sascha
/
nextcloud-server
mirror of https://github.com/nextcloud/server.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
77,816 Commits
633 Branches
1168 Tags
9.1 GiB
Commit Graph

252 Commits (878ccc406b411b137d1663456be2ed34269b2e51)

Author SHA1 Message Date
dependabot[bot] bb598c8451
chore(deps): Bump nextcloud/coding-standard in /vendor-bin/cs-fixer 
Bumps [nextcloud/coding-standard](https://github.com/nextcloud/coding-standard) from 1.3.1 to 1.3.2.
- [Release notes](https://github.com/nextcloud/coding-standard/releases)
- [Changelog](https://github.com/nextcloud/coding-standard/blob/master/CHANGELOG.md)
- [Commits](https://github.com/nextcloud/coding-standard/compare/v1.3.1...v1.3.2)

---
updated-dependencies:
- dependency-name: nextcloud/coding-standard
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: provokateurin <kate@provokateurin.de>
 2024-10-19 07:57:35 +07:00
Julius Knorr 606241caeb
chore(legacy): Introduce public version ct plass and drop version methods from OC_Util 
Signed-off-by: Julius Knorr <jus@bitgrid.net>
 2024-09-20 14:53:34 +07:00
provokateurin 9836e9b164
chore(deps): Update nextcloud/coding-standard to v1.3.1 
Signed-off-by: provokateurin <kate@provokateurin.de>
 2024-09-19 14:21:20 +07:00
Anna Larch 8af7ecb257 chore: adjust code to adhere to coding standard 
Signed-off-by: Anna Larch <anna@nextcloud.com>
 2024-09-05 21:23:38 +07:00
Daniel Kesselberg af6de04e9e
style: update codestyle for coding-standard 1.2.3 
Signed-off-by: Daniel Kesselberg <mail@danielkesselberg.de>
 2024-08-25 19:34:58 +07:00
Ferdinand Thiessen 2916e5df7e
feat: Provide CSP nonce as `<meta>` element 
This way we use the CSP nonce for dynamically loaded scripts.
Important to notice: The CSP nonce must NOT be injected in `content` as
this can lead to value exfiltration using e.g. side-channel attacts (CSS selectors).

Signed-off-by: Ferdinand Thiessen <opensource@fthiessen.de>
 2024-08-13 10:32:44 +07:00
Richard Steinmetz b37fb43a32
feat: let users configure their first day of week 
Signed-off-by: Richard Steinmetz <richard@steinmetz.cloud>
 2024-07-22 22:35:46 +07:00
Ferdinand Thiessen a229723b8c
feat: Add new forbidden filename options to Capabilities 
Allow clients to access the new filename validation options
and make frontend name validation possible.

Co-authored-by: Ferdinand Thiessen <opensource@fthiessen.de>
Co-authored-by: Kate <26026535+provokateurin@users.noreply.github.com>
Signed-off-by: Ferdinand Thiessen <opensource@fthiessen.de>
 2024-07-11 13:31:54 +07:00
Arthur Schiwon f6d6efef3a
refactor(Token): introduce scope constants 
Signed-off-by: Arthur Schiwon <blizzz@arthur-schiwon.de>
 2024-06-05 19:01:14 +07:00
Arthur Schiwon 340939e688
fix(Session): avoid password confirmation on SSO 
SSO backends like SAML and OIDC tried a trick to suppress password
confirmations as they are not possible by design. At least for SAML it was
not reliable when existing user backends where used as user repositories.

Now we are setting a special scope with the token, and also make sure that
the scope is taken over when tokens are regenerated.

Signed-off-by: Arthur Schiwon <blizzz@arthur-schiwon.de>
 2024-06-05 19:01:13 +07:00
Andy Scherzinger dae7c159f7
chore: Add SPDX header 
Signed-off-by: Andy Scherzinger <info@andy-scherzinger.de>
 2024-05-24 13:11:22 +07:00
Ferdinand Thiessen dd4901d689
feat: Add `forbidden_filename_characters` to JSConfig for use in frontend libraries 
Add the filename restrictions to our JS config so we can create a common frontend library
function to check filename validity (de-duplicate code).

Signed-off-by: Ferdinand Thiessen <opensource@fthiessen.de>
 2024-05-16 16:38:37 +07:00
Côme Chilliet ec5133b739 fix: Apply new coding standard to all files 
Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>
 2024-04-02 14:16:21 +07:00
Ferdinand Thiessen 03dbbc90be
fix(JSRecourceLocator): Add missing slash after server root 
The `OC::$SERVERROOT` is always returned without a trailing slash, so we need to add a slash between server root and apps directory.

Signed-off-by: Ferdinand Thiessen <opensource@fthiessen.de>
 2024-03-22 14:51:27 +07:00
John Molakvoæ 9338ef36de
Merge branch 'master' into refactor/OC-Server-getShareManager 
Signed-off-by: John Molakvoæ <skjnldsv@users.noreply.github.com>
 2024-03-15 13:03:34 +07:00
Ferdinand Thiessen 51ea3de8a7
fix(JSResourceLocator): Consider configured app roots for files 
Signed-off-by: Ferdinand Thiessen <opensource@fthiessen.de>
 2024-02-29 17:27:20 +07:00
Louis Chemineau a39b3a3d84
Add global accessibility switch 
Signed-off-by: Louis Chemineau <louis@chmn.me>
 2023-12-19 10:21:13 +07:00
Joas Schilling aa5f037af7
chore: apply changes from Nextcloud coding standards 1.1.1 
Signed-off-by: Joas Schilling <coding@schilljs.com>
Signed-off-by: Benjamin Gaussorgues <benjamin.gaussorgues@nextcloud.com>
 2023-11-23 10:36:13 +07:00
Akhil 5e20c3e7b9
Add custom apps translation scripts and image path for consistency 
Signed-off-by: Akhil <akhil@e.email>
 2023-10-19 14:39:29 +07:00
Andrew Summers 6b09a79227
Refactor `OC\Server::getShareManager` 
Signed-off-by: Andrew Summers <18727110+summersab@users.noreply.github.com>
 2023-08-29 21:32:58 +07:00
Robin Appelman 9f1d497a0b
Merge pull request #38261 from fsamapoor/replace_strpos_calls_in_lib_private 
Refactors "strpos" calls in  lib/private to improve code readability.
 2023-06-01 23:10:00 +07:00
Faraz Samapoor e7cc7653b8 Refactors "strpos" calls in lib/private to improve code readability. 
Signed-off-by: Faraz Samapoor <fsamapoor@gmail.com>
 2023-05-15 15:17:19 +07:00
Julius Härtl 0ebb00d01d
fix: Do not attempt to use l10n files as sources for combined js files 
Signed-off-by: Julius Härtl <jus@bitgrid.net>
 2023-05-15 08:29:05 +07:00
Ferdinand Thiessen 31c01fa3da fix(JSResourceLocator): Handle missing translations silently 
Signed-off-by: Ferdinand Thiessen <opensource@fthiessen.de>
 2023-05-11 18:22:24 +07:00
Ferdinand Thiessen a3595f73ac fix(OC/Template): Allow `.mjs` files within custom app paths 
If apps are installed in non standard app paths, we need
to check `$app_path/$script` instead of only doing so for translations.
Without this it would fallback to `.js` extension even if a `.mjs` file exists.

Also tried make the code more selfe explaining.

Signed-off-by: Ferdinand Thiessen <rpm@fthiessen.de>
 2023-02-22 21:19:37 +07:00
Ferdinand Thiessen 00e041b907 feat(template): Allow `JSResourceLocator` to find ES6 scripts 
Enable module js (ES6) support on the `JSResourceLocator`.
This changes `JSResourceLocator` to look for `.mjs` files first
to allow applications to provide a fallback `.js` for older Nextcloud versions.

Signed-off-by: Ferdinand Thiessen <rpm@fthiessen.de>
 2023-02-22 21:19:37 +07:00
Ferdinand Thiessen dbb1fa1273 fix(OC/Template): Remove usage of deprecated functions in `JSResourceLocator` 
Move from `\OC_App::getAppPath` to `IAppManager::getAppPath`.

Signed-off-by: Ferdinand Thiessen <rpm@fthiessen.de>
 2023-02-22 21:19:37 +07:00
Julius Härtl 4cebfa95e6
fix: Fix loading styles from core/css/ 
Signed-off-by: Julius Härtl <jus@bitgrid.net>
 2023-02-20 09:28:30 +07:00
Côme Chilliet f5c361cf44
composer run cs:fix 
Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>
 2023-01-20 11:45:08 +07:00
Thomas Citharel 34ce53355a
Catch NotFoundException as well in JSCombiner 
Follow-up to #35576

Signed-off-by: Thomas Citharel <tcit@tcit.fr>
 2022-12-08 11:50:50 +07:00
Julius Härtl 4bcaeb6c2c
Drop 3rdparty root since it is unused and adjust tests 
Signed-off-by: Julius Härtl <jus@bitgrid.net>
 2022-12-07 23:55:32 +07:00
Julius Härtl 3e5838198c
Use single resource locator instance 
Signed-off-by: Julius Härtl <jus@bitgrid.net>
 2022-12-07 22:32:05 +07:00
John Molakvoæ 2d98cd1daf
Add config and fix selenium 
Signed-off-by: John Molakvoæ <skjnldsv@protonmail.com>
 2022-10-19 10:04:51 +07:00
Carl Schwan 54031e370a Fix various other small psalm issues 
Signed-off-by: Carl Schwan <carl@carlschwan.eu>
 2022-10-17 12:40:35 +07:00
Carl Schwan de168b38e9
Make it possible to load theme/<themename>/dist 
This fix a regression with the theming api following the change in
webpack bundling introduced in 24

Signed-off-by: Carl Schwan <carl@carlschwan.eu>
 2022-08-26 13:46:29 +07:00
Christopher Ng 7a13388fe9 Hide deprecated projects in sharing tab by default 
Signed-off-by: Christopher Ng <chrng8@gmail.com>
 2022-08-18 01:50:37 +07:00
Ferdinand Thiessen 1da424595f Feature: Add and expose frontend loglevel 
This adds a new config variable `loglevel_frontend`,
allowing to configure the logging level of the
browser part as requested in nextcloud/nextcloud-logger#141

If not configured the `loglevel` is used as the fallback.

Signed-off-by: Ferdinand Thiessen <rpm@fthiessen.de>
 2022-06-06 13:37:04 +07:00
Joas Schilling f9efc410fa
Restore old behaviour of sending flase for not found apps 
Signed-off-by: Joas Schilling <coding@schilljs.com>
 2022-05-30 12:41:35 +07:00
Joas Schilling eb1a69d627
Improve JSConfigHelper code quality a bit 
Signed-off-by: Joas Schilling <coding@schilljs.com>
 2022-05-30 12:33:45 +07:00
John Molakvoæ 9a9409e315
Remove SCSSCacher 
Signed-off-by: John Molakvoæ <skjnldsv@protonmail.com>
 2022-05-13 16:10:45 +07:00
John Molakvoæ 3c6253f965
Remove old legacy SvgController and IconsCacher 
Signed-off-by: John Molakvoæ <skjnldsv@protonmail.com>
 2022-05-10 23:24:07 +07:00
Carl Schwan 69b36fc2c5 Don't inject Bruteforce capability info in the webui 
This capability do DB access and as far I know is not used by the webui.
This remove one DB query for each page load.

Signed-off-by: Carl Schwan <carl@carlschwan.eu>
 2022-04-07 17:33:29 +07:00
Côme Chilliet 1809386862
Fix codestyle 
Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>
 2022-03-24 16:21:27 +07:00
Côme Chilliet 6be7aa112f
Migrate from ILogger to LoggerInterface in lib/private 
Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>
 2022-03-24 16:21:25 +07:00
Julius Härtl e8cf1a8759
Avoid double-loading dist/core-main.js when apps have scripts named main 
Signed-off-by: Julius Härtl <jus@bitgrid.net>
 2022-03-08 15:37:53 +07:00
Julius Härtl 55fd974926
Remove shortFooter/longFooter to avoid unnecessary navigation loading 
Signed-off-by: Julius Härtl <jus@bitgrid.net>
 2022-01-12 12:16:39 +07:00
Louis Chemineau 6f62c17a95
Detect app's script higher up as some scripts were shadowed 
Signed-off-by: Louis Chemineau <louis@chmn.me>
 2022-01-08 10:15:48 +07:00
Louis Chemineau f8f09bff04
Restore some line in JSResourceLocator.php 
Signed-off-by: Louis Chemineau <louis@chmn.me>
 2022-01-08 10:11:58 +07:00
John Molakvoæ (skjnldsv) b664aad7ab
Move bundles to /dist 
Signed-off-by: John Molakvoæ (skjnldsv) <skjnldsv@protonmail.com>
 2022-01-08 10:11:58 +07:00
Carl Schwan dfb569f097
Follow upstream security recommandation 
See https://scssphp.github.io/scssphp/docs/#security-considerations

Signed-off-by: Carl Schwan <carl@carlschwan.eu>
 2021-12-02 15:57:53 +07:00