summaryrefslogtreecommitdiffstats
path: root/lib/private/AppFramework/Middleware/Security
Commit message (Expand)AuthorAgeFilesLines
* Some php-cs fixesRoeland Jago Douma2019-11-223-7/+8
* Merge pull request #17850 from nextcloud/bugfix/noid/mark-spreed-as-active-on...Joas Schilling2019-11-201-0/+6
|\
| * Make phan happy ;)Daniel Kesselberg2019-11-191-1/+2
| * Mark "Talk" active on /call/token URLsJoas Schilling2019-11-121-0/+5
* | Fixes a 500 without useridArthur Schiwon2019-11-161-5/+0
|/
* Add feature policy headerRoeland Jago Douma2019-08-101-0/+70
* Split up security middlewareRoeland Jago Douma2019-07-272-40/+80
* Make it possible to show admin settings for sub adminsChristoph Wurst2019-05-231-1/+12
* Do not do redirect handling when loggin outRoeland Jago Douma2019-02-062-0/+97
* Update password confirmation middlewareRoeland Jago Douma2018-11-021-0/+8
* add global site selector as user back-end which doesn't support password conf...Bjoern Schiessle2018-10-271-1/+3
* Do not use file as template parameterRoeland Jago Douma2018-08-091-1/+1
* move log constants to ILoggerArthur Schiwon2018-04-261-1/+1
* Add testsRoeland Jago Douma2018-03-081-18/+8
* Make SecurityMiddleware strictRoeland Jago Douma2018-03-081-10/+9
* Do not throw AppNotEnabledException for app public pages - refs #6962, refs #...Julien Veyssier2018-02-281-1/+2
* Provide translated error message for permission errorMorris Jobke2018-02-262-3/+10
* Remove unused import statementsMorris Jobke2018-02-142-2/+0
* Don't perform CSRF check on OCS routes with Bearer authRoeland Jago Douma2018-01-291-2/+8
* Properly log the full exception instead of only the messageMorris Jobke2018-01-231-1/+4
* Move passwordconfirmation to its own midlewareRoeland Jago Douma2018-01-022-28/+82
* disable password confirmation with SSOBjoern Schiessle2018-01-021-2/+16
* Update license headersMorris Jobke2017-11-066-2/+11
* Use proper DI for security middleware for app enabled checkMorris Jobke2017-10-241-2/+8
* Handle SameSiteCookie check for index.php in AppFramework MiddlewareRoeland Jago Douma2017-09-242-0/+144
* Remove explicit type hints for ControllerLukas Reschke2017-08-014-10/+10
* Merge pull request #5907 from nextcloud/add-metadata-to-throttle-callMorris Jobke2017-08-011-1/+1
|\
| * Add metadata to \OCP\AppFramework\Http\Response::throttleLukas Reschke2017-07-271-1/+1
* | Fix middleware implementations signaturesRoeland Jago Douma2017-07-314-10/+12
|/
* Check whether the $_SERVER['REQUEST_*'] vars exist before using themJoas Schilling2017-05-151-6/+5
* Remove unused use statementsMorris Jobke2017-04-221-1/+0
* Make BruteForceProtection annotation more cleverLukas Reschke2017-04-132-14/+84
* Move to dedicated MiddleWareLukas Reschke2017-04-132-35/+144
* Add support for ratelimiting via annotationsLukas Reschke2017-04-131-11/+36
* handle optional annotation parametersBjoern Schiessle2017-01-181-1/+1
* introduce brute force protection for api callsBjoern Schiessle2017-01-181-1/+13
* Allow to overwrite the message which we already do in SubadminMiddlewareJoas Schilling2016-12-081-2/+2
* Merge pull request #2066 from nextcloud/fix-redirect-double-encodingMorris Jobke2016-11-291-1/+1
|\
| * do not double encode the redirect urlChristoph Wurst2016-11-091-1/+1
* | Add the 15 seconds to the window, instead of removingJoas Schilling2016-11-181-1/+1
* | Introduce PasswordConfirmRequired annotationJoas Schilling2016-11-182-0/+51
|/
* Move browserSupportsCspV3 to CSPNonceManagerRoeland Jago Douma2016-10-251-19/+8
* Add support for CSP noncesLukas Reschke2016-10-241-1/+28
* Add trict CSP to OCS responsesRoeland Jago Douma2016-09-151-0/+5
* We should properly check for 'true' instaed of the boolRoeland Jago Douma2016-08-011-1/+1
* Dark hackery to not always disable CSRF for OCS controllersRoeland Jago Douma2016-07-291-2/+10
* Fix othersJoas Schilling2016-07-218-12/+22
* Merge pull request #479 from nextcloud/add-bruteforce-throttlerLukas Reschke2016-07-211-14/+11
|\
| * Implement brute force protectionLukas Reschke2016-07-201-14/+11
* | [master] Port Same-Site Cookies to masterLukas Reschke2016-07-202-1/+46
|/
generated by cgit v1.2.3 (git 2.39.1) at 2025-01-06 13:18:21 +0000