wbrawner/server
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
50918 commits 157 branches 562 tags 714 MiB
Commit graph

537 commits

Author SHA1 Message Date
Arthur Schiwon
5bab0da935 when downloading from web, skip files that are not accessible 
* avoids a 403, but enables download of resources that are not restricted
* single file downloads still cause 403

Signed-off-by: Arthur Schiwon <blizzz@arthur-schiwon.de>
 2019-12-19 16:55:54 +00:00
Julius Härtl
4d646a75f5 Use files node API for single file downloads 
Signed-off-by: Julius Härtl <jus@bitgrid.net>
 2019-12-19 16:55:53 +00:00
Roeland Jago Douma
c0becec8ad Do not disable authentication apps 
For #18249

If an app encounters an error during loading of app.php the app is
normally disabled. However. We should make sure that this doesn't happen
for authentication apps (looking at your user_saml).

Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
 2019-12-10 13:44:51 +00:00
Arthur Schiwon
a9c61b4ed7 pass through ServerNotAvailableException on app init 
Signed-off-by: Arthur Schiwon <blizzz@arthur-schiwon.de>
 2019-11-14 21:01:02 +00:00
Robin Appelman
8f6a11fdc0 actually return the quote when getting global storage info 
prevents 'undefined' index errors when 'include external storage in quota' is enabled

Signed-off-by: Robin Appelman <robin@icewind.nl>
 2019-11-07 22:53:54 +00:00
Arthur Schiwon
46e7787c7d switch to Files Node API for zip generation 
Signed-off-by: Arthur Schiwon <blizzz@arthur-schiwon.de>
 2019-11-07 10:04:12 +00:00
Roeland Jago Douma
7777c5ff1c Cleanup theming mess 
* Do not do translations in the constructor. This gets called to early
so there is no user yet. Which means we can't obtain the locale. Which
means we store the wrong translation instance.

* Same for the theming app magic. Just use the parent call when needed.

Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
 2019-10-26 10:15:26 +00:00
Samuel CHEMLA
94eb77a535 Fix sanity checks #16963 
Signed-off-by: Samuel CHEMLA <chemla.samuel@gmail.com>
 2019-09-01 22:27:08 +02:00
Joas Schilling
92862c51f5
Always check via http and https whether htaccess is working 
Signed-off-by: Joas Schilling <coding@schilljs.com>
 2019-08-23 14:33:58 +02:00
Joas Schilling
810ee7d811
Make the auto-disabled list more broad 
Signed-off-by: Joas Schilling <coding@schilljs.com>
 2019-08-15 11:12:45 +02:00
Arthur Schiwon
d0409548c6
instead of upsert, fallback to default query on PgSQL <= 9.4 
because there is no upsert yet

Signed-off-by: Arthur Schiwon <blizzz@arthur-schiwon.de>
 2019-08-14 09:05:11 +02:00
J0WI
1b074f48d8
Remove duplicated spaces 
Signed-off-by: J0WI <J0WI@users.noreply.github.com>
 2019-08-11 20:11:50 +02:00
J0WI
3f2932c75a
Sort headers 
Signed-off-by: J0WI <J0WI@users.noreply.github.com>
 2019-08-11 20:11:50 +02:00
J0WI
76cbd7db6e
Add X-Frame-Options header to .htaccess 
Signed-off-by: J0WI <J0WI@users.noreply.github.com>
 2019-08-11 20:11:49 +02:00
Roeland Jago Douma
323f40a493
Merge pull request #16461 from nextcloud/fix/noid/pgsql-version 
fixes the check for postgresql
 2019-07-26 12:32:04 +02:00
Arthur Schiwon
8b1126e6d2
fixes the check for postgresql 
Signed-off-by: Arthur Schiwon <blizzz@arthur-schiwon.de>
 2019-07-18 18:34:10 +02:00
Morris Jobke
605d0874a4
Removes unused OC_API::register 
Signed-off-by: Morris Jobke <hey@morrisjobke.de>
 2019-07-18 11:27:09 +02:00
Joas Schilling
9d121985dc
Merge pull request #15540 from nextcloud/bugfix/noid/prevent-faulty-logs-from-nested-setupFS-calls 
Prevent faulty logs from nested setupFS calls
 2019-06-21 12:00:22 +02:00
Christoph Wurst
7d1fc2b8e8
Fix missing login hook wih Apache/SAML 
Without this patch the hook does not transport the information whether the login is
done with an app password or not. The suspicious login app requires the parameter
to function correctly, hence adding it will make suspicious login detection also possible
with SAML users.

Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
 2019-06-11 07:29:00 +02:00
Joas Schilling
22fa6421e5
Prevent faulty logs from nested setupFS calls 
Signed-off-by: Joas Schilling <coding@schilljs.com>
 2019-05-15 10:22:51 +02:00
Morris Jobke
361836675c
Show supported apps in app management 
Signed-off-by: Morris Jobke <hey@morrisjobke.de>
 2019-05-13 13:36:02 +02:00
Morris Jobke
f095bd1642
Use non-absolute logout URL to fix wrong URL in reverse proxy scenario 
Signed-off-by: Morris Jobke <hey@morrisjobke.de>
 2019-05-08 18:02:00 +02:00
Roeland Jago Douma
3b1e16458d
Forbid eval on legacy responses 
Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
 2019-04-09 09:58:23 +02:00
Roeland Jago Douma
769cb629ae
allow enforcing apps to ignore the max version 
Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
 2019-03-20 15:16:11 +01:00
Joas Schilling
c6a69ba925
Remove the upload and memory setting 
* Remove unneeded private method phpFileSize()
* Bump autoloader
* Remove setUploadLimit tests
* Remove integrity check hacks for upload limit

Signed-off-by: Joas Schilling <coding@schilljs.com>
Signed-off-by: Morris Jobke <hey@morrisjobke.de>
 2019-03-04 12:14:22 +01:00
Joas Schilling
0c77cd21f9
Make sure maintenance mode is always casted to bool 
Signed-off-by: Joas Schilling <coding@schilljs.com>
 2019-02-22 08:25:41 +01:00
Roeland Jago Douma
65964a537a
Move jquery.ocdialog.scss to bundle 
Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
 2019-02-14 13:38:24 +01:00
Roeland Jago Douma
ea951136d1
Move jquery-ui-fixes to bundle 
Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
 2019-02-14 13:31:49 +01:00
Roeland Jago Douma
a498b72dec
Move the contactsmenu handlebars templates to the bundle 
Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
 2019-02-04 10:56:52 +01:00
Roeland Jago Douma
f1b0332920
Do not try to load js moved to bundle 
Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
 2019-02-01 10:39:47 +01:00
Morris Jobke
5fe151f7c4
Merge pull request #13927 from nextcloud/remove-dead-code 
Don't call apc_delete_file and apc_clear_cache anymore
 2019-02-01 10:17:55 +01:00
Daniel Kesselberg
9104e028a3
Remove deleteFromOpcodeCache & clearOpcodeCache 
Signed-off-by: Daniel Kesselberg <mail@danielkesselberg.de>
 2019-01-30 17:36:14 +01:00
Daniel Kesselberg
1638f89e89
Don't call apc_delete_file and apc_clear_cache anymore 
There is no apc for PHP7+ so there is no need to check if exist.
accelerator_reset looks even more ancient.

Signed-off-by: Daniel Kesselberg <mail@danielkesselberg.de>
 2019-01-30 16:28:47 +01:00
Robert Dailey
a170bf80ec
Improve data directory write checking for NFS mounts 
If `is_writable()` fails, fall back to logic that attempts to create a file
and then checks if it exists. If this check fails, an error occurs as it
did before.

Discussion on this solution was found here:
https://help.nextcloud.com/t/write-errors-for-nfs-mount/23328

Fixes #7124

Signed-off-by: Robert Dailey <rcdailey@gmail.com>
 2019-01-24 20:39:52 -06:00
Roeland Jago Douma
e3de4edc51
Urlencode the requesttoken 
Followup of #13757

Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
 2019-01-23 16:16:31 +01:00
Roeland Jago Douma
ebd9f30d85
Request plain logout url 
By requesting the plain logout url we allow it to be properly cached by
the caching router. We just add the requesttoken manually.

Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
 2019-01-23 14:06:03 +01:00
Christoph Wurst
83068c39e5
Update select2, include css 
Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
 2019-01-09 15:02:01 +01:00
Christoph Wurst
1e80259051
Remove core.js 
Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
 2019-01-09 15:02:00 +01:00
Christoph Wurst
208788173d
Npmize (vendor) scripts 
Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
 2019-01-09 15:01:59 +01:00
Daniel Kesselberg
5ee6e5b8c6
Use OC_Util::getVersion instead of getSystemValue 
Signed-off-by: Daniel Kesselberg <mail@danielkesselberg.de>
 2018-12-07 11:42:12 +01:00
Daniel Kesselberg
6016d45ca9
Use version to generate docversion 
Signed-off-by: Daniel Kesselberg <mail@danielkesselberg.de>
 2018-12-07 11:42:12 +01:00
Morris Jobke
ea6ea7f4c3
PHP module is named mbstring 
Signed-off-by: Morris Jobke <hey@morrisjobke.de>
 2018-12-04 17:22:11 +01:00
Peter Kraume
79b8703f29 Set Referrer-Policy also in addSecurityHeaders() 
Fix: #12689
Signed-off-by: Peter Kraume <peter.kraume@gmx.de>
 2018-11-27 16:39:06 +01:00
Christoph Wurst
1b85ef4bf2
Fix string doc type casing 
Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
 2018-11-15 11:57:05 +01:00
Joas Schilling
ea21aa3f7a
Use numeric placeholders if there are multiple, so that RTL languages can operate better 
Signed-off-by: Joas Schilling <coding@schilljs.com>
 2018-10-09 14:32:14 +02:00
Morris Jobke
db345e4c6d
Deprecate unused, private OC_Helper::linkToPublic 
Signed-off-by: Morris Jobke <hey@morrisjobke.de>
 2018-10-08 18:29:52 +02:00
Morris Jobke
7971ba5cc6
Merge pull request #10898 from nextcloud/feature/10684/default-logo-color-theme-colors 
Switches the default logo color depending on the primary color
 2018-10-08 10:33:22 +02:00
Morris Jobke
e0ed64366c
Merge pull request #11613 from nextcloud/add-missing-throw-statement 
add missing throw statement to doc block
 2018-10-04 16:28:08 +02:00
Bjoern Schiessle
1d4a80f37d
add missing throw statement to doc block 
Signed-off-by: Bjoern Schiessle <bjoern@schiessle.org>
 2018-10-04 15:23:07 +02:00
Morris Jobke
cdb3ffb293
Remove unused code in legacy classes 
Signed-off-by: Morris Jobke <hey@morrisjobke.de>
 2018-10-03 22:07:51 +02:00