wbrawner/server
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
server/lib
History
Lukas Reschke 6eeb905871 Do only follow HTTP and HTTPS redirects 
We do not want to follow redirects to other protocols since they might allow an adversary to bypass network restrictions. (i.e. a redirect to ftp:// might be used to access files of a FTP server which might be in a secure zone and not be reachable from the net but from the ownCloud server)

Get final redirect manually using get_headers()

Migrate to HTTPHelper class and add unit tests
2014-09-22 20:02:32 +02:00
..
l10n [tx-robot] updated from transifex 2014-09-22 01:54:36 -04:00
private Do only follow HTTP and HTTPS redirects 2014-09-22 20:02:32 +02:00
public Do only follow HTTP and HTTPS redirects 2014-09-22 20:02:32 +02:00
repair delete old previews 2014-09-21 17:16:21 +02:00
autoloader.php add additional type check 2014-06-06 09:33:34 +02:00
base.php Merge pull request #10939 from owncloud/add-port-to-trusted-domain-wizard 2014-09-22 10:04:02 +02:00