summaryrefslogtreecommitdiffstats
path: root/lib/private/AppFramework/Http/Request.php
Commit message (Collapse)AuthorAgeFilesLines
* Fix commentsRoeland Jago Douma2018-02-221-2/+2
| | | | Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
* Fix proper typesRoeland Jago Douma2018-02-221-2/+10
| | | | Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
* Make Request strictRoeland Jago Douma2018-02-221-53/+59
| | | | Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
* Request->getHeader() should always return a stringMorris Jobke2018-01-171-3/+2
| | | | | | | | PHPDoc (of the public API) says that this method returns string but it also returns null, which is not allowed in some method calls. This fixes that behaviour and returns an empty string and fixes all code paths that explicitly checked for null to be still compliant. Found while enabling the strict_typing for lib/private for the PHP7+ migration. Signed-off-by: Morris Jobke <hey@morrisjobke.de>
* Also check for empty content lenthRoeland Jago Douma2017-12-141-0/+1
| | | | Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
* Update license headersMorris Jobke2017-11-061-0/+3
| | | | Signed-off-by: Morris Jobke <hey@morrisjobke.de>
* Handle SameSiteCookie check for index.php in AppFramework MiddlewareRoeland Jago Douma2017-09-241-1/+1
| | | | Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
* If there is no content don't errorRoeland Jago Douma2017-08-091-1/+1
| | | | Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
* Fix L10N::tRoeland Jago Douma2017-08-011-1/+1
| | | | Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
* Add IPv6 to “localhost” regex (#440)coderkun2017-05-141-1/+1
| | | | Signed-off-by: Oliver Hanraths <olli@coderkun.de>
* Use constantsJoas Schilling2017-04-131-1/+1
| | | | Signed-off-by: Joas Schilling <coding@schilljs.com>
* Reorder the entries of the log for easier readingJuan Pablo Villafáñez2017-04-121-1/+2
|
* Don't try to parse empty body if there is no bodyRoeland Jago Douma2017-04-041-0/+2
| | | | | | | | | | | | Fixes #3890 If we do a put request without a body the current code still tries to read the body. This patch makes sure that we do not try to read the body if the content length is 0. See RFC 2616 Section 4.3 Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
* dont require strict same site cookies for ocs requestsRoeland Jago Douma2017-03-091-0/+3
| | | | Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
* Fix detection of the new iOS appJoas Schilling2017-02-101-1/+1
| | | | Signed-off-by: Joas Schilling <coding@schilljs.com>
* oc_token should be nc_tokenChristoph Wurst2017-02-021-1/+1
| | | | Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
* Harden cookies more appropriateLukas Reschke2016-11-231-2/+31
| | | | | | | | | | This adds the __Host- prefix to the same-site cookies. This is a small but yet nice security hardening. See https://googlechrome.github.io/samples/cookie-prefixes/ for the implications. Fixes https://github.com/nextcloud/server/issues/1412 Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
* Identify Chromium as ChromeJoas Schilling2016-10-261-1/+1
| | | | Signed-off-by: Joas Schilling <coding@schilljs.com>
* Merge pull request #797 from nextcloud/only-match-for-auth-cookieJoas Schilling2016-08-311-2/+15
|\ | | | | Match only for actual session cookie
| * Match only for actual session cookieLukas Reschke2016-08-091-2/+15
| | | | | | | | OVH has implemented load balancing in a very questionable way where the reverse proxy actually internally adds some cookies which would trigger a security exception. To work around this, this change only checks for the session cookie.
* | Remove reading PATH_INFO from server variableLukas Reschke2016-08-191-4/+0
| | | | | | | | | | | | Having two code paths for this is unreliable and can lead to bugs. Also, in some cases Apache isn't setting the PATH_INFO variable when mod_rewrite is used. Fixes https://github.com/nextcloud/server/issues/983
* | Remove IE_8 user agent stringRoeland Jago Douma2016-08-161-1/+0
|/
* Update with robinJoas Schilling2016-07-211-1/+1
|
* Fix othersJoas Schilling2016-07-211-3/+4
|
* [master] Port Same-Site Cookies to masterLukas Reschke2016-07-201-0/+40
| | | | Fixes https://github.com/nextcloud/server/issues/50
* Copy the regexes to the public interfaceJoas Schilling2016-07-181-1/+11
|
* Update license headersLukas Reschke2016-05-261-1/+1
|
* Make ownCloud work again in php 7.0.6Roeland Jago Douma2016-04-281-0/+3
| | | | See https://bugs.php.net/bug.php?id=72117
* Move \OC\AppFramework to PSR-4Roeland Jago Douma2016-04-221-0/+771
* Also moved the autoloader setup a bit up since we need it in initpaths
generated by cgit v1.2.3 (git 2.39.1) at 2025-08-10 00:40:55 +0000