upstream/nextcloud
1
0
Fork 0
mirror of https://github.com/nextcloud/server.git synced 2026-05-23 10:37:27 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions 8
nextcloud/apps/settings
History
Peter Ringelmann a070301443
fix(frontend): add strict password confirmation for sensitive admin actions 
Register axios password confirmation interceptors in the apps
management, admin delegation, admin security, and OAuth2 settings
bundles, and pass PwdConfirmationMode.Strict on requests to endpoints
protected with #[PasswordConfirmationRequired(strict: true)], so that
the user password is verified via Basic auth on the request itself
rather than relying on the session timestamp.

Signed-off-by: Peter Ringelmann <peter.ringelmann@nextcloud.com>
2026-04-21 10:21:08 +02:00
..
appinfo fix(settings): Don't register invalid routes 2026-04-02 09:30:15 +02:00
composer feat: Add SetupCheck to warn about missing second factor provider 2026-02-02 11:55:16 +01:00
css chore: compile assets 2026-01-27 03:22:47 +01:00
data Fix duplicate sentence in 'Reasons to use Nextcloud.pdf' 2020-09-15 11:12:23 +02:00
img style(icon): Replace help icon with Material Symbol outlined variant 2025-08-29 16:19:20 +02:00
js chore(settings): remove dead legacy code 2026-01-15 16:13:35 +01:00
l10n fix(l10n): Update translations from Transifex 2026-04-21 00:18:36 +00:00
lib fix: Add missing PasswordConfirmationRequired attributes 2026-04-21 10:21:07 +02:00
src fix(frontend): add strict password confirmation for sensitive admin actions 2026-04-21 10:21:08 +02:00
templates feat(rector): Enable SafeDeclareStrictTypesRector 2026-02-09 10:59:31 +01:00
tests fix(tests): Adapt Middleware tests to API change 2026-03-11 14:27:45 +01:00
.editorconfig chore: Remove old travis related stuff 2024-09-19 20:16:29 +02:00
.gitignore chore: Add SPDX header 2024-06-03 20:33:31 +02:00
.l10nignore chore: Add SPDX header 2024-06-03 20:33:31 +02:00
openapi-administration.json chore(deps): Update nextcloud/openapi-extractor to v1.8.2 2025-08-26 10:21:10 +02:00
openapi-administration.json.license chore: Add SPDX header 2024-06-03 20:33:31 +02:00
openapi-full.json chore(deps): Update nextcloud/openapi-extractor to v1.8.2 2025-08-26 10:21:10 +02:00
openapi-full.json.license chore: Add SPDX header 2024-06-03 20:33:31 +02:00
openapi.json chore(deps): Update nextcloud/openapi-extractor to v1.8.2 2025-08-26 10:21:10 +02:00
openapi.json.license chore: Add SPDX header 2024-06-03 20:33:31 +02:00