upstream/nextcloud
1
0
Fork 0
mirror of https://github.com/nextcloud/server.git synced 2026-02-03 20:41:22 -05:00
Code Issues Projects Releases Packages Wiki Activity Actions 25
58936 commits 651 branches 1179 tags 8.1 GiB
Commit graph

444 commits

Author SHA1 Message Date
Joas Schilling
d72b633129
fix(core): Add password confirmation requirement for getapppassword 
Signed-off-by: Joas Schilling <coding@schilljs.com>
 2023-07-17 12:19:44 +02:00
Joas Schilling
8bf2d4ac52
fix(lostpassword): Also rate limit the setPassword endpoint 
Signed-off-by: Joas Schilling <coding@schilljs.com>
 2023-05-15 16:06:50 +02:00
Joas Schilling
50ce5e1c17
Add bruteforce protection to password reset page 
Signed-off-by: Joas Schilling <coding@schilljs.com>
 2023-02-07 07:53:26 +01:00
Christopher Ng
2083ed7206 Improve installation pages 
Signed-off-by: Christopher Ng <chrng8@gmail.com>
(cherry picked from commit 22768769c3)
Signed-off-by: nextcloud-command <nextcloud-command@users.noreply.github.com>
 2022-01-19 00:56:08 +00:00
Christoph Wurst
fc5b49082f
Explicitly allow some routes without 2FA 
Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
 2021-11-18 13:28:43 +01:00
Lukas Reschke
c29480793c Fix codestyle 
Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
 2021-09-07 06:36:44 +00:00
Lukas Reschke
39b15269c9 Check if SVG path is valid 
Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
 2021-09-07 06:36:43 +00:00
Jonas Meurer
d528243c0c Use IURLGenerator function to get value of \OC::$WEBROOT global 
Signed-off-by: Jonas Meurer <jonas@freesources.org>
 2021-08-16 13:12:47 +00:00
Jonas Meurer
7ddfd4dbc2 UnifiedSearchController: strip webroot from URL before finding a route 
This should fix route matching in UnifiedSearchController on setups with
Nextcloud in a subfolder (webroot).

Fixes: #24144
Signed-off-by: Jonas Meurer <jonas@freesources.org>
 2021-08-16 13:12:45 +00:00
Richard de Boer
7e9d459fea Fix functions taking optional parameters before required ones 
PHP 8 shows deprecation warnings about this, see #25806
Removes the "default" values, as they actually are required parameters anyway.

Signed-off-by: Richard de Boer <git@tubul.net>
 2021-06-07 21:33:52 +00:00
Robin Appelman
17b64a4606 remove leftover debug @NoCSRFRequired introduced with #26198 
Signed-off-by: Robin Appelman <robin@icewind.nl>
 2021-04-01 13:11:31 +00:00
Robin Appelman
5a1ae2c3c0 use node search api for legacy file search endpoint 
Signed-off-by: Robin Appelman <robin@icewind.nl>
 2021-03-23 13:41:22 +00:00
Joas Schilling
6ed4c604c7 Send emails on password reset to the displayname 
Signed-off-by: Joas Schilling <coding@schilljs.com>
 2021-02-18 14:34:38 +00:00
Joas Schilling
219cc77719 Make new result parts optional 
Signed-off-by: Joas Schilling <coding@schilljs.com>
 2021-02-13 13:59:47 +00:00
Julius Härtl
d7a80293ab
Keep direct login active when redirecting 
Signed-off-by: Julius Härtl <jus@bitgrid.net>
 2021-02-01 14:25:56 +01:00
Roeland Jago Douma
f57b93098b
Do not redirect to logout after login 
This can happen when the session was killed due to a timeout. Then
logout was triggered. Nobody wants to login only to be logged out again.

Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
 2021-01-15 09:35:51 +01:00
Christoph Wurst
9ce3ea3368
Update license headers 
Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
 2020-12-30 14:07:05 +01:00
Christoph Wurst
f37e150d1c
Merge pull request #24702 from nextcloud/enhancement/well-known-handler-api 
Add well known handlers API
 2020-12-18 13:34:04 +01:00
Christoph Wurst
d89a75be0b
Update all license headers for Nextcloud 21 
Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
 2020-12-16 18:48:22 +01:00
Christoph Wurst
6995223b1e
Add well known handlers API 
Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
 2020-12-16 13:13:05 +01:00
Julius Härtl
df769c025a
Do not load nonexisting setup.js 
Signed-off-by: Julius Härtl <jus@bitgrid.net>
 2020-12-07 07:39:25 +01:00
John Molakvoæ (skjnldsv)
e7f5516b4d
Init vue comments tab 
Signed-off-by: John Molakvoæ (skjnldsv) <skjnldsv@protonmail.com>
 2020-10-20 13:58:06 +02:00
Christoph Wurst
d9015a8c94
Format code to a single space around binary operators 
Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
 2020-10-05 20:25:24 +02:00
Joas Schilling
a8d9b22beb
Add an ETag for the search providers 
Signed-off-by: Joas Schilling <coding@schilljs.com>
 2020-09-15 09:19:53 +02:00
Morris Jobke
22ff60e088
Merge pull request #22564 from nextcloud/bugfix/noid/show-avatars-again 
The privacy setting is only about syncing to other servers
 2020-09-09 17:35:13 +02:00
Joas Schilling
c2bef528ef
Remove unused members and imports 
Signed-off-by: Joas Schilling <coding@schilljs.com>
 2020-09-08 10:45:35 +02:00
Joas Schilling
fea294bb29
Move unified search to OCS api 
Signed-off-by: Joas Schilling <coding@schilljs.com>
 2020-09-07 11:06:46 +02:00
Joas Schilling
a4b2403e29
The privacy setting is only about syncing to other servers 
Signed-off-by: Joas Schilling <coding@schilljs.com>
 2020-09-03 15:46:21 +02:00
Christoph Wurst
2a054e6c04
Update the license headers for Nextcloud 20 
Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
 2020-08-24 14:54:25 +02:00
Joas Schilling
ea8f68bea6 Hand in the route and the parameters of the request 
Signed-off-by: Joas Schilling <coding@schilljs.com>
Signed-off-by: npmbuildbot[bot] <npmbuildbot[bot]@users.noreply.github.com>
 2020-08-05 12:52:16 +00:00
John Molakvoæ (skjnldsv)
d98f7c1bd8
Make apps handle the order logic 
Signed-off-by: John Molakvoæ (skjnldsv) <skjnldsv@protonmail.com>
 2020-08-05 11:37:45 +02:00
John Molakvoæ (skjnldsv)
1a1b3e20e4 Fix unified search 
Signed-off-by: John Molakvoæ (skjnldsv) <skjnldsv@protonmail.com>
Signed-off-by: npmbuildbot[bot] <npmbuildbot[bot]@users.noreply.github.com>
 2020-08-03 11:26:03 +00:00
Joas Schilling
543fabe279
Make magic strings of ClientFlowLogin and v2 publicly available 
Signed-off-by: Joas Schilling <coding@schilljs.com>
 2020-07-17 09:06:13 +02:00
Joas Schilling
19e1efd1dd
Merge pull request #21439 from nextcloud/feature/noid/move-autocomplete-filter-event-to-new-dispatcher-and-class 
Move AutoComplete::filterResults to new event dispatcher and GenericE…
 2020-07-03 10:03:34 +02:00
Roeland Jago Douma
ffc85ad614
Merge pull request #21431 from nextcloud/search-filter-invalid-results 
Filter out search results that have invalid encoding
 2020-07-03 09:09:03 +02:00
Joas Schilling
35c6b1236f
Move AutoComplete::filterResults to new event dispatcher and GenericEvent 
Signed-off-by: Joas Schilling <coding@schilljs.com>
 2020-07-01 09:57:33 +02:00
Joas Schilling
89ed2c37bf
Update share type constant usage 
Signed-off-by: Joas Schilling <coding@schilljs.com>
 2020-06-24 16:49:16 +02:00
Christoph Wurst
4488e846a5
Add unified search API 
Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
 2020-06-24 14:20:25 +02:00
Robin Appelman
fda55db4c9
Filter out search results that have invalid encoding 
this prevents a single invalid search results from erroring the entire search request

Signed-off-by: Robin Appelman <robin@icewind.nl>
 2020-06-16 15:45:17 +02:00
Roeland Jago Douma
e1be52b97b
Trailing comma's in functin arguments break on 7.2 
Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
 2020-05-13 11:20:54 +02:00
Roeland Jago Douma
4a2a6b65f3
Cache the avatar for a day 
I noticed that on larger systems esp when using talk the avatars get
revalidated like crazy. Because people keep the tab open etc. You can do
with a slightly outdated avatar!

Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
 2020-05-12 19:37:25 +02:00
Roeland Jago Douma
ffad3f83fe
Validate app password on alternative login 
Fixes #20838

Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
 2020-05-07 16:32:28 +02:00
Daniel Kesselberg
df669a2936
Set etag for capabilities endpoint 
Signed-off-by: Daniel Kesselberg <mail@danielkesselberg.de>
 2020-04-29 15:26:46 +02:00
Christoph Wurst
cb057829f7
Update license headers for 19 
Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
 2020-04-29 11:57:22 +02:00
Morris Jobke
9b7e24a7a1
Merge pull request #19084 from nextcloud/bug/13556/wrong-paths-for-svg 
Make it possible to resolve svg's outside \OC::$SERVERROOT
 2020-04-27 10:58:34 +02:00
John Molakvoæ (skjnldsv)
25dfaefd01
Fix missing argument in JSConfigHelper 
Signed-off-by: John Molakvoæ (skjnldsv) <skjnldsv@protonmail.com>
 2020-04-27 08:40:54 +02:00
Daniel Kesselberg
72a16b1779
Make it possible to resolve svg for apps_paths outside the document root 
Previous implementation assumes the app path is always a child \OC::$SERVERROOT. That's not always true.

Signed-off-by: Daniel Kesselberg <mail@danielkesselberg.de>
 2020-04-24 16:19:10 +02:00
Roeland Jago Douma
95ad9ab4ac
Merge pull request #20401 from nextcloud/fix/login-sso-redirct 
Fix absolute redirect
 2020-04-15 11:28:40 +02:00
Christoph Wurst
28f8eb5dba
Add visibility to all constants 
Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
 2020-04-10 16:54:27 +02:00
Christoph Wurst
caff1023ea
Format control structures, classes, methods and function 
To continue this formatting madness, here's a tiny patch that adds
unified formatting for control structures like if and loops as well as
classes, their methods and anonymous functions. This basically forces
the constructs to start on the same line. This is not exactly what PSR2
wants, but I think we can have a few exceptions with "our" style. The
starting of braces on the same line is pracrically standard for our
code.

This also removes and empty lines from method/function bodies at the
beginning and end.

Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
 2020-04-10 14:19:56 +02:00