Jan-Christoph Borchardt
e75dede590
fix some outdated naming
...
Signed-off-by: Jan-Christoph Borchardt <hey@jancborchardt.net>
2016-11-24 16:05:05 +01:00
Jan-Christoph Borchardt
56881433c0
show installation spinner correctly, fix #2129
...
Signed-off-by: Jan-Christoph Borchardt <hey@jancborchardt.net>
2016-11-22 15:58:00 +01:00
Joas Schilling
80abb69b60
Show a little explanation above the input field
...
Signed-off-by: Joas Schilling <coding@schilljs.com>
2016-11-18 12:10:51 +01:00
Joas Schilling
05df523395
Empty the password field on submission of the form
...
Signed-off-by: Joas Schilling <coding@schilljs.com>
2016-11-18 12:10:51 +01:00
Joas Schilling
d75e35b75e
Introduce the UI for password confirmation
...
Signed-off-by: Joas Schilling <coding@schilljs.com>
2016-11-18 11:57:16 +01:00
Roeland Jago Douma
740659a04c
Move away from OC_L10N
...
Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
2016-10-28 21:46:28 +02:00
Roeland Jago Douma
6dbe417c51
Inlince oc.js if possible!
...
Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
2016-10-25 22:03:18 +02:00
Morris Jobke
89574367bc
Merge pull request #1871 from nextcloud/use-csp-nonces
...
Use CSP nonces
2016-10-25 14:46:00 +02:00
Lukas Reschke
38b3ac8213
Add ContentSecurityPolicyNonceManager
...
Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
2016-10-24 16:35:31 +02:00
Lukas Reschke
9e6634814e
Add support for CSP nonces
...
CSP nonces are a feature available with CSP v2. Basically instead of saying "JS resources from the same domain are ok to be served" we now say "Ressources from everywhere are allowed as long as they add a `nonce` attribute to the script tag with the right nonce.
At the moment the nonce is basically just a `<?php p(base64_encode($_['requesttoken'])) ?>`, we have to decode the requesttoken since `:` is not an allowed value in the nonce. So if somebody does on their own include JS files (instead of using the `addScript` public API, they now must also include that attribute.)
IE does currently not implement CSP v2, thus there is a whitelist included that delivers the new CSP v2 policy to newer browsers. Check http://caniuse.com/#feat=contentsecuritypolicy2 for the current browser support list. An alternative approach would be to just add `'unsafe-inline'` as well as `'unsafe-inline'` is ignored by CSPv2 when a nonce is set. But this would make this security feature unusable at all in IE. Not worth it at the moment IMO.
Implementing this offers the following advantages:
1. **Security:** As we host resources from the same domain by design we don't have to worry about 'self' anymore being in the whitelist
2. **Performance:** We can move oc.js again to inline JS. This makes the loading way quicker as we don't have to load on every load of a new web page a blocking dynamically non-cached JavaScript file.
If you want to toy with CSP see also https://csp-evaluator.withgoogle.com/
Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
2016-10-24 12:27:50 +02:00
Robin Appelman
7427fb170f
show empty folder message in filepicker
...
Signed-off-by: Robin Appelman <robin@icewind.nl>
2016-10-21 16:35:55 +02:00
Robin Appelman
14f78369d7
Use a table for the filepicker list and add size column
...
Signed-off-by: Robin Appelman <robin@icewind.nl>
2016-10-19 14:18:21 +02:00
Jan-Christoph Borchardt
cf5d30387b
Merge pull request #1641 from nextcloud/log-in-button
...
bring back dedicated log in button to make log in more usable
2016-10-17 18:28:27 +02:00
Jan-Christoph Borchardt
aa4eaf3a7e
finish up layout of log in page, postpone forgot password link for later
...
Signed-off-by: Jan-Christoph Borchardt <hey@jancborchardt.net>
2016-10-17 14:28:49 +02:00
Robin Appelman
6d43942125
filepicker styling
...
Signed-off-by: Robin Appelman <robin@icewind.nl>
2016-10-14 17:36:08 +02:00
Jan-Christoph Borchardt
ee231759e5
update styles of log in
...
Signed-off-by: Jan-Christoph Borchardt <hey@jancborchardt.net>
2016-10-11 13:58:10 +02:00
Joas Schilling
b8030e6d02
Use name from theming
2016-10-07 09:44:42 +02:00
Roeland Jago Douma
19485e3ec9
Set proper web title for apple
...
Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
2016-10-06 20:57:32 +02:00
Jan-Christoph Borchardt
75ec1541e4
fix log in button layout
2016-10-06 19:08:32 +02:00
Jan-Christoph Borchardt
3141680feb
bring back dedicated log in button to make log in more usable
2016-10-06 16:48:10 +02:00
Joas Schilling
7c0951244a
Deprecate getEditionString()
2016-09-06 16:05:28 +02:00
Lukas Reschke
06fa486706
Merge pull request #1158 from nextcloud/cache_avatars
...
Cache avatars
2016-09-05 15:08:43 +02:00
Christoph Wurst
8acb734854
add 2fa backup codes app
...
* add backup codes app unit tests
* add integration tests for the backup codes app
2016-09-05 08:51:13 +02:00
coderkun
56862e3fdc
Add attribute “tabindex” to login form ( fixes #1110 )
2016-08-31 21:58:10 +02:00
Roeland Jago Douma
14136295b7
Cache avatars properly
...
* Set proper caching headers for avatars (15 minutes)
* For our own avatar use some extra logic to invalidate when we update
2016-08-30 09:00:16 +02:00
Raghu Nayyar
b580c3664d
Merge pull request #1093 from nextcloud/mail-fontstack
...
use proper font stack for email
2016-08-28 10:30:50 +02:00
Christoph Wurst
78bb02d27a
list 2FA providers as buttons
2016-08-27 12:27:05 +02:00
Christoph Wurst
4a91673154
use centered h2 for 2FA page headers
2016-08-27 11:33:15 +02:00
Christoph Wurst
c93c5d142e
fix 2fa challenge page wording
2016-08-27 11:12:12 +02:00
Christoph Wurst
dc57b89f37
reorder 2fa challenge HTML
2016-08-27 11:12:12 +02:00
Jan-Christoph Borchardt
042c744ac6
use proper font stack for email
2016-08-26 22:59:24 +02:00
Lukas Reschke
8a6b5a1d86
Remove uninterpreted PHP
...
This is in an HTML file. The PHP won't be executed 🙈
2016-08-19 14:24:26 +02:00
Lukas Reschke
fb183f8143
Add cachebuster to right navigation
2016-08-18 12:36:14 +02:00
Lukas Reschke
3c7d2544b9
Add cache buster to left menu bar
2016-08-18 12:34:55 +02:00
Morris Jobke
bded787d0c
Empty tags are not allowed for image and feColorMatrix in IE11 and below
2016-08-17 15:59:30 +02:00
Arthur Schiwon
ceeb44bd04
Initial work on Apps page split:
...
* interfaces for the Admin settings (IAdmin) and section (ISection)
* SettingsManager service
* example setup with LDAP app
2016-08-09 18:05:09 +02:00
Jan-Christoph Borchardt
835dc59d6a
reduce info on update screens, introduce button to refresh
2016-08-04 12:48:25 +02:00
Jan-Christoph Borchardt
2f9725469d
switch nested containers in update to semibold style
2016-08-03 18:58:44 +02:00
Morris Jobke
d97fe1775a
Shake the login fields if password is wrong
2016-08-01 21:42:29 +02:00
Julius Haertl
9f50838cff
Fix wrong preserveAspectRatio at app menu icons
2016-07-29 23:06:26 +02:00
Julius Haertl
f55ba62a00
Move to svg filter on app menu to support IE9+
2016-07-28 22:33:17 +02:00
Julius Haertl
387550be88
Theming: Implement swapping the foreground color for bright colors
2016-07-15 14:16:41 +02:00
Morris Jobke
ba16fd0d33
Merge branch 'master' into sync-master
2016-07-07 11:29:46 +02:00
Hendrik Leppelsack
c47833718f
remove svg classes
2016-07-01 16:36:37 +02:00
Lukas Reschke
6670d37658
Merge remote-tracking branch 'upstream/master' into master-sync-upstream
2016-06-27 18:23:00 +02:00
Hendrik Leppelsack
e5d8726859
remove ie8+9 support
2016-06-23 12:34:53 +02:00
Joachim Sokolowski
64a9f9d77b
singleuser.user.php -> nextcloud
...
Changed to nextcloud
2016-06-22 07:48:36 +02:00
Morris Jobke
3720bae3ec
fix setup page strengthify
...
* fixes #105
2016-06-15 15:27:30 +02:00
Arthur Schiwon
a636e4ff28
Downstream 2016-06-09
...
Merge branch 'master' of https://github.com/owncloud/core into downstream-160609
2016-06-09 18:45:12 +02:00
blizzz
51fd2602a7
Revert "Downstream 2016-06-08"
2016-06-09 17:41:57 +02:00
Joas Schilling
7f88645eab
Allow to cancel 2FA after login
2016-06-09 14:00:02 +02:00
Jan-Christoph Borchardt
81145ee57c
THIS IS NEXTCLOUD! adjusting the design
2016-06-08 17:02:18 +02:00
Joas Schilling
3e3b326c85
Allow to cancel 2FA after login
2016-06-07 18:17:29 +02:00
Christoph Wurst
5e71d23ded
remember redirect_url when solving the 2FA challenge
2016-06-01 14:43:47 +02:00
Joas Schilling
5c063cf7c9
Allow opening the password reset link in a new window when its a URL
2016-05-24 09:23:25 +02:00
Christoph Wurst
dfb4d426c2
Add two factor auth to core
2016-05-23 11:21:10 +02:00
Thomas Müller
60bafcda73
Fix #24655
2016-05-17 20:43:02 +02:00
Christoph Wurst
d8cde414bd
token based auth
...
* Add InvalidTokenException
* add DefaultTokenMapper and use it to check if a auth token exists
* create new token for the browser session if none exists
hash stored token; save user agent
* encrypt login password when creating the token
2016-05-11 13:36:46 +02:00
Thomas Müller
7aca13f14c
Allow login by email address
2016-05-02 14:51:01 +02:00
Thomas Müller
739dfb5c66
Suggest cli based updater in case the instance is bigger - #23913
2016-04-18 17:09:21 +02:00
Lukas Reschke
fee95084ae
Rename `username` to `loginName`
...
UID and login name are two different things.
2016-04-15 19:02:19 +02:00
Lukas Reschke
331e4efacb
Move login form into controller
...
First step on getting the authorisation stuff cleaned up. This is only for the login form, all other stuff is still where it is.
2016-04-15 17:36:23 +02:00
Thomas Müller
fdee771aca
Add unit testing capabilities for templates ( #23708 )
...
Add unit testing capabilities for templates
2016-04-12 12:49:11 +02:00
Morris Jobke
22898fa107
Use proper shortcut methods in templates
2016-04-06 10:25:04 +02:00
Morris Jobke
1f7e02e4d4
Add detailed logs hidden and show them on request
2016-04-04 12:34:18 +02:00
Thomas Müller
1bf4c75e8b
Show individual sql schema migration steps during upgrade - on web as well as on the command line
2016-04-04 12:34:18 +02:00
Stefan Weil
62a5952a72
core: Fix typos (found by codespell)
...
Signed-off-by: Stefan Weil <sw@weilnetz.de>
2016-04-04 10:57:17 +02:00
C. Montero Luque
0393e80c7c
Merge pull request #16857 from owncloud/printStylesheets
...
Support for print stylesheets
2016-03-31 22:13:44 +02:00
Lukas Reschke
6ad957906e
Consistently use rel=noreferrer
...
When linking to external entities we should consistently use rel=noreferrer
2016-03-20 15:27:20 +01:00
Daniel Aleksandersen
7a45f05ed5
Stupid clients only literally understand rel="icon"
...
rel="shortcut icon" hasn’t been relevant in years, isn’t in any
standards, and causes problems for simple pattern matching clients.
https://www.w3.org/TR/html/links.html#linkTypes
2016-03-08 21:09:34 +01:00
Vincent Chan
06b2f11e57
refactoring code
2016-02-10 15:28:14 +01:00
Vincent Chan
e7859f705c
Remember previous state of remember login checkbox
...
fixes #22205
2016-02-10 12:37:38 +01:00
Lukas Reschke
abc675d87e
Move update notification code into app
...
Moves the update notification code in a single app. This is required since we want to use SSO for the new updater and for this have some code running in ownCloud as well (and we don't want that in core neccessarily). This app can provide that in the future, right now it's only the update notification itself. Will continue working on the SSO right away but wanted to keep the PR small.
Furthermore also makes some more code unit-testable...
2016-02-09 18:05:51 +01:00
Vincent Petry
3b581b051f
Expose display name in JS side
...
Adds a new method `OC.getCurrentUser` to get both the user id and
display name Could be used for a future Js
2016-02-02 18:01:15 +01:00
Morris Jobke
75e6734ef4
Remove OC_Helper::imagePath and use the proper public interface
2016-01-24 18:04:20 +01:00
Morris Jobke
d6a63016ae
move lost controller to core/controller
...
* lostpassword.css is unneeded since #11696 is merged - 1b50d4f7ce
* js is already in core/js
* css is moved to core/css/lostpassword
* template is moved to core/templates/lostpassword
2016-01-20 10:42:19 +01:00
Hendrik Leppelsack
99b9ec41c1
support print stylesheets
2016-01-13 15:12:11 +01:00
Roeland Jago Douma
7e44ea5da0
Remove deprecated function OC_User::getManager
...
Private deprecated function => removed
Replaced all instances with suggested replacement
2015-12-17 16:18:34 +01:00
Roeland Jago Douma
19eeb23b91
OC_Helper::linkTo is deprecated
...
Replaced with suggested (and calling body of)
2015-12-17 10:53:21 +01:00
Lukas Reschke
4b293dffe5
Use \OCP\Util::sanitizeHTML instead of \OC_Util::sanitizeHTML
2015-12-08 08:56:47 +01:00
Joas Schilling
f8f3c9ecf9
Remove password reset when the user can not change the password
2015-12-07 15:14:19 +01:00
Lukas Reschke
f3e9106864
Don't trust update server
...
In case the update server may deliver malicious content this would allow an adversary to inject arbitrary HTML into the response. So very bad stuff.
While signing the response would be better and something we can also do in the future (considering the code signing work), this is already a good first start.
2015-11-28 12:21:53 +01:00
Jan-Christoph Borchardt
cd88854369
update page: fix heading whitespace and unbold less important sections
2015-11-25 13:16:00 +01:00
Jürgen Weigert
b167eb743f
Update untrustedDomain.php
2015-11-12 14:33:59 +01:00
Thomas Müller
2e8d8bf4ef
Merge pull request #20236 from maprambo/safari-pinned-tab-icon
...
added Safari tabbed pin icon
2015-11-09 11:12:38 +01:00
Thomas Müller
164f4d7d37
Merge pull request #18039 from owncloud/favicon-up-to-ie10
...
Add favicon for IE8-10
2015-11-06 14:51:24 +01:00
Jan-Christoph Borchardt
93f9577258
do not bold header of update screen
2015-11-05 16:36:37 +01:00
maprambo
edb1fee610
Added Safari tabbed pin icon
...
Added the necessary code and a black and inverted version of the favicon/ touch icon in svg format
2015-11-04 19:31:17 +01:00
Morris Jobke
069ed71dbe
Add favicon for IE 8+
2015-11-03 14:24:20 +01:00
Hendrik Leppelsack
cf0ebfc7aa
don't validate searchbox
2015-11-03 10:10:52 +01:00
Thomas Müller
053effaa51
Merge pull request #20220 from owncloud/keep-search-open
...
Keep searchbox open if it is in action
2015-11-02 13:58:10 +01:00
Hendrik Leppelsack
9669a2be78
keep searchbox open if it is in action
2015-11-02 12:14:54 +01:00
Joas Schilling
f04151f69b
Close the user menu when clicking it again
2015-11-02 10:09:13 +01:00
Thomas Müller
6911d8f0a4
Merge pull request #20175 from owncloud/login-arrow
...
remove unneeded icons from input fields to not distract from submit button, fix #18940
2015-10-30 15:56:13 +01:00
Jan-Christoph Borchardt
a05ea0fb1e
remove unneeded icons from input fields to not distract from submit button, fix #18940
2015-10-30 11:11:37 +01:00
Stephen Colebrook
6feb31bf96
Allow separate templates for internal and external share notifications
2015-10-29 10:24:24 +01:00
Jan-Christoph Borchardt
aed9b2a626
change wording from 'remember' to more understandable 'Stay logged in'
2015-10-23 10:44:41 +13:00
Vincent Petry
bf2a876094
Fix login arrow in login page
2015-09-29 17:13:10 +02:00
Hendrik Leppelsack
c23cac3322
fix login
2015-09-25 00:51:39 +02:00
Thomas Müller
ac8da41ccd
Merge pull request #18709 from owncloud/cleanup-login-semantics
...
Pushes input inside the bottom group - login.
2015-09-21 16:08:48 +02:00
Thomas Müller
7ff12d74d9
Merge pull request #17998 from owncloud/highres_avatar
...
Highres avatar in top bar
2015-09-16 22:03:11 +02:00
Hendrik Leppelsack
88bc478055
use label:before instead of label
2015-09-16 09:06:05 +02:00
Raghu Nayyar
7ccd02ec95
Fixes white and black checkboxes in core, files will be next.
2015-09-16 09:06:05 +02:00
Roeland Jago Douma
c39db52cfa
Use srcset to select best avatar size
...
* Allow the browser to select the best available avatar for the screen
2015-09-14 12:58:45 +02:00
Raghu Nayyar
1d9128c557
Squashing all commits in one, remove typos.
2015-09-12 15:24:56 +05:30
Lukas Reschke
436c149fbb
Prevent referer from being sent
...
Nice hardening for enhanced privacy. Especially useful when using embedded viewers such as files_pdfviewer.
2015-09-09 18:07:43 +02:00
Jan-Christoph Borchardt
acc9fa49fc
use SVG for toggle image instead of PNG, fix installation and personal settings toggle
2015-09-03 11:49:28 +02:00
Christoph Wurst
ba9457264f
add title attribute for the login button
2015-09-02 12:32:16 +02:00
Jan-Christoph Borchardt
cea3247d49
show feedback spinner for log in process
2015-08-27 21:08:46 +02:00
Jan-Christoph Borchardt
2a935f1b47
move log in button into fields and use icon instead of text
2015-08-27 20:52:47 +02:00
Morris Jobke
40b1054530
Merge pull request #18254 from owncloud/mitigate-breach
...
Add mitigation against BREACH
2015-08-24 09:14:27 +02:00
Jan-Christoph Borchardt
f21cf516da
fix wording of update header
2015-08-20 12:59:13 +02:00
Morris Jobke
06d8edd963
Merge pull request #17434 from owncloud/update-showappnameonappupdate
...
Display app names in update page for app updates
2015-08-20 11:50:01 +02:00
Vincent Petry
a2674b2b30
Additions to update page
...
Apps to update and to disable will always be shown.
Main title changes only when apps need updated, not core.
Added bullet style.
Exclude incompatible apps from updated apps list.
2015-08-20 11:14:30 +02:00
Vincent Petry
b919ae96f0
Display app names in update page for app updates
...
Whenever the update page is displayed for apps, show app names instead
of the core update text.
2015-08-19 18:03:35 +02:00
Lukas Reschke
df2ce8a075
Remove search box $_POST since it is unused
2015-08-14 01:31:32 +02:00
Jan-Christoph Borchardt
e16cf0c45f
more understandable 'Wrong password' feedback
2015-08-12 18:43:09 +02:00
Thomas Müller
aff11d7a79
Merge pull request #17966 from owncloud/remove-mssql
...
Remove remainings of mssql
2015-07-29 22:59:31 +02:00
Thomas Müller
5ed38a75d6
Remove remainings of mssql
2015-07-29 18:19:31 +02:00
Jan-Christoph Borchardt
0b27bcba76
add theme-color for better Android browser integration
2015-07-29 18:16:01 +02:00
Brewal
eac117fc8f
Changed a p element by a div
...
A p element cannot contain a div element (here `<div style="clear: both;"></div>`). It should be change by a div element to fits standards.
2015-06-08 15:22:52 +02:00
Jan-Christoph Borchardt
78a0464354
replace logo-wide on share page as well with better icon + text
2015-05-22 00:04:47 +02:00
Morris Jobke
176b9674d2
Add hint about additional PHP database modules
...
* fixes #16391
2015-05-18 22:59:35 +02:00
Morris Jobke
cd516eedcd
Use OC.Notification for update notifications
...
* instead of a static rendering inside PHP use the
JS OC.Notification.showTemporary to hide the
notification after 7 seconds automatically
* fixes #14811
2015-05-03 17:26:03 +02:00
Jörn Friedrich Dreyer
8964c5068c
do not disclose information, show generic error on login page
...
Conflicts:
core/templates/login.php
lib/base.php
2015-04-10 09:12:37 +02:00
Jan-Christoph Borchardt
dd7e519cda
add link to installation documentation to setup page
2015-04-09 11:39:46 +02:00
Lukas Reschke
0816cf9142
Add experimental applications switch
...
Allows administrators to disable or enabled experimental applications as well as show the trust level.
2015-04-03 13:21:24 +02:00
Volker E
f4502b4670
fixing #15344 - `title` has no added value here (not on screen readers not for robots)
2015-04-01 21:10:48 +02:00
Morris Jobke
1a06f8df57
add title to entries in app menu
2015-04-01 09:10:19 +02:00
Jan-Christoph Borchardt
cd88ddddaf
fix accessibility of ownCloud logo and navigation entries, fix #15013g
2015-03-26 10:31:00 +01:00
Morris Jobke
e07a2fd8a2
Merge pull request #15012 from Volker-E/master
...
fixing #15011 by adding ARIA roles where distinct
2015-03-24 12:07:26 +01:00
Volker E
599ee5ce4e
fixing #15023 , getting comments out of HTML output
2015-03-21 07:10:46 +01:00
Robin Appelman
2df20aaffb
show exception type in debug mode
2015-03-20 03:51:21 +01:00
Volker E
0e4d52f9d2
fixing #15027 , cleaning up obsolete IE5-7 workaround code
2015-03-19 09:10:58 +01:00
Volker E
0d0c73cf2b
fixing #15011 by adding ARIA roles where distinct
2015-03-18 19:29:15 +01:00
Volker E
790324b313
addressing #14984 removing redundant type attributes
2015-03-18 05:33:17 +01:00
Volker E
4c46d0c46c
addressing #14983 obsolete Google Chrome Frame
2015-03-18 02:11:47 +01:00
Volker E
6ad76b5cc2
addressing #14982 self-closing tags ending slash doesn't have a purpose & should be removed
2015-03-17 23:57:23 +01:00
Volker E
25b77159c4
adressing #14979 meta charset declaration should be first in head
2015-03-17 23:36:05 +01:00
Volker E
e8c99a60ec
addressing #14978 - remove html root classes targeting IE6/IE7
2015-03-17 23:16:42 +01:00
Volker E
f3cd552797
addressing #14978 - remove html root classes targeting IE6/IE7
2015-03-17 22:35:20 +01:00
Roeland Jago Douma
1a0f9c375b
Avatar controller moved to AppFrameWork
...
* Original avatarcontroller migrated to the appframework
* Added DataDisplayResponse that show data inline in the browser (used
to retrun the image)
* Removed some unneeded code
* Added unit tests for the avatarcontroller
2015-03-11 16:37:42 +01:00
Joas Schilling
0f09989824
Maintenance mode message might be misleading
2015-03-02 09:51:25 +01:00
Lukas Reschke
8818165e07
Fix avatars in master
2015-02-27 12:03:58 +01:00
Jan-Christoph Borchardt
83bc951630
Merge pull request #12213 from sebomoto/add-loadfeedback
...
Add loadfeedback
2015-02-18 19:42:18 +01:00
Lukas Reschke
20d57c8bfe
Remove Null Byte Check
...
This is not relevant anymore since we require PHP 5.4
2015-02-17 14:19:20 +01:00
Lukas Reschke
c6705ab574
Merge pull request #13890 from owncloud/add-no-referrer
...
Add `rel="noreferrer"` where possible and switch to HTTPS
2015-02-16 14:36:44 +01:00
Lode Hoste
27b35500a7
Disable application-specific favicons for non-user pages
2015-02-11 20:09:03 +01:00
Joas Schilling
4172ba48d4
Deduplicate template code and do not translate the links
2015-02-09 16:01:52 +01:00
Morris Jobke
b05e4e085c
Merge pull request #13435 from Zillode/app-favicon
...
Allow application-specific favicons
2015-02-07 13:29:18 +01:00
cmeh
6abb28e2a6
Update installation.php
...
In line 161, "SQLite" has now the same capitalisation as in line 159.
2015-02-06 11:19:56 +01:00
Thomas Müller
d748368ecb
Don't highly discourage
2015-02-05 17:21:10 +01:00
Sebastian Bolt
7ffd2557ff
changed image to classed div for spinner animation
2015-02-04 22:27:38 +01:00
Thomas Müller
f86c73c9f6
enhance sqlite warning on admin page as well as during setup - fixes #13906
2015-02-04 20:55:54 +01:00
Lukas Reschke
b432ea29c9
Add `rel="noreferrer"` where possible and switch to HTTPS
...
Just to follow good practise and prevent some automated scanners to complain about "Cross-domain Referer leakage".
2015-02-04 16:25:37 +01:00
Morris Jobke
5b4fd12b5b
add CSS to exception page - fixes #13747
2015-01-29 20:18:08 +01:00
Morris Jobke
254a1fa12a
Merge pull request #13314 from owncloud/login-hook-logout
...
Return false if the login is canceled in a hook
2015-01-22 23:34:19 +01:00
Robin Appelman
8a9acc5083
Allow custom error messages for the login page
2015-01-22 14:13:02 +01:00
Lode Hoste
96f81961ed
Allow application-specific favicons
2015-01-18 00:19:33 +01:00
Vincent Petry
99304be4ef
Read version and product name from update template
...
During upgrade, the config settings aren't always available due to
base.php changes. This fix makes the update info page read the product
name and version from the update template, which already had them.
2015-01-14 11:31:42 +01:00
Jan-Christoph Borchardt
6933ffbf83
remove skip to content for now, see #12999
2014-12-22 16:02:45 +01:00
Jan-Christoph Borchardt
f512dbb98a
change Documents default typeface from serif to sans-serif
2014-12-19 18:16:46 +01:00
Jan-Christoph Borchardt
a2c2775df2
introduce first 'Skip to content' button
2014-12-19 00:35:24 +01:00
Morris Jobke
3036a8714d
Merge pull request #12941 from owncloud/wave-accessibility-compliance
...
Wave accessibility compliance
2014-12-19 00:30:56 +01:00
Jörn Friedrich Dreyer
891474b0d6
Merge pull request #12759 from owncloud/core-reduce-js-and-css
...
make sure styles and scripts are only loaded once
2014-12-18 23:18:37 +01:00
Jan-Christoph Borchardt
2e6235456a
fix searchbox label
2014-12-18 13:39:56 +01:00
Jan-Christoph Borchardt
ea548cdaaa
fix accessibility of logos
2014-12-18 10:51:41 +01:00
Jan-Christoph Borchardt
0c764bc39f
add label for search field for screen readers
2014-12-17 14:49:13 +01:00
Jan-Christoph Borchardt
4eecb98b38
add empty alt text for user image
2014-12-17 11:52:45 +01:00
Thomas Müller
51a22431ee
load showpassord.js conditionally in the template only if needed
2014-12-16 18:45:37 +01:00
Thomas Müller
3cc33a98a8
use script instead of \OCP\Util methods
2014-12-16 18:45:13 +01:00
Lukas Reschke
be19e78e69
Add requesttoken to base template
...
Potentially fixes https://github.com/owncloud/core/issues/12580
2014-12-05 22:23:55 +01:00
Morris Jobke
48f00df08e
move jstz to bower management
2014-12-01 10:40:31 +01:00
Jan-Christoph Borchardt
45a877c3a7
use proper tabindex order: 1. app menu, 2. search, 3. user menu
2014-11-08 01:47:46 +01:00
Jan-Christoph Borchardt
45c6ec8582
introduce h1, use either ownCloud name or current app name
2014-11-06 13:26:38 +01:00
Jan-Christoph Borchardt
764f51c976
add missing alt attribute to spinner
2014-11-06 12:09:48 +01:00
Lukas Reschke
be5ae6c44f
Support HTML in logo claim
2014-11-03 21:14:27 +01:00
Lukas Reschke
510d0b2cf3
Fix the "addHeader($tag, $attributes, $text)" methods to not ignore the $text parameter
...
Also support closing tags with no text content given
Conflicts:
lib/private/template.php
2014-10-28 11:15:58 +01:00
Vincent Petry
aee1edf6b5
Merge pull request #11708 from owncloud/fix-momentjs
...
Setting moment locale based on user selection
2014-10-27 10:30:47 +01:00
Morris Jobke
a10b25587f
add avatardiv-shown class to bring back mobile style
2014-10-23 23:51:05 +02:00
kondou
729dffed5e
Load avatar in header via PHP
...
* fix #7484
* use UID, css, and div instead of span
2014-10-23 23:17:18 +02:00
Clark Tomlinson
ca5abe5744
Setting moment locale based on user selection
2014-10-23 10:32:47 -04:00
Lukas Reschke
c0ddf06dfe
Merge pull request #11666 from owncloud/setup-hidesqlitemessageforautoconfig
...
Hide SQLite information on setup when autoconfig is used
2014-10-20 19:50:20 +02:00
Vincent Petry
f52ed231b3
Hide SQLite information on setup when autoconfig is used
2014-10-20 16:20:24 +02:00
Lukas Reschke
852c7ef9da
Use l10n on this string as well
2014-10-16 22:04:24 +02:00
Thomas Müller
b091394a90
introduce new app page layout
...
filter installed and not-installed apps properly
kill unneeded file
load category 'Installed' on page load
adding documentation links
new apps mgmt: first style adjustment
apps mgmt: only show license and preview if they exist
adding buttons
new apps mgmt: fix for mobile
use app icon if available
new apps mgmt: position enable/disable toggle to the right
new apps mgmt: proper display of icons or previews
new apps mgmt: fix loading spinner
reenable group selection for apps
new apps mgmt: position enable button normally again
new apps mgmt: clarify wording from 'Installed' to 'Enabled'
reintroduce enable/disable
Move rating image path generation to client-side
Move expression outside of l10n
fix group handling
add buttons for 'More apps' and 'Add your app' again
disable changed date of app for now
adding recommended label
style 'Recommended' app tag
fixing php warning
sort by rating
adding meta-category 'Recommended'
Only show existing documentation links
lacy loading of screenshots
making group based app activation work again
adding support to get the app icon not only by the app name but also simply by the fixed name 'app.svg'
adding app.svg for all core apps
query string '?installed' is not longer needed
update and uninstall is back + error feedback
remove unneeded parameter
fix alignment of 'recommended' label
2014-10-15 15:21:40 +02:00
Jan-Christoph Borchardt
185f442df8
for whitelabeled edition, show branding name (e.g. 'ownCloud') instead of appname in header bar
2014-09-26 15:38:35 +02:00
Lukas Reschke
75e45ac786
Merge pull request #11019 from owncloud/do-not-show-exception-to-enduser
...
Do not show exception to the end-user - use a proper error page instead
2014-09-23 18:36:40 +02:00
Thomas Müller
bb18fe1384
send browsers timezone back tp the server on login
2014-09-22 14:01:45 +02:00
Lukas Reschke
8fc1a9f5a9
Make 404 page easier to understand
...
Fixes https://github.com/owncloud/core/issues/11133
2014-09-17 22:57:32 +02:00
Jan-Christoph Borchardt
d66a8daf7f
replace horizontal rules with whitespace
2014-09-17 13:17:53 +02:00
Lukas Reschke
6d3757f864
Do not show exception to the end-user
...
Log the error instead of potentially leaking sensitive information
2014-09-17 13:17:52 +02:00
Thomas Müller
1978d3d6a2
Merge pull request #11055 from owncloud/replaceprodname
...
replace ownCloud with placeholder
2014-09-16 14:49:50 +02:00
Morris Jobke
06eb3b62c6
Merge pull request #10109 from owncloud/issue_#9793_guestlayout
...
Step one, open guest layout for different styles.
2014-09-15 15:15:41 +02:00
Volkan Gezer
c04346918b
replace ownCloud with placeholder
2014-09-13 01:48:18 +02:00
Thomas Müller
9737ba74ce
Merge pull request #11007 from owncloud/replaces-10850
...
Add X-UA-Compatible to all templates
2014-09-11 12:34:44 +02:00
Lukas Reschke
7d2c521b46
Step one, open guest layout for different styles.
...
Conflicts:
core/templates/layout.guest.php
Step one, open guest layout for different styles.
2014-09-11 11:41:02 +02:00
Lukas Reschke
bce5c2dae9
Add X-UA-Compatible to all templates
...
Replaces https://github.com/owncloud/core/pull/10850
2014-09-11 10:28:52 +02:00
kondou
69f2c0544e
Refresh if maintenance mode is over
...
Using status.php for this.
I modified status.php to also show, whether we're in maintenance.
Checks every 20 seconds if maintenance is over, if yes: reload.
2014-09-09 17:26:11 +02:00
VicDeo
efd485acda
Merge pull request #10858 from owncloud/issue/10847
...
Use correct language package so the subject is correctly translated
2014-09-09 01:11:34 +03:00
Jan-Christoph Borchardt
71e10b66d9
Merge pull request #10944 from owncloud/fix-nojavascript-style
...
fix no-JS message, and add it to log in and shared as well cause they don’t work without JS
2014-09-08 21:58:54 +02:00
Jan-Christoph Borchardt
bd56619e7a
also add no-JavaScript notice to log in and sharing pages because they do not work without JS either
2014-09-08 18:07:20 +02:00
Jan-Christoph Borchardt
3db2b11435
fix styling and wording of no-JavaScript message
2014-09-08 17:55:53 +02:00
Joas Schilling
7a7e102390
Fix broken new lines in plain text mail template
2014-09-04 11:30:54 +02:00
Thomas Müller
954925eaa0
Merge pull request #10667 from pmjdebruijn/itunes-appid
...
defaults: add customizable defaultiTunesAppId
2014-09-03 16:26:20 +02:00
Pascal de Bruijn
73f50287ff
templates: use p() for getiTunesAppId
2014-08-28 10:12:59 +02:00
Pascal de Bruijn
49da0a7943
defaults: add customizable defaultiTunesAppId
2014-08-27 14:07:39 +02:00
Lukas Reschke
d26a9c3c58
Add some security utilities
...
This adds some security utilities to core including:
- A library for basic crypto operations (e.g. to encrypt passwords)
- A better library for cryptographic actions which allows you to specify the charset
- A library for secure string comparisions
Remove .htaccess
Remove .htaccess
Fix typo
Add public API
Use timing constant comparision
Remove CBC constant
Adjust code
Remove confusing $this
2014-08-27 00:18:04 +02:00
Clark Tomlinson
e0a8321b23
Adding type to favicon
2014-08-22 16:26:39 -04:00
Lukas Reschke
97b536e3df
Add a trusted domain wizard
...
Adds a little button to the trusted domain warning, if an admin clicks on the warning he will be redirected to ownCloud and asked whether he want to trust this domain.
By far not the cleanest code, or clean at all, but does the job and I don't see a reason to make a lot of changes for this little improvement.
2014-08-21 22:22:35 +02:00
Volker E.
ec1596054f
Removing `x-webkit-speech` attribute #10561
...
Remove obsolete (from Google Chrome 36 on) attribute due to security vulnerability
2014-08-20 22:59:55 +02:00
Morris Jobke
b6d3a6a054
Add note about the term "Cheers" at end of mail
...
* for translators
* fixes #8689
2014-08-20 15:14:07 +02:00
Vincent Petry
8995e88e6f
Added upgrade notice to avoid timeouts
2014-08-18 15:05:55 +02:00
Lukas Reschke
6fae8ae8a7
Merge pull request #10302 from owncloud/remove-logon-rejected
...
remove confusing 'automatic logon rejected' message, fix #8591
2014-08-09 19:01:38 +02:00
Jan-Christoph Borchardt
c0fa29523c
remove confusing 'automatic logon rejected' message, fix #8591
2014-08-09 01:35:02 +02:00
Thomas Müller
cbe3595f64
using flush() here is pointless as we render the layout into a memory buffer and actually transmit the data later
2014-08-08 15:44:11 +02:00
Morris Jobke
6cf6c21740
fix syntax
2014-07-17 09:51:44 +02:00
Sander
eb5458b837
Changed to 1 line
2014-07-08 14:13:02 +02:00
Sander
c3beef30f3
Added suggestions from @jancborchardt in #9517
2014-07-08 14:03:10 +02:00
Sander
4ca74a5157
Update layout.user.php
2014-07-08 13:24:19 +02:00
Sander
ec6779ced4
Add webapp support
2014-07-08 13:14:54 +02:00
Jan-Christoph Borchardt
83aca24b88
show loading feedback also when clicking 'Apps' entry in app list
2014-07-04 12:32:37 +02:00
Victor Dubiniuk
23ed038a27
Basics
2014-06-13 15:34:51 +02:00
Joas Schilling
6c0e27ac99
Fix missing caret in header menu for IE8
2014-06-12 11:01:35 +02:00
Volkan Gezer
713a1c683b
wrap App text with t() to let it use locales
2014-06-06 18:31:04 +02:00
Jan-Christoph Borchardt
f1ce58de3e
rearrange CSS, remove duplicate code
2014-06-04 15:46:36 +02:00
Jan-Christoph Borchardt
d831afc792
move 'add apps' entry into normal navigation instead of a new line
2014-06-04 15:27:46 +02:00
Jan-Christoph Borchardt
26bf64631d
better loading feedback for app start, move from JS to CSS
2014-06-04 15:07:15 +02:00
Jan-Christoph Borchardt
96cfe97dae
show 'Apps' as fallback label for app switcher if no app title is present (for example in Settings)
2014-06-04 14:38:25 +02:00
Jan-Christoph Borchardt
7cdd4fee9a
separate home icon and menu toggle
2014-06-04 14:38:25 +02:00
Jan-Christoph Borchardt
cfffd1a890
cut ownCloud text from logo when logged in, place appname there
2014-06-04 14:38:25 +02:00
Morris Jobke
190fc8adf5
drop "push" element - no sticky footer needed anymore
2014-06-04 14:38:25 +02:00
Jan-Christoph Borchardt
e27a409287
show appname next to logo for better hint at navigation
2014-06-04 14:29:46 +02:00
Morris Jobke
cea7d4961e
move to updated version of placeholder
2014-06-03 16:18:06 +02:00
Jan-Christoph Borchardt
04aa085292
infield label removal: fix installation screen
2014-06-03 15:30:07 +02:00
Jan-Christoph Borchardt
7177d3a496
first step of infield label removal, fix login screen
2014-06-03 15:28:59 +02:00
Morris Jobke
a4dd4cbb8f
add info about sqlite on setup apge
2014-06-02 22:56:50 +02:00
Vincent Petry
4e957c7b18
Merge pull request #8443 from owncloud/csrf-on-login-and-logout
...
Add CSRF check on login and logout
2014-06-02 11:27:20 +02:00
Vincent Petry
7e055a9404
Fixed DOM elements, styling and code style issues
...
- Reduced number of DOM elements
- Also added mention of "config" backup.
2014-05-28 11:29:22 +02:00
Vincent Petry
ca45937d84
Fixed styles in update overview page
2014-05-27 16:36:21 +02:00
Vincent Petry
02f682b156
Now showing disabled apps as upgrade status line
...
- Added app id in update overview.
- Added status message for disabled app for CLI upgrade and web upgrade
2014-05-27 15:20:33 +02:00
Vincent Petry
146583a98d
Added update overview page
2014-05-27 14:53:08 +02:00
Thomas Müller
f8cb8f4803
Merge branch 'master' into csrf-on-login-and-logout
...
Conflicts:
core/templates/login.php
2014-05-19 20:40:55 +02:00
Morris Jobke
db9cfaa56d
Merge pull request #8592 from owncloud/login-timezone
...
Disable login button until the timezone is set
2014-05-19 01:14:03 +02:00
Vincent Petry
04f73275ba
Now settings CSS class with appid in content DIV
2014-05-15 17:51:04 +02:00
Jan-Christoph Borchardt
60efa0f1c8
Merge pull request #8140 from owncloud/login-valign
...
Vertically align public layout to better fit small mobile screens
2014-05-15 15:06:52 +02:00
Vincent Petry
1de068b5cb
Disable login button until the timezone is set
...
On slow computers it might happen that the user manages to login before
the timezone code has a chance to run, which then causes dates to appear
wrong in the UI.
This fix makes sure the login cannot happen until the timezone field is
set.
Note that it's not possible to run the timezone code outside of
document.ready() because at that time the DOM element doesn't exist yet.
2014-05-14 17:00:15 +02:00
Lukas Reschke
73b914ddbc
Add CSRF check on login and logout
...
This is a minor issue and not worth a backport in my opinion as it could break more things than it's worth having it.
2014-05-04 13:56:21 +02:00
Jan-Christoph Borchardt
158b870589
Merge pull request #6870 from owncloud/uncheck-remember-checkbox
...
do not check 'remember' log in by default
2014-04-29 10:22:02 +02:00
Thomas Müller
30168169b9
Flush the Buffer Early - right after head
2014-04-15 16:56:45 +02:00