summaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
* Merge pull request #16624 from nextcloud/bugfix/noid/versions-fetch-owner-onlyRoeland Jago Douma2019-08-011-1/+1
|\ | | | | Make sure we only fetch the file by id for the actual owner
| * Make sure we only fetch the file by id for the actual ownerJulius Härtl2019-08-011-1/+1
| | | | | | | | | | | | | | Otherwise this will fetch all mounts for the file id which is quite expensive and causes long saving times in big sharing structures Signed-off-by: Julius Härtl <jus@bitgrid.net>
* | Merge pull request #16622 from nextcloud/design/scrollbarJohn Molakvoæ2019-08-011-2/+5
|\ \ | | | | | | Standardize scrollbar color and width across Webkit and Firefox
| * | Standardize scrollbar color and width across Webkit and FirefoxJan-Christoph Borchardt2019-07-311-2/+5
| | | | | | | | | | | | Signed-off-by: Jan-Christoph Borchardt <hey@jancborchardt.net>
* | | Merge pull request #16586 from ↵Roeland Jago Douma2019-08-011-2/+77
|\ \ \ | | | | | | | | | | | | | | | | nextcloud/feature/16585_adminAuditShareCirclesRemotel/wiswedel log circles and remote shares in admin_audit
| * | | log circles and remote shares in admin_auditSascha Wiswedel2019-08-011-2/+77
|/ / / | | | | | | | | | Signed-off-by: Sascha Wiswedel <sascha.wiswedel@nextcloud.com>
* | | Merge pull request #16592 from nextcloud/bugfix/noid/federated-reshareRoeland Jago Douma2019-08-012-2/+36
|\ \ \ | | | | | | | | Fix permission check on incoming federated shares
| * | | Fix permission check on incoming federated sharesJulius Härtl2019-07-312-2/+36
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Since federated shares have their permissions set on the node, we do not need to check for parent share permissions. Otherwise reshares of incoming federated have no permission variable defined and creating them will fail Signed-off-by: Julius Härtl <jus@bitgrid.net>
* | | | [tx-robot] updated from transifexNextcloud bot2019-08-01154-402/+498
| | | |
* | | | Merge pull request #16618 from nextcloud/enh/csp/form-actionRoeland Jago Douma2019-07-315-60/+108
|\ \ \ \ | |/ / / |/| | | Add form-action CSP element
| * | | Update CSP test cases to handle the new form-actionRoeland Jago Douma2019-07-312-60/+64
| | | | | | | | | | | | | | | | Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
| * | | Add form-action CSP elementRoeland Jago Douma2019-07-313-0/+44
|/ / / | | | | | | | | | Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
* | | Merge pull request #16619 from nextcloud/bugfix/16446/theming-url-validateRoeland Jago Douma2019-07-313-43/+49
|\ \ \ | | | | | | | | Validate urls in theming settings and properly handle error messages
| * | | Validate urls in theming settings and properly handle error messagesJulius Härtl2019-07-313-43/+49
| | |/ | |/| | | | | | | Signed-off-by: Julius Härtl <jus@bitgrid.net>
* | | Merge pull request #16544 from nextcloud/bugfix/16540Roeland Jago Douma2019-07-3112-92/+226
|\ \ \ | | | | | | | | Add missing password reset page to vue
| * | | Move actual password reset to vueJulius Härtl2019-07-3112-92/+226
| | | | | | | | | | | | | | | | Signed-off-by: Julius Härtl <jus@bitgrid.net>
* | | | Merge pull request #16616 from nextcloud/dep/setEvalScriptRoeland Jago Douma2019-07-311-0/+2
|\ \ \ \ | |_|/ / |/| | | setting unsafe-eval is deprecated
| * | | setting unsafe-eval is deprecatedRoeland Jago Douma2019-07-301-0/+2
| | |/ | |/| | | | | | | | | | | | | This will be removed in a future version of Nextcloud. Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
* / | [tx-robot] updated from transifexNextcloud bot2019-07-3116-2/+646
|/ /
* | Merge pull request #16594 from ↵Joas Schilling2019-07-302-58/+0
|\ \ | | | | | | | | | | | | nextcloud/tech-debt/noid/remove-unused-checkPasswordProtectedShare Remove unused OC\Share\Share::checkPasswordProtectedShare
| * | Remove unused OC\Share\Share::checkPasswordProtectedShareMorris Jobke2019-07-292-58/+0
| | | | | | | | | | | | Signed-off-by: Morris Jobke <hey@morrisjobke.de>
* | | Merge pull request #16599 from nextcloud/fix/xss/on-favorite-fileRoeland Jago Douma2019-07-302-2/+2
|\ \ \ | | | | | | | | Fix/xss/on favorite file
| * | | prevent potential XSS via unchecked use innerHTMLMax Fichtelmann2019-07-291-1/+1
| | | | | | | | | | | | | | | | Signed-off-by: Max Fichtelmann <max.fichtelmann@procilon.de>
| * | | fix XSS when adding a file with a malicious name to favoritesMax Fichtelmann2019-07-291-1/+1
| | | | | | | | | | | | | | | | Signed-off-by: Max Fichtelmann <max.fichtelmann@procilon.de>
* | | | Merge pull request #16593 from nextcloud/fix/noid/more-precise-error-messageRoeland Jago Douma2019-07-301-3/+2
|\ \ \ \ | | | | | | | | | | More precise error message when expected filesize does not match
| * | | | More precise error message when expected filesize does not match - could be ↵Morris Jobke2019-07-291-3/+2
| | |/ / | |/| | | | | | | | | | | | | | | | | | on reading or writing side Signed-off-by: Morris Jobke <hey@morrisjobke.de>
* | | | Merge pull request #16579 from nextcloud/enh/PostLoginEventRoeland Jago Douma2019-07-306-46/+153
|\ \ \ \ | | | | | | | | | | Add proper PostLoginEvent
| * | | | Update testsRoeland Jago Douma2019-07-291-44/+71
| | | | | | | | | | | | | | | | | | | | Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
| * | | | Add proper PostLoginEventRoeland Jago Douma2019-07-295-2/+82
| |/ / / | | | | | | | | | | | | | | | | | | | | | | | | This can be used by othr mechanisms to listen for this event in a lazy fashion. Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
* | | | Merge pull request #16596 from nextcloud/bugfix/noid/vtooltip-defaultsRoeland Jago Douma2019-07-3016-74/+51
|\ \ \ \ | | | | | | | | | | Set proper defaults for v-tooltip usages
| * | | | Bump bundlesJulius Härtl2019-07-2912-68/+43
| | | | | | | | | | | | | | | | | | | | Signed-off-by: Julius Härtl <jus@bitgrid.net>
| * | | | Force defaultHtml setting of v-tooltip to be disabledJulius Härtl2019-07-294-6/+8
| | | | | | | | | | | | | | | | | | | | Signed-off-by: Julius Härtl <jus@bitgrid.net>
* | | | | Merge pull request #16595 from ↵Roeland Jago Douma2019-07-301-11/+0
|\ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | nextcloud/tech-debt/noid/no-need-to-document-the-obvious Do not document the obvious
| * | | | | Do not document the obviousMorris Jobke2019-07-291-11/+0
| | |/ / / | |/| | | | | | | | | | | | | | | | | | | | | | | This removes PHPDoc that is already available as source code type hints. Signed-off-by: Morris Jobke <hey@morrisjobke.de>
* | | | | [tx-robot] updated from transifexNextcloud bot2019-07-30136-384/+400
| |_|/ / |/| | |
* | | | Merge pull request #16502 from nextcloud/bugfix/16474Morris Jobke2019-07-292-8/+20
|\ \ \ \ | | | | | | | | | | Check the if we can actually access the storage cache for recent files
| * | | | Add additional check for read permissionsJulius Härtl2019-07-241-1/+2
| | | | | | | | | | | | | | | | | | | | Signed-off-by: Julius Härtl <jus@bitgrid.net>
| * | | | Check the if we can actually access the storage cache for recent filesJulius Härtl2019-07-242-7/+18
| | | | | | | | | | | | | | | | | | | | Signed-off-by: Julius Härtl <jus@bitgrid.net>
* | | | | Merge pull request #16591 from nextcloud/fix/noid/typo-in-commentMorris Jobke2019-07-291-1/+1
|\ \ \ \ \ | |_|/ / / |/| | | | Fix typo in comment
| * | | | Fix typo in commentMorris Jobke2019-07-291-1/+1
|/ / / / | | | | | | | | | | | | Signed-off-by: Morris Jobke <hey@morrisjobke.de>
* | | | Merge pull request #16582 from nextcloud/enh/split_up_security_middlewareRoeland Jago Douma2019-07-297-140/+238
|\ \ \ \ | | | | | | | | | | Split up security middleware
| * | | | Split up security middlewareRoeland Jago Douma2019-07-277-140/+238
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | With upcoming work for the feature policy header. Splitting this in smaller classes that just do 1 thing makes sense. I rather have a few small classes that are tiny and do 1 thing right (and we all understand what is going on) than have big ones. Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
* | | | | Merge pull request #16563 from nextcloud/enh/lostcontroller/better_exceptionsMorris Jobke2019-07-295-21/+53
|\ \ \ \ \ | | | | | | | | | | | | Use proper exception in lostController
| * | | | | Use proper exception in lostControllerRoeland Jago Douma2019-07-275-21/+53
| |/ / / / | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | There is no need to log the expcetion of most of the stuff here. We should properly log them but an exception is excessive. This moves it to a proper exception which we can catch and then log. The other exceptions will still be fully logged. Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
* | | | | Merge pull request #16581 from nextcloud/dep/strict_csps_can_goRoeland Jago Douma2019-07-293-0/+3
|\ \ \ \ \ | | | | | | | | | | | | No need to have these classes we tighten the default CSP from time to time
| * | | | | No need to have these classes we tighten the default CSP from time toRoeland Jago Douma2019-07-273-0/+3
| |/ / / / | | | | | | | | | | | | | | | | | | | | | | | | | time Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
* | | | | Merge pull request #16570 from nextcloud/enh/supress_touch_errorRoeland Jago Douma2019-07-291-2/+2
|\ \ \ \ \ | |_|_|/ / |/| | | | Supress warnings touch can generate
| * | | | Supress warnings touch can generateRoeland Jago Douma2019-07-261-2/+2
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | We already catch the result value. Having the warning being logged explicitly doesn't help and polutes the log. Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
* | | | | Merge pull request #16571 from nextcloud/enh/update_preview_controllerMorris Jobke2019-07-291-6/+1
|\ \ \ \ \ | |_|_|_|/ |/| | | | Update PreviewController
| * | | | Update PreviewControllerRoeland Jago Douma2019-07-261-6/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | The constructor is called with the userId. However if a user is not logged in this is null. Which means that we get an exception instead of this being handled gracefully in the middleware. There are cleaner solutions. But this is the solution that is the easiest to apply without lots of work and risk of breaking things (handling the logged in middleware before initializing the controller etc). Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
generated by cgit v1.2.3 (git 2.39.1) at 2025-02-02 08:38:04 +0000