nextcloud-server.git - Nextcloud server, a safe home for all your data: https://github.com/nextcloud/server

	Commit message (Collapse)	Author	Age	Files	Lines
*	Move ExpiredTokenException to the correct namespace	Roeland Jago Douma	2018-11-02	2	-0/+2
\| \| \| \|	Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
*	Make the token expiration also work for autocasting 0	Roeland Jago Douma	2018-06-08	1	-1/+1
\| \| \| \| \| \| \|	Some bad databases don't respect the default null apprently. Now even if they cast it to 0 it should work just fine. Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
*	Certain tokens can expire	Roeland Jago Douma	2018-05-22	5	-5/+45
\| \| \| \| \| \| \| \|	However due to the nature of what we store in the token (encrypted passwords etc). We can't just delete the tokens because that would make the oauth refresh useless. Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
*	Allow the rotation of tokens	Roeland Jago Douma	2018-05-22	4	-2/+54
\| \| \| \| \| \|	This for example will allow rotating the apptoken for oauth Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
*	Loss of performance on Login after upgrade from NC10 + LDAP to NC 12 + LDAP ↵	Flávio Gomes da Silva Lisboa	2017-11-27	1	-0/+1
\| \| \| \| \| \|	#6732 Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
*	Update license headers	Morris Jobke	2017-11-06	5	-0/+15
\| \| \| \|	Signed-off-by: Morris Jobke <hey@morrisjobke.de>
*	Fix duplicate session token after remembered login	Christoph Wurst	2017-09-20	1	-0/+1
\| \| \| \| \| \| \| \| \|	On a remembered login session, we create a new session token in the database with the values of the old one. As we actually don't need the old session token anymore, we can delete it right away. Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
*	Fix auth provider	Joas Schilling	2017-08-02	1	-1/+1
\| \| \| \|	Signed-off-by: Joas Schilling <coding@schilljs.com>
*	Fix clob comparison	Joas Schilling	2017-08-02	1	-1/+1
\| \| \| \|	Signed-off-by: Joas Schilling <coding@schilljs.com>
*	More phpstorm inspection fixes	Roeland Jago Douma	2017-07-24	1	-2/+1
\| \| \| \|	Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
*	Minor typos	Marcel Waldvogel	2017-07-21	3	-3/+3
\| \| \| \|	Signed-off-by: Marcel Waldvogel <marcel.waldvogel@uni-konstanz.de>
*	Rename table back to lowercase	Lukas Reschke	2017-05-18	1	-8/+8
\| \| \| \|	Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
*	delete auth token when client gets deleted	Bjoern Schiessle	2017-05-18	1	-7/+19
\| \| \| \|	Signed-off-by: Bjoern Schiessle <bjoern@schiessle.org>
*	Defining App "cron" for "Invalidating tokens older than" message #27167 (#27201)	Martin	2017-03-19	1	-2/+2
\| \| \| \|	Signed-off-by: Morris Jobke <hey@morrisjobke.de>
*	copy remember-me value when renewing a session token	Christoph Wurst	2016-11-27	1	-0/+1
\| \| \| \| \| \| \| \| \|	On renew, a session token is duplicated. For some reason we did not copy over the remember-me attribute value. Hence, the new token was deleted too early in the background job and remember-me did not work properly. Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
*	use lower loglevel for token cleanup messages	Robin Appelman	2016-11-17	1	-2/+2
\| \| \| \|	Signed-off-by: Robin Appelman <robin@icewind.nl>
*	Add test for setting up fake fs	Robin Appelman	2016-11-16	1	-1/+1
\| \| \| \|	Signed-off-by: Robin Appelman <robin@icewind.nl>
*	Adds TokenProvider and Mapper tests	Roeland Jago Douma	2016-11-16	1	-7/+5
\| \| \| \|	Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
*	explicit types	Robin Appelman	2016-11-16	1	-5/+11
\| \| \| \|	Signed-off-by: Robin Appelman <robin@icewind.nl>
*	cast to int	Robin Appelman	2016-11-16	1	-2/+2
\| \| \| \|	Signed-off-by: Robin Appelman <robin@icewind.nl>
*	phpdoc	Robin Appelman	2016-11-16	1	-2/+1
\| \| \| \|	Signed-off-by: Robin Appelman <robin@icewind.nl>
*	fix setscope	Robin Appelman	2016-11-16	1	-2/+2
\| \| \| \|	Signed-off-by: Robin Appelman <icewind@owncloud.com>
*	allow configuring filesystem access	Robin Appelman	2016-11-16	5	-7/+71
\| \| \| \|	Signed-off-by: Robin Appelman <icewind@owncloud.com>
*	app password scope wip	Robin Appelman	2016-11-16	3	-2/+19
\| \| \| \|	Signed-off-by: Robin Appelman <icewind@owncloud.com>
*	read lockdown scope from token	Robin Appelman	2016-11-16	3	-2/+19
\| \| \| \|	Signed-off-by: Robin Appelman <icewind@owncloud.com>
*	document what the method does	Christoph Wurst	2016-11-02	1	-0/+2
\| \| \| \|	Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
*	Add missing tests and fix PHPDoc	Lukas Reschke	2016-11-02	2	-1/+9
\| \| \| \|	Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
*	bring back remember-me	Christoph Wurst	2016-11-02	5	-12/+56
\| \| \| \| \| \| \| \| \| \|	* try to reuse the old session token for remember me login * decrypt/encrypt token password and set the session id accordingly * create remember-me cookies only if checkbox is checked and 2fa solved * adjust db token cleanup to store remembered tokens longer * adjust unit tests Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
*	add invalidateOldTokens to IProvider interface	Christoph Wurst	2016-08-02	2	-3/+7
\|
*	Fix others	Joas Schilling	2016-07-21	6	-6/+12
\|
*	Merge pull request #25172 from owncloud/token-login-validation	Vincent Petry	2016-06-22	5	-29/+66
\|\ \| \| \| \|	Token login validation
\| *	store last check timestamp in token instead of session	Christoph Wurst	2016-06-17	5	-24/+58
\| \|
\| *	use token last_activity instead of session value	Christoph Wurst	2016-06-17	2	-5/+8
\| \|
* \|	update session token password on user password change	Christoph Wurst	2016-06-21	2	-0/+27
\| \|
* \|	close cursor after loading a token	Christoph Wurst	2016-06-17	1	-0/+1
\|/
*	do not generate device token if 2FA is enable for user	Christoph Wurst	2016-06-07	1	-0/+1
\|
*	Create session tokens for apache auth users	Christoph Wurst	2016-05-31	3	-5/+14
\|
*	Update license headers	Lukas Reschke	2016-05-26	6	-6/+0
\|
*	when generating browser/device token, save the login name for later password ↵	Christoph Wurst	2016-05-24	5	-6/+32
\| \| \| \|	checks
*	add button to invalidate browser sessions/device tokens	Christoph Wurst	2016-05-23	5	-6/+37
\|
*	add button to add new device tokens	Christoph Wurst	2016-05-23	2	-1/+4
\|
*	list user's auth tokens on the personal settings page	Christoph Wurst	2016-05-23	1	-1/+11
\|
*	add method to query all user auth tokens	Christoph Wurst	2016-05-18	3	-0/+54
\|
*	a single token provider suffices	Christoph Wurst	2016-05-18	4	-10/+62
\|
*	don't spam the log file with failed token validation entries	Christoph Wurst	2016-05-13	1	-3/+1
\|
*	delete the token in case an exception is thrown when decrypting the password	Christoph Wurst	2016-05-11	1	-1/+8
\|
*	use the query builder instead of raw sql statements	Christoph Wurst	2016-05-11	1	-18/+27
\|
*	fix PHPDoc and other minor issues	Christoph Wurst	2016-05-11	4	-6/+11
\|
*	PHPDoc and other minor fixes	Christoph Wurst	2016-05-11	2	-6/+26
\|
*	Add token auth for OCS APIs	Christoph Wurst	2016-05-11	4	-4/+26
\|