nextcloud

Commit Graph

Author	SHA1	Message	Date
Faraz Samapoor	4f46656d39	Refactors lib/private/Security. Mainly using PHP8's constructor property promotion. Signed-off-by: Faraz Samapoor <fsa@adlas.at>	1 year ago
Robin Appelman	223612b15a	log failures to read certificates during listing Signed-off-by: Robin Appelman <robin@icewind.nl>	1 year ago
Jan Messer	647c65a640	[BUGFIX] throw exception instead of error if unable to create file handler (only exceptions are catch) Signed-off-by: Jan Messer <jan@mtec-studios.ch>	1 year ago
Jan Messer	7a443863fe	[BUGFIX] check return value and improve error handling With S3 primary storage there was a problem with getting the CA bundle from the storage without having the CA bundle for the connection which causes that the CertificateManager was throwing an Error. This commit improves the handling in CertificateManager and log unexpected behaviors. Signed-off-by: Jan Messer <jan@mtec-studios.ch>	1 year ago
Côme Chilliet	426c0341ff	Use typed version of IConfig::getSystemValue as much as possible Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>	1 year ago
Côme Chilliet	ea05544213	Fix return type of methods returning false on error Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>	1 year ago
Côme Chilliet	6be7aa112f	Migrate from ILogger to LoggerInterface in lib/private Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>	2 years ago
Robin Appelman	4f594dbf53	cache the path of the certificate bundle Signed-off-by: Robin Appelman <robin@icewind.nl>	2 years ago
Robin Appelman	a887553ddb	return default bundle when there is an error getting the bundle Signed-off-by: Robin Appelman <robin@icewind.nl>	2 years ago
John Molakvoæ (skjnldsv)	215aef3cbd	Update php licenses Signed-off-by: John Molakvoæ (skjnldsv) <skjnldsv@protonmail.com>	3 years ago
J0WI	ca7b37ce5a	Make Security module strict Signed-off-by: J0WI <J0WI@users.noreply.github.com>	3 years ago
Roeland Jago Douma	54b9f639a6	Always return the default path if we can Just check in the certifcate manager. So every part of the system that request the certificatebundle gets the defaullt one (the 99% case) if we can. Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	3 years ago
Morris Jobke	dc479aae2d	Improve CertificateManager to not be user context dependent * removes the ability for users to import their own certificates (for external storage) * reliably returns the same certificate bundles system wide (and not depending on the user context and available sessions) The user specific certificates were broken in some cases anyways, as they are only loaded if the specific user is logged in and thus causing unexpected behavior for background jobs and other non-user triggered code paths. Signed-off-by: Morris Jobke <hey@morrisjobke.de>	4 years ago
Christoph Wurst	caff1023ea	Format control structures, classes, methods and function To continue this formatting madness, here's a tiny patch that adds unified formatting for control structures like if and loops as well as classes, their methods and anonymous functions. This basically forces the constructs to start on the same line. This is not exactly what PSR2 wants, but I think we can have a few exceptions with "our" style. The starting of braces on the same line is pracrically standard for our code. This also removes and empty lines from method/function bodies at the beginning and end. Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	4 years ago
Christoph Wurst	1a9330cd69	Update the license headers for Nextcloud 19 Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	4 years ago
Christoph Wurst	b80ebc9674	Use the short array syntax, everywhere Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	4 years ago
Christoph Wurst	5bf3d1bb38	Update license headers Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	4 years ago
Morris Jobke	0a56d2185e	Return value immediately instead of assigning to a one-time variable Signed-off-by: Morris Jobke <hey@morrisjobke.de>	6 years ago
Morris Jobke	0eebff152a	Update license headers Signed-off-by: Morris Jobke <hey@morrisjobke.de>	6 years ago
Lukas Reschke	6fb84ebb71	null is a valid parameter Signed-off-by: Lukas Reschke <lukas@statuscode.ch>	7 years ago
Roeland Jago Douma	04f2090698	Write cert bundle to tmp file first Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	7 years ago
Roeland Jago Douma	5a61a794d4	Do not write and read rootcerts.crt at the same time (Possibly) fixes #3470 When updating the main file /files_external/rootcerts.crt we should not read from /files_external/rootcerts.crt at the same time. For 2 reasons: writing to a file and reading from it at the same time can have non deterministic results And we don't want all the certificates to appear 2 times in there. This isn't caught by our standard file locking (that does not allow this actually) because it is in a non locked path.... Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>	7 years ago
Robin Appelman	817e974c5f	dont write a certificate bundle if the shipped ca bundle is empty Signed-off-by: Robin Appelman <robin@icewind.nl>	7 years ago
Joas Schilling	0215b004da	Update with robin	8 years ago
Joas Schilling	ba87db3fcc	Fix others	8 years ago
Bjoern Schiessle	7c64e1973f	add test for needsRebundling() check	8 years ago
Bjoern Schiessle	49cad153af	always check the mtime of the system bundle and additionally the user specific certificate bundle if a user is given	8 years ago
Lukas Reschke	aba539703c	Update license headers	8 years ago
Roeland Jago Douma	9050e76d95	Move \OC\Security to PSR-4	8 years ago
Thomas Müller	682821c71e	Happy new year!	8 years ago
Robin Appelman	c15cab7ed6	Allow admins to add system wide root certificates	8 years ago
Lukas Reschke	a8e8a9dfb9	Move certificate bundle into resources/config/	8 years ago
Bjoern Schiessle	37513f9411	don't read certificates if ownCloud is not installed	9 years ago
Lukas Reschke	1cc2aefa46	Proper return types	9 years ago
Jenkins for ownCloud	b585d87d9d	Update license headers	9 years ago
Lukas Reschke	5f044ebf1b	Add wrapper for Guzzle	9 years ago
Morris Jobke	06aef4e8b1	Revert "Updating license headers" This reverts commit `6a1a4880f0`.	9 years ago
Jenkins for ownCloud	6a1a4880f0	Updating license headers	9 years ago
Bjoern Schiessle	5ba19ba7fc	certificate manager should always use a \OC\Files\View otherwise we will get problems for different primary storages	9 years ago
Bjoern Schiessle	67da1f7e5a	certificate manager only needs the user-id, no need to pass on the complete user object	9 years ago
Bjoern Schiessle	24993280ed	Next step in server-to-server sharing next generation, see #12285 Beside some small improvements and bug fixes this will probably the final state for OC8. To test this you need to set up two ownCloud instances. Let's say: URL: myPC/firstOwnCloud user: user1 URL: myPC/secondOwnCloud user: user2 Now user1 can share a file with user2 by entering the username and the URL to the second ownCloud to the share-drop-down, in this case "user2@myPC/secondOwnCloud". The next time user2 login he will get a notification that he received a server-to-server share with the option to accept/decline it. If he accept it the share will be mounted. In both cases a event will be send back to user1 and add a notification to the activity stream that the share was accepted/declined. If user1 decides to unshare the file again from user2 the share will automatically be removed from the second ownCloud server and user2 will see a notification in his activity stream that user1@myPC/firstOwnCloud has unshared the file/folder from him.	9 years ago
Joas Schilling	39ae569c5c	Correctly close handle of directory when listing certificates	9 years ago
Lukas Reschke	4efe6f6240	Add unit tests and fix rootcerts creation bug	10 years ago
Robin Appelman	e64aa330fd	check for blacklisted file certificate filenames	10 years ago
Robin Appelman	79d896e830	Rename namespace	10 years ago
Robin Appelman	6044ad0e17	Cleanup certificate code	10 years ago
Robin Appelman	ba8416a04f	move certificate classes to their own namespace	10 years ago
Robin Appelman	c1b11571ea	Move certificate management interface from files_external to core	10 years ago
Robin Appelman	4efdbff6df	No need for this folder to be world accessible	10 years ago
Robin Appelman	dcc4f96d3e	Verify names of certificates	10 years ago

30 Commits (e42f511412c3dee98e843d215f6f74d65b8a5120)