aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
...
* | | | | | | Merge pull request #46814 from nextcloud/refactor/oauth2/security-attributesKate2024-08-142-8/+12
|\ \ \ \ \ \ \
| * | | | | | | refactor(oauth2): Replace security annotations with respective attributesprovokateurin2024-07-292-8/+12
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Signed-off-by: provokateurin <kate@provokateurin.de>
* | | | | | | | Merge pull request #46816 from nextcloud/refactor/settings/security-attributesKate2024-08-1413-75/+91
|\ \ \ \ \ \ \ \
| * | | | | | | | refactor(settings): Replace security annotations with respective attributesprovokateurin2024-07-2713-75/+91
| | |/ / / / / / | |/| | | | | | | | | | | | | | | | | | | | | | Signed-off-by: provokateurin <kate@provokateurin.de>
* | | | | | | | Merge pull request #46821 from ↵Kate2024-08-141-2/+4
|\ \ \ \ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | nextcloud/refactor/updatenotification/security-attributes
| * | | | | | | | refactor(updatenotification): Replace security annotations with respective ↵provokateurin2024-07-271-2/+4
| |/ / / / / / / | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | attributes Signed-off-by: provokateurin <kate@provokateurin.de>
* | | | | | | | Merge pull request #47207 from nextcloud/fix/sticky-nav-itemJohn Molakvoæ2024-08-143-4/+9
|\ \ \ \ \ \ \ \ | | |_|/ / / / / | |/| | | | / / | |_|_|_|_|/ / |/| | | | | |
| * | | | | | fix(files): Fix non-sticky sticky views in files navChristopher Ng2024-08-143-4/+9
|/ / / / / / | | | | | | | | | | | | | | | | | | | | | | | | Signed-off-by: Christopher Ng <chrng8@gmail.com> Signed-off-by: nextcloud-command <nextcloud-command@users.noreply.github.com>
* | | | | | Merge pull request #47209 from nextcloud/rakekniven-patch-2John Molakvoæ2024-08-143-4/+4
|\ \ \ \ \ \
| * | | | | | chore(i18n): Improved grammarrakekniven2024-08-143-4/+4
|/ / / / / / | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Reported at Transifex. Signed-off-by: rakekniven <2069590+rakekniven@users.noreply.github.com> Signed-off-by: nextcloud-command <nextcloud-command@users.noreply.github.com>
* | | | | | Merge pull request #46888 from nextcloud/jtr/bfp-settings-app-default-enableJohn Molakvoæ2024-08-141-0/+1
|\ \ \ \ \ \
| * | | | | | feat: enable bruteforcesettings app by defaultJosh2024-07-301-0/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Brute force protection is automatically enabled. The settings app for it should be enabled by default too. Already shipped and it can still be disabled if desired. Signed-off-by: Josh <josh.t.richards@gmail.com>
* | | | | | | Merge pull request #46723 from ↵Richard Steinmetz2024-08-147-426/+718
|\ \ \ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | nextcloud/feat/add-delta-sync-to-subscription-calendars feat(webcal): only update modified and deleted events from webcal calendars
| * | | | | | | feat(webcal): only update modified and deleted events from webcal calendarsAnna Larch2024-08-137-426/+718
| | |_|_|_|/ / | |/| | | | | | | | | | | | | | | | | | | Signed-off-by: Anna Larch <anna@nextcloud.com>
* | | | | | | Merge pull request #45435 from nextcloud/feat/dav/upcoming-events-apiChristoph Wurst2024-08-1411-0/+525
|\ \ \ \ \ \ \ | | | | | | | | | | | | | | | | feat(dav): Add an API for upcoming events
| * | | | | | | feat(dav): Add an API for upcoming eventsChristoph Wurst2024-08-1311-0/+525
| |/ / / / / / | | | | | | | | | | | | | | | | | | | | | Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
* | | | | | | Fix(l10n): Update translations from TransifexNextcloud bot2024-08-14102-88/+364
| | | | | | | | | | | | | | | | | | | | | | | | | | | | Signed-off-by: Nextcloud bot <bot@nextcloud.com>
* | | | | | | Merge pull request #47200 from nextcloud/fix/issue-47193Sebastian Krupinski2024-08-131-6/+6
|\ \ \ \ \ \ \ | | | | | | | | | | | | | | | | fix: test variables before returning
| * | | | | | | fix: test variables before returningSebastianKrupinski2024-08-131-6/+6
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Signed-off-by: SebastianKrupinski <krupinskis05@gmail.com>
* | | | | | | | Merge pull request #47202 from nextcloud/chore/nextcloud-auth-2_4Ferdinand Thiessen2024-08-13164-238/+336
|\ \ \ \ \ \ \ \ | | | | | | | | | | | | | | | | | | chore(deps): Update `@nextcloud/auth` to v2.4.0 and use `getCSPNonce` where possible
| * | | | | | | | chore(assets): Recompile assetsnextcloud-command2024-08-13136-167/+269
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Signed-off-by: nextcloud-command <nextcloud-command@users.noreply.github.com>
| * | | | | | | | chore(deps): Update `@nextcloud/auth` to v2.4.0 and use `getCSPNonce` where ↵Ferdinand Thiessen2024-08-1328-71/+67
|/ / / / / / / / | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | possible Signed-off-by: Ferdinand Thiessen <opensource@fthiessen.de>
* | | | | | | | Merge pull request #43573 from nextcloud/HolgerHees-fix-csp-nonce-handlingFerdinand Thiessen2024-08-1314-273/+296
|\ \ \ \ \ \ \ \ | | | | | | | | | | | | | | | | | | Fix for ignored `CSP_NONCE` in ContentSecurity Header
| * | | | | | | | feat: Provide CSP nonce as `<meta>` elementFerdinand Thiessen2024-08-139-9/+23
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This way we use the CSP nonce for dynamically loaded scripts. Important to notice: The CSP nonce must NOT be injected in `content` as this can lead to value exfiltration using e.g. side-channel attacts (CSS selectors). Signed-off-by: Ferdinand Thiessen <opensource@fthiessen.de>
| * | | | | | | | test: Adjust tests for CSP nonceFerdinand Thiessen2024-08-135-262/+268
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Signed-off-by: Ferdinand Thiessen <opensource@fthiessen.de>
| * | | | | | | | fix: Make sure CSP nonce is not double base64 encodedFerdinand Thiessen2024-08-132-3/+6
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Signed-off-by: Ferdinand Thiessen <opensource@fthiessen.de>
| * | | | | | | | fix: Use `CSP_NONCE` env variable in ContentSecurity HeaderHolger Hees2024-08-131-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | We should use 'cspNonceManager' for requesting the NONCE value, because it is doing the same as before, except that it honors a CPS_NONCE environment variable if available. Signed-off-by: Holger Hees <holger.hees@gmail.com>
* | | | | | | | | Merge pull request #45786 from nextcloud/fix/caldav/default-vjournalRichard Steinmetz2024-08-132-2/+2
|\ \ \ \ \ \ \ \ \ | | | | | | | | | | | | | | | | | | | | fix(caldav): allow VJOURNAL if no supported component set is specified
| * | | | | | | | | fix(caldav): allow VJOURNAL if no supported component set is specifiedRichard Steinmetz2024-08-132-2/+2
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This is mandated by the RFCs. Signed-off-by: Richard Steinmetz <richard@steinmetz.cloud>
* | | | | | | | | | Merge pull request #45221 from nextcloud/feat/auth/authtoken-clean-upChristoph Wurst2024-08-133-20/+31
|\ \ \ \ \ \ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | feat(auth): Clean-up unused auth tokens and wipe tokens
| * | | | | | | | | | feat(auth): Clean-up unused auth tokens and wipe tokensChristoph Wurst2024-08-133-20/+31
| | |_|_|/ / / / / / | |/| | | | | | | | | | | | | | | | | | | | | | | | | | | | Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
* | | | | | | | | | Merge pull request #47195 from ↵Joas Schilling2024-08-133-7/+14
|\ \ \ \ \ \ \ \ \ \ | |_|_|_|/ / / / / / |/| | | | | | | | | | | | | | | | | | | | | | | | | | | | | nextcloud/bugfix/noid/return-correct-userid-on-fed-invites fix(federation): Return the used userID to allow the inviting server …
| * | | | | | | | | fix(federation): Return the used userID to allow the inviting server to ↵Joas Schilling2024-08-133-7/+14
| |/ / / / / / / / | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | react to the famous `mapUid` result Signed-off-by: Joas Schilling <coding@schilljs.com>
* | | | | | | | | Merge pull request #47198 from nextcloud/fix/issue-46700Joas Schilling2024-08-1310-8/+8
|\ \ \ \ \ \ \ \ \ | |_|/ / / / / / / |/| | | | | | | | Change label "Allow download" for better l10n
| * | | | | | | | chore(assets): Recompile assetsJoas Schilling2024-08-139-7/+7
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Signed-off-by: Joas Schilling <coding@schilljs.com>
| * | | | | | | | fix: Update translation stringArchisman Das2024-08-131-1/+1
|/ / / / / / / / | | | | | | | | | | | | | | | | | | | | | | | | Signed-off-by: Archisman Das <archisman.officials@gmail.com>
* | | | | | | | Merge pull request #47189 from ↵Stephan Orbaugh2024-08-131-0/+1
|\ \ \ \ \ \ \ \ | |/ / / / / / / |/| | | | | | | | | | | | | | | | | | | | | | | nextcloud/feat/noid/ship-twofactor_nextcloud_notification chore: Ship twofactor_nextcloud_notification
| * | | | | | | chore: Ship twofactor_nextcloud_notificationJoas Schilling2024-08-131-0/+1
| |/ / / / / / | | | | | | | | | | | | | | | | | | | | | Signed-off-by: Joas Schilling <coding@schilljs.com>
* | | | | | | Merge pull request #41740 from nextcloud/Fix/duplicate-remindersHamza2024-08-133-4/+12
|\ \ \ \ \ \ \ | | | | | | | | | | | | | | | | fix(dav): Handle duplicate event reminder
| * | | | | | | fix: handle-duplicate-reminderhamza2212024-08-133-4/+12
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Signed-off-by: hamza221 <hamzamahjoubi221@gmail.com>
* | | | | | | | Merge pull request #47180 from ↵Côme Chilliet2024-08-134-8/+167
|\ \ \ \ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | nextcloud/fix/apply-group-limit-on-remove-from-group Apply group limit on remove from group
| * | | | | | | | chore(tests): Fix import in cypress test limit_to_same_group.cy.tsCôme Chilliet2024-08-121-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>
| * | | | | | | | chore(tests): Fix SPDX license header on new cypress testCôme Chilliet2024-08-121-19/+2
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>
| * | | | | | | | fix(tests): Adapt tests to change of DefaultShareProvider constructorCôme Chilliet2024-08-121-6/+15
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>
| * | | | | | | | fix: Remove shares only if there are no more common groups between usersCôme Chilliet2024-08-122-39/+64
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>
| * | | | | | | | chore(tests): Test limiting sharing to same groupLouis Chemineau2024-08-121-0/+97
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Signed-off-by: Louis Chemineau <louis@chmn.me>
| * | | | | | | | fix(files_sharing): Delete user shares if needed when user is removed from a ↵Louis Chemineau2024-08-122-2/+47
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | group Signed-off-by: Louis Chemineau <louis@chmn.me>
* | | | | | | | | Merge pull request #47181 from nextcloud/fix/new-folder-messaeFerdinand Thiessen2024-08-133-6/+13
|\ \ \ \ \ \ \ \ \ | |_|/ / / / / / / |/| | | | | | | | fix(files): Add messages when "new folder" fails or gets cancelled
| * | | | | | | | chore(assets): Recompile assetsnextcloud-command2024-08-132-3/+3
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Signed-off-by: nextcloud-command <nextcloud-command@users.noreply.github.com>
| * | | | | | | | fix(files): Add messages when "new folder" fails or gets cancelledFerdinand Thiessen2024-08-131-3/+10
| | |/ / / / / / | |/| | | | | | | | | | | | | | | | | | | | | | Signed-off-by: Ferdinand Thiessen <opensource@fthiessen.de>
generated by cgit v1.2.3 (git 2.39.1) at 2025-05-01 12:49:06 +0000