Mirrors/nextcloud
1
0
Fork 0
mirror of https://github.com/nextcloud/server.git synced 2024-07-30 20:16:04 +02:00
Code Issues Actions 42 Packages Projects Releases Wiki Activity
75,029 Commits 423 Branches 1,014 Tags 5 GiB
380a253aab
Commit Graph

1098 Commits

Author SHA1 Message Date
John Molakvoæ (skjnldsv)
8fea22314c
Fix template order and animation 
Signed-off-by: John Molakvoæ (skjnldsv) <skjnldsv@protonmail.com>
 2017-11-05 18:14:52 +01:00
Jan-Christoph Borchardt
494dea2c60 Fix variable name 
Signed-off-by: Jan-Christoph Borchardt <hey@jancborchardt.net>
 2017-11-03 15:17:24 +01:00
Jan-Christoph Borchardt
585e9f9fcd Add some JS to hide and show elements for password reset 
Signed-off-by: Jan-Christoph Borchardt <hey@jancborchardt.net>
 2017-11-02 12:04:35 +01:00
Jan-Christoph Borchardt
aca29b0c88 Directly show Forgot password link, fix #6808 
Signed-off-by: Jan-Christoph Borchardt <hey@jancborchardt.net>
 2017-11-02 12:03:31 +01:00
Roeland Jago Douma
f2d4c64c9a
Translate Grant Access 
Fixes #7038

Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
 2017-11-01 15:50:34 +01:00
Markus Staab
db34b59238 Prevent XSS in links which open a new browser window 2017-10-19 12:16:04 +02:00
Julius Härtl
060eac40d8 Merge pull request #6700 from nextcloud/accessibility-fixes 
Accessibility fixes
 2017-10-04 16:09:29 +02:00
Martin
4e484fc217 Update enable javascript link to https 2017-10-02 15:37:58 +01:00
Jan-Christoph Borchardt
2cd467f3f0 Remove unneeded tabindex, add keyboard focus feedback for app list 
Signed-off-by: Jan-Christoph Borchardt <hey@jancborchardt.net>
 2017-09-29 20:01:15 +02:00
Jan-Christoph Borchardt
d3ae77590a Merge legacy app title h1 into Nextcloud h1, ref #5822 
Signed-off-by: Jan-Christoph Borchardt <hey@jancborchardt.net>
 2017-09-29 19:31:05 +02:00
Jan-Christoph Borchardt
9fb37a2990 Add proper labels to various form elements and buttons 
Signed-off-by: Jan-Christoph Borchardt <hey@jancborchardt.net>
 2017-09-29 19:25:32 +02:00
Jan-Christoph Borchardt
753c6fd07b Add alt text to app icons in header 
Signed-off-by: Jan-Christoph Borchardt <hey@jancborchardt.net>
 2017-09-29 18:14:39 +02:00
Julius Härtl
699c64c750
Add manifest.json to the login page 
Signed-off-by: Julius Härtl <jus@bitgrid.net>
 2017-09-12 09:23:13 +02:00
Allan Nordhøy
d6adc240c4 Spelling: Shortening and single please. 2017-08-29 16:10:54 +02:00
Morris Jobke
7d8b7d4e4e Merge pull request #4925 from nextcloud/error-styling 
Improve design and wording of various error messages
 2017-08-29 12:03:16 +02:00
Lukas Reschke
a04feff9a7
Properly allow \OCP\Authentication\IApacheBackend to specify logout URL 
Any `\OCP\Authentication\IApacheBackend` previously had to implement `getLogoutAttribute` which returns a string.
This string is directly injected into the logout `<a>` tag, so returning something like `href="foo"` would result
in `<a href="foo">`.

This is rather error prone and also in Nextcloud 12 broken as the logout entry has been moved with
054e161eb5 inside the navigation manager where one cannot simply inject attributes.

Thus this feature is broken in Nextcloud 12 which effectively leads to the bug described at nextcloud/user_saml#112,
people cannot logout anymore when using SAML using SLO. Basically in case of SAML you have a SLO url which redirects
you to the IdP and properly logs you out there as well.

Instead of monkey patching the Navigation manager I decided to instead change `\OCP\Authentication\IApacheBackend` to
use `\OCP\Authentication\IApacheBackend::getLogoutUrl` instead where it can return a string with the appropriate logout
URL. Since this functionality is only prominently used in the SAML plugin. Any custom app would need a small change but
I'm not aware of any and there's simply no way to fix this properly otherwise.

Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
 2017-08-18 12:22:44 +02:00
Morris Jobke
44c6745159 Remove quotes around device name 
Signed-off-by: Morris Jobke <hey@morrisjobke.de>
 2017-08-14 11:48:56 +02:00
Morris Jobke
bd43758118 Highlight client identifier in auth grant page 
Signed-off-by: Morris Jobke <hey@morrisjobke.de>
 2017-08-14 10:42:19 +02:00
Jan-Christoph Borchardt
ebdfcb1fe3 Add heading to account access page 
Signed-off-by: Jan-Christoph Borchardt <hey@jancborchardt.net>
 2017-08-12 19:29:49 +02:00
Jan-Christoph Borchardt
faea9cb294 Shorten text of untrusted domain error 
Signed-off-by: Jan-Christoph Borchardt <hey@jancborchardt.net>
 2017-08-12 19:01:42 +02:00
Morris Jobke
83b0191017 fix design of the track trace 
Signed-off-by: Morris Jobke <hey@morrisjobke.de>
 2017-08-12 18:48:48 +02:00
Jan-Christoph Borchardt
9f67fb86c8 Improve design of various error messages 
Signed-off-by: Jan-Christoph Borchardt <hey@jancborchardt.net>
 2017-08-12 18:48:48 +02:00
Morris Jobke
d7645ee928 Merge pull request #5972 from nextcloud/replace-loading-icon-gif-with-pure-css-in-login-button 
Replace loading icon GIF with pure CSS in login button
 2017-08-08 14:40:35 +02:00
Daniel Calviño Sánchez
b237379fa1 Replace loading icon GIF with pure CSS loading icon 
The pure CSS loading icon uses an ::after pseudo-element, and thus it
can only be used on container elements; the input element is not a
container element, so when the class "icon-loading-small" is set on an
input element it falls back to a loading icon GIF.

This commit modifies the markup of the login button to add a div element
that holds the confirm icon and the loading icon (depending on the
case). In order to position the icon in the same place as before the
input and the icon are both wrapped by another div making possible to
set the absolute position of the icon relative to the input.

Signed-off-by: Daniel Calviño Sánchez <danxuliu@gmail.com>
 2017-08-03 21:09:43 +02:00
Joas Schilling
9abbd6ab13 Revert "Proof of concept #5593 - inline SVG icon for icon-contacts" 2017-08-03 17:27:24 +02:00
Morris Jobke
585e5c6ea5
Logo claim is not used anymore 
Signed-off-by: Morris Jobke <hey@morrisjobke.de>
 2017-08-02 23:08:45 +02:00
Marin Treselj
c658862052 Replace include with file_get_contents 
Signed-off-by: Marin Treselj <marin@pixelipo.com>
 2017-08-02 18:27:24 +02:00
Marin Treselj
ffcdc96a0b Proof of concept #5593 - inline SVG icon for icon-contacts 
Signed-off-by: Marin Treselj <marin@pixelipo.com>
 2017-08-02 18:27:24 +02:00
Morris Jobke
6ca4b9eee9 Merge pull request #5920 from nextcloud/gallery-share-view-fix 
Top bar buttons in share view are wrong positioned
 2017-08-02 16:59:24 +02:00
Marin Treselj
086ce709f7 Fixes nextcloud/gallery#269 
Signed-off-by: Marin Treselj <marin@pixelipo.com>
 2017-07-28 14:44:29 +02:00
Morris Jobke
0de90cfc67 Fix 403 and 404 redirect 
* Nextcloud is not properly loaded in the standalone version (especially the theming)
* it is already not listed anymore in the Nginx config (see nextcloud/documentation#392)
* the index.php-free version doesn't support this

Signed-off-by: Morris Jobke <hey@morrisjobke.de>
 2017-07-26 16:30:09 +02:00
Morris Jobke
5d5b1285ec Merge pull request #5520 from nextcloud/disable-click-on-hint 
[Small] Hint should not be clickable
 2017-07-05 16:19:09 +02:00
Marin Treselj
3470d0a44e
Simplified Nextcloud logo icon 
Signed-off-by: Marin Treselj <marin@pixelipo.com>
 2017-07-02 14:14:49 +02:00
Maxence Lange
5389ffca86 Hint should not be clickable 
Signed-off-by: Maxence Lange <maxence@nextcloud.com>
 2017-06-23 09:18:20 -01:00
Morris Jobke
8eb955d5c6 Merge pull request #4993 from michaelletzgus/emit_css-tags 
Emit css tags
 2017-06-14 11:29:25 -05:00
Morris Jobke
0f83cdc78e Use the guest.css for the maintenance page as well 
Signed-off-by: Morris Jobke <hey@morrisjobke.de>
 2017-06-13 16:43:25 -05:00
Michael Letzgus
0d320fba4b Streamline templates, more DRY 
Use Unified function to emit <link> tags for css loading, obey "Don't Repeat Yourself" ;-)

(Next step might by to combine this with the emit <script> function (even more DRY?) AND move all this to a better place?)

Signed-off-by: Michael Letzgus <michaelletzgus@users.noreply.github.com>
 2017-05-25 11:13:43 +02:00
Morris Jobke
0dae4946cf Merge pull request #4854 from michaelletzgus/deferred-script-loading-v2 
Make page loading faster, deferred script loading, now switchable:
 2017-05-20 16:53:30 -05:00
Michael Letzgus
fb9f13d4c1 Make page loading faster by deferred script loading: 
* Create generalized function for emmitting <script defer src=""> tags to templates
* Remove type attribute from inline_js
* Add defer attribute to external <script> tags

Signed-off-by: Michael Letzgus <michaelletzgus@users.noreply.github.com>
 2017-05-20 13:44:04 +02:00
Bjoern Schiessle
3775b14c4c
remove 'Alternative login using app token' in case of oauth login 
Signed-off-by: Bjoern Schiessle <bjoern@schiessle.org>
 2017-05-18 20:49:05 +02:00
Lukas Reschke
5f71805c35
Add basic implementation for OAuth 2.0 Authorization Code Flow 
Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
 2017-05-18 20:49:03 +02:00
Morris Jobke
3fa604cc5e Allow to enforce update via web UI 
* adds a disclaimer that an update via web UI is on own risk
* allows to skip the warning
* fixes #4353

Signed-off-by: Morris Jobke <hey@morrisjobke.de>
 2017-05-11 10:22:44 -05:00
Morris Jobke
abe4a19cbc Properly decide on actual users if instance is too big 
* state the reason why NC thinks it is a big instance

Signed-off-by: Morris Jobke <hey@morrisjobke.de>
 2017-05-10 22:32:42 -05:00
Lukas Reschke
26f7a3b462
Check if Nextcloud is installed 
Fixes https://github.com/nextcloud/server/issues/4735

Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
 2017-05-08 15:10:53 +02:00
Lukas Reschke
fecf72fb70 Merge pull request #4632 from nextcloud/login-logo-ratio 
show non landscape logos bigger on the login page
 2017-05-08 12:11:15 +02:00
Robin Appelman
c50b7addc7
smaller max logo sizes and cleaner code 
Signed-off-by: Robin Appelman <robin@icewind.nl>
 2017-05-02 13:01:11 -03:00
Robin Appelman
fa52f906e3
show non landscape icons bigger on the login page 
Signed-off-by: Robin Appelman <robin@icewind.nl>
 2017-05-01 19:05:21 +02:00
Jan-Christoph Borchardt
7015eb9fe5 Prevent flashing of apps and user menu 
Signed-off-by: Jan-Christoph Borchardt <hey@jancborchardt.net>
 2017-04-29 13:34:44 +02:00
Jan-Christoph Borchardt
241e397326 Merge branch 'master' into contactsmenu 
Signed-off-by: Jan-Christoph Borchardt <hey@jancborchardt.net>
 2017-04-26 00:50:38 +02:00
Christoph Wurst
d091793ceb Contacts menu 
* load list of contacts from the server
* show last message of each contact

Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
 2017-04-25 20:47:17 +02:00
Jan-Christoph Borchardt
61af3f41f0
Fix auth flow background color and redirect view layout 
Signed-off-by: Jan-Christoph Borchardt <hey@jancborchardt.net>
 2017-04-25 20:18:49 +02:00
Roeland Jago Douma
05e1092c44
Correctly case the stateToken 
Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
 2017-04-25 20:18:49 +02:00
Lukas Reschke
6a16df7288
Add new auth flow 
This implements the basics for the new app-password based authentication flow for our clients.
The current implementation tries to keep it as simple as possible and works the following way:

1. Unauthenticated client opens `/index.php/login/flow`
2. User will be asked whether they want to grant access to the client
3. If accepted the user has the chance to do so using existing App Token or automatically generate an app password.

If the user chooses to use an existing app token then that one will simply be redirected to the `nc://` protocol handler.
While we can improve on that in the future, I think keeping this smaller at the moment has its advantages. Also, in the
near future we have to think about an automatic migration endpoint so there's that anyways :-)

If the user chooses to use the regular login the following happens:

1. A session state token is written to the session
2. User is redirected to the login page
3. If successfully authenticated they will be redirected to a page redirecting to the POST controller
4. The POST controller will check if the CSRF token as well as the state token is correct, if yes the user will be redirected to the `nc://` protocol handler.

This approach is quite simple but also allows to be extended in the future. One could for example allow external websites to consume this authentication endpoint as well.

Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
 2017-04-25 20:18:49 +02:00
Julius Härtl
7548825743
Responsive app menu 
Signed-off-by: Julius Härtl <jus@bitgrid.net>
 2017-04-25 17:31:24 +02:00
Morris Jobke
1f962f9115
Update email template for lost password email 
Signed-off-by: Morris Jobke <hey@morrisjobke.de>
 2017-04-12 15:19:53 -05:00
Morris Jobke
8fa5141aaa
Removes unused code for link share emails 
* now handled by sharebymail app
* see https://github.com/nextcloud/server/pull/657

Signed-off-by: Morris Jobke <hey@morrisjobke.de>
 2017-04-11 17:32:48 -05:00
Lukas Reschke
afb5d45705 Merge pull request #4256 from nextcloud/theming 
Move OC_Defaults to OCP\Defaults
 2017-04-11 14:39:46 +02:00
Lukas Reschke
5ca5ebe584 Merge pull request #2618 from nextcloud/2fa-challenge-text 
Move log out and backup codes link into 2fa box for better readability
 2017-04-11 11:41:55 +02:00
Morris Jobke
5b4adf66e5
Move OC_Defaults to OCP\Defaults 
* currently there are two ways to access default values:
  OCP\Defaults or OC_Defaults (which is extended by
  OCA\Theming\ThemingDefaults)
* our code used a mixture of both of them, which made
  it hard to work on theme values
* this extended the public interface with the missing
  methods and uses them everywhere to only rely on the
  public interface

Signed-off-by: Morris Jobke <hey@morrisjobke.de>
 2017-04-09 21:43:01 -05:00
Jan-Christoph Borchardt
9a75714c22
rename confusing getMailHeaderColor to getColorPrimary, ref #3491 
Signed-off-by: Jan-Christoph Borchardt <hey@jancborchardt.net>
 2017-03-29 18:23:23 +02:00
Joas Schilling
a88edce54f Merge pull request #4130 from nextcloud/replace-useless-print-unescaped-with-p 
Replace unecessary unescaped prints with print
 2017-03-29 10:02:10 +02:00
Pierre Rudloff
19d3133ccf
Web app manifest 
Signed-off-by: Jan-Christoph Borchardt <hey@jancborchardt.net>
 2017-03-28 18:39:57 -06:00
Lukas Reschke
99675b46e9
Replace unecessary unescaped prints with print 
There's no need to have those unescaped from what I can see.

Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
 2017-03-29 00:43:44 +02:00
Roeland Jago Douma
1ae56b054b
Moving the inline js before the CSS 
This allows browsers to do smarted parallel downloads

Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
 2017-03-28 22:02:22 +02:00
Jan-Christoph Borchardt
ea517b489f use theming colors for favicon on macOS 
Signed-off-by: Jan-Christoph Borchardt <hey@jancborchardt.net>
 2017-03-27 15:45:56 +02:00
Morris Jobke
12c5c336ad Merge pull request #4077 from nextcloud/better-navigation-management 
Register the app management in the normal way
 2017-03-26 15:48:19 -06:00
Joas Schilling
054e161eb5
Manage the right side menu via the navigation manager as well 
Signed-off-by: Joas Schilling <coding@schilljs.com>
 2017-03-26 19:40:41 +02:00
Joas Schilling
ec330c7ac4
Register the app management in the normal way 
Signed-off-by: Joas Schilling <coding@schilljs.com>
 2017-03-26 19:08:51 +02:00
Jan-Christoph Borchardt
2048e3e201 replace name in top right with icon for less noise 
Signed-off-by: Jan-Christoph Borchardt <hey@jancborchardt.net>
 2017-03-26 18:15:34 +02:00
Lukas Reschke
6a4fde11e6
Merge login JS 
Removes 2 requests.

Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
 2017-03-24 21:18:24 +01:00
Lukas Reschke
29039eb608 Merge pull request #3951 from nextcloud/menu-firefox-fixes 
Fix new app menu on firefox
 2017-03-20 13:15:43 +01:00
Roeland Jago Douma
376e6f0884 Merge pull request #3915 from michaelletzgus/html5-fix_autocapitalize 
Fix value of attribute "autocapitalize"
 2017-03-20 13:13:32 +01:00
Julius Härtl
c994e7afcd
Fix filter for app icons on firefox 
Signed-off-by: Julius Härtl <jus@bitgrid.net>
 2017-03-20 08:27:11 +01:00
Michael Letzgus
0b6ff1706f Fix duplicate id "apps-management" 
Make duplicate id "apps-management" a class since IDs must be unique:

https://www.w3.org/TR/2011/WD-html5-20110525/elements.html#the-id-attribute
https://api.jquery.com/id-selector/

Signed-off-by: Michael Letzgus <michaelletzgus@users.noreply.github.com>
 2017-03-19 12:36:29 +01:00
Michael Letzgus
98187bf942 Fix value of attribute "autocapitalize" 
Change <input> attribute "autocapitalize" from value "off" to "none" regarding to apples dev guide:

https://developer.apple.com/library/content/documentation/AppleApplications/Reference/SafariHTMLRef/Articles/Attributes.html#//apple_ref/doc/uid/TP40008058-autocapitalize

Signed-off-by: Michael Letzgus <michaelletzgus@users.noreply.github.com>
 2017-03-18 16:06:57 +01:00
Julius Haertl
b8ef616455
Fix html formating issues 
Signed-off-by: Julius Haertl <jus@bitgrid.net>
 2017-03-16 11:55:10 +01:00
Julius Haertl
780400302c
Rebuild menu to keep order of icons correct 
Signed-off-by: Julius Haertl <jus@bitgrid.net>
 2017-03-16 11:55:10 +01:00
Julius Haertl
1d6fba03f4
Make enabling/disabling apps work with the new menu 
Signed-off-by: Julius Haertl <jus@bitgrid.net>
 2017-03-16 11:55:10 +01:00
Julius Haertl
7eae6690ad
Make app management icon act like a normal app icon 
Signed-off-by: Julius Haertl <jus@bitgrid.net>
 2017-03-16 11:55:09 +01:00
Julius Haertl
61dc78e6dc
Fix menu issues 
Signed-off-by: Julius Haertl <jus@bitgrid.net>
 2017-03-16 11:55:09 +01:00
Julius Haertl
a630e4629f
Generate seperate menu list for header bar 
Signed-off-by: Julius Haertl <jus@bitgrid.net>
 2017-03-16 11:55:09 +01:00
Julius Haertl
42feab59d5
Show app icons in the header 
Signed-off-by: Julius Haertl <jus@bitgrid.net>
 2017-03-16 11:55:09 +01:00
Christoph Wurst
b15c11b93b
Use button instead of simple links 
Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
 2017-03-06 11:00:58 +01:00
Christoph Wurst
511df0ec99
Move log out and back codes link into 2fa box for better readability 
Fixes https://github.com/nextcloud/server/issues/2538

Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
 2017-03-06 10:48:26 +01:00
Morris Jobke
200a28255e
Always enable avatars 
* we introduced this setting in the begining because our
  avatar support caused some performance issues, but we
  fixed them and should only provide one way how Nextcloud
  looks

Signed-off-by: Morris Jobke <hey@morrisjobke.de>
 2017-02-13 17:53:33 -06:00
Morris Jobke
f1c4f4c020
Rename database password toggle 
* otherwise submitting the form with the password show will be overwritten
* see 2c9d7eeb76/core/Controller/SetupController.php (L59)
* seems to be a legacy fallback
* fixes #3381

Signed-off-by: Morris Jobke <hey@morrisjobke.de>
 2017-02-07 16:59:12 -06:00
Morris Jobke
5bad417e57 Merge pull request #2044 from nextcloud/login-credential-store 
Login credential store
 2017-01-30 19:30:04 -06:00
John Molakvoæ (skjnldsv)
d0e88e328c
Add clear search button 
Signed-off-by: John Molakvoæ (skjnldsv) <skjnldsv@protonmail.com>
 2017-01-25 09:15:37 +01:00
Christoph Wurst
7c824a6177
fix scss 
Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
 2017-01-23 09:03:05 +01:00
Christoph Wurst
202509251c
Use flexbox for header and rearrange some elements 
Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
 2017-01-23 09:03:03 +01:00
Christoph Wurst
140555b786
always allow remembered login 
Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
 2017-01-11 19:20:11 +01:00
Cornelius Kölbel
e077e01bf2
Add a TwoFactorException 
A Two Factor third party App may throw a TwoFactorException()
with a more detailed error message in case the authentication fails.
The 2FA Controller will then display the message of this Exception
to the user.

Working on #26593

Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
 2017-01-11 11:01:52 +01:00
Sourav Badami
3dc562bb7a
Fix #24219: Added hint for specifying a port. (#26860) 
* Added hint for specifying a port.

* Minor changes.

Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
 2016-12-22 15:55:09 +01:00
Joas Schilling
eed0eaeb86
Use a form so firefox doesn't try to save the space as a password 
Signed-off-by: Joas Schilling <coding@schilljs.com>
 2016-12-19 12:43:31 +01:00
Joas Schilling
924358ef96
Save the timezone on login again 
Signed-off-by: Joas Schilling <coding@schilljs.com>
 2016-12-08 10:45:24 +01:00
Morris Jobke
224c89c1b8 Remove leftovers from #1929 
Signed-off-by: Morris Jobke <hey@morrisjobke.de>
 2016-11-30 01:07:00 +01:00
Felix Epp
6aa79cacfd Fix mail header logo [fixes #1326] 
Signed-off-by: Felix A. Epp <work@felixepp.de>
 2016-11-30 01:06:47 +01:00
Jan-Christoph Borchardt
e75dede590 fix some outdated naming 
Signed-off-by: Jan-Christoph Borchardt <hey@jancborchardt.net>
 2016-11-24 16:05:05 +01:00
Jan-Christoph Borchardt
56881433c0 show installation spinner correctly, fix #2129 
Signed-off-by: Jan-Christoph Borchardt <hey@jancborchardt.net>
 2016-11-22 15:58:00 +01:00
Joas Schilling
80abb69b60
Show a little explanation above the input field 
Signed-off-by: Joas Schilling <coding@schilljs.com>
 2016-11-18 12:10:51 +01:00
Joas Schilling
05df523395
Empty the password field on submission of the form 
Signed-off-by: Joas Schilling <coding@schilljs.com>
 2016-11-18 12:10:51 +01:00
Joas Schilling
d75e35b75e
Introduce the UI for password confirmation 
Signed-off-by: Joas Schilling <coding@schilljs.com>
 2016-11-18 11:57:16 +01:00
Roeland Jago Douma
740659a04c
Move away from OC_L10N 
Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
 2016-10-28 21:46:28 +02:00
Roeland Jago Douma
6dbe417c51
Inlince oc.js if possible! 
Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
 2016-10-25 22:03:18 +02:00
Morris Jobke
89574367bc Merge pull request #1871 from nextcloud/use-csp-nonces 
Use CSP nonces
 2016-10-25 14:46:00 +02:00
Lukas Reschke
38b3ac8213
Add ContentSecurityPolicyNonceManager 
Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
 2016-10-24 16:35:31 +02:00
Lukas Reschke
9e6634814e
Add support for CSP nonces 
CSP nonces are a feature available with CSP v2. Basically instead of saying "JS resources from the same domain are ok to be served" we now say "Ressources from everywhere are allowed as long as they add a `nonce` attribute to the script tag with the right nonce.

At the moment the nonce is basically just a `<?php p(base64_encode($_['requesttoken'])) ?>`, we have to decode the requesttoken since `:` is not an allowed value in the nonce. So if somebody does on their own include JS files (instead of using the `addScript` public API, they now must also include that attribute.)

IE does currently not implement CSP v2, thus there is a whitelist included that delivers the new CSP v2 policy to newer browsers. Check http://caniuse.com/#feat=contentsecuritypolicy2 for the current browser support list. An alternative approach would be to just add `'unsafe-inline'` as well as `'unsafe-inline'` is ignored by CSPv2 when a nonce is set. But this would make this security feature unusable at all in IE. Not worth it at the moment IMO.

Implementing this offers the following advantages:

1. **Security:** As we host resources from the same domain by design we don't have to worry about 'self' anymore being in the whitelist
2. **Performance:** We can move oc.js again to inline JS. This makes the loading way quicker as we don't have to load on every load of a new web page a blocking dynamically non-cached JavaScript file.

If you want to toy with CSP see also https://csp-evaluator.withgoogle.com/

Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
 2016-10-24 12:27:50 +02:00
Robin Appelman
7427fb170f
show empty folder message in filepicker 
Signed-off-by: Robin Appelman <robin@icewind.nl>
 2016-10-21 16:35:55 +02:00
Robin Appelman
14f78369d7
Use a table for the filepicker list and add size column 
Signed-off-by: Robin Appelman <robin@icewind.nl>
 2016-10-19 14:18:21 +02:00
Jan-Christoph Borchardt
cf5d30387b Merge pull request #1641 from nextcloud/log-in-button 
bring back dedicated log in button to make log in more usable
 2016-10-17 18:28:27 +02:00
Jan-Christoph Borchardt
aa4eaf3a7e finish up layout of log in page, postpone forgot password link for later 
Signed-off-by: Jan-Christoph Borchardt <hey@jancborchardt.net>
 2016-10-17 14:28:49 +02:00
Robin Appelman
6d43942125
filepicker styling 
Signed-off-by: Robin Appelman <robin@icewind.nl>
 2016-10-14 17:36:08 +02:00
Jan-Christoph Borchardt
ee231759e5 update styles of log in 
Signed-off-by: Jan-Christoph Borchardt <hey@jancborchardt.net>
 2016-10-11 13:58:10 +02:00
Joas Schilling
b8030e6d02 Use name from theming 2016-10-07 09:44:42 +02:00
Roeland Jago Douma
19485e3ec9
Set proper web title for apple 
Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
 2016-10-06 20:57:32 +02:00
Jan-Christoph Borchardt
75ec1541e4 fix log in button layout 2016-10-06 19:08:32 +02:00
Jan-Christoph Borchardt
3141680feb bring back dedicated log in button to make log in more usable 2016-10-06 16:48:10 +02:00
Joas Schilling
7c0951244a
Deprecate getEditionString() 2016-09-06 16:05:28 +02:00
Lukas Reschke
06fa486706 Merge pull request #1158 from nextcloud/cache_avatars 
Cache avatars
 2016-09-05 15:08:43 +02:00
Christoph Wurst
8acb734854
add 2fa backup codes app 
* add backup codes app unit tests
* add integration tests for the backup codes app
 2016-09-05 08:51:13 +02:00
coderkun
56862e3fdc Add attribute “tabindex” to login form (fixes #1110) 2016-08-31 21:58:10 +02:00
Roeland Jago Douma
14136295b7
Cache avatars properly 
* Set proper caching headers for avatars (15 minutes)
* For our own avatar use some extra logic to invalidate when we update
 2016-08-30 09:00:16 +02:00
Raghu Nayyar
b580c3664d Merge pull request #1093 from nextcloud/mail-fontstack 
use proper font stack for email
 2016-08-28 10:30:50 +02:00
Christoph Wurst
78bb02d27a
list 2FA providers as buttons 2016-08-27 12:27:05 +02:00
Christoph Wurst
4a91673154
use centered h2 for 2FA page headers 2016-08-27 11:33:15 +02:00
Christoph Wurst
c93c5d142e
fix 2fa challenge page wording 2016-08-27 11:12:12 +02:00
Christoph Wurst
dc57b89f37
reorder 2fa challenge HTML 2016-08-27 11:12:12 +02:00
Jan-Christoph Borchardt
042c744ac6 use proper font stack for email 2016-08-26 22:59:24 +02:00
Lukas Reschke
8a6b5a1d86
Remove uninterpreted PHP 
This is in an HTML file. The PHP won't be executed 🙈
 2016-08-19 14:24:26 +02:00
Lukas Reschke
fb183f8143
Add cachebuster to right navigation 2016-08-18 12:36:14 +02:00
Lukas Reschke
3c7d2544b9
Add cache buster to left menu bar 2016-08-18 12:34:55 +02:00
Morris Jobke
bded787d0c
Empty tags are not allowed for image and feColorMatrix in IE11 and below 2016-08-17 15:59:30 +02:00
Arthur Schiwon
ceeb44bd04
Initial work on Apps page split: 
* interfaces for the Admin settings (IAdmin) and section (ISection)
* SettingsManager service
* example setup with LDAP app
 2016-08-09 18:05:09 +02:00
Jan-Christoph Borchardt
835dc59d6a reduce info on update screens, introduce button to refresh 2016-08-04 12:48:25 +02:00
Jan-Christoph Borchardt
2f9725469d switch nested containers in update to semibold style 2016-08-03 18:58:44 +02:00
Morris Jobke
d97fe1775a
Shake the login fields if password is wrong 2016-08-01 21:42:29 +02:00
Julius Haertl
9f50838cff
Fix wrong preserveAspectRatio at app menu icons 2016-07-29 23:06:26 +02:00
Julius Haertl
f55ba62a00
Move to svg filter on app menu to support IE9+ 2016-07-28 22:33:17 +02:00
Julius Haertl
387550be88
Theming: Implement swapping the foreground color for bright colors 2016-07-15 14:16:41 +02:00
Morris Jobke
ba16fd0d33 Merge branch 'master' into sync-master 2016-07-07 11:29:46 +02:00
Hendrik Leppelsack
c47833718f remove svg classes 2016-07-01 16:36:37 +02:00
Lukas Reschke
6670d37658 Merge remote-tracking branch 'upstream/master' into master-sync-upstream 2016-06-27 18:23:00 +02:00
Hendrik Leppelsack
e5d8726859 remove ie8+9 support 2016-06-23 12:34:53 +02:00
Joachim Sokolowski
64a9f9d77b singleuser.user.php -> nextcloud 
Changed to nextcloud
 2016-06-22 07:48:36 +02:00
Morris Jobke
3720bae3ec
fix setup page strengthify 
* fixes #105
 2016-06-15 15:27:30 +02:00
Arthur Schiwon
a636e4ff28
Downstream 2016-06-09 
Merge branch 'master' of https://github.com/owncloud/core into downstream-160609
 2016-06-09 18:45:12 +02:00
blizzz
51fd2602a7 Revert "Downstream 2016-06-08" 2016-06-09 17:41:57 +02:00
Joas Schilling
7f88645eab
Allow to cancel 2FA after login 2016-06-09 14:00:02 +02:00
Jan-Christoph Borchardt
81145ee57c THIS IS NEXTCLOUD! adjusting the design 2016-06-08 17:02:18 +02:00
Joas Schilling
3e3b326c85
Allow to cancel 2FA after login 2016-06-07 18:17:29 +02:00
Christoph Wurst
5e71d23ded
remember redirect_url when solving the 2FA challenge 2016-06-01 14:43:47 +02:00
Joas Schilling
5c063cf7c9
Allow opening the password reset link in a new window when its a URL 2016-05-24 09:23:25 +02:00
Christoph Wurst
dfb4d426c2
Add two factor auth to core 2016-05-23 11:21:10 +02:00
Thomas Müller
60bafcda73
Fix #24655 2016-05-17 20:43:02 +02:00
Christoph Wurst
d8cde414bd
token based auth 
* Add InvalidTokenException
* add DefaultTokenMapper and use it to check if a auth token exists
* create new token for the browser session if none exists
hash stored token; save user agent
* encrypt login password when creating the token
 2016-05-11 13:36:46 +02:00
Thomas Müller
7aca13f14c
Allow login by email address 2016-05-02 14:51:01 +02:00
Thomas Müller
739dfb5c66
Suggest cli based updater in case the instance is bigger - #23913 2016-04-18 17:09:21 +02:00
Lukas Reschke
fee95084ae
Rename username to loginName 
UID and login name are two different things.
 2016-04-15 19:02:19 +02:00
Lukas Reschke
331e4efacb
Move login form into controller 
First step on getting the authorisation stuff cleaned up. This is only for the login form, all other stuff is still where it is.
 2016-04-15 17:36:23 +02:00
Thomas Müller
fdee771aca Add unit testing capabilities for templates (#23708) 
Add unit testing capabilities for templates
 2016-04-12 12:49:11 +02:00
Morris Jobke
22898fa107 Use proper shortcut methods in templates 2016-04-06 10:25:04 +02:00
Morris Jobke
1f7e02e4d4 Add detailed logs hidden and show them on request 2016-04-04 12:34:18 +02:00
Thomas Müller
1bf4c75e8b Show individual sql schema migration steps during upgrade - on web as well as on the command line 2016-04-04 12:34:18 +02:00
Stefan Weil
62a5952a72 core: Fix typos (found by codespell) 
Signed-off-by: Stefan Weil <sw@weilnetz.de>
 2016-04-04 10:57:17 +02:00
C. Montero Luque
0393e80c7c Merge pull request #16857 from owncloud/printStylesheets 
Support for print stylesheets
 2016-03-31 22:13:44 +02:00
Lukas Reschke
6ad957906e Consistently use rel=noreferrer 
When linking to external entities we should consistently use rel=noreferrer
 2016-03-20 15:27:20 +01:00
Daniel Aleksandersen
7a45f05ed5 Stupid clients only literally understand rel="icon" 
rel="shortcut icon" hasn’t been relevant in years, isn’t in any
standards, and causes problems for simple pattern matching clients.
https://www.w3.org/TR/html/links.html#linkTypes
 2016-03-08 21:09:34 +01:00
Vincent Chan
06b2f11e57 refactoring code 2016-02-10 15:28:14 +01:00
Vincent Chan
e7859f705c Remember previous state of remember login checkbox 
fixes #22205
 2016-02-10 12:37:38 +01:00
Lukas Reschke
abc675d87e Move update notification code into app 
Moves the update notification code in a single app. This is required since we want to use SSO for the new updater and for this have some code running in ownCloud as well (and we don't want that in core neccessarily). This app can provide that in the future, right now it's only the update notification itself. Will continue working on the SSO right away but wanted to keep the PR small.

Furthermore also makes some more code unit-testable...
 2016-02-09 18:05:51 +01:00
Vincent Petry
3b581b051f Expose display name in JS side 
Adds a new method `OC.getCurrentUser` to get both the user id and
display name Could be used for a future Js
 2016-02-02 18:01:15 +01:00
Morris Jobke
75e6734ef4 Remove OC_Helper::imagePath and use the proper public interface 2016-01-24 18:04:20 +01:00
Morris Jobke
d6a63016ae move lost controller to core/controller 
* lostpassword.css is unneeded since #11696 is merged - 1b50d4f7ce
* js is already in core/js
* css is moved to core/css/lostpassword
* template is moved to core/templates/lostpassword
 2016-01-20 10:42:19 +01:00
Hendrik Leppelsack
99b9ec41c1 support print stylesheets 2016-01-13 15:12:11 +01:00
Roeland Jago Douma
7e44ea5da0 Remove deprecated function OC_User::getManager 
Private deprecated function => removed
Replaced all instances with suggested replacement
 2015-12-17 16:18:34 +01:00
Roeland Jago Douma
19eeb23b91 OC_Helper::linkTo is deprecated 
Replaced with suggested (and calling body of)
 2015-12-17 10:53:21 +01:00
Lukas Reschke
4b293dffe5 Use \OCP\Util::sanitizeHTML instead of \OC_Util::sanitizeHTML 2015-12-08 08:56:47 +01:00
Joas Schilling
f8f3c9ecf9 Remove password reset when the user can not change the password 2015-12-07 15:14:19 +01:00
Lukas Reschke
f3e9106864 Don't trust update server 
In case the update server may deliver malicious content this would allow an adversary to inject arbitrary HTML into the response. So very bad stuff.

While signing the response would be better and something we can also do in the future (considering the code signing work), this is already a good first start.
 2015-11-28 12:21:53 +01:00
Jan-Christoph Borchardt
cd88854369 update page: fix heading whitespace and unbold less important sections 2015-11-25 13:16:00 +01:00
Jürgen Weigert
b167eb743f Update untrustedDomain.php 2015-11-12 14:33:59 +01:00
Thomas Müller
2e8d8bf4ef Merge pull request #20236 from maprambo/safari-pinned-tab-icon 
added Safari tabbed pin icon
 2015-11-09 11:12:38 +01:00
Thomas Müller
164f4d7d37 Merge pull request #18039 from owncloud/favicon-up-to-ie10 
Add favicon for IE8-10
 2015-11-06 14:51:24 +01:00
Jan-Christoph Borchardt
93f9577258 do not bold header of update screen 2015-11-05 16:36:37 +01:00
maprambo
edb1fee610 Added Safari tabbed pin icon 
Added the necessary code and a black and inverted version of the favicon/ touch icon in svg format
 2015-11-04 19:31:17 +01:00
Morris Jobke
069ed71dbe Add favicon for IE 8+ 2015-11-03 14:24:20 +01:00
Hendrik Leppelsack
cf0ebfc7aa don't validate searchbox 2015-11-03 10:10:52 +01:00
Thomas Müller
053effaa51 Merge pull request #20220 from owncloud/keep-search-open 
Keep searchbox open if it is in action
 2015-11-02 13:58:10 +01:00
Hendrik Leppelsack
9669a2be78 keep searchbox open if it is in action 2015-11-02 12:14:54 +01:00
Joas Schilling
f04151f69b Close the user menu when clicking it again 2015-11-02 10:09:13 +01:00
Thomas Müller
6911d8f0a4 Merge pull request #20175 from owncloud/login-arrow 
remove unneeded icons from input fields to not distract from submit button, fix #18940
 2015-10-30 15:56:13 +01:00
Jan-Christoph Borchardt
a05ea0fb1e remove unneeded icons from input fields to not distract from submit button, fix #18940 2015-10-30 11:11:37 +01:00
Stephen Colebrook
6feb31bf96 Allow separate templates for internal and external share notifications 2015-10-29 10:24:24 +01:00
Jan-Christoph Borchardt
aed9b2a626 change wording from 'remember' to more understandable 'Stay logged in' 2015-10-23 10:44:41 +13:00
Vincent Petry
bf2a876094 Fix login arrow in login page 2015-09-29 17:13:10 +02:00
Hendrik Leppelsack
c23cac3322 fix login 2015-09-25 00:51:39 +02:00
Thomas Müller
ac8da41ccd Merge pull request #18709 from owncloud/cleanup-login-semantics 
Pushes input inside the bottom group - login.
 2015-09-21 16:08:48 +02:00
Thomas Müller
7ff12d74d9 Merge pull request #17998 from owncloud/highres_avatar 
Highres avatar in top bar
 2015-09-16 22:03:11 +02:00
Hendrik Leppelsack
88bc478055 use label:before instead of label 2015-09-16 09:06:05 +02:00
Raghu Nayyar
7ccd02ec95 Fixes white and black checkboxes in core, files will be next. 2015-09-16 09:06:05 +02:00
Roeland Jago Douma
c39db52cfa Use srcset to select best avatar size 
* Allow the browser to select the best available avatar for the screen
 2015-09-14 12:58:45 +02:00
Raghu Nayyar
1d9128c557 Squashing all commits in one, remove typos. 2015-09-12 15:24:56 +05:30
Lukas Reschke
436c149fbb Prevent referer from being sent 
Nice hardening for enhanced privacy. Especially useful when using embedded viewers such as files_pdfviewer.
 2015-09-09 18:07:43 +02:00
Jan-Christoph Borchardt
acc9fa49fc use SVG for toggle image instead of PNG, fix installation and personal settings toggle 2015-09-03 11:49:28 +02:00
Christoph Wurst
ba9457264f add title attribute for the login button 2015-09-02 12:32:16 +02:00
Jan-Christoph Borchardt
cea3247d49 show feedback spinner for log in process 2015-08-27 21:08:46 +02:00
Jan-Christoph Borchardt
2a935f1b47 move log in button into fields and use icon instead of text 2015-08-27 20:52:47 +02:00
Morris Jobke
40b1054530 Merge pull request #18254 from owncloud/mitigate-breach 
Add mitigation against BREACH
 2015-08-24 09:14:27 +02:00
Jan-Christoph Borchardt
f21cf516da fix wording of update header 2015-08-20 12:59:13 +02:00
Morris Jobke
06d8edd963 Merge pull request #17434 from owncloud/update-showappnameonappupdate 
Display app names in update page for app updates
 2015-08-20 11:50:01 +02:00
Vincent Petry
a2674b2b30 Additions to update page 
Apps to update and to disable will always be shown.
Main title changes only when apps need updated, not core.
Added bullet style.
Exclude incompatible apps from updated apps list.
 2015-08-20 11:14:30 +02:00
Vincent Petry
b919ae96f0 Display app names in update page for app updates 
Whenever the update page is displayed for apps, show app names instead
of the core update text.
 2015-08-19 18:03:35 +02:00
Lukas Reschke
df2ce8a075 Remove search box $_POST since it is unused 2015-08-14 01:31:32 +02:00
Jan-Christoph Borchardt
e16cf0c45f more understandable 'Wrong password' feedback 2015-08-12 18:43:09 +02:00
Thomas Müller
aff11d7a79 Merge pull request #17966 from owncloud/remove-mssql 
Remove remainings of mssql
 2015-07-29 22:59:31 +02:00
Thomas Müller
5ed38a75d6 Remove remainings of mssql 2015-07-29 18:19:31 +02:00
Jan-Christoph Borchardt
0b27bcba76 add theme-color for better Android browser integration 2015-07-29 18:16:01 +02:00
Brewal
eac117fc8f Changed a p element by a div 
A p element cannot contain a div element (here `<div style="clear: both;"></div>`). It should be change by a div element to fits standards.
 2015-06-08 15:22:52 +02:00
Jan-Christoph Borchardt
78a0464354 replace logo-wide on share page as well with better icon + text 2015-05-22 00:04:47 +02:00
Morris Jobke
176b9674d2 Add hint about additional PHP database modules 
* fixes #16391
 2015-05-18 22:59:35 +02:00
Morris Jobke
cd516eedcd Use OC.Notification for update notifications 
* instead of a static rendering inside PHP use the
  JS OC.Notification.showTemporary to hide the
  notification after 7 seconds automatically
* fixes #14811
 2015-05-03 17:26:03 +02:00
Jörn Friedrich Dreyer
8964c5068c do not disclose information, show generic error on login page 
Conflicts:
	core/templates/login.php
	lib/base.php
 2015-04-10 09:12:37 +02:00
Jan-Christoph Borchardt
dd7e519cda add link to installation documentation to setup page 2015-04-09 11:39:46 +02:00
Lukas Reschke
0816cf9142 Add experimental applications switch 
Allows administrators to disable or enabled experimental applications as well as show the trust level.
 2015-04-03 13:21:24 +02:00
Volker E
f4502b4670 fixing #15344 - title has no added value here (not on screen readers not for robots) 2015-04-01 21:10:48 +02:00
Morris Jobke
1a06f8df57 add title to entries in app menu 2015-04-01 09:10:19 +02:00
Jan-Christoph Borchardt
cd88ddddaf fix accessibility of ownCloud logo and navigation entries, fix #15013g 2015-03-26 10:31:00 +01:00
Morris Jobke
e07a2fd8a2 Merge pull request #15012 from Volker-E/master 
fixing #15011 by adding ARIA roles where distinct
 2015-03-24 12:07:26 +01:00
Volker E
599ee5ce4e fixing #15023, getting comments out of HTML output 2015-03-21 07:10:46 +01:00
Robin Appelman
2df20aaffb show exception type in debug mode 2015-03-20 03:51:21 +01:00
Volker E
0e4d52f9d2 fixing #15027, cleaning up obsolete IE5-7 workaround code 2015-03-19 09:10:58 +01:00
Volker E
0d0c73cf2b fixing #15011 by adding ARIA roles where distinct 2015-03-18 19:29:15 +01:00
Volker E
790324b313 addressing #14984 removing redundant type attributes 2015-03-18 05:33:17 +01:00
Volker E
4c46d0c46c addressing #14983 obsolete Google Chrome Frame 2015-03-18 02:11:47 +01:00
Volker E
6ad76b5cc2 addressing #14982 self-closing tags ending slash doesn't have a purpose & should be removed 2015-03-17 23:57:23 +01:00
Volker E
25b77159c4 adressing #14979 meta charset declaration should be first in head 2015-03-17 23:36:05 +01:00
Volker E
e8c99a60ec addressing #14978 - remove html root classes targeting IE6/IE7 2015-03-17 23:16:42 +01:00
Volker E
f3cd552797 addressing #14978 - remove html root classes targeting IE6/IE7 2015-03-17 22:35:20 +01:00
Roeland Jago Douma
1a0f9c375b Avatar controller moved to AppFrameWork 
* Original avatarcontroller migrated to the appframework
* Added DataDisplayResponse that show data inline in the browser (used
  to retrun the image)
* Removed some unneeded code
* Added unit tests for the avatarcontroller
 2015-03-11 16:37:42 +01:00
Joas Schilling
0f09989824 Maintenance mode message might be misleading 2015-03-02 09:51:25 +01:00
Lukas Reschke
8818165e07 Fix avatars in master 2015-02-27 12:03:58 +01:00
Jan-Christoph Borchardt
83bc951630 Merge pull request #12213 from sebomoto/add-loadfeedback 
Add loadfeedback
 2015-02-18 19:42:18 +01:00
Lukas Reschke
20d57c8bfe Remove Null Byte Check 
This is not relevant anymore since we require PHP 5.4
 2015-02-17 14:19:20 +01:00
Lukas Reschke
c6705ab574 Merge pull request #13890 from owncloud/add-no-referrer 
Add `rel="noreferrer"` where possible and switch to HTTPS
 2015-02-16 14:36:44 +01:00
Lode Hoste
27b35500a7 Disable application-specific favicons for non-user pages 2015-02-11 20:09:03 +01:00
Joas Schilling
4172ba48d4 Deduplicate template code and do not translate the links 2015-02-09 16:01:52 +01:00
Morris Jobke
b05e4e085c Merge pull request #13435 from Zillode/app-favicon 
Allow application-specific favicons
 2015-02-07 13:29:18 +01:00
cmeh
6abb28e2a6 Update installation.php 
In line 161, "SQLite" has now the same capitalisation as in line 159.
 2015-02-06 11:19:56 +01:00
Thomas Müller
d748368ecb Don't highly discourage 2015-02-05 17:21:10 +01:00
Sebastian Bolt
7ffd2557ff changed image to classed div for spinner animation 2015-02-04 22:27:38 +01:00
Thomas Müller
f86c73c9f6 enhance sqlite warning on admin page as well as during setup - fixes #13906 2015-02-04 20:55:54 +01:00
Lukas Reschke
b432ea29c9 Add rel="noreferrer" where possible and switch to HTTPS 
Just to follow good practise and prevent some automated scanners to complain about "Cross-domain Referer leakage".
 2015-02-04 16:25:37 +01:00
Morris Jobke
5b4fd12b5b add CSS to exception page - fixes #13747 2015-01-29 20:18:08 +01:00
Morris Jobke
254a1fa12a Merge pull request #13314 from owncloud/login-hook-logout 
Return false if the login is canceled in a hook
 2015-01-22 23:34:19 +01:00
Robin Appelman
8a9acc5083 Allow custom error messages for the login page 2015-01-22 14:13:02 +01:00
Lode Hoste
96f81961ed Allow application-specific favicons 2015-01-18 00:19:33 +01:00
Vincent Petry
99304be4ef Read version and product name from update template 
During upgrade, the config settings aren't always available due to
base.php changes. This fix makes the update info page read the product
name and version from the update template, which already had them.
 2015-01-14 11:31:42 +01:00
Jan-Christoph Borchardt
6933ffbf83 remove skip to content for now, see #12999 2014-12-22 16:02:45 +01:00
Jan-Christoph Borchardt
f512dbb98a change Documents default typeface from serif to sans-serif 2014-12-19 18:16:46 +01:00
Jan-Christoph Borchardt
a2c2775df2 introduce first 'Skip to content' button 2014-12-19 00:35:24 +01:00
Morris Jobke
3036a8714d Merge pull request #12941 from owncloud/wave-accessibility-compliance 
Wave accessibility compliance
 2014-12-19 00:30:56 +01:00
Jörn Friedrich Dreyer
891474b0d6 Merge pull request #12759 from owncloud/core-reduce-js-and-css 
make sure styles and scripts are only loaded once
 2014-12-18 23:18:37 +01:00
Jan-Christoph Borchardt
2e6235456a fix searchbox label 2014-12-18 13:39:56 +01:00
Jan-Christoph Borchardt
ea548cdaaa fix accessibility of logos 2014-12-18 10:51:41 +01:00
Jan-Christoph Borchardt
0c764bc39f add label for search field for screen readers 2014-12-17 14:49:13 +01:00
Jan-Christoph Borchardt
4eecb98b38 add empty alt text for user image 2014-12-17 11:52:45 +01:00
Thomas Müller
51a22431ee load showpassord.js conditionally in the template only if needed 2014-12-16 18:45:37 +01:00
Thomas Müller
3cc33a98a8 use script instead of \OCP\Util methods 2014-12-16 18:45:13 +01:00
Lukas Reschke
be19e78e69 Add requesttoken to base template 
Potentially fixes https://github.com/owncloud/core/issues/12580
 2014-12-05 22:23:55 +01:00
Morris Jobke
48f00df08e move jstz to bower management 2014-12-01 10:40:31 +01:00
Jan-Christoph Borchardt
45a877c3a7 use proper tabindex order: 1. app menu, 2. search, 3. user menu 2014-11-08 01:47:46 +01:00
Jan-Christoph Borchardt
45c6ec8582 introduce h1, use either ownCloud name or current app name 2014-11-06 13:26:38 +01:00
Jan-Christoph Borchardt
764f51c976 add missing alt attribute to spinner 2014-11-06 12:09:48 +01:00
Lukas Reschke
be5ae6c44f Support HTML in logo claim 2014-11-03 21:14:27 +01:00
Lukas Reschke
510d0b2cf3 Fix the "addHeader($tag, $attributes, $text)" methods to not ignore the $text parameter 
Also support closing tags with no text content given

Conflicts:
	lib/private/template.php
 2014-10-28 11:15:58 +01:00
Vincent Petry
aee1edf6b5 Merge pull request #11708 from owncloud/fix-momentjs 
Setting moment locale based on user selection
 2014-10-27 10:30:47 +01:00
Morris Jobke
a10b25587f add avatardiv-shown class to bring back mobile style 2014-10-23 23:51:05 +02:00
kondou
729dffed5e Load avatar in header via PHP 
* fix #7484
* use UID, css, and div instead of span
 2014-10-23 23:17:18 +02:00
Clark Tomlinson
ca5abe5744 Setting moment locale based on user selection 2014-10-23 10:32:47 -04:00
Lukas Reschke
c0ddf06dfe Merge pull request #11666 from owncloud/setup-hidesqlitemessageforautoconfig 
Hide SQLite information on setup when autoconfig is used
 2014-10-20 19:50:20 +02:00
Vincent Petry
f52ed231b3 Hide SQLite information on setup when autoconfig is used 2014-10-20 16:20:24 +02:00
Lukas Reschke
852c7ef9da Use l10n on this string as well 2014-10-16 22:04:24 +02:00
Thomas Müller
b091394a90 introduce new app page layout 
filter installed and not-installed apps properly

kill unneeded file

load category 'Installed' on page load

adding documentation links

new apps mgmt: first style adjustment

apps mgmt: only show license and preview if they exist

adding buttons

new apps mgmt: fix for mobile

use app icon if available

new apps mgmt: position enable/disable toggle to the right

new apps mgmt: proper display of icons or previews

new apps mgmt: fix loading spinner

reenable group selection for apps

new apps mgmt: position enable button normally again

new apps mgmt: clarify wording from 'Installed' to 'Enabled'

reintroduce enable/disable

Move rating image path generation to client-side

Move expression outside of l10n

fix group handling

add buttons for 'More apps' and 'Add your app' again

disable changed date of app for now

adding recommended label

style 'Recommended' app tag

fixing php warning

sort by rating

adding meta-category 'Recommended'

 Only show existing documentation links

lacy loading of screenshots

making group based app activation work again

adding support to get the app icon not only by the app name but also simply by the fixed name 'app.svg'

adding app.svg for all core apps

query string '?installed' is not longer needed

update and uninstall is back + error feedback

remove unneeded parameter

fix alignment of 'recommended' label
 2014-10-15 15:21:40 +02:00
Jan-Christoph Borchardt
185f442df8 for whitelabeled edition, show branding name (e.g. 'ownCloud') instead of appname in header bar 2014-09-26 15:38:35 +02:00
Lukas Reschke
75e45ac786 Merge pull request #11019 from owncloud/do-not-show-exception-to-enduser 
Do not show exception to the end-user - use a proper error page instead
 2014-09-23 18:36:40 +02:00
Thomas Müller
bb18fe1384 send browsers timezone back tp the server on login 2014-09-22 14:01:45 +02:00
Lukas Reschke
8fc1a9f5a9 Make 404 page easier to understand 
Fixes https://github.com/owncloud/core/issues/11133
 2014-09-17 22:57:32 +02:00
Jan-Christoph Borchardt
d66a8daf7f replace horizontal rules with whitespace 2014-09-17 13:17:53 +02:00
Lukas Reschke
6d3757f864 Do not show exception to the end-user 
Log the error instead of potentially leaking sensitive information
 2014-09-17 13:17:52 +02:00
Thomas Müller
1978d3d6a2 Merge pull request #11055 from owncloud/replaceprodname 
replace ownCloud with placeholder
 2014-09-16 14:49:50 +02:00
Morris Jobke
06eb3b62c6 Merge pull request #10109 from owncloud/issue_#9793_guestlayout 
Step one, open guest layout for different styles.
 2014-09-15 15:15:41 +02:00
Volkan Gezer
c04346918b replace ownCloud with placeholder 2014-09-13 01:48:18 +02:00
Thomas Müller
9737ba74ce Merge pull request #11007 from owncloud/replaces-10850 
Add X-UA-Compatible to all templates
 2014-09-11 12:34:44 +02:00
Lukas Reschke
7d2c521b46 Step one, open guest layout for different styles. 
Conflicts:
	core/templates/layout.guest.php

Step one, open guest layout for different styles.
 2014-09-11 11:41:02 +02:00
Lukas Reschke
bce5c2dae9 Add X-UA-Compatible to all templates 
Replaces https://github.com/owncloud/core/pull/10850
 2014-09-11 10:28:52 +02:00
kondou
69f2c0544e Refresh if maintenance mode is over 
Using status.php for this.
I modified status.php to also show, whether we're in maintenance.

Checks every 20 seconds if maintenance is over, if yes: reload.
 2014-09-09 17:26:11 +02:00
VicDeo
efd485acda Merge pull request #10858 from owncloud/issue/10847 
Use correct language package so the subject is correctly translated
 2014-09-09 01:11:34 +03:00
Jan-Christoph Borchardt
71e10b66d9 Merge pull request #10944 from owncloud/fix-nojavascript-style 
fix no-JS message, and add it to log in and shared as well cause they don’t work without JS
 2014-09-08 21:58:54 +02:00
Jan-Christoph Borchardt
bd56619e7a also add no-JavaScript notice to log in and sharing pages because they do not work without JS either 2014-09-08 18:07:20 +02:00
Jan-Christoph Borchardt
3db2b11435 fix styling and wording of no-JavaScript message 2014-09-08 17:55:53 +02:00
Joas Schilling
7a7e102390 Fix broken new lines in plain text mail template 2014-09-04 11:30:54 +02:00
Thomas Müller
954925eaa0 Merge pull request #10667 from pmjdebruijn/itunes-appid 
defaults: add customizable defaultiTunesAppId
 2014-09-03 16:26:20 +02:00
Pascal de Bruijn
73f50287ff templates: use p() for getiTunesAppId 2014-08-28 10:12:59 +02:00
Pascal de Bruijn
49da0a7943 defaults: add customizable defaultiTunesAppId 2014-08-27 14:07:39 +02:00
Lukas Reschke
d26a9c3c58 Add some security utilities 
This adds some security utilities to core including:
- A library for basic crypto operations (e.g. to encrypt passwords)
- A better library for cryptographic actions which allows you to specify the charset
- A library for secure string comparisions

Remove .htaccess

Remove .htaccess

Fix typo

Add public API

Use timing constant comparision

Remove CBC constant

Adjust code

Remove confusing $this
 2014-08-27 00:18:04 +02:00
Clark Tomlinson
e0a8321b23 Adding type to favicon 2014-08-22 16:26:39 -04:00
Lukas Reschke
97b536e3df Add a trusted domain wizard 
Adds a little button to the trusted domain warning, if an admin clicks on the warning he will be redirected to ownCloud and asked whether he want to trust this domain.

By far not the cleanest code, or clean at all, but does the job and I don't see a reason to make a lot of changes for this little improvement.
 2014-08-21 22:22:35 +02:00
Volker E.
ec1596054f Removing x-webkit-speech attribute #10561 
Remove obsolete (from Google Chrome 36 on) attribute due to security vulnerability
 2014-08-20 22:59:55 +02:00
Morris Jobke
b6d3a6a054 Add note about the term "Cheers" at end of mail 
* for translators
* fixes #8689
 2014-08-20 15:14:07 +02:00
Vincent Petry
8995e88e6f Added upgrade notice to avoid timeouts 2014-08-18 15:05:55 +02:00
Lukas Reschke
6fae8ae8a7 Merge pull request #10302 from owncloud/remove-logon-rejected 
remove confusing 'automatic logon rejected' message, fix #8591
 2014-08-09 19:01:38 +02:00
Jan-Christoph Borchardt
c0fa29523c remove confusing 'automatic logon rejected' message, fix #8591 2014-08-09 01:35:02 +02:00
Thomas Müller
cbe3595f64 using flush() here is pointless as we render the layout into a memory buffer and actually transmit the data later 2014-08-08 15:44:11 +02:00
Morris Jobke
6cf6c21740 fix syntax 2014-07-17 09:51:44 +02:00
Sander
eb5458b837 Changed to 1 line 2014-07-08 14:13:02 +02:00
Sander
c3beef30f3 Added suggestions from @jancborchardt in #9517 2014-07-08 14:03:10 +02:00
Sander
4ca74a5157 Update layout.user.php 2014-07-08 13:24:19 +02:00
Sander
ec6779ced4 Add webapp support 2014-07-08 13:14:54 +02:00
Jan-Christoph Borchardt
83aca24b88 show loading feedback also when clicking 'Apps' entry in app list 2014-07-04 12:32:37 +02:00
Victor Dubiniuk
23ed038a27 Basics 2014-06-13 15:34:51 +02:00
Joas Schilling
6c0e27ac99 Fix missing caret in header menu for IE8 2014-06-12 11:01:35 +02:00
Volkan Gezer
713a1c683b wrap App text with t() to let it use locales 2014-06-06 18:31:04 +02:00
Jan-Christoph Borchardt
f1ce58de3e rearrange CSS, remove duplicate code 2014-06-04 15:46:36 +02:00
Jan-Christoph Borchardt
d831afc792 move 'add apps' entry into normal navigation instead of a new line 2014-06-04 15:27:46 +02:00
Jan-Christoph Borchardt
26bf64631d better loading feedback for app start, move from JS to CSS 2014-06-04 15:07:15 +02:00
Jan-Christoph Borchardt
96cfe97dae show 'Apps' as fallback label for app switcher if no app title is present (for example in Settings) 2014-06-04 14:38:25 +02:00
Jan-Christoph Borchardt
7cdd4fee9a separate home icon and menu toggle 2014-06-04 14:38:25 +02:00
Jan-Christoph Borchardt
cfffd1a890 cut ownCloud text from logo when logged in, place appname there 2014-06-04 14:38:25 +02:00
Morris Jobke
190fc8adf5 drop "push" element - no sticky footer needed anymore 2014-06-04 14:38:25 +02:00
Jan-Christoph Borchardt
e27a409287 show appname next to logo for better hint at navigation 2014-06-04 14:29:46 +02:00
Morris Jobke
cea7d4961e move to updated version of placeholder 2014-06-03 16:18:06 +02:00
Jan-Christoph Borchardt
04aa085292 infield label removal: fix installation screen 2014-06-03 15:30:07 +02:00
Jan-Christoph Borchardt
7177d3a496 first step of infield label removal, fix login screen 2014-06-03 15:28:59 +02:00
Morris Jobke
a4dd4cbb8f add info about sqlite on setup apge 2014-06-02 22:56:50 +02:00
Vincent Petry
4e957c7b18 Merge pull request #8443 from owncloud/csrf-on-login-and-logout 
Add CSRF check on login and logout
 2014-06-02 11:27:20 +02:00
Vincent Petry
7e055a9404 Fixed DOM elements, styling and code style issues 
- Reduced number of DOM elements
- Also added mention of "config" backup.
 2014-05-28 11:29:22 +02:00
Vincent Petry
ca45937d84 Fixed styles in update overview page 2014-05-27 16:36:21 +02:00
Vincent Petry
02f682b156 Now showing disabled apps as upgrade status line 
- Added app id in update overview.
- Added status message for disabled app for CLI upgrade and web upgrade
 2014-05-27 15:20:33 +02:00
Vincent Petry
146583a98d Added update overview page 2014-05-27 14:53:08 +02:00
Thomas Müller
f8cb8f4803 Merge branch 'master' into csrf-on-login-and-logout 
Conflicts:
	core/templates/login.php
 2014-05-19 20:40:55 +02:00
Morris Jobke
db9cfaa56d Merge pull request #8592 from owncloud/login-timezone 
Disable login button until the timezone is set
 2014-05-19 01:14:03 +02:00
Vincent Petry
04f73275ba Now settings CSS class with appid in content DIV 2014-05-15 17:51:04 +02:00
Jan-Christoph Borchardt
60efa0f1c8 Merge pull request #8140 from owncloud/login-valign 
Vertically align public layout to better fit small mobile screens
 2014-05-15 15:06:52 +02:00
Vincent Petry
1de068b5cb Disable login button until the timezone is set 
On slow computers it might happen that the user manages to login before
the timezone code has a chance to run, which then causes dates to appear
wrong in the UI.

This fix makes sure the login cannot happen until the timezone field is
set.

Note that it's not possible to run the timezone code outside of
document.ready() because at that time the DOM element doesn't exist yet.
 2014-05-14 17:00:15 +02:00
Lukas Reschke
73b914ddbc Add CSRF check on login and logout 
This is a minor issue and not worth a backport in my opinion as it could break more things than it's worth having it.
 2014-05-04 13:56:21 +02:00
Jan-Christoph Borchardt
158b870589 Merge pull request #6870 from owncloud/uncheck-remember-checkbox 
do not check 'remember' log in by default
 2014-04-29 10:22:02 +02:00
Thomas Müller
30168169b9 Flush the Buffer Early - right after head 2014-04-15 16:56:45 +02:00
jbtbnl
b10bf72999 Vertically align public layout to better fit small mobile screens 2014-04-10 00:33:55 +02:00
Thomas Müller
e3b951f412 Merge pull request #7724 from owncloud/mobile 
[WIP] Mobile optimization for base layout and Files app
 2014-03-28 10:27:15 +01:00
Jan-Christoph Borchardt
d2de6e7a66 fix SVG replacement for logo so it works in IE8, fix #7866 2014-03-27 14:31:24 +01:00