summaryrefslogtreecommitdiffstats
path: root/tests
Commit message (Collapse)AuthorAgeFilesLines
* Prevent directory traversals in ctr of \OC\Files\ViewLukas Reschke2015-02-181-0/+17
| | | | This prevents a misusage of \OC\Files\View by calling it with user-supplied input. In such cases an exception is now thrown.
* Merge pull request #13989 from owncloud/enhancment/security/11857Clark Tomlinson2015-02-184-6/+250
|\ | | | | Allow AppFramework applications to specify a custom CSP header
| * Rename to allowEvalLukas Reschke2015-02-161-2/+2
| |
| * Allow AppFramework applications to specify a custom CSP headerLukas Reschke2015-02-164-6/+250
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This change allows AppFramework applications to specify a custom CSP header for example when the default policy is too strict. Furthermore this allows us to partially migrate away from CSS and allowed eval() in our JavaScript components. Legacy ownCloud components will still use the previous policy. Application developers can use this as following in their controllers: ```php $response = new TemplateResponse('activity', 'list', []); $cspHelper = new ContentSecurityPolicyHelper(); $cspHelper->addAllowedScriptDomain('www.owncloud.org'); $response->addHeader('Content-Security-Policy', $cspHelper->getPolicy()); return $response; ``` Fixes https://github.com/owncloud/core/issues/11857 which is a pre-requisite for https://github.com/owncloud/core/issues/13458 and https://github.com/owncloud/core/issues/11925
* | Merge pull request #14207 from owncloud/propfind-optimizeMorris Jobke2015-02-181-0/+30
|\ \ | | | | | | Optimize quota calculation for propfind
| * | add unit test for webdav quotaRobin Appelman2015-02-131-0/+30
| |/
* | Refactor OC_Request into TrustedDomainHelper and IRequestLukas Reschke2015-02-1614-379/+924
| | | | | | | | | | | | | | | | | | | | This changeset removes the static class `OC_Request` and moves the functions either into `IRequest` which is accessible via `\OC::$server::->getRequest()` or into a separated `TrustedDomainHelper` class for some helper methods which should not be publicly exposed. This changes only internal methods and nothing on the public API. Some public functions in `util.php` have been deprecated though in favour of the new non-static functions. Unfortunately some part of this code uses things like `__DIR__` and thus is not completely unit-testable. Where tests where possible they ahve been added though. Fixes https://github.com/owncloud/core/issues/13976 which was requested in https://github.com/owncloud/core/pull/13973#issuecomment-73492969
* | fixing unit tests in UsersControllerTestThomas Müller2015-02-161-11/+11
| |
* | Merge pull request #13750 from owncloud/enhanced-code-checkerThomas Müller2015-02-166-0/+85
|\ \ | | | | | | Implement php code checker to detect usage of not allowed private ...
| * | implement php code checker to detect usage of not allowed private APIs - ↵Thomas Müller2015-02-106-0/+85
| | | | | | | | | | | | including console command to check local code to be used by developers
* | | Merge pull request #13269 from owncloud/issue/13211-cache-array-implementationJoas Schilling2015-02-161-0/+17
|\ \ \ | | | | | | | | Add an array implementation of cache and use it if we are not debugging
| * | | Add an array implementation of cache and use it if we are not debuggingJoas Schilling2015-02-161-0/+17
| | | |
* | | | update testRobin Appelman2015-02-131-0/+2
| | | |
* | | | Dont lower the mtime of a folder when propagating changesRobin Appelman2015-02-131-2/+25
| |_|/ |/| |
* | | Merge pull request #13780 from owncloud/cmreflector-inheritanceLukas Reschke2015-02-121-2/+58
|\ \ \ | | | | | | | | Additional controllermethodreflector inheritance tests
| * | | another test for overriding the docblockBernhard Posselt2015-01-291-0/+14
| | | |
| * | | additional inheritance testsBernhard Posselt2015-01-291-2/+44
| | | |
* | | | Merge pull request #13979 from ↵Vincent Petry2015-02-111-0/+11
|\ \ \ \ | |_|_|/ |/| | | | | | | | | | | owncloud/group-share-collition-wrong-type-in-post-hook Do not overwrite the shareType so the post hook is still correct
| * | | Add a test for the post_shared hook shareTypeJoas Schilling2015-02-091-0/+11
| | |/ | |/|
* | | Request requires a second parameterThomas Müller2015-02-091-6/+16
| | |
* | | Merge pull request #13921 from owncloud/ocs-afVincent Petry2015-02-093-1/+198
|\ \ \ | | | | | | | | Add a controller and reponse for ocs
| * | | fix license emailBernhard Posselt2015-02-051-1/+1
| | | |
| * | | fix license emailBernhard Posselt2015-02-052-2/+2
| | | |
| * | | add a controller and reponse for ocsBernhard Posselt2015-02-052-0/+197
| | | |
* | | | Respect `mod_unique_id` and refactor `OC_Request::getRequestId`Lukas Reschke2015-02-0910-96/+195
| |/ / |/| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | When `mod_unique_id` is enabled the ID generated by it will be used for logging. This allows for correlation of the Apache logs and the ownCloud logs. Testplan: - [ ] When `mod_unique_id` is enabled the request ID equals the one generated by `mod_unique_id`. - [ ] When `mod_unique_id` is not available the request ID is a 20 character long random string - [ ] The generated Id is stable over the lifespan of one request Changeset looks a little bit larger since I had to adjust every unit test using the HTTP\Request class for proper DI. Fixes https://github.com/owncloud/core/issues/13366
* | | Merge pull request #12283 from oparoz/sfnt-fontsMorris Jobke2015-02-071-0/+105
|\ \ \ | | | | | | | | Updated the media type of some font types
| * | | Updated the media type of some font typesOlivier Paroz2015-01-241-0/+105
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | TTF and TTF have now the same media type Official since 2013 and supported by Firefox and Chrome https://www.iana.org/assignments/media-types/application/font-sfnt Introducing support for Type1 fonts
* | | | Merge pull request #13753 from owncloud/use-403-instead-of-200Morris Jobke2015-02-071-4/+2
|\ \ \ \ | | | | | | | | | | Use 403 instead of 200 response
| * | | | Use 403 instead of 200 responseLukas Reschke2015-01-291-4/+2
| | | | | | | | | | | | | | | | | | | | A forbidden should throw a 403 and this makes it easier for me to do some automated testing.
* | | | | Normalize before processingLukas Reschke2015-02-062-0/+31
| |_|/ / |/| | |
* | | | detect root of mountpoint also if the trailing slash is missedBjoern Schiessle2015-02-041-0/+22
| | | |
* | | | Merge pull request #13811 from owncloud/default-to-nullLukas Reschke2015-02-021-27/+37
|\ \ \ \ | | | | | | | | | | Default to `null` for lostpassword
| * | | | Mock l10n in the setupLukas Reschke2015-02-011-26/+23
| | | | |
| * | | | Add unit tests for empty tokenLukas Reschke2015-02-011-2/+15
| | | | |
* | | | | Switch to a factory and add unit testsLukas Reschke2015-01-301-33/+373
| | | | |
* | | | | Add unit testsLukas Reschke2015-01-302-8/+189
|/ / / /
* | | / Dont remove a file from cache if the delete operation failedRobin Appelman2015-01-291-0/+23
| |_|/ |/| |
* | | Fix webdav put for single file webdav sharesRobin Appelman2015-01-291-0/+25
| | |
* | | Fix resolving paths for views rooted in a fileRobin Appelman2015-01-291-0/+16
| | |
* | | Add unit testRobin Appelman2015-01-281-1/+3
|/ /
* | Merge pull request #13717 from owncloud/storage-donotwrapnullstorageMorris Jobke2015-01-281-0/+69
|\ \ | | | | | | Prevent wrapping null storage
| * | Prevent wrapping null storageVincent Petry2015-01-271-0/+69
| | | | | | | | | | | | | | | | | | Can happen when trying to instantiate external storages that have incomplete config, where the constructor throws an exception (the exception is caught in createStorage())
* | | Merge pull request #13561 from owncloud/trash-finaldeletewhencrossstoragefixVincent Petry2015-01-271-1/+28
|\ \ \ | |/ / |/| | Call final unlink in trash wrapper's storage
| * | Preserve mtime when doing cross storage moveRobin Appelman2015-01-231-1/+28
| | |
* | | Merge pull request #13636 from ↵Lukas Reschke2015-01-271-27/+166
|\ \ \ | | | | | | | | | | | | | | | | owncloud/add-warning-if-restore-of-data-is-not-possible Add value if restore of data is possible for a user
| * | | Add value if restore of data is possible for a userMorris Jobke2015-01-271-27/+166
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * reason: nice to know before password change in user management * restore is possible: * encryption is disabled * encryption is enabled, admin and user has checked the restore option * if not possible: * highlight users row in red once the admin wants to change the password * show also a little tipsy
* | | | certificate manager should always use a \OC\Files\View otherwise we will get ↵Bjoern Schiessle2015-01-261-2/+2
| | | | | | | | | | | | | | | | problems for different primary storages
* | | | certificate manager only needs the user-id, no need to pass on the complete ↵Bjoern Schiessle2015-01-261-4/+2
|/ / / | | | | | | | | | user object
* | | Merge pull request #13621 from owncloud/system-config-multisetThomas Müller2015-01-262-30/+63
|\ \ \ | |_|/ |/| | Add a method to set/unset multiple config values with one write
| * | Use setConfigs() instead of calling setConfig() multiple timesJoas Schilling2015-01-231-30/+33
| | |
generated by cgit v1.2.3 (git 2.39.1) at 2025-02-15 21:10:01 +0000