sascha
/
nextcloud-server
mirror of https://github.com/nextcloud/server.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
74,646 Commits
608 Branches
1177 Tags
9.7 GiB
Commit Graph

7059 Commits (c8b00569a2f72a76efea3fe0b8219b9b72d2bd32)

Author SHA1 Message Date
Andy Scherzinger 598d50164a
Merge pull request #46889 from nextcloud/backport/46476/stable29 
[stable29] Migration Attributes
 2024-08-08 13:55:56 +07:00
Christoph Wurst 0a0c07cec1 fix(session): Log when session_* calls are slow 
Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
 2024-08-07 10:44:58 +07:00
Maxence Lange e227d5afa1 feat(upgrade): migration attributes 
Signed-off-by: Maxence Lange <maxence@artificial-owl.com>
 2024-08-06 22:41:35 +07:00
Ferdinand Thiessen 264074c161 fix: `OCP\Files\Node\Folder::search` was not setting the owner 
The owner was not set on the file info causing e.g. webdav searches to never return the known owner.

Signed-off-by: Ferdinand Thiessen <opensource@fthiessen.de>
 2024-07-30 11:06:30 +07:00
Julius Härtl 23ec547af0 fix: Ignore preview requests for invalid file ids 
Signed-off-by: Julius Härtl <jus@bitgrid.net>
 2024-07-29 08:16:30 +07:00
Hoang Pham e5532362da feat: support excalidraw file 
Signed-off-by: Hoang Pham <hoangmaths96@gmail.com>
 2024-07-25 17:00:34 +07:00
Joas Schilling ee6d74eb63 fix(mail): Fix big logos in mail templates for Outlook 
Signed-off-by: Joas Schilling <coding@schilljs.com>
 2024-07-19 08:11:54 +07:00
Benjamin Gaussorgues 3e2600bf86 feat: don't count failed CSRF as failed login attempt 
Signed-off-by: Benjamin Gaussorgues <benjamin.gaussorgues@nextcloud.com>
 2024-07-11 14:15:20 +07:00
Daniel Kesselberg a554ba5d68 test: run tests in child process 
Signed-off-by: Daniel Kesselberg <mail@danielkesselberg.de>
 2024-07-10 23:35:43 +07:00
Côme Chilliet 780bf606d2 fix(tests): Strong type property $router in RouterTest 
Co-authored-by: Kate <26026535+provokateurin@users.noreply.github.com>
Signed-off-by: Côme Chilliet <91878298+come-nc@users.noreply.github.com>
 2024-07-10 23:35:43 +07:00
Steve Mokris 182284ee98 fix(settings): define a 'heartbeat' route, so SecurityHeaders can handle redirected root 
Signed-off-by: Steve Mokris <steve@kosada.com>
 2024-07-10 23:35:43 +07:00
Robin Appelman f3c3d890d6 test: update DummyJobList 
Signed-off-by: Robin Appelman <robin@icewind.nl>
 2024-07-10 20:29:36 +07:00
Joas Schilling 8c6101741c fix(tests): Remove output when running tests 
Signed-off-by: Joas Schilling <coding@schilljs.com>
 2024-07-03 16:03:44 +07:00
Joas Schilling 17434538d4 fix(federation): Fix missing protocol on CloudID remote 
Signed-off-by: Joas Schilling <coding@schilljs.com>
 2024-06-27 13:00:43 +07:00
Robin Appelman d3d2488fbb feat: add setup check for needed mimetype migrations 
Signed-off-by: Robin Appelman <robin@icewind.nl>
 2024-06-19 11:22:49 +07:00
Arthur Schiwon 464cfce9b5
Merge pull request #44977 from nextcloud/backport/44745/stable29 
[stable29] fix(auth): Keep redirect URL during 2FA setup and challenge
 2024-06-12 19:37:41 +07:00
Daniel a41941692d
Merge pull request #45821 from nextcloud/backport/45811/stable29 
[stable29] test: add tests for ProfilePageController
 2024-06-12 19:31:50 +07:00
Arthur Schiwon 3a17ec6db7
Merge pull request #45809 from nextcloud/fix/noid/fix-new-token-scope-name 
[stable29] fix(Token): make new scope future compatible
 2024-06-12 19:01:49 +07:00
Daniel Kesselberg 73703eb276 test: add tests for ProfilePageController 
Signed-off-by: Daniel Kesselberg <mail@danielkesselberg.de>
 2024-06-12 18:21:58 +07:00
skjnldsv 7327803816 fix(files_sharing): dark avatar support 
Signed-off-by: skjnldsv <skjnldsv@protonmail.com>
 2024-06-12 11:06:10 +07:00
Arthur Schiwon fc584b7874
fix(Token): make new scope future compatible 
- "password-unconfirmable" is the effective name for 30, but a draft
  name was backported.

Signed-off-by: Arthur Schiwon <blizzz@arthur-schiwon.de>
 2024-06-12 11:05:43 +07:00
Arthur Schiwon f0494ec17a fix(Session): avoid password confirmation on SSO 
SSO backends like SAML and OIDC tried a trick to suppress password
confirmations as they are not possible by design. At least for SAML it was
not reliable when existing user backends where used as user repositories.

Now we are setting a special scope with the token, and also make sure that
the scope is taken over when tokens are regenerated.

Signed-off-by: Arthur Schiwon <blizzz@arthur-schiwon.de>
 2024-06-11 20:19:18 +07:00
Ferdinand Thiessen 29ab5d2f52 fix(Mailer): Allow to enforce strict email format 
Signed-off-by: Ferdinand Thiessen <opensource@fthiessen.de>
 2024-06-07 17:16:21 +07:00
John Molakvoæ 6c27d57e0d
Merge pull request #44894 from nextcloud/backport/44644/stable29 2024-06-07 11:01:38 +07:00
Christoph Wurst 8f9a0f8fdc fix(session): Do not update authtoken last_check for passwordless 
Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
 2024-06-03 22:54:50 +07:00
Christoph Wurst e37dbaa9a7 fix(db): Prevent two connections for single node databases 
Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
 2024-05-28 09:45:18 +07:00
Benjamin Gaussorgues cd9650483b fix(groups): allows to save group names with more than 64 characters 
Mimic behaviour from LDAP users and add a hard limit to 255 characters

Signed-off-by: Benjamin Gaussorgues <benjamin.gaussorgues@nextcloud.com>
 2024-05-16 17:57:41 +07:00
Joas Schilling 2e7873623f
fix: Extend SVG reference check 
Signed-off-by: Joas Schilling <coding@schilljs.com>
 2024-05-16 10:02:57 +07:00
Robin Appelman ff47b05d24 test: adjust test to new permissions check logic 
Signed-off-by: Robin Appelman <robin@icewind.nl>
 2024-05-13 14:02:29 +07:00
Christoph Wurst 67071f8875 fix(auth): Keep redirect URL during 2FA setup and challenge 
Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
 2024-04-23 07:38:33 +07:00
Maxence Lange 99968efe7b fix(appconfig): returns correct value on details 
Signed-off-by: Maxence Lange <maxence@artificial-owl.com>
 2024-04-17 22:01:47 +07:00
Maxence Lange 9040bcb3b9 fix(appconfig): format app values 
Signed-off-by: Maxence Lange <maxence@artificial-owl.com>
 2024-04-17 15:12:22 +07:00
Andy Scherzinger e31e5429a8
Merge pull request #44737 from nextcloud/backport/stable29/44736 
[stable29] fix: Fix avatar images
 2024-04-17 10:43:05 +07:00
Christopher Ng ac0947cab5 test: Update tests 
Signed-off-by: Christopher Ng <chrng8@gmail.com>
 2024-04-11 14:56:21 +07:00
Côme Chilliet b7d9df20be fix(tests): Fix tests when daytime saving time change happened recently 
Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>
 2024-04-11 14:42:55 +07:00
Robin Appelman 338c8aaea4 test: add test for jail watcher 
Signed-off-by: Robin Appelman <robin@icewind.nl>
 2024-04-09 10:41:50 +07:00
Côme Chilliet 0b332ceac2 fix: Apply new coding standard to all files 
Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>
 2024-04-04 11:45:22 +07:00
Joas Schilling 9dbad26f62 fix(federation): ICloudId->getRemote() should contain the protocol 
Signed-off-by: Joas Schilling <coding@schilljs.com>
 2024-04-02 15:59:24 +07:00
Ferdinand Thiessen 7d51b6fff5
Merge pull request #44438 from nextcloud/feat/login-form-timeout 
feat(login): Clear login form (password) after IDLE timeout
 2024-03-25 21:03:42 +07:00
Joas Schilling dababa5138
fix(federation): Fix creating local cloudIds with http:// protocol 
Signed-off-by: Joas Schilling <coding@schilljs.com>
 2024-03-25 14:21:52 +07:00
Ferdinand Thiessen 3fede00732
feat(login): Clear login form (password) after IDLE timeout 
For security reasons it is recommended to stop the login process at a defined time,
this could prevent password leaks by e.g. user forgetting that they entered their password on public devices.

Enforced e.g. by the BSI ORP.4.A13 rule.

Signed-off-by: Ferdinand Thiessen <opensource@fthiessen.de>
 2024-03-25 12:22:53 +07:00
Christoph Wurst b8868e2652
fix(config): Make sure user keys are strings 
Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
 2024-03-19 18:27:53 +07:00
Ferdinand Thiessen bae133bf4f fix(AppDiscoverFetcher): Do not remove entries as expired that have no expiry date 
Signed-off-by: Ferdinand Thiessen <opensource@fthiessen.de>
 2024-03-19 09:36:06 +07:00
Florian Klinger f3a4abd98c
fix: add check for app_api_system session flag to bypass rate limit 
Signed-off-by: Florian Klinger <florian.klinger@nextcloud.com>
Signed-off-by: Andrey Borysenko <andrey18106x@gmail.com>
 2024-03-18 20:09:15 +07:00
Anupam Kumar 1111c3fafb
Merge pull request #41684 from nextcloud/feat/rst-mimetype 
feat(mimetypes): Add mimetype for ReStructuredText
 2024-03-15 22:19:43 +07:00
John Molakvoæ eb61f6b065
Merge pull request #40117 from summersab/refactor/OC-Server-getCommentsManager 2024-03-15 17:03:54 +07:00
Corentin Damman 0fa9f3049f feat(files_sharing): allow to specify allowed groups to share instead of excluded groups 
Relates to #3387

Signed-off-by: Corentin Damman <c.damman@intopix.com>
 2024-03-15 16:52:59 +07:00
John Molakvoæ 5a1ed2d9ea
Merge pull request #40131 from summersab/refactor/OC-Server-getShareManager 2024-03-15 16:05:59 +07:00
Anupam Kumar 8b0d49327a
feat(mimetypes): Add mimetype for ReStructuredText 
Signed-off-by: Anupam Kumar <kyteinsky@gmail.com>
 2024-03-15 20:23:27 +07:00
John Molakvoæ f5e3fea285
Merge pull request #40138 from summersab/refactor/OC-Server-getHasher 2024-03-15 15:08:32 +07:00