mbk-lab
/
nextcloud
2
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
50,133 Commits 349 Branches 696 Tags 1.6 GiB
Commit Graph

50133 Commits

Author SHA1 Message Date
Roeland Jago Douma 8e59132255
Merge pull request #16624 from nextcloud/bugfix/noid/versions-fetch-owner-only 
Make sure we only fetch the file by id for the actual owner
 2019-08-01 15:00:24 +02:00
John Molakvoæ a0a43de499
Merge pull request #16622 from nextcloud/design/scrollbar 
Standardize scrollbar color and width across Webkit and Firefox
 2019-08-01 14:57:14 +02:00
Roeland Jago Douma edf9dee691
Merge pull request #16586 from nextcloud/feature/16585_adminAuditShareCirclesRemotel/wiswedel 
log circles and remote shares in admin_audit
 2019-08-01 12:35:26 +02:00
Sascha Wiswedel 07d2f68786
log circles and remote shares in admin_audit 
Signed-off-by: Sascha Wiswedel <sascha.wiswedel@nextcloud.com>
 2019-08-01 10:56:35 +02:00
Roeland Jago Douma 2e2d1b6b5c
Merge pull request #16592 from nextcloud/bugfix/noid/federated-reshare 
Fix permission check on incoming federated shares
 2019-08-01 10:55:35 +02:00
Julius Härtl e26187c7ff
Make sure we only fetch the file by id for the actual owner 
Otherwise this will fetch all mounts for the file id which is quite
expensive and causes long saving times in big sharing structures

Signed-off-by: Julius Härtl <jus@bitgrid.net>
 2019-08-01 10:10:49 +02:00
Nextcloud bot a1afdac31a
[tx-robot] updated from transifex 2019-08-01 02:15:27 +00:00
Roeland Jago Douma 5f6ac5a7b2
Merge pull request #16618 from nextcloud/enh/csp/form-action 
Add form-action CSP element
 2019-07-31 19:41:52 +02:00
Jan-Christoph Borchardt c92e6192a5
Standardize scrollbar color and width across Webkit and Firefox 
Signed-off-by: Jan-Christoph Borchardt <hey@jancborchardt.net>
 2019-07-31 18:36:39 +02:00
Roeland Jago Douma cf647451e5
Update CSP test cases to handle the new form-action 
Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
 2019-07-31 15:16:10 +02:00
Roeland Jago Douma f94ee72507
Add form-action CSP element 
Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
 2019-07-31 15:16:10 +02:00
Julius Härtl 22b81ac1e4
Fix permission check on incoming federated shares 
Since federated shares have their permissions set on the node, we do not need
to check for parent share permissions. Otherwise reshares of incoming federated
have no permission variable defined and creating them will fail

Signed-off-by: Julius Härtl <jus@bitgrid.net>
 2019-07-31 12:59:51 +02:00
Roeland Jago Douma f1066fd769
Merge pull request #16619 from nextcloud/bugfix/16446/theming-url-validate 
Validate urls in theming settings and properly handle error messages
 2019-07-31 12:52:19 +02:00
Roeland Jago Douma 436f7b92d5
Merge pull request #16544 from nextcloud/bugfix/16540 
Add missing password reset page to vue
 2019-07-31 11:02:20 +02:00
Roeland Jago Douma 1d8b09aa86
Merge pull request #16616 from nextcloud/dep/setEvalScript 
setting unsafe-eval is deprecated
 2019-07-31 11:01:38 +02:00
Julius Härtl 47a0254bb3
Validate urls in theming settings and properly handle error messages 
Signed-off-by: Julius Härtl <jus@bitgrid.net>
 2019-07-31 10:20:57 +02:00
Julius Härtl 3b0d13944a
Move actual password reset to vue 
Signed-off-by: Julius Härtl <jus@bitgrid.net>
 2019-07-31 09:19:07 +02:00
Nextcloud bot 3f8f0f7609
[tx-robot] updated from transifex 2019-07-31 02:16:00 +00:00
Roeland Jago Douma 417fbb5d60
setting unsafe-eval is deprecated 
This will be removed in a future version of Nextcloud.

Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
 2019-07-30 16:27:38 +02:00
Joas Schilling d4eb8481fa
Merge pull request #16594 from nextcloud/tech-debt/noid/remove-unused-checkPasswordProtectedShare 
Remove unused OC\Share\Share::checkPasswordProtectedShare
 2019-07-30 09:58:38 +02:00
Roeland Jago Douma 53330ce1fc
Merge pull request #16599 from nextcloud/fix/xss/on-favorite-file 
Fix/xss/on favorite file
 2019-07-30 09:51:45 +02:00
Roeland Jago Douma a3bf8ac339
Merge pull request #16593 from nextcloud/fix/noid/more-precise-error-message 
More precise error message when expected filesize does not match
 2019-07-30 08:55:28 +02:00
Roeland Jago Douma 135209f24e
Merge pull request #16579 from nextcloud/enh/PostLoginEvent 
Add proper PostLoginEvent
 2019-07-30 08:54:10 +02:00
Roeland Jago Douma fc497eb871
Merge pull request #16596 from nextcloud/bugfix/noid/vtooltip-defaults 
Set proper defaults for v-tooltip usages
 2019-07-30 08:43:10 +02:00
Roeland Jago Douma e341e6946b
Merge pull request #16595 from nextcloud/tech-debt/noid/no-need-to-document-the-obvious 
Do not document the obvious
 2019-07-30 08:42:31 +02:00
Nextcloud bot 74eb2894a7
[tx-robot] updated from transifex 2019-07-30 02:14:45 +00:00
Julius Härtl 09b5df42ab
Bump bundles 
Signed-off-by: Julius Härtl <jus@bitgrid.net>
 2019-07-29 20:38:23 +02:00
Julius Härtl 3d6e49aa6c
Force defaultHtml setting of v-tooltip to be disabled 
Signed-off-by: Julius Härtl <jus@bitgrid.net>
 2019-07-29 20:38:22 +02:00
Max Fichtelmann 4977f235f6 prevent potential XSS via unchecked use innerHTML 
Signed-off-by: Max Fichtelmann <max.fichtelmann@procilon.de>
 2019-07-29 18:16:37 +02:00
Max Fichtelmann 1d29636008 fix XSS when adding a file with a malicious name to favorites 
Signed-off-by: Max Fichtelmann <max.fichtelmann@procilon.de>
 2019-07-29 18:16:37 +02:00
Morris Jobke e21f440990
Merge pull request #16502 from nextcloud/bugfix/16474 
Check the if we can actually access the storage cache for recent files
 2019-07-29 16:59:26 +02:00
Morris Jobke 8d8766d5a7
Merge pull request #16591 from nextcloud/fix/noid/typo-in-comment 
Fix typo in comment
 2019-07-29 16:54:29 +02:00
Roeland Jago Douma 0ea7fbae54
Update tests 
Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
 2019-07-29 16:31:40 +02:00
Roeland Jago Douma ba60fafb9a
Add proper PostLoginEvent 
This can be used by othr mechanisms to listen for this event in a lazy
fashion.

Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
 2019-07-29 16:31:40 +02:00
Morris Jobke 5f6c7ba9a8
Do not document the obvious 
This removes PHPDoc that is already available as source code type hints.

Signed-off-by: Morris Jobke <hey@morrisjobke.de>
 2019-07-29 15:25:54 +02:00
Morris Jobke 98237d2a00
Remove unused OC\Share\Share::checkPasswordProtectedShare 
Signed-off-by: Morris Jobke <hey@morrisjobke.de>
 2019-07-29 15:23:21 +02:00
Morris Jobke 13fd89575d
More precise error message when expected filesize does not match - could be on reading or writing side 
Signed-off-by: Morris Jobke <hey@morrisjobke.de>
 2019-07-29 15:03:01 +02:00
Morris Jobke e45fb5fa3e
Fix typo in comment 
Signed-off-by: Morris Jobke <hey@morrisjobke.de>
 2019-07-29 14:55:43 +02:00
Roeland Jago Douma 51197ac622
Merge pull request #16582 from nextcloud/enh/split_up_security_middleware 
Split up security middleware
 2019-07-29 12:13:55 +02:00
Morris Jobke ec7e837d6a
Merge pull request #16563 from nextcloud/enh/lostcontroller/better_exceptions 
Use proper exception in lostController
 2019-07-29 10:42:36 +02:00
Roeland Jago Douma 173d95c904
Merge pull request #16581 from nextcloud/dep/strict_csps_can_go 
No need to have these classes we tighten the default CSP from time to time
 2019-07-29 10:40:38 +02:00
Roeland Jago Douma fb78cd3ed8
Merge pull request #16570 from nextcloud/enh/supress_touch_error 
Supress warnings touch can generate
 2019-07-29 10:39:46 +02:00
Morris Jobke ef86346886
Merge pull request #16571 from nextcloud/enh/update_preview_controller 
Update PreviewController
 2019-07-29 10:35:08 +02:00
Nextcloud bot 57f2ea22c7
[tx-robot] updated from transifex 2019-07-29 02:14:59 +00:00
Roeland Jago Douma d6bb26140d
Merge pull request #16573 from nextcloud/fix-default-timeouts-in-oc-notification 
Fix default timeouts in OC.Notification
 2019-07-28 20:57:31 +02:00
Roeland Jago Douma 99081daa4c
Merge pull request #16583 from nextcloud/dependabot/npm_and_yarn/webpack-4.38.0 
Bump webpack from 4.36.1 to 4.38.0
 2019-07-28 10:49:02 +02:00
Nextcloud bot b481750d00
[tx-robot] updated from transifex 2019-07-28 02:15:26 +00:00
dependabot-preview[bot] 774da99d94
Bump webpack from 4.36.1 to 4.38.0 
Bumps [webpack](https://github.com/webpack/webpack) from 4.36.1 to 4.38.0.
- [Release notes](https://github.com/webpack/webpack/releases)
- [Commits](https://github.com/webpack/webpack/compare/v4.36.1...v4.38.0)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
 2019-07-28 01:13:42 +00:00
Roeland Jago Douma b6dd2ebd39
Use proper exception in lostController 
There is no need to log the expcetion of most of the stuff here.
We should properly log them but an exception is excessive.

This moves it to a proper exception which we can catch and then log.
The other exceptions will still be fully logged.

Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
 2019-07-27 20:12:16 +02:00
Roeland Jago Douma 37a4282c7a
Split up security middleware 
With upcoming work for the feature policy header. Splitting this in
smaller classes that just do 1 thing makes sense.

I rather have a few small classes that are tiny and do 1 thing right
(and we all understand what is going on) than have big ones.

Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
 2019-07-27 16:11:45 +02:00