upstream/nextcloud
1
0
Fork 0
mirror of https://github.com/nextcloud/server.git synced 2026-05-28 04:32:30 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions 25
72810 commits 985 branches 1211 tags 9.7 GiB
Commit graph

13997 commits

Author SHA1 Message Date
Arthur Schiwon
b54668be35
Merge pull request #45704 from nextcloud/backport/43942/stable28 
[stable28] fix(Session): avoid password confirmation on SSO
 2024-06-12 14:31:37 +02:00
Arthur Schiwon
4ec174197f
fix(Token): make new scope future compatible 
- "password-unconfirmable" is the effective name for 30, but a draft
  name was backported.

Signed-off-by: Arthur Schiwon <blizzz@arthur-schiwon.de>
 2024-06-12 11:25:35 +02:00
Arthur Schiwon
86a496d589
fix(Session): avoid password confirmation on SSO 
SSO backends like SAML and OIDC tried a trick to suppress password
confirmations as they are not possible by design. At least for SAML it was
not reliable when existing user backends where used as user repositories.

Now we are setting a special scope with the token, and also make sure that
the scope is taken over when tokens are regenerated.

Signed-off-by: Arthur Schiwon <blizzz@arthur-schiwon.de>
 2024-06-12 11:14:25 +02:00
Ferdinand Thiessen
95cd3d59bd fix(Mailer): Allow to enforce strict email format 
Signed-off-by: Ferdinand Thiessen <opensource@fthiessen.de>
 2024-06-11 18:38:00 +02:00
John Molakvoæ
4c7285623c
Merge pull request #45294 from nextcloud/backport/44791/stable28 2024-06-07 12:18:35 +02:00
John Molakvoæ
fc66712d59
Merge pull request #44926 from nextcloud/backport/44039/stable28 2024-06-07 12:18:16 +02:00
John Molakvoæ
aeb17e825f
Merge pull request #45198 from nextcloud/backport/45196/stable28 2024-06-07 12:12:23 +02:00
John Molakvoæ
378833e343
Merge pull request #45528 from nextcloud/backport/45014/stable28 2024-06-07 12:01:04 +02:00
John Molakvoæ
309697d5dc
Merge pull request #44958 from nextcloud/backport/44884/stable28 2024-06-07 11:29:15 +02:00
provokateurin
de7f1054eb fix(OC_Image): Set correct return type for exif_imagetype stub 
Signed-off-by: provokateurin <kate@provokateurin.de>
 2024-06-06 12:52:09 +02:00
Benjamin Gaussorgues
75d6cc518a
Merge pull request #45646 from nextcloud/backport/45455/stable28 2024-06-05 14:53:59 +02:00
Anna
13c4787193
Merge pull request #45640 from nextcloud/backport/45235/stable28 
[stable28] fix(caldav): automatically delete outdated scheduling objects
 2024-06-04 12:08:33 +02:00
provokateurin
d96f8e0ab2 fix(NavigationManager): Make entry order always an integer 
Signed-off-by: provokateurin <kate@provokateurin.de>
 2024-06-04 09:31:04 +02:00
Robin Appelman
478b2859e6 feat: add request id as comment to all queries 
Signed-off-by: Robin Appelman <robin@icewind.nl>
 2024-06-04 07:50:58 +02:00
Josh
5ebd5626c5
Merge pull request #45059 from nextcloud/backport/44496/stable28 
[stable28] feat: support "s3-accelerate" endpoint
 2024-06-03 17:19:37 -04:00
Anna Larch
57f7f0278e fix(caldav): automatically delete outdated scheduling objects 
Signed-off-by: Anna Larch <anna@nextcloud.com>
 2024-06-03 17:31:03 +02:00
yemkareems
0b39ab1c6d
Merge pull request #45362 from nextcloud/backport/45355/stable28 
[stable28] fix: delete user credentials stored in storages_credentials when user gets deleted
 2024-06-03 18:38:15 +05:30
Git'Fellow
37592233e1
Merge pull request #44980 from nextcloud/backport/44794/stable28 
[stable28] fix(memcache): remove double $$ to fix error
 2024-06-03 09:11:38 +02:00
Velwark
0ab72ee66d Update LoggerWrapperCache.php 
Extra Dollar Sign caused errors in Nextcloud. Removing the Dollar Sign Solved the Problem.

Signed-off-by: Velwark <levinfrerich9@gmail.com>
 2024-05-31 18:10:02 +02:00
Christoph Wurst
9880800aee fix(auth): Update authtoken activity selectively 
Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
 2024-05-31 17:30:07 +02:00
Julius Härtl
41528b1541 fix: Always set last activity if we update the row of an authtoken anyways 
Signed-off-by: Julius Härtl <jus@bitgrid.net>
 2024-05-31 17:30:07 +02:00
Benjamin Gaussorgues
ca5cfdf88a fix(groups): allows to save group names with more than 64 characters 
Mimic behaviour from LDAP users and add a hard limit to 255 characters

Signed-off-by: Benjamin Gaussorgues <benjamin.gaussorgues@nextcloud.com>
 2024-05-31 10:54:53 +02:00
Git'Fellow
4df77c6fa1 Try create folder first and check if it exists after 
Co-authored-by: Benjamin Gaussorgues <benjamin.gaussorgues@nextcloud.com>
Signed-off-by: Git'Fellow <12234510+solracsf@users.noreply.github.com>
 2024-05-30 18:30:37 +00:00
Git'Fellow
fe459f9d74 fix(files): Try to create dir only if it not exists 
Signed-off-by: Git'Fellow <12234510+solracsf@users.noreply.github.com>
 2024-05-30 18:30:37 +00:00
yemkareems
043c64aef1 fix: delete user credentials stored in storages_credentials when user gets deleted 
Signed-off-by: yemkareems <yemkareems@gmail.com>
 2024-05-30 15:00:28 +02:00
Christoph Wurst
66898f82f1 perf(db): Sort data for IN before chunking 
Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
 2024-05-29 08:39:44 -04:00
Christoph Wurst
3534f3dd7a fix(session): Do not update authtoken last_check for passwordless 
Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
 2024-05-29 13:23:05 +02:00
Joas Schilling
81805039d1 fix: Mark more configs as sensitive 
Signed-off-by: Joas Schilling <coding@schilljs.com>
 2024-05-28 17:57:50 -04:00
Git'Fellow
91c1d0bf7e
Fix backport 
Signed-off-by: Git'Fellow <12234510+solracsf@users.noreply.github.com>
 2024-05-28 11:30:00 +02:00
Côme Chilliet
5fc46cd516
fix: Also search in email field for disabled users 
To match what is done for Database backend for enabled users

Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>
 2024-05-27 15:03:07 +02:00
Côme Chilliet
896c539705
feat: Add back searching in disabled user list 
When disabled users where moved to their own endpoint we overlooked
 search, so adding it back.
The search is done case-insensitive in uid and display name.

Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>
 2024-05-27 15:03:03 +02:00
Robin Appelman
d1e53c64cc fix: forbid moving a folder into a subfolder of itself 
Signed-off-by: Robin Appelman <robin@icewind.nl>

[skip ci]
 2024-05-27 12:31:49 +00:00
Joas Schilling
b042aacd59
Merge pull request #45372 from nextcloud/backport/45236/stable28 
[stable28] Hide 'updater.server.url' As It May Contain Enterprise Key
 2024-05-16 16:51:36 +02:00
Joas Schilling
55dd8087c4
Merge pull request #45339 from nextcloud/backport/44710/stable28 
[stable28] fix(preview): check mime type before processing with Imagick
 2024-05-16 16:42:05 +02:00
derschiw
a70d14aa3a fix(SystemConfig.php): Add 'updater.server.url' to Private Variables 
Add "updater.server.url" to the privacy redacted values, as it may contain the enterprise key.

Signed-off-by: derschiw <37687705+derschiw@users.noreply.github.com>
 2024-05-16 14:31:10 +00:00
Joas Schilling
9551fe5255
Merge pull request #45342 from nextcloud/backport/45340/stable28 
[stable28] fix: Extend SVG reference check
 2024-05-16 11:18:19 +02:00
Joas Schilling
5b07cfa5db
fix: Extend SVG reference check 
Signed-off-by: Joas Schilling <coding@schilljs.com>
 2024-05-16 10:03:54 +02:00
Varun Patil
312dc5612f fix(preview): check mime type before processing with Imagick 
Signed-off-by: Varun Patil <varunpatil@ucla.edu>
 2024-05-15 20:16:43 +00:00
Joas Schilling
9379fd9f70
fix: Correctly check result of function 
Signed-off-by: Joas Schilling <coding@schilljs.com>
 2024-05-15 10:40:15 +02:00
Robin Appelman
dd5d75d86f
fix: cleanup logic for getting the max reshare permissions 
Signed-off-by: Robin Appelman <robin@icewind.nl>
 2024-05-13 16:41:09 +02:00
Josh
b62901131f fix(Files): Change how scanner diffs for changed metadata 
Fixes #43408 

Signed-off-by: Josh <josh.t.richards@gmail.com>
 2024-05-13 09:06:41 +00:00
Robin Appelman
2f0b200665 feat: add option to enable s3 acceleration 
Signed-off-by: Robin Appelman <robin@icewind.nl>
 2024-05-10 10:03:40 -04:00
Josh
9046cd9c0f fix(User\Manager): Avoid future collisions with updater/audit logs 
Avoid future collisions for not yet created updater and audit log files (at least using default names).

Signed-off-by: Josh <josh.t.richards@gmail.com>
 2024-05-06 14:31:49 +00:00
Joas Schilling
f09f4ec8db
fix(session): Avoid race condition for cache::get() vs. cache::hasKey() 
Signed-off-by: Joas Schilling <coding@schilljs.com>
 2024-05-06 12:08:41 +02:00
Côme Chilliet
a3456b74be fix: Remove bogus code from query builder and fix parameter name 
Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>
 2024-04-30 10:35:50 +00:00
Sam Bull
6ff1f464ce fix: regression with updating read-only config 
Signed-off-by: Sam Bull <git@sambull.org>
 2024-04-18 19:01:50 +00:00
Joas Schilling
0095ce7723
fix(CI): Suppress psalm UndefinedClass 
Signed-off-by: Joas Schilling <coding@schilljs.com>
 2024-04-18 09:32:35 +02:00
Joas Schilling
1dcc48ac4f fix(files): Also skip cross storage move with access control 
Signed-off-by: Joas Schilling <coding@schilljs.com>
 2024-04-17 14:32:55 +00:00
Florian Klinger
ca655ba100 fix: add check for app_api_system session flag to bypass rate limit 
Signed-off-by: Florian Klinger <florian.klinger@nextcloud.com>
Signed-off-by: Andrey Borysenko <andrey18106x@gmail.com>
 2024-04-17 11:22:05 +02:00
Benjamin Gaussorgues
88859aa41c
Merge pull request #44461 from nextcloud/backport/44394/stable28 2024-04-17 11:19:04 +02:00