upstream/nextcloud
1
0
Fork 0
mirror of https://github.com/nextcloud/server.git synced 2026-02-03 20:41:22 -05:00
Code Issues Projects Releases Packages Wiki Activity Actions 27
73283 commits 651 branches 1179 tags 8.1 GiB
Commit graph

670 commits

Author SHA1 Message Date
Julius Härtl
94fbf3e9b3
fix: Add direct parameter to flow auth v2 
Signed-off-by: Julius Härtl <jus@bitgrid.net>
 2024-08-06 22:46:14 +02:00
Julius Härtl
7f9b44d6a5 fix: Ignore preview requests for invalid file ids 
Signed-off-by: Julius Härtl <jus@bitgrid.net>
 2024-07-25 17:40:12 +00:00
Benjamin Gaussorgues
8df095f368 feat: don't count failed CSRF as failed login attempt 
Signed-off-by: Benjamin Gaussorgues <benjamin.gaussorgues@nextcloud.com>
 2024-07-11 14:27:08 +02:00
Daniel Kesselberg
01a6c9119e test: add tests for ProfilePageController 
Signed-off-by: Daniel Kesselberg <mail@danielkesselberg.de>
 2024-06-12 19:35:45 +02:00
John Molakvoæ
b9857b9a7f
Merge pull request #45817 from nextcloud/backport/45698/stable28 2024-06-12 16:30:45 +02:00
provokateurin
0f9e5ddd6c fix(core): Return X-NC-IsCustomAvatar for guest avatars too 
Signed-off-by: provokateurin <kate@provokateurin.de>
 2024-06-12 13:30:16 +02:00
skjnldsv
f1f2f5ca98 fix(files_sharing): dark avatar support 
Signed-off-by: skjnldsv <skjnldsv@protonmail.com>
 2024-06-12 13:30:16 +02:00
skjnldsv
339fdfb6b5 fix(core): allow guest avatar fallback 
Signed-off-by: skjnldsv <skjnldsv@protonmail.com>
 2024-06-12 13:23:39 +02:00
Arthur Schiwon
86a496d589
fix(Session): avoid password confirmation on SSO 
SSO backends like SAML and OIDC tried a trick to suppress password
confirmations as they are not possible by design. At least for SAML it was
not reliable when existing user backends where used as user repositories.

Now we are setting a special scope with the token, and also make sure that
the scope is taken over when tokens are regenerated.

Signed-off-by: Arthur Schiwon <blizzz@arthur-schiwon.de>
 2024-06-12 11:14:25 +02:00
John Molakvoæ (skjnldsv)
c0f0ec4693 fix(core): unsupported browser redirect url 
Signed-off-by: John Molakvoæ (skjnldsv) <skjnldsv@protonmail.com>
 2024-06-04 13:27:16 +00:00
fenn-cs
15115a4353 feat: Limit email input on auth pages to 255 chars 
Excessively long emails reported make server unresponsive.

We could at some point, consider adding a configuration for sysadmins to bypass this setting
on their instance if they want.

Signed-off-by: fenn-cs <fenn25.fn@gmail.com>
 2024-05-28 21:29:57 +00:00
Joas Schilling
901be699e4
fix(search): Limit maximum number of search results 
Signed-off-by: Joas Schilling <coding@schilljs.com>
 2024-05-15 10:45:51 +02:00
Eduardo Morales
0045eec589 feat: added login's initial possible email-states 
Signed-off-by: Eduardo Morales <emoral435@gmail.com>
 2024-03-11 10:30:20 -05:00
Gaspard d'Hautefeuille
7e7a4ddd5c Keep https check 
https://github.com/nextcloud/server/issues/41196 + keep https check

Co-authored-by: Louis <louis@chmn.me>
Signed-off-by: Gaspard d'Hautefeuille <github@dhautefeuille.eu>
 2024-02-22 08:41:26 +01:00
Gaspard d'Hautefeuille
7418c3e1f4 Cancel PR #37405, remove regression code 
Signed-off-by: Gaspard d'Hautefeuille <github@dhautefeuille.eu>
 2024-02-22 08:41:26 +01:00
Côme Chilliet
4cf140b5e5 fix: Support other schemes than HTTP and HTTPS in app navigation 
Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>
 2024-02-12 10:14:21 +00:00
Côme Chilliet
ce808eefb5 fix: Revert external url support in icon as it’s not allowed 
Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>
 2024-02-12 10:14:21 +00:00
Côme Chilliet
eba0ff339b Allow application to pass external links in navigation 
Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>
 2024-02-12 10:14:20 +00:00
provokateurin
98d64ea05d refactor: Migrate IgnoreOpenAPI attributes to OpenAPI 
Signed-off-by: provokateurin <kate@provokateurin.de>
 2024-01-19 09:12:34 +01:00
Côme Chilliet
63fbf90570 Suppress or fix psalm errors related to InvalidTokenException 
Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>
 2024-01-11 18:01:00 +00:00
Côme Chilliet
360e7ffcca Always catch OCP versions of authentication exceptions 
And always throw OC versions for BC

Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>
 2024-01-11 18:00:59 +00:00
Joas Schilling
aa5f037af7
chore: apply changes from Nextcloud coding standards 1.1.1 
Signed-off-by: Joas Schilling <coding@schilljs.com>
Signed-off-by: Benjamin Gaussorgues <benjamin.gaussorgues@nextcloud.com>
 2023-11-23 10:36:13 +01:00
Benjamin Gaussorgues
33837e7d6f
Fix invalid users/groups handling in advanced search 
Signed-off-by: Benjamin Gaussorgues <benjamin.gaussorgues@nextcloud.com>
 2023-11-15 10:17:43 +01:00
Joas Schilling
0feb55ee93
Merge pull request #41271 from nextcloud/enh/text-processing-iprovider2 
enh(TextProcessing): Add two new provider interfaces
 2023-11-13 10:49:14 +01:00
Benjamin Gaussorgues
c753eefb21
feat(search): Allow multiple search terms in UnifiedController 
Signed-off-by: Benjamin Gaussorgues <benjamin.gaussorgues@nextcloud.com>
 2023-11-10 09:21:16 +01:00
Marcel Klehr
b45007f38f
Merge branch 'master' into enh/text-processing-iprovider2 2023-11-09 13:46:18 +01:00
Christoph Wurst
a5422a3998
fix: Show error message when CSRF check fails at login 
Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
 2023-11-08 15:18:34 +01:00
Marcel Klehr
8c0c426538
Merge branch 'master' into enh/text-processing-iprovider2 
Signed-off-by: Marcel Klehr <mklehr@gmx.net>
 2023-11-08 11:52:47 +01:00
Marcel Klehr
d11b9cbd79 fix(TextProcessing/Manager): Throw TaskFailureException upon failure 
Signed-off-by: Marcel Klehr <mklehr@gmx.net>
 2023-11-06 12:50:16 +01:00
Marcel Klehr
181f819e41 enh(TextProcessing): Add IProvider2 
- allow providers to obtain current task's userId
- allow providers to expose average task runtime

Signed-off-by: Marcel Klehr <mklehr@gmx.net>
 2023-11-03 16:22:54 +01:00
Christopher Ng
7f530d22e1 fix: Only highlight profile entry when viewing own profile 
Signed-off-by: Christopher Ng <chrng8@gmail.com>
 2023-11-02 15:43:56 -07:00
Joas Schilling
2b8114d59d
feat(events): Add typed event for filtering autocompletion suggestions 
Signed-off-by: Joas Schilling <coding@schilljs.com>
 2023-11-02 11:08:53 +01:00
Robin Appelman
1fffa3eae0
load script and styles on setup page 
Signed-off-by: Robin Appelman <robin@icewind.nl>
 2023-10-31 10:03:09 +01:00
Marcel Müller
c2393fb712 Reset BFP for sudo action 
Signed-off-by: Marcel Müller <marcel-mueller@gmx.de>
 2023-10-28 18:36:43 +02:00
Christopher Ng
d899e676de fix: Set profile as active nav entry 
Signed-off-by: Christopher Ng <chrng8@gmail.com>
 2023-10-26 10:30:22 -07:00
Joas Schilling
2b7f78fc2e
Merge pull request #40326 from nextcloud/enh/text-to-image-api 
Implement TextToImage OCP API
 2023-10-26 15:53:30 +02:00
Marcel Klehr
154bb53538
Update core/Controller/TextToImageApiController.php 
Co-authored-by: Côme Chilliet <91878298+come-nc@users.noreply.github.com>
Signed-off-by: Marcel Klehr <mklehr@gmx.net>
 2023-10-26 11:35:55 +02:00
Marcel Klehr
47e13cd55b en(TextToImage): Use specific exception class instead of generic RuntimeException 
Signed-off-by: Marcel Klehr <mklehr@gmx.net>
 2023-10-26 11:16:15 +02:00
Joas Schilling
2353d3cd5c
feat(profile): Add public interface for profile manager so apps can check config 
Signed-off-by: Joas Schilling <coding@schilljs.com>
 2023-10-23 12:56:31 +02:00
Marcel Klehr
7b7f552a6e fix(Text2Image): Fix OpenAPI types 
Signed-off-by: Marcel Klehr <mklehr@gmx.net>
 2023-10-20 13:33:05 +02:00
Marcel Klehr
b7fd5185b6 enh(TextToImage): Allow generating multiple images with one task 
Signed-off-by: Marcel Klehr <mklehr@gmx.net>
 2023-10-20 13:13:15 +02:00
Marcel Klehr
8968573d9f enh(TextToImage): Add getExpectedRuntime to IProvider and run tasks during request lifetime if possible 
Signed-off-by: Marcel Klehr <mklehr@gmx.net>
 2023-10-20 12:17:17 +02:00
Marcel Klehr
92cc171a61 fix(TextToImage): Fix OpenAPI definitions 
Signed-off-by: Marcel Klehr <mklehr@gmx.net>
 2023-10-19 11:07:03 +02:00
Marcel Klehr
6238aca6c5 fix(TextToImage): Fix bruteforce protection 
Signed-off-by: Marcel Klehr <mklehr@gmx.net>
 2023-10-18 14:46:40 +02:00
Marcel Klehr
e57e94e11a fix(TextToImage): Add bruteforce protection to API 
Signed-off-by: Marcel Klehr <mklehr@gmx.net>
 2023-10-18 14:09:19 +02:00
Marcel Klehr
d3da49de44 fix(TextToImage): Fix docblock of getImage route 
Signed-off-by: Marcel Klehr <mklehr@gmx.net>
 2023-10-18 13:31:00 +02:00
Marcel Klehr
c5fbe5a7bc enh(TextToImage): Add bruteforce protection for anonymous API usage 
Signed-off-by: Marcel Klehr <mklehr@gmx.net>
 2023-10-18 13:31:00 +02:00
Marcel Klehr
e5efbc88d8 enh(TextToImage): Address review comments 
Signed-off-by: Marcel Klehr <mklehr@gmx.net>
 2023-10-18 13:21:50 +02:00
Marcel Klehr
1e36d74c3e Update core/Controller/TextToImageApiController.php 
Co-authored-by: Julius Härtl <jus@bitgrid.net>
Signed-off-by: Marcel Klehr <mklehr@gmx.net>
 2023-10-18 13:21:50 +02:00
Marcel Klehr
2d44c7c1ed Small fixes 
Signed-off-by: Marcel Klehr <mklehr@gmx.net>
 2023-10-18 13:21:50 +02:00