Commit Graph

33918 Commits

Author SHA1 Message Date
Roeland Jago Douma 318ea301c3 Merge pull request #1379 from nextcloud/stable10-backport-711
stable10 backport: Apply password policy on user creation
2016-09-13 19:35:35 +02:00
Roeland Jago Douma 43bff15359 Merge pull request #1394 from nextcloud/fix-share-notification-10
Fix MissingMandatoryParametersException for share notifications
2016-09-13 19:26:43 +02:00
Roeland Jago Douma 14ea159670 Merge pull request #1391 from nextcloud/stable10-backport-1376
[stable10] Allow increasing permissions for share owner
2016-09-13 15:43:24 +02:00
Joas Schilling 107b418815
Fix MissingMandatoryParametersException for share notifications
The routing system is non-forgiving
2016-09-13 14:09:34 +02:00
Morris Jobke d7faff0b0d Merge pull request #1367 from nextcloud/trash-detect-correct-mimetype-stable10
[stable10] deleted files, fix mimetype detection
2016-09-13 11:50:26 +02:00
Vincent Petry 4c177ce6af
Allow increasing permissions for share owner
In some cases, the owner of the share is also recipient through a group
share. The owner must still be able to increase permissions in that
situation.
2016-09-13 11:39:22 +02:00
Morris Jobke 0f7090a2f4 Merge pull request #1389 from nextcloud/stable10-improve-ci-speed
[stable10] clone depth of 1 and execute integration tests first
2016-09-13 11:34:40 +02:00
Morris Jobke 9b60657a5c
clone depth of 1 and execute integration tests first
* specify git image
2016-09-13 10:52:41 +02:00
Morris Jobke b5710d0d7f Merge pull request #1387 from nextcloud/better-mentions-10
[stable10] Try to mention 3 people that will leave comments
2016-09-13 10:41:41 +02:00
Morris Jobke 179cdfd39d
add nextcloud-bot to userBlacklist 2016-09-13 10:35:56 +02:00
Joas Schilling 70db3173cd
Try to mention 3 people that will leave comments 2016-09-13 10:35:45 +02:00
Morris Jobke 8cb1bc5560 Merge pull request #1382 from nextcloud/stable10-backport-1380
[stable10] update drone.yml to 0.5
2016-09-13 02:37:58 +02:00
Nextcloud bot 7c3934d3e6
[tx-robot] updated from transifex 2016-09-13 00:11:26 +00:00
Morris Jobke 9d0bd91b93
update drone.yml to 0.5 2016-09-13 02:07:19 +02:00
michag86 5fc59a1515 Apply password policy on user creation 2016-09-12 22:45:46 +02:00
Bjoern Schiessle a6b661bd68
detect the correct mimetype of the files in the trashbin, therefore we have to check the filename without the appended timestamp 2016-09-12 11:47:57 +02:00
Nextcloud bot 3d0a7c49cc
[tx-robot] updated from transifex 2016-09-12 00:09:41 +00:00
Nextcloud bot 37d6cf6f6c
[tx-robot] updated from transifex 2016-09-11 00:09:20 +00:00
Roeland Jago Douma c40e598d55 Merge pull request #1345 from nextcloud/small-encryption-improvement-stable10
[stable10] skip shared files, if files get decrypted only for a specific user
2016-09-10 14:46:48 +02:00
Nextcloud bot 3ba03a69fd
[tx-robot] updated from transifex 2016-09-10 00:09:25 +00:00
Roeland Jago Douma 70231dcccf Merge pull request #1343 from nextcloud/stable10-throw-exceptions-not-printable
[stable10] Don't print exception message in HTML
2016-09-09 15:23:55 +02:00
Morris Jobke 3270da0890 Merge pull request #1340 from nextcloud/stable10-limit-possible-image-mimetypes
[stable10] Filter more mimetypes
2016-09-09 15:12:26 +02:00
Bjoern Schiessle 7d183a28d2
skip shared files, if files get decrypted only for a specific user we shouldn't touch files owned by a different user. 2016-09-09 14:55:46 +02:00
Lukas Reschke 7350e13113
Don't print exception message in HTML
The exception message is potentially influenced by user input and could thus be confusing (e.g. somebody could try to open a file like "Please send a mail to support@foo.com", and then the message would include that string.

It is thus reasonable to not show the exception message by default. Also for the browser view I added an `exit()` at the end, as otherwise the XML exception would be attached.
2016-09-09 14:16:17 +02:00
Lukas Reschke 68ab8325c7
Filter more mimetypes
There's no need to allow more than those defined mimetypes for images.
2016-09-09 12:36:28 +02:00
Roeland Jago Douma b9100da2e8 Merge pull request #1331 from nextcloud/osx-problems-stable10
[stable10] Fix OS X and OVH problems
2016-09-09 08:19:40 +02:00
Nextcloud bot de921ccd98
[tx-robot] updated from transifex 2016-09-09 00:09:38 +00:00
Lukas Reschke 2ae08d6fc2
Match only for actual session cookie
OVH has implemented load balancing in a very questionable way where the reverse proxy actually internally adds some cookies which would trigger a security exception. To work around this, this change only checks for the session cookie.
2016-09-08 21:07:05 +02:00
Lukas Reschke 1914e7082a
Add exemptions for incompatible UAs
Some user agents are notorious and don't really properly follow HTTP
 specifications. For those, have an automated opt-out. Since the protection
for remote.php is applied in base.php as starting point we need to opt out
here.
2016-09-08 21:06:57 +02:00
Morris Jobke 520bfa872b Merge pull request #1324 from nextcloud/backport-1323-show-download-button-for-updates-atm
[stable10] Show an download button instead of the updater
2016-09-08 15:41:45 +02:00
Morris Jobke 72fed6e8b8 Merge pull request #1322 from nextcloud/backport-1225-allow-to-validate-password-policy
Allow to validate the password_policy app
2016-09-08 15:36:03 +02:00
Morris Jobke 30a24b49f5 Merge pull request #1327 from nextcloud/set-quota-non-int-10
[10] fix setting quota to default or unlimited
2016-09-08 15:32:42 +02:00
Morris Jobke 8e5b2ce3b3 Merge pull request #1316 from nextcloud/backport-1311-add-docs-for-workflows
[stable10] Add a docs link when given
2016-09-08 14:08:52 +02:00
Roeland Jago Douma cfcadaea36 Merge pull request #1319 from nextcloud/backport-1243-fix-detection-of-file-types-a-bit
[stable10] Fix detection of file types a bit
2016-09-08 13:45:23 +02:00
Robin Appelman 38a0492c64
fix setting quota to default or unlimited 2016-09-08 12:58:42 +02:00
Joas Schilling 280a452055
Change updater URL 2016-09-08 12:29:37 +02:00
Morris Jobke a9184287e6 Merge pull request #1320 from nextcloud/backport-1301-fix-required-permissions-for-webdav-move-and-copy
[stable10] Fix required permissions for webdav move and copy
2016-09-08 12:13:18 +02:00
Joas Schilling a44c1c748c
Fix tests 2016-09-08 11:14:17 +02:00
Joas Schilling 292b95462e
Show an update button instead of the updater 2016-09-08 11:02:10 +02:00
Joas Schilling 69b063f4c6
Allow to validate the password_policy app 2016-09-08 09:56:48 +02:00
Joas Schilling 2e407732ba
Fix tests 2016-09-08 09:33:10 +02:00
Joas Schilling 42b9eed5dc
UPDATE permissions qualify for renaming a node 2016-09-08 09:33:01 +02:00
Joas Schilling 14299e44e2
Only require CREATE permissions when the file does not exist yet 2016-09-08 09:32:51 +02:00
Joas Schilling 5996983e28
Make mimetype also work for READ and DELETE operations 2016-09-08 09:21:26 +02:00
Joas Schilling d3a1fbd9eb
Better detection of mimetypes while uploading a zip on a mac 2016-09-08 09:21:00 +02:00
Joas Schilling 810f99c1c9
Correctly remove the charset from finfo mimetype 2016-09-08 09:20:34 +02:00
Joas Schilling 9de17c3785
Add a docs link when given 2016-09-08 08:57:54 +02:00
Nextcloud bot 8c4e5a923a
[tx-robot] updated from transifex 2016-09-08 00:10:28 +00:00
Marius Blüm d2c2f02cc2 Merge pull request #1312 from nextcloud/stable10-backport-1307
[stable10] Fix update notification
2016-09-07 23:44:17 +02:00
Morris Jobke 17dc2c344f
fix tests 2016-09-07 19:58:20 +02:00