upstream/nextcloud
1
0
Fork 0
mirror of https://github.com/nextcloud/server.git synced 2026-04-25 08:08:33 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions 33
66601 commits 870 branches 1197 tags 8.4 GiB
Commit graph

12960 commits

Author SHA1 Message Date
Joas Schilling
bfc37afed3
Merge pull request #36928 from nextcloud/techdebt/noid/bruteforce-protection-attribute 
feat(middleware): Migrate BruteForceProtection annotation to PHP Attribute and allow multiple
 2023-03-16 19:33:13 +01:00
Christoph Wurst
416c824c74 perf(autoloader): Drop legacy class autoloader 
The documentation says apps should use PSR-4 to get their classes
loaded. The legacy PSR-0 is still in place and has a negative impact on
performance.

Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
 2023-03-16 12:02:09 +00:00
Julius Härtl
c7c1133c15
Merge pull request #35561 from nextcloud/create-user-transaction 2023-03-15 15:13:50 +01:00
Arthur Schiwon
a30d7c51d3
Merge pull request #37227 from nextcloud/h1-dav-brute-force-protection 
chore: use local variable for remote address
 2023-03-15 15:11:53 +01:00
Thomas Citharel
f7e65b1751 Create the database user in a transaction 
In OC\User\Manager::createUserFromBackend the newly created user is read
using getUserObject($uid, $backend) but that can cause causal read
issues (wrote in DB primary, not yet in secondary).

In OC\User\Database user backend the user cache is unset after the
insert, so it can't be used by getRealUID() (which is called by
getUserObject()).

To avoid that we make sure the user cache is repopulated in a
transaction.

Signed-off-by: Thomas Citharel <tcit@tcit.fr>
 2023-03-15 11:07:07 +00:00
Côme Chilliet
8568c11d24
Merge pull request #36033 from nextcloud/invalidateTokensWhenDeletingOAuthClientMaster 
[master] invalidate existing tokens when deleting an oauth client
 2023-03-15 11:09:51 +01:00
Côme Chilliet
9c3e06c046
Merge pull request #33061 from ibpl/master-IB#1121253 
Paths added to messages and message cleanup
 2023-03-14 17:28:22 +01:00
Artur Neumann
f634badf12
public interface to invalidate tokens of user 
Signed-off-by: Artur Neumann <artur@jankaritech.com>
 2023-03-14 17:13:29 +01:00
Simon L
5cba7f0062
Merge pull request #37192 from n0emis/empty-password 
Don't try to hash a nonexisting password
 2023-03-14 13:14:34 +01:00
Côme Chilliet
71328107da
Merge pull request #37029 from nextcloud/fix/chunk-objectids-in-systemtagobjectmapper 
Add chunking in SystemTagObjectMapper::getTagIdsForObjects
 2023-03-13 22:10:47 +01:00
Côme Chilliet
9b1d7794a8 Add chunking in SystemTagObjectMapper::getTagIdsForObjects 
This avoids crashing on Oracle with more than 1000 objects

Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>
 2023-03-13 17:36:10 +00:00
Thomas Citharel
f1751c4428
Introduced app enable/disable/update typed events 
OCP\App\ManagerEvent is depreciated since 22 without a replacement

Signed-off-by: Thomas Citharel <tcit@tcit.fr>
 2023-03-13 11:52:57 +01:00
Ember 'n0emis' Keske
6881d2f2f1
Don't try to hash a nonexisting password 
Allows to log-in via a passwordless authentication provider, eg SSO

Signed-off-by: Ember 'n0emis' Keske <git@n0emis.eu>
 2023-03-13 10:32:53 +01:00
Daniel Kesselberg
f751d2d891
chore: use local variable for remote address 
Signed-off-by: Daniel Kesselberg <mail@danielkesselberg.de>
 2023-03-10 18:04:34 +01:00
Arthur Schiwon
315510df84
Merge pull request #27034 from nextcloud/enh/s3-multipart-upload-api 
Use MultipartUpload for uploading chunks to s3
 2023-03-09 13:55:57 +01:00
Simon L
691aa8d025
Merge pull request #37140 from nextcloud/enh/35643/fix-heic-previews 
imaginary - fix autorotate for heic and improve the logic
 2023-03-09 10:25:54 +01:00
Simon L
694f743829
Merge pull request #37070 from nextcloud/enh/noid/add-free-disk-space-check 
add a check for disk_free_space in Config.php
 2023-03-09 10:24:20 +01:00
Simon L
3dbe108568
Merge pull request #37116 from nextcloud/enh/37114/add-quotes 
postgresql installation - add quotes around user names
 2023-03-09 10:22:35 +01:00
Arthur Schiwon
61aa0978ae
Merge pull request #36609 from nextcloud/lazyuserfolder-mountpoint 
optimize LazyUserFolder::getMountPoint
 2023-03-09 09:46:34 +01:00
Simon L
b39329c21c imaginary - fix autorotate and improve the logic 
Signed-off-by: Simon L <szaimen@e.mail.de>
 2023-03-09 00:11:37 +01:00
Michiel de Jong
c0e84cb512 Add SHARE_TYPE_SCIENCEMESH 
Signed-off-by: Michiel de Jong <michiel@unhosted.org>
 2023-03-08 16:46:55 +01:00
Julius Härtl
e23aa8883e
feat(s3): Use multipart upload for chunked uploading 
This allows to stream file chunks directly to S3 during upload.

Signed-off-by: Julius Härtl <jus@bitgrid.net>
 2023-03-08 14:00:04 +01:00
Joas Schilling
2b49861679
Add a debug message when throttling without defining 
Signed-off-by: Joas Schilling <coding@schilljs.com>
 2023-03-08 12:09:22 +01:00
Joas Schilling
e839eb9b5c
feat(middleware): Migrate BruteForceProtection annotation to PHP Attribute and allow multiple 
Signed-off-by: Joas Schilling <coding@schilljs.com>
 2023-03-08 12:09:22 +01:00
Simon L
40edac18f5 postgresql - add quotes around user names 
fix https://github.com/nextcloud/server/issues/37114

Signed-off-by: Simon L <szaimen@e.mail.de>
 2023-03-08 01:03:27 +01:00
Joas Schilling
6b0cef6b9a Add transaction around mass mounts operations 
Signed-off-by: Joas Schilling <coding@schilljs.com>
 2023-03-07 19:58:55 +00:00
Simon L
e87d968c24 add a check for disk_free_space in Config.php 
Signed-off-by: Simon L <szaimen@e.mail.de>
 2023-03-07 09:43:14 +00:00
Maxence Lange
e1b91fecf1
Merge pull request #36883 from nextcloud/fix/noid/gs-saml-pre-login-event 
dispatch BeforeUserLoggedInEvent
 2023-03-07 08:01:18 -01:00
Julius Härtl
d515da502f fix: Use proper path for quota fetching 
Signed-off-by: Julius Härtl <jus@bitgrid.net>
 2023-03-06 22:46:07 +00:00
Julius Härtl
3287eddbbc fix: Recalculate storage statistics on updating the quota 
Signed-off-by: Julius Härtl <jus@bitgrid.net>
 2023-03-06 22:46:07 +00:00
Joas Schilling
c297f8ee96
feat(appframework): Make ITimeFactory extend \PSR\Clock\ClockInterface 
Signed-off-by: Joas Schilling <coding@schilljs.com>
 2023-03-03 15:37:13 +01:00
John Molakvoæ
c5da4b8737
Merge pull request #36736 from Glandos/patch-2 2023-03-03 13:35:06 +01:00
Joas Schilling
de64c96a67
Merge pull request #36941 from nextcloud/bugfix/prevent-error-with-oracle-database 
Split the comments ids by chunks
 2023-03-03 12:37:15 +01:00
Julius Härtl
6130f1a78e
Implement file reference wiget 
Signed-off-by: Julius Härtl <jus@bitgrid.net>
 2023-03-02 21:01:44 +01:00
blizzz
289fadfd50
Merge pull request #36803 from nextcloud/fix/sqlite-comments 
[db]: Remove not supported column comments for SQLite
 2023-03-02 12:10:19 +01:00
Maxence Lange
980e8e24f0 dispatch BeforeUserLoggedInEvent 
Signed-off-by: Maxence Lange <maxence@artificial-owl.com>
 2023-03-01 15:31:31 -01:00
Vitor Mattos
e9295f739e Split the comments ids by chunks 
Split the comments ids by chunks to prevent error with Oracle database
that can't do a query with more than 1000 parameters.

https://github.com/nextcloud/spreed/issues/8287

Signed-off-by: Vitor Mattos <vitor@php.rio>
 2023-03-01 13:08:17 -03:00
Max
95a674e238
fix: treat text app session parameters as sensitive values 
* `PublicSessionController create` receives a share token.
* The others receive the parameters for a text session:
  `document_id`, `session_id`, `session_token`.
  Even though these are relatively short lived
  they could be used to retrieve content from the document when leaked.

Signed-off-by: Max <max@nextcloud.com>
 2023-03-01 13:03:47 +01:00
Julius Härtl
3e63298381
feat(translations): Add translation provider API 
Signed-off-by: Julius Härtl <jus@bitgrid.net>
 2023-02-27 16:52:03 +01:00
Joas Schilling
70a68e88f5
Merge pull request #36837 from nextcloud/fix/truncate-overlong-tagnames 
fix(SystemTagManager): Truncate overlong tag names
 2023-02-27 11:49:50 +01:00
Marcel Klehr
8151b1b8b0 fix(SystemTagManager): Truncate overlong tag names 
Signed-off-by: Marcel Klehr <mklehr@gmx.net>
 2023-02-24 12:55:10 +01:00
Joas Schilling
373e6325b7
Fix appconfig compatibility with Oracle DB 
Signed-off-by: Joas Schilling <coding@schilljs.com>
 2023-02-23 16:57:54 +01:00
Joas Schilling
c8c4dd637f
fix(OCC): Don't throw in the repair step for phone validation 
Signed-off-by: Joas Schilling <coding@schilljs.com>
 2023-02-23 16:57:53 +01:00
Ferdinand Thiessen
a9af58fd1a fix(DB): Remove not supported column comments when using SQLite 
Signed-off-by: Ferdinand Thiessen <rpm@fthiessen.de>
 2023-02-22 01:07:26 +01:00
Côme Chilliet
18c4761ab0
Merge pull request #36795 from nextcloud/fix/remove-erronous-parentheses-in-in-clause 
Avoid extra parenthesis around SQL in IN expressions
 2023-02-21 17:37:45 +01:00
Julien Veyssier
a7892881a3
Merge pull request #36792 from nextcloud/enh/noid/add-before-group-changed-event 
New BeforeGroupChangedEvent before setDisplayName on groups
 2023-02-21 17:22:27 +01:00
Robin Appelman
8bc9e23de5
Merge pull request #36428 from nextcloud/disable-db-user-create 
add option to disable db user creation trough environment variable
 2023-02-21 17:11:12 +01:00
Robin Appelman
b923310580
add option to disable db user creation trough environment variable 
Signed-off-by: Robin Appelman <robin@icewind.nl>
 2023-02-21 15:13:47 +01:00
Côme Chilliet
74811813e7 Avoid extra parenthesis around SQL in IN expressions 
The expression builder already suround the SQL with parenthesis when
 using in(), so we must not add another pair, this confuses at least
 sqlite.

Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>
 2023-02-21 13:37:30 +00:00
Julien Veyssier
d9925806eb
dispatch new BeforeGroupChangedEvent before setDisplayName on groups 
Signed-off-by: Julien Veyssier <julien-nc@posteo.net>
 2023-02-21 10:42:38 +01:00