upstream/nextcloud
1
0
Fork 0
mirror of https://github.com/nextcloud/server.git synced 2026-04-24 15:53:36 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions 11
74519 commits 867 branches 1197 tags 8.3 GiB
Commit graph

7068 commits

Author SHA1 Message Date
Arthur Schiwon
f6d6efef3a
refactor(Token): introduce scope constants 
Signed-off-by: Arthur Schiwon <blizzz@arthur-schiwon.de>
 2024-06-05 19:01:14 +02:00
Arthur Schiwon
340939e688
fix(Session): avoid password confirmation on SSO 
SSO backends like SAML and OIDC tried a trick to suppress password
confirmations as they are not possible by design. At least for SAML it was
not reliable when existing user backends where used as user repositories.

Now we are setting a special scope with the token, and also make sure that
the scope is taken over when tokens are regenerated.

Signed-off-by: Arthur Schiwon <blizzz@arthur-schiwon.de>
 2024-06-05 19:01:13 +02:00
Jake Nabasny
f863290572
feat(ldap): sync additional properties to profile and SAB 
Synced from LDAP to profile:
- Date of birth

Synced from LDAP to SAB (via the profile):
- Biography
- Date of birth

Original code by Jake Nabasny (GitHub: @slapcat)

Co-authored-by: Jake Nabasny <jake@nabasny.com>
Co-authored-by: Richard Steinmetz <richard@steinmetz.cloud>
Signed-off-by: Richard Steinmetz <richard@steinmetz.cloud>
 2024-05-30 12:01:13 +02:00
Daniel Kesselberg
3fb0aa40cd
feat(db): add mapping for lock wait timeout 
Signed-off-by: Daniel Kesselberg <mail@danielkesselberg.de>
 2024-05-29 11:10:43 +02:00
Christoph Wurst
3bfba2042c
fix(db): Prevent two connections for single node databases 
Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
 2024-05-28 10:38:36 +02:00
Andy Scherzinger
0b20dd6755
chore: Add SPDX header 
Signed-off-by: Andy Scherzinger <info@andy-scherzinger.de>
 2024-05-22 19:58:12 +02:00
Benjamin Gaussorgues
e630e4b983
Merge pull request #44763 from nextcloud/fix/group_name_length_db 2024-05-16 14:22:30 +02:00
Joas Schilling
4286660983
fix: Extend SVG reference check 
Signed-off-by: Joas Schilling <coding@schilljs.com>
 2024-05-16 10:01:33 +02:00
Marcel Klehr
715245a21a fix: run cs:fix 
Signed-off-by: Marcel Klehr <mklehr@gmx.net>
 2024-05-14 11:38:42 +02:00
Marcel Klehr
9cc1a01ea0 test: Put input files in user storage 
Signed-off-by: Marcel Klehr <mklehr@gmx.net>
 2024-05-14 11:38:42 +02:00
Marcel Klehr
19a0aaeb5e fix(TextToImage): Allow leaving the resources open 
Signed-off-by: Marcel Klehr <mklehr@gmx.net>
 2024-05-14 11:38:41 +02:00
Marcel Klehr
f6f4965294 fix: fix tests 
Signed-off-by: Marcel Klehr <mklehr@gmx.net>
 2024-05-14 11:38:41 +02:00
Marcel Klehr
5de42a53e2 fix: Don't use dynamic property 
Signed-off-by: Marcel Klehr <mklehr@gmx.net>
 2024-05-14 11:38:40 +02:00
Marcel Klehr
a5053d33c2 fix: Run cs:fix 
Signed-off-by: Marcel Klehr <mklehr@gmx.net>
 2024-05-14 11:38:40 +02:00
Marcel Klehr
ef44af1f48 test: Test file authorization check 
Signed-off-by: Marcel Klehr <mklehr@gmx.net>
 2024-05-14 11:38:40 +02:00
Marcel Klehr
bd5dfd0b5f test: Add more tests for legacy pass-through 
Signed-off-by: Marcel Klehr <mklehr@gmx.net>
 2024-05-14 11:38:40 +02:00
Marcel Klehr
b150d779f3 refactor: rename getTaskType to getTaskTypeId 
Signed-off-by: Marcel Klehr <mklehr@gmx.net>
 2024-05-14 11:38:40 +02:00
Marcel Klehr
ee7592ffdd fix: Run cs:fix 
Signed-off-by: Marcel Klehr <mklehr@gmx.net>
 2024-05-14 11:38:39 +02:00
Marcel Klehr
4b2acee64b test: Add OldTasksShouldBeCleanedUp test 
Signed-off-by: Marcel Klehr <mklehr@gmx.net>
 2024-05-14 11:38:39 +02:00
Marcel Klehr
8352b27c11 fix: weed out some psalm errors and run cs:fix 
Signed-off-by: Marcel Klehr <mklehr@gmx.net>
 2024-05-14 11:38:39 +02:00
Marcel Klehr
00894e2420 feat: first pass at TaskProcessing API 
Signed-off-by: Marcel Klehr <mklehr@gmx.net>
 2024-05-14 11:38:39 +02:00
Andy Scherzinger
1f7e2ba599
chore: Add SPDX header 
Signed-off-by: Andy Scherzinger <info@andy-scherzinger.de>
 2024-05-13 17:41:36 +02:00
Robin Appelman
d76de94c5b
Merge pull request #44791 from nextcloud/reshare-permission-logic 
fix: consider all paths the user has for a share source when considering max permissions
 2024-05-13 16:00:10 +02:00
Robin Appelman
4a72b96532
test: adjust test to new permissions check logic 
Signed-off-by: Robin Appelman <robin@icewind.nl>
 2024-05-03 15:38:48 +02:00
Julien Veyssier
1acc57b5c0
feat(bg-jobs): allow setting a job class list instead of a single class in cron.php and the job worker occ command 
Signed-off-by: Julien Veyssier <julien-nc@posteo.net>
 2024-05-02 16:43:41 +02:00
Julius Härtl
52eb6d8726
feat(bg-jobs): Allow calling cron.php with a background job class 
Signed-off-by: Julius Härtl <jus@bitgrid.net>
 2024-05-02 16:43:40 +02:00
Côme Chilliet
147426c3ca
Merge pull request #44968 from nextcloud/fix/drop-workaround-for-obsolete-php 
fix: Drop workarounds for unsupported obsolete PHP versions
 2024-04-29 15:31:04 +02:00
Christoph Wurst
21ee7f59bd
fix(session): Do not update authtoken last_check for passwordless 
Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
 2024-04-26 16:05:18 +02:00
Christoph Wurst
0211ed5eeb
Merge pull request #44745 from nextcloud/fix/auth/2fa-redirect-url 
fix(auth): Keep redirect URL during 2FA setup and challenge
 2024-04-23 09:34:49 +02:00
Côme Chilliet
5d1ca7e25a
fix: Drop workarounds for unsupported obsolete PHP versions 
Also improved error handling in Installer.php to be type safe.

Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>
 2024-04-22 16:55:42 +02:00
Côme Chilliet
ac1d868d18
fix: Lazy load IURLGenerator from AppManager to avoid installation crash 
Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>
 2024-04-22 15:50:06 +02:00
Benjamin Gaussorgues
7a6b1f8ae8
fix(groups): allows to save group names with more than 64 characters 
Mimic behaviour from LDAP users and add a hard limit to 255 characters

Signed-off-by: Benjamin Gaussorgues <benjamin.gaussorgues@nextcloud.com>
 2024-04-22 15:26:55 +02:00
Côme Chilliet
1b5a0c3e1c
fix: Fix RouterTest by adding IAppManager 
Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>
 2024-04-22 12:21:57 +02:00
Côme Chilliet
a0be3ffdf2
fix: Fix tests following OC_App migrations to IAppManager 
Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>
 2024-04-22 12:21:55 +02:00
Côme Chilliet
733a818139
fix: Migrate a few more classes away from OC_App::getAppPath 
Also fixed AppTest

Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>
 2024-04-22 12:19:01 +02:00
Christoph Wurst
22dc27810e
fix(auth): Keep redirect URL during 2FA setup and challenge 
Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
 2024-04-19 10:24:26 +02:00
Joas Schilling
2161387ac7
Merge pull request #44886 from nextcloud/techdebt/noid/improved-activity-exceptions 
fix(activity): Improved activity exceptions
 2024-04-18 10:05:49 +02:00
Maxence Lange
a624a2b34f fix(appconfig): returns correct value on details 
Signed-off-by: Maxence Lange <maxence@artificial-owl.com>
 2024-04-17 16:28:02 -01:00
Ferdinand Thiessen
3aa9c53a87
Merge pull request #44644 from nextcloud/enh/noid/returns-formated-app-values 
fix(appconfig): format app values
 2024-04-17 17:11:36 +02:00
Joas Schilling
8f83953ff1
fix(activity): Add a dedicated exception when not all fields are set while publishing an activity 
Signed-off-by: Joas Schilling <coding@schilljs.com>
 2024-04-17 15:36:41 +02:00
Pytal
728c46d174
Merge pull request #44736 from nextcloud/fix/avatar-images 
fix: Fix avatar images
 2024-04-09 10:10:19 -07:00
Christopher Ng
78ed7604ff test: Update tests 
Signed-off-by: Christopher Ng <chrng8@gmail.com>
 2024-04-08 17:04:33 -07:00
Robin Appelman
88ccea6d06
test: add test for jail watcher 
Signed-off-by: Robin Appelman <robin@icewind.nl>
 2024-04-08 18:42:44 +02:00
Maxence Lange
cc813fec23 fix(appconfig): format app values 
Signed-off-by: Maxence Lange <maxence@artificial-owl.com>
 2024-04-05 17:49:34 -01:00
Joas Schilling
575e7d8dba
fix(federation): ICloudId->getRemote() should contain the protocol 
Signed-off-by: Joas Schilling <coding@schilljs.com>
 2024-04-02 17:55:16 +02:00
Côme Chilliet
ec5133b739 fix: Apply new coding standard to all files 
Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>
 2024-04-02 14:16:21 +02:00
Côme Chilliet
fda1c42ab7
fix(tests): Fix tests when daytime saving time change happened recently 
Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>
 2024-04-02 11:24:14 +02:00
Ferdinand Thiessen
7d51b6fff5
Merge pull request #44438 from nextcloud/feat/login-form-timeout 
feat(login): Clear login form (password) after IDLE timeout
 2024-03-25 21:03:42 +01:00
Joas Schilling
dababa5138
fix(federation): Fix creating local cloudIds with http:// protocol 
Signed-off-by: Joas Schilling <coding@schilljs.com>
 2024-03-25 14:21:52 +01:00
Ferdinand Thiessen
3fede00732
feat(login): Clear login form (password) after IDLE timeout 
For security reasons it is recommended to stop the login process at a defined time,
this could prevent password leaks by e.g. user forgetting that they entered their password on public devices.

Enforced e.g. by the BSI ORP.4.A13 rule.

Signed-off-by: Ferdinand Thiessen <opensource@fthiessen.de>
 2024-03-25 12:22:53 +01:00