aboutsummaryrefslogtreecommitdiffstats
path: root/config
Commit message (Collapse)AuthorAgeFilesLines
* feat: make search path for BinaryFinder customizable.Reno Reckling2024-09-201-0/+16
| | | | | | | | | | | | | This feature is important for nextcloud running on distributions like NixOS, where all the standard search paths do not exist. Also added tests. This fixes issue #43922 Co-authored-by: Daniel <mail@danielkesselberg.de> Signed-off-by: Reno Reckling <e-github@wthack.de>
* chore: Update trashbin retention documentation with exceeded quota detailsChristopher Ng2024-09-111-0/+5
| | | | Signed-off-by: Christopher Ng <chrng8@gmail.com>
* docs(config): Explain how to retrieve navigation entry IDs for 'defaultapp' ↵provokateurin2024-09-091-10/+10
| | | | | | | option Signed-off-by: provokateurin <kate@provokateurin.de> Signed-off-by: nextcloud-command <nextcloud-command@users.noreply.github.com>
* docs: Add information how forbidden filenames are handled on existing files.Ferdinand Thiessen2024-08-211-2/+6
| | | | Signed-off-by: Ferdinand Thiessen <opensource@fthiessen.de>
* Merge pull request #45193 from bahman026/update-config-sample-fileAndy Scherzinger2024-08-061-0/+3
|\ | | | | docs: added customclient_fdroid key to the config.sample.php file
| * docs: added customclient_fdroid config key to config.sample.php fileBahman Jafarzadeh2024-07-091-0/+3
| | | | | | | | | | Co-authored-by: Josh <josh.t.richards@gmail.com> Signed-off-by: Bahman Jafarzadeh <bahman026@gmail.com>
* | Merge pull request #46229 from nextcloud/jtr/fix-smtpdebug-cfg-sampleAndy Scherzinger2024-08-061-0/+2
|\ \ | | | | | | fix(config): Clarify smtp debugging config option usage
| * | fix(config) : Clarity smtp debugging config option usage Josh2024-07-011-0/+2
| |/ | | | | | | | | Requires temporary `loglevel` adjustment "99%" (made up statistic) of the time as currently implemented. Signed-off-by: Josh <josh.t.richards@gmail.com>
* | fix: Max file size for metadata generationGit'Fellow2024-08-051-0/+9
| | | | | | | | | | | | Signed-off-by: Git'Fellow <12234510+solracsf@users.noreply.github.com> Co-Authored-By: Louis <louis@chmn.me> Signed-off-by: Richard Steinmetz <richard@steinmetz.cloud>
* | fix: don't break doc builds / fix imaginary config sample formattingJosh2024-07-311-8/+8
| | | | | | Signed-off-by: Josh <josh.t.richards@gmail.com>
* | feat(log): Allow to combine log.conditions to only log (app&user)Joas Schilling2024-07-301-0/+12
| | | | | | | | Signed-off-by: Joas Schilling <coding@schilljs.com>
* | feat(preview): move previews for imaginary pdf to own class ImaginaryPDFernolf2024-07-251-1/+7
| | | | | | | | | | | | Signed-off-by: ernolf <raphael.gradenwitz@googlemail.com> Signed-off-by: Daniel Kesselberg <mail@danielkesselberg.de>
* | feat(security): restrict admin actions to IP rangesBenjamin Gaussorgues2024-07-191-0/+10
| | | | | | | | Signed-off-by: Benjamin Gaussorgues <benjamin.gaussorgues@nextcloud.com>
* | feat: Add `forbidden_filename_basenames` config optionFerdinand Thiessen2024-07-151-0/+12
| | | | | | | | | | | | | | | | This allows to configure forbidden filenames (the full filename like `.htaccess`) and also forbidden basenames like `com0` where `com0`, `com0.txt` and `com0.tar.gz` will match. We need this as only using basenames was too restrictive and will cause problems on some systems when updating. Signed-off-by: Ferdinand Thiessen <opensource@fthiessen.de>
* | feat: Add `IFilenameValidator` to have one consistent place for filename ↵Ferdinand Thiessen2024-07-091-6/+18
|/ | | | | | | | validation Co-authored-by: Ferdinand Thiessen <opensource@fthiessen.de> Co-authored-by: Côme Chilliet <91878298+come-nc@users.noreply.github.com> Signed-off-by: Ferdinand Thiessen <opensource@fthiessen.de>
* feat: reduce available languages per config value "reduce_to_languages"Misha M.-Kupriyanov2024-07-011-1/+10
| | | | | | | | | | | | Example: restrict to en, de, es, fr, it' languages ./occ config:system:set reduce_to_languages 0 --value en ./occ config:system:set reduce_to_languages 1 --value de ./occ config:system:set reduce_to_languages 2 --value es ./occ config:system:set reduce_to_languages 3 --value fr ./occ config:system:set reduce_to_languages 4 --value it Signed-off-by: Misha M.-Kupriyanov <kupriyanov@strato.de>
* chore: Add SPDX headerAndy Scherzinger2024-06-061-0/+3
| | | | Signed-off-by: Andy Scherzinger <info@andy-scherzinger.de>
* Merge pull request #45026 from nextcloud/fix/token-updateChristoph Wurst2024-05-161-1/+1
|\ | | | | Avoid updating the same oc_authtoken row twice
| * docs: Update token_auth_activity_update default value to match implementationJulius Härtl2024-04-291-1/+1
| | | | | | | | Signed-off-by: Julius Härtl <jus@bitgrid.net>
* | feat(exception-template): allow to link to specific documentation for how to ↵Simon L.2024-05-141-0/+5
| | | | | | | | | | | | retreive server log Signed-off-by: Simon L <szaimen@e.mail.de>
* | chore: Add SPDX headerAndy Scherzinger2024-05-101-0/+6
|/ | | | Signed-off-by: Andy Scherzinger <info@andy-scherzinger.de>
* feat: add request id as comment to all queriesRobin Appelman2024-04-171-2/+9
| | | | Signed-off-by: Robin Appelman <robin@icewind.nl>
* feat(settings): Allow to sort groups in the account management alphabeticallyFerdinand Thiessen2024-03-271-0/+1
| | | | | | | We can do this purly in the frontend - but when enforced from the backend using the existing system config, we need to follow the requirement. We then show a warning about the configuration. Signed-off-by: Ferdinand Thiessen <opensource@fthiessen.de>
* Merge pull request #44438 from nextcloud/feat/login-form-timeoutFerdinand Thiessen2024-03-251-0/+8
|\ | | | | feat(login): Clear login form (password) after IDLE timeout
| * feat(login): Clear login form (password) after IDLE timeoutFerdinand Thiessen2024-03-251-0/+8
| | | | | | | | | | | | | | | | | | For security reasons it is recommended to stop the login process at a defined time, this could prevent password leaks by e.g. user forgetting that they entered their password on public devices. Enforced e.g. by the BSI ORP.4.A13 rule. Signed-off-by: Ferdinand Thiessen <opensource@fthiessen.de>
* | fix(DB): Sanitize `host` parameter for postgres databases when IPv6 address ↵Ferdinand Thiessen2024-03-251-3/+3
|/ | | | | | | | | is passed Doctrine is using `pg_connect` with the `host` parameter, this does not allow IPv6 addresses in URI notation. So we need to extract the IP address and pass it directly Signed-off-by: Ferdinand Thiessen <opensource@fthiessen.de>
* docs(config.sample.php): Josh2024-03-111-1/+3
| | | | | | | When setting a custom `updatedirectory` it's important that it not be located within the Server installation folder structure. Partially addresses nextcloud/updater#463 Signed-off-by: Josh <josh.t.richards@gmail.com>
* fix(config): deprecated enable_file_metadataMaxence Lange2024-03-111-11/+0
| | | Signed-off-by: Maxence Lange <maxence@artificial-owl.com>
* in text: "bruteforce" > "brute force"Alexander Müller2024-03-031-3/+3
| | | | | | | | | In description text we should use correct spelling which is "brute force" or "brute-force", not "bruteforce". In other parts of the documentation, "brute force" is used: https://docs.nextcloud.com/server/latest/admin_manual/configuration_server/bruteforce_configuration.html See also https://en.wikipedia.org/wiki/Brute-force_attack Signed-off-by: Alexander Müller <28591861+alexanderdd@users.noreply.github.com>
* fix: Also expose forbidden filename character in the capabilitiesFerdinand Thiessen2024-02-281-0/+2
| | | | Signed-off-by: Ferdinand Thiessen <opensource@fthiessen.de>
* feat(db): Make dirty query logging available in productionChristoph Wurst2024-01-301-0/+9
| | | | Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
* fix(db): Fix replica password example configChristoph Wurst2024-01-231-2/+2
| | | | Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
* Merge pull request #41998 from nextcloud/enh/read-replicaDaniel2023-12-271-0/+8
|\
| * enh: Implement PrimaryReadReplicaConnectionJulius Härtl2023-12-161-0/+8
| | | | | | | | Signed-off-by: Julius Härtl <jus@bitgrid.net>
* | Add global accessibility switchLouis Chemineau2023-12-191-0/+7
|/ | | | Signed-off-by: Louis Chemineau <louis@chmn.me>
* feat(dav): dispatch out-of-office started and ended eventsRichard Steinmetz2023-11-231-0/+10
| | | | Signed-off-by: Richard Steinmetz <richard@steinmetz.cloud>
* feat: allow multiple libreoffice invocationsDaniel Kesselberg2023-11-131-8/+0
| | | | | | | | | | | | | | | | | | | | | LibreOffice only allows one invocation per user profile.[^1] The office provider set the user profile to /tmp/owncloud-instanceid and therefore only one invocation per instance is allowed. This was introduced a while ago, yet it's unclear if this was intentionally or just a side effect.[^2] The limitation on one invocation leads to the situation that the preview generation only works for a couple of files if you upload a whole folder of emf or word files. This commit removes the limitation by using a new user profile for each preview. That's done by using instance id plus file id as postfix for getTemporaryFolder. This has some drawbacks: - Overload protection: If you upload 100 emf files, you may end up with 100 LibreOffice invocations. Though, you can use preview_concurrency_new to limit the number of previews that can be generated concurrently when php-sysvsem is available. - New profile: I assume it takes a few bits to generate a fresh LibreOffice user profile. It appears that there is no way to ask LibreOffice to not create a profile and just work with the defaults. The profile will be cleaned after use by our temp manager. - Remove the configuration option preview_office_cl_parameters: This is not strictly necessary yet, but if you set the configuration option, the generated path for the user profile is also missing. The configuration option is not well documented (e.g., it's unclear that the last option needs to be --outdir) and actually, there should be no reason to change it after all. [^1]: https://wiki.documentfoundation.org/UserProfile [^2]: https://github.com/owncloud/core/pull/9784 Signed-off-by: Daniel Kesselberg <mail@danielkesselberg.de>
* feat: add preview provider for emf files based on officeDaniel Kesselberg2023-11-131-1/+2
| | | | Signed-off-by: Daniel Kesselberg <mail@danielkesselberg.de>
* Add unified search toggle in configfenn-cs2023-11-101-0/+7
| | | | | | | | | The new global search UI is new and might be unstable, hence we are giving users the option to use the old unified search UI, if the encounter signficant bottlenecks. Signed-off-by: fenn-cs <fenn25.fn@gmail.com> Signed-off-by: nextcloud-command <nextcloud-command@users.noreply.github.com>
* config.sample.php: fix incorrect theme name + add a missing oneJosh Richards2023-10-151-1/+1
| | | | | Fixes #40908 Signed-off-by: Josh Richards <josh.t.richards@gmail.com>
* address reviewSimon L2023-10-061-0/+6
| | | | Signed-off-by: Simon L <szaimen@e.mail.de>
* fix(files): disallow illegal charactersJohn Molakvoæ (skjnldsv)2023-10-041-0/+11
| | | | Signed-off-by: John Molakvoæ (skjnldsv) <skjnldsv@protonmail.com>
* Merge pull request #39978 from joshtrichards/jr-cfg-sample-trystack-removeArthur Schiwon2023-08-291-1/+0
|\ | | | | (config sample) Remove defunct trystack.org url
| * (config sample) Remove defunct trystack.org urlJosh Richards2023-08-191-1/+0
| | | | | | | | | | Fixes nextcloud/documentation#10434 and nextcloud/documentation#9400 Signed-off-by: Josh Richards <josh.t.richards@gmail.com>
* | feat(security): Add a "testing mode" for bruteforce protection that doesn't ↵Joas Schilling2023-08-211-0/+13
|/ | | | | | sleep Signed-off-by: Joas Schilling <coding@schilljs.com>
* docs(config): inform about log.backtraceArthur Schiwon2023-07-171-0/+10
| | | | Signed-off-by: Arthur Schiwon <blizzz@arthur-schiwon.de>
* style(config): alphabetise preview providersJoda Stößer2023-06-191-11/+11
| | | | Signed-off-by: Joda Stößer <git@simjo.st>
* Changes after code review.Dominik Fuchß2023-06-131-2/+2
| | | | Signed-off-by: Dominik Fuchß <develop@fuchss.org>
* Add config variable for curl timeoutDominik Fuchß2023-06-131-0/+5
| | | | | | Add the config variable for curl calls ("remote_curl_timeout"). E.g., needed for nextcloud federation. Signed-off-by: Dominik Fuchß <develop@fuchss.org>
* allow to specify upgrade.cli-upgrade-link in order to link to the correct ↵Simon L2023-06-101-0/+5
| | | | | | documentation Signed-off-by: Simon L <szaimen@e.mail.de>