nextcloud-server

Commit Graph

Author	SHA1	Message	Date
Christoph Wurst	d89a75be0b	Update all license headers for Nextcloud 21 Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	5 years ago
Roeland Jago Douma	e0cc95f3aa	Allow user backends to specify a custom logout url * Allows SSO backends to do a global logout Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	6 years ago
Christoph Wurst	caff1023ea	Format control structures, classes, methods and function To continue this formatting madness, here's a tiny patch that adds unified formatting for control structures like if and loops as well as classes, their methods and anonymous functions. This basically forces the constructs to start on the same line. This is not exactly what PSR2 wants, but I think we can have a few exceptions with "our" style. The starting of braces on the same line is pracrically standard for our code. This also removes and empty lines from method/function bodies at the beginning and end. Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	6 years ago
Christoph Wurst	36b3bc8148	Use php keywords in lowercase Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	6 years ago
Christoph Wurst	1e086064f5	Move legacy classes from PSR0 to PSR4 Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	6 years ago
Christoph Wurst	1a9330cd69	Update the license headers for Nextcloud 19 Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	6 years ago
Christoph Wurst	b80ebc9674	Use the short array syntax, everywhere Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	6 years ago
Christoph Wurst	5bf3d1bb38	Update license headers Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	6 years ago
Christoph Wurst	7d1fc2b8e8	Fix missing login hook wih Apache/SAML Without this patch the hook does not transport the information whether the login is done with an app password or not. The suspicious login app requires the parameter to function correctly, hence adding it will make suspicious login detection also possible with SAML users. Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	7 years ago
Morris Jobke	f095bd1642	Use non-absolute logout URL to fix wrong URL in reverse proxy scenario Signed-off-by: Morris Jobke <hey@morrisjobke.de>	7 years ago
Roeland Jago Douma	e3de4edc51	Urlencode the requesttoken Followup of #13757 Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	7 years ago
Roeland Jago Douma	ebd9f30d85	Request plain logout url By requesting the plain logout url we allow it to be properly cached by the caching router. We just add the requesttoken manually. Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	7 years ago
Bjoern Schiessle	bb86a8ca36	add back-end as parameter to the pre-login hook This is needed for the Global Scale setup to allow the master node to perform different operations during login, depending on the user management. Because in case of SAML, the authentication at the idp happens at the master node. Signed-off-by: Bjoern Schiessle <bjoern@schiessle.org>	7 years ago
Arthur Schiwon	38a90130ce	move log constants to ILogger Signed-off-by: Arthur Schiwon <blizzz@arthur-schiwon.de>	8 years ago
Roeland Jago Douma	7ebd96416c	Remove deprecated OCP\User::getDisplayname Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	8 years ago
Roeland Jago Douma	6c8caa1641	Remove deprecated \OCP\User::getUsers Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	8 years ago
Morris Jobke	55532f19d9	Cleanup OC_User and OCP\User * mainly removes deprecated methods and old static code Signed-off-by: Morris Jobke <hey@morrisjobke.de>	8 years ago
Morris Jobke	31c5c2a592	Change @georgehrke's email Signed-off-by: Morris Jobke <hey@morrisjobke.de>	8 years ago
Morris Jobke	0eebff152a	Update license headers Signed-off-by: Morris Jobke <hey@morrisjobke.de>	8 years ago
Lukas Reschke	2e4cd44556	Inject \OCP\IURLGenerator to make tests work Signed-off-by: Lukas Reschke <lukas@statuscode.ch>	8 years ago
Lukas Reschke	a04feff9a7	Properly allow \OCP\Authentication\IApacheBackend to specify logout URL Any `\OCP\Authentication\IApacheBackend` previously had to implement `getLogoutAttribute` which returns a string. This string is directly injected into the logout `<a>` tag, so returning something like `href="foo"` would result in `<a href="foo">`. This is rather error prone and also in Nextcloud 12 broken as the logout entry has been moved with `054e161eb5` inside the navigation manager where one cannot simply inject attributes. Thus this feature is broken in Nextcloud 12 which effectively leads to the bug described at nextcloud/user_saml#112, people cannot logout anymore when using SAML using SLO. Basically in case of SAML you have a SLO url which redirects you to the IdP and properly logs you out there as well. Instead of monkey patching the Navigation manager I decided to instead change `\OCP\Authentication\IApacheBackend` to use `\OCP\Authentication\IApacheBackend::getLogoutUrl` instead where it can return a string with the appropriate logout URL. Since this functionality is only prominently used in the SAML plugin. Any custom app would need a small change but I'm not aware of any and there's simply no way to fix this properly otherwise. Signed-off-by: Lukas Reschke <lukas@statuscode.ch>	8 years ago
Lukas Reschke	dfd8125aeb	Replace wrong PHPDocs Signed-off-by: Lukas Reschke <lukas@statuscode.ch>	9 years ago
Lukas Reschke	bef4f015ee	Remove setUidAsDisplayName This code is a leftover from the old Shibboleth implementation from ownCloud days, nowadays it causes more issues than it does good (such as https://github.com/nextcloud/user_saml/pull/137). Let's remove it for the future thus. Signed-off-by: Lukas Reschke <lukas@statuscode.ch>	9 years ago
Roeland Jago Douma	b930f32e89	Remove legacy OC_User_Backend and OC_User_Interface Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	9 years ago
Morris Jobke	188b87e03b	Cleanup legacy user class from unused methods Signed-off-by: Morris Jobke <hey@morrisjobke.de>	9 years ago
Morris Jobke	7790017a14	Cleanup code of personal page to use public interfaces * public interfaces instead of static code calls * drop static private namespace methods Signed-off-by: Morris Jobke <hey@morrisjobke.de>	9 years ago
Jörn Friedrich Dreyer	fff6d6e3e8	Refactor auth methods Signed-off-by: Morris Jobke <hey@morrisjobke.de>	9 years ago
Morris Jobke	a5ba1f7803	Remove legacy class OC_Group and OC_User * basically a straight replacement of the wrapped code at the calling code parts Signed-off-by: Morris Jobke <hey@morrisjobke.de>	9 years ago
Lukas Reschke	92c74d2f9a	Don't force displayname if backend already provides one `\OC_User::loginWithApache` is used in combination with backend mechanisms like our SSO / SAML integration. Those can optionally already provide a displayname using other means. For example by mapping SAML attributes. The current approach makes it however impossible for backends using `\OCP\Authentication\IApacheBackend` to set a displayname on their own. Because the display name will simply be overwritten with the loginname. Signed-off-by: Lukas Reschke <lukas@statuscode.ch>	9 years ago
Vincent Petry	b32e252fb0	Testing md5home (#26854 ) * Allow clearing default user backends in config.php When specifying "user_backends" in config.php, a new option "default" when set to false will prevent the default user backend to be registered. The default one is the database backend. This makes it possible to select exclusive user backends from apps. * Testing app provides test user backend for alternative homes The backend provide md5 result to getHome() * Only md5 the user home when it's not the admin Signed-off-by: Lukas Reschke <lukas@statuscode.ch>	9 years ago
Christoph Wurst	d907666232	bring back remember-me * try to reuse the old session token for remember me login * decrypt/encrypt token password and set the session id accordingly * create remember-me cookies only if checkbox is checked and 2fa solved * adjust db token cleanup to store remembered tokens longer * adjust unit tests Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	9 years ago
Joas Schilling	0215b004da	Update with robin	10 years ago
Joas Schilling	ba87db3fcc	Fix others	10 years ago
Christoph Wurst	c58d8159d7	Create session tokens for apache auth users	10 years ago
Lukas Reschke	aba539703c	Update license headers	10 years ago
Christoph Wurst	7aa16e1559	fix setup	10 years ago
Christoph Wurst	3ab922601a	Check if session token is valid and log user out if the check fails * Update last_activity timestamp of the session token * Check user backend credentials once in 5 minutes	10 years ago
Christoph Wurst	d8cde414bd	token based auth * Add InvalidTokenException * add DefaultTokenMapper and use it to check if a auth token exists * create new token for the browser session if none exists hash stored token; save user agent * encrypt login password when creating the token	10 years ago
Roeland Jago Douma	9e1d9871a8	Move OC_User_Database to \OC\User\Database	10 years ago
Björn Schießle	8c0984d605	first call the post_login hooks, before we call getUserFolder. The login process needs to be completed before we can safely create the users home folder. For example we need to give encryption a chance to initialize the users encryption keys in order to copy the skeleton files correctly	10 years ago
Thomas Müller	7aca13f14c	Allow login by email address	10 years ago
Thomas Müller	9c9fec36dd	Add occ commands to enable and disable a user + a disabled user can no longer login - fixes #23838	10 years ago
Roeland Jago Douma	368be8894c	Move non PSR-4 files from lib/private root to legacy As discussed we move all old style classes (OC_FOO_BAR) to legacy. Then from there we can evaluate the need to convert them back or if they can be fully deprecated/deleted.	10 years ago
Lukas Reschke	8222ad5157	Move logout to controller Testable code. Yay.	10 years ago
Thomas Müller	bab55141a6	Fixes #23899	10 years ago
Lukas Reschke	14f932f3c7	Add DAV authenticated also to other scopes Fixes https://github.com/owncloud/core/issues/22893	10 years ago
Lukas Reschke	c353d51810	Remove Scrutinizer Auto Fixer	10 years ago
Lukas Reschke	933f60e314	Update author information Probably nice for the people that contributed to 9.0 to see themselves in the AUTHORS file :)	10 years ago
Scrutinizer Auto-Fixer	08f0dc9067	Scrutinizer Auto-Fixes This commit consists of patches automatically generated for this project on https://scrutinizer-ci.com	10 years ago
Lukas Reschke	12b22c2759	Regenerate CSRF token upon login Otherwise somebody else might be able to note down the CSRF token before login on a shared computer.	10 years ago

5 Commits (5cd1880daa048a685da689c7f41a2e50486494de)