upstream/nextcloud
1
0
Fork 0
mirror of https://github.com/nextcloud/server.git synced 2026-03-10 18:31:16 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions 12
76350 commits 748 branches 1186 tags 6.5 GiB
Commit graph

24092 commits

Author SHA1 Message Date
Christoph Klaffl
2863af448a fix call to custom mail_template_class 
Signed-off-by: Christoph Klaffl <christoph@phreaker.eu>
 2024-08-26 06:59:31 +00:00
Nextcloud bot
f136e8004f
Fix(l10n): Update translations from Transifex 
Signed-off-by: Nextcloud bot <bot@nextcloud.com>
 2024-08-26 00:20:28 +00:00
Nextcloud bot
eae454b67f
Fix(l10n): Update translations from Transifex 
Signed-off-by: Nextcloud bot <bot@nextcloud.com>
 2024-08-24 00:20:35 +00:00
SebastianKrupinski
cd9b32fec6 fix: correct documentation for mail provider 
Signed-off-by: SebastianKrupinski <krupinskis05@gmail.com>
 2024-08-23 16:35:53 +00:00
SebastianKrupinski
8848b52946 fix: correct documentation for mail provider 
Signed-off-by: SebastianKrupinski <krupinskis05@gmail.com>
 2024-08-23 16:35:53 +00:00
Nextcloud bot
9caf35ac3b
Fix(l10n): Update translations from Transifex 
Signed-off-by: Nextcloud bot <bot@nextcloud.com>
 2024-08-23 00:20:13 +00:00
Ferdinand Thiessen
aa383a8ff6
fix(webauthn): Increase database column for public key id 
* Resolves https://github.com/nextcloud/server/issues/34476

There is no maximum length defined in the standard,
most common the length is between 128 and 200 characters,
but as we store it not in plain data but base64 encoded the length can grow about 1/3.

We had a regression with 'Nitrokey 3' which created IDs with 196 byte length -> 262 bytes encoded base64.
So to be save we increase the size to 512 bytes.

Signed-off-by: Ferdinand Thiessen <opensource@fthiessen.de>
 2024-08-22 14:43:18 +02:00
Ferdinand Thiessen
1e49c83556 fix: FilenameValidator::isForbidden should only check forbidden files 
And not forbidden basenames as this is used for different purposes.

Signed-off-by: Ferdinand Thiessen <opensource@fthiessen.de>
 2024-08-22 08:51:58 +02:00
Nextcloud bot
ebd0c51915
Fix(l10n): Update translations from Transifex 
Signed-off-by: Nextcloud bot <bot@nextcloud.com>
 2024-08-22 00:20:28 +00:00
Andy Scherzinger
e87b559939
Merge pull request #47283 from nextcloud/backport/47038/stable30 
[stable30] fix: check for correct storage class when checking for link parent
 2024-08-21 21:59:22 +02:00
Andy Scherzinger
25bbfd6e43
Merge pull request #47390 from nextcloud/backport/47352/stable30 
[stable30] fix(TaskProcessing/ContextWrite): Fix wording "ContextWrite" -> "Context write"
 2024-08-21 17:37:36 +02:00
John Molakvoæ
28af5012a2
Merge pull request #47391 from nextcloud/backport/47371/stable30 2024-08-21 16:29:51 +02:00
Joas Schilling
1766bff1ed
Merge pull request #47385 from nextcloud/backport/47380/stable30 
[stable30] fix(theming): Make getImage() call save against missing non-SVG version
 2024-08-21 15:54:34 +02:00
Ferdinand Thiessen
655b318b23 fix: Support Safari mobile 
Signed-off-by: Ferdinand Thiessen <opensource@fthiessen.de>
 2024-08-21 12:33:53 +00:00
Ferdinand Thiessen
a67d98c31e fix: Disable auto-zoom on iOS 
When using iOS and focussing an input element the view should not be zoomed.
So if we set a maximum scale iOS will not auto-zoom but still allow users to zoom.
But we can not do this by default as this will disable user zoom on Chrome.

Signed-off-by: Ferdinand Thiessen <opensource@fthiessen.de>
 2024-08-21 12:33:53 +00:00
Marcel Klehr
46dd99714a fix(TaskProcessing/ContextWrite): Fix wording "ContextWrite" -> "Context write" 
Signed-off-by: Marcel Klehr <mklehr@gmx.net>
 2024-08-21 11:26:44 +00:00
Joas Schilling
71c0b0053c fix(theming): Make getImage() call save against missing non-SVG version 
Signed-off-by: Joas Schilling <coding@schilljs.com>
 2024-08-21 13:19:29 +02:00
Joas Schilling
f5e40d11df fix: adding blurhash to definitions 
Signed-off-by: skalidindi53 <s.teja2004@gmail.com>
Signed-off-by: Joas Schilling <coding@schilljs.com>
 2024-08-21 10:00:35 +00:00
Robin Appelman
fff198657f fix: use mountpoint from storage to find the encryption keys 
Signed-off-by: Robin Appelman <robin@icewind.nl>
 2024-08-20 14:24:43 +00:00
Robin Appelman
ece54cf956 feat: store the mountpoint of storages in the mount options 
Signed-off-by: Robin Appelman <robin@icewind.nl>
 2024-08-20 14:24:43 +00:00
Joas Schilling
b8adb8bfd6
Merge pull request #47255 from nextcloud/backport/47253/stable30 
[stable30] feat(webauthn): Add user verification to webauthn challenges
 2024-08-20 08:08:11 +02:00
Nextcloud bot
3b7014e5f7
Fix(l10n): Update translations from Transifex 
Signed-off-by: Nextcloud bot <bot@nextcloud.com>
 2024-08-19 00:20:25 +00:00
Nextcloud bot
4bc14ed801
Fix(l10n): Update translations from Transifex 
Signed-off-by: Nextcloud bot <bot@nextcloud.com>
 2024-08-18 00:23:03 +00:00
Nextcloud bot
c6584da72c
Fix(l10n): Update translations from Transifex 
Signed-off-by: Nextcloud bot <bot@nextcloud.com>
 2024-08-17 00:20:28 +00:00
Robin Appelman
9791fa278f fix: check for correct storage class when checking for link parent 
fixes #39123

Signed-off-by: Robin Appelman <robin@icewind.nl>
 2024-08-16 15:17:07 +00:00
Nextcloud bot
1a9b1e9a2a
Fix(l10n): Update translations from Transifex 
Signed-off-by: Nextcloud bot <bot@nextcloud.com>
 2024-08-16 00:20:14 +00:00
S1m
b7bf8ec3c5
feat(webauthn): Add user verification to webauthn challenges 
Require user verification if all tokens are registered

with UV flag, else discourage it

Signed-off-by: S1m <git@sgougeon.fr>
Signed-off-by: Richard Steinmetz <richard@steinmetz.cloud>
 2024-08-15 11:52:40 +02:00
Nextcloud bot
7c0932f208
Fix(l10n): Update translations from Transifex 
Signed-off-by: Nextcloud bot <bot@nextcloud.com>
 2024-08-15 00:25:56 +00:00
Christoph Wurst
7641e768b3
Merge pull request #45435 from nextcloud/feat/dav/upcoming-events-api 
feat(dav): Add an API for upcoming events
 2024-08-14 06:54:43 +02:00
Nextcloud bot
832a1420e2
Fix(l10n): Update translations from Transifex 
Signed-off-by: Nextcloud bot <bot@nextcloud.com>
 2024-08-14 00:20:23 +00:00
Christoph Wurst
370a9d77ea
feat(dav): Add an API for upcoming events 
Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
 2024-08-13 20:03:31 +02:00
Ferdinand Thiessen
3e409fd342
Merge pull request #43573 from nextcloud/HolgerHees-fix-csp-nonce-handling 
Fix for ignored `CSP_NONCE` in ContentSecurity Header
 2024-08-13 17:53:30 +02:00
Christoph Wurst
5100e3152d
feat(auth): Clean-up unused auth tokens and wipe tokens 
Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
 2024-08-13 12:39:11 +02:00
Côme Chilliet
142b6e313f
Merge pull request #47180 from nextcloud/fix/apply-group-limit-on-remove-from-group 
Apply group limit on remove from group
 2024-08-13 12:20:48 +02:00
Ferdinand Thiessen
2916e5df7e
feat: Provide CSP nonce as <meta> element 
This way we use the CSP nonce for dynamically loaded scripts.
Important to notice: The CSP nonce must NOT be injected in `content` as
this can lead to value exfiltration using e.g. side-channel attacts (CSS selectors).

Signed-off-by: Ferdinand Thiessen <opensource@fthiessen.de>
 2024-08-13 10:32:44 +02:00
Ferdinand Thiessen
009761be58
test: Adjust tests for CSP nonce 
Signed-off-by: Ferdinand Thiessen <opensource@fthiessen.de>
 2024-08-13 10:06:32 +02:00
Ferdinand Thiessen
86f01a3358
fix: Make sure CSP nonce is not double base64 encoded 
Signed-off-by: Ferdinand Thiessen <opensource@fthiessen.de>
 2024-08-13 09:52:33 +02:00
Holger Hees
73397cd759
fix: Use CSP_NONCE env variable in ContentSecurity Header 
We should use 'cspNonceManager' for requesting the NONCE value, because it is doing the same as before, except that it honors a CPS_NONCE environment variable if available.

Signed-off-by: Holger Hees <holger.hees@gmail.com>
 2024-08-13 09:52:08 +02:00
Nextcloud bot
21db618174
Fix(l10n): Update translations from Transifex 
Signed-off-by: Nextcloud bot <bot@nextcloud.com>
 2024-08-13 00:20:11 +00:00
Côme Chilliet
e23325f047
fix: Remove shares only if there are no more common groups between users 
Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>
 2024-08-12 15:20:21 +02:00
Louis Chemineau
5559beb28c
fix(files_sharing): Delete user shares if needed when user is removed from a group 
Signed-off-by: Louis Chemineau <louis@chmn.me>
 2024-08-12 14:41:19 +02:00
Julien Veyssier
dbab2a825d
fix(taskprocessing): select preferred provider when running sync task, fix task type values according to preferred provider 
Signed-off-by: Julien Veyssier <julien-nc@posteo.net>
 2024-08-12 13:11:41 +02:00
Ferdinand Thiessen
4bbcbc5206
feat: Make ISharedStorage public API and reuse where possible 
Signed-off-by: Ferdinand Thiessen <opensource@fthiessen.de>
 2024-08-12 11:42:10 +02:00
Nextcloud bot
1a7acf061e
Fix(l10n): Update translations from Transifex 
Signed-off-by: Nextcloud bot <bot@nextcloud.com>
 2024-08-12 00:19:52 +00:00
Nextcloud bot
722a74e0e8
Fix(l10n): Update translations from Transifex 
Signed-off-by: Nextcloud bot <bot@nextcloud.com>
 2024-08-11 00:19:57 +00:00
Nextcloud bot
dbd197cedc
Fix(l10n): Update translations from Transifex 
Signed-off-by: Nextcloud bot <bot@nextcloud.com>
 2024-08-10 00:20:14 +00:00
Nextcloud bot
dda6dd0bf4
Fix(l10n): Update translations from Transifex 
Signed-off-by: Nextcloud bot <bot@nextcloud.com>
 2024-08-09 00:25:27 +00:00
Ferdinand Thiessen
0563757ea4 fix(SetupCheck): Properly check public access to data directory 
When checking for public (web) access to the data directory the status is not enough
as you might have a webserver that forwards to e.g. a login page.
So instead check that the content of the file matches.

For this the `.ncdata` file (renamed from `.ocdata`¹) has minimal text content
to allow checking.

¹The file was renamed from the legacy `.ocdata`, there is a repair step to remove the old one.

Signed-off-by: Ferdinand Thiessen <opensource@fthiessen.de>
 2024-08-08 22:08:42 +02:00
Nextcloud bot
5f89477c79
Fix(l10n): Update translations from Transifex 
Signed-off-by: Nextcloud bot <bot@nextcloud.com>
 2024-08-08 00:20:57 +00:00
Andy Scherzinger
609fa7d5db
Merge pull request #47044 from nextcloud/fix/accept-several-mounts-in-encryption 
fix(encryption): Fix mountpoint check to accept if several are found
 2024-08-07 20:58:19 +02:00