aboutsummaryrefslogtreecommitdiffstats
path: root/lib/private/Security
Commit message (Expand)AuthorAgeFilesLines
* Don't query the bruteforce attempts when we just deleted themJoas Schilling2021-12-011-2/+6
* Type hint in IpAddress Vincent Petry2021-11-221-3/+2
* Improve normalizer detecting IPv4 inside of IPv6Vincent Petry2021-11-221-2/+42
* Fix getting subnet of ipv4 mapped ipv6 addressesVincent Petry2021-11-221-0/+2
* Add an OCP for trusted domain helperJoas Schilling2021-10-281-13/+19
* Set associative = true for cleanup jobDaniel Kesselberg2021-10-071-1/+1
* Merge pull request #28728 from nextcloud/add-database-backend-limiterLukas Reschke2021-09-134-24/+138
|\
| * Implement review feedbackLukas Reschke2021-09-131-3/+3
| * Apply suggestions from code review Lukas Reschke2021-09-131-7/+5
| * Implement PR review feedbackLukas Reschke2021-09-072-6/+1
| * phpcsLukas Reschke2021-09-061-1/+0
| * Adjust logic to store period instead of current timestampLukas Reschke2021-09-064-44/+30
| * Add database ratelimiting backendLukas Reschke2021-09-061-0/+136
* | Confirm mails only per POSTArthur Schiwon2021-09-091-0/+4
* | add a job to clean up expired verification tokensArthur Schiwon2021-09-092-4/+108
* | move verification token logic out of lost password controllerArthur Schiwon2021-09-091-0/+111
|/
* Throw exception if encrypting the data failed.Daniel Kesselberg2021-07-051-6/+16
* Update php licensesJohn Molakvoæ (skjnldsv)2021-06-0427-44/+20
* Merge pull request #26626 from J0WI/strict-securityRoeland Jago Douma2021-05-185-29/+45
|\
| * Make Security module strictJ0WI2021-04-195-29/+45
* | Merge pull request #25714 from nextcloud/fix/23197/explicitly_check_hex2bin_i...Morris Jobke2021-04-221-3/+19
|\ \ | |/ |/|
| * Explicitly check hex2bin inputRoeland Jago Douma2021-02-181-3/+19
* | Increase subnet matcherLukas Reschke2021-04-071-2/+2
|/
* Bump nextcloud/coding-standard from 0.3.0 to 0.5.0dependabot-preview[bot]2021-02-181-1/+1
* Remove unneeded casts that were found by PsalmMorris Jobke2021-01-111-2/+2
* Update all license headers for Nextcloud 21Christoph Wurst2020-12-165-3/+6
* Avoid checking for brute force protection capabilities when upgradingJulius Härtl2020-12-091-0/+4
* Replace the credentials table with one that can have empty userJoas Schilling2020-11-101-1/+1
* Fix comparing the empty string for global credentialsJoas Schilling2020-11-101-6/+15
* Don't leave cursors open when tests failJoas Schilling2020-11-091-1/+4
* Always return the default path if we canRoeland Jago Douma2020-11-031-0/+28
* Improve CertificateManager to not be user context dependentMorris Jobke2020-11-031-51/+15
* Derive encryption key & MAC key from a single key.lynn-stephenson2020-10-151-7/+15
* Limit throttler to 48 hoursRoeland Jago Douma2020-10-081-0/+5
* Add cleanup job for old brutefoce attemptsRoeland Jago Douma2020-10-081-0/+55
* Format code to a single space around binary operatorsChristoph Wurst2020-10-052-4/+4
* Remove @suppress SqlInjectionCheckerMorris Jobke2020-09-161-1/+0
* Don't break when the IP is emptyJoas Schilling2020-09-101-0/+4
* Update the license headers for Nextcloud 20Christoph Wurst2020-08-244-1/+6
* Fix CSJoas Schilling2020-08-191-0/+1
* Correctly return ms delay when at maxJoas Schilling2020-08-191-3/+4
* Add missing defaultJoas Schilling2020-08-191-1/+1
* Simplify array filterJoas Schilling2020-08-191-2/+1
* Fix wrong doc + type hintJoas Schilling2020-08-191-2/+2
* Only throw when also the last 30 mins were attackingJoas Schilling2020-08-191-8/+9
* Make the throttling O(2^n) instead of O(n^n)Joas Schilling2020-08-191-9/+9
* Make Throttler strictJoas Schilling2020-08-191-9/+10
* Split delay calculation from getting the attemptsJoas Schilling2020-08-191-5/+17
* Let the database count the entriesJoas Schilling2020-08-191-2/+6
* Send "429 Too Many Requests" in case of brute force protectionJoas Schilling2020-08-191-1/+21
generated by cgit v1.2.3 (git 2.39.1) at 2024-12-28 04:22:09 +0000