nextcloud-server.git - Nextcloud server, a safe home for all your data: https://github.com/nextcloud/server

	Commit message (Collapse)	Author	Age	Files	Lines
*	Add test case for existing user with token null	Daniel Kesselberg	2019-10-22	1	-0/+16
\| \| \| \|	Signed-off-by: Daniel Kesselberg <mail@danielkesselberg.de>
*	Return the disabled user mock instead of the existing	Daniel Kesselberg	2019-10-22	1	-1/+1
\| \| \| \|	Signed-off-by: Daniel Kesselberg <mail@danielkesselberg.de>
*	Don't send executionContexts for Clear-Site-Data	Daniel Kesselberg	2019-09-16	1	-2/+2
\| \| \| \| \| \| \| \| \| \|	There are plans to remove executionContexts from the spec: https://github.com/w3c/webappsec-clear-site-data/issues/59 Firefox already removed it https://bugzilla.mozilla.org/show_bug.cgi?id=1548034 Chromium implementation is not finish: https://bugs.chromium.org/p/chromium/issues/detail?id=898503&q=clear-site-data&sort=-modified&colspec=ID%20Pri%20M%20Stars%20ReleaseBlock%20Component%20Status%20Owner%20Summary%20OS%20Modified Signed-off-by: Daniel Kesselberg <mail@danielkesselberg.de>
*	Return first value from $users	Daniel Kesselberg	2019-07-10	1	-24/+27
\| \| \| \|	Signed-off-by: Daniel Kesselberg <mail@danielkesselberg.de>
*	Make appstore app:enable test more robust by using only shipped apps	Morris Jobke	2019-03-14	1	-3/+8
\| \| \| \|	Signed-off-by: Morris Jobke <hey@morrisjobke.de>
*	Add an event to the Autocomplete Controller to allow to filter the results	Joas Schilling	2019-02-26	1	-3/+9
\| \| \| \|	Signed-off-by: Joas Schilling <coding@schilljs.com>
*	Login flow V2	Roeland Jago Douma	2019-02-25	1	-0/+321
\| \| \| \| \| \| \| \|	This adds the new login flow. The desktop client will open up a browser and poll a returned endpoint at regular intervals to check if the flow is done. Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
*	Merge pull request #14066 from nextcloud/feature/noid/casted-system-values	Joas Schilling	2019-02-22	2	-2/+2
\|\ \| \| \| \|	Get typed system values
\| *	Fix unit tests	Joas Schilling	2019-02-22	2	-2/+2
\| \| \| \| \| \| \| \|	Signed-off-by: Joas Schilling <coding@schilljs.com>
* \|	Use contacts instead of logreader	Daniel Kesselberg	2019-02-19	1	-3/+3
\| \| \| \| \| \| \| \| \| \| \| \|	Logreader is not distributed by app store because shipped by default. Signed-off-by: Daniel Kesselberg <mail@danielkesselberg.de>
* \|	Add install logic for enable command	Daniel Kesselberg	2019-02-19	1	-3/+3
\| \| \| \| \| \| \| \|	Signed-off-by: Daniel Kesselberg <mail@danielkesselberg.de>
* \|	Strict Types, Return Types	Daniel Kesselberg	2019-02-19	2	-4/+9
\| \| \| \| \| \| \| \|	Signed-off-by: Daniel Kesselberg <mail@danielkesselberg.de>
* \|	Disable multiple apps at once	Daniel Kesselberg	2019-02-19	1	-0/+84
\| \| \| \| \| \| \| \|	Signed-off-by: Daniel Kesselberg <mail@danielkesselberg.de>
* \|	Enable multiple apps at once	Daniel Kesselberg	2019-02-19	1	-0/+89
\|/ \| \| \|	Signed-off-by: Daniel Kesselberg <mail@danielkesselberg.de>
*	Emit event if app password created	Daniel Kesselberg	2019-02-18	2	-50/+23
\| \| \| \|	Signed-off-by: Daniel Kesselberg <mail@danielkesselberg.de>
*	Publish activity for app token created by client login flow	Daniel Kesselberg	2019-02-17	1	-1/+35
\| \| \| \|	Signed-off-by: Daniel Kesselberg <mail@danielkesselberg.de>
*	Publish activity for app token created by ocs api	Daniel Kesselberg	2019-02-17	1	-1/+24
\| \| \| \|	Signed-off-by: Daniel Kesselberg <mail@danielkesselberg.de>
*	Merge pull request #13969 from ↵	Morris Jobke	2019-02-07	2	-8/+8
\|\ \| \| \| \| \| \| \| \|	nextcloud/enh/additional_scripts_no_on_public_pages No need to emit additonalscript event on public pages
\| *	Add StandaloneTemplateResponse	Roeland Jago Douma	2019-02-06	2	-8/+8
\| \| \| \| \| \| \| \| \| \| \| \| \| \|	This can be used by pages that do not have the full Nextcloud UI. So notifications etc do not load there. Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
* \|	Remove public interface that was only needed for testing	Morris Jobke	2019-02-07	1	-1/+0
\| \| \| \| \| \| \| \|	Signed-off-by: Morris Jobke <hey@morrisjobke.de>
* \|	Implement guest avatar endpoint	Michael Weimann	2019-02-07	2	-2/+92
\|/ \| \| \|	Signed-off-by: Michael Weimann <mail@michael-weimann.eu>
*	Clean pending 2FA authentication on password reset	Roeland Jago Douma	2019-01-29	1	-1/+6
\| \| \| \| \| \| \| \| \| \| \|	When a password is reste we should make sure that all users are properly logged in. Pending states should be cleared. For example a session where the 2FA code is not entered yet should be cleared. The token is now removed so the session will be killed the next time this is checked (within 5 minutes). Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
*	Honor remember_login_cookie_lifetime	Roeland Jago Douma	2019-01-23	1	-0/+24
\| \| \| \| \| \| \| \| \| \| \| \|	If the remember_login_cookie_lifetime is set to 0 this means we do not want to use remember me at all. In that case we should also not creatae a remember me cookie and should create a proper temp token. Further this specifies that is not 0 the remember me time should always be larger than the session timeout. Because else the behavior is not really defined. Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
*	Fix template paramter	Roeland Jago Douma	2019-01-18	1	-1/+1
\| \| \| \| \| \|	Else we get shown an error page instead of the correct 403. Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
*	Fix tests	Roeland Jago Douma	2019-01-15	1	-9/+23
\| \| \| \|	Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
*	Fix tests	John Molakvoæ (skjnldsv)	2018-11-29	1	-64/+0
\| \| \| \|	Signed-off-by: John Molakvoæ (skjnldsv) <skjnldsv@protonmail.com>
*	Use the proper server for the apptoken flow login	Roeland Jago Douma	2018-11-01	1	-2/+8
\| \| \| \| \| \| \| \| \| \| \| \| \|	If a user can't authenticate normally (because they have 2FA that is not available on their devices for example). The redirect that is generated should be of the proper format. This means 1. Include the protocol 2. Include the possible subfolder Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
*	adapted automated test for autocomplete changes	Rayn0r	2018-10-30	1	-6/+14
\| \| \| \|	Signed-off-by: Rayn0r <Andre.Weidemann@web.de>
*	Keep list of icons in a separate file for use in the accessibility app	Julius Härtl	2018-10-25	1	-1/+3
\| \| \| \|	Signed-off-by: Julius Härtl <jus@bitgrid.net>
*	Remove cookies from Clear-Site-Data Header	Patrick Conrad	2018-10-15	1	-2/+2
\| \| \| \| \| \| \| \| \| \| \| \| \|	In https://github.com/nextcloud/server/commit/2f87fb6b456fd109c90a5093c31b7a3f62a32040 this header was introduced. The referenced documentation says: > When delivered with a response from https://example.com/clear, the following header will cause cookies associated with the origin https://example.com to be cleared, as well as cookies on any origin in the same registered domain (e.g. https://www.example.com/ and https://more.subdomains.example.com/). This also applies if `https://nextcloud.example.com/` sends the `Clear-Site-Data: "cookies"` header. This is not the behavior we want at this point! So I removed the deletion of cookies from the header. This has no effect on the logout process as this header is supported only recently and the logout works in old browsers as well. Signed-off-by: Patrick Conrad <conrad@iza.org>
*	Merge pull request #11765 from nextcloud/feature/mandatory-2fa-for-groups	Morris Jobke	2018-10-15	1	-12/+49
\|\ \| \| \| \|	Mandatory 2FA for groups
\| *	Make it possible to enforce mandatory 2FA for groups	Christoph Wurst	2018-10-15	1	-12/+49
\| \| \| \| \| \| \| \|	Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
* \|	Check if TTY is invalid in encryption:encrypt-all and encryption:decrypt-all	Evgeny Golyshev	2018-10-14	2	-0/+6
\|/ \| \| \|	Signed-off-by: Evgeny Golyshev <eugulixes@gmail.com>
*	Merge pull request #10898 from ↵	Morris Jobke	2018-10-08	1	-0/+139
\|\ \| \| \| \| \| \| \| \|	nextcloud/feature/10684/default-logo-color-theme-colors Switches the default logo color depending on the primary color
\| *	Refactors the scss svg functions	Michael Weimann	2018-10-02	1	-0/+139
\| \| \| \| \| \| \| \|	Signed-off-by: Michael Weimann <mail@michael-weimann.eu>
* \|	Add an endppoint for clients to request an app password	Roeland Jago Douma	2018-10-03	1	-0/+179
\|/ \| \| \| \| \| \| \|	Now that we allow enforcing 2 factor auth it make sense if we also allow and endpoint where the clients can in the background fetch an apppassword if they were configured before the login flow was present. Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
*	Add mandatory 2FA service/class	Christoph Wurst	2018-09-30	1	-0/+110
\| \| \| \|	Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
*	Only allow 2FA state changs if providers support the operation	Christoph Wurst	2018-09-25	4	-100/+306
\| \| \| \| \| \| \| \|	Ref https://github.com/nextcloud/server/issues/11019. Add `twofactorauth:cleanup` command Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
*	Merge pull request #10743 from ↵	blizzz	2018-09-13	1	-0/+84
\|\ \| \| \| \| \| \| \| \|	danielkesselberg/bugfix/noid/allow-password-reset-for-duplicate-email Enable password reset for user with same email address when only one is active
\| *	Enable password reset for user with same email address when only one is active	Daniel Kesselberg	2018-08-19	1	-0/+84
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	When two or more user share the same email address its not possible to reset password by email. Even when only one account is active. This pr reduce list of users returned by getByEmail by disabled users. Signed-off-by: Daniel Kesselberg <mail@danielkesselberg.de>
* \|	Change password expiration time from 12h to 7d	Morris Jobke	2018-08-31	1	-1/+1
\| \| \| \| \| \| \| \| \| \| \| \|	We use the same logic for creating accounts without a password and there the 12h is a bit short. Users don't expect that the signup link needs to be clicked within 12h - 7d should be a more expected behavior. Signed-off-by: Morris Jobke <hey@morrisjobke.de>
* \|	Merge pull request #10334 from denismosolov/group-add	Denis Mosolov	2018-08-24	2	-0/+246
\|\ \ \| \|/ \|/\|	Add options to create/remove groups via occ
\| *	Add an options to create and remove groups via occ	Denis Mosolov	2018-08-16	2	-0/+246
\| \| \| \| \| \| \| \|	Signed-off-by: Denis Mosolov <denismosolov@gmail.com>
* \|	update unit tests	Bjoern Schiessle	2018-08-15	1	-1/+41
\| \| \| \| \| \| \| \|	Signed-off-by: Bjoern Schiessle <bjoern@schiessle.org>
* \|	Fix login redirection if only one 2FA provider is active	Christoph Wurst	2018-08-08	1	-5/+6
\| \| \| \| \| \| \| \| \| \| \| \|	Fixes https://github.com/nextcloud/server/issues/10500. Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
* \|	Fix unit test	Joas Schilling	2018-08-01	1	-1/+20
\|/ \| \| \|	Signed-off-by: Joas Schilling <coding@schilljs.com>
*	Fix app navigation controller to return an array	Julius Härtl	2018-07-25	1	-2/+2
\| \| \| \| \| \|	This is required to not break compatibility with existing consumers of that endpoint like the apps management or the client Signed-off-by: Julius Härtl <jus@bitgrid.net>
*	Adds disabled user unit tests	Michael Weimann	2018-07-21	1	-3/+47
\| \| \| \|	Signed-off-by: Michael Weimann <mail@michael-weimann.eu>
*	Adds an info if the maintenance mode is already enabled/disabled.	Michael Weimann	2018-07-01	1	-0/+147
\| \| \| \|	Signed-off-by: Michael Weimann <mail@michael-weimann.eu>
*	Merge pull request #9632 from nextcloud/enhancement/stateful-2fa-providers	Morris Jobke	2018-06-25	2	-36/+39
\|\ \| \| \| \|	Stateful 2fa providers