nextcloud

mirror of https://github.com/nextcloud/server.git synced 2026-04-29 18:11:41 -04:00

Author	SHA1	Message	Date
Julien Veyssier	4a3f3beb0b	use bruteforce protection on all methods wrapped by PublicShareMiddleware if an invalid token is provided or when share password is wrong Signed-off-by: Julien Veyssier <julien-nc@posteo.net>	2022-12-07 13:24:50 +01:00
Carl Schwan	2a864ec13c	Improve dependency injection error message Change from display the name of the parameter to the type of the parameter. This is that in most cases is usefull. Signed-off-by: Carl Schwan <carl@carlschwan.eu>	2022-12-01 12:46:01 +01:00
Christoph Wurst	41b2466d35	Clean up and deprecate app container aliases Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	2022-11-02 19:42:09 +01:00
Julius Härtl	cea2f79bbd	Improve container return type annotations Signed-off-by: Julius Härtl <jus@bitgrid.net>	2022-10-14 10:45:16 +02:00
Stanimir Bozhilov	46c10c77e1	Fix the JSON content type regex to match all MIME types Signed-off-by: Stanimir Bozhilov <stanimir@audriga.com>	2022-09-26 11:51:44 +02:00
Stanimir Bozhilov	d80f8f6c82	Type hint JSON content type regex and use preg_match less Signed-off-by: Stanimir Bozhilov <stanimir@audriga.com>	2022-09-22 11:25:39 +02:00
Stanimir Bozhilov	f286a9d6ac	Use regex for all JSON-related content types Signed-off-by: Stanimir Bozhilov <stanimir@audriga.com>	2022-09-21 16:36:01 +02:00
Stanimir Bozhilov	0ace70488a	Treat application/json and application/scim+json in same if-block Signed-off-by: Stanimir Bozhilov <stanimir@audriga.com>	2022-09-21 15:31:50 +02:00
Jonas Rittershofer	c8b7a233a5	Allow CSRF on CORS routes Co-authored-by: Julius Härtl <jus@bitgrid.net> Co-authored-by: Andreas Brinner <andreas@everlanes.net> Signed-off-by: Jonas Rittershofer <jotoeri@users.noreply.github.com>	2022-09-21 10:42:00 +00:00
Stanimir Bozhilov	f0dbe1148a	Add support for application/scim+json content type Signed-off-by: Stanimir Bozhilov <stanimir@audriga.com>	2022-09-20 16:18:52 +02:00
Julius Härtl	68d0038eb0	Move registration to IBootstrap Signed-off-by: Julius Härtl <jus@bitgrid.net>	2022-08-31 16:20:06 +02:00
Julius Härtl	9b4b72826a	Reopen sessions if we need to write to them instead of keeping them open Sessions are a locking operation until we write close them, so close them early and reopen later in case we want to write to them Signed-off-by: Julius Härtl <jus@bitgrid.net>	2022-08-17 12:10:26 +02:00
Carl Schwan	f8b13ecd60	Merge pull request #32363 from nextcloud/cleanup/remove-long-deprecated-classes Remove OCP\App and OCP\BackgroundJob	2022-08-08 17:05:11 +02:00
Vincent Petry	cbd5cef2cc	Merge pull request #33398 from nextcloud/enh/noid/sensitive-methods-apps allow apps to specify methods carrying sensitive parameters	2022-08-05 14:09:55 +02:00
Simon Leiner	09362eaeaa	Support specifying IPv6 proxies in CIDR notation Previously, it was not possible to use CIDR notation for IPv6 proxies in the trusted_proxies parameter of config.php [1]. This patch adds support for that. [1]: https://docs.nextcloud.com/server/24/admin_manual/configuration_server/reverse_proxy_configuration.html#defining-trusted-proxies Signed-off-by: Simon Leiner <simon@leiner.me>	2022-08-02 17:36:47 +02:00
Carl Schwan	458c2fa297	Remove OCP\App and OCP\BackgroundJob Both deprecated since NC 23 IAppManager is the replacement for OCP\App unfortunately it can't be dependency injected in classes used by the installed otherwise the database connection is initialised too early Signed-off-by: Carl Schwan <carl@carlschwan.eu>	2022-08-01 09:46:40 +02:00
Arthur Schiwon	2a6f46e689	allow apps to specify methods carrying sensitive parameters … in order to remove them from logging. Signed-off-by: Arthur Schiwon <blizzz@arthur-schiwon.de>	2022-07-28 23:30:17 +02:00
luz paz	368f83095d	Fix typos in lib/private subdirectory Found via `codespell -q 3 -S l10n -L jus ./lib/private` Signed-off-by: luz paz <luzpaz@github.com>	2022-07-27 08:52:17 -04:00
Arthur Schiwon	523572fcea	load widgets only of enabled apps - per design, all enabled apps have their registration run - limitations, e.g. enabled by group, are not considered in that state, because we do not have a session (and might need apps?) - before instantiation of widget it has to be checked whether the providing app is actually enabled for the logged in user. - a public interface is being changed, but it is not meant to be implemented or used outside of the core handling. Therefore save to backport. Signed-off-by: Arthur Schiwon <blizzz@arthur-schiwon.de>	2022-06-22 21:58:13 +02:00
Carl Schwan	b70c6a128f	Update core to PHP 7.4 standard - Typed properties - Port to LoggerInterface Signed-off-by: Carl Schwan <carl@carlschwan.eu>	2022-05-20 22:18:06 +02:00
Côme Chilliet	de5b7f260f	Trying without the use Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>	2022-04-26 11:10:00 +02:00
Côme Chilliet	9132ed8ef1	Use sabre function directly rather than duplicating it Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>	2022-04-26 11:10:00 +02:00
Carl Schwan	7d272c54d0	Add a built-in profiler inside Nextcloud The webui is provided by a seperate application named profiler Signed-off-by: Carl Schwan <carl@carlschwan.eu>	2022-04-04 10:28:26 +02:00
Vincent Petry	576e4e8f2a	Merge pull request #31592 from nextcloud/fix/direct-arg-flow-v2 Add direct arg to login flow	2022-03-29 18:21:40 +02:00
Vincent Petry	80388663af	Add direct arg to login flow Signed-off-by: Vincent Petry <vincent@nextcloud.com> Co-Authored-by: Carl Schwan <carl@carlschwan.eu>	2022-03-28 10:28:45 +02:00
Joas Schilling	0acd4b5f82	Merge pull request #31235 from nextcloud/techdebt/noid/extract-request-id Extract request id handling to dedicated class so it can be injected without DB dependency	2022-03-22 12:08:45 +01:00
Julius Härtl	eede608c0e	Add event logging to app loading Signed-off-by: Julius Härtl <jus@bitgrid.net>	2022-02-28 11:24:41 +01:00
Julius Härtl	0f33453610	Diagnostics event logging to Nextcloud log Signed-off-by: Julius Härtl <jus@bitgrid.net> Add config samples Signed-off-by: Julius Härtl <jus@bitgrid.net>	2022-02-28 11:24:40 +01:00
Joas Schilling	07a9f34385	Extract request id handling to dedicated class so it can be injected manually Signed-off-by: Joas Schilling <coding@schilljs.com>	2022-02-23 11:01:58 +01:00
Christopher Ng	e3244361ba	Allow registration of migrators Signed-off-by: Christopher Ng <chrng8@gmail.com>	2022-02-11 23:34:25 +00:00
Christoph Wurst	9a656e5b35	Move calendar resource/room backend registration to IBootstrap Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	2022-02-07 12:51:42 +01:00
Christoph Wurst	2c356d0852	Add a Talk API for OCP Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	2022-02-04 08:53:18 +01:00
Carl Schwan	6312c0df69	Check style update Signed-off-by: Carl Schwan <carl@carlschwan.eu>	2022-01-13 00:19:07 +01:00
Julius Härtl	61dd1d3d97	Pass username prefill through unauthenticated request redirects Signed-off-by: Julius Härtl <jus@bitgrid.net>	2021-12-29 11:52:31 +01:00
Côme Chilliet	113756db30	Fix ArrayAccess and JsonSerializable return types First round of modifications for PHP 8.1 Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>	2021-11-23 09:28:56 +01:00
Christopher Ng	9f8eae3f50	Use more explicit naming for profile link action Signed-off-by: Christopher Ng <chrng8@gmail.com>	2021-10-25 22:20:19 +00:00
Christoph Wurst	e36823f79d	Make the route name error more helpful As a developer I have no clue what "Invalid route name" means. If the exception gives me a hint I might find it easier to figure out why my route triggers this error. Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	2021-10-22 10:41:27 +02:00
Roeland Jago Douma	8bc25e3324	Move preview provider registration to bootstrap Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl> Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	2021-10-21 10:35:18 +02:00
Christopher Ng	309354852f	Profile backend Signed-off-by: Christopher Ng <chrng8@gmail.com>	2021-10-19 04:59:35 +00:00
Anna Larch	a58d1e6b06	Add Public Calendar Provider Signed-off-by: Anna Larch <anna@nextcloud.com> Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	2021-10-14 08:22:24 +02:00
Christoph Wurst	05cfbf472c	Merge pull request #28915 from nextcloud/fix/improve-bug-reporting Improve syntax error reporting	2021-09-30 12:30:50 +02:00
Carl Schwan	6958d8005a	Add admin privilege delegation for admin settings This makes it possible for selected groups to access some settings pages. Signed-off-by: Carl Schwan <carl@carlschwan.eu>	2021-09-29 21:43:31 +02:00
Carl Schwan	e1c4b648d1	Improve syntax error reporting In some cases the error information is not enough to debug it. Before: syntax error, unexpected '<<' (T_SL) /var/www/html/lib/private/AppFramework/Http/Dispatcher.php 158 After: syntax error, unexpected '<<' (T_SL) in file '/var/www/html/apps/groupfolders/lib/Mount/GroupFolderStorage.php' line 88 /var/www/html/lib/private/AppFramework/Http/Dispatcher.php 158 Signed-off-by: Carl Schwan <carl@carlschwan.eu>	2021-09-21 10:28:26 +02:00
J0WI	3b656446af	Introduce ISecureRandom::CHAR_ALPHANUMERIC Signed-off-by: J0WI <J0WI@users.noreply.github.com>	2021-07-08 15:11:31 +02:00
Gary Kim	b78f3a57d1	Migrate HintException to OCP Signed-off-by: Gary Kim <gary@garykim.dev>	2021-06-30 15:28:02 -04:00
Christoph Wurst	80dd0b9418	Harden bootstrap context registrations when apps are missing It's not expected that an app would be unavailable when the app container is created but when services are registered, but Sentry tells me on Nextcloud 21 there is an edge case where this can happen. Therefore this patch hardens the code a bit to log a meaningful error message and skipping the next code instead of logging a php notice for the undefined index and an exception for calling a method on null. Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	2021-06-25 11:40:35 +02:00
Christoph Wurst	6d5cfe0c66	Move DateTime::RFC2822 to DateTimeInterface::2822 Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	2021-06-23 15:30:43 +02:00
John Molakvoæ (skjnldsv)	215aef3cbd	Update php licenses Signed-off-by: John Molakvoæ (skjnldsv) <skjnldsv@protonmail.com>	2021-06-04 22:02:41 +02:00
Lukas Reschke	09abcfadfa	Propagate throttling on OCS response The BaseResponse converter did not take over any throttling state from the DataResponse. Signed-off-by: Lukas Reschke <lukas@statuscode.ch>	2021-06-01 14:15:23 +02:00
Lukas Reschke	a521ed874c	Remove unused constants No calls in all of GitHub as per https://sourcegraph.com/search?q=USER_AGENT_OWNCLOUD_&patternType=literal Deprecation has also been years ago. Signed-off-by: Lukas Reschke <lukas@statuscode.ch>	2021-05-25 19:01:48 +02:00
Joas Schilling	f602c9328e	Fix log entry readability Signed-off-by: Joas Schilling <coding@schilljs.com>	2021-05-21 09:07:45 +02:00
korelstar	b38e8678e4	fix error when using CORS with no auth credentials	2021-05-18 07:11:10 +02:00
Joas Schilling	b6c6527705	Fix unauthorized OCS status in provisioning Signed-off-by: Joas Schilling <coding@schilljs.com>	2021-05-12 08:16:07 +02:00
Joas Schilling	784b059a01	Don't break OCC if an app is breaking in it's Application class Signed-off-by: Joas Schilling <coding@schilljs.com>	2021-05-05 10:41:18 +02:00
Christoph Wurst	99f0b10421	Merge pull request #26591 from nextcloud/techdebt/noid/less-ilogger Less ILogger	2021-04-27 15:38:12 +02:00
Joas Schilling	df47445c01	Fix unit tests Signed-off-by: Joas Schilling <coding@schilljs.com>	2021-04-27 14:34:32 +02:00
Joas Schilling	56ae87c281	Less ILogger Signed-off-by: Joas Schilling <coding@schilljs.com>	2021-04-27 14:34:32 +02:00
Joas Schilling	174f4dd043	Fix ratelimit template Signed-off-by: Joas Schilling <coding@schilljs.com>	2021-04-27 13:55:34 +02:00
Roeland Jago Douma	5ee9e1f784	Move 2FA registration to IBootstrap Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	2021-04-20 21:01:16 +02:00
Roeland Jago Douma	808e589035	Allow registering NotifierServices trough IBootstrap Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	2021-04-16 13:56:28 +02:00
Christoph Wurst	7287a15acb	Bump psr/container from 1.0.0 to 1.1.1 Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	2021-03-10 19:44:09 +01:00
Roeland Jago Douma	2e6cab4d82	Move initialstate bootstrap to proper types classes For more type safety Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	2021-03-09 09:19:23 +01:00
Roeland Jago Douma	5325c3002c	Merge pull request #25917 from nextcloud/techdept/kill_deprecated/ocp_api Remove deprecated \OCP\API	2021-03-03 21:57:34 +01:00
Roeland Jago Douma	cc744740b7	Remove deprecated \OCP\API Time to remove this forgood now. Remaining constant moved over The world is a tiny bit better Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	2021-03-03 20:54:32 +01:00
Roeland Jago Douma	68ec18323d	Fix types in the Group Manager Psalm found an issue. However the issue found was because of lying docblocks. Fixed those and did some typing to make it all better. For #25839 Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	2021-03-03 14:52:47 +01:00
Christoph Wurst	6a9b693540	Register service aliases und parameters just once Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	2021-02-24 17:30:10 +01:00
dependabot-preview[bot]	eb502c02ff	Bump nextcloud/coding-standard from 0.3.0 to 0.5.0 Bumps [nextcloud/coding-standard](https://github.com/nextcloud/coding-standard) from 0.3.0 to 0.5.0. - [Release notes](https://github.com/nextcloud/coding-standard/releases) - [Changelog](https://github.com/nextcloud/coding-standard/blob/master/CHANGELOG.md) - [Commits](https://github.com/nextcloud/coding-standard/compare/v0.3.0...v0.5.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	2021-02-18 13:31:24 +01:00
Roeland Jago Douma	25f9203a70	Fix remaining #25359 As a wise man once said: "I like PRs that pass tests before merging" C. Wurst, Feb 9th 2021 Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	2021-02-10 15:41:25 +01:00
Christoph Wurst	aabd73912e	Type the service registration Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	2021-02-10 09:44:24 +01:00
Robin Appelman	ec875227ec	forward query exception when fallback construction fails Signed-off-by: Robin Appelman <robin@icewind.nl>	2021-02-09 13:15:22 +01:00
Robin Appelman	3401be216d	forward original query exception when querying by name fails Signed-off-by: Robin Appelman <robin@icewind.nl>	2021-02-08 19:13:25 +01:00
Julius Härtl	6c1b357973	Move TemplateProvider registration to boot context and make template type registration lazy Signed-off-by: Julius Härtl <jus@bitgrid.net>	2021-01-28 12:00:21 +01:00
Morris Jobke	24d436cb60	Remove unneeded casts that were found by Psalm In preparation of the update of Psalm from 4.2.1 to 4.3.1+ (see https://github.com/nextcloud/server/pull/24521) Signed-off-by: Morris Jobke <hey@morrisjobke.de>	2021-01-11 13:14:41 +01:00
Christoph Wurst	8b64e92b92	Bump doctrine/dbal from 2.12.0 to 3.0.0 Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	2021-01-08 11:45:19 +01:00
Christoph Wurst	9ce3ea3368	Update license headers Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	2020-12-30 14:07:05 +01:00
Roeland Jago Douma	adc4f1a811	Merge pull request #22916 from J0WI/unifiy-links-to-php.net Unify links to php.net	2020-12-22 09:53:31 +01:00
Julius Härtl	fbbb48fcc2	Merge pull request #24730 from J0WI/fix-trusted-ipv6 Fix IPv6 localhost regex	2020-12-21 09:59:31 +01:00
Christoph Wurst	f37e150d1c	Merge pull request #24702 from nextcloud/enhancement/well-known-handler-api Add well known handlers API	2020-12-18 13:34:04 +01:00
Christoph Wurst	d89a75be0b	Update all license headers for Nextcloud 21 Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	2020-12-16 18:48:22 +01:00
J0WI	331f30f085	Fix IPv6 localhost regex Signed-off-by: J0WI <J0WI@users.noreply.github.com>	2020-12-16 14:37:56 +01:00
Christoph Wurst	6995223b1e	Add well known handlers API Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	2020-12-16 13:13:05 +01:00
Daniel Kesselberg	8ebd31d686	Make $vars and $secureRandom required. Signed-off-by: Daniel Kesselberg <mail@danielkesselberg.de>	2020-12-10 17:06:32 +01:00
Christoph Wurst	decc5c844b	Fix reverse registration and missing comments tab Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	2020-11-24 08:28:19 +01:00
Morris Jobke	650ffc587f	Merge pull request #24164 from nextcloud/fix/lazy-app-registration Allow lazy app registration	2020-11-19 22:35:09 +01:00
Maxence Lange	a0d9b15a80	missing level Signed-off-by: Maxence Lange <maxence@artificial-owl.com>	2020-11-18 18:30:07 -01:00
Christoph Wurst	3cf39c573f	Allow lazy app registration During app installation we run migration steps. Those steps may use services the app registers or classes from composer. Hence we have to make sure the app runs through the registration. Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	2020-11-18 08:48:45 +01:00
Roeland Jago Douma	72a9c35be3	Remove some IRouter methods This is not the end. IRouter needs to burn. But it is a start. 🎵 we didn't start the fire 🎵 Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	2020-11-17 14:08:20 +01:00
Roeland Jago Douma	51a02c8009	ReflectionParamter::getClass is deprecated In php8 this starts throwing warnings. And since we use it quite often we flood the log. This moves it to getType which does the same. Only non deprecated now. Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	2020-11-11 20:42:14 +01:00
Christoph Wurst	7e2c3a820e	Remove the cookie paths for php<7.3 Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	2020-11-06 15:57:17 +01:00
Roeland Jago Douma	e25a7137cc	Cleanup route registration logic This was a bunch of cylic things being called. This is an attempt to clean this all up. If an app provides an array of routes. We just parse them and hand them back. Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	2020-11-03 09:39:49 +01:00
Christoph Wurst	f464ef050b	Fix type errors detected by Psalm Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	2020-10-14 15:40:12 +02:00
Robin Windey	6a1f8fb3be	Fix typo 'shared'	2020-10-12 14:19:41 +02:00
Christoph Wurst	d9015a8c94	Format code to a single space around binary operators Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	2020-10-05 20:25:24 +02:00
Roeland Jago Douma	b976cd5535	Merge pull request #21821 from nextcloud/enh/bootstrap/initial_state Bootstrap: add initial state registration	2020-10-04 11:09:18 +02:00
Roeland Jago Douma	f4707d178e	Merge pull request #23047 from nextcloud/techdebt/noid/warn-on-database-abuse Log the number of queries built and executed	2020-10-04 10:07:49 +02:00
Roeland Jago Douma	f865a3a1c2	Move initial state provider to boostrap Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	2020-10-04 09:35:33 +02:00
Joas Schilling	95a301ea57	Fix tests Signed-off-by: Joas Schilling <coding@schilljs.com>	2020-10-02 10:37:18 +02:00
Joas Schilling	3212c074b9	Log the number of queries built and executed Signed-off-by: Joas Schilling <coding@schilljs.com>	2020-09-25 14:55:53 +02:00
Julius Härtl	8ab2422b6c	Add acutal response to BeforeTemplateRenderedEvent Signed-off-by: Julius Härtl <jus@bitgrid.net>	2020-09-24 20:00:23 +02:00
J0WI	68ce17e59b	Unify links to php.net Update all links to https://www.php.net/ Signed-off-by: J0WI <J0WI@users.noreply.github.com>	2020-09-17 17:40:04 +02:00
Christoph Wurst	2a054e6c04	Update the license headers for Nextcloud 20 Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	2020-08-24 14:54:25 +02:00
Joas Schilling	35a8519591	Fix CS Signed-off-by: Joas Schilling <coding@schilljs.com>	2020-08-19 11:20:36 +02:00
Joas Schilling	e66bc4a8a7	Send "429 Too Many Requests" in case of brute force protection Signed-off-by: Joas Schilling <coding@schilljs.com>	2020-08-19 11:20:35 +02:00
Morris Jobke	0807e29e17	Merge pull request #22133 from nextcloud/boot-app-once only boot apps once	2020-08-07 12:05:09 +02:00
Robin Appelman	246ed35d94	only boot apps once in some cases `loadApp` is called more then once which is currently causing apps to be "booted" multiple times which can lead to unexepected behaviour with things like registering hooks Signed-off-by: Robin Appelman <robin@icewind.nl>	2020-08-07 11:04:47 +02:00
Julius Härtl	018be662f4	Refactor API to match the widget wording Signed-off-by: Julius Härtl <jus@bitgrid.net>	2020-08-05 17:03:38 +02:00
Morris Jobke	7e28286e9d	Merge pull request #21542 from nextcloud/activity-notifications basic settings system for activity notifications	2020-07-29 15:36:38 +02:00
Julius Härtl	e1b696929f	Move NotFoundResponse to a proper TemplateResponse Signed-off-by: Julius Härtl <jus@bitgrid.net>	2020-07-24 08:58:14 +02:00
Morris Jobke	7870ca0663	Use the proper IAppContainer and IServerContainer type hints to know which code runs with which container Signed-off-by: Morris Jobke <hey@morrisjobke.de>	2020-07-21 20:44:05 +02:00
Christoph Wurst	e029055e76	Make the bootstrap context return ContainerInterface instances Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	2020-07-21 20:42:24 +02:00
Robin Appelman	fb5ae20722	basic settings system for activity notifications Signed-off-by: Robin Appelman <robin@icewind.nl>	2020-07-21 17:12:38 +02:00
Morris Jobke	09e6b26bdd	Merge pull request #21875 from nextcloud/techdebt/deprecate-ilogger Deprecate ILogger in favor of the PSR-3 logger	2020-07-20 16:45:14 +02:00
Morris Jobke	9ae75a3ca9	Merge pull request #21850 from nextcloud/techdebt/noid/register-alternative-logins Allow to register AlternativeLogin on RegistrationContext	2020-07-20 14:20:03 +02:00
Christoph Wurst	8a433a7226	Deprecate ILogger The logger service was always intended to follow the PSR-3 interface. It's time to embrace this and switch over to the "official" API, hence this custom interface can be slowly phased out. With Nextcloud 20 the logger also got support for * App id filled out automatically * Exceptions handling (as replacement for logException) Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	2020-07-16 19:19:23 +02:00
Christoph Wurst	c889021334	Add a scoped PSR logger for apps Just like for ILogger we should have a version that has the app ID pre-set for the context (unless overwritten) so that each log entry can be traced back to the app that produced it. Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	2020-07-16 19:11:56 +02:00
Joas Schilling	0dfcc132ca	Allow to register AlternativeLogin on RegistrationContext Signed-off-by: Joas Schilling <coding@schilljs.com>	2020-07-16 14:20:24 +02:00
Christoph Wurst	4152216bd8	Use PSR container interface and deprecate our own abstraction Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	2020-07-16 13:35:45 +02:00
Roeland Jago Douma	7d7ba61625	Add real events to load additionalscripts Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	2020-07-15 14:07:18 +02:00
Julius Härtl	81e5593133	Move to lazy panel registration during registration context Signed-off-by: Julius Härtl <jus@bitgrid.net>	2020-07-15 09:27:57 +02:00
Morris Jobke	157c652762	Merge pull request #21825 from nextcloud/fix/appframework/services Fix AppFramework services	2020-07-14 17:07:38 +02:00
Morris Jobke	fba64a972f	Merge pull request #21812 from nextcloud/feature/noid/app-bootstrap-without-app.php Do not load app.php if Application implements IBootstrap	2020-07-14 17:06:06 +02:00
Roeland Jago Douma	dca2469462	Merge pull request #21833 from nextcloud/docfix/noid/irequest_getHeader Fix PHPDoc of IRequest::getHeader	2020-07-14 16:43:09 +02:00
Roeland Jago Douma	fa9dfd83c9	Fix AppFramework services * We can't just register an alias as the services need the appId to be injected. if we just register an alias this blows up since the main container doesn't have the appId. * Moved the Authtokens over to show the PoC works Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	2020-07-14 16:01:14 +02:00
Morris Jobke	d9cc2f0213	Do not load app.php if Application implements IBootstrap Signed-off-by: Morris Jobke <hey@morrisjobke.de>	2020-07-14 15:55:23 +02:00
Christoph Wurst	f03f88b437	Delegate bootstrap registration lazily * Keep the registration context * Expose the context object for other components * Ensure registration is only run once Search providers are migrated for demonstration. Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	2020-07-14 15:33:32 +02:00
Georg Ehrke	3bdfb380fc	Fix PHPDoc of IRequest::getHeader Signed-off-by: Georg Ehrke <developer@georgehrke.com>	2020-07-14 14:20:43 +02:00
Roeland Jago Douma	3f447b9c8c	Fix supporting defaults for routes Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	2020-07-08 19:52:45 +02:00
Roeland Jago Douma	edc1c77dd9	Do not create a RouteActionHandler object for each route This is not required and doesn't allow us to be properly lazy. On top of it this doesnt allow us to cache the routes (since closures/objects can't be cached). This is the first small step into cleaning up the routing we have Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	2020-07-07 12:33:22 +02:00
Holger Hees	e70249e089	Update SecurityMiddleware.php OC::$WEBROOT can be empty in case if your nextcloud installation has no url prefix. This will result in an empty Location Header. in other areas OC::$WEBROOT is always used together with an /	2020-07-06 21:34:46 +02:00
Christoph Wurst	4a3ea04baa	Callable parameter injection This is like what we have to DI and classes, but for callables. The motivating factor is to get rid of service locators in the `boot` method of apps as a new pattern is about to emerge where we have lots of `query` calls on the app or server container in order to fetch some services. With this little helper it's possible to call another (public) method and magically have everything injected. Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	2020-07-03 14:37:46 +02:00
Joas Schilling	74a9cadc50	Fix IPv6 remote addresses from X_FORWARDED_FOR headers before validating Signed-off-by: Joas Schilling <coding@schilljs.com>	2020-07-02 11:13:13 +02:00
Christoph Wurst	4488e846a5	Add unified search API Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	2020-06-24 14:20:25 +02:00
Joas Schilling	ad0731a63c	Make annotations case insensitive Signed-off-by: Joas Schilling <coding@schilljs.com>	2020-06-23 20:18:23 +02:00
Roeland Jago Douma	fbf9772a3e	Allow to specify the cookie type for appframework responses In general it is good to set them to Lax. But also to give devs more control over them is not a bad thing. Helps with #21474 Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	2020-06-22 08:38:44 +02:00
Roeland Jago Douma	6ec8042d88	Merge pull request #21469 from nextcloud/bugfix/noid/event-service-listener-registration Fix event service listener registration	2020-06-19 21:28:29 +02:00
Christoph Wurst	2b7b7144d4	Allow crash reporters registration during app bootstrap Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	2020-06-19 10:38:26 +02:00
Joas Schilling	9cf32a3999	Fix event service listener registration Signed-off-by: Joas Schilling <coding@schilljs.com>	2020-06-18 15:00:19 +02:00
Christoph Wurst	32bf95c774	Continue with next app when one errors during register My patch at #21461 had a little error in that it exits the method when a query exception is encountered during the register step of an app. What we actually want is to continue with the next app and finish the overall registration procedure. Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	2020-06-18 09:17:00 +02:00
Christoph Wurst	5ab5a5f89e	Catch all exceptions when an app is registering or booting Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	2020-06-17 21:07:42 +02:00
Christoph Wurst	69571fb536	Add dedicated API for apps' bootstrapping process Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	2020-06-17 09:22:21 +02:00
Morris Jobke	4e49e1da16	Allow TemplateResponse to be compressed Signed-off-by: Morris Jobke <hey@morrisjobke.de>	2020-05-15 08:38:39 +02:00
Morris Jobke	e0d2cd40e7	Fix return code of AppConfig::deleteUserValue Signed-off-by: Morris Jobke <hey@morrisjobke.de>	2020-05-13 14:55:00 +02:00
Roeland Jago Douma	12fa748c49	Move the notmodified check to middleware where it belongs Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	2020-05-13 08:11:24 +02:00
Roeland Jago Douma	203d7eb1d3	Add AppFramework GZip middleware to gzip responses Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	2020-05-12 09:09:48 +02:00
Roeland Jago Douma	0659656c72	Merge pull request #20786 from nextcloud/enh/dicontainer_cleanup DI Cleanup	2020-05-09 11:02:02 +02:00
Morris Jobke	08e78ff3b2	Fix OCPSinceChecker and php-cs Signed-off-by: Morris Jobke <hey@morrisjobke.de>	2020-05-08 11:20:46 +02:00
Roeland Jago Douma	32c93ee08e	Move over the IConfig for globalscale Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	2020-05-08 08:50:01 +02:00
Roeland Jago Douma	163463dea5	Add InitialState Appframework service Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	2020-05-07 10:13:06 +02:00
Roeland Jago Douma	4e59c6f9b5	Remove double registrations Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	2020-05-07 08:47:43 +02:00
Roeland Jago Douma	8a8623c569	Simple AppConfig wrapper for the AppFramework 9 out of 10 cases apps want to access their own appconfig. Hence it would be nice not to have to enter the app id all the time. This simple wrapper just passes on the appid in all calls. Basically this allows for simpler code in the apps. Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	2020-05-02 15:34:28 +02:00
Christoph Wurst	cb057829f7	Update license headers for 19 Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	2020-04-29 11:57:22 +02:00
Roeland Jago Douma	c870b6ab2e	Fix new routing in settings etc Also prefix resources Unify the prefix handling Handle urls with and without slash Signed-off-by: Joas Schilling <coding@schilljs.com> Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	2020-04-22 13:09:25 +02:00
Joas Schilling	250467e842	Extend tests for root url Signed-off-by: Joas Schilling <coding@schilljs.com>	2020-04-18 11:21:28 +02:00
Joas Schilling	f93d55eebd	PHP CS fixes Signed-off-by: Joas Schilling <coding@schilljs.com>	2020-04-18 11:21:28 +02:00
Joas Schilling	3f8168b6e5	Allow some apps to have root URLs in their own routing file Signed-off-by: Joas Schilling <coding@schilljs.com>	2020-04-18 11:21:28 +02:00
Christoph Wurst	734c62bee0	Format code according to PSR2 Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	2020-04-10 16:56:50 +02:00
Christoph Wurst	28f8eb5dba	Add visibility to all constants Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	2020-04-10 16:54:27 +02:00
Christoph Wurst	caff1023ea	Format control structures, classes, methods and function To continue this formatting madness, here's a tiny patch that adds unified formatting for control structures like if and loops as well as classes, their methods and anonymous functions. This basically forces the constructs to start on the same line. This is not exactly what PSR2 wants, but I think we can have a few exceptions with "our" style. The starting of braces on the same line is pracrically standard for our code. This also removes and empty lines from method/function bodies at the beginning and end. Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	2020-04-10 14:19:56 +02:00
Christoph Wurst	14c996d982	Use elseif instead of else if Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	2020-04-10 10:35:09 +02:00
Christoph Wurst	3a415e4139	Remove space between switch case and colon Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	2020-04-09 16:17:53 +02:00
Christoph Wurst	44577e4345	Remove trailing and in between spaces Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	2020-04-09 16:07:47 +02:00
Christoph Wurst	afbd9c4e6e	Unify function spacing to PSR2 recommendation Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	2020-04-09 13:54:22 +02:00
Christoph Wurst	2fbad1ed72	Fix (array) indent style to always use one tab Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	2020-04-09 10:16:08 +02:00
Christoph Wurst	85e369cddb	Fix multiline comments Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	2020-04-08 22:24:54 +02:00
Christoph Wurst	1a9330cd69	Update the license headers for Nextcloud 19 Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	2020-03-31 14:52:54 +02:00
Christoph Wurst	463b388589	Merge pull request #20170 from nextcloud/techdebt/remove-unused-imports Remove unused imports	2020-03-27 17:14:08 +01:00
Christoph Wurst	b80ebc9674	Use the short array syntax, everywhere Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	2020-03-26 16:34:56 +01:00
Christoph Wurst	74936c49ea	Remove unused imports Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	2020-03-25 22:08:08 +01:00
Christoph Wurst	5fc4c91a76	Fix mismatching doc block parameter types Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	2020-03-06 16:28:42 +01:00
Joas Schilling	3894dcb756	Hardcode Talk namespace to fix install due to global route Signed-off-by: Joas Schilling <coding@schilljs.com>	2020-02-14 12:34:13 +01:00
Daniel Kesselberg	96d1640a37	Use strpos to check that @ is the first char Signed-off-by: Daniel Kesselberg <mail@danielkesselberg.de>	2020-01-23 10:25:52 +01:00
Joas Schilling	d445f9b9fe	Fix loaded controller check Signed-off-by: Joas Schilling <coding@schilljs.com>	2020-01-21 16:35:10 +01:00
Daniel Kesselberg	8331d8296b	Make getServerHost more robust to faulty user input Signed-off-by: Daniel Kesselberg <mail@danielkesselberg.de>	2020-01-16 11:26:29 +01:00
Daniel Kesselberg	d393b1612b	Modify regex to match some other chromium browsers Signed-off-by: Daniel Kesselberg <mail@danielkesselberg.de>	2019-12-27 17:24:52 +01:00
Christoph Wurst	1b46621cd3	Update license headers for 18 Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	2019-12-20 09:23:25 +01:00
Roeland Jago Douma	0360ab408e	Merge pull request #18256 from nextcloud/files-aditional-scripts-new-events Use non-depricated events for loading additional scripts in files app	2019-12-09 21:24:55 +01:00
Robin Appelman	1c585d2c50	use OCP\EventDispatcher\GenericEvent in more places Signed-off-by: Robin Appelman <robin@icewind.nl>	2019-12-09 14:24:57 +01:00
Daniel Kesselberg	0016480370	Decouple resource provider registration Signed-off-by: Daniel Kesselberg <mail@danielkesselberg.de>	2019-12-07 22:04:07 +01:00
Christoph Wurst	5bf3d1bb38	Update license headers Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	2019-12-05 15:38:45 +01:00
Julius Härtl	a055d8ddf9	Always return overwritehost if configured Signed-off-by: Julius Härtl <jus@bitgrid.net>	2019-11-28 15:02:33 +01:00
Roeland Jago Douma	68748d4f85	Some php-cs fixes * Order the imports * No leading slash on imports * Empty line before namespace * One line per import * Empty after imports * Emmpty line at bottom of file Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	2019-11-22 20:52:10 +01:00
Joas Schilling	6ad54f3f27	Merge pull request #17850 from nextcloud/bugfix/noid/mark-spreed-as-active-on-call-urls Mark "Talk" active on /call/token URLs	2019-11-20 10:33:45 +01:00
Daniel Kesselberg	9055f46351	Make phan happy ;) Signed-off-by: Daniel Kesselberg <mail@danielkesselberg.de>	2019-11-19 16:16:26 +01:00
Arthur Schiwon	0a1937208f	Fixes a 500 without userid plus cleanup of unused use statements Signed-off-by: Arthur Schiwon <blizzz@arthur-schiwon.de>	2019-11-16 01:10:19 +01:00
Joas Schilling	15f00f0126	Mark "Talk" active on /call/token URLs Signed-off-by: Joas Schilling <coding@schilljs.com>	2019-11-12 21:39:20 +01:00
Roeland Jago Douma	098ab7af4b	Do DI on registered middleware as well Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	2019-10-16 22:52:48 +02:00
Daniel Kesselberg	0ecc70c497	Assume that getType is available From PHP7 getType is always available. No need to check it nowdays. Signed-off-by: Daniel Kesselberg <mail@danielkesselberg.de>	2019-10-14 09:50:12 +02:00
Daniel Kesselberg	ace74ef866	Fix ReflectionType::__toString() is deprecated As of PHP 7.1.0, ReflectionType::__toString() is deprecated, and ReflectionParameter::getType() may return an instance of ReflectionNamedType. To get the name of the parameter type, ReflectionNamedType() is available in this case. https://www.php.net/manual/en/reflectionparameter.gettype.php Signed-off-by: Daniel Kesselberg <mail@danielkesselberg.de>	2019-10-14 09:50:06 +02:00
Daniel Kesselberg	fdf4e1ebb2	Remove duplicate code Signed-off-by: Daniel Kesselberg <mail@danielkesselberg.de>	2019-10-08 00:46:50 +02:00
Christoph Wurst	de6940352a	Move settings to an app Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at> Signed-off-by: npmbuildbot[bot] <npmbuildbot[bot]@users.noreply.github.com>	2019-09-28 09:39:28 +00:00
Julius Härtl	299759b836	Handle throwables in the http dispatcher Co-authored-by: Arthur Schiwon <blizzz@arthur-schiwon.de> Signed-off-by: Julius Härtl <jus@bitgrid.net>	2019-08-29 17:19:14 +02:00
Roeland Jago Douma	3f12ec95f0	SessionMiddleware: declare session property * Remove request since we don't useit * Update tests as well Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	2019-08-28 13:02:29 +02:00
Roeland Jago Douma	b8c5008acf	Add feature policy header This adds the events and the classes to modify the feature policy. It also adds a default restricted feature policy. Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	2019-08-10 14:26:22 +02:00
Roeland Jago Douma	5d94590cee	Have the OCSBaseResponse call the parent constructor Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	2019-08-08 09:52:20 +02:00
Roeland Jago Douma	37a4282c7a	Split up security middleware With upcoming work for the feature policy header. Splitting this in smaller classes that just do 1 thing makes sense. I rather have a few small classes that are tiny and do 1 thing right (and we all understand what is going on) than have big ones. Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	2019-07-27 16:11:45 +02:00
Roeland Jago Douma	357263a70b	Do not try to autoload built in types This avoids calls to the autoloader (or chain of autoloaders) to see if for example 'principalPrefix' class can be found. While we already know it is a string. Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	2019-06-04 15:13:32 +02:00
Roeland Jago Douma	b0c2042a28	Merge pull request #15714 from nextcloud/fix/204_304_rfc Check the actual status code for 204 and 304	2019-05-24 19:51:01 +02:00
Roeland Jago Douma	b0c030cbb5	Check the actual status code for 204 and 304 The header is the full http header like: HTTP/1.1 304 Not Modified So comparing this to an int always yields false This also makes the 304 RFC compliant as the resulting content length should otherwise be the length of the message and not 0. Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl> Signed-off-by: Morris Jobke <hey@morrisjobke.de>	2019-05-24 15:18:32 +02:00
Christoph Wurst	22ae682823	Make it possible to show admin settings for sub admins Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	2019-05-23 20:31:40 +02:00
Joas Schilling	471827cb31	Make sure all middlewares are only registered once Signed-off-by: Joas Schilling <coding@schilljs.com>	2019-05-06 11:28:18 +02:00
Joas Schilling	a3c9e5b11b	Add a message about disabled global routes Signed-off-by: Joas Schilling <coding@schilljs.com>	2019-03-11 12:43:39 +01:00
Joas Schilling	4e8b033281	Make sure urlParams are correctly injected in global routes Signed-off-by: Joas Schilling <coding@schilljs.com>	2019-03-11 12:30:44 +01:00
Joas Schilling	702dcfb728	Make names mandatory Signed-off-by: Joas Schilling <coding@schilljs.com>	2019-03-01 20:56:16 +01:00
Morris Jobke	0e9903c420	Merge pull request #13969 from nextcloud/enh/additional_scripts_no_on_public_pages No need to emit additonalscript event on public pages	2019-02-07 15:57:14 +01:00
Roeland Jago Douma	60e5a5eca4	Do not do redirect handling when loggin out Fixes #12568 Since the clearing of the execution context causes another reload. We should not do the redirect_uri handling as this results in redirecting back to the logout page on login. This adds a simple middleware that will just check if the ClearExecutionContext session variable is set. If that is the case it will just redirect back to the login page. Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	2019-02-06 11:29:32 +01:00
Roeland Jago Douma	b68567e9ba	Add StandaloneTemplateResponse This can be used by pages that do not have the full Nextcloud UI. So notifications etc do not load there. Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	2019-02-06 11:26:18 +01:00
Roeland Jago Douma	d88604015a	No need to emit additonalscript event on public pages There already is a separate event for this. This will make it possible to only inject code with the logged in one on default rendered pages. Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	2019-02-05 20:59:36 +01:00
Roeland Jago Douma	23245904d3	Merge pull request #13694 from b108/duplicate-functionality-in-request-class Remove duplicate functionality	2019-02-01 11:28:25 +01:00
Roeland Jago Douma	d182037bce	Emit to load additionalscripts Fixes #13662 This will fire of an event after a Template Response has been returned. There is an event for the generic loading and one when logged in. So apps can chose to load only on loged in pages. This is a more generic approach than the files app event. As some things we might want to load on other pages as well besides the files app. Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	2019-01-31 12:11:40 +01:00
Joas Schilling	92edd40e51	Make RouteConfig strict Signed-off-by: Joas Schilling <coding@schilljs.com>	2019-01-22 14:18:58 +01:00
Joas Schilling	f8b74cf0a5	Allow resources via OCS as well Signed-off-by: Joas Schilling <coding@schilljs.com>	2019-01-22 14:18:58 +01:00
b108@volgograd	bf167ad3ac	Remove duplicate functionality This functionality implemented in the next line: $requestUri = preg_replace('%/{2,}%', '/', $requestUri);	2019-01-20 13:29:58 +04:00
Roeland Jago Douma	54ff913de6	Cleanup middleware registering Fixes #12224 Since we only use the middleware at 1 location it makes no sense to register them in each and every container. Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	2019-01-03 11:50:01 +01:00
Roeland Jago Douma	514426e27d	Only trust the X-FORWARDED-HOST header for trusted proxies Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	2018-12-17 15:54:45 +01:00
Morris Jobke	411d2dece5	Merge pull request #11786 from nextcloud/feature/password_confirmation_backend Expose password confirmation capabilities in the user backend	2018-11-06 00:44:18 +01:00
Roeland Jago Douma	2452a3ec73	Properly query the methodreflector Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	2018-11-02 19:20:37 +01:00
Roeland Jago Douma	0e5147f001	Fix tests Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	2018-11-02 19:20:37 +01:00
Roeland Jago Douma	bfb5ef4b29	The identityproof manager should be in Server Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	2018-11-02 19:20:37 +01:00
Roeland Jago Douma	8f833a309a	No need to register it also in the DI Container Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	2018-11-02 19:20:37 +01:00
Roeland Jago Douma	fbd0d0bdcf	The Encryption manager belongs in Server.php Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	2018-11-02 19:20:37 +01:00
Roeland Jago Douma	9c28d2d7c4	SearchResult should be difined in Server as it is a core component Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	2018-11-02 19:20:37 +01:00
Roeland Jago Douma	964ebed86c	The UserSession is constructed in the server Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	2018-11-02 19:20:37 +01:00
Roeland Jago Douma	b2501dbf9a	TimeFactory is already regsitsered in the Server Container Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	2018-11-02 19:20:37 +01:00
Roeland Jago Douma	61adb513fe	Request is already regsitered in the Server container Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	2018-11-02 19:20:36 +01:00
Roeland Jago Douma	421a40e7db	Was already registered in Server The DIContainaer will query server anyways if it can't find it Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	2018-11-02 19:20:35 +01:00
Roeland Jago Douma	603b672a11	Update password confirmation middleware If the userbackend doesn't allow validating the password for a given uid then there is no need to perform this check. Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	2018-11-02 13:44:45 +01:00
Morris Jobke	dccfe4bf84	Merge pull request #12036 from olivermg/master Add capability of specifying "trusted_proxies" entries in CIDR notation (IPv4)	2018-10-30 10:49:08 +01:00
Morris Jobke	c9e6a99637	Merge pull request #12085 from nextcloud/add-gss-to-excluded-backends add global site selector as user back-end which doesn't support password confirmation	2018-10-30 10:16:07 +01:00
Oliver Wegner	401ca28f07	Adding handling of CIDR notation to trusted_proxies for IPv4 Signed-off-by: Oliver Wegner <void1976@gmail.com>	2018-10-30 09:15:42 +01:00
Bjoern Schiessle	85d9f06cb8	add global site selector as user back-end which doesn't support password confirmation Signed-off-by: Bjoern Schiessle <bjoern@schiessle.org>	2018-10-27 15:43:51 +02:00
Daniel Kesselberg	986f4df2a5	Add REMOTE_ADDR to getHeader Signed-off-by: Daniel Kesselberg <mail@danielkesselberg.de>	2018-10-25 22:26:49 +02:00
Joas Schilling	840dd4b39c	Allow to inject/mock `new \DateTime()` similar to time() Signed-off-by: Joas Schilling <coding@schilljs.com>	2018-10-09 15:38:31 +02:00
Robin Appelman	dccbdc8c01	only catch QueryException when trying to build class Signed-off-by: Robin Appelman <robin@icewind.nl>	2018-09-21 18:32:15 +02:00
Roeland Jago Douma	9319d557a4	Add wrapper Logger in DIContainer This makes sure that for example app for the context is always set. We can in the future extend this to include more info. Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	2018-09-04 10:05:25 +02:00
Robin Appelman	c0a283fefb	ensure we always return an array from `Request::getParams` Signed-off-by: Robin Appelman <robin@icewind.nl>	2018-08-28 18:11:42 +02:00
Roeland Jago Douma	8c1e75e052	Do not use file as template parameter Using file will overwrite the $file parameter in the template base. Leading to trying to include a file that is the exception message. Which will of course fail. Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	2018-08-09 16:45:25 +02:00
Roeland Jago Douma	e7338173e8	Add PublicShareMiddlewareTest Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	2018-06-20 08:53:37 +02:00
Roeland Jago Douma	20e514690c	Don't allow public share pages if link sharing is disabled Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	2018-06-20 08:53:37 +02:00
Roeland Jago Douma	366981fba6	Move public preview endpoint over Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	2018-06-20 08:53:37 +02:00
Roeland Jago Douma	f36ef8ca80	Add the new PublicShareController and PublicShareMiddleware Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	2018-06-20 08:53:35 +02:00
Joas Schilling	b4bacf46f3	Do not send a body for "No content", "Not modified" and others Signed-off-by: Joas Schilling <coding@schilljs.com>	2018-05-04 13:46:13 +02:00
Joas Schilling	f5b143e318	Allow to inject ISearchResult Signed-off-by: Joas Schilling <coding@schilljs.com>	2018-04-26 12:19:15 +02:00
Arthur Schiwon	38a90130ce	move log constants to ILogger Signed-off-by: Arthur Schiwon <blizzz@arthur-schiwon.de>	2018-04-26 10:45:52 +02:00
Roeland Jago Douma	129a608ebe	OCP\AppFramework\App strict Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	2018-03-09 08:42:03 +01:00
Morris Jobke	a2db959f5c	Merge pull request #8593 from eneiluj/master Allow public page access to apps with group restrictions	2018-03-08 11:27:52 +01:00
Roeland Jago Douma	3ad7daeda5	Add tests Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	2018-03-08 11:05:18 +01:00
Roeland Jago Douma	340e8ef16c	Make SecurityMiddleware strict Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	2018-03-08 10:11:47 +01:00
Joas Schilling	1dd40b1f45	Single quotes Signed-off-by: Joas Schilling <coding@schilljs.com>	2018-03-07 16:50:18 +01:00
Joas Schilling	559978c50e	Suppress phan error Signed-off-by: Joas Schilling <coding@schilljs.com>	2018-03-07 16:43:16 +01:00
Joas Schilling	09d8387b00	Try without autoloading Signed-off-by: Joas Schilling <coding@schilljs.com>	2018-03-06 13:56:44 +01:00

... 3 4 5 6 7 ...

625 commits