Welcome to mirror list, hosted at ThFree Co, Russian Federation.

github.com/nextcloud/server.git - Unnamed repository; edit this file 'description' to name the repository.
summaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2022-05-16Show user account on grant loginflow stepJoas Schilling
Signed-off-by: Joas Schilling <coding@schilljs.com>
2022-05-05Expose shareWithDisplayNameUnique also on autocomplete endpointbackport/32249/stable24Joas Schilling
Signed-off-by: Joas Schilling <coding@schilljs.com>
2022-03-29Merge pull request #31592 from nextcloud/fix/direct-arg-flow-v2Vincent Petry
Add direct arg to login flow
2022-03-28Add direct arg to login flowVincent Petry
Signed-off-by: Vincent Petry <vincent@nextcloud.com> Co-Authored-by: Carl Schwan <carl@carlschwan.eu>
2022-03-23Remove old shorteningJoas Schilling
Signed-off-by: Joas Schilling <coding@schilljs.com>
2022-03-23Limit the length of app password namesJoas Schilling
Signed-off-by: Joas Schilling <coding@schilljs.com>
2022-03-18Add global profile toggle configChristopher Ng
Signed-off-by: Christopher Ng <chrng8@gmail.com>
2022-02-25Fix caching of the user avatarCarl Schwan
Now on firefox/safari it is only refetched once a day. On Chrom{e,ium} we keep the previous behavior of maybe refetching it more often. This also notify the user about this behavior when they upload an avatar picture. Signed-off-by: Carl Schwan <carl@carlschwan.eu>
2022-02-16Improve caching policyCarl Schwan
* Cache css with version in url. This makes most js and css requests to be cached by the browser * Force caching previews, the etag is in the url so that if the propfind gives a new etag, we will refresh it otherwise it's no use to try to fetch the new etag and do tons of DB queries Tested with firefox and 'debug' => false (important so that the js/css urls are generated with ?v= parameter) Signed-off-by: Carl Schwan <carl@carlschwan.eu>
2022-02-07Only allow avatars in 64 and 512 pixel sizeJoas Schilling
Signed-off-by: Joas Schilling <coding@schilljs.com>
2022-01-14Improve installation pagesChristopher Ng
Signed-off-by: Christopher Ng <chrng8@gmail.com>
2022-01-08Move bundles to /distJohn Molakvoæ (skjnldsv)
Signed-off-by: John Molakvoæ (skjnldsv) <skjnldsv@protonmail.com>
2021-12-30Merge pull request #29531 from nextcloud/bugfix/noid/flow-auth-v2-apptokenJohn Molakvoæ
2021-12-29Also pass user on flow v2 landingJulius Härtl
Signed-off-by: Julius Härtl <jus@bitgrid.net>
2021-12-29Pass username prefill through unauthenticated request redirectsJulius Härtl
Signed-off-by: Julius Härtl <jus@bitgrid.net>
2021-12-03Allow using an app token to login with v2 flow authJulius Härtl
Signed-off-by: Julius Härtl <jus@bitgrid.net>
2021-11-24Hide user status from publicChristopher Ng
Signed-off-by: Christopher Ng <chrng8@gmail.com>
2021-11-23Fix errors in AvatarController when data() returns nullCôme Chilliet
Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>
2021-11-17Explicitly allow some routes without 2FAChristoph Wurst
Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
2021-11-09Move common logic to share managerJoas Schilling
Signed-off-by: Joas Schilling <coding@schilljs.com>
2021-11-06Respect user enumeration settings on profileChristopher Ng
Signed-off-by: Christopher Ng <chrng8@gmail.com>
2021-10-23add check isFairUseOfFreePushService on loginVitor Mattos
Signed-off-by: Vitor Mattos <vitor@php.rio>
2021-10-20Add an OCS endpoint for the hovercard contact actionsJoas Schilling
Signed-off-by: Joas Schilling <coding@schilljs.com>
2021-10-19Profile backendChristopher Ng
Signed-off-by: Christopher Ng <chrng8@gmail.com>
2021-10-05Merge pull request #27733 from ↵Julius Härtl
PhrozenByte/enhancement/noid/IURLGenerator-linkToDefaultPageUrl
2021-09-15Merge pull request #28794 from ↵Pytal
nextcloud/fix/noid/guest-activation-pwd-reset-disabled allow using of disabled password reset mechanism for special cases
2021-09-10allow using of disabled password reset mechanism for special casesArthur Schiwon
- LostController has three endpoints - door opener email() still rejects - resetform(), reachable from mail, checks the token first and may report that password reset is disabled - setPassword() got its check removed as it is behind CSFR anyway and still requires a valid token - this allows special cases like activating a freshly created guest account Signed-off-by: Arthur Schiwon <blizzz@arthur-schiwon.de>
2021-09-10fixes missing prefix to validate password reset tokenArthur Schiwon
- also fixes the test which missed asserting the presence of it Signed-off-by: Arthur Schiwon <blizzz@arthur-schiwon.de>
2021-09-09add a job to clean up expired verification tokensArthur Schiwon
Signed-off-by: Arthur Schiwon <blizzz@arthur-schiwon.de>
2021-09-09move verification token logic out of lost password controllerArthur Schiwon
- to make it reusable - needed for local email verification Signed-off-by: Arthur Schiwon <blizzz@arthur-schiwon.de>
2021-09-06Fix codestyleLukas Reschke
Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
2021-09-06Check if SVG path is validLukas Reschke
Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
2021-08-19Merge pull request #27294 from pjft/patch-2Christoph Wurst
Update TwoFactorChallengeController.php
2021-08-16Use IURLGenerator function to get value of `\OC::$WEBROOT` globalJonas Meurer
Signed-off-by: Jonas Meurer <jonas@freesources.org>
2021-08-16UnifiedSearchController: strip webroot from URL before finding a routeJonas Meurer
This should fix route matching in UnifiedSearchController on setups with Nextcloud in a subfolder (webroot). Fixes: #24144 Signed-off-by: Jonas Meurer <jonas@freesources.org>
2021-08-04Remove usage of \OC_Util::getDefaultPageUrl() and ↵Daniel Rudolf
\OC_Util::redirectToDefaultPage() Signed-off-by: Daniel Rudolf <github.com@daniel-rudolf.de>
2021-08-04Merge branch 'master' into enhancement/noid/IURLGenerator-linkToDefaultPageUrlDaniel Rudolf
2021-07-01Deprecate RedirectToDefaultAppResponseDaniel Rudolf
Signed-off-by: Daniel Rudolf <github.com@daniel-rudolf.de>
2021-06-30Migrate HintException to OCPGary Kim
Signed-off-by: Gary Kim <gary@garykim.dev>
2021-06-30Add IUrlGenerator::linkToDefaultPageUrl()Daniel Rudolf
Replaces the deprecated \OC_Util::getDefaultPageUrl() and makes this API public. Signed-off-by: Daniel Rudolf <github.com@daniel-rudolf.de>
2021-06-21Add logging to 2FA failurepjft
For security reasons, we may want to monitor failures of 2FA challenges in order to ban attackers who might try to access compromised accounts but are stopped by the 2FA challenge. Right now, the only hindrance is rate-limiting, but it's probably not enough. Added dependency injection. Signed-off-by: pjft <paulo.j.tavares@gmail.com>
2021-06-16Use product name in places where it is appropriate rather than the instance nameJulius Härtl
Signed-off-by: Julius Härtl <jus@bitgrid.net>
2021-06-08Merge pull request #26494 from rigrig/fix-php8-deprecationsMorris Jobke
Fix some php 8 warnings
2021-06-04Update php licensesJohn Molakvoæ (skjnldsv)
Signed-off-by: John Molakvoæ (skjnldsv) <skjnldsv@protonmail.com>
2021-05-29Fix functions taking optional parameters before required onesRichard de Boer
PHP 8 shows deprecation warnings about this, see #25806 Removes the "default" values, as they actually are required parameters anyway. Signed-off-by: Richard de Boer <git@tubul.net>
2021-04-20Handle device login like an alternative loginJoas Schilling
Signed-off-by: Joas Schilling <coding@schilljs.com>
2021-04-08Merge pull request #26401 from nextcloud/enh/handle-avatar-upload-errorsRoeland Jago Douma
Show informative errors on avatar upload error
2021-04-01remove leftover debug @NoCSRFRequired introduced with #26198Robin Appelman
Signed-off-by: Robin Appelman <robin@icewind.nl>
2021-04-01show informative errors in log and UI on avatar upload error in user settingsJulien Veyssier
Signed-off-by: Julien Veyssier <eneiluj@posteo.net>
2021-03-19use node search api for legacy file search endpointRobin Appelman
Signed-off-by: Robin Appelman <robin@icewind.nl>