summaryrefslogtreecommitdiffstats
path: root/tests
Commit message (Collapse)AuthorAgeFilesLines
* Merge pull request #18925 from owncloud/change-risky-testMorris Jobke2015-09-091-2/+2
|\ | | | | Rename data provider to avoid risky test warning
| * Rename data provider to avoid risky test warningLukas Reschke2015-09-091-2/+2
| | | | | | | | | | | | | | | | | | ``` 06:49:56 There was 1 risky test: 06:49:56 06:49:56 1) OC\AppFramework\Http\JSONResponseTest::testRenderProvider 06:49:56 This test did not perform any assertions ```
* | Write to session in batch at the end of the requestLukas Reschke2015-09-091-9/+0
| |
* | Write session data to single keyLukas Reschke2015-09-091-4/+4
|/ | | | This prevents decrypting values multiple times.
* Merge pull request #18684 from owncloud/explicit-upgrade-versionMorris Jobke2015-09-091-10/+64
|\ | | | | Explicit upgrade version + prevent downgrades
| * Restrict upgrades to explicit allowed versionVincent Petry2015-08-301-10/+64
| | | | | | | | | | | | version.php now contains the previous ownCloud version from which upgrades are allowed. Any other upgrades will show a message that the upgrade/downgrade is not supported.
* | Load all enabled apps in test bootstrapRobin McCorkell2015-09-071-3/+2
| |
* | Merge pull request #18748 from owncloud/files-versions-tabMorris Jobke2015-09-071-0/+10
|\ \ | | | | | | Add versions tab to files sidebar
| * | Add versions tab to files sidebarVincent Petry2015-09-031-0/+10
| | | | | | | | | | | | | | | | | | | | | - move versions to a tab in the files sidebar - added mechanism to auto-update the row in the FileList whenever values are set to the FileInfoModel given to the sidebar - updated tags/favorite action to make use of that new mechanism
* | | Merge pull request #18742 from owncloud/mimetype-updatedbRoeland Douma2015-09-063-15/+291
|\ \ \ | | | | | | | | Introduce mimetype DB update occ command
| * | | Unit tests for mimetype loaderRobin McCorkell2015-09-042-0/+277
| | | |
| * | | Split mimetype handling to new classRobin McCorkell2015-09-041-15/+14
| | | |
* | | | Merge pull request #18799 from owncloud/appconfig-with-one-requestMorris Jobke2015-09-031-204/+247
|\ \ \ \ | |_|/ / |/| | | Only query the appconfig once per request
| * | | Only query the appconfig onceJoas Schilling2015-09-031-204/+247
| | | |
* | | | Encode HTML tags in JSONLukas Reschke2015-09-031-6/+20
|/ / / | | | | | | | | | While not encoding the HTML tags in the JSON response is perfectly fine since we set the proper mimetype as well as disable content sniffing a lot of automated code scanner do report this as security bug. Encoding them leads to less discussions and a lot of saved time.
* | | use config.php value instead of version stringMorris Jobke2015-09-021-0/+28
| | |
* | | Merge pull request #18730 from owncloud/appframework_proper_304Vincent Petry2015-09-011-0/+8
|\ \ \ | | | | | | | | Properly return 304 in AppFramework
| * | | Properly return 304Roeland Jago Douma2015-09-011-0/+8
| |/ / | | | | | | | | | | | | | | | | | | | | | The ETag set in the IF_NONE_MODIFIED header is wraped in quotes ("). However the ETag that is set in response is not (yet). Also we need to cast the ETag to a string. * Added unit test
* / / verify the path in the autoloaderRobin Appelman2015-09-013-37/+39
|/ /
* | don't read certificates if ownCloud is not installedBjoern Schiessle2015-08-301-1/+5
| |
* | make system root of key storage configurableBjoern Schiessle2015-08-304-13/+456
|/
* Merge pull request #14856 from rullzer/remote_avatarsMorris Jobke2015-08-291-12/+17
|\ | | | | Allow Remote avatars
| * Allow remote avatarsRoeland Jago Douma2015-08-291-12/+17
| |
* | Merge pull request #18620 from owncloud/add-public-interface-for-factoryVincent Petry2015-08-291-0/+1
|\ \ | |/ |/| Add a public interface for the language factory so apps can use it
| * Add a test for the interfaceJoas Schilling2015-08-281-0/+1
| |
* | Merge pull request #18423 from owncloud/occ_encrypt_allBjörn Schießle2015-08-283-55/+141
|\ \ | | | | | | occ command line tool to encrypt all files
| * | copy always file by file to encrypt/decrypt it if neededBjoern Schiessle2015-08-261-53/+8
| | |
| * | occ tool to encrypt all filesBjoern Schiessle2015-08-263-2/+133
| | |
* | | Use certificates that expire in 10 yearsLukas Reschke2015-08-273-33/+48
| |/ |/| | | | | :speak_no_evil: :speak_no_evil: :speak_no_evil:
* | Merge pull request #17662 from owncloud/locking-dbThomas Müller2015-08-262-0/+73
|\ \ | | | | | | Database backend for locking
| * | log a warning while trying to acquire a db lock from within a transactionRobin Appelman2015-08-101-1/+1
| | |
| * | Fix db schemaRobin Appelman2015-08-031-1/+1
| | |
| * | Add database backend for high level lockingRobin Appelman2015-08-031-0/+43
| | |
| * | split off keeping track of acquire locksRobin Appelman2015-08-031-0/+30
| | |
* | | Explicitly specify status code 200 as response codeLukas Reschke2015-08-251-0/+4
| | | | | | | | | | | | Potentially fixes https://github.com/owncloud/core/issues/17586
* | | Merge pull request #18491 from owncloud/expire-token-after-12h-or-loginLukas Reschke2015-08-241-7/+116
|\ \ \ | | | | | | | | Expire token after 12h and if user logged-in again
| * | | Expire token after 12h and if user logged-in againLukas Reschke2015-08-221-7/+116
| | | | | | | | | | | | | | | | As an hardening measure we should expire password reset tokens after 12h and if the user has logged-in again successfully after the token was requested.
* | | | Merge pull request #18482 from owncloud/encrypt-session-dataMorris Jobke2015-08-243-0/+136
|\ \ \ \ | | | | | | | | | | Add a session wrapper to encrypt the data before storing it on disk
| * | | | Handle failures gracefully, remove switchLukas Reschke2015-08-211-3/+4
| | | | |
| * | | | Add a session wrapper to encrypt the data before storing it on diskJoas Schilling2015-08-213-0/+135
| |/ / /
* | | | Merge pull request #18254 from owncloud/mitigate-breachMorris Jobke2015-08-2412-16/+130
|\ \ \ \ | |/ / / |/| | | Add mitigation against BREACH
| * | | Add mitigation against BREACHLukas Reschke2015-08-1412-16/+130
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | While BREACH requires the following three factors to be effectively exploitable we should add another mitigation: 1. Application must support HTTP compression 2. Response most reflect user-controlled input 3. Response should contain sensitive data Especially part 2 is with ownCloud not really given since user-input is usually only echoed if a CSRF token has been passed. To reduce the risk even further it is however sensible to encrypt the CSRF token with a shared secret. Since this will change on every request an attack such as BREACH is not feasible anymore against the CSRF token at least.
* | | | Merge pull request #18426 from owncloud/joblist-next-non-existingMorris Jobke2015-08-211-0/+26
|\ \ \ \ | | | | | | | | | | handle non existing job classes in $jobList->getNext
| * | | | handle non existing job classes in $jobList->getNextRobin Appelman2015-08-191-0/+26
| | |_|/ | |/| |
* | | | Merge pull request #18457 from owncloud/test-traitsRobin McCorkell2015-08-204-44/+127
|\ \ \ \ | | | | | | | | | | Move common test logic to re-usable traits
| * | | | add test mountprovider logic to a traitRobin Appelman2015-08-202-31/+60
| | | | |
| * | | | allow moving common test logic into traitsRobin Appelman2015-08-203-14/+68
| | | | |
* | | | | Merge pull request #18372 from ↵Joas Schilling2015-08-201-1/+196
|\ \ \ \ \ | |/ / / / |/| | | | | | | | | | | | | | owncloud/issue-18358-object-type-and-id-for-activities Issue 18358 object type and id for activities
| * | | | Add test coverage for Activity Event and ManagerJoas Schilling2015-08-201-1/+196
| | | | |
* | | | | Merge pull request #18369 from owncloud/occ-logMorris Jobke2015-08-202-0/+302
|\ \ \ \ \ | | | | | | | | | | | | occ commands to manage logging
generated by cgit v1.2.3 (git 2.39.1) at 2025-02-11 17:58:37 +0000