nextcloud-server

Commit Graph

Author	SHA1	Message	Date
Jörn Friedrich Dreyer	31f7afe56a	PDOException has no previous(), oh the consistency ...	12 years ago
Jörn Friedrich Dreyer	c0bdbd9d81	introduce and use executeAudited in db.php	12 years ago
Robin Appelman	44f9af5a7f	Use the new session wrapper	12 years ago
Lukas Reschke	4f96d7fb85	Allow loading of external media ressources	12 years ago
Florian Scholz	03aa86d8a6	- xframe restriction configurable now	12 years ago
Bernhard Posselt	b98b56e4a8	check if there is a default/ folder in the theme directory if no theme exists	12 years ago
Lukas Reschke	cfb10dc58c	Add warning about sanitization	12 years ago
Lukas Reschke	a97006144e	Only send the standard headers Fixes https://github.com/owncloud/apps/issues/675	12 years ago
Lukas Reschke	cef6131ea8	Sanitize HTML in html_select_options	12 years ago
Lukas Reschke	229c907a57	[core] From echo to p	12 years ago
Lukas Reschke	470fc3817f	Remove the template autoescaping Ref #1963	12 years ago
Bart Visscher	15f5325078	Don't use routes when displaying error page	12 years ago
Bart Visscher	bf0b9bac8b	Remove unneeded code for user layout template	12 years ago
Robin Appelman	b8e2454f68	Fix strict standard warning in user template	12 years ago
Bart Visscher	ffae6f4b84	Style-fix: Breakup long lines	12 years ago
Lukas Reschke	5fcb35efd6	Also allow local files	12 years ago
Lukas Reschke	bb90b0ee6e	Allow the loading of local font files embedded via data:	12 years ago
Lukas Reschke	8de0f96a24	Allow loading of external fonts Required by several applications like our pdf viewer	12 years ago
Lukas Reschke	a65410f23c	Remove the CSP header for Firefox https://bugzilla.mozilla.org/show_bug.cgi?id=737064 gnarf	12 years ago
Lukas Reschke	e5cc5a0a2d	Allow the loading of external images	12 years ago
Lukas Reschke	293e7bdcf0	Notice about changing the standard policy	12 years ago
Lukas Reschke	0517465f4d	Allow admins to change the CSP policy in the config file	12 years ago
Lukas Reschke	351d206dd3	Allow eval() and send headers for legacy browsers The blocking of eval() seems to have problems with JQuery 1.7.2 - let's allow it for now and disable it in the future.	12 years ago
Lukas Reschke	3ffbaf4795	Allow iframes to external domains	12 years ago
Lukas Reschke	0c59074eeb	Correct copy paste fail	12 years ago
Lukas Reschke	af8c193605	Disallow inline JS	12 years ago
Lukas Reschke	967b7947a1	Add the default-src	12 years ago
Lukas Reschke	c82d6e5153	Add CSP header	12 years ago
Bart Visscher	a8f963d9cf	Spaces to tabs	12 years ago
Thomas Mueller	44e5c052b3	handling proper display of files/folders with negative size refs #1162	12 years ago
Brice Maron	a310dcb0ff	Fix a dirty function preventing showing errors	13 years ago
Frank Karlitschek	0f61816278	A new function to create nice error page. And use it for fatal db errors	13 years ago
Alessandro Cosentino	7d01342bab	fix translation issues with previous commit	13 years ago
Alessandro Cosentino	aa917cfb18	uncomment hours entries in relative date functions	13 years ago
Felix Moeller	0e70ea9d8b	Checkstyle: Fix the last 25 NoSpaceAfterComma	13 years ago
Felix Moeller	30d7993e01	Checkstyle fixes: NoSpaceAfterComma	13 years ago
Felix Moeller	f8d1d7787e	Checkstyle fixes for SpaceBeforeOpenBrace	13 years ago
Felix Moeller	afadf93d31	Checkstyle: many fixes	13 years ago
Lukas Reschke	7a7f12a0c1	Create only one CSRF token per session Before, the CSRF token expired every hour. We had a script in place which should refresh the token but this don't worked in every case. (Laptop sleeping etc.) With this commit, the token will only get once created for every session so that the "Token expired" warning shouldn't appear.	13 years ago
Bernhard Posselt	bf3dac05d1	added functions for printing escaped and unescaped values	13 years ago
Felix Moeller	03581ef463	Correct a first issue Checkstyle is complaining about ... This is BracketsNotRequired	13 years ago
Sam Tuke	8b01286a5d	Merged branch 'master'	13 years ago
Lukas Reschke	d525654fcd	Correct indentation	13 years ago
Björn Schießle	f493e97f5d	always generate access token, also for forms shown to anonymous users (e.g. public shares)	13 years ago
Christian Reiner	71454b1bca	Fix to preserve backward compatibility for apps creating static links containing the request token (currently the contacts app and maybe some 3rd party implementations)	13 years ago
Christian Reiner	743826bbf3	Reimplementation of CSRF protection including autorefresh	13 years ago
Robin Appelman	4131b205d4	fix some more phpdoc	13 years ago
scambra	e48811017d	fix translation for core/lostpassword	13 years ago
Thomas Mueller	3829460ab8	adding space between) and {	13 years ago
Bart Visscher	1a46192433	Add args parameter to linkTo(Absolute) function, to append the args automaticly	13 years ago

1 2 3

141 Commits (e93ce26f27fa8c2c364696a7a7ce5122eb4a91e2)