aboutsummaryrefslogtreecommitdiffstats
path: root/lib/private/AppFramework/Middleware/Security/SecurityMiddleware.php
Commit message (Expand)AuthorAgeFilesLines
* feat: rename users to account or personVincent Petry2024-02-131-3/+3
* chore: apply changes from Nextcloud coding standards 1.1.1Joas Schilling2023-11-231-12/+12
* Rewrite OCS CSRF check to be readablejld31032023-08-161-7/+15
* Refactors "strpos" calls in lib/private to improve code readability.Faraz Samapoor2023-05-151-1/+1
* feat(security): Add PHP \Attribute for remaining security annotationsJoas Schilling2023-04-251-9/+61
* composer run cs:fixCôme Chilliet2023-01-201-6/+5
* Add direct arg to login flowVincent Petry2022-03-281-0/+3
* Pass username prefill through unauthenticated request redirectsJulius Härtl2021-12-291-0/+4
* Add admin privilege delegation for admin settingsCarl Schwan2021-09-291-5/+42
* Update php licensesJohn Molakvoæ (skjnldsv)2021-06-041-2/+0
* Less ILoggerJoas Schilling2021-04-271-6/+5
* Update the license headers for Nextcloud 20Christoph Wurst2020-08-241-0/+1
* Update SecurityMiddleware.phpHolger Hees2020-07-061-1/+1
* Format control structures, classes, methods and functionChristoph Wurst2020-04-101-12/+11
* Fix (array) indent style to always use one tabChristoph Wurst2020-04-091-1/+1
* Fix loaded controller checkJoas Schilling2020-01-211-1/+1
* Update license headersChristoph Wurst2019-12-051-1/+8
* Some php-cs fixesRoeland Jago Douma2019-11-221-7/+6
* Merge pull request #17850 from nextcloud/bugfix/noid/mark-spreed-as-active-on...Joas Schilling2019-11-201-0/+6
|\
| * Make phan happy ;)Daniel Kesselberg2019-11-191-1/+2
| * Mark "Talk" active on /call/token URLsJoas Schilling2019-11-121-0/+5
* | Fixes a 500 without useridArthur Schiwon2019-11-161-5/+0
|/
* Split up security middlewareRoeland Jago Douma2019-07-271-40/+0
* Make it possible to show admin settings for sub adminsChristoph Wurst2019-05-231-1/+12
* Do not use file as template parameterRoeland Jago Douma2018-08-091-1/+1
* move log constants to ILoggerArthur Schiwon2018-04-261-1/+1
* Add testsRoeland Jago Douma2018-03-081-18/+8
* Make SecurityMiddleware strictRoeland Jago Douma2018-03-081-10/+9
* Do not throw AppNotEnabledException for app public pages - refs #6962, refs #...Julien Veyssier2018-02-281-1/+2
* Provide translated error message for permission errorMorris Jobke2018-02-261-2/+8
* Don't perform CSRF check on OCS routes with Bearer authRoeland Jago Douma2018-01-291-2/+8
* Properly log the full exception instead of only the messageMorris Jobke2018-01-231-1/+4
* Move passwordconfirmation to its own midlewareRoeland Jago Douma2018-01-021-28/+1
* disable password confirmation with SSOBjoern Schiessle2018-01-021-2/+16
* Update license headersMorris Jobke2017-11-061-0/+1
* Use proper DI for security middleware for app enabled checkMorris Jobke2017-10-241-2/+8
* Remove explicit type hints for ControllerLukas Reschke2017-08-011-3/+3
* Fix middleware implementations signaturesRoeland Jago Douma2017-07-311-3/+3
* Check whether the $_SERVER['REQUEST_*'] vars exist before using themJoas Schilling2017-05-151-6/+5
* Make BruteForceProtection annotation more cleverLukas Reschke2017-04-131-14/+1
* Move to dedicated MiddleWareLukas Reschke2017-04-131-35/+10
* Add support for ratelimiting via annotationsLukas Reschke2017-04-131-11/+36
* handle optional annotation parametersBjoern Schiessle2017-01-181-1/+1
* introduce brute force protection for api callsBjoern Schiessle2017-01-181-1/+13
* Merge pull request #2066 from nextcloud/fix-redirect-double-encodingMorris Jobke2016-11-291-1/+1
|\
| * do not double encode the redirect urlChristoph Wurst2016-11-091-1/+1
* | Add the 15 seconds to the window, instead of removingJoas Schilling2016-11-181-1/+1
* | Introduce PasswordConfirmRequired annotationJoas Schilling2016-11-181-0/+14
|/
* Move browserSupportsCspV3 to CSPNonceManagerRoeland Jago Douma2016-10-251-19/+8
* Add support for CSP noncesLukas Reschke2016-10-241-1/+28
generated by cgit v1.2.3 (git 2.39.1) at 2025-01-07 14:09:25 +0000