upstream/nextcloud
1
0
Fork 0
mirror of https://github.com/nextcloud/server.git synced 2026-04-22 14:50:17 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions 53
68613 commits 888 branches 1195 tags 8.3 GiB
Commit graph

22194 commits

Author SHA1 Message Date
Lucas Azevedo
cfae699d6e Wrap mimetype insert and getLastInsertId in a transaction 
Signed-off-by: Lucas Azevedo <lhs_azevedo@hotmail.com>
 2023-09-16 19:31:27 +00:00
Lucas Azevedo
f0a1716bb5 fix(mimetype): Remove unnecessary transaction when storing a mime type 
Fixes #40064.

This could be fixed by adding a rollback and starting a new transaction
before the SELECT query, but in this case that would have the same
effect as not using one.
See https://dev.mysql.com/doc/refman/8.0/en/innodb-autocommit-commit-rollback.html
and https://www.postgresql.org/docs/7.1/sql-begin.html#R1-SQL-BEGIN-1

Signed-off-by: Lucas Azevedo <lhs_azevedo@hotmail.com>
 2023-09-16 19:31:26 +00:00
Arthur Schiwon
3304b0371b fix(autoloader): no apcu no side effects 
apcu lead to side effects especially with app management and (soft)
inter-dependencies, and lead also to 500 server errors. While we could
add management to clear apcu cache in many cases (may stil leave edge
cases) the performance benefit is marginally as also class maps are
already cached in opcache. Hence, the simple and effective way to go is
to not use apcu for autoloading.

Signed-off-by: Arthur Schiwon <blizzz@arthur-schiwon.de>
 2023-09-08 18:30:40 +00:00
Robin Appelman
ee8c1a5c60
only determine quota_include_external_storage once for quota wrapper 
Signed-off-by: Robin Appelman <robin@icewind.nl>
 2023-09-07 16:25:23 +02:00
Robin Appelman
a23447c050
better caching in storage stats calculations 
Signed-off-by: Robin Appelman <robin@icewind.nl>
 2023-09-07 16:25:10 +02:00
Robin Appelman
5ebceaa54c
reuse dependencies from wrapped cache 
Signed-off-by: Robin Appelman <robin@icewind.nl>
 2023-09-07 16:22:00 +02:00
Arthur Schiwon
bb08cc15b0
Merge pull request #40286 from nextcloud/backport/40233/stable27 
[stable27] Detect aborted connection in OC\Files\View and stop writing data to t…
 2023-09-07 11:03:42 +02:00
Alexander Piskun
89cca0cd7c new name of AppEcosystem is AppAPI 
Signed-off-by: Alexander Piskun <bigcat88@icloud.com>
 2023-09-07 05:32:20 +00:00
Nextcloud bot
bb74c5dfb0
Fix(l10n): Update translations from Transifex 
Signed-off-by: Nextcloud bot <bot@nextcloud.com>
 2023-09-07 00:29:13 +00:00
Joas Schilling
52d68d3109 fix(ratelimit): Only use memory cache backend for redis 
Signed-off-by: Anna Larch <anna@nextcloud.com>
 2023-09-06 15:42:21 +00:00
Arthur Schiwon
801c5556f4
Merge pull request #40231 from nextcloud/sharing-mask-wrapper-27 
[27] move share permission logic to storage wrapper
 2023-09-06 10:27:55 +02:00
Benjamin Gaussorgues
8c7017679d
Detect aborted connection in OC\Files\View and stop writing data to the output buffer 
Signed-off-by: Benjamin Gaussorgues <benjamin.gaussorgues@nextcloud.com>
 2023-09-06 09:22:06 +02:00
Arthur Schiwon
90a2802f95
Merge pull request #40258 from nextcloud/backport/40234/stable27 
[stable27] enh: skip processing for empty response
 2023-09-05 19:14:52 +02:00
Arthur Schiwon
278f79f932
Merge pull request #40227 from nextcloud/backport/40195/stable27 
[stable27] fix: prevent sharing permissions on user root folder
 2023-09-05 19:14:24 +02:00
Arthur Schiwon
c7d6320fbf
Merge pull request #40186 from nextcloud/backport/39017/stable27 
[stable27] fix(s3): fix handling verify_bucket_exists parameter
 2023-09-05 19:13:02 +02:00
Daniel Kesselberg
b6c6475e18 enh: skip processing for empty response 
Signed-off-by: Daniel Kesselberg <mail@danielkesselberg.de>
 2023-09-04 18:51:27 +00:00
Robin Appelman
fc21ecbd2a
cleanup di for share permissions wrapper 
Signed-off-by: Robin Appelman <robin@icewind.nl>
 2023-09-04 14:13:57 +02:00
Robin Appelman
8511fb91ca
more share permission logic to storage wrapper 
this way we only have to determine the share permissions once

Signed-off-by: Robin Appelman <robin@icewind.nl>
 2023-09-04 14:09:41 +02:00
John Molakvoæ
d60f95833b fix: prevent sharing permissions on user root folder 
Signed-off-by: John Molakvoæ <skjnldsv@protonmail.com>
 2023-09-04 09:05:11 +00:00
Nextcloud bot
1f2abf43e1
Fix(l10n): Update translations from Transifex 
Signed-off-by: Nextcloud bot <bot@nextcloud.com>
 2023-09-03 00:25:42 +00:00
Nextcloud bot
322bb03a58
Fix(l10n): Update translations from Transifex 
Signed-off-by: Nextcloud bot <bot@nextcloud.com>
 2023-09-01 00:29:48 +00:00
Thomas Citharel
fe618feeb0 fix(s3): fix handling verify_bucket_exists parameter 
If 'verify_bucket_exists' is set to false in the config.php s3 configuration, it's supposed to avoid
verifying that the bucket exists. However empty(falsy) will  always return true, so this condition
would not work.

Signed-off-by: Thomas Citharel <tcit@tcit.fr>
 2023-08-31 21:21:16 +00:00
Nextcloud bot
3d13383e9b
Fix(l10n): Update translations from Transifex 
Signed-off-by: Nextcloud bot <bot@nextcloud.com>
 2023-08-31 00:34:53 +00:00
Daniel Kesselberg
4338d0747d feat: add switch to disable dns pinning 
Signed-off-by: Daniel Kesselberg <mail@danielkesselberg.de>
 2023-08-30 13:07:55 +00:00
Nextcloud bot
191e20d7f4
Fix(l10n): Update translations from Transifex 
Signed-off-by: Nextcloud bot <bot@nextcloud.com>
 2023-08-30 00:31:48 +00:00
Joas Schilling
b9a493ed9b
Merge pull request #40080 from nextcloud/backport/40077/stable27 
[stable27] fix(cache): Remove displayname cache entry on delete
 2023-08-29 15:49:23 +02:00
Joas Schilling
ff0569abab
Merge pull request #40039 from nextcloud/backport/39511/stable27 
[stable27] fix(utility): De- deprecate getDateTime and getTime as now() only returns DateTimeImmutable
 2023-08-29 14:41:40 +02:00
Anna Larch
c3f92ac5d9 fix(CalDAV): check voject exists before attempting any operation 
Signed-off-by: Anna Larch <anna@nextcloud.com>
 2023-08-28 18:49:44 +02:00
Joas Schilling
7ffc89e7ff fix(cache): Remove displayname cache entry on delete 
Signed-off-by: Joas Schilling <coding@schilljs.com>
 2023-08-28 16:18:59 +00:00
Côme Chilliet
6076e7b8ce Use nullsafe call syntax instead of additionnal check 
Co-authored-by: Benjamin Gaussorgues <benjamin.gaussorgues@nextcloud.com>
Signed-off-by: Côme Chilliet <91878298+come-nc@users.noreply.github.com>
 2023-08-28 13:50:27 +00:00
Côme Chilliet
98fa5fe627 Set files_sharing:hide_disabled_user_shares to 'yes' to hide shares from disabled users 
Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>
 2023-08-28 13:50:26 +00:00
Anna Larch
513371152a fix(utility): De- deprecate getDateTime as now() only returns immutable objects 
This will mean lots of code like
```$dateTime = (new DateTime())->setTimestamp(ITimeFactory::now()->getTimestamp()```
if a regular DateTime object is needed

Signed-off-by: Anna Larch <anna@nextcloud.com>
 2023-08-28 12:44:11 +02:00
Côme Chilliet
8277d0a5aa Fix user log.condition feature 
Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>
 2023-08-25 08:15:05 +02:00
Joas Schilling
d12b56bf63
Merge pull request #39997 from nextcloud/backport/39870/stable27 
[stable27] feat(security): Add a bruteforce protection backend base on memcache
 2023-08-23 08:43:01 +02:00
Joas Schilling
26832ec5da
fix(middleware): Fix header injection for bruteforce middleware 
Calling setHeaders(getHeaders()) breaks the CSP nonce for unknown reasons
So shifting back to old standard practise for now

Signed-off-by: Joas Schilling <coding@schilljs.com>
 2023-08-23 06:44:09 +02:00
Joas Schilling
759fc11f39
fix: Make bypass function public API 
Signed-off-by: Joas Schilling <coding@schilljs.com>
 2023-08-23 06:44:08 +02:00
Joas Schilling
b5dbb4d9f2
feat(OCC): Add a command to get the bruteforce state of an IP 
Signed-off-by: Joas Schilling <coding@schilljs.com>
 2023-08-23 06:44:07 +02:00
Joas Schilling
b55359b23c
feat: Expose if the own IP is allowed to bypass bruteforce protection 
Signed-off-by: Joas Schilling <coding@schilljs.com>
 2023-08-23 06:44:07 +02:00
Joas Schilling
5c0789197f
feat: Add a header which signals that the request was throttled 
Signed-off-by: Joas Schilling <coding@schilljs.com>
 2023-08-23 06:44:06 +02:00
Joas Schilling
97548e789f
feat(security): Add a "testing mode" for bruteforce protection that doesn't sleep 
Signed-off-by: Joas Schilling <coding@schilljs.com>
 2023-08-23 06:44:06 +02:00
Joas Schilling
befa2f6d51
feat(security): Add a bruteforce protection backend base on memcache 
Similar to the ratelimit backend

Signed-off-by: Joas Schilling <coding@schilljs.com>
 2023-08-23 06:44:05 +02:00
Nextcloud bot
130514267d
Fix(l10n): Update translations from Transifex 
Signed-off-by: Nextcloud bot <bot@nextcloud.com>
 2023-08-23 00:28:29 +00:00
Richard Steinmetz
3fd18ce450
feat(dashboard): implement widget item api v2 
This API enables the dashboard to render all widgets from the API data
alone without having apps to provide their own bundles. This saves a lot
of traffic and execution time as a lot less javascript has to be parsed
on the frontend.

Signed-off-by: Richard Steinmetz <richard@steinmetz.cloud>
 2023-08-22 10:38:46 +02:00
Julius Härtl
2a435e8bd2
Merge pull request #39934 from nextcloud/backport/39481/stable27 2023-08-22 08:58:16 +02:00
Julius Härtl
c9978db8e6
Merge pull request #39949 from nextcloud/backport/39770/stable27 2023-08-22 08:57:02 +02:00
Anna Larch
818ddb02c5 fix: don't emit Hooks when hookpaths are empty 
Signed-off-by: Anna Larch <anna@nextcloud.com>
 2023-08-21 09:58:21 +02:00
Max
f32dccd540 fix: always use display name from correct backend 
Overwrite the display name after the account is initialized
when using an instacne of IGetDisplayNameBackend.

Before when using a variation of user_oidc and registering
a Backend.php implementing IGetDisplayNameBackend
the personal setting page shows 'uid'.

The UserManager/AccountManager seems not to use consistently
the correct backend.

The correct backend is used in this sequence:

server/lib/private/TemplateLayout.php

          $userDisplayName = \OC_User::getDisplayName();
          $this->assign(user_displayname, $userDisplayName);

In the settings page, it definitely not calls the registered backend,
but seems to fall back to default Backend and shows (usually) uid
or a value from the standard account property table.

Signed-off-by: Max <max@nextcloud.com>
 2023-08-17 21:49:28 +00:00
Joas Schilling
30a9ba05d2 fix(memcache): Fix comparison of Memcache configs to classes 
Signed-off-by: Joas Schilling <coding@schilljs.com>
 2023-08-17 21:08:09 +00:00
Ferdinand Thiessen
752523f874 fix: Prevent PHP warnings when optional CacheEntry attributes are unset 
Signed-off-by: Ferdinand Thiessen <opensource@fthiessen.de>
 2023-08-17 09:48:53 +00:00
Nextcloud bot
0b2439aa7b
Fix(l10n): Update translations from Transifex 
Signed-off-by: Nextcloud bot <bot@nextcloud.com>
 2023-08-17 00:33:58 +00:00