summaryrefslogtreecommitdiffstats
path: root/lib
Commit message (Collapse)AuthorAgeFilesLines
* fix(auth): Allow 2FA challenges for Ephemeral sessionsbackport/51544/stable29Joas Schilling6 days1-0/+5
| | | | Signed-off-by: Joas Schilling <coding@schilljs.com>
* Fix(l10n): Update translations from TransifexNextcloud bot6 days4-60/+118
| | | | Signed-off-by: Nextcloud bot <bot@nextcloud.com>
* Merge pull request #51369 from nextcloud/backport/51361/stable29Joas Schilling7 days1-28/+31
|\ | | | | [stable29] fix(base.php): Correct order for booting \OC\Server
| * fix(base.php): Correct order for booting \OC\Serverbackport/51361/stable29Joas Schilling14 days1-28/+31
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | A recent change had broken authentication with an older FastCGI Apache2 module, because the IRequest object got initialised before the fix from self::handleAuthHeaders() copied the authentication headers into the correct $_SERVER variables. Since this part is completely independent from any Nextcloud code it is now done as a first thing within the init() call. Additionally similar issues could happen when another class would boot too early and read other global PHP settings like ini values and default timezone, so those are now also moved to the beginning. Signed-off-by: Joas Schilling <coding@schilljs.com>
* | Fix(l10n): Update translations from TransifexNextcloud bot8 days2-0/+4
| | | | | | | | Signed-off-by: Nextcloud bot <bot@nextcloud.com>
* | Fix(l10n): Update translations from TransifexNextcloud bot9 days2-0/+4
| | | | | | | | Signed-off-by: Nextcloud bot <bot@nextcloud.com>
* | Fix(l10n): Update translations from TransifexNextcloud bot10 days4-0/+16
| | | | | | | | Signed-off-by: Nextcloud bot <bot@nextcloud.com>
* | Fix(l10n): Update translations from TransifexNextcloud bot11 days2-0/+12
| | | | | | | | Signed-off-by: Nextcloud bot <bot@nextcloud.com>
* | Fix(l10n): Update translations from TransifexNextcloud bot12 days2-2/+26
| | | | | | | | Signed-off-by: Nextcloud bot <bot@nextcloud.com>
* | fix(lookup-server): disable lookup server for non-global scale setupsFerdinand Thiessen13 days1-2/+4
| | | | | | | | Signed-off-by: Ferdinand Thiessen <opensource@fthiessen.de>
* | fix(lookup-server): do not query data by defaultFerdinand Thiessen13 days1-1/+1
| | | | | | | | Signed-off-by: Ferdinand Thiessen <opensource@fthiessen.de>
* | Fix(l10n): Update translations from TransifexNextcloud bot13 days2-0/+2
|/ | | | Signed-off-by: Nextcloud bot <bot@nextcloud.com>
* Fix(l10n): Update translations from TransifexNextcloud bot2025-03-092-38/+38
| | | | Signed-off-by: Nextcloud bot <bot@nextcloud.com>
* Fix(l10n): Update translations from TransifexNextcloud bot2025-03-082-14/+14
| | | | Signed-off-by: Nextcloud bot <bot@nextcloud.com>
* Fix(l10n): Update translations from TransifexNextcloud bot2025-03-062-2/+2
| | | | Signed-off-by: Nextcloud bot <bot@nextcloud.com>
* Fix(l10n): Update translations from TransifexNextcloud bot2025-03-066-24/+34
| | | | Signed-off-by: Nextcloud bot <bot@nextcloud.com>
* fix(login): Properly target public page with attributebackport/51280/stable29Louis Chemineau2025-03-051-1/+2
| | | | Signed-off-by: Louis Chemineau <louis@chmn.me>
* Merge pull request #51253 from nextcloud/backport/50989/stable29Andy Scherzinger2025-03-051-1/+1
|\ | | | | [stable29] fix: Use case insensitive check when validating login name
| * fix: use mb_strtolower to convert login namebackport/50989/stable29Cleopatra Enjeck M.2025-03-051-1/+1
| | | | | | | | Signed-off-by: Cleopatra Enjeck M. <patrathewhiz@gmail.com>
| * fix: Improve string comparisonCleopatra Enjeck M.2025-03-051-1/+1
| | | | | | | | Signed-off-by: Cleopatra Enjeck M. <patrathewhiz@gmail.com>
| * fix: Use case insensitive check when validating login nameCleopatra Enjeck M.2025-03-051-1/+1
| | | | | | | | Signed-off-by: Cleopatra Enjeck M. <patrathewhiz@gmail.com>
* | fix: No IFactory in constructorbackport/51259/stable29Marcel Müller2025-03-051-3/+1
| | | | | | | | Signed-off-by: Marcel Müller <marcel-mueller@gmx.de>
* | fix(files): Don't do session related work in the constructor of the ViewJoas Schilling2025-03-051-10/+10
|/ | | | Signed-off-by: Joas Schilling <coding@schilljs.com>
* Fix(l10n): Update translations from TransifexNextcloud bot2025-03-052-0/+12
| | | | Signed-off-by: Nextcloud bot <bot@nextcloud.com>
* Merge pull request #51060 from nextcloud/backport/51050/stable29Louis2025-03-041-2/+2
|\ | | | | [stable29] fix: Report duplicated extra files in integrity check
| * fix: Report duplicated extra files in integrity checkbackport/51050/stable29Louis Chemineau2025-03-031-2/+2
| | | | | | | | | | | | | | | | The `array_diff` is not comparing the array keys. This means that an extra key with an expected hash will not be reported. Using `array_diff_assoc` will report such files. For example, copying `status.php` to `status 2.php`, will only be reported with the new version. Signed-off-by: Louis Chemineau <louis@chmn.me>
* | Merge pull request #51201 from nextcloud/backport/51194/stable29Stephan Orbaugh2025-03-042-63/+27
|\ \ | | | | | | [stable29] refactor(TempManager): Simplify and unify implementations and remove legacy behavior
| * | refactor(TempManager): Simplify and unify implementations and remove legacy ↵backport/51194/stable29provokateurin2025-03-042-63/+27
| | | | | | | | | | | | | | | | | | behavior Signed-off-by: provokateurin <kate@provokateurin.de>
* | | Merge pull request #51204 from nextcloud/backport/51000/stable29Stephan Orbaugh2025-03-047-44/+92
|\ \ \ | | | | | | | | [stable29] fix(FederatedShareProvider): Delete external shares when groups are deleted or users removed from a group
| * | | fix(Share20\Manager): Propagate user and group deletion to remote share ↵provokateurin2025-03-041-4/+16
| | | | | | | | | | | | | | | | | | | | | | | | providers Signed-off-by: provokateurin <kate@provokateurin.de>
| * | | fix(Share20): Convert broken hooks to IEventListenerprovokateurin2025-03-046-40/+76
| |/ / | | | | | | | | | Signed-off-by: provokateurin <kate@provokateurin.de>
* | | fix: psalm and OCP @since declarationsbackport/50660/stable29John Molakvoæ2025-03-041-1/+1
| | | | | | | | | | | | | | | | | | Co-authored-by: Ferdinand Thiessen <opensource@fthiessen.de> Signed-off-by: John Molakvoæ <skjnldsv@users.noreply.github.com>
* | | fix: make sure we process mime extensions as stringskjnldsv2025-03-041-4/+10
|/ / | | | | | | Signed-off-by: skjnldsv <skjnldsv@protonmail.com>
* / Fix(l10n): Update translations from TransifexNextcloud bot2025-03-048-0/+14
|/ | | | Signed-off-by: Nextcloud bot <bot@nextcloud.com>
* Merge pull request #51088 from nextcloud/backport/51051/stable29Andy Scherzinger2025-03-036-61/+103
|\ | | | | [stable29] feat: Close sessions created for login flow v2
| * fix(login): Support subfolder install for ephemeral sessionsbackport/51051/stable29Louis Chemineau2025-03-031-1/+4
| | | | | | | | Signed-off-by: Louis Chemineau <louis@chmn.me>
| * fix(login): Also check legacy annotation for ephemeral sessionsLouis Chemineau2025-03-032-6/+7
| | | | | | | | Signed-off-by: Louis Chemineau <louis@chmn.me>
| * feat: Close sessions created for login flow v2Louis Chemineau2025-03-036-61/+99
| | | | | | | | | | | | | | | | | | | | | | | | Sessions created during the login flow v2 should be short lived to not leave an unexpected opened session in the browser. This commit add a property to the session object to track its origin, and will close it as soon as possible, i.e., on the first non public page request. Signed-off-by: Louis Chemineau <louis@chmn.me> [skip ci] Signed-off-by: Louis Chemineau <louis@chmn.me>
* | Fix(l10n): Update translations from TransifexNextcloud bot2025-03-034-2/+6
| | | | | | | | Signed-off-by: Nextcloud bot <bot@nextcloud.com>
* | Fix(l10n): Update translations from TransifexNextcloud bot2025-03-024-0/+6
| | | | | | | | Signed-off-by: Nextcloud bot <bot@nextcloud.com>
* | Fix(l10n): Update translations from TransifexNextcloud bot2025-03-018-0/+72
| | | | | | | | Signed-off-by: Nextcloud bot <bot@nextcloud.com>
* | Fix(l10n): Update translations from TransifexNextcloud bot2025-02-28138-334/+168
| | | | | | | | Signed-off-by: Nextcloud bot <bot@nextcloud.com>
* | chore: autoloader updatechore/backport-50985skjnldsv2025-02-272-0/+2
| | | | | | | | Signed-off-by: skjnldsv <skjnldsv@protonmail.com>
* | refactor: convert sanitize account properties repair step to background jobFerdinand Thiessen2025-02-275-15/+44
| | | | | | | | Signed-off-by: Ferdinand Thiessen <opensource@fthiessen.de>
* | fix: Optimize repair step performanceFerdinand Thiessen2025-02-271-3/+21
| | | | | | | | Signed-off-by: Ferdinand Thiessen <opensource@fthiessen.de>
* | fix: validate account properties as a repair stepFerdinand Thiessen2025-02-275-92/+62
|/ | | | | | | | Replace `ValidatePhoneNumber` from Nextcloud 21 with a new repair step, `ValidateAccountProperties` which validates and sanitizes all account properties. Signed-off-by: Ferdinand Thiessen <opensource@fthiessen.de>
* Fix(l10n): Update translations from TransifexNextcloud bot2025-02-27138-334/+334
| | | | Signed-off-by: Nextcloud bot <bot@nextcloud.com>
* fix(l10n): Improve english source stringsJoas Schilling2025-02-261-1/+1
| | | | | | | - No leading/trailing whitespace - Use asci single quote Signed-off-by: Joas Schilling <coding@schilljs.com>
* Fix(l10n): Update translations from TransifexNextcloud bot2025-02-264-20/+20
| | | | Signed-off-by: Nextcloud bot <bot@nextcloud.com>
* fix: Initialize lastConnectionCheck after first connectionbackport/50874/stable29Louis Chemineau2025-02-251-2/+2
| | | | | | | | | | | | | | | | | | | | | | We are checking whether the DB connection is alive once every 30 seconds. But when we are lacking the last check time, we are skipping the check and reconnect logic. This is causing the reconnect logic to never fire in those cases. It seems to me that "those cases", are actually always the case, as upon initialization, we are not using the proper connection name to store the time. In the `connect()` logic, when `$this->_conn` is null, `$this->getConnectionName()` is returning `replica`, so `$this->lastConnectionCheck` will be equal to `['replica' => time()];` https://github.com/nextcloud/server/blob/60711ea4cfde6f53d0b18bcd7e166a34a43056a5/lib/private/DB/Connection.php#L215-L221 https://github.com/nextcloud/server/blob/60711ea4cfde6f53d0b18bcd7e166a34a43056a5/lib/private/DB/Connection.php#L891-L893 https://github.com/nextcloud/3rdparty/blob/2b6d7bf65ff242ea050e736925f752a38d8da220/doctrine/dbal/src/Connections/PrimaryReadReplicaConnection.php#L136-L139 Then, if the connection name ends up as being 'primary', the reconnect logic is skipped: https://github.com/nextcloud/server/blob/60711ea4cfde6f53d0b18bcd7e166a34a43056a5/lib/private/DB/Connection.php#L874-L880 Follow-up of https://github.com/nextcloud/server/pull/41819 Signed-off-by: Louis Chemineau <louis@chmn.me>
generated by cgit v1.2.3 (git 2.39.1) at 2025-03-24 09:56:14 +0000