summaryrefslogtreecommitdiffstats
path: root/lib/base.php
Commit message (Collapse)AuthorAgeFilesLines
* Add detection for invalid CLI configuration for settings pageLukas Reschke2015-02-271-1/+16
| | | | | | | | | | | | | | This change will log all failures that prevent the CLI cronjob from happening to the database and display a warning to administrators when an error happened. To test: 1. Configure some invalid CLI php.ini settings 2. Enable the CLI cronjob and run php cron.php 3. See the errors printed and also in the admin page 4. Configure the CLI settings correctly 5. Errors should be gone. Fixes https://github.com/owncloud/core/issues/13994
* Revert "Updating license headers"Morris Jobke2015-02-261-42/+13
| | | | This reverts commit 6a1a4880f0d556fb090f19a5019fec31916f5c36.
* Always load authentication appsLukas Reschke2015-02-241-3/+4
| | | | | | | | | | The current code path may trigger situations where the LDAP application is not yet loaded and thus problems with the authentication appeared. In previous versions of ownCloud the authentication mechanism manually loaded these apps which is why this affects ownCloud 8 and master only for my knowledge. (certainly not 6, maybe 7) Backport to 8 might be something to consider. Fixes https://github.com/owncloud/core/issues/14469
* properly initialize OC::$WEBROOT and host nameThomas Müller2015-02-231-11/+16
|
* implement command maintenance:installThomas Müller2015-02-231-0/+3
|
* Updating license headersJenkins for ownCloud2015-02-231-13/+42
|
* Merge pull request #14199 from owncloud/cast-type-manuallyMorris Jobke2015-02-191-3/+3
|\ | | | | Manually type-cast all AJAX files
| * Manually type-case all AJAX filesLukas Reschke2015-02-131-3/+3
| | | | | | | | | | | | This enforces proper types on POST and GET arguments where I considered it sensible. I didn't update some as I don't know what kind of values they would support :see_no_evil: Fixes https://github.com/owncloud/core/issues/14196 for core
* | Merge pull request #14335 from owncloud/enable-strict-mode-per-deafultClark Tomlinson2015-02-181-2/+2
|\ \ | | | | | | Fix invalid `ini_set` directives
| * | Fix invalid `ini_set` directivesLukas Reschke2015-02-181-2/+2
| | | | | | | | | | | | Somehow they got messed up. Because PHP does automatic type juggling this has worked before as well however it's not guaranteed that this might work in the future as well.
* | | Merge pull request #14330 from ↵Lukas Reschke2015-02-181-2/+1
|\ \ \ | | | | | | | | | | | | | | | | owncloud/revert-13879-add_debug_log_for_memcache_instantiation Revert "add debug log for memcache instantiation"
| * | | Revert "add debug log for memcache instantiation"Lukas Reschke2015-02-181-2/+1
| |/ /
* / / Check if instance is not yet installedLukas Reschke2015-02-181-0/+1
|/ / | | | | | | | | | | | | | | | | | | | | | | | | Due to a security hardening in 8.1 a missing value of empty trusted domains in the config would provoke an error as this was misused by a lot of users. This caused a problem where the initial installation happened from another domain than 127.0.0.1 as in this case the domain was considered untrusted as no value was defined. However, this special case should not get intercepted. To test: - [ ] Installing ownCloud on 127.0.0.1 works - [ ] Installing ownCloud on another domain / IP works - [ ] When setting up ownCloud from 127.0.0.1 and accessing it from the domain above the trusted domain error should be shown if not specified in the config Fixes https://github.com/owncloud/core/issues/14320
* | Incorporate review changesLukas Reschke2015-02-161-2/+1
| |
* | Add blackmagic due to cyclic dependency :see_no_evil:Lukas Reschke2015-02-161-1/+8
| |
* | Refactor OC_Request into TrustedDomainHelper and IRequestLukas Reschke2015-02-161-13/+27
| | | | | | | | | | | | | | | | | | | | This changeset removes the static class `OC_Request` and moves the functions either into `IRequest` which is accessible via `\OC::$server::->getRequest()` or into a separated `TrustedDomainHelper` class for some helper methods which should not be publicly exposed. This changes only internal methods and nothing on the public API. Some public functions in `util.php` have been deprecated though in favour of the new non-static functions. Unfortunately some part of this code uses things like `__DIR__` and thus is not completely unit-testable. Where tests where possible they ahve been added though. Fixes https://github.com/owncloud/core/issues/13976 which was requested in https://github.com/owncloud/core/pull/13973#issuecomment-73492969
* | add debug log for memcache instantiationJörn Friedrich Dreyer2015-02-161-1/+2
| |
* | Properly show the warning about the missing composer autoloaderMorris Jobke2015-01-311-1/+4
|/
* Merge pull request #13314 from owncloud/login-hook-logoutMorris Jobke2015-01-221-10/+15
|\ | | | | Return false if the login is canceled in a hook
| * Throw an exception when login is canceled by an appRobin Appelman2015-01-221-10/+15
| |
* | Add some more sanity checks for maintenance modeLukas Reschke2015-01-091-1/+3
| |
* | Verify authentication before initializing apps and routingLukas Reschke2015-01-091-13/+13
|/ | | | | | | | | | | | | | | | | | | | | | The current behaviour of the authenticion logic in base.php prevents REST APIs in ownCloud applications to work. Because `!self::$CLI` is usually always a true statement the previously above block was entered which returned, thus the authentication logic for this part does not trigger in. This can be reproduced by installing apps such as the News app and issuing the following command: `curl -u admin:admin http://localhost/index.php/apps/news/api/v1-2/feeds` The following parts needs to get throughly tested: - [ ] OCS - [ ] remote.php's DAV features - [ ] Regular login features This bug affects master and stable7. I'd propose that we merge this for 8.0 since this has the potential to break every component that relies on Basic Auth features. A backport would also be very nice. Remark to myself: We really need to move out the authentication code for 8.1 out of base.php - I already have a local branch that does that somewhere which I will get in shape for 8.1... - This untested code is a night-mare. Fixes itself.
* move search results below filelist, show hint when results are off screen, ↵Jörn Friedrich Dreyer2015-01-021-1/+0
| | | | use js plugin mechanism
* move code from js.js to search.js in the search appJörn Friedrich Dreyer2015-01-021-0/+1
|
* Merge pull request #12759 from owncloud/core-reduce-js-and-cssJörn Friedrich Dreyer2014-12-181-2/+0
|\ | | | | make sure styles and scripts are only loaded once
| * load showpassord.js conditionally in the template only if neededThomas Müller2014-12-161-2/+0
| |
* | Check basic auth header only for not-logged-in usersLukas Reschke2014-12-171-1/+1
| |
* | Move basic auth login out of `isLoggedIn`Lukas Reschke2014-12-171-0/+1
|/ | | | | | | | | | | | Potentially fixes https://github.com/owncloud/core/issues/12915 and opens the door for potential other bugs... Please test very carefully, this includes: - Testing from OCS via cURL (as in #12915) - Testing from OCS via browser (Open the "Von Dir geteilt" shares overview) - WebDAV - CalDAV - CardDAV
* Implement method that reads vendor libs from core.jsonMorris Jobke2014-12-151-6/+15
| | | | * includes them at the beginning of initTemplate()
* bower jquery-ui - exported changes to a separate css fileMorris Jobke2014-12-131-2/+3
|
* Check if open_basedir is setLukas Reschke2014-12-111-1/+1
| | | | | | The file:// protocol does not work with curl when an open_basedir is set. This fixes https://github.com/owncloud/core/issues/12016
* reduce OC_Preferences, OC_Config and \OCP\Config usageMorris Jobke2014-12-081-1/+1
| | | | | | | | | | * files_encryption * files_versions * files_trashbin * tests * status.php * core * server container
* fix base.php for not installed systemsMorris Jobke2014-12-081-25/+25
|
* Create config if it does not existsLukas Reschke2014-12-061-1/+9
| | | | | | | | | | The codepath that is executed when executing ownCloud via CLI is different than via browser. Specifically, the config is created by the user session already in `OC_Util::getInstanceId()` by a call to `setValue`. That said, this seems to be quite a bad side-effect, but for the sake of "not breaking whatever might break if we touch this" let's keep it that way for now. When executing the autoconfig via `php -f index.php` the said session was not setup and thus no `config/config.php` file was created resulting in an installation error. To reproduce this try to setup ownCloud via `php -f index.php` with and without that patch. (ensure to delete all existing configs before and don't access ownCloud with a browser in the meantime) Fixes itself.
* Remove checks for safe mode and magic quotesLukas Reschke2014-12-051-4/+0
| | | | | | | | | | Both are removed from 5.4.0 Safe Mode: http://php.net/manual/en/features.safe-mode.php > This feature has been DEPRECATED as of PHP 5.3.0 and REMOVED as of PHP 5.4.0. Magic Quotes: http://php.net/manual/en/security.magicquotes.php > This feature has been DEPRECATED as of PHP 5.3.0 and REMOVED as of PHP 5.4.0.
* Merge pull request #12419 from owncloud/read-only-configThomas Müller2014-12-011-3/+3
|\ | | | | Allow read-only configuration
| * Allow read-only configurationLukas Reschke2014-11-251-3/+3
| | | | | | | | | | | | Workaround required for IIS setups running ownCloud to prevent dataloss. Long-term solution would be to move some configuration settings to the database
* | Pass \OC::$WEBROOT to the ctrLukas Reschke2014-11-271-1/+1
| |
* | remove deprecated \OC:$sessionThomas Müller2014-11-261-10/+2
|/
* Merge pull request #12299 from owncloud/clean-lib-base-configMorris Jobke2014-11-201-23/+29
|\ | | | | replace all static calls to OC_Config and OC_Preferences to calls to OCP...
| * replace double quotes with single quotesMorris Jobke2014-11-191-1/+1
| |
| * replace all static calls to OC_Config and OC_Preferences to calls to OCP\IConfigMorris Jobke2014-11-191-23/+29
| |
* | Merge pull request #12226 from owncloud/remove-phpassThomas Müller2014-11-201-2/+1
|\ \ | | | | | | Remove phpass and migrate to new Hasher interface
| * | Remove phpass and migrate to new Hasher interfaceLukas Reschke2014-11-171-2/+1
| |/ | | | | | | | | | | | | This PR removes phpass and migrates to the new Hasher interface. Please notice that due to https://github.com/owncloud/core/issues/10671 old hashes are not updated but the hashes are backwards compatible so this shouldn't hurt. Once the sharing classes have a possibility to update the passwords of single shares those methods should be used within the newHash if block.
* / Ignore port for trusted domainsLukas Reschke2014-11-181-7/+1
|/ | | | | | | | | This lead to a lot of confusion in the past and did not really offer any value. Let's remove the port check therefore. (it's anyways not really a part of the domain) Fixes https://github.com/owncloud/core/issues/12150 and https://github.com/owncloud/core/issues/12123 and also a problem reported by @DeepDiver1975. Conflicts: lib/private/request.php
* Merge pull request #11917 from owncloud/fix-11909Thomas Müller2014-11-111-4/+11
|\ | | | | Add checkbox to enforce SSL for subdomains
| * Migrate "setsecurity.php" to the AppFrameworkLukas Reschke2014-11-031-4/+11
| | | | | | | | | | | | | | | | | | | | | | | | Add switch to enforce SSL for subdomains Add unit tests Add test for boolean values Camel-case Fix ugly JS
* | Load PHPAss via autoloaderLukas Reschke2014-11-061-1/+2
| |
* | Merge pull request #11883 from owncloud/clear-session-for-setupLukas Reschke2014-11-061-1/+2
|\ \ | | | | | | Clear session before setup
| * | Clear session before setupLukas Reschke2014-10-311-1/+2
| | | | | | | | | | | | Fixes https://github.com/owncloud/core/issues/11861
generated by cgit v1.2.3 (git 2.39.1) at 2025-02-06 00:05:54 +0000