summaryrefslogtreecommitdiffstats
path: root/lib
Commit message (Collapse)AuthorAgeFilesLines
* Merge pull request #11613 from nextcloud/add-missing-throw-statementMorris Jobke2018-10-041-1/+2
|\ | | | | add missing throw statement to doc block
| * add missing throw statement to doc blockBjoern Schiessle2018-10-041-1/+2
| | | | | | | | Signed-off-by: Bjoern Schiessle <bjoern@schiessle.org>
* | Merge pull request #11604 from nextcloud/remove-unused-codeRoeland Jago Douma2018-10-042-80/+24
|\ \ | | | | | | Remove unused code in legacy classes
| * | Remove unused code in legacy classesMorris Jobke2018-10-032-80/+24
| | | | | | | | | | | | Signed-off-by: Morris Jobke <hey@morrisjobke.de>
* | | Merge pull request #11576 from ↵Morris Jobke2018-10-032-0/+2
|\ \ \ | | | | | | | | | | | | | | | | nextcloud/feature/endpoint_for_clients_to_fetch_apppassword Allow clients to request an apppassword if they still use the real password
| * | | Add an endppoint for clients to request an app passwordRoeland Jago Douma2018-10-032-0/+2
| |/ / | | | | | | | | | | | | | | | | | | | | | Now that we allow enforcing 2 factor auth it make sense if we also allow and endpoint where the clients can in the background fetch an apppassword if they were configured before the login flow was present. Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
* / / [tx-robot] updated from transifexNextcloud bot2018-10-032-2/+8
|/ /
* | Merge pull request #11568 from nextcloud/fix/11097/just_update_password_hashMorris Jobke2018-10-031-8/+12
|\ \ | | | | | | Just update password hash without validating
| * | Just update password hash without validatingRoeland Jago Douma2018-10-031-8/+12
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Fixes #11097 If your password hash changed (becuse your are on 7.2 and we moved to ARGON2). Then we shold not 'set a new password' but just update the hash. As else we invoke the password policy again which might lock out users. Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
* | | Merge pull request #11409 from nextcloud/feature/consolidated-2fa-settingsRoeland Jago Douma2018-10-035-4/+142
|\ \ \ | |/ / |/| | Consolidate personal two-factor provider settings
| * | Update autoloader class mapChristoph Wurst2018-10-022-0/+4
| | | | | | | | | | | | Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
| * | Consolidate personal two-factor provider settingsChristoph Wurst2018-10-023-4/+138
| | | | | | | | | | | | Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
* | | Merge pull request #11446 from nextcloud/bugfix/10678/pretty-urls-dont-workMorris Jobke2018-10-021-3/+2
|\ \ \ | | | | | | | | Allow overwrite.cli.url without trailing slash
| * | | Allow url without / for overwrite.cli.urlDaniel Kesselberg2018-09-281-3/+2
| | | | | | | | | | | | | | | | Signed-off-by: Daniel Kesselberg <mail@danielkesselberg.de>
* | | | Merge pull request #10967 from nextcloud/zipresponseMorris Jobke2018-10-023-0/+89
|\ \ \ \ | | | | | | | | | | Add zip response
| * | | | Add PHPDocMorris Jobke2018-10-021-4/+14
| | | | | | | | | | | | | | | | | | | | Signed-off-by: Morris Jobke <hey@morrisjobke.de>
| * | | | fixup! Add fix responseRoeland Jago Douma2018-10-021-1/+1
| | | | | | | | | | | | | | | | | | | | Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
| * | | | fixup! Add fix responseRoeland Jago Douma2018-10-021-3/+5
| | | | | | | | | | | | | | | | | | | | Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
| * | | | fixup! Add fix responseRoeland Jago Douma2018-10-021-5/+5
| | | | | | | | | | | | | | | | | | | | Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
| * | | | Add fix responseJakob Sack2018-10-023-5/+82
| | | | | | | | | | | | | | | | | | | | implements #7589
* | | | | Validate email in occ commandDaniel Kesselberg2018-10-021-6/+1
| | | | | | | | | | | | | | | | | | | | Signed-off-by: Daniel Kesselberg <mail@danielkesselberg.de>
* | | | | Use setUserValue instead setEMailAddress because latter omits an changeUser ↵Daniel Kesselberg2018-10-021-8/+10
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | events. Signed-off-by: Daniel Kesselberg <mail@danielkesselberg.de>
* | | | | Add --admin-email to cli installerDaniel Kesselberg2018-10-021-0/+9
| |_|/ / |/| | | | | | | | | | | Signed-off-by: Daniel Kesselberg <mail@danielkesselberg.de>
* | | | Merge pull request #11390 from nextcloud/feature/11043/apptoken_v3Morris Jobke2018-10-029-3/+106
|\ \ \ \ | | | | | | | | | | Apptoken v3: imrpove token handling on external password change
| * | | | Add testsRoeland Jago Douma2018-10-021-1/+4
| | | | | | | | | | | | | | | | | | | | Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
| * | | | Update all the publickey tokens if needed on web loginRoeland Jago Douma2018-10-026-1/+52
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * On weblogin check if we have invalid public key tokens * If so update them all with the new token This ensures that your marked as invalid tokens work again if you once login on the web. Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
| * | | | Mark token as invalid if the password doesn't matchRoeland Jago Douma2018-10-026-3/+50
| | | | | | | | | | | | | | | | | | | | Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
| * | | | Add column to DB to store expired passwordsRoeland Jago Douma2018-10-022-0/+2
| | | | | | | | | | | | | | | | | | | | Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
* | | | | Merge pull request #11336 from nextcloud/bugfix/3342/database-name-prefix-sqliteMorris Jobke2018-10-022-8/+44
|\ \ \ \ \ | | | | | | | | | | | | Allow --database-name and --database-table-prefix for sqlite from occ
| * | | | | Use empty instead ?? because dbname is '' sometimesDaniel Kesselberg2018-09-231-2/+7
| | | | | | | | | | | | | | | | | | | | | | | | Signed-off-by: Daniel Kesselberg <mail@danielkesselberg.de>
| * | | | | Use const for dbname and dbtableprefix defaultsDaniel Kesselberg2018-09-232-8/+41
| | | | | | | | | | | | | | | | | | | | | | | | Signed-off-by: Daniel Kesselberg <mail@danielkesselberg.de>
| * | | | | --database-name or --database-table-prefix are ignored for sqliteDaniel Kesselberg2018-09-231-4/+2
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | The default implementation of initialize in AbstractDatabase writes database information to config.php. The method is overwritten in Sqlite but parent is never called. Database-Name and Database-Table-Prefix are never written to config.php. But from this point setup use values from config. Signed-off-by: Daniel Kesselberg <mail@danielkesselberg.de>
* | | | | | Make logfile's mode configurable.Roland Tapken2018-10-021-2/+5
| |/ / / / |/| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | The file logger currently resets the mode of the logfile to 0640. When the webserver is running as a different user than the cron job (but both are in the same group) the files mode has to be 0660. The current implementation breaks logging for the user that is not the owner of the logfile. This patch introduces a new config option 'logfilemode' that expects an octal value (defaults to 0640). Unless the value is lower or equal than 0 the logfiles mode will be resetted to this value. Signed-off-by: Roland Tapken <roland@bitarbeiter.net>
* | | | | Merge pull request #11433 from nextcloud/feature/all_lax_cookies2Christoph Wurst2018-10-024-4/+108
|\ \ \ \ \ | | | | | | | | | | | | Make authenticated cookies lax
| * | | | | Make authenticated cookies laxRoeland Jago Douma2018-09-284-4/+108
| | |_|/ / | |/| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This protects our cookies a bit more. It makes sure that when a 3rdparty websites embededs a public alendar for example. That all the users see this in anonymous mode there. It adds a small helper function. In the future we can think about protecting other cookies like this as well. But for now this is sufficient to not have the user logged in at all when doing 3rdparty requests. Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
* | | | | Document possibly thrown excption of QBMapper::insertOrUpdateChristoph Wurst2018-10-021-0/+1
| | | | | | | | | | | | | | | | | | | | Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
* | | | | Add QBMapper::insertOrUpdate()Christoph Wurst2018-10-021-1/+18
| |_|/ / |/| | | | | | | | | | | | | | | | | | | | | | | | | | | This allows elegant upserts where the entity ID is provided (e.g. by an external system) and when that data is fed into our database multiple times. Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
* | | | [tx-robot] updated from transifexNextcloud bot2018-10-022-0/+30
| | | |
* | | | Let 2FA providers provide their custom icons (dark/light)Christoph Wurst2018-10-013-0/+57
| | | | | | | | | | | | | | | | Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
* | | | Emit event on enablign or disabling of 2FA providerRoeland Jago Douma2018-10-015-1/+83
| | | | | | | | | | | | | | | | Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
* | | | Merge pull request #11461 from ↵Morris Jobke2018-10-011-14/+1
|\ \ \ \ | | | | | | | | | | | | | | | | | | | | nextcloud/feature/noid/drop-find-and-pass-additional-paths Dont use find to lookup binaries
| * | | | Dont use find to lookup binariesDaniel Kesselberg2018-09-291-14/+1
| |/ / / | | | | | | | | | | | | Signed-off-by: Daniel Kesselberg <mail@danielkesselberg.de>
* / / / Add mandatory 2FA service/classChristoph Wurst2018-09-304-2/+64
|/ / / | | | | | | | | | Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
* | | [tx-robot] updated from transifexNextcloud bot2018-09-282-0/+8
| | |
* | | Compile contactmenu handlebars templatesRoeland Jago Douma2018-09-271-0/+1
| |/ |/| | | | | | | | | | | | | | | | | Fixes #11029 For https://github.com/orgs/nextcloud/projects/18 Ship the compiled handlebars templates. This makes it possible to have a scricter CSP. Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
* | Remove unused constructor argumentChristoph Wurst2018-09-272-7/+0
| | | | | | | | Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
* | Reduce settings manager complexity by loading sections via DIChristoph Wurst2018-09-272-91/+31
| | | | | | | | Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
* | [tx-robot] updated from transifexNextcloud bot2018-09-272-2/+2
| |
* | Merge pull request #11150 from nextcloud/feature/noid/unit-test-find-webrootblizzz2018-09-261-11/+31
|\ \ | | | | | | Extract logic for webroot into method and add test
| * | Change visibility to privateDaniel Kesselberg2018-09-131-1/+1
| | | | | | | | | | | | Signed-off-by: Daniel Kesselberg <mail@danielkesselberg.de>
generated by cgit v1.2.3 (git 2.39.1) at 2025-01-07 17:40:27 +0000