| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| |
|
|
| |
Signed-off-by: Morris Jobke <hey@morrisjobke.de>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
This is not intended anymore, since it falls back to force english
when the header is not set. Also 0228bc6e66cbcb2848eacb41f1de6e7f63ebcb65
makes clear that the order should be:
1. User setting
2. Accept language
3. Admin default
This is the case since the commit from above, unless via OCS and DAV.
Both forced to accept-language falling back to english.
By removing the force, it now also matches the w3 priority list:
https://www.w3.org/International/questions/qa-lang-priorities
Signed-off-by: Joas Schilling <coding@schilljs.com>
|
| |
|
|
| |
Signed-off-by: Robin Appelman <robin@icewind.nl>
|
| |\
| |
| | |
Match slashes in ../{id} resource routes
|
| | |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
Fixes #2954
Before we could match on <prefix>/{id} however if the id contains a /
this would not match properly. But since we define the resource routes
internally we now make sure that we match all chars (up until the ?).
Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
|
| |\ \
| | |
| | |
| | |
| | | |
nextcloud/fix/custom-default-app-redirect-2fa-selection
Redirect to 2FA selection screen
|
| | |/
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
Apps like 'rainloop' use \OCP\Util::isLoggedIn() to check whether the
current request is authenticated. Since we redirected to the index
page before, it resulted in an infinite redirection loop. This change
sets the redirection URL to the 2FA selection page, which is the only
allowed page in that authentication state.
Fixes https://github.com/nextcloud/server/issues/3702
Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
|
| |\ \
| | |
| | | |
only chmod logfile if necessary
|
| | | |
| | |
| | | |
otherwise e.g. on SELinux this will log an error, so we better avoid it if not necessary.
|
| |\ \ \
| | | |
| | | | |
Introduce bruteforce settings
|
| | | | |
| | | |
| | | |
| | | | |
Signed-off-by: Morris Jobke <hey@morrisjobke.de>
|
| | | | |
| | | |
| | | |
| | | | |
Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
|
| | | | |
| | | |
| | | |
| | | | |
Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
|
| |\ \ \ \
| | | | |
| | | | | |
Endorse password protection
|
| | |/ / /
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | | |
works like "enforce password protection", but let the
user optionally remove the password protection after the
password is set. by Timo Benk
Signed-off-by: Bjoern Schiessle <bjoern@schiessle.org>
|
| | |_|/
|/| |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
Fixes #3890
If we do a put request without a body the current code still tries to
read the body. This patch makes sure that we do not try to read the body
if the content length is 0.
See RFC 2616 Section 4.3
Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
|
| |\ \ \
| |/ /
|/| | |
Fix check for cache value in JSCombiner
|
| | | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
* fixes following log output, because there was empty string
stored in the cache
Invalid argument supplied for foreach() at lib/private/Template/JSCombiner.php#108
Signed-off-by: Morris Jobke <hey@morrisjobke.de>
|
| |\ \ \
| | | |
| | | | |
Don't add the Encryption Storage Wrapper if there are no encryption modules
|
| | | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | | |
fixes #4125
If there is no encryption module enabled it makes no sense to setup the
encryption wrapper (because we can't do anything anyway).
This saves reading the header of files.
Especialy on external storage/objectstore this should improve
performance
Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
|
| |\ \ \ \
| | | | |
| | | | | |
Do not clear CSRF token on logout (fix for #1303)
|
| | | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | | |
This is a hacky way to allow the use case of #1303.
What happens is
1. User tries to login
2. PreLoginHook kicks in and figures out that the user need to change
their LDAP password or whatever => redirects user
3. While loading the redirect some logic of ours kicks in and logouts
the user (thus clearing the session).
4. We render the new page but now the session and the page disagree
about the CSRF token
This is kind of hacky but I don't think it introduces new attack
vectors.
Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
|
| |\ \ \ \ \
| | | | | |
| | | | | | |
support pushing to CappedMemoryCache
|
| | | | | | |
| | | | | |
| | | | | |
| | | | | | |
Signed-off-by: Robin Appelman <robin@icewind.nl>
|
| | | | | | |
| | | | | |
| | | | | |
| | | | | | |
Signed-off-by: Robin Appelman <robin@icewind.nl>
|
| | | | | | |
| | | | | |
| | | | | |
| | | | | | |
Signed-off-by: Robin Appelman <robin@icewind.nl>
|
| | | | | | |
| | | | | |
| | | | | |
| | | | | | |
Signed-off-by: Robin Appelman <robin@icewind.nl>
|
| | | | | | |
| | | | | |
| | | | | |
| | | | | | |
Signed-off-by: Robin Appelman <robin@icewind.nl>
|
| | | | | | |
| | | | | |
| | | | | |
| | | | | | |
Signed-off-by: Robin Appelman <robin@icewind.nl>
|
| | | | | | |
| | | | | |
| | | | | |
| | | | | | |
Signed-off-by: Robin Appelman <robin@icewind.nl>
|
| | | | | | |
| | | | | |
| | | | | |
| | | | | | |
Signed-off-by: Robin Appelman <robin@icewind.nl>
|
| | | | | | |
| | | | | |
| | | | | |
| | | | | | |
Signed-off-by: Robin Appelman <robin@icewind.nl>
|
| |/ / / / /
| | | | |
| | | | |
| | | | | |
Signed-off-by: Robin Appelman <robin@icewind.nl>
|
| |\ \ \ \ \
| | | | | |
| | | | | | |
Fix gzip files for Safari
|
| | | | | | |
| | | | | |
| | | | | |
| | | | | |
| | | | | |
| | | | | |
| | | | | | |
* Safari support gzip only if the filename does not
end on .gz - so this renames them to .gzip
Signed-off-by: Morris Jobke <hey@morrisjobke.de>
|
| | | | | | |
| | | | | |
| | | | | |
| | | | | | |
Signed-off-by: Jan-Christoph Borchardt <hey@jancborchardt.net>
|
| | | | | | |
| | | | | |
| | | | | |
| | | | | | |
Signed-off-by: Julius Härtl <jus@bitgrid.net>
|
| | |_|/ / /
|/| | | |
| | | | |
| | | | | |
Signed-off-by: Jan-Christoph Borchardt <hey@jancborchardt.net>
|
| |\ \ \ \ \
| | | | | |
| | | | | | |
Cache swift authentication token in memcache
|
| | | | | | |
| | | | | |
| | | | | |
| | | | | | |
Signed-off-by: Robin Appelman <robin@icewind.nl>
|
| | | | | | |
| | | | | |
| | | | | |
| | | | | | |
Signed-off-by: Robin Appelman <robin@icewind.nl>
|
| |\ \ \ \ \ \
| |_|/ / / /
|/| | | | | |
Remove verbose error message
|
| | | | | | |
| | | | | |
| | | | | |
| | | | | |
| | | | | |
| | | | | | |
There's no need to have this included in the error message.
Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
|
| |\ \ \ \ \ \
| | | | | | |
| | | | | | | |
Change the order on merging activities so the newest item is first
|
| | | | | | | |
| | | | | | |
| | | | | | |
| | | | | | | |
Signed-off-by: Joas Schilling <coding@schilljs.com>
|
| |\ \ \ \ \ \ \
| |_|_|_|_|/ /
|/| | | | | | |
Update legacy CSP policy
|
| | | | | | | |
| | | | | | |
| | | | | | |
| | | | | | |
| | | | | | |
| | | | | | | |
Aligns it with the one enforced by the AppFramework
Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
|
| |\ \ \ \ \ \ \
| |_|_|/ / / /
|/| | | | | | |
GZip generated CSS/JS files
|
| | | | | | | |
| | | | | | |
| | | | | | |
| | | | | | | |
Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
|
| | | |_|/ / /
| |/| | | |
| | | | | |
| | | | | |
| | | | | |
| | | | | |
| | | | | |
| | | | | |
| | | | | |
| | | | | | |
Since in production the SCSS files are compiled once and the javascript
files are combined once we can just as well gzip them aggresively.
This means that once they are requested and the browser supports gzip we
can just serve the gzipped file saving precious bandwidth.
Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
|
