summaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
...
* Set oc_token to httponlyLukas Reschke2012-10-161-1/+1
|
* Use /dev/urandom instead of /dev/randomLukas Reschke2012-10-151-5/+5
| | | | The usage of /dev/urandom is enough secure
* Show a warning in the installer if no secure RNG is availableLukas Reschke2012-10-143-3/+35
|
* Fallback to /dev/random if openssl_random_pseudo_bytes not availableLukas Reschke2012-10-141-6/+14
|
* Doublehash the token to prevent timing attacksLukas Reschke2012-10-142-3/+3
|
* Sanitize file namesLukas Reschke2012-10-121-1/+1
|
* Sanitize file namesLukas Reschke2012-10-121-2/+2
|
* escapeHTML functionLukas Reschke2012-10-121-0/+9
|
* Update FullCalendar to 1.5.4Lukas Reschke2012-10-125-34/+30
|
* Don't try to add invalid cards via CardDAV.Thomas Tanghus2012-10-111-0/+3
|
* 4.0.8v4.0.8Frank Karlitschek2012-10-091-3/+3
|
* destroy invalid sessionsArthur Schiwon2012-10-081-10/+14
|
* Remove the webodf sourcesLukas Reschke2012-10-06281-105051/+5
| | | | This is a backport of 683a0c1 /cc @DeepDiver1975
* Sanitize user inputLukas Reschke2012-10-061-3/+3
| | | | This is a backport of 4f7c7c6 /cc @DeepDiver1975
* Use openssl_random_pseudo_bytes if availableLukas Reschke2012-10-063-6/+28
| | | | This is a backport of ef57e92 /cc @DeepDiver1975
* Trim trailing whitespace from version.Thomas Tanghus2012-09-261-1/+1
|
* fix default values in table fscacheArthur Schiwon2012-09-261-8/+4
|
* Passwords containing a ":" don't work with this explodeLukas Reschke2012-09-251-2/+2
| | | | Thanks to mETz
* Sanitize user inputLukas Reschke2012-09-221-2/+2
|
* Don't store users password hash when exporting.Tom Needham2012-09-191-13/+1
|
* Only try to delete migration.db if it was created.Tom Needham2012-09-181-10/+14
|
* Allow exporting of users from any user backend, fixed oc-1645Tom Needham2012-09-181-10/+4
|
* LDAP: transliterate other latin characters to ASCII when creating owncloud ↵Arthur Schiwon2012-09-181-0/+4
| | | | names. Already created usernames are not being affected. Fixes ugly names with removed Umlauts, chars with accents and likes.
* Fix for cyrillic folder names. ref#oc-1683Victor Dubiniuk2012-09-111-1/+1
|
* Merge pull request #11 from ne704/typosLukas Reschke2012-09-101-1/+1
|\ | | | | fix message about 'apps' directory
| * fix message about 'apps' directoryNiko Ehrenfeuchter2012-09-101-1/+1
| |
* | Merge pull request #10 from ne704/typosLukas Reschke2012-09-102-16/+16
|\| | | | | Typos
| * mark unused variablesNiko Ehrenfeuchter2012-09-101-2/+2
| |
| * fix typosNiko Ehrenfeuchter2012-09-101-2/+2
| |
| * fix typos + copy-paste errors in commentsNiko Ehrenfeuchter2012-09-102-12/+12
| |
* | back port better input validation in calendar from apps repoGeorg Ehrke2012-08-311-1/+7
| |
* | LDAP: check for existing username from other backends when creating one for ↵Arthur Schiwon2012-08-292-24/+31
| | | | | | | | an LDAP user or group. Fixes oc-1551 in stable4. Also optimizes groupExists() function as side effect.
* | Gitorious => GithubLukas Reschke2012-08-261-1/+1
| |
* | I like TLS/SSLLukas Reschke2012-08-261-5/+4
| |
* | Sanitizing the user input to prevent a reflected XSS. Thanks to Nico Golde ↵Lukas Reschke2012-08-211-38/+38
| | | | | | | | (ngolde.de)
* | Fix deletion for browser that do not support onBeforeUnload, fixes oc-1534Arthur Schiwon2012-08-201-12/+18
| |
* | Add a missing exit();Lukas Reschke2012-08-181-0/+1
| |
* | Use SCRIPT_NAME instead of PHP_SELF which won't send the PATH_INFO, this ↵Lukas Reschke2012-08-181-1/+1
| | | | | | | | prevents XSS in old browsers. Thanks to Nico Golde.
* | backport 1bccc80996e270f928c207cdd3090f4284abaea5Georg Ehrke2012-08-164-1/+10
|/
* 4.0.7v4.0.7Frank Karlitschek2012-08-141-14/+14
| | | | and remove some ^M while at it
* Disable user enumerationLukas Reschke2012-08-142-8/+14
|
* Check blacklist when renaming filesMichael Gapczynski2012-08-132-3/+12
|
* Also check some other filesLukas Reschke2012-08-131-1/+1
|
* Disable listing of all usersLukas Reschke2012-08-132-6/+13
|
* Fix OC_Connector_Sabre_Locks for SQLiteJakob Sack2012-08-121-2/+4
|
* Check if webfinger is enabledLukas Reschke2012-08-102-1/+9
|
* Don't return file handle if the mode supports writing and the file is not ↵Michael Gapczynski2012-08-101-0/+19
| | | | | | | writable Conflicts: apps/files_sharing/sharedstorage.php
* Validate cookie to prevent auth bypasses.Lukas Reschke2012-08-101-1/+1
|
* Added XSRF checkLukas Reschke2012-08-101-0/+1
|
* Missed an "echo"Lukas Reschke2012-08-091-1/+1
|
generated by cgit v1.2.3 (git 2.39.1) at 2025-04-09 05:58:34 +0000