upstream/nextcloud
1
0
Fork 0
mirror of https://github.com/nextcloud/server.git synced 2026-05-28 04:32:30 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions 25
87736 commits 985 branches 1211 tags 9.7 GiB
Commit graph

403 commits

Author SHA1 Message Date
Joas Schilling
820f2145a1
chore: Bump app versions and requirements 
Signed-off-by: Joas Schilling <coding@schilljs.com>
 2026-05-15 09:31:33 +02:00
Carl Schwan
06f0765e19 fix: Fix permission issue when uploading a chunked file 
Follow up from #59511

Signed-off-by: Carl Schwan <carlschwan@kde.org>
 2026-05-08 11:47:16 +02:00
Sebastian Krupinski
585ca98367
Merge pull request #59517 from nextcloud/feat/part-full-day-default-alarm 
feat: default full / part day alarm
 2026-04-30 12:42:58 -04:00
Ferdinand Thiessen
3e8b8784fd
refactor: migrate app repair steps to new interface 
Signed-off-by: Ferdinand Thiessen <opensource@fthiessen.de>
 2026-04-27 20:03:44 +02:00
SebastianKrupinski
f9a96c150f feat: default full / part day alarm 
Signed-off-by: SebastianKrupinski <krupinskis05@gmail.com>
 2026-04-14 18:24:48 -04:00
Robin Appelman
3cd3c6dd90 fix: only mask the permissions for the users home directory for public shares 
this ensures that versions/trashbin/etc is still usable

Signed-off-by: Robin Appelman <robin@icewind.nl>
 2026-04-09 16:19:10 +02:00
Kate
ddf79066b9
Merge pull request #58689 from nextcloud/fix/federated-reshare 2026-03-12 12:01:24 +01:00
provokateurin
5dbbe2ccf9
fix(dav): Use share initiator to get the share node, because the owner might on another server 
Signed-off-by: provokateurin <kate@provokateurin.de>
 2026-03-12 10:31:25 +01:00
Grigory Vodyanov
e3c2920c18 feat: add default reminder setting caldav 
Signed-off-by: Grigory Vodyanov <scratchx@gmx.com>
 2026-03-11 12:45:04 -04:00
nextcloud-command
663018455e refactor: Apply rector changes 
Signed-off-by: GitHub <noreply@github.com>
 2026-03-01 14:43:11 +00:00
provokateurin
f12cecb684
feat(rector): Enable SafeDeclareStrictTypesRector 
Signed-off-by: provokateurin <kate@provokateurin.de>
 2026-02-09 10:59:31 +01:00
Joas Schilling
1d78386806
chore: Bump app versions and requirements 
Signed-off-by: Joas Schilling <coding@schilljs.com>
 2026-01-22 08:59:28 +01:00
Carl Schwan
3555e00754
refactor(dav): fix psalm for dav endpoints 
Signed-off-by: Carl Schwan <carl.schwan@nextcloud.com>
 2025-12-17 15:09:48 +01:00
Salvatore Martire
31af870ef0
Merge pull request #55147 from nextcloud/fixPublicShares
Some checks are pending
CodeQL Advanced / Analyze (actions) (push) Waiting to run
Details
CodeQL Advanced / Analyze (javascript-typescript) (push) Waiting to run
Details
Integration sqlite / changes (push) Waiting to run
Details
Integration sqlite / integration-sqlite (master, 8.4, main, --tags ~@large files_features) (push) Blocked by required conditions
Details
Integration sqlite / integration-sqlite (master, 8.4, main, capabilities_features) (push) Blocked by required conditions
Details
Integration sqlite / integration-sqlite (master, 8.4, main, collaboration_features) (push) Blocked by required conditions
Details
Integration sqlite / integration-sqlite (master, 8.4, main, comments_features) (push) Blocked by required conditions
Details
Integration sqlite / integration-sqlite (master, 8.4, main, dav_features) (push) Blocked by required conditions
Details
Integration sqlite / integration-sqlite (master, 8.4, main, features) (push) Blocked by required conditions
Details
Integration sqlite / integration-sqlite (master, 8.4, main, federation_features) (push) Blocked by required conditions
Details
Integration sqlite / integration-sqlite (master, 8.4, main, file_conversions) (push) Blocked by required conditions
Details
Integration sqlite / integration-sqlite (master, 8.4, main, files_reminders) (push) Blocked by required conditions
Details
Integration sqlite / integration-sqlite (master, 8.4, main, filesdrop_features) (push) Blocked by required conditions
Details
Integration sqlite / integration-sqlite (master, 8.4, main, ldap_features) (push) Blocked by required conditions
Details
Integration sqlite / integration-sqlite (master, 8.4, main, openldap_features) (push) Blocked by required conditions
Details
Integration sqlite / integration-sqlite (master, 8.4, main, openldap_numerical_features) (push) Blocked by required conditions
Details
Integration sqlite / integration-sqlite (master, 8.4, main, remoteapi_features) (push) Blocked by required conditions
Details
Integration sqlite / integration-sqlite (master, 8.4, main, routing_features) (push) Blocked by required conditions
Details
Integration sqlite / integration-sqlite (master, 8.4, main, setup_features) (push) Blocked by required conditions
Details
Integration sqlite / integration-sqlite (master, 8.4, main, sharees_features) (push) Blocked by required conditions
Details
Integration sqlite / integration-sqlite (master, 8.4, main, sharing_features) (push) Blocked by required conditions
Details
Integration sqlite / integration-sqlite (master, 8.4, main, theming_features) (push) Blocked by required conditions
Details
Integration sqlite / integration-sqlite (master, 8.4, main, videoverification_features) (push) Blocked by required conditions
Details
Integration sqlite / integration-sqlite-summary (push) Blocked by required conditions
Details
Psalm static code analysis / static-code-analysis (push) Waiting to run
Details
Psalm static code analysis / static-code-analysis-security (push) Waiting to run
Details
Psalm static code analysis / static-code-analysis-ocp (push) Waiting to run
Details
Psalm static code analysis / static-code-analysis-ncu (push) Waiting to run
Details 
Reflect public shares in `isPublic` flag and fix permission check
 2025-12-03 16:37:33 +01:00
SebastianKrupinski
54e23aeac9 feat(CalDAV): Increase Calendar Object UID field size 
Signed-off-by: SebastianKrupinski <krupinskis05@gmail.com>
 2025-12-02 12:54:00 -05:00
Salvatore Martire
631318f86f style: apply cs-fixer to publicwebdav.php 
Signed-off-by: Salvatore Martire <4652631+salmart-dev@users.noreply.github.com>
 2025-12-01 18:09:25 +01:00
Salvatore Martire
38f8423cd6 fix: isPublicShare =true when share is public 
The isPublicShare was set to false in one instance where it should have
been true. Flipping the value to true, would break the functionality for
PROPFIND /public.php/webdav/ which returns properties of files in a
share identified by the username being the share token.

Signed-off-by: Salvatore Martire <4652631+salmart-dev@users.noreply.github.com>
 2025-12-01 18:09:25 +01:00
provokateurin
5fa4c3d8fd
fix(publicremote): Always grant read and delete permission for chunked uploads to a share 
Signed-off-by: provokateurin <kate@provokateurin.de>
 2025-10-15 23:37:58 +02:00
provokateurin
6a12fbc4f3
refactor: Run rector 
Signed-off-by: provokateurin <kate@provokateurin.de>
 2025-09-27 18:52:58 +02:00
SebastianKrupinski
cab9a5deea fix: automatically disable sab 
Signed-off-by: SebastianKrupinski <krupinskis05@gmail.com>
 2025-09-18 11:00:59 -04:00
Joas Schilling
e37dbc1487
chore: Bump app versions and requirements 
Signed-off-by: Joas Schilling <coding@schilljs.com>
 2025-09-04 09:11:05 +02:00
Christoph Wurst
ffd2b3bde0
fix(dav): Mark removal of dav object properties as expensive 
Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
 2025-09-02 10:49:13 +02:00
Richard Steinmetz
e8986db7a4
perf(caldav): preload publish statuses for a whole calendar home at once 
Signed-off-by: Richard Steinmetz <richard@steinmetz.cloud>
 2025-08-28 14:00:18 +02:00
Richard Steinmetz
b7dc720848
feat: calendar federation 
Signed-off-by: Richard Steinmetz <richard@steinmetz.cloud>
 2025-08-27 17:14:15 +02:00
SebastianKrupinski
46e624a089 feat: Calendar Import 
Signed-off-by: SebastianKrupinski <krupinskis05@gmail.com>
 2025-08-27 08:30:33 -04:00
Richard Steinmetz
7c0ffc0759
perf: delete commonly used custom properties instead of setting the default value 
Signed-off-by: Richard Steinmetz <richard@steinmetz.cloud>
 2025-08-13 20:07:43 +02:00
Hamza Mahjoubi
36d9fcbb4d feat(cardav): support result truncation for addressbook federation 
Signed-off-by: Hamza Mahjoubi <hamzamahjoubi221@gmail.com>
 2025-08-06 14:04:55 +02:00
Christoph Wurst
ee00d166cd feat(dav): add occ commands to get and set absences 
Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
 2025-07-30 22:22:22 +02:00
John Molakvoæ
2b50d9b2c5
Revert "perf(base): Stop setting up the FS for every basic auth request" 2025-07-11 17:07:44 +02:00
provokateurin
689a853dc6
fix(dav): Initialize the FS for the user right after authenticating 
Signed-off-by: provokateurin <kate@provokateurin.de>
 2025-07-08 11:38:58 +02:00
Ferdinand Thiessen
5981b7eb51
chore: apply new CSFixer rules 
Signed-off-by: Ferdinand Thiessen <opensource@fthiessen.de>

# Conflicts:
#	apps/settings/lib/SetupChecks/PhpOpcacheSetup.php
 2025-07-01 16:26:50 +02:00
Richard Steinmetz
960b3ec0eb refactor(dav): move shared logic to a dedicated example contact service 
Signed-off-by: Richard Steinmetz <richard@steinmetz.cloud>
 2025-06-19 23:46:00 +02:00
Richard Steinmetz
b640c161ae
fix: harmonize design of default content settings section 
Signed-off-by: Richard Steinmetz <richard@steinmetz.cloud>
 2025-06-16 11:59:34 +02:00
Louis
a48bc55e2a
Merge pull request #52810 from nextcloud/artonge/feat/do_not_require_samesite_strict_cookie_on_public.php 2025-05-22 10:30:16 +02:00
Louis Chemineau
009d0c550c
fix: Move CSRF check from base to PublicAuth for public.php 
This currently prevent directly accessing a ressource when clicking on a link on a third party site. Example, clicking on `https://example.com/public.php/dav/files/pqLWcA269zfzXez/?accept=zip` in a GitHub comment.

Skipping the check is an issue with password protected shares, as it allows third party sites to request the ressource when the user already entered the password, aka CSRF.  So after removing the check from `base.php`, we need to add the it again in the `PublicAuth` plugin.

We also add a redirect to be helpful to the user.

**Warning**: this adds the limitation that clicking on a direct download link for password protected shares will redirect you to the password form, and then to the main share view.

Fix #52482

Signed-off-by: Louis Chemineau <louis@chmn.me>
 2025-05-21 16:01:36 +02:00
Christoph Wurst
80b21cdc6e
Merge pull request #52879 from nextcloud/bug/noid/clear-dav-photo-cache 
Add command to clear dav's photo cache
 2025-05-19 18:10:07 +02:00
Ferdinand Thiessen
3d113ab6cc
refactor(dav): use Node API instead of private files view for filedrop plugin 
Signed-off-by: Ferdinand Thiessen <opensource@fthiessen.de>
 2025-05-16 14:37:30 +02:00
Richard Steinmetz
3699eed678
Merge pull request #52708 from nextcloud/fix/dav/update-rooms-resources-background-job 
fix(dav): add repair step to queue job to update rooms and resources
 2025-05-16 12:39:51 +02:00
Daniel Kesselberg
3d1de793b1
refactor(dav): replace IAppData with IAppDataFactory for PhotoCache 
Signed-off-by: Daniel Kesselberg <mail@danielkesselberg.de>
 2025-05-15 18:28:45 +02:00
Daniel Kesselberg
8a1ae0934e
feat: add command to clear contacts photo cache 
Signed-off-by: Daniel Kesselberg <mail@danielkesselberg.de>
 2025-05-15 17:20:57 +02:00
Daniel Kesselberg
c05d3fdb2e
fix(caldav): prevent unshare entry creation for owner unsharing 
- Introduces a `unshare` method in `CalDavBackend` to handle user unshares.
- Implements check to determine if unshare entry is needed based on group/circle membership.
- Ensures `updateShares` is only used when the calendar owner manages shares.
- Resolves issue where unsharing a calendar as owner created an unshare entry in `oc_dav_shares`.

Related PRs:
- https://github.com/nextcloud/server/pull/43117
- https://github.com/nextcloud/server/pull/47737

Signed-off-by: Daniel Kesselberg <mail@danielkesselberg.de>
 2025-05-14 09:03:32 +02:00
Richard Steinmetz
cef60f9fd1
fix(dav): add repair step to queue job to update rooms and resources 
Signed-off-by: Richard Steinmetz <richard@steinmetz.cloud>
 2025-05-09 17:19:43 +02:00
John Molakvoæ
24c6a1ff0b
Merge pull request #52182 from nextcloud/feat/dav/public-share-chunked-upload 2025-05-06 14:25:28 +02:00
SebastianKrupinski
a2d4f8d3f1
feat: Calendar Export 
Signed-off-by: SebastianKrupinski <krupinskis05@gmail.com>
 2025-05-06 11:09:33 +02:00
provokateurin
46f5b07322
feat(dav): Enable chunked upload for public shares 
Signed-off-by: provokateurin <kate@provokateurin.de>
 2025-05-05 13:23:11 +02:00
provokateurin
7f0953d520
refactor(dav): Replace baseuri manipulation with RootCollection for public shares 
Signed-off-by: provokateurin <kate@provokateurin.de>
 2025-05-05 13:23:11 +02:00
Kate
a42563f9ed
Merge pull request #51715 from nextcloud/allowUnderCustLink 
fix(dav): Allow underscores on custom links
 2025-04-07 09:48:15 +02:00
Richard Steinmetz
246da73a36
fix(oauth2): retain support for legacy ownCloud clients 
Signed-off-by: Richard Steinmetz <richard@steinmetz.cloud>
 2025-04-01 11:25:52 +02:00
Hamza Mahjoubi
099d9fb9be feat: add example contact on first login 
Signed-off-by: Hamza Mahjoubi <hamzamahjoubi221@gmail.com>
 2025-03-26 10:57:39 +01:00
Git'Fellow
5dcec08e98
fix(shares): Allow underscores on custom links 
Signed-off-by: Git'Fellow <12234510+solracsf@users.noreply.github.com>
 2025-03-26 08:14:52 +01:00