summaryrefslogtreecommitdiffstats
path: root/core/routes.php
Commit message (Collapse)AuthorAgeFilesLines
* Allow some apps to have root URLs in their own routing fileJoas Schilling2020-04-181-12/+0
| | | | Signed-off-by: Joas Schilling <coding@schilljs.com>
* Start with webauthnRoeland Jago Douma2020-03-311-0/+4
| | | | | Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl> Signed-off-by: npmbuildbot[bot] <npmbuildbot[bot]@users.noreply.github.com>
* Add a dedicated page for the recommended apps installationChristoph Wurst2019-12-121-0/+1
| | | | | Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at> Signed-off-by: npmbuildbot[bot] <npmbuildbot[bot]@users.noreply.github.com>
* Update license headersChristoph Wurst2019-12-051-5/+5
| | | | Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
* Direct editing API to allow file editing using a one-time token forJulius Härtl2019-11-271-1/+2
| | | | | | mobile apps Signed-off-by: Julius Härtl <jus@bitgrid.net>
* Do not create Application instances directlyChristoph Wurst2019-10-111-1/+2
| | | | Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
* Allow rotation of apppasswordsRoeland Jago Douma2019-08-271-0/+1
| | | | Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
* Remote wipe supportRoeland Jago Douma2019-05-201-0/+2
| | | | | | | | This allows a user to mark a token for remote wipe. Clients that support this can then wipe the device properly. Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl> Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
* Merge pull request #15304 from nextcloud/enh/2fa_setup_at_loginRoeland Jago Douma2019-05-171-0/+3
|\ | | | | 2FA setup during login
| * Allow 2FA to be setup on first loginRoeland Jago Douma2019-05-171-0/+3
| | | | | | | | | | | | | | | | | | Once 2FA is enforced for a user and they have no 2FA setup yet this will now prompt them with a setup screen. Given that providers are enabled that allow setup then. Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl> Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
* | Allow clients to delete their own apptokenRoeland Jago Douma2019-05-171-0/+1
|/ | | | | | Fixes #15480 Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
* Allow to send the password of protected conversationsJoas Schilling2019-05-061-0/+1
| | | | Signed-off-by: Joas Schilling <coding@schilljs.com>
* Make sure urlParams are correctly injected in global routesJoas Schilling2019-03-111-90/+11
| | | | Signed-off-by: Joas Schilling <coding@schilljs.com>
* Implement search and rename in backendJulius Härtl2019-03-011-0/+3
| | | | Signed-off-by: Julius Härtl <jus@bitgrid.net>
* Allow to create collectionsJoas Schilling2019-03-011-0/+1
| | | | Signed-off-by: Joas Schilling <coding@schilljs.com>
* Add a controller with the most important methodsJoas Schilling2019-03-011-0/+5
| | | | Signed-off-by: Joas Schilling <coding@schilljs.com>
* Login flow V2Roeland Jago Douma2019-02-251-0/+8
| | | | | | | | This adds the new login flow. The desktop client will open up a browser and poll a returned endpoint at regular intervals to check if the flow is done. Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
* Implement guest avatar endpointMichael Weimann2019-02-071-0/+1
| | | | Signed-off-by: Michael Weimann <mail@michael-weimann.eu>
* Fix loginflow with apptoken enter on iOSRoeland Jago Douma2019-01-041-0/+1
| | | | | | | It seems iOS doesn't like us to change the location. So now we submit it to the server that geneartes the redirect. Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
* Remove redirect pageJohn Molakvoæ (skjnldsv)2018-11-291-1/+0
| | | | Signed-off-by: John Molakvoæ (skjnldsv) <skjnldsv@protonmail.com>
* Remove unused sg api routeJohn Molakvoæ (skjnldsv)2018-11-161-1/+0
| | | | Signed-off-by: John Molakvoæ (skjnldsv) <skjnldsv@protonmail.com>
* Move svg api endpointJohn Molakvoæ (skjnldsv)2018-10-291-3/+3
| | | | Signed-off-by: John Molakvoæ (skjnldsv) <skjnldsv@protonmail.com>
* Add an endppoint for clients to request an app passwordRoeland Jago Douma2018-10-031-0/+1
| | | | | | | | Now that we allow enforcing 2 factor auth it make sense if we also allow and endpoint where the clients can in the background fetch an apppassword if they were configured before the login flow was present. Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
* Svg icon api sass function and upgrade of all stylesJohn Molakvoæ (skjnldsv)2018-07-191-1/+2
| | | | Signed-off-by: John Molakvoæ (skjnldsv) <skjnldsv@protonmail.com>
* Svg from appJohn Molakvoæ (skjnldsv)2018-07-191-1/+2
| | | | Signed-off-by: John Molakvoæ (skjnldsv) <skjnldsv@protonmail.com>
* Svg color apiJohn Molakvoæ (skjnldsv)2018-07-191-0/+1
| | | | Signed-off-by: John Molakvoæ (skjnldsv) <skjnldsv@protonmail.com>
* Backend work to provide NC whats New info to usersArthur Schiwon2018-07-051-0/+2
| | | | Signed-off-by: Arthur Schiwon <blizzz@arthur-schiwon.de>
* start implementing federated sharing 2.0Bjoern Schiessle2018-07-021-0/+28
| | | | Signed-off-by: Bjoern Schiessle <bjoern@schiessle.org>
* Improve login flowRoeland Jago Douma2018-04-081-0/+1
| | | | | | | * Add page explaining you are about to grant access * Show grant access page after login Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
* Make the new autocomplete endpoint OCSJoas Schilling2018-03-211-1/+1
| | | | Signed-off-by: Joas Schilling <coding@schilljs.com>
* Move search to proper ControllerRoeland Jago Douma2018-03-091-3/+1
| | | | Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
* Add CSRF token controller to retrieve the current CSRF tokenChristoph Wurst2018-03-081-5/+1
| | | | Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
* Sharing: redirect to download after authentification if requestedJohn Molakvoæ (skjnldsv)2018-02-281-2/+2
| | | | Signed-off-by: John Molakvoæ (skjnldsv) <skjnldsv@protonmail.com>
* Move to OCS endpointJulius Härtl2018-02-121-2/+2
| | | | Signed-off-by: Julius Härtl <jus@bitgrid.net>
* Add navigation endpointJulius Härtl2018-02-121-0/+2
| | | | Signed-off-by: Julius Härtl <jus@bitgrid.net>
* Add preview endpoint for the fileidRoeland Jago Douma2018-01-241-1/+1
| | | | Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
* Change @georgehrke's emailMorris Jobke2017-11-061-1/+1
| | | | Signed-off-by: Morris Jobke <hey@morrisjobke.de>
* Update license headersMorris Jobke2017-11-061-2/+3
| | | | Signed-off-by: Morris Jobke <hey@morrisjobke.de>
* Add 204 endpointRoeland Jago Douma2017-11-021-1/+2
| | | | | | | | | | Fixes #6967 This allows clients to check for Walled Garden connections. The endpoint just responds with a 204 (which is very unlikely with such a connection) Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
* AutoCompletion backendArthur Schiwon2017-10-221-0/+1
| | | | | | | | | | * introduce a Controller for requests * introduce result sorting mechanism * extend Comments to retrieve commentors (actors) in a tree * add commenters sorter * add share recipients sorter Signed-off-by: Arthur Schiwon <blizzz@arthur-schiwon.de>
* Add direct preview link to single shared image filesRoeland Jago Douma2017-09-251-0/+8
| | | | Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
* Run phan over code baseLukas Reschke2017-07-191-0/+4
| | | | Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
* add contactsmenu popoverGeorg Ehrke2017-04-261-0/+1
| | | | Signed-off-by: Georg Ehrke <developer@georgehrke.com>
* Merge branch 'master' into contactsmenuJan-Christoph Borchardt2017-04-261-0/+3
|\ | | | | | | Signed-off-by: Jan-Christoph Borchardt <hey@jancborchardt.net>
| * Add new auth flowLukas Reschke2017-04-251-0/+3
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This implements the basics for the new app-password based authentication flow for our clients. The current implementation tries to keep it as simple as possible and works the following way: 1. Unauthenticated client opens `/index.php/login/flow` 2. User will be asked whether they want to grant access to the client 3. If accepted the user has the chance to do so using existing App Token or automatically generate an app password. If the user chooses to use an existing app token then that one will simply be redirected to the `nc://` protocol handler. While we can improve on that in the future, I think keeping this smaller at the moment has its advantages. Also, in the near future we have to think about an automatic migration endpoint so there's that anyways :-) If the user chooses to use the regular login the following happens: 1. A session state token is written to the session 2. User is redirected to the login page 3. If successfully authenticated they will be redirected to a page redirecting to the POST controller 4. The POST controller will check if the CSRF token as well as the state token is correct, if yes the user will be redirected to the `nc://` protocol handler. This approach is quite simple but also allows to be extended in the future. One could for example allow external websites to consume this authentication endpoint as well. Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
* | Use HTTP POST to retrieve the list of contactsChristoph Wurst2017-04-251-1/+1
| | | | | | | | | | | | | | | | We do not want to have sensitive information in the URL and therefore also not in the access log. Thus the GET request is replaced by a POST request. Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
* | Contacts menuChristoph Wurst2017-04-251-0/+1
|/ | | | | | | * load list of contacts from the server * show last message of each contact Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
* Merge pull request #4027 from nextcloud/better-spreed-call-urlsRobin Appelman2017-03-271-8/+34
|\ | | | | Better spreed call urls
| * Throw a nice HintException when the apps are missingJoas Schilling2017-03-241-10/+30
| | | | | | | | Signed-off-by: Joas Schilling <coding@schilljs.com>
| * Allow to use short URLs for callsJoas Schilling2017-03-241-0/+6
| | | | | | | | Signed-off-by: Joas Schilling <coding@schilljs.com>
generated by cgit v1.2.3 (git 2.39.1) at 2025-01-29 19:15:08 +0000