nextcloud

Author	SHA1	Message	Date
Lukas Reschke	8149945a91	Make BruteForceProtection annotation more clever This makes the new `@BruteForceProtection` annotation more clever and moves the relevant code into it's own middleware. Basically you can now set `@BruteForceProtection(action=$key)` as annotation and that will make the controller bruteforce protected. However, the difference to before is that you need to call `$responmse->throttle()` to increase the counter. Before the counter was increased every time which leads to all kind of unexpected problems. Signed-off-by: Lukas Reschke <lukas@statuscode.ch>	2017-04-13 23:05:33 +02:00
Christoph Wurst	fe6416072d	set 'no-store' cache header if we do not want FF to cache Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	2017-01-09 21:29:59 +01:00
Roeland Jago Douma	7c078a81b4	Add trict CSP to OCS responses If a repsonse now explicitly has the Empty CSP set then the middleware won't touch it.	2016-09-15 13:11:36 +02:00
Roeland Jago Douma	14136295b7	Cache avatars properly * Set proper caching headers for avatars (15 minutes) * For our own avatar use some extra logic to invalidate when we update	2016-08-30 09:00:16 +02:00
Joas Schilling	ba87db3fcc	Fix others	2016-07-21 18:13:57 +02:00
Lukas Reschke	aba539703c	Update license headers	2016-05-26 19:57:24 +02:00
Roeland Jago Douma	e47b186d51	Move \OCP\AppFramework to PSR-4	2016-05-06 20:38:34 +02:00