aboutsummaryrefslogtreecommitdiffstats
path: root/config
Commit message (Collapse)AuthorAgeFilesLines
* chore(bruteforce): allows to configure max attempts before request abortBenjamin Gaussorgues2024-12-031-0/+11
| | | | Signed-off-by: Benjamin Gaussorgues <benjamin.gaussorgues@nextcloud.com>
* chore(config): set min supported desktop to `2.7.0`John Molakvoæ2024-11-271-2/+2
| | | | | Signed-off-by: John Molakvoæ <skjnldsv@users.noreply.github.com> Signed-off-by: skjnldsv <skjnldsv@protonmail.com>
* feat(config): add `maximum.supported.desktop.version`skjnldsv2024-11-271-0/+9
| | | | Signed-off-by: skjnldsv <skjnldsv@protonmail.com>
* feat(Mailer): add "null" SMTP transport modeThomas Lehmann2024-11-191-1/+4
| | | | | | | | | | | | | | | | == Goal Allow disabling mail delivery altogether. == Usecase If mails ought to be send by other means than rendering messages from templates and sending them via SMTP-like protocols. Example: listening to specific Nextcloud events and pass parameters to a centralized (i.e. REST-based) API that sends e-mails. Signed-off-by: Thomas Lehmann <t.lehmann@strato.de>
* Merge pull request #45330 from nextcloud/remove-locking-config-sampleJohn Molakvoæ2024-11-151-15/+0
|\
| * fix: remove mention of disabling file locking from config sampleremove-locking-config-sampleRobin Appelman2024-09-191-15/+0
| | | | | | | | Signed-off-by: Robin Appelman <robin@icewind.nl>
* | docs: update overwrite.cli.url wordingenh/noid/update-o.c.u-wordingSimon L.2024-11-041-0/+2
| | | | | | | | Signed-off-by: Simon L. <szaimen@e.mail.de>
* | Merge pull request #42610 from hellodarkness/patch-1John Molakvoæ2024-10-301-2/+4
|\ \
| * | fix: adjust `compromized` British wordingJohn Molakvoæ2024-10-291-1/+1
| | | | | | | | | | | | Co-authored-by: Kate <26026535+provokateurin@users.noreply.github.com> Signed-off-by: John Molakvoæ <skjnldsv@users.noreply.github.com>
| * | Update config.sample.phpHelloDarkness2024-01-061-2/+4
| | | | | | | | | | | | | | | | | | Comments to clarify the purpose of session_keepalive. Fixes issue in Nextcloud Documentation (https://github.com/nextcloud/documentation/issues/7244) Signed-off-by: HelloDarkness <111370255+hellodarkness@users.noreply.github.com>
* | | feat(bruteforce): Allow forcing the database throttlerbugfix/noid/allow-to-force-db-throttlerJoas Schilling2024-10-241-1/+12
| | | | | | | | | | | | | | | | | | | | | | | | Using the database is most likely worse for performance, but makes investigating issues a lot easier as it's possible to look directly at the table to see all logged remote addresses and actions. Signed-off-by: Joas Schilling <coding@schilljs.com>
* | | feat(files): Expose chunked upload config via capabilitiesfeat/files/chunked-upload-config-capabilitiesprovokateurin2024-10-211-0/+18
| | | | | | | | | | | | Signed-off-by: provokateurin <kate@provokateurin.de>
* | | feat: configurable request timeout for carddav syncPablo Zmdl2024-10-171-0/+7
| | | | | | | | | | | | | | | | | | | | | | | | Big federated setups may need a longer timeout, which they now can configure. Signed-off-by: Pablo Zmdl <pablo@nextcloud.com> Co-authored-by: Josh <josh.t.richards@gmail.com>
* | | feat: make search path for BinaryFinder customizable.Reno Reckling2024-09-201-0/+16
| |/ |/| | | | | | | | | | | | | | | | | | | | | | | This feature is important for nextcloud running on distributions like NixOS, where all the standard search paths do not exist. Also added tests. This fixes issue #43922 Co-authored-by: Daniel <mail@danielkesselberg.de> Signed-off-by: Reno Reckling <e-github@wthack.de>
* | chore: Update trashbin retention documentation with exceeded quota detailsChristopher Ng2024-09-111-0/+5
| | | | | | | | Signed-off-by: Christopher Ng <chrng8@gmail.com>
* | docs(config): Explain how to retrieve navigation entry IDs for 'defaultapp' ↵provokateurin2024-09-091-10/+10
| | | | | | | | | | | | | | option Signed-off-by: provokateurin <kate@provokateurin.de> Signed-off-by: nextcloud-command <nextcloud-command@users.noreply.github.com>
* | docs: Add information how forbidden filenames are handled on existing files.Ferdinand Thiessen2024-08-211-2/+6
| | | | | | | | Signed-off-by: Ferdinand Thiessen <opensource@fthiessen.de>
* | Merge pull request #45193 from bahman026/update-config-sample-fileAndy Scherzinger2024-08-061-0/+3
|\ \ | | | | | | docs: added customclient_fdroid key to the config.sample.php file
| * | docs: added customclient_fdroid config key to config.sample.php fileBahman Jafarzadeh2024-07-091-0/+3
| | | | | | | | | | | | | | | Co-authored-by: Josh <josh.t.richards@gmail.com> Signed-off-by: Bahman Jafarzadeh <bahman026@gmail.com>
* | | Merge pull request #46229 from nextcloud/jtr/fix-smtpdebug-cfg-sampleAndy Scherzinger2024-08-061-0/+2
|\ \ \ | | | | | | | | fix(config): Clarify smtp debugging config option usage
| * | | fix(config) : Clarity smtp debugging config option usage Josh2024-07-011-0/+2
| |/ / | | | | | | | | | | | | Requires temporary `loglevel` adjustment "99%" (made up statistic) of the time as currently implemented. Signed-off-by: Josh <josh.t.richards@gmail.com>
* | | fix: Max file size for metadata generationGit'Fellow2024-08-051-0/+9
| | | | | | | | | | | | | | | | | | Signed-off-by: Git'Fellow <12234510+solracsf@users.noreply.github.com> Co-Authored-By: Louis <louis@chmn.me> Signed-off-by: Richard Steinmetz <richard@steinmetz.cloud>
* | | fix: don't break doc builds / fix imaginary config sample formattingJosh2024-07-311-8/+8
| | | | | | | | | Signed-off-by: Josh <josh.t.richards@gmail.com>
* | | feat(log): Allow to combine log.conditions to only log (app&user)Joas Schilling2024-07-301-0/+12
| | | | | | | | | | | | Signed-off-by: Joas Schilling <coding@schilljs.com>
* | | feat(preview): move previews for imaginary pdf to own class ImaginaryPDFernolf2024-07-251-1/+7
| | | | | | | | | | | | | | | | | | Signed-off-by: ernolf <raphael.gradenwitz@googlemail.com> Signed-off-by: Daniel Kesselberg <mail@danielkesselberg.de>
* | | feat(security): restrict admin actions to IP rangesBenjamin Gaussorgues2024-07-191-0/+10
| | | | | | | | | | | | Signed-off-by: Benjamin Gaussorgues <benjamin.gaussorgues@nextcloud.com>
* | | feat: Add `forbidden_filename_basenames` config optionFerdinand Thiessen2024-07-151-0/+12
| | | | | | | | | | | | | | | | | | | | | | | | This allows to configure forbidden filenames (the full filename like `.htaccess`) and also forbidden basenames like `com0` where `com0`, `com0.txt` and `com0.tar.gz` will match. We need this as only using basenames was too restrictive and will cause problems on some systems when updating. Signed-off-by: Ferdinand Thiessen <opensource@fthiessen.de>
* | | feat: Add `IFilenameValidator` to have one consistent place for filename ↵Ferdinand Thiessen2024-07-091-6/+18
|/ / | | | | | | | | | | | | | | validation Co-authored-by: Ferdinand Thiessen <opensource@fthiessen.de> Co-authored-by: Côme Chilliet <91878298+come-nc@users.noreply.github.com> Signed-off-by: Ferdinand Thiessen <opensource@fthiessen.de>
* | feat: reduce available languages per config value "reduce_to_languages"Misha M.-Kupriyanov2024-07-011-1/+10
| | | | | | | | | | | | | | | | | | | | | | | | Example: restrict to en, de, es, fr, it' languages ./occ config:system:set reduce_to_languages 0 --value en ./occ config:system:set reduce_to_languages 1 --value de ./occ config:system:set reduce_to_languages 2 --value es ./occ config:system:set reduce_to_languages 3 --value fr ./occ config:system:set reduce_to_languages 4 --value it Signed-off-by: Misha M.-Kupriyanov <kupriyanov@strato.de>
* | chore: Add SPDX headerAndy Scherzinger2024-06-061-0/+3
| | | | | | | | Signed-off-by: Andy Scherzinger <info@andy-scherzinger.de>
* | Merge pull request #45026 from nextcloud/fix/token-updateChristoph Wurst2024-05-161-1/+1
|\ \ | | | | | | Avoid updating the same oc_authtoken row twice
| * | docs: Update token_auth_activity_update default value to match implementationJulius Härtl2024-04-291-1/+1
| | | | | | | | | | | | Signed-off-by: Julius Härtl <jus@bitgrid.net>
* | | feat(exception-template): allow to link to specific documentation for how to ↵Simon L.2024-05-141-0/+5
| | | | | | | | | | | | | | | | | | retreive server log Signed-off-by: Simon L <szaimen@e.mail.de>
* | | chore: Add SPDX headerAndy Scherzinger2024-05-101-0/+6
|/ / | | | | | | Signed-off-by: Andy Scherzinger <info@andy-scherzinger.de>
* | feat: add request id as comment to all queriesRobin Appelman2024-04-171-2/+9
| | | | | | | | Signed-off-by: Robin Appelman <robin@icewind.nl>
* | feat(settings): Allow to sort groups in the account management alphabeticallyFerdinand Thiessen2024-03-271-0/+1
| | | | | | | | | | | | | | We can do this purly in the frontend - but when enforced from the backend using the existing system config, we need to follow the requirement. We then show a warning about the configuration. Signed-off-by: Ferdinand Thiessen <opensource@fthiessen.de>
* | Merge pull request #44438 from nextcloud/feat/login-form-timeoutFerdinand Thiessen2024-03-251-0/+8
|\ \ | | | | | | feat(login): Clear login form (password) after IDLE timeout
| * | feat(login): Clear login form (password) after IDLE timeoutFerdinand Thiessen2024-03-251-0/+8
| | | | | | | | | | | | | | | | | | | | | | | | | | | For security reasons it is recommended to stop the login process at a defined time, this could prevent password leaks by e.g. user forgetting that they entered their password on public devices. Enforced e.g. by the BSI ORP.4.A13 rule. Signed-off-by: Ferdinand Thiessen <opensource@fthiessen.de>
* | | fix(DB): Sanitize `host` parameter for postgres databases when IPv6 address ↵Ferdinand Thiessen2024-03-251-3/+3
|/ / | | | | | | | | | | | | | | | | is passed Doctrine is using `pg_connect` with the `host` parameter, this does not allow IPv6 addresses in URI notation. So we need to extract the IP address and pass it directly Signed-off-by: Ferdinand Thiessen <opensource@fthiessen.de>
* | docs(config.sample.php): Josh2024-03-111-1/+3
| | | | | | | | | | | | | | When setting a custom `updatedirectory` it's important that it not be located within the Server installation folder structure. Partially addresses nextcloud/updater#463 Signed-off-by: Josh <josh.t.richards@gmail.com>
* | fix(config): deprecated enable_file_metadataMaxence Lange2024-03-111-11/+0
| | | | | | Signed-off-by: Maxence Lange <maxence@artificial-owl.com>
* | in text: "bruteforce" > "brute force"Alexander Müller2024-03-031-3/+3
| | | | | | | | | | | | | | | | | | In description text we should use correct spelling which is "brute force" or "brute-force", not "bruteforce". In other parts of the documentation, "brute force" is used: https://docs.nextcloud.com/server/latest/admin_manual/configuration_server/bruteforce_configuration.html See also https://en.wikipedia.org/wiki/Brute-force_attack Signed-off-by: Alexander Müller <28591861+alexanderdd@users.noreply.github.com>
* | fix: Also expose forbidden filename character in the capabilitiesFerdinand Thiessen2024-02-281-0/+2
| | | | | | | | Signed-off-by: Ferdinand Thiessen <opensource@fthiessen.de>
* | feat(db): Make dirty query logging available in productionChristoph Wurst2024-01-301-0/+9
| | | | | | | | Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
* | fix(db): Fix replica password example configChristoph Wurst2024-01-231-2/+2
|/ | | | Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
* Merge pull request #41998 from nextcloud/enh/read-replicaDaniel2023-12-271-0/+8
|\
| * enh: Implement PrimaryReadReplicaConnectionJulius Härtl2023-12-161-0/+8
| | | | | | | | Signed-off-by: Julius Härtl <jus@bitgrid.net>
* | Add global accessibility switchLouis Chemineau2023-12-191-0/+7
|/ | | | Signed-off-by: Louis Chemineau <louis@chmn.me>
* feat(dav): dispatch out-of-office started and ended eventsRichard Steinmetz2023-11-231-0/+10
| | | | Signed-off-by: Richard Steinmetz <richard@steinmetz.cloud>
* feat: allow multiple libreoffice invocationsDaniel Kesselberg2023-11-131-8/+0
| | | | | | | | | | | | | | | | | | | | | LibreOffice only allows one invocation per user profile.[^1] The office provider set the user profile to /tmp/owncloud-instanceid and therefore only one invocation per instance is allowed. This was introduced a while ago, yet it's unclear if this was intentionally or just a side effect.[^2] The limitation on one invocation leads to the situation that the preview generation only works for a couple of files if you upload a whole folder of emf or word files. This commit removes the limitation by using a new user profile for each preview. That's done by using instance id plus file id as postfix for getTemporaryFolder. This has some drawbacks: - Overload protection: If you upload 100 emf files, you may end up with 100 LibreOffice invocations. Though, you can use preview_concurrency_new to limit the number of previews that can be generated concurrently when php-sysvsem is available. - New profile: I assume it takes a few bits to generate a fresh LibreOffice user profile. It appears that there is no way to ask LibreOffice to not create a profile and just work with the defaults. The profile will be cleaned after use by our temp manager. - Remove the configuration option preview_office_cl_parameters: This is not strictly necessary yet, but if you set the configuration option, the generated path for the user profile is also missing. The configuration option is not well documented (e.g., it's unclear that the last option needs to be --outdir) and actually, there should be no reason to change it after all. [^1]: https://wiki.documentfoundation.org/UserProfile [^2]: https://github.com/owncloud/core/pull/9784 Signed-off-by: Daniel Kesselberg <mail@danielkesselberg.de>
generated by cgit v1.2.3 (git 2.39.1) at 2024-12-22 18:45:53 +0000