summaryrefslogtreecommitdiffstats
path: root/lib/base.php
Commit message (Collapse)AuthorAgeFilesLines
* Use the guest.css for the maintenance page as wellMorris Jobke2017-06-131-0/+1
| | | | Signed-off-by: Morris Jobke <hey@morrisjobke.de>
* Reset opcache if update is detectedMorris Jobke2017-05-211-0/+3
| | | | | | This even works if opcache_reset is in the disabled_functions php.ini setting. Signed-off-by: Morris Jobke <hey@morrisjobke.de>
* Merge pull request #4873 from nextcloud/check-whether-REQUEST-existsMorris Jobke2017-05-151-3/+3
|\ | | | | Check whether the $_SERVER['REQUEST_*'] vars exist before using them
| * Check whether the $_SERVER['REQUEST_*'] vars exist before using themJoas Schilling2017-05-151-3/+3
| | | | | | | | Signed-off-by: Joas Schilling <coding@schilljs.com>
* | Allow to enforce update via web UIMorris Jobke2017-05-111-1/+4
|/ | | | | | | | * adds a disclaimer that an update via web UI is on own risk * allows to skip the warning * fixes #4353 Signed-off-by: Morris Jobke <hey@morrisjobke.de>
* Properly decide on actual users if instance is too bigMorris Jobke2017-05-101-1/+23
| | | | | | * state the reason why NC thinks it is a big instance Signed-off-by: Morris Jobke <hey@morrisjobke.de>
* Fix escaped HTML on error pagesMorris Jobke2017-05-081-3/+2
| | | | | | * fixes #4655 Signed-off-by: Morris Jobke <hey@morrisjobke.de>
* dont spam log when request can't access filesystemRobin Appelman2017-04-281-0/+2
| | | | Signed-off-by: Robin Appelman <robin@icewind.nl>
* Make the emergency disable also accept arraysLukas Reschke2017-04-261-5/+6
| | | | Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
* Add activities when email or password is changedJoas Schilling2017-04-131-0/+3
| | | | Signed-off-by: Joas Schilling <coding@schilljs.com>
* Move OC_Defaults to OCP\DefaultsMorris Jobke2017-04-091-1/+1
| | | | | | | | | | | | | * currently there are two ways to access default values: OCP\Defaults or OC_Defaults (which is extended by OCA\Theming\ThemingDefaults) * our code used a mixture of both of them, which made it hard to work on theme values * this extended the public interface with the missing methods and uses them everywhere to only rely on the public interface Signed-off-by: Morris Jobke <hey@morrisjobke.de>
* Use SystemConfig instead of AllConfig for DB stuffMorris Jobke2017-03-191-2/+2
| | | | | | * preparation for followup PRs to clean up the DB bootstrapping Signed-off-by: Morris Jobke <hey@morrisjobke.de>
* Check that set_time_limit is not disabled before calling itKo-2017-03-111-1/+3
| | | | Signed-off-by: Ko- <k.stoffelen@cs.ru.nl>
* Remove legacy class OC_Group and OC_UserMorris Jobke2017-03-091-1/+1
| | | | | | * basically a straight replacement of the wrapped code at the calling code parts Signed-off-by: Morris Jobke <hey@morrisjobke.de>
* Extend Same Site cookie user_saml exemption ruleVincent Vanackere2017-03-071-1/+1
| | | | | | | The current check does not trigger if $request->getRequestUri() does not return index.php as a prefix (on my config this was occuring using nginx to serve Nextcloud) Signed-off-by: Vincent Vanackere <vincent.vanackere@trustelem.com>
* Remove deprecated OC_User::isLoggedInSebastian Wessalowski2017-03-021-2/+2
| | | | Signed-off-by: Sebastian Wessalowski <sebastian@wessalowski.org>
* Clean up single user modeMorris Jobke2017-02-221-27/+0
| | | | | | | | | | | | | | Single user mode basically disables WebDAV, OCS and cron execution. Since we heavily rely on WebDAV and OCS also in the web UI it's basically useless. An admin only sees a broken interface and can't even change any settings nor sees any files. Also sharing is not possible. As this is at least the case since Nextcloud 9 and we haven't received any reports for this it seems that this feature is not used at all so I removed it. The encryption commands now rely on the well tested maintenance mode. Signed-off-by: Morris Jobke <hey@morrisjobke.de>
* Fix public page css fallback loadingJohn Molakvoæ (skjnldsv)2017-02-011-4/+0
| | | | Signed-off-by: John Molakvoæ (skjnldsv) <skjnldsv@protonmail.com>
* Merge pull request #3004 from nextcloud/fix-installation-cssLukas Reschke2017-01-221-5/+6
|\ | | | | Fixed installation page
| * Create unified css file and merge all needed data into this fileJohn Molakvoæ (skjnldsv)2017-01-101-5/+6
| | | | | | | | Signed-off-by: John Molakvoæ (skjnldsv) <skjnldsv@protonmail.com>
* | Merge pull request #2914 from nextcloud/logrotate-logfileMorris Jobke2017-01-101-1/+1
|\ \ | | | | | | Get the logfile location while running the logrotate cron job instead…
| * | Get the logfile location while running the logrotate cron job instead of ↵Robin Appelman2017-01-061-1/+1
| | | | | | | | | | | | | | | | | | when registering the job Signed-off-by: Robin Appelman <robin@icewind.nl>
* | | Merge pull request #2943 from nextcloud/kill_old_preview_codeMorris Jobke2017-01-101-17/+0
|\ \ \ | | | | | | | | Cleanup old preview code
| * | | Remove old preview codeRoeland Jago Douma2017-01-041-17/+0
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * \OC\Preview is no more * \Test\PreviewTests is no more * PreviewHooks in base.php are gone Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
* | | | Merge pull request #2925 from nextcloud/remove-close-wrapperRoeland Jago Douma2017-01-101-3/+0
|\ \ \ \ | |_|_|/ |/| | | replace close:// streamwrapper with CallBackWrapper
| * | | replace close:// streamwrapper with CallBackWrapperRobin Appelman2017-01-061-3/+0
| | |/ | |/| | | | | | | Signed-off-by: Robin Appelman <robin@icewind.nl>
* / | Allow access to CSS resourcesLukas Reschke2017-01-091-8/+16
|/ / | | | | | | | | | | Fixes https://github.com/nextcloud/server/issues/2984 Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
* | Merge pull request #2934 from nextcloud/quota-stream-non-globalRoeland Jago Douma2017-01-061-1/+0
|\ \ | | | | | | remove the need to register the quota streamwrapper globally
| * | remove the need to register the quota streamwrapper globallyRobin Appelman2017-01-041-1/+0
| |/ | | | | | | Signed-off-by: Robin Appelman <robin@icewind.nl>
* | Theme update pages via CSSMorris Jobke2017-01-061-0/+3
| | | | | | | | | | | | | | * SCSS on-the-fly generation isn't allowed during update * fallback to plain CSS Signed-off-by: Morris Jobke <hey@morrisjobke.de>
* | remove static:// stream wrapperRobin Appelman2017-01-041-1/+0
|/ | | | Signed-off-by: Robin Appelman <robin@icewind.nl>
* remove no longer used fakedir stream wrapperRobin Appelman2017-01-031-1/+0
| | | | Signed-off-by: Robin Appelman <robin@icewind.nl>
* Merge pull request #2322 from nextcloud/compat-with-chrome54Morris Jobke2016-11-251-9/+0
|\ | | | | Remove exception for Chrome on Mobile
| * Remove exception for Chrome on MobileLukas Reschke2016-11-241-9/+0
| | | | | | | | | | | | | | | | | | | | This didn't really work anyways and Chrome 54 for Android has been pushed out via Google Play on October 19th. So we should remove this. This is only in master and doesn't affect any stable branch. Fixes https://github.com/nextcloud/server/issues/2318 Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
* | Merge pull request #2276 from nextcloud/update-email-addressMorris Jobke2016-11-251-0/+6
|\ \ | |/ |/| Update email address
| * bring back setEmailAddress for the user managementBjoern Schiessle2016-11-251-1/+1
| | | | | | | | Signed-off-by: Bjoern Schiessle <bjoern@schiessle.org>
| * update accounts table if email address or display name changes from outsideBjoern Schiessle2016-11-251-0/+6
| | | | | | | | Signed-off-by: Bjoern Schiessle <bjoern@schiessle.org>
* | Harden cookies more appropriateLukas Reschke2016-11-231-1/+9
|/ | | | | | | | | | This adds the __Host- prefix to the same-site cookies. This is a small but yet nice security hardening. See https://googlechrome.github.io/samples/cookie-prefixes/ for the implications. Fixes https://github.com/nextcloud/server/issues/1412 Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
* Show all in one messageJoas Schilling2016-11-161-4/+9
| | | | Signed-off-by: Joas Schilling <coding@schilljs.com>
* add explanatory text of what to do on app version errorJan-Christoph Borchardt2016-11-161-2/+2
| | | | Signed-off-by: Jan-Christoph Borchardt <hey@jancborchardt.net>
* Merge pull request #1973 from ↵Morris Jobke2016-11-021-1/+11
|\ | | | | | | | | nextcloud/dont-disable-shipped-apps-but-throw-instead Throw an exception when a shipped app was not replaced before the update
| * Throw an exception when a shipped app was not replaced before the updateJoas Schilling2016-11-021-1/+11
| | | | | | | | Signed-off-by: Joas Schilling <coding@schilljs.com>
* | bring back remember-meChristoph Wurst2016-11-021-0/+6
|/ | | | | | | | | | * try to reuse the old session token for remember me login * decrypt/encrypt token password and set the session id accordingly * create remember-me cookies only if checkbox is checked and 2fa solved * adjust db token cleanup to store remembered tokens longer * adjust unit tests Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
* Remove all unneeded set_include_path()Thomas Müller2016-10-251-6/+1
|
* Throw exception because the logger causes session issues anyway that early ↵Morris Jobke2016-10-241-1/+1
| | | | | | in the request cycle Signed-off-by: Morris Jobke <hey@morrisjobke.de>
* log error when setting timezone to UTC fails (#26354)Jörn Friedrich Dreyer2016-10-241-1/+3
| | | | Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
* Get rid of very old oc:// stream wrapper (#26381)Vincent Petry2016-10-201-1/+0
|
* Don't check for Same-Site cookie on Chrome AndroidLukas Reschke2016-09-201-0/+8
| | | | | | | | Chrome on Android has a bug that it doesn't sent cookies with the same-site attribute for the download manager. To work around that all same-site cookies get deleted and recreated directly. Awesome! FIXME: Remove once Chrome 54 is deployed to end-users @see https://github.com/nextcloud/server/pull/1454
* Add exemptions for incompatible UAsLukas Reschke2016-09-081-1/+15
| | | | | | | Some user agents are notorious and don't really properly follow HTTP specifications. For those, have an automated opt-out. Since the protection for remote.php is applied in base.php as starting point we need to opt out here.
* Allow to call status.php before the instance is installedJoas Schilling2016-09-061-1/+1
|
generated by cgit v1.2.3 (git 2.39.1) at 2025-01-19 04:42:29 +0000