Morris Jobke
ce7d9998dc
Drop old authtoken table (pre 5.0.0)
...
* fixes #155
2016-06-21 16:35:08 +02:00
Lukas Reschke
a11896766c
Some more branding
2016-06-20 22:10:20 +02:00
Morris Jobke
8abf6e0ed1
fixed code
2016-06-20 18:50:56 +02:00
Jörn Friedrich Dreyer
cf3b5e3e86
Capped cache for user config
2016-06-20 17:39:00 +02:00
Roeland Jago Douma
07436d089b
Do not recurse link share fetching
...
* Might fix an issue on oracle
2016-06-20 17:38:59 +02:00
Vincent Petry
ac56629c86
Capped cache for cache info in UserMountCache
2016-06-20 17:37:38 +02:00
Vincent Petry
3189c22ff3
Use capped cache for encryption's user access list
2016-06-20 17:37:09 +02:00
Lukas Reschke
202530f4f3
Soften the cookie check if no cookies are sent
...
When no cookies are sent it is not required to perform any check for the strict or lax cookie, it does not provide any significant security advantage.
It does however interfer with the Android client which requests thumbnails from the unofficial API at `/index.php/apps/files/api/v1/thumbnail/256/256/{filename}`. This endpoint expects the strict cookie to be existent to not leak the existence of files. The Android client authenticates against this endpoint using Basic Auth and without cookies in some cases at least. This will make these endpoints work again with such cases.
To test this issue the following cURL command once without the patch and once with:
> curl http://localhost/index.php/apps/files/api/v1/thumbnail/256/256/welcome.txt -u admin -v
Without the patch the request is redirected (which the client does not obey) and with the patch the preview is returned.
2016-06-15 11:50:26 +02:00
Arthur Schiwon
a761fd65f0
Merge branch 'stable9' of https://github.com/owncloud/core into downstream-160613
2016-06-13 23:45:21 +02:00
Lukas Reschke
b73972f3a1
Add more branding
...
- Shows "Nextcloud will be updated" in the updater screen
- Shows "Nextcloud" if you add a bookmark on iOS instead of "ownCloud"
2016-06-13 22:44:12 +02:00
Roeland Douma
7863987b19
Repair job to fix permissions for avatars ( #25068 )
...
Backport of #24898
Cherry-picked:
1b66db72d960225284f328d9ad2817
2016-06-13 12:47:02 +02:00
Lukas Reschke
470f23c8b9
Merge pull request #54 from nextcloud/backport-upload-only-shares
...
[stable9] Backport files drop feature
2016-06-13 00:26:47 +02:00
Lukas Reschke
bcf693539b
Add ownCloud root CA
...
As the apps from the appstore are at the moment signed by the ownCloud Root CA we have to add it as fallback as well. We can remove that once Nextcloud 10 with new appstore has been released.
2016-06-13 00:08:48 +02:00
Lukas Reschke
eb7ed2356f
[stable9] Use custom updater URL
2016-06-12 23:49:23 +02:00
Lukas Reschke
84607f42dc
Link to Nextcloud Android client
2016-06-12 23:14:34 +02:00
Lukas Reschke
b4eefc00cd
Link to Nextcloud docs
2016-06-12 19:19:46 +02:00
Lukas Reschke
40950edbab
Revert "Remove "Help" link from personal sidebar"
...
This reverts commit 34ad3f7ada
2016-06-12 19:12:35 +02:00
Lukas Reschke
68c38ae8c2
[stable9] Backport files drop feature
2016-06-11 11:38:16 +02:00
Lukas Reschke
7cc37b08ed
Merge pull request #37 from nextcloud/downstream-stable9-160610
...
Downstream stable9 16-06-10
2016-06-11 10:49:45 +02:00
Lukas Reschke
bd8d50d125
Merge pull request #44 from nextcloud/stable9-add-same-site-cookies
...
[stable9] Add Same Site Cookie protection
2016-06-11 10:31:24 +02:00
Lukas Reschke
2c6a5fcf91
Add Same Site Cookie protection
2016-06-10 17:15:43 +02:00
Jan-Christoph Borchardt
8d32813c42
backport design change
2016-06-10 15:31:57 +02:00
Arthur Schiwon
674e1d0205
Merge branch 'stable9' of https://github.com/owncloud/core into downstream-stable9-160610
2016-06-10 11:42:07 +02:00
Vincent Petry
9dff5501e8
Merge pull request #25045 from owncloud/stable9-admin-datadircheck-fix
...
[stable9] Use temporary htaccesstest.txt for data dir security check
2016-06-09 15:59:01 +02:00
Vincent Petry
eb34e95fd3
Use temporary htaccesstest.txt for data dir security check
2016-06-09 11:59:42 +02:00
Robin Appelman
d46cb39e3c
skip scanning for a user when the user is not setup yet
2016-06-09 11:37:02 +02:00
Arthur Schiwon
a49f5b72c6
Print error message again, when 3rdparty submodule is not initialized
...
- old code used Response which attempted to use OC::$server which is not
and cannot be intialised at this part of the code.
2016-06-08 12:26:16 +02:00
VicDeo
7f3f06cdd9
Fix update from 9.0.0 and 9.0.1 ( #24854 )
2016-06-07 09:46:53 +02:00
Lukas Reschke
34ad3f7ada
Remove "Help" link from personal sidebar
...
At the moment we want to hide the help link from the personal sidebar as it contains the original ownCloud documentation.
Once we have our own documentation with our proper branding and so on we can reenable this.
2016-06-06 18:45:27 +02:00
Joas Schilling
afb4c1e694
Allow public upload when the quota is unlimited ( #24988 )
2016-06-06 13:48:38 +02:00
Vincent Petry
7f3bfeffe2
Merge pull request #24921 from owncloud/stable9-backport-24795
...
[9.0] Allow opening the password reset link in a new window when …
2016-06-02 15:31:36 +02:00
Vincent Petry
4eb87be488
Merge pull request #24944 from owncloud/fix_21173_stable9
...
stable9: normalize path in getInternalPath
2016-06-02 15:30:47 +02:00
Vincent Petry
8f04bf3793
Backport of share id as string fix
2016-06-01 17:48:35 +02:00
Georg Ehrke
a08c9b3526
normalize path in getInternalPath
2016-06-01 13:06:59 +02:00
Joas Schilling
69e54bde1f
Allow opening the password reset link in a new window when its a URL
2016-06-01 12:15:10 +02:00
Robin Appelman
2ca5f3f957
trigger size calculation after scanning
2016-06-01 10:27:56 +02:00
Lukas Reschke
2516d07fdd
[stable9] Properly check for mbstring extension
...
mb_detect_encoding is in the fallback we ship in the polyfill library, mb_strcut is not. Thus this lead to a false positive and ownCloud would just break.
2016-05-31 08:15:18 +02:00
Joas Schilling
abd8475336
Only show message in the UI when the checker is enabled ( #24773 )
2016-05-30 14:50:45 +02:00
Piotr Filiciak
002a7f8294
replaced UnseekableException => NotPermittedException
2016-05-25 15:38:48 +02:00
Vincent Petry
8c439643a1
Lowercase class name for unseekableexception
...
Because 9.1 was PSR-4 and the backport goes back to the old style
2016-05-25 11:13:06 +02:00
Piotr Filiciak
7a791c5472
Code style and doc fix
2016-05-25 11:11:56 +02:00
Piotr Filiciak
f29f85709a
Http Range requests support in downloads
...
Http range requests support is required for video preview
2016-05-25 11:11:47 +02:00
Vincent Petry
3d4f29f622
Merge pull request #24417 from owncloud/fix_24182_9.0
...
[stable9] first call the post_login hooks, before we call getUserFolder.
2016-05-24 10:41:09 +02:00
Joas Schilling
3c73e54eb9
Make sure that installed is a boolean
2016-05-23 13:23:51 +02:00
Joas Schilling
5da9f10af2
Remove the password from the validateUserPass() method as well
2016-05-19 12:11:31 +02:00
Vincent Petry
173e304be9
Merge pull request #24414 from owncloud/stable9_24405
...
[Stable9] Use a CappedCache in the user database backend
2016-05-19 10:31:31 +02:00
Vincent Petry
ceea3e9104
Merge pull request #24705 from owncloud/locking-mark-reload-free-9
...
[9.0] free up memory when releasing the last shared lock
2016-05-19 10:28:23 +02:00
Vincent Petry
fe1b8adf08
Merge pull request #24676 from owncloud/stable9-fixchunkttl
...
[stable9] Allow chunk GC mtime tolerance for unfinished part chunks
2016-05-18 18:19:26 +02:00
Robin Appelman
e36d70c0de
free up memory when releasing the last shared lock
2016-05-18 16:19:35 +02:00
Vincent Petry
dfc0a7a4a6
Allow chunk GC mtime tolerance for unfinished part chunks
...
Whenever part chunks are written, every fwrite in the write loop will
reset the mtime to the current mtime. Only at the end will the touch()
operation set the mtime to now + ttl, in the future.
However the GC code is expecting that every chunk with mtime < now are
old and must be deleted. This causes the GC to sometimes delete part
chunks in which the write loop is slow.
To fix this, a tolerance value is added in the GC code to allow for
more time before a part chunk gets deleted.
2016-05-17 17:15:09 +02:00
