upstream/nextcloud
1
0
Fork 0
mirror of https://github.com/nextcloud/server.git synced 2026-06-15 19:49:38 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions 53
68006 commits 1031 branches 1221 tags 8.7 GiB
Commit graph

68006 commits

This branch
This branch
All branches
Author SHA1 Message Date
provokateurin
fe7b6039bc
fix(files_external): Mark password fields for LoginCredentials and SessionCredentials as hidden and optional 
Signed-off-by: provokateurin <kate@provokateurin.de>
 2025-05-06 13:35:18 +02:00
provokateurin
10aeb95bcc
fix(files_external): Convert VALUE_HIDDEN to FLAG_HIDDEN to allow combining VALUE_PASSWORD and FLAG_HIDDEN 
Signed-off-by: provokateurin <kate@provokateurin.de>
 2025-05-06 13:35:18 +02:00
Joas Schilling
ebca4bceae
Merge pull request #52110 from nextcloud/automated/noid/stable26-update-code-signing-crl 
[stable26] fix(security): Update code signing revocation list
 2025-04-11 12:30:02 +02:00
nextcloud-command
c6f1107116 fix(security): Update code signing revocation list 
Signed-off-by: GitHub <noreply@github.com>
 2025-04-11 02:36:34 +00:00
Joas Schilling
0249cf7c68
Merge pull request #52058 from nextcloud/backport/51905/stable26 
[stable26] fix(session): Only mark sessions of permanent tokens as app passwords
 2025-04-09 17:46:03 +02:00
Christoph Wurst
1ee1c80b19
fix(session): Only mark sessions of permanent tokens as app passwords 
Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
 2025-04-09 07:58:56 +02:00
Joas Schilling
1a9f52dd7d
Merge pull request #52024 from nextcloud/automated/noid/stable26-update-code-signing-crl 
[stable26] fix(security): Update code signing revocation list
 2025-04-08 10:33:10 +02:00
nextcloud-command
d05dac3f83 fix(security): Update code signing revocation list 
Signed-off-by: GitHub <noreply@github.com>
 2025-04-08 08:27:28 +00:00
Joas Schilling
7c8338d6f6
Merge pull request #51971 from nextcloud/automated/noid/stable26-update-code-signing-crl 
[stable26] fix(security): Update code signing revocation list
 2025-04-07 07:58:54 +02:00
nextcloud-command
be9481b2e8 fix(security): Update code signing revocation list 
Signed-off-by: GitHub <noreply@github.com>
 2025-04-05 02:34:23 +00:00
Joas Schilling
f9f2e7a779
Merge pull request #51554 from nextcloud/backport/51544/stable26 
[stable26] fix(auth): Allow 2FA challenges for Ephemeral sessions
 2025-03-18 12:26:47 +01:00
Joas Schilling
e33b001b39
fix(auth): Allow 2FA challenges for Ephemeral sessions 
Signed-off-by: Joas Schilling <coding@schilljs.com>
 2025-03-18 10:30:58 +01:00
Joas Schilling
948ad00b40
Merge pull request #51366 from nextcloud/backport/51361/stable26 
[stable26] fix(base.php): Correct order for booting \OC\Server
 2025-03-17 21:13:10 +01:00
Andy Scherzinger
8c9bc438d0
Merge pull request #51422 from nextcloud/backport/51407/stable26 
[stable26] fix(lookup-server): disable when not using global scale
 2025-03-12 21:14:09 +01:00
Ferdinand Thiessen
931668bced chore: compile assets 
Signed-off-by: Ferdinand Thiessen <opensource@fthiessen.de>
Signed-off-by: nextcloud-command <nextcloud-command@users.noreply.github.com>
 2025-03-12 13:56:06 +00:00
Ferdinand Thiessen
65ce8c2d7a
fix(lookup-server): disable lookup server for non-global scale setups 
Signed-off-by: Ferdinand Thiessen <opensource@fthiessen.de>
 2025-03-12 12:33:46 +01:00
Ferdinand Thiessen
bbc6b46e67
fix(lookup-server): do not query data by default 
Signed-off-by: Ferdinand Thiessen <opensource@fthiessen.de>
 2025-03-12 12:03:50 +01:00
Ferdinand Thiessen
c8b7bd3baf fix(lookup-server): do not upload data by default 
Signed-off-by: Ferdinand Thiessen <opensource@fthiessen.de>
 2025-03-12 10:09:56 +00:00
Joas Schilling
3d918d488f
fix(base.php): Correct order for booting \OC\Server 
A recent change had broken authentication with an older
FastCGI Apache2 module, because the IRequest object got
initialised before the fix from self::handleAuthHeaders()
copied the authentication headers into the correct $_SERVER
variables.

Since this part is completely independent from any Nextcloud
code it is now done as a first thing within the init() call.

Additionally similar issues could happen when another class
would boot too early and read other global PHP settings like
ini values and default timezone, so those are now also moved
to the beginning.

Signed-off-by: Joas Schilling <coding@schilljs.com>
 2025-03-10 12:39:10 +01:00
Andy Scherzinger
5549bacc2c
Merge pull request #51290 from nextcloud/backport/51280/stable26 
[stable26] fix(login): Do not target PublicPage attribute as it does not exists
 2025-03-05 19:14:28 +01:00
Louis Chemineau
dba818df7b
fix(login): Do not target PublicPage attribute as it does not exists 
Signed-off-by: Louis Chemineau <louis@chmn.me>
 2025-03-05 18:05:00 +01:00
Stephan Orbaugh
649b229211
Merge pull request #51198 from nextcloud/backport/51194/stable26 
[stable26] refactor(TempManager): Simplify and unify implementations and remove legacy behavior
 2025-03-04 10:20:56 +01:00
provokateurin
73705d080c
refactor(TempManager): Simplify and unify implementations and remove legacy behavior 
Signed-off-by: provokateurin <kate@provokateurin.de>
 2025-03-04 07:54:34 +01:00
Andy Scherzinger
535b1b63f1
Merge pull request #51085 from nextcloud/backport/51051/stable26 
[stable26] feat: Close sessions created for login flow v2
 2025-03-03 16:49:15 +01:00
Louis Chemineau
8d0ff42e1c
fix(login): Support subfolder install for ephemeral sessions 
Signed-off-by: Louis Chemineau <louis@chmn.me>
 2025-03-03 12:07:32 +01:00
Louis Chemineau
cc6de88dee
fix(login): Also check legacy annotation for ephemeral sessions 
Signed-off-by: Louis Chemineau <louis@chmn.me>
 2025-03-03 12:07:32 +01:00
Louis Chemineau
242164f0fd
feat: Close sessions created for login flow v2 
Sessions created during the login flow v2 should be short lived to not leave an unexpected opened session in the browser.

This commit add a property to the session object to track its origin, and will close it as soon as possible, i.e., on the first non public page request.

Signed-off-by: Louis Chemineau <louis@chmn.me>
 2025-03-03 12:07:32 +01:00
Stephan Orbaugh
94fba5a923
Merge pull request #51101 from nextcloud/backport/51019/stable26 
[stable26] fix(files_external): Move definition parameter to the correct place
 2025-03-03 10:57:44 +01:00
provokateurin
12ee7d7a55 fix(files_external): Move definition parameter to the correct place 
Signed-off-by: provokateurin <kate@provokateurin.de>
 2025-02-27 14:21:17 +00:00
Joas Schilling
7a27e096b4
Merge pull request #51037 from nextcloud/automated/noid/stable26-update-ca-cert-bundle 
[stable26] fix(security): Update CA certificate bundle
 2025-02-26 08:53:13 +01:00
nextcloud-command
624e4cf77c fix(security): Update CA certificate bundle 
Signed-off-by: GitHub <noreply@github.com>
 2025-02-26 02:31:03 +00:00
Andy Scherzinger
c722f9782b
Merge pull request #50598 from nextcloud/backport/50270/stable26 
[stable26] fix(files_sharing): Respect permissions passed when creating link shares
 2025-02-04 12:05:56 +01:00
Andy Scherzinger
0f5d3cfe6c
ci(upload): Bump upload action to latest v4 
Signed-off-by: Andy Scherzinger <info@andy-scherzinger.de>
 2025-02-04 11:49:45 +01:00
Ferdinand Thiessen
68c8c38611
test: Reset sharing app config after test 
Signed-off-by: Ferdinand Thiessen <opensource@fthiessen.de>
 2025-01-31 22:18:03 +01:00
Ferdinand Thiessen
5535a7932c
fix(sharing): Move permission validation to share manager 
Signed-off-by: Ferdinand Thiessen <opensource@fthiessen.de>
 2025-01-31 22:18:03 +01:00
Ferdinand Thiessen
55b764b64b
fix(files_sharing): Respect permissions passed when creating link shares 
Given:
User creates a link or email share with permissions=4 (create only = file drop).

Problem:
Currently the permissions are automatically extended to permissions = 5
(READ + CREATE). Work around was to create the share and directly update
it.

Solution:
Respect what the user is requesting, create a file drop share.

Co-authored-by: Ferdinand Thiessen <opensource@fthiessen.de>
Co-authored-by: Côme Chilliet <91878298+come-nc@users.noreply.github.com>
Signed-off-by: Ferdinand Thiessen <opensource@fthiessen.de>
 2025-01-31 22:18:03 +01:00
Joas Schilling
2a8ec35f44
Merge pull request #50379 from nextcloud/automated/noid/stable26-update-code-signing-crl 
[stable26] fix(security): Update code signing revocation list
 2025-01-24 11:03:28 +01:00
nextcloud-command
1669dec3b9 fix(security): Update code signing revocation list 
Signed-off-by: GitHub <noreply@github.com>
 2025-01-24 02:27:42 +00:00
Joas Schilling
ce925625f6
Merge pull request #50006 from nextcloud/automated/noid/stable26-update-ca-cert-bundle 
[stable26] fix(security): Update CA certificate bundle
 2025-01-01 09:37:52 +01:00
nextcloud-command
ce8988f1ad fix(security): Update CA certificate bundle 
Signed-off-by: GitHub <noreply@github.com>
 2025-01-01 02:33:25 +00:00
John Molakvoæ
3e2f9ac6cc
Merge pull request #49787 from nextcloud/backport/40394/stable26 
[stable26] fix mimetype not being updated when changing file extention on objectstore
 2024-12-12 13:19:46 +01:00
Robin Appelman
10b6d92319 fix: fix mimetype not being updated when changing file extention on object store 
Signed-off-by: Robin Appelman <robin@icewind.nl>
 2024-12-11 07:49:18 +00:00
Julius Knorr
a74bf8d7e9
Merge pull request #49475 from nextcloud/backport/43580/stable26 
[stable26] Move oc_file_metadata.metadata migration to a background job
 2024-12-03 12:17:09 +01:00
Louis Chemineau
11d92d1ce1
Move oc_file_metadata.metadata migration to a background job 
Signed-off-by: Louis Chemineau <louis@chmn.me>
Signed-off-by: Max <max@nextcloud.com>
 2024-12-02 20:15:23 +01:00
Joas Schilling
1301355910
Merge pull request #49539 from nextcloud/backport/49535/stable26 
[stable26] fix(migration): Decrypt ownCloud secrets v2
 2024-11-28 13:49:59 +01:00
Christoph Wurst
c82505366d fix(migration): Decrypt ownCloud secrets v2 
Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
 2024-11-28 09:32:29 +00:00
Joas Schilling
6245d1bd12
Merge pull request #49511 from nextcloud/automated/noid/stable26-update-ca-cert-bundle 
[stable26] fix(security): Update CA certificate bundle
 2024-11-27 06:47:52 +01:00
nextcloud-command
8f7af65590 fix(security): Update CA certificate bundle 
Signed-off-by: GitHub <noreply@github.com>
 2024-11-27 02:34:37 +00:00
Benjamin Gaussorgues
45a7360f50
Merge pull request #49031 from nextcloud/backport/49009/stable26 2024-10-31 15:30:54 +01:00
Maxence Lange
48365cbe98 fix(files-external): set password as sensitive 
Signed-off-by: Maxence Lange <maxence@artificial-owl.com>
 2024-10-31 11:57:00 +00:00