aboutsummaryrefslogtreecommitdiffstats
path: root/lib/public/AppFramework/Http
Commit message (Collapse)AuthorAgeFilesLines
...
* Allow to set a strict-dynamic CSP through the APIJulius Härtl2022-03-092-0/+17
| | | | Signed-off-by: Julius Härtl <jus@bitgrid.net>
* Improve caching policyCarl Schwan2022-02-161-2/+2
| | | | | | | | | | | | | | * Cache css with version in url. This makes most js and css requests to be cached by the browser * Force caching previews, the etag is in the url so that if the propfind gives a new etag, we will refresh it otherwise it's no use to try to fetch the new etag and do tons of DB queries Tested with firefox and 'debug' => false (important so that the js/css urls are generated with ?v= parameter) Signed-off-by: Carl Schwan <carl@carlschwan.eu>
* send request id in response headerRobin Appelman2022-02-011-0/+7
| | | | Signed-off-by: Robin Appelman <robin@icewind.nl>
* Merge branch 'master' into enhancement/noid/IURLGenerator-linkToDefaultPageUrlDaniel Rudolf2021-08-041-1/+1
|\
| * Remove some mentions of ownCloud from our api documentationCarl Schwan2021-07-291-1/+1
| | | | | | | | Signed-off-by: Carl Schwan <carl@carlschwan.eu>
* | Add RedirectToDefaultAppResponse::__construct() annotationsDaniel Rudolf2021-07-011-0/+3
| | | | | | | | Signed-off-by: Daniel Rudolf <github.com@daniel-rudolf.de>
* | Deprecate RedirectToDefaultAppResponseDaniel Rudolf2021-07-011-3/+2
| | | | | | | | Signed-off-by: Daniel Rudolf <github.com@daniel-rudolf.de>
* | Remove \OC::$server->getURLGenerator() usageDaniel Rudolf2021-07-011-1/+4
| | | | | | | | Signed-off-by: Daniel Rudolf <github.com@daniel-rudolf.de>
* | Add IUrlGenerator::linkToDefaultPageUrl()Daniel Rudolf2021-06-301-1/+2
|/ | | | | | Replaces the deprecated \OC_Util::getDefaultPageUrl() and makes this API public. Signed-off-by: Daniel Rudolf <github.com@daniel-rudolf.de>
* Merge pull request #27635 from nextcloud/fix/datetime-constantsPytal2021-06-231-2/+2
|\ | | | | Fix usage of DateTime constants
| * Move DateTime::RFC2822 to DateTimeInterface::2822Christoph Wurst2021-06-231-2/+2
| | | | | | | | Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
* | Add security.txtLukas Reschke2021-06-231-0/+62
|/ | | | | | Ref https://securitytxt.org Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
* Merge pull request #26494 from rigrig/fix-php8-deprecationsMorris Jobke2021-06-071-1/+1
|\ | | | | Fix some php 8 warnings
| * Fix a usort comparison function returning a boolean instead of an integerRichard de Boer2021-05-291-1/+1
| | | | | | | | | | | | PHP 8 shows deprecation warnings about this, see #25806 Signed-off-by: Richard de Boer <git@tubul.net>
* | Update php licensesJohn Molakvoæ (skjnldsv)2021-06-0430-68/+20
| | | | | | | | Signed-off-by: John Molakvoæ (skjnldsv) <skjnldsv@protonmail.com>
* | Escape filename in Content-DispositionLukas Reschke2021-06-021-6/+2
|/ | | | | | We should escape all occurences of ' and \ in here. Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
* Make debugging easier which header is being setJoas Schilling2021-03-241-3/+3
| | | | Signed-off-by: Joas Schilling <coding@schilljs.com>
* Initialize \OCP\AppFramework\Http\ZipResponse::$resourcesChristoph Wurst2021-02-171-1/+1
| | | | Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
* Update license headersChristoph Wurst2020-12-301-1/+0
| | | | Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
* Update all license headers for Nextcloud 21Christoph Wurst2020-12-163-0/+3
| | | | Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
* Log an error when setting a custom header on "Not Modified" responsesJoas Schilling2020-12-151-0/+14
| | | | Signed-off-by: Joas Schilling <coding@schilljs.com>
* Update comment to reflect current CSP policyThomas Citharel2020-12-121-1/+1
| | | JS unsafe-eval was removed a long time ago in https://github.com/nextcloud/server/pull/11028
* Fix DataResponse typehintsRoeland Jago Douma2020-11-191-4/+4
| | | | | | | | | We use this already in several places where we just pass strings or numbers. This all works because we just convert it to a json response in the end. So better to have the typehints reflect this. Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
* Set frame-ancestors to none if none are filledRoeland Jago Douma2020-11-181-0/+2
| | | | | | | | frame-ancestors doesn't fall back to default-src. So when we apply a very restricted CSP we should make sure to set it to 'none' and not leave it empty. Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
* Remove deprecated OCSResponseRoeland Jago Douma2020-11-011-95/+0
| | | | Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
* Format code to a single space around binary operatorsChristoph Wurst2020-10-056-10/+10
| | | | Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
* Add acutal response to BeforeTemplateRenderedEventJulius Härtl2020-09-241-1/+12
| | | | Signed-off-by: Julius Härtl <jus@bitgrid.net>
* Merge pull request #22432 from nextcloud/enh/phpdocRoeland Jago Douma2020-08-2617-17/+0
|\ | | | | Add php docs build script
| * Remove @package annotations from public namespaceJulius Härtl2020-08-2617-17/+0
| | | | | | | | Signed-off-by: Julius Härtl <jus@bitgrid.net>
* | Update the license headers for Nextcloud 20Christoph Wurst2020-08-246-3/+12
|/ | | | Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
* Fix CSJoas Schilling2020-08-191-0/+1
| | | | Signed-off-by: Joas Schilling <coding@schilljs.com>
* Send "429 Too Many Requests" in case of brute force protectionJoas Schilling2020-08-191-0/+51
| | | | Signed-off-by: Joas Schilling <coding@schilljs.com>
* Merge pull request #22097 from nextcloud/enh/noid/empty-templateMorris Jobke2020-08-051-0/+5
|\ | | | | Add empty renderAs template
| * Add base renderAs templateJulius Härtl2020-08-041-0/+5
| | | | | | | | Signed-off-by: Julius Härtl <jus@bitgrid.net>
* | Move NotFoundResponse to a proper TemplateResponseJulius Härtl2020-07-241-13/+2
|/ | | | Signed-off-by: Julius Härtl <jus@bitgrid.net>
* Add constants for the magic strings of template renderingJoas Schilling2020-07-161-3/+34
| | | | Signed-off-by: Joas Schilling <coding@schilljs.com>
* Better event description for BeforeTemplateRenderedEvent in files and ↵Morris Jobke2020-07-151-2/+2
| | | | | | files_sharing Signed-off-by: Morris Jobke <hey@morrisjobke.de>
* Add real events to load additionalscriptsRoeland Jago Douma2020-07-152-0/+62
| | | | Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
* Fix robots "noindex, nofollow" signalsJoas Schilling2020-06-252-0/+2
| | | | Signed-off-by: Joas Schilling <coding@schilljs.com>
* Allow to specify the cookie type for appframework responsesRoeland Jago Douma2020-06-222-3/+5
| | | | | | | | | In general it is good to set them to Lax. But also to give devs more control over them is not a bad thing. Helps with #21474 Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
* Merge pull request #20897 from nextcloud/bugfix/httpcacheRoeland Jago Douma2020-05-131-5/+4
|\ | | | | Proxy server could cache http response when it is not private
| * Add public argument to Http cacheFor()Clement Wong2020-05-101-5/+4
| | | | | | | | Signed-off-by: Clement Wong <git@clement.hk>
| * Proxy server could cache http response when it is not privateClement Wong2020-05-101-2/+2
| | | | | | | | Signed-off-by: Clement Wong <git@clement.hk>
* | Update license headers for 19Christoph Wurst2020-04-293-0/+3
|/ | | | Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
* Add visibility to all constantsChristoph Wurst2020-04-101-2/+2
| | | | Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
* Format control structures, classes, methods and functionChristoph Wurst2020-04-1017-50/+26
| | | | | | | | | | | | | | | To continue this formatting madness, here's a tiny patch that adds unified formatting for control structures like if and loops as well as classes, their methods and anonymous functions. This basically forces the constructs to start on the same line. This is not exactly what PSR2 wants, but I think we can have a few exceptions with "our" style. The starting of braces on the same line is pracrically standard for our code. This also removes and empty lines from method/function bodies at the beginning and end. Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
* Unify function spacing to PSR2 recommendationChristoph Wurst2020-04-096-15/+15
| | | | Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
* Use exactly one empty line after the namespace declarationChristoph Wurst2020-04-095-5/+0
| | | | | | For PSR2 Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
* Fix (array) indent style to always use one tabChristoph Wurst2020-04-094-5/+5
| | | | Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
* Update the license headers for Nextcloud 19Christoph Wurst2020-03-316-2/+7
| | | | Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
generated by cgit v1.2.3 (git 2.39.1) at 2025-08-03 07:41:47 +0000