summaryrefslogtreecommitdiffstats
path: root/core/templates
Commit message (Collapse)AuthorAgeFilesLines
* Use a form so firefox doesn't try to save the space as a passwordJoas Schilling2016-12-191-3/+3
| | | | Signed-off-by: Joas Schilling <coding@schilljs.com>
* Save the timezone on login againJoas Schilling2016-12-081-1/+1
| | | | Signed-off-by: Joas Schilling <coding@schilljs.com>
* Remove leftovers from #1929Morris Jobke2016-11-302-51/+0
| | | | Signed-off-by: Morris Jobke <hey@morrisjobke.de>
* Fix mail header logo [fixes #1326]Felix Epp2016-11-302-6/+4
| | | | Signed-off-by: Felix A. Epp <work@felixepp.de>
* fix some outdated namingJan-Christoph Borchardt2016-11-241-1/+1
| | | | Signed-off-by: Jan-Christoph Borchardt <hey@jancborchardt.net>
* show installation spinner correctly, fix #2129Jan-Christoph Borchardt2016-11-221-2/+2
| | | | Signed-off-by: Jan-Christoph Borchardt <hey@jancborchardt.net>
* Show a little explanation above the input fieldJoas Schilling2016-11-181-0/+1
| | | | Signed-off-by: Joas Schilling <coding@schilljs.com>
* Empty the password field on submission of the formJoas Schilling2016-11-181-1/+1
| | | | Signed-off-by: Joas Schilling <coding@schilljs.com>
* Introduce the UI for password confirmationJoas Schilling2016-11-181-0/+7
| | | | Signed-off-by: Joas Schilling <coding@schilljs.com>
* Move away from OC_L10NRoeland Jago Douma2016-10-284-4/+4
| | | | Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
* Inlince oc.js if possible!Roeland Jago Douma2016-10-253-0/+15
| | | | Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
* Merge pull request #1871 from nextcloud/use-csp-noncesMorris Jobke2016-10-253-3/+3
|\ | | | | Use CSP nonces
| * Add ContentSecurityPolicyNonceManagerLukas Reschke2016-10-243-3/+3
| | | | | | | | Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
| * Add support for CSP noncesLukas Reschke2016-10-243-3/+3
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | CSP nonces are a feature available with CSP v2. Basically instead of saying "JS resources from the same domain are ok to be served" we now say "Ressources from everywhere are allowed as long as they add a `nonce` attribute to the script tag with the right nonce. At the moment the nonce is basically just a `<?php p(base64_encode($_['requesttoken'])) ?>`, we have to decode the requesttoken since `:` is not an allowed value in the nonce. So if somebody does on their own include JS files (instead of using the `addScript` public API, they now must also include that attribute.) IE does currently not implement CSP v2, thus there is a whitelist included that delivers the new CSP v2 policy to newer browsers. Check http://caniuse.com/#feat=contentsecuritypolicy2 for the current browser support list. An alternative approach would be to just add `'unsafe-inline'` as well as `'unsafe-inline'` is ignored by CSPv2 when a nonce is set. But this would make this security feature unusable at all in IE. Not worth it at the moment IMO. Implementing this offers the following advantages: 1. **Security:** As we host resources from the same domain by design we don't have to worry about 'self' anymore being in the whitelist 2. **Performance:** We can move oc.js again to inline JS. This makes the loading way quicker as we don't have to load on every load of a new web page a blocking dynamically non-cached JavaScript file. If you want to toy with CSP see also https://csp-evaluator.withgoogle.com/ Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
* | show empty folder message in filepickerRobin Appelman2016-10-211-0/+4
|/ | | | Signed-off-by: Robin Appelman <robin@icewind.nl>
* Use a table for the filepicker list and add size columnRobin Appelman2016-10-191-7/+16
| | | | Signed-off-by: Robin Appelman <robin@icewind.nl>
* Merge pull request #1641 from nextcloud/log-in-buttonJan-Christoph Borchardt2016-10-171-12/+17
|\ | | | | bring back dedicated log in button to make log in more usable
| * finish up layout of log in page, postpone forgot password link for laterJan-Christoph Borchardt2016-10-171-6/+0
| | | | | | | | Signed-off-by: Jan-Christoph Borchardt <hey@jancborchardt.net>
| * update styles of log inJan-Christoph Borchardt2016-10-111-11/+19
| | | | | | | | Signed-off-by: Jan-Christoph Borchardt <hey@jancborchardt.net>
| * fix log in button layoutJan-Christoph Borchardt2016-10-061-2/+3
| |
| * bring back dedicated log in button to make log in more usableJan-Christoph Borchardt2016-10-061-1/+3
| |
* | filepicker stylingRobin Appelman2016-10-141-1/+1
| | | | | | | | Signed-off-by: Robin Appelman <robin@icewind.nl>
* | Use name from themingJoas Schilling2016-10-071-1/+1
| |
* | Set proper web title for appleRoeland Jago Douma2016-10-061-1/+1
|/ | | | Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
* Deprecate getEditionString()Joas Schilling2016-09-061-7/+1
|
* Merge pull request #1158 from nextcloud/cache_avatarsLukas Reschke2016-09-051-2/+2
|\ | | | | Cache avatars
| * Cache avatars properlyRoeland Jago Douma2016-08-301-2/+2
| | | | | | | | | | * Set proper caching headers for avatars (15 minutes) * For our own avatar use some extra logic to invalidate when we update
* | add 2fa backup codes appChristoph Wurst2016-09-052-2/+18
| | | | | | | | | | * add backup codes app unit tests * add integration tests for the backup codes app
* | Add attribute “tabindex” to login form (fixes #1110)coderkun2016-08-311-5/+5
|/
* Merge pull request #1093 from nextcloud/mail-fontstackRaghu Nayyar2016-08-281-1/+1
|\ | | | | use proper font stack for email
| * use proper font stack for emailJan-Christoph Borchardt2016-08-261-1/+1
| |
* | list 2FA providers as buttonsChristoph Wurst2016-08-272-4/+4
| |
* | use centered h2 for 2FA page headersChristoph Wurst2016-08-272-22/+22
| |
* | fix 2fa challenge page wordingChristoph Wurst2016-08-272-3/+2
| |
* | reorder 2fa challenge HTMLChristoph Wurst2016-08-271-7/+7
|/
* Remove uninterpreted PHPLukas Reschke2016-08-191-1/+1
| | | | This is in an HTML file. The PHP won't be executed :see_no_evil:
* Add cachebuster to right navigationLukas Reschke2016-08-181-2/+2
|
* Add cache buster to left menu barLukas Reschke2016-08-181-2/+2
|
* Empty tags are not allowed for image and feColorMatrix in IE11 and belowMorris Jobke2016-08-171-4/+4
|
* Initial work on Apps page split:Arthur Schiwon2016-08-091-1/+1
| | | | | | * interfaces for the Admin settings (IAdmin) and section (ISection) * SettingsManager service * example setup with LDAP app
* reduce info on update screens, introduce button to refreshJan-Christoph Borchardt2016-08-041-1/+3
|
* switch nested containers in update to semibold styleJan-Christoph Borchardt2016-08-031-2/+2
|
* Shake the login fields if password is wrongMorris Jobke2016-08-011-2/+2
|
* Fix wrong preserveAspectRatio at app menu iconsJulius Haertl2016-07-291-2/+2
|
* Move to svg filter on app menu to support IE9+Julius Haertl2016-07-281-2/+8
|
* Theming: Implement swapping the foreground color for bright colorsJulius Haertl2016-07-151-1/+1
|
* Merge branch 'master' into sync-masterMorris Jobke2016-07-073-3/+2
|\
| * Merge remote-tracking branch 'upstream/master' into master-sync-upstreamLukas Reschke2016-06-273-9/+3
| |\
| * | singleuser.user.php -> nextcloudJoachim Sokolowski2016-06-221-1/+1
| | | | | | | | | Changed to nextcloud
| * | fix setup page strengthifyMorris Jobke2016-06-151-1/+0
| | | | | | | | | | | | * fixes #105
generated by cgit v1.2.3 (git 2.39.1) at 2025-01-17 10:14:09 +0000