nextcloud-server.git - Nextcloud server, a safe home for all your data: https://github.com/nextcloud/server

	Commit message (Collapse)	Author	Age	Files	Lines
*	(base) Give a hint in web interface if SimpleXML (php-xml) is missing	Josh Richards	2024-08-16	1	-0/+7
\| \| \| \| \| \| \| \| \| \| \| \| \|	Fixes #2180 And prevents #31473, #23970, #18610, #15708 Avoids a 500 error and also gives a useful error message on the web interface if this module isn't installed, gets overlooked during a PHP upgrade, etc. While we check for it later, it's too late for session. Inspired by #17163 Signed-off-by: Josh Richards <josh.t.richards@gmail.com>
*	Fix(l10n): Update translations from Transifex	Nextcloud bot	2024-08-16	4	-0/+40
\| \| \| \|	Signed-off-by: Nextcloud bot <bot@nextcloud.com>
*	feat(webauthn): Add user verification to webauthn challenges	S1m	2024-08-15	5	-8/+29
\| \| \| \| \| \| \| \|	Require user verification if all tokens are registered with UV flag, else discourage it Signed-off-by: S1m <git@sgougeon.fr> Signed-off-by: Richard Steinmetz <richard@steinmetz.cloud>
*	Fix(l10n): Update translations from Transifex	Nextcloud bot	2024-08-15	88	-242/+50
\| \| \| \|	Signed-off-by: Nextcloud bot <bot@nextcloud.com>
*	fix(webauthn): Increase database column for public key id	Ferdinand Thiessen	2024-08-14	2	-0/+2
\| \| \| \| \| \| \| \| \| \| \| \| \|	* Resolves https://github.com/nextcloud/server/issues/34476 There is no maximum length defined in the standard, most common the length is between 128 and 200 characters, but as we store it not in plain data but base64 encoded the length can grow about 1/3. We had a regression with 'Nitrokey 3' which created IDs with 196 byte length -> 262 bytes encoded base64. So to be save we increase the size to 512 bytes. Signed-off-by: Ferdinand Thiessen <opensource@fthiessen.de>
*	Merge pull request #45435 from nextcloud/feat/dav/upcoming-events-api	Christoph Wurst	2024-08-14	1	-0/+1
\|\ \| \| \| \|	feat(dav): Add an API for upcoming events
\| *	feat(dav): Add an API for upcoming events	Christoph Wurst	2024-08-13	1	-0/+1
\| \| \| \| \| \| \| \|	Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
* \|	Fix(l10n): Update translations from Transifex	Nextcloud bot	2024-08-14	6	-2/+44
\| \| \| \| \| \| \| \|	Signed-off-by: Nextcloud bot <bot@nextcloud.com>
* \|	Merge pull request #43573 from nextcloud/HolgerHees-fix-csp-nonce-handling	Ferdinand Thiessen	2024-08-13	5	-8/+22
\|\ \ \| \| \| \| \| \|	Fix for ignored `CSP_NONCE` in ContentSecurity Header
\| * \|	feat: Provide CSP nonce as `<meta>` element	Ferdinand Thiessen	2024-08-13	3	-5/+16
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	This way we use the CSP nonce for dynamically loaded scripts. Important to notice: The CSP nonce must NOT be injected in `content` as this can lead to value exfiltration using e.g. side-channel attacts (CSS selectors). Signed-off-by: Ferdinand Thiessen <opensource@fthiessen.de>
\| * \|	test: Adjust tests for CSP nonce	Ferdinand Thiessen	2024-08-13	1	-1/+1
\| \| \| \| \| \| \| \| \| \| \| \|	Signed-off-by: Ferdinand Thiessen <opensource@fthiessen.de>
\| * \|	fix: Make sure CSP nonce is not double base64 encoded	Ferdinand Thiessen	2024-08-13	2	-3/+6
\| \| \| \| \| \| \| \| \| \| \| \|	Signed-off-by: Ferdinand Thiessen <opensource@fthiessen.de>
\| * \|	fix: Use `CSP_NONCE` env variable in ContentSecurity Header	Holger Hees	2024-08-13	1	-1/+1
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	We should use 'cspNonceManager' for requesting the NONCE value, because it is doing the same as before, except that it honors a CPS_NONCE environment variable if available. Signed-off-by: Holger Hees <holger.hees@gmail.com>
* \| \|	feat(auth): Clean-up unused auth tokens and wipe tokens	Christoph Wurst	2024-08-13	2	-9/+21
\| \|/ \|/\| \| \| \| \|	Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
* \|	Merge pull request #47180 from ↵	Côme Chilliet	2024-08-13	2	-2/+45
\|\ \ \| \|/ \|/\| \| \| \| \|	nextcloud/fix/apply-group-limit-on-remove-from-group Apply group limit on remove from group
\| *	fix: Remove shares only if there are no more common groups between users	Côme Chilliet	2024-08-12	1	-38/+36
\| \| \| \| \| \| \| \|	Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>
\| *	fix(files_sharing): Delete user shares if needed when user is removed from a ↵	Louis Chemineau	2024-08-12	2	-2/+47
\| \| \| \| \| \| \| \| \| \| \| \|	group Signed-off-by: Louis Chemineau <louis@chmn.me>
* \|	Fix(l10n): Update translations from Transifex	Nextcloud bot	2024-08-13	6	-0/+72
\| \| \| \| \| \| \| \|	Signed-off-by: Nextcloud bot <bot@nextcloud.com>
* \|	fix(taskprocessing): select preferred provider when running sync task, fix ↵	Julien Veyssier	2024-08-12	3	-13/+18
\| \| \| \| \| \| \| \| \| \| \| \|	task type values according to preferred provider Signed-off-by: Julien Veyssier <julien-nc@posteo.net>
* \|	feat: Make `ISharedStorage` public API and reuse where possible	Ferdinand Thiessen	2024-08-12	3	-0/+28
\|/ \| \| \|	Signed-off-by: Ferdinand Thiessen <opensource@fthiessen.de>
*	Fix(l10n): Update translations from Transifex	Nextcloud bot	2024-08-12	2	-0/+2
\| \| \| \|	Signed-off-by: Nextcloud bot <bot@nextcloud.com>
*	Fix(l10n): Update translations from Transifex	Nextcloud bot	2024-08-11	4	-0/+42
\| \| \| \|	Signed-off-by: Nextcloud bot <bot@nextcloud.com>
*	Fix(l10n): Update translations from Transifex	Nextcloud bot	2024-08-10	16	-0/+18
\| \| \| \|	Signed-off-by: Nextcloud bot <bot@nextcloud.com>
*	Fix(l10n): Update translations from Transifex	Nextcloud bot	2024-08-09	126	-252/+282
\| \| \| \|	Signed-off-by: Nextcloud bot <bot@nextcloud.com>
*	fix(SetupCheck): Properly check public access to data directory	Ferdinand Thiessen	2024-08-08	8	-9/+51
\| \| \| \| \| \| \| \| \| \| \| \| \|	When checking for public (web) access to the data directory the status is not enough as you might have a webserver that forwards to e.g. a login page. So instead check that the content of the file matches. For this the `.ncdata` file (renamed from `.ocdata`¹) has minimal text content to allow checking. ¹The file was renamed from the legacy `.ocdata`, there is a repair step to remove the old one. Signed-off-by: Ferdinand Thiessen <opensource@fthiessen.de>
*	Fix(l10n): Update translations from Transifex	Nextcloud bot	2024-08-08	16	-0/+32
\| \| \| \|	Signed-off-by: Nextcloud bot <bot@nextcloud.com>
*	Merge pull request #47044 from nextcloud/fix/accept-several-mounts-in-encryption	Andy Scherzinger	2024-08-07	1	-1/+1
\|\ \| \| \| \|	fix(encryption): Fix mountpoint check to accept if several are found
\| *	fix(encryption): Fix mountpoint check to accept if several are found	Côme Chilliet	2024-08-05	1	-1/+1
\| \| \| \| \| \| \| \| \| \| \| \| \| \|	There is no strong requirement to have only one mount for a given storage id. Also the error in this case would be misleading. Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>
* \|	Merge pull request #46395 from nextcloud/apcu-default-ttl	Robin Appelman	2024-08-07	4	-29/+19
\|\ \ \| \| \| \| \| \|	fix: set default TTL for APCu cache as per docs
\| * \|	chore: remove Redis::DEFAULT_TTL constant now that it's defined in the interface	Robin Appelman	2024-08-07	1	-1/+0
\| \| \| \| \| \| \| \| \| \| \| \|	Signed-off-by: Robin Appelman <robin@icewind.nl>
\| * \|	chore: cleanup acpu inc and dec	Robin Appelman	2024-08-07	1	-28/+2
\| \| \| \| \| \| \| \| \| \| \| \|	Signed-off-by: Robin Appelman <robin@icewind.nl>
\| * \|	docs: clearify IMemcache::inc and dec behavior	Robin Appelman	2024-08-07	1	-0/+6
\| \| \| \| \| \| \| \| \| \| \| \|	Signed-off-by: Robin Appelman <robin@icewind.nl>
\| * \|	fix: set default TTL for APCu cache as per docs	Robin Appelman	2024-08-07	2	-0/+11
\| \| \| \| \| \| \| \| \| \| \| \|	Signed-off-by: Robin Appelman <robin@icewind.nl>
* \| \|	Merge pull request #47069 from ↵	Maxence Lange	2024-08-07	1	-0/+12
\|\ \ \ \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	nextcloud/fix/noid/display-message-on-no-migration-attributes fix(migration-preview): display a message if no attributes set
\| * \| \|	fix(migration-preview): display a message if no attributes set	Maxence Lange	2024-08-06	1	-0/+12
\| \| \| \| \| \| \| \| \| \| \| \|	Signed-off-by: Maxence Lange <maxence@artificial-owl.com>
* \| \| \|	fix(session): Log when session_* calls are slow	Christoph Wurst	2024-08-07	5	-17/+33
\| \|/ / \|/\| \| \| \| \| \| \| \|	Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
* \| \|	Fix(l10n): Update translations from Transifex	Nextcloud bot	2024-08-07	124	-124/+126
\|/ / \| \| \| \| \| \|	Signed-off-by: Nextcloud bot <bot@nextcloud.com>
* \|	Merge pull request #45879 from nextcloud/export-certificate-bundle	Andy Scherzinger	2024-08-06	2	-0/+2
\|\ \ \| \| \| \| \| \|	feat: add command to export certificate bundle
\| * \|	feat: add command to export certificate bundle	Robin Appelman	2024-08-01	2	-0/+2
\| \| \| \| \| \| \| \| \| \| \| \|	Signed-off-by: Robin Appelman <robin@icewind.nl>
* \| \|	Merge pull request #38364 from ↵	John Molakvoæ	2024-08-06	1	-2/+49
\|\ \ \ \| \| \| \| \| \| \| \| \| \| \| \|	joshtrichards/jr-preview-libgd-webp-animation-bypass
\| * \| \|	fix(previews): Don't crash on animated WEBP images	Josh Richards	2024-05-30	1	-2/+49
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	Fixes #30029 and #37263 libgd handles animated WEBP images poorly and generates a meaningless error message as a result. We were returning a 500 error for these preview requests (web) and a fatal error at the command-line (occ). Now we bypass libgd if the we detect an animated WEBP image (and simply don't generate the preview). No more 500 error. Should fix occ too. Signed-off-by: Josh Richards <josh.t.richards@gmail.com> Signed-off-by: Richard Steinmetz <richard@steinmetz.cloud>
* \| \| \|	Merge pull request #47048 from nextcloud/fix/log-link-reference-error	John Molakvoæ	2024-08-06	1	-5/+2
\|\ \ \ \
\| * \| \| \|	fix: Do not log link reference exceptions as error	Julius Härtl	2024-08-05	1	-5/+2
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	Signed-off-by: Julius Härtl <jus@bitgrid.net>
* \| \| \| \|	Merge pull request #47065 from nextcloud/fix/group-oc	John Molakvoæ	2024-08-06	1	-0/+2
\|\ \ \ \ \
\| * \| \| \| \|	fix: Ensure database connection is setup when getting group details	Ferdinand Thiessen	2024-08-06	1	-0/+2
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	Signed-off-by: Ferdinand Thiessen <opensource@fthiessen.de>
* \| \| \| \| \|	Merge pull request #46967 from nextcloud/fix/share-not-found	John Molakvoæ	2024-08-06	2	-19/+13
\|\ \ \ \ \ \
\| * \| \| \| \| \|	fix(files_sharing): show proper share not found error message	skjnldsv	2024-08-06	2	-19/+13
\| \|/ / / / / \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	Signed-off-by: skjnldsv <skjnldsv@protonmail.com>
* \| \| \| \| \|	Merge pull request #46985 from nextcloud/feat/email-share-format	John Molakvoæ	2024-08-06	1	-12/+12
\|\ \ \ \ \ \ \| \|/ / / / / \|/\| \| \| \| \|
\| * \| \| \| \|	fix(emails): adjust mail button to new design	skjnldsv	2024-08-06	1	-12/+12
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	Signed-off-by: skjnldsv <skjnldsv@protonmail.com>
* \| \| \| \| \|	fix: unify bundle naming	Jérôme Herbinet	2024-08-06	1	-1/+1
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	Signed-off-by: Jérôme Herbinet <33763786+Jerome-Herbinet@users.noreply.github.com> Signed-off-by: Andy Scherzinger <info@andy-scherzinger.de>