nextcloud

mirror of https://github.com/nextcloud/server.git synced 2026-04-15 22:11:17 -04:00

Author	SHA1	Message	Date
Jonas Rittershofer	c8b7a233a5	Allow CSRF on CORS routes Co-authored-by: Julius Härtl <jus@bitgrid.net> Co-authored-by: Andreas Brinner <andreas@everlanes.net> Signed-off-by: Jonas Rittershofer <jotoeri@users.noreply.github.com>	2022-09-21 10:42:00 +00:00
Joas Schilling	df57b51c8b	Fix psalm parameter type Signed-off-by: Joas Schilling <coding@schilljs.com>	2022-09-15 11:28:40 +02:00
Daniel	c55ae98a3f	Add description for public and immutable Co-authored-by: Carl Schwan <carl@carlschwan.eu> Signed-off-by: Daniel <mail@danielkesselberg.de>	2022-09-03 15:58:18 +02:00
Daniel Kesselberg	855ef21883	Update docblock for cacheFor Signed-off-by: Daniel Kesselberg <mail@danielkesselberg.de>	2022-09-03 15:28:23 +02:00
Julius Härtl	68d0038eb0	Move registration to IBootstrap Signed-off-by: Julius Härtl <jus@bitgrid.net>	2022-08-31 16:20:06 +02:00
Arthur Schiwon	2a6f46e689	allow apps to specify methods carrying sensitive parameters … in order to remove them from logging. Signed-off-by: Arthur Schiwon <blizzz@arthur-schiwon.de>	2022-07-28 23:30:17 +02:00
Thomas Citharel	1d30fb7852	Fix reading blob data as resource PostgreSQL returns data as resource when using IQueryBuilder::PARAM_LOB (which is used for QBMapper). Previously we just converted this resource using settype, which produced things like "Resource id #14" instead of the actual resource data. Now we read the stream correctly if the returned data is a resource See context at #22472 Fixes #22439 Signed-off-by: Thomas Citharel <tcit@tcit.fr>	2022-07-25 09:45:47 +02:00
blizzz	df89e7fd39	Merge pull request #32485 from nextcloud/debt/noid/psalm-streamer-fh [Psalm] Fix docblock for addFileFromStream	2022-05-31 14:22:05 +02:00
Julius Härtl	3901a93c72	Use JSON_THROW_ON_ERROR instead of custom error handling Signed-off-by: Julius Härtl <jus@bitgrid.net>	2022-05-30 19:17:49 +02:00
Daniel Kesselberg	be99ea969e	Fix type for resource Signed-off-by: Daniel Kesselberg <mail@danielkesselberg.de>	2022-05-24 22:05:59 +02:00
Joas Schilling	ad908cd87a	Make appName of TemplateResponse accessible in BeforeTemplateRenderedEvent Signed-off-by: Joas Schilling <coding@schilljs.com>	2022-05-20 15:03:40 +02:00
Daniel Kesselberg	7cd356ee7d	Fix psalm warning for zip response due wrong type Signed-off-by: Daniel Kesselberg <mail@danielkesselberg.de>	2022-05-13 15:50:26 +02:00
Christoph Wurst	1cd05a06fa	Always free the DB result in QBMapper::findEntities Without this patch it only happened if the code ran through without any errors. Now the result is also freed in the case of an error. Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	2022-05-12 09:51:37 +02:00
Carl Schwan	da64a3a7e8	Merge pull request #31900 from nextcloud/feat/server-container-public Add a public replacement for OC::$server->get	2022-05-10 23:23:06 +02:00
Carl Schwan	f945c0cbc6	Add a public replacement for OC::$server->get Signed-off-by: Carl Schwan <carl@carlschwan.eu>	2022-05-10 18:51:12 +02:00
Vincent Petry	7718c9776c	Merge pull request #32113 from nextcloud/bugfix/noid/fix-csp-merging-bools Add CSP policy merge priority for booleans	2022-05-05 17:26:48 +02:00
Carl Schwan	7817845538	Add a metadata service to store file metadata Signed-off-by: Carl Schwan <carl@carlschwan.eu>	2022-04-13 14:06:29 +02:00
Cyrille Bollu	c6a5c07041	Adds a "Request password" button to the public share authentication page for shares of type TYPE_EMAIL, when the "video verification" checkbox isn't checked. Users accessing non-anonymous public shares (TYPE_EMAIL shares) can now request a temporary password themselves. - Creates a migration step for the files_sharing app to add the 'password_expiration_time' attribute to the oc_shares table. - Makes share temporary passwords' expiration time configurable via a system value. - Adds a system config value to allow permanent share passwords -Fixes a typo in a comment in apps/files_sharing/src/components/SharingEntryLink.vue See https://github.com/nextcloud/server/issues/31005 Signed-off-by: Cyrille Bollu <cyrpub@bollu.be>	2022-04-11 21:58:24 +02:00
Vincent Petry	18c013d8fc	Add CSP policy merge priority for booleans When two booleans conflict when merging CSP policies, true will win. Signed-off-by: Vincent Petry <vincent@nextcloud.com>	2022-04-01 13:56:34 +02:00
Julius Härtl	bd03dd37be	Allow to set a strict-dynamic CSP through the API Signed-off-by: Julius Härtl <jus@bitgrid.net>	2022-03-09 15:10:27 +01:00
Carl Schwan	ac4978e715	Merge pull request #31141 from nextcloud/fix/better-cache-policy Improve caching policy use immutable when loading versionned assets	2022-02-17 16:58:35 +01:00
Christoph Wurst	cb252c5591	Add Transactional trait for atomic DB operations Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	2022-02-17 09:58:41 +01:00
Carl Schwan	7dddbd0c35	Improve caching policy * Cache css with version in url. This makes most js and css requests to be cached by the browser * Force caching previews, the etag is in the url so that if the propfind gives a new etag, we will refresh it otherwise it's no use to try to fetch the new etag and do tons of DB queries Tested with firefox and 'debug' => false (important so that the js/css urls are generated with ?v= parameter) Signed-off-by: Carl Schwan <carl@carlschwan.eu>	2022-02-16 11:35:57 +01:00
Christopher Ng	e3244361ba	Allow registration of migrators Signed-off-by: Christopher Ng <chrng8@gmail.com>	2022-02-11 23:34:25 +00:00
Christoph Wurst	9a656e5b35	Move calendar resource/room backend registration to IBootstrap Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	2022-02-07 12:51:42 +01:00
Christoph Wurst	2c356d0852	Add a Talk API for OCP Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	2022-02-04 08:53:18 +01:00
Robin Appelman	c712987878	send request id in response header Signed-off-by: Robin Appelman <robin@icewind.nl>	2022-02-01 14:24:01 +01:00
Carl Schwan	f778cbe7b9	Fix registerEventListener issues Signed-off-by: Carl Schwan <carl@carlschwan.eu>	2022-01-27 11:12:45 +01:00
Christoph Wurst	3e078ffa1b	Deprecate entity slugs They are only used a single time in the whole Nextcloud Github organization. We can inline the code there and slim down the public API. Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	2021-12-14 09:50:29 +01:00
Côme Chilliet	113756db30	Fix ArrayAccess and JsonSerializable return types First round of modifications for PHP 8.1 Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>	2021-11-23 09:28:56 +01:00
Christoph Wurst	b193f854d1	Register missing DAV app calendar provider Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	2021-10-28 18:33:13 +02:00
Christopher Ng	9f8eae3f50	Use more explicit naming for profile link action Signed-off-by: Christopher Ng <chrng8@gmail.com>	2021-10-25 22:20:19 +00:00
Roeland Jago Douma	8bc25e3324	Move preview provider registration to bootstrap Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl> Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	2021-10-21 10:35:18 +02:00
Christopher Ng	309354852f	Profile backend Signed-off-by: Christopher Ng <chrng8@gmail.com>	2021-10-19 04:59:35 +00:00
Anna Larch	a58d1e6b06	Add Public Calendar Provider Signed-off-by: Anna Larch <anna@nextcloud.com> Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	2021-10-14 08:22:24 +02:00
Daniel Rudolf	aa455e71d9	Merge branch 'master' into enhancement/noid/IURLGenerator-linkToDefaultPageUrl	2021-08-04 18:52:55 +02:00
Carl Schwan	28970563a2	Remove some mentions of ownCloud from our api documentation Signed-off-by: Carl Schwan <carl@carlschwan.eu>	2021-07-29 15:56:30 +02:00
Daniel Rudolf	a43de10d1e	Add RedirectToDefaultAppResponse::__construct() annotations Signed-off-by: Daniel Rudolf <github.com@daniel-rudolf.de>	2021-07-01 15:35:09 +02:00
Daniel Rudolf	e478db9161	Deprecate RedirectToDefaultAppResponse Signed-off-by: Daniel Rudolf <github.com@daniel-rudolf.de>	2021-07-01 15:13:08 +02:00
Daniel Rudolf	2c7186a15f	Remove \OC::$server->getURLGenerator() usage Signed-off-by: Daniel Rudolf <github.com@daniel-rudolf.de>	2021-07-01 15:12:15 +02:00
Daniel Rudolf	12059eb65b	Add IUrlGenerator::linkToDefaultPageUrl() Replaces the deprecated \OC_Util::getDefaultPageUrl() and makes this API public. Signed-off-by: Daniel Rudolf <github.com@daniel-rudolf.de>	2021-06-30 16:20:57 +02:00
Pytal	9ed379da22	Merge pull request #27635 from nextcloud/fix/datetime-constants Fix usage of DateTime constants	2021-06-23 09:56:28 -07:00
Christoph Wurst	6d5cfe0c66	Move DateTime::RFC2822 to DateTimeInterface::2822 Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	2021-06-23 15:30:43 +02:00
Lukas Reschke	25ab4059c6	Add security.txt Ref https://securitytxt.org Signed-off-by: Lukas Reschke <lukas@statuscode.ch>	2021-06-23 13:58:47 +02:00
Christoph Wurst	e49f1e4319	Phase out the controller reflector 1) PHP8 attributes will soon replace phpdoc annotations 2) Most of the class was never meant to be used by an app but internally Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	2021-06-17 18:21:19 +02:00
Morris Jobke	2ae60b42ab	Merge pull request #26494 from rigrig/fix-php8-deprecations Fix some php 8 warnings	2021-06-07 23:30:59 +02:00
John Molakvoæ (skjnldsv)	215aef3cbd	Update php licenses Signed-off-by: John Molakvoæ (skjnldsv) <skjnldsv@protonmail.com>	2021-06-04 22:02:41 +02:00
Lukas Reschke	377514aad1	Escape filename in Content-Disposition We should escape all occurences of ' and \ in here. Signed-off-by: Lukas Reschke <lukas@statuscode.ch>	2021-06-02 19:22:17 +02:00
Richard de Boer	a0d265b0b1	Fix a usort comparison function returning a boolean instead of an integer PHP 8 shows deprecation warnings about this, see #25806 Signed-off-by: Richard de Boer <git@tubul.net>	2021-05-29 14:14:52 +02:00
Anna Larch	8fcb3f33c8	Add DB exception throws tag to QBMapper PHPDoc Signed-off-by: Anna Larch <anna@nextcloud.com>	2021-05-26 15:12:41 +02:00

1 2 3 4 5 ...

261 commits