nextcloud-server

Commit Graph

Author	SHA1	Message	Date
Christoph Wurst	5bf3d1bb38	Update license headers Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	6 years ago
Christoph Wurst	a8f2e6914d	Add checkbox to install recommended apps during setup Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at> Signed-off-by: npmbuildbot[bot] <npmbuildbot[bot]@users.noreply.github.com>	6 years ago
Christoph Wurst	81e35d0c8a	Trim the login name Otherwise we keep on using it with leading or trailing whitespaces for app tokens and other logic. The reason this doesn't throw an error immediately with local users is that (My)SQL compares strings regardless of their padding by default. So we look up 'uid ' and get the row for the user 'uid'. Other back-ends will lead to a hard error, though, and the user is unable to log out as all request fail. Ref https://stackoverflow.com/a/10495807/2239067 Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	6 years ago
Joas Schilling	06f97c0fd0	Fix autocomplete suggestions with numeric user ids Signed-off-by: Joas Schilling <coding@schilljs.com>	6 years ago
Daniel Kesselberg	957c0df01b	Remove exception for settings app from svg controller Signed-off-by: Daniel Kesselberg <mail@danielkesselberg.de>	6 years ago
Roeland Jago Douma	68748d4f85	Some php-cs fixes * Order the imports * No leading slash on imports * Empty line before namespace * One line per import * Empty after imports * Emmpty line at bottom of file Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	6 years ago
Roeland Jago Douma	54eb27dab2	Update tests Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	6 years ago
RussellAult	19791b2460	Check getRedirectUri() for queries Resolves Issue #17885 Check getRedirectUri() for queries, and add a '&' instead of a '?' to $redirectUri if it already has them; otherwise, $redirectUri might end up with two '?'. Signed-off-by: RussellAult <russellault@users.noreply.github.com>	6 years ago
Roeland Jago Douma	0bd1378f81	Honor avatar visibility settings Fixes #5456 Only when an avatar is set to public should we show it to the public. For now this has an open question as to how to solve federated avatars. But I assume a dedicated paramter or endpooint would make sense there. Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	6 years ago
Roeland Jago Douma	2cf068463f	Harden middleware check These annotations will allow for extra checks. And thus make it harder to break things. Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	6 years ago
Sergej Nikolaev	1b5d85a4ca	fix oauth client redirect Signed-off-by: Sergej Nikolaev <kinolaev@gmail.com>	6 years ago
Roeland Jago Douma	cd1f443804	Allow rotation of apppasswords Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	6 years ago
Daniel Kesselberg	e32b2c4b76	Stop if there is no encrypted token Fix Argument 1 passed to OC\Security\Crypto::decrypt() must be of the type string, null given Signed-off-by: Daniel Kesselberg <mail@danielkesselberg.de>	6 years ago
Roeland Jago Douma	6dc179ee12	Fix login flow form actions So fun fact. Chrome considers a redirect after submitting a form part of the form actions. Since we redirect to a new protocol (nc://login/). Causing the form submission to work but the redirect failing hard. Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	6 years ago
Julius Härtl	3b0d13944a	Move actual password reset to vue Signed-off-by: Julius Härtl <jus@bitgrid.net>	7 years ago
Roeland Jago Douma	b6dd2ebd39	Use proper exception in lostController There is no need to log the expcetion of most of the stuff here. We should properly log them but an exception is excessive. This moves it to a proper exception which we can catch and then log. The other exceptions will still be fully logged. Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	7 years ago
Roeland Jago Douma	a2a53848b0	Update PreviewController The constructor is called with the userId. However if a user is not logged in this is null. Which means that we get an exception instead of this being handled gracefully in the middleware. There are cleaner solutions. But this is the solution that is the easiest to apply without lots of work and risk of breaking things (handling the logged in middleware before initializing the controller etc). Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	7 years ago
Daniel Kesselberg	d57540ac84	Return first value from $users Signed-off-by: Daniel Kesselberg <mail@danielkesselberg.de>	7 years ago
Daniel Kesselberg	6235a66aac	Don't send executionContexts for Clear-Site-Data There are plans to remove executionContexts from the spec: https://github.com/w3c/webappsec-clear-site-data/issues/59 Firefox already removed it https://bugzilla.mozilla.org/show_bug.cgi?id=1548034 Chromium implementation is not finish: https://bugs.chromium.org/p/chromium/issues/detail?id=898503&q=clear-site-data&sort=-modified&colspec=ID%20Pri%20M%20Stars%20ReleaseBlock%20Component%20Status%20Owner%20Summary%20OS%20Modified Signed-off-by: Daniel Kesselberg <mail@danielkesselberg.de>	7 years ago
Joas Schilling	05381f00d2	Fall back to black for non-color values Signed-off-by: Joas Schilling <coding@schilljs.com>	7 years ago
Julius Härtl	df072471a7	Add extendedSupport to Subscription Signed-off-by: Julius Härtl <jus@bitgrid.net>	7 years ago
Christoph Wurst	64c4bb5bce	Vueify the login page Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	7 years ago
Roeland Jago Douma	f03eb7ec3c	Remote wipe support This allows a user to mark a token for remote wipe. Clients that support this can then wipe the device properly. Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl> Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	7 years ago
Roeland Jago Douma	579162d7b9	Allow 2FA to be setup on first login Once 2FA is enforced for a user and they have no 2FA setup yet this will now prompt them with a setup screen. Given that providers are enabled that allow setup then. Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl> Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	7 years ago
Roeland Jago Douma	2dcb4cfbd6	Allow clients to delete their own apptoken Fixes #15480 Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	7 years ago
Christoph Wurst	170582d4f5	Add a login chain to reduce the complexity of LoginController::tryLogin Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	7 years ago
Roeland Jago Douma	7e7146db7f	Block install without CAN_INSTALL file Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	7 years ago
Joas Schilling	c5560117da	Make the endpoint more robust against faulty resource providers Signed-off-by: Joas Schilling <coding@schilljs.com>	7 years ago
Joas Schilling	21425eb964	Return 200 instead of 404 when asking for collections of a resource Signed-off-by: Joas Schilling <coding@schilljs.com>	7 years ago
Joas Schilling	3022ef687a	Use rich objects instead of name, link and icon Signed-off-by: Joas Schilling <coding@schilljs.com>	7 years ago
Joas Schilling	403b673b93	Replace the icon-class with an absolute link to an image Otherwise the icon can not be displayed in mobile apps Signed-off-by: Joas Schilling <coding@schilljs.com>	7 years ago
Joas Schilling	eecd9323c5	Also check the access to collections on preparing Signed-off-by: Joas Schilling <coding@schilljs.com>	7 years ago
Joas Schilling	59c92a7513	Further work on the access cache Searching for all is still a problem Signed-off-by: Joas Schilling <coding@schilljs.com>	7 years ago
Joas Schilling	dee6f7f61f	Fix doc blocks Signed-off-by: Joas Schilling <coding@schilljs.com>	7 years ago
Julius Härtl	e404ce7096	Implement search and rename in backend Signed-off-by: Julius Härtl <jus@bitgrid.net>	7 years ago
Julius Härtl	53ac9bdda1	Implement frontend for search/rename Signed-off-by: Julius Härtl <jus@bitgrid.net> Move to vuex Signed-off-by: Julius Härtl <jus@bitgrid.net>	7 years ago
Julius Härtl	88aa3de784	Add iconClass to resources Signed-off-by: Julius Härtl <jus@bitgrid.net>	7 years ago
Julius Härtl	555afff015	Make sure we query the node before fetching the name Signed-off-by: Julius Härtl <jus@bitgrid.net>	7 years ago
Julius Härtl	a72a6d73a3	Adjust parameter names on createCollectionOnResource Signed-off-by: Julius Härtl <jus@bitgrid.net>	7 years ago
Joas Schilling	702dcfb728	Make names mandatory Signed-off-by: Joas Schilling <coding@schilljs.com>	7 years ago
Joas Schilling	5dfc56e925	Allow to create collections Signed-off-by: Joas Schilling <coding@schilljs.com>	7 years ago
Joas Schilling	136d2c39ac	Provider functionality Signed-off-by: Joas Schilling <coding@schilljs.com>	7 years ago
Joas Schilling	65a9ab47ea	Add a controller with the most important methods Signed-off-by: Joas Schilling <coding@schilljs.com>	7 years ago
Joas Schilling	55f627d20b	Add an event to the Autocomplete Controller to allow to filter the results Signed-off-by: Joas Schilling <coding@schilljs.com>	7 years ago
Morris Jobke	5cbe6532a0	Fix typo in info log for autoconfig Signed-off-by: Morris Jobke <hey@morrisjobke.de>	7 years ago
Roeland Jago Douma	e819e97829	Login flow V2 This adds the new login flow. The desktop client will open up a browser and poll a returned endpoint at regular intervals to check if the flow is done. Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	7 years ago
Daniel Kesselberg	c583c5e7e2	Emit event if app password created Signed-off-by: Daniel Kesselberg <mail@danielkesselberg.de>	7 years ago
Daniel Kesselberg	149a98edf6	Publish activity for app token created by client login flow Signed-off-by: Daniel Kesselberg <mail@danielkesselberg.de>	7 years ago
Daniel Kesselberg	2ade2bef8c	Publish activity for app token created by ocs api Signed-off-by: Daniel Kesselberg <mail@danielkesselberg.de>	7 years ago
Michael Weimann	bf1253cb49	Implement guest avatar endpoint Signed-off-by: Michael Weimann <mail@michael-weimann.eu>	7 years ago

1 2 3 4 5 ...

368 Commits (3e720942e58f99b038616d95e00a01ac9dd2f490)