nextcloud

mirror of https://github.com/nextcloud/server.git synced 2026-06-13 18:50:47 -04:00

Author	SHA1	Message	Date
Côme Chilliet	2aeac5ed7c	fix: Add a factory for Memcached object instead of a static var Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>	2026-06-02 09:46:17 +02:00
Côme Chilliet	ac8cd6846d	chore: Remove static vars in TemplateLayout Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>	2026-06-02 09:46:17 +02:00
Côme Chilliet	b848be3513	chore: Move Util static property to top of the file It’s not easy to remove this one but at least make it visible Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>	2026-06-02 09:46:17 +02:00
Côme Chilliet	9d7c277668	fix: Remove static vars in trashbin, versions and storages Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>	2026-06-02 09:46:16 +02:00
Côme Chilliet	0d90f4272a	chore: Remove types from const properties Support was added in PHP 8.3 and we need to support 8.2 Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>	2026-06-02 09:46:16 +02:00
Côme Chilliet	b44f6a2957	fix: Remove static vars in TaskProcessing, TextProcessing, TextToImage Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>	2026-06-02 09:46:16 +02:00
Côme Chilliet	c3db7fa0e8	fix: Remove static var in Memcache/Redis Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>	2026-06-02 09:46:03 +02:00
provokateurin	80ec3b1b0a	fix(MailPlugin): Stop applying the offset twice and the limit per wide/exact Signed-off-by: provokateurin <kate@provokateurin.de>	2026-06-01 14:24:01 +02:00
provokateurin	5c21fb5062	perf(MailPlugin): Optimize checking group memberships Signed-off-by: provokateurin <kate@provokateurin.de>	2026-06-01 14:22:45 +02:00
provokateurin	1c7e381858	refactor(MailPlugin): Continue execution after extracting email instead of calling itself Signed-off-by: provokateurin <kate@provokateurin.de>	2026-06-01 14:22:45 +02:00
provokateurin	d92aac8f7d	fix(MailPlugin): Use correct type for exact id match Signed-off-by: provokateurin <kate@provokateurin.de>	2026-06-01 14:22:45 +02:00
Côme Chilliet	1ab09ec753	chore: Apply new coding standard to all files The diff can be checked using: git diff --ignore-all-space --ignore-blank-lines To see only the changes not related to blank lines. Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>	2026-06-01 13:46:39 +02:00
Kate	b839335eae	Merge pull request #60797 from nextcloud/chore/cache/remove-deprecated-events chore(Cache): Remove deprecated insert and update events	2026-06-01 11:36:23 +02:00
Nextcloud bot	eae0510228	fix(l10n): Update translations from Transifex Signed-off-by: Nextcloud bot <bot@nextcloud.com>	2026-06-01 00:22:46 +00:00
Nextcloud bot	b064def8ba	fix(l10n): Update translations from Transifex Signed-off-by: Nextcloud bot <bot@nextcloud.com>	2026-05-30 00:23:04 +00:00
Benjamin Gaussorgues	d67eae3501	feat(jobs): add command to list executed background jobs Signed-off-by: Benjamin Gaussorgues <benjamin.gaussorgues@nextcloud.com>	2026-05-29 14:09:06 +02:00
Benjamin Gaussorgues	f881e95e18	fix(db): ensure no autoincrement for Oracle Signed-off-by: Benjamin Gaussorgues <benjamin.gaussorgues@nextcloud.com>	2026-05-29 09:14:49 +02:00
Benjamin Gaussorgues	28d54ed26b	feat(jobs): log job execution in CronService Signed-off-by: Benjamin Gaussorgues <benjamin.gaussorgues@nextcloud.com>	2026-05-29 09:14:49 +02:00
Benjamin Gaussorgues	4ee75168d5	feat(jobs): allow to keep track of job executions Signed-off-by: Benjamin Gaussorgues <benjamin.gaussorgues@nextcloud.com>	2026-05-29 09:14:49 +02:00
Benjamin Gaussorgues	e5d91cc64e	feat(jobs): introduce JobStatus for job running state Signed-off-by: Benjamin Gaussorgues <benjamin.gaussorgues@nextcloud.com>	2026-05-29 09:14:48 +02:00
Benjamin Gaussorgues	8db8776f2d	feat(jobs): introduce background job classes registry Signed-off-by: Benjamin Gaussorgues <benjamin.gaussorgues@nextcloud.com>	2026-05-29 09:14:48 +02:00
Nextcloud bot	0466856093	fix(l10n): Update translations from Transifex Signed-off-by: Nextcloud bot <bot@nextcloud.com>	2026-05-29 00:23:39 +00:00
Anna	e29038414d	Merge pull request #59677 from nextcloud/fix/57340/owncloud-migration-appconfig-userconfig fix(appconfig,userconfig): restore pre-migration fallback for ownCloud migration	2026-05-28 20:42:29 +02:00
Stephan Orbaugh	72f5eea531	Merge pull request #60734 from nextcloud/feat/user/avatar-url-getters feat(UserManager): Add getters for avatar URLs	2026-05-28 15:51:42 +02:00
provokateurin	b1724dbad0	chore(Cache): Remove deprecated insert and update events Signed-off-by: provokateurin <kate@provokateurin.de>	2026-05-28 14:02:08 +02:00
Stephan Orbaugh	4cad192bcd	Merge pull request #60102 from nextcloud/automated/noid/rector-changes	2026-05-28 12:31:17 +02:00
Kate	b165048074	Merge pull request #60733 from nextcloud/fix/db/sqlite-foreign-key-constraints fix(DB): Enforce foreign key constraints in SQLite	2026-05-28 12:04:52 +02:00
Anna Larch	b2c9273e5f	fix(appconfig,userconfig): restore pre-migration fallback for ownCloud migration AppConfig and UserConfig unconditionally queried NC-only columns (type, lazy, flags, indexed) that don't exist in ownCloud's database schema, breaking ownCloud → Nextcloud upgrades entirely before the schema migration steps could run. Restore the fallback pattern in both classes: on first loadConfig() call, if a DBException with REASON_INVALID_FIELD_NAME is thrown, set $migrationCompleted = false and retry selecting only the columns present in ownCloud's schema. INSERT and UPDATE statements also omit NC-only columns when $migrationCompleted is false. The catch block also guards against infinite recursion: if $migrationCompleted is already false when the exception fires, the exception is re-thrown instead of triggering another recursive call. Fixes: https://github.com/nextcloud/server/issues/57340 Signed-off-by: Anna Larch <anna@nextcloud.com> AI-Assisted-By: Claude Sonnet 4.6 <noreply@anthropic.com>	2026-05-28 09:46:49 +02:00
Nextcloud bot	3f7721b996	fix(l10n): Update translations from Transifex Signed-off-by: Nextcloud bot <bot@nextcloud.com>	2026-05-28 00:23:06 +00:00
Louis	da7c4ef3ce	Merge pull request #60316 from Justinzobel/work/justinzobel/spellingfixes Spelling fixes	2026-05-27 18:47:51 +02:00
Micke Nordin	cc9e0ba582	fix(http-sig): make setSignature public and skip third-party-dependent test Two CI failures introduced by the test additions in this PR: 1. testEd25519VerifyAcceptedWhenSodiumLoaded calls setSignature() to inject an externally-produced Ed25519 signature (since Algorithm::sign() rejects Ed25519 by design). setSignature was declared protected, so the test couldn't call it from outside the class hierarchy. Make it public — SignedRequest lives in the OC\ private namespace, so this widens internal-only visibility, not the public API surface. 2. testParseKeyRejectsContradictoryAlg expected firebase/php-jwt's JWK::parseKey() to throw on a kty=OKP/crv=Ed25519/alg=ES256 key. The current firebase/php-jwt version does not validate that coherence at parse time, so the test now fails to see any throwable. The actual security check happens at Algorithm::verify() time and is covered by testVerifyEd25519KeyAgainstES256Alg right above it. Skip the parse-time test with a comment pointing at the verify-time coverage. Signed-off-by: Micke Nordin <kano@sunet.se>	2026-05-27 11:03:55 +02:00
Micke Nordin	c753aad9e3	refactor(ocm): expose confirmRequestOrigin as a function on ocmDiscoveryService Apps implementing OCM endpoints via OCMEndpointRequestEvent (e.g. SUNET/nextcloud-ocm_request_share for request-share, nextcloud/contacts for invite-accepted) need to apply the same identity check that the built-in addShare and receiveNotification handlers apply, so it makes sense to make it publicly accessible. It also allows us to refactor RequestHandlerController::confirmSignedOrigin to use the new public method and drop the confirmNotificationIdentity helper. Signed-off-by: Micke Nordin <kano@sunet.se>	2026-05-27 11:03:55 +02:00
Micke Nordin	1bad4fe238	fix: Make sodium optional This commit switches the default signature algorithm to ecdsa-p256-sha256 instead of Ed25519. This allows us to make sodium optional again, and we only pull it in to use it for verifying incomming signatures. If sodium is not installed, we throw on Ed25519 signatures instead. At least it is easy for most people to make their Nextcloud install fully RFC compliant by installing sodium. I also renamed all the Ed25519 function names to be more precis, using Jwks for the JSON Web Keys, and RFC9421 for the http-signature code, where it is needed to distinguish from draft-cavage signatures. Signed-off-by: Micke Nordin <kano@sunet.se>	2026-05-27 11:03:55 +02:00
Micke Nordin	1b4c9b21d2	chore: Add review feedback Throw when one of the headers are empty Enumerate all the allowed algorithms in th NATIVE constant Co-authored-by: Carl Schwan <carl@carlschwan.eu> Signed-off-by: Micke Nordin <kano@sunet.se>	2026-05-27 11:03:55 +02:00
Micke Nordin	d8cafa1ba5	chore: Fix return values Use constants instead of 0/1 Also fix PHPDoc to use correct return values. Co-authored-by: Carl Schwan <carl@carlschwan.eu> Signed-off-by: Micke Nordin <kano@sunet.se>	2026-05-27 11:03:55 +02:00
Micke Nordin	166bc2c74b	feat(http-sig): occ commands to manage Ed25519 keys ocm:keys:list list known keys with their slot and kid ocm:keys:stage generate a pending key, advertise via JWKS ocm:keys:activate promote pending -> active, demote previous active ocm:keys:retire delete the retiring key (kid stops resolving) Plus the autoloader regen covering the new classes from this branch. Signed-off-by: Micke Nordin <kano@sunet.se>	2026-05-27 11:03:55 +02:00
Micke Nordin	3b5107bc96	feat(http-sig): OCM Ed25519 keys, JWKS endpoint, http-sig capability OCM dual-stack integration of RFC 9421 alongside the existing cavage publicKey path: - OCMSignatoryManager: Ed25519 active/pending/retiring slot rotation backed by numbered pool appkeys, getRemoteKey for inbound JWK lookup with per-origin cache + cache-miss refetch, and getLocalEd25519Jwks for the JWKS endpoint. - Rfc9421SignatoryManager: per-call wrapper that swaps in the Ed25519 signatory and toggles `rfc9421.format`. - OCMJwksHandler: serves /.well-known/jwks.json (RFC 7517) when signing is enabled. - OCMDiscoveryService: advertises `http-sig` in capabilities when signing is enabled, and picks the signature scheme on outbound based on the remote's advertised capabilities. - Application.php: register the JWKS well-known handler. Signed-off-by: Micke Nordin <kano@sunet.se>	2026-05-27 11:03:55 +02:00
Micke Nordin	3a99cf9a67	feat(identityproof): Ed25519 app keys Add Manager::generateEd25519AppKey: persist a sodium-generated Ed25519 keypair (raw 32-byte public, 64-byte secret) under the same appdata layout the existing RSA path uses. Used by OCMSignatoryManager for the slotted RFC 9421 signing keys. Signed-off-by: Micke Nordin <kano@sunet.se>	2026-05-27 11:03:55 +02:00
Micke Nordin	0eb927e617	feat(http-sig): RFC 9421 protocol primitives Add the RFC 9421 (HTTP Message Signatures) sign/verify path alongside the existing draft-cavage implementation: - Algorithm: sodium for Ed25519, JWT::sign for RSA / ECDSA, ecdsaRawToDer for the ECDSA wire format. JWK parsing via JWK::parseKey. - SignatureBase: RFC 9421 §2.5 base construction for the derived components OCM uses plus plain HTTP fields. - ContentDigest: RFC 9530 helpers used as a covered component. - Rfc9421IncomingSignedRequest / Rfc9421OutgoingSignedRequest: request models. Parsing of Signature-Input / Signature delegates to gapple\\StructuredFields\\Parser. - IJwkResolvingSignatoryManager: capability bit signatory managers advertise to participate in RFC 9421 verification. - OcmProfile: OCM-mandated dictionary label. - SignatureManager: dispatch to RFC 9421 inbound when Signature-Input is present, outbound when rfc9421.format is set. Plus tests for each primitive and a full round-trip across the model. Signed-off-by: Micke Nordin <kano@sunet.se>	2026-05-27 11:03:55 +02:00
provokateurin	3ce12c83e1	feat(UserManager): Add getters for avatar URLs Signed-off-by: provokateurin <kate@provokateurin.de>	2026-05-27 06:44:36 +02:00
provokateurin	0ae5a05c25	fix(DB): Enforce foreign key constraints in SQLite Signed-off-by: provokateurin <kate@provokateurin.de>	2026-05-26 15:47:37 +02:00
John Molakvoæ	2fb2f31abd	Merge pull request #60654 from nextcloud/fix/null-safe-strtolower-getvaluebool fix(config): add null coalescing fallback in getValueBool before strtolower	2026-05-26 09:32:44 +02:00
Christoph Wurst	29ebfa7db4	Merge pull request #60649 from nextcloud/worktree-fix-content-disposition fix(http): avoid iconv for header ascii fallback	2026-05-26 09:22:40 +02:00
Nextcloud bot	5f73bf657b	fix(l10n): Update translations from Transifex Some checks are pending CodeQL Advanced / Analyze (actions) (push) Waiting to run Details CodeQL Advanced / Analyze (javascript-typescript) (push) Waiting to run Details Integration sqlite / changes (push) Waiting to run Details Integration sqlite / integration-sqlite (master, main, 8.4, main, --tags ~@large files_features) (push) Blocked by required conditions Details Integration sqlite / integration-sqlite (master, main, 8.4, main, capabilities_features) (push) Blocked by required conditions Details Integration sqlite / integration-sqlite (master, main, 8.4, main, collaboration_features) (push) Blocked by required conditions Details Integration sqlite / integration-sqlite (master, main, 8.4, main, comments_features) (push) Blocked by required conditions Details Integration sqlite / integration-sqlite (master, main, 8.4, main, dav_features) (push) Blocked by required conditions Details Integration sqlite / integration-sqlite (master, main, 8.4, main, features) (push) Blocked by required conditions Details Integration sqlite / integration-sqlite (master, main, 8.4, main, federation_features) (push) Blocked by required conditions Details Integration sqlite / integration-sqlite (master, main, 8.4, main, file_conversions) (push) Blocked by required conditions Details Integration sqlite / integration-sqlite (master, main, 8.4, main, files_reminders) (push) Blocked by required conditions Details Integration sqlite / integration-sqlite (master, main, 8.4, main, filesdrop_features) (push) Blocked by required conditions Details Integration sqlite / integration-sqlite (master, main, 8.4, main, guests_features) (push) Blocked by required conditions Details Integration sqlite / integration-sqlite (master, main, 8.4, main, ldap_features) (push) Blocked by required conditions Details Integration sqlite / integration-sqlite (master, main, 8.4, main, openldap_features) (push) Blocked by required conditions Details Integration sqlite / integration-sqlite (master, main, 8.4, main, openldap_numerical_features) (push) Blocked by required conditions Details Integration sqlite / integration-sqlite (master, main, 8.4, main, remoteapi_features) (push) Blocked by required conditions Details Integration sqlite / integration-sqlite (master, main, 8.4, main, routing_features) (push) Blocked by required conditions Details Integration sqlite / integration-sqlite (master, main, 8.4, main, setup_features) (push) Blocked by required conditions Details Integration sqlite / integration-sqlite (master, main, 8.4, main, sharees_features) (push) Blocked by required conditions Details Integration sqlite / integration-sqlite (master, main, 8.4, main, sharing_features) (push) Blocked by required conditions Details Integration sqlite / integration-sqlite (master, main, 8.4, main, theming_features) (push) Blocked by required conditions Details Integration sqlite / integration-sqlite (master, main, 8.4, main, videoverification_features) (push) Blocked by required conditions Details Integration sqlite / integration-sqlite-summary (push) Blocked by required conditions Details Signed-off-by: Nextcloud bot <bot@nextcloud.com>	2026-05-26 00:23:14 +00:00
nextcloud-command	fd14234a6a	refactor: Apply rector changes Signed-off-by: GitHub <noreply@github.com>	2026-05-24 14:56:18 +00:00
Christoph Wurst	d1d24e65a4	fix(http): avoid iconv for header ascii fallback iconv transliteration is locale- and config-dependent and fails silently on some setups. UnicodeString::ascii() from symfony/string uses a built-in transliteration table backed by symfony/polyfill-intl-normalizer, so it works on all setups without requiring optional PHP extensions. Assisted-by: Claude:claude-sonnet-4-6 Signed-off-by: Christoph Wurst <1374172+ChristophWurst@users.noreply.github.com>	2026-05-22 14:58:14 +02:00
skjnldsv	b86f463915	fix(config): add null coalescing fallback in getValueBool before strtolower Followup to #59646: guard against null reaching strtolower() in both AppConfig and UserConfig getValueBool(). Also aligns AppConfig with the (string) cast added in UserConfig by the original PR. Signed-off-by: skjnldsv <skjnldsv@protonmail.com>	2026-05-22 10:23:50 +02:00
Nextcloud bot	46bc7ebd52	fix(l10n): Update translations from Transifex Some checks are pending CodeQL Advanced / Analyze (actions) (push) Waiting to run Details CodeQL Advanced / Analyze (javascript-typescript) (push) Waiting to run Details Integration sqlite / changes (push) Waiting to run Details Integration sqlite / integration-sqlite (master, main, 8.4, main, --tags ~@large files_features) (push) Blocked by required conditions Details Integration sqlite / integration-sqlite (master, main, 8.4, main, capabilities_features) (push) Blocked by required conditions Details Integration sqlite / integration-sqlite (master, main, 8.4, main, collaboration_features) (push) Blocked by required conditions Details Integration sqlite / integration-sqlite (master, main, 8.4, main, comments_features) (push) Blocked by required conditions Details Integration sqlite / integration-sqlite (master, main, 8.4, main, dav_features) (push) Blocked by required conditions Details Integration sqlite / integration-sqlite (master, main, 8.4, main, features) (push) Blocked by required conditions Details Integration sqlite / integration-sqlite (master, main, 8.4, main, federation_features) (push) Blocked by required conditions Details Integration sqlite / integration-sqlite (master, main, 8.4, main, file_conversions) (push) Blocked by required conditions Details Integration sqlite / integration-sqlite (master, main, 8.4, main, files_reminders) (push) Blocked by required conditions Details Integration sqlite / integration-sqlite (master, main, 8.4, main, filesdrop_features) (push) Blocked by required conditions Details Integration sqlite / integration-sqlite (master, main, 8.4, main, guests_features) (push) Blocked by required conditions Details Integration sqlite / integration-sqlite (master, main, 8.4, main, ldap_features) (push) Blocked by required conditions Details Integration sqlite / integration-sqlite (master, main, 8.4, main, openldap_features) (push) Blocked by required conditions Details Integration sqlite / integration-sqlite (master, main, 8.4, main, openldap_numerical_features) (push) Blocked by required conditions Details Integration sqlite / integration-sqlite (master, main, 8.4, main, remoteapi_features) (push) Blocked by required conditions Details Integration sqlite / integration-sqlite (master, main, 8.4, main, routing_features) (push) Blocked by required conditions Details Integration sqlite / integration-sqlite (master, main, 8.4, main, setup_features) (push) Blocked by required conditions Details Integration sqlite / integration-sqlite (master, main, 8.4, main, sharees_features) (push) Blocked by required conditions Details Integration sqlite / integration-sqlite (master, main, 8.4, main, sharing_features) (push) Blocked by required conditions Details Integration sqlite / integration-sqlite (master, main, 8.4, main, theming_features) (push) Blocked by required conditions Details Integration sqlite / integration-sqlite (master, main, 8.4, main, videoverification_features) (push) Blocked by required conditions Details Integration sqlite / integration-sqlite-summary (push) Blocked by required conditions Details Signed-off-by: Nextcloud bot <bot@nextcloud.com>	2026-05-22 00:22:45 +00:00
Andy Scherzinger	a118773895	Merge pull request #59168 from philiprenich/fix-ios-browsers Some checks are pending Integration sqlite / changes (push) Waiting to run Details Integration sqlite / integration-sqlite (master, main, 8.4, main, --tags ~@large files_features) (push) Blocked by required conditions Details Integration sqlite / integration-sqlite (master, main, 8.4, main, capabilities_features) (push) Blocked by required conditions Details Integration sqlite / integration-sqlite (master, main, 8.4, main, collaboration_features) (push) Blocked by required conditions Details Integration sqlite / integration-sqlite (master, main, 8.4, main, comments_features) (push) Blocked by required conditions Details Integration sqlite / integration-sqlite (master, main, 8.4, main, dav_features) (push) Blocked by required conditions Details Integration sqlite / integration-sqlite (master, main, 8.4, main, features) (push) Blocked by required conditions Details Integration sqlite / integration-sqlite (master, main, 8.4, main, federation_features) (push) Blocked by required conditions Details Integration sqlite / integration-sqlite (master, main, 8.4, main, file_conversions) (push) Blocked by required conditions Details Integration sqlite / integration-sqlite (master, main, 8.4, main, files_reminders) (push) Blocked by required conditions Details Integration sqlite / integration-sqlite (master, main, 8.4, main, filesdrop_features) (push) Blocked by required conditions Details Integration sqlite / integration-sqlite (master, main, 8.4, main, guests_features) (push) Blocked by required conditions Details Integration sqlite / integration-sqlite (master, main, 8.4, main, ldap_features) (push) Blocked by required conditions Details Integration sqlite / integration-sqlite (master, main, 8.4, main, openldap_features) (push) Blocked by required conditions Details Integration sqlite / integration-sqlite (master, main, 8.4, main, openldap_numerical_features) (push) Blocked by required conditions Details Integration sqlite / integration-sqlite (master, main, 8.4, main, remoteapi_features) (push) Blocked by required conditions Details Integration sqlite / integration-sqlite (master, main, 8.4, main, routing_features) (push) Blocked by required conditions Details Integration sqlite / integration-sqlite (master, main, 8.4, main, setup_features) (push) Blocked by required conditions Details Integration sqlite / integration-sqlite (master, main, 8.4, main, sharees_features) (push) Blocked by required conditions Details Integration sqlite / integration-sqlite (master, main, 8.4, main, sharing_features) (push) Blocked by required conditions Details Integration sqlite / integration-sqlite (master, main, 8.4, main, theming_features) (push) Blocked by required conditions Details Integration sqlite / integration-sqlite (master, main, 8.4, main, videoverification_features) (push) Blocked by required conditions Details Integration sqlite / integration-sqlite-summary (push) Blocked by required conditions Details Psalm static code analysis / changes (push) Waiting to run Details Psalm static code analysis / static-code-analysis (push) Blocked by required conditions Details Psalm static code analysis / static-code-analysis-security (push) Blocked by required conditions Details Psalm static code analysis / static-code-analysis-ocp (push) Blocked by required conditions Details Psalm static code analysis / static-code-analysis-ncu (push) Blocked by required conditions Details Psalm static code analysis / static-code-analysis-strict (push) Blocked by required conditions Details Psalm static code analysis / static-code-analysis-summary (push) Blocked by required conditions Details fix: treat all WebKit iOS browseres the same	2026-05-21 10:17:15 +02:00
Benjamin Gaussorgues	bb63987d9c	Merge pull request #60612 from nextcloud/chore/server_id_entropy chore(snowflake): add more randomness in server id fallback	2026-05-21 10:16:36 +02:00

1 2 3 4 5 ...

27155 commits