding@schilljs.com>	2023-05-03 22:43:36 +07:00
Côme Chilliet	8d5165e8dc	Adapt tests to config value typing Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>	2023-04-05 17:42:14 +07:00
Daniel Kesselberg	39c1b6f49f	chore(tests): add tests for handleLoginFailed Signed-off-by: Daniel Kesselberg <mail@danielkesselberg.de>	2023-03-10 18:04:39 +07:00
Côme Chilliet	cb271b759e	Fix dynamic property creations in test files This fixes warnings in PHP 8.2 Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>	2022-08-01 15:07:53 +07:00
Côme Chilliet	61f7f13bd8	Migrate from ILogger to LoggerInterface where needed in the tests Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>	2022-03-24 16:21:26 +07:00
Joas Schilling	d078d53683	Fix tests Signed-off-by: Joas Schilling <coding@schilljs.com>	2022-02-23 11:01:58 +07:00
Joas Schilling	6d33d75be1	Remove unused imports Signed-off-by: Joas Schilling <coding@schilljs.com>	2021-12-02 14:51:44 +07:00
Carl Schwan	a8866b0253	Fix tests Signed-off-by: Carl Schwan <carl@carlschwan.eu>	2021-12-01 19:53:24 +07:00
Joas Schilling	265c2c125c	Fix unit tests Signed-off-by: Joas Schilling <coding@schilljs.com>	2021-11-12 15:01:56 +07:00
Joas Schilling	645f83121e	Cache the user backend info for 300s Signed-off-by: Joas Schilling <coding@schilljs.com>	2021-02-15 10:36:08 +07:00
Joas Schilling	0ad4ad31e1	Fix more tests Signed-off-by: Joas Schilling <coding@schilljs.com>	2020-10-13 08:16:17 +07:00
Joas Schilling	41d8a7e05f	Fix unit tests Signed-off-by: Joas Schilling <coding@schilljs.com>	2020-08-19 11:20:36 +07:00
Christoph Wurst	afbd9c4e6e	Unify function spacing to PSR2 recommendation Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	2020-04-09 13:54:22 +07:00
Christoph Wurst	b80ebc9674	Use the short array syntax, everywhere Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	2020-03-26 16:34:56 +07:00
Christoph Wurst	2ee65f177e	Use the shorter phpunit syntax for mocked return values Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	2020-03-25 22:21:27 +07:00
Christoph Wurst	cc80339b39	Add typed create user events Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at> Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	2019-12-03 08:03:57 +07:00
Roeland Jago Douma	3a7cf40aaa	Mode to modern phpunit Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	2019-11-27 15:27:18 +07:00
Roeland Jago Douma	c007ca624f	Make phpunit8 compatible Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	2019-11-27 13:34:41 +07:00
Roeland Jago Douma	68748d4f85	Some php-cs fixes * Order the imports * No leading slash on imports * Empty line before namespace * One line per import * Empty after imports * Emmpty line at bottom of file Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	2019-11-22 20:52:10 +07:00
Roeland Jago Douma	3c1bcd551d	Fix the tests after #18029 Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	2019-11-21 22:31:45 +07:00
Christoph Wurst	535000aac6	Make the post login event public Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	2019-11-20 18:43:09 +07:00
Roeland Jago Douma	5122629bb0	Make renewSessionToken return the new token Avoids directly getting the token again. We just inserted it so it and have all the info. So that query is just a waste. Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	2019-10-09 10:10:37 +07:00
Roeland Jago Douma	0ea7fbae54	Update tests Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	2019-07-29 16:31:40 +07:00
Joas Schilling	01b4db62fb	Add dispatcher events to User and Group objects Signed-off-by: Joas Schilling <coding@schilljs.com>	2019-03-01 20:56:59 +07:00
Roeland Jago Douma	19f84f7b54	Add tests Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	2018-10-02 19:50:54 +07:00
Roeland Jago Douma	00e99af586	Mark token as invalid if the password doesn't match Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	2018-10-02 19:50:44 +07:00
Roeland Jago Douma	991d9b5c3a	Fix session tests Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	2018-05-15 11:32:25 +07:00
Roeland Jago Douma	ef127a30ec	Fix tests Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	2018-01-23 10:35:37 +07:00
Morris Jobke	43e498844e	Use ::class in test mocks Signed-off-by: Morris Jobke <hey@morrisjobke.de>	2017-10-24 17:45:32 +07:00
Roeland Jago Douma	1ea7f14f0a	Fix SessionTest Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	2017-08-09 16:13:54 +07:00
Lukas Reschke	7927aed991	Adjust token name Signed-off-by: Lukas Reschke <lukas@statuscode.ch>	2017-05-18 20:49:11 +07:00
Robin Appelman	baec42e80a	Save the scope of an auth token in the session Signed-off-by: Robin Appelman <robin@icewind.nl>	2017-04-05 17:58:33 +07:00
Joas Schilling	6acfea61d0	Fix tests Signed-off-by: Joas Schilling <coding@schilljs.com>	2017-01-05 12:17:30 +07:00
Roeland Jago Douma	e368a745aa	Set last-login-check on basic auth Else the last-login-check fails hard because the session value is not set and thus defaults to 0. * Started with tests Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	2016-12-05 20:57:15 +07:00
Christoph Wurst	6543182d13	fix parameter order Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	2016-11-28 10:00:53 +07:00
Christoph Wurst	9b808c4014	do not remember session tokens by default We have to respect the value of the remember-me checkbox. Due to an error in the source code the default value for the session token was to remember it. Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	2016-11-27 14:03:28 +07:00
Lukas Reschke	9d6e01ef40	Add missing tests and fix PHPDoc Signed-off-by: Lukas Reschke <lukas@statuscode.ch>	2016-11-02 13:39:17 +07:00
Christoph Wurst	6f86e468d4	inject ISecureRandom into user session and use injected config too Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	2016-11-02 13:39:16 +07:00
Christoph Wurst	d907666232	bring back remember-me * try to reuse the old session token for remember me login * decrypt/encrypt token password and set the session id accordingly * create remember-me cookies only if checkbox is checked and 2fa solved * adjust db token cleanup to store remembered tokens longer * adjust unit tests Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	2016-11-02 13:39:16 +07:00
Roeland Jago Douma	f722640a32	Proper DI of config * Fixed comments Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	2016-10-28 10:13:35 +07:00
Roeland Jago Douma	593d52fe91	Fix and cleanup SessionTest Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	2016-10-25 09:34:27 +07:00
Vincent Petry	6d1e858aa4	Fix logClientIn for non-existing users (#26292 ) The check for two factor enforcement would return true for non-existing users. This fix makes it return false in order to be able to perform the regular login which will then fail and return false. This prevents throwing PasswordLoginForbidden for non-existing users.	2016-10-25 09:34:27 +07:00

1 2

70 Commits (stable28)