summaryrefslogtreecommitdiffstats
path: root/lib
Commit message (Collapse)AuthorAgeFilesLines
* Fix(l10n): 🔠 Update translations from TransifexNextcloud bot2023-03-066-0/+16
| | | | Signed-off-by: Nextcloud bot <bot@nextcloud.com>
* Merge pull request #37040 from nextcloud/techdebt/noid/remove-deprecated-classesJoas Schilling2023-03-056-108/+11
|\ | | | | techdebt(workflowengine): Remove transition event classes
| * techdebt(workflowengine): Remove transition event classesJoas Schilling2023-03-036-108/+11
| | | | | | | | Signed-off-by: Joas Schilling <coding@schilljs.com>
* | Merge pull request #36736 from Glandos/patch-2John Molakvoæ2023-03-031-10/+17
|\ \ | |/ |/|
| * fix indent 2Glandos2023-02-161-7/+7
| | | | | | Signed-off-by: Glandos <bugs-github@antipoul.fr>
| * fix indentGlandos2023-02-151-8/+8
| | | | | | Signed-off-by: Glandos <bugs-github@antipoul.fr>
| * Use proc_open to avoid spawning a shellGlandos2023-02-151-10/+17
| | | | | | | | | | | | The use of `exec` will spawn a shell, using `/bin/sh` on POSIX platforms. But in restricted environment, such as AppArmor, this means giving execution to `/bin/sh`, which renders the execution restriction quite useless. Using an array with `proc_open` reduces this, and paved the way for file streaming instead of temporary file. Signed-off-by: Glandos <bugs-github@antipoul.fr>
* | Merge pull request #36941 from ↵Joas Schilling2023-03-031-8/+16
|\ \ | | | | | | | | | | | | nextcloud/bugfix/prevent-error-with-oracle-database Split the comments ids by chunks
| * | Split the comments ids by chunksVitor Mattos2023-03-011-8/+16
| | | | | | | | | | | | | | | | | | | | | | | | | | | Split the comments ids by chunks to prevent error with Oracle database that can't do a query with more than 1000 parameters. https://github.com/nextcloud/spreed/issues/8287 Signed-off-by: Vitor Mattos <vitor@php.rio>
* | | Fix(l10n): 🔠 Update translations from TransifexNextcloud bot2023-03-03194-0/+194
| | | | | | | | | | | | Signed-off-by: Nextcloud bot <bot@nextcloud.com>
* | | Implement file reference wigetJulius Härtl2023-03-022-9/+39
| | | | | | | | | | | | Signed-off-by: Julius Härtl <jus@bitgrid.net>
* | | Merge pull request #36803 from nextcloud/fix/sqlite-commentsblizzz2023-03-021-1/+5
|\ \ \ | | | | | | | | [db]: Remove not supported column comments for SQLite
| * | | fix(DB): Remove not supported column comments when using SQLiteFerdinand Thiessen2023-02-221-1/+5
| | | | | | | | | | | | | | | | Signed-off-by: Ferdinand Thiessen <rpm@fthiessen.de>
* | | | fix: treat text app session parameters as sensitive valuesMax2023-03-011-0/+10
| |/ / |/| | | | | | | | | | | | | | | | | | | | | | | | | | * `PublicSessionController create` receives a share token. * The others receive the parameters for a text session: `document_id`, `session_id`, `session_token`. Even though these are relatively short lived they could be used to retrieve content from the document when leaked. Signed-off-by: Max <max@nextcloud.com>
* | | Fix(l10n): 🔠 Update translations from TransifexNextcloud bot2023-03-014-0/+118
| | | | | | | | | | | | Signed-off-by: Nextcloud bot <bot@nextcloud.com>
* | | Fix(l10n): 🔠 Update translations from TransifexNextcloud bot2023-02-284-0/+4
| | | | | | | | | | | | Signed-off-by: Nextcloud bot <bot@nextcloud.com>
* | | feat(translations): Add translation provider APIJulius Härtl2023-02-2710-0/+390
| | | | | | | | | | | | Signed-off-by: Julius Härtl <jus@bitgrid.net>
* | | Merge pull request #36837 from nextcloud/fix/truncate-overlong-tagnamesJoas Schilling2023-02-271-3/+5
|\ \ \ | | | | | | | | fix(SystemTagManager): Truncate overlong tag names
| * | | fix(SystemTagManager): Truncate overlong tag namesMarcel Klehr2023-02-241-3/+5
| | | | | | | | | | | | | | | | Signed-off-by: Marcel Klehr <mklehr@gmx.net>
* | | | Fix(l10n): 🔠 Update translations from TransifexNextcloud bot2023-02-272-0/+2
| | | | | | | | | | | | | | | | Signed-off-by: Nextcloud bot <bot@nextcloud.com>
* | | | Fix(l10n): 🔠 Update translations from TransifexNextcloud bot2023-02-252-0/+2
| | | | | | | | | | | | | | | | Signed-off-by: Nextcloud bot <bot@nextcloud.com>
* | | | Merge pull request #36781 from ↵v26.0.0beta5Joas Schilling2023-02-242-2/+4
|\ \ \ \ | | | | | | | | | | | | | | | | | | | | nextcloud/bugfix/noid/run-repairsteps-against-oracle fix(CI): Run repair steps against Oracle DB
| * | | | Fix appconfig compatibility with Oracle DBJoas Schilling2023-02-231-1/+2
| | | | | | | | | | | | | | | | | | | | Signed-off-by: Joas Schilling <coding@schilljs.com>
| * | | | fix(OCC): Don't throw in the repair step for phone validationJoas Schilling2023-02-231-1/+2
| |/ / / | | | | | | | | | | | | Signed-off-by: Joas Schilling <coding@schilljs.com>
* / / / Fix(l10n): 🔠 Update translations from TransifexNextcloud bot2023-02-242-0/+2
|/ / / | | | | | | | | | Signed-off-by: Nextcloud bot <bot@nextcloud.com>
* / / Fix(l10n): 🔠 Update translations from TransifexNextcloud bot2023-02-232-0/+2
|/ / | | | | | | Signed-off-by: Nextcloud bot <bot@nextcloud.com>
* | fix: Update autoloader after #36792Julius Härtl2023-02-212-0/+2
| | | | | | | | Signed-off-by: Julius Härtl <jus@bitgrid.net>
* | Merge pull request #36795 from ↵Côme Chilliet2023-02-211-1/+1
|\ \ | | | | | | | | | | | | nextcloud/fix/remove-erronous-parentheses-in-in-clause Avoid extra parenthesis around SQL in IN expressions
| * | Avoid extra parenthesis around SQL in IN expressionsCôme Chilliet2023-02-211-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | The expression builder already suround the SQL with parenthesis when using in(), so we must not add another pair, this confuses at least sqlite. Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>
* | | Merge pull request #36792 from nextcloud/enh/noid/add-before-group-changed-eventJulien Veyssier2023-02-212-0/+96
|\ \ \ | | | | | | | | New BeforeGroupChangedEvent before setDisplayName on groups
| * | | dispatch new BeforeGroupChangedEvent before setDisplayName on groupsJulien Veyssier2023-02-212-0/+96
| |/ / | | | | | | | | | Signed-off-by: Julien Veyssier <julien-nc@posteo.net>
* | | Merge pull request #36428 from nextcloud/disable-db-user-createRobin Appelman2023-02-213-44/+53
|\ \ \ | |/ / |/| | add option to disable db user creation trough environment variable
| * | add option to disable db user creation trough environment variableRobin Appelman2023-02-213-44/+53
| | | | | | | | | | | | Signed-off-by: Robin Appelman <robin@icewind.nl>
* | | Revert "fix(performance): Do not set up filesystem on every call"Joas Schilling2023-02-216-18/+210
| | |
* | | Merge pull request #36759 from sgolovan/masterSimon L2023-02-201-1/+1
|\ \ \ | | | | | | | | Fix integer overflow on 32-bit systems when testing free space for wr…
| * | | Fix integer overflow on 32-bit systems when testing free space for writing a ↵Sergei Golovan2023-02-201-1/+1
| | | | | | | | | | | | | | | | config file.
* | | | Merge pull request #36727 from nextcloud/enh/file-id-direct-editingJulius Härtl2023-02-201-4/+21
|\ \ \ \ | |_|/ / |/| | | feat(directediting): Allow opening by file id
| * | | feat(directediting): Allow opening by file idJulius Härtl2023-02-201-4/+21
| | | | | | | | | | | | | | | | Signed-off-by: Julius Härtl <jus@bitgrid.net>
* | | | Merge pull request #36780 from nextcloud/bugfix/noid/console-error-share-authJulius Härtl2023-02-201-2/+1
|\ \ \ \ | |/ / / |/| | |
| * | | fix: Fix loading styles from core/css/Julius Härtl2023-02-201-2/+1
| |/ / | | | | | | | | | Signed-off-by: Julius Härtl <jus@bitgrid.net>
* | | Merge pull request #36653 from ↵Joas Schilling2023-02-201-1/+1
|\ \ \ | |/ / |/| | | | | | | | nextcloud/bugfix/noid/more-defensive-old-token-handling fix(authentication): Handle null or empty string password hash
| * | fix(authentication): Handle null or empty string password hashJoas Schilling2023-02-101-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | This can happen when the auth.storeCryptedPassword config is used, which previously errored with: Hasher::verify(): Argument #2 ($hash) must be of type string, null given Signed-off-by: Joas Schilling <coding@schilljs.com>
* | | Merge pull request #36589 from nextcloud/enh/perf-remove-icacheJulius Härtl2023-02-206-210/+18
|\ \ \
| * | | Do not set up filesystem on every callAnna Larch2023-02-176-210/+18
| | | | | | | | | | | | | | | | | | | | | | | | Also remove old Oc_FileChunking logis that produced GC- collectable chunks Signed-off-by: Anna Larch <anna@nextcloud.com>
* | | | Fix(l10n): 🔠 Update translations from TransifexNextcloud bot2023-02-194-0/+20
|/ / / | | | | | | | | | Signed-off-by: Nextcloud bot <bot@nextcloud.com>
* | | Revert the token scope to not end up with storing the user used in the sessionJulius Härtl2023-02-171-1/+15
| | | | | | | | | | | | Signed-off-by: Julius Härtl <jus@bitgrid.net>
* | | Merge pull request #36396 from nextcloud/fix/corsJulius Härtl2023-02-171-1/+1
|\ \ \
| * | | fix(CORS): CORS should only be bypassed on `PublicPage` if not logged in to ↵Ferdinand Thiessen2023-02-161-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | prevent CSRF attack vectors Signed-off-by: Ferdinand Thiessen <rpm@fthiessen.de>
* | | | Merge pull request #36735 from nextcloud/fix/32635/fix-vcf-contactsLouis2023-02-161-1/+7
|\ \ \ \ | | | | | | | | | | fix the contacts-menu vcf-contact avatars
| * | | | fix the contacts-menu vcf-contact avatarsSimon L2023-02-151-1/+7
| | |_|/ | |/| | | | | | | | | | Signed-off-by: Simon L <szaimen@e.mail.de>