upstream/nextcloud
1
0
Fork 0
mirror of https://github.com/nextcloud/server.git synced 2026-05-22 10:06:37 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions 13
nextcloud/apps
History
Peter Ringelmann 058a60774e
fix(frontend): add strict password confirmation for sensitive admin actions 
Register axios password confirmation interceptors in the apps
management, admin delegation, admin security, and OAuth2 settings
bundles, and pass PwdConfirmationMode.Strict on requests to endpoints
protected with #[PasswordConfirmationRequired(strict: true)], so that
the user password is verified via Basic auth on the request itself
rather than relying on the session timestamp.

Signed-off-by: Peter Ringelmann <peter.ringelmann@nextcloud.com>
2026-04-23 11:27:15 +02:00
..
admin_audit fix(admin_audit): Fix typo in visibility log message 2026-01-08 10:42:08 +00:00
cloud_federation_api fix(l10n): Update translations from Transifex 2026-02-10 00:22:08 +00:00
comments fix(l10n): Update translations from Transifex 2026-02-15 00:21:01 +00:00
contactsinteraction fix(l10n): Update translations from Transifex 2026-01-30 00:20:59 +00:00
dashboard fix(l10n): Update translations from Transifex 2026-02-19 00:21:27 +00:00
dav fix(ImipService): Make sure non-html fields are escaped and html fields are not 2026-04-22 17:54:31 +02:00
encryption fix(l10n): Update translations from Transifex 2026-02-07 00:21:23 +00:00
federatedfilesharing fix(federatedfilesharing): Do not set the share id for an existing share 2026-03-19 15:14:35 +01:00
federation fix(l10n): Update translations from Transifex 2026-02-18 00:21:17 +00:00
files feat(files): add configurations for file grouping 2026-04-16 08:35:08 -03:00
files_external fix: pass only object key to deleteObjects call 2026-02-27 11:35:48 +08:00
files_reminders fix(l10n): Update translations from Transifex 2026-01-29 00:21:03 +00:00
files_sharing chore: update openapi 2026-04-21 22:06:00 +02:00
files_trashbin test: skip testTrashEntryCreatedWhenSourceNotInCache on object store 2026-04-10 15:19:50 +02:00
files_versions fix(l10n): Update translations from Transifex 2026-01-29 00:21:03 +00:00
lookup_server_connector fix(l10n): Update translations from Transifex 2026-01-30 00:20:59 +00:00
oauth2 fix(frontend): add strict password confirmation for sensitive admin actions 2026-04-23 11:27:15 +02:00
profile fix(l10n): Update translations from Transifex 2026-01-29 00:21:03 +00:00
provisioning_api fix: Add missing PasswordConfirmationRequired attributes 2026-04-23 11:25:20 +02:00
settings fix(frontend): add strict password confirmation for sensitive admin actions 2026-04-23 11:27:15 +02:00
sharebymail fix(l10n): Update translations from Transifex 2026-02-19 00:21:27 +00:00
systemtags fix(l10n): Update translations from Transifex 2026-02-17 00:21:06 +00:00
testing test(dav): add integration test for principal property search 2025-06-17 20:02:30 +02:00
theming fix(l10n): Update translations from Transifex 2026-02-19 00:21:27 +00:00
twofactor_backupcodes fix(l10n): Update translations from Transifex 2026-02-07 00:21:23 +00:00
updatenotification fix(l10n): Update translations from Transifex 2026-02-16 00:21:06 +00:00
user_ldap fix: Add missing Attribute and fix parameter type in renewpassword route 2026-03-19 08:45:20 +00:00
user_status fix(l10n): Update translations from Transifex 2026-01-29 00:21:03 +00:00
weather_status fix(l10n): Update translations from Transifex 2026-02-19 00:21:27 +00:00
webhook_listeners fix(l10n): Update translations from Transifex 2026-02-01 00:21:00 +00:00
workflowengine fix(l10n): Update translations from Transifex 2026-02-07 00:21:23 +00:00