mbk-lab
/
nextcloud
2
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
6,536 Commits 349 Branches 696 Tags 1.6 GiB
Commit Graph

6536 Commits

Author SHA1 Message Date
Lukas Reschke 63d6884e23 Sanitizing the user input to prevent a reflected XSS. Thanks to Nico Golde (ngolde.de) 2012-08-24 15:00:53 +02:00
Arthur Schiwon eadb894eff Fix deletion for browser that do not support onBeforeUnload, fixes oc-1534 2012-08-24 15:00:53 +02:00
Lukas Reschke 9188d2a844 Add a missing exit(); 2012-08-24 15:00:53 +02:00
Lukas Reschke 4e5291c77a Use SCRIPT_NAME instead of PHP_SELF which won't send the PATH_INFO, this prevents XSS in old browsers. Thanks to Nico Golde. 2012-08-24 15:00:53 +02:00
Georg Ehrke 4d3c45a826 backport 1bccc80996 2012-08-24 15:00:53 +02:00
Frank Karlitschek f86f4c8bfd 4.0.7 
and remove some ^M while at it
 2012-08-24 15:00:53 +02:00
Lukas Reschke 1d530192b9 Disable user enumeration 2012-08-24 15:00:53 +02:00
Michael Gapczynski 12df81fe0b Check blacklist when renaming files 2012-08-24 15:00:52 +02:00
Lukas Reschke 5cb2d58c9f Also check some other files 2012-08-24 15:00:52 +02:00
Lukas Reschke 9917c611d3 Disable listing of all users 2012-08-24 15:00:52 +02:00
Jakob Sack 1dfa6f3d8f Fix OC_Connector_Sabre_Locks for SQLite 2012-08-24 15:00:52 +02:00
Lukas Reschke 78e8cbd52c Check if webfinger is enabled 2012-08-24 14:58:48 +02:00
Michael Gapczynski ffb55d5a17 Don't return file handle if the mode supports writing and the file is not writable 
Conflicts:
	apps/files_sharing/sharedstorage.php
 2012-08-24 14:58:48 +02:00
Lukas Reschke 360c22fd28 Validate cookie to prevent auth bypasses. 2012-08-24 14:58:48 +02:00
Lukas Reschke 76e0ca785b Added XSRF check 2012-08-24 14:58:48 +02:00
Lukas Reschke 3644517b01 Missed an "echo" 2012-08-24 14:58:47 +02:00
Lukas Reschke 4f7e4c20d2 Sanitize user input 2012-08-24 14:58:47 +02:00
Thomas Tanghus cb736b42e3 Fix for broken Mail App in OSX Mountain Lion. https://mail.kde.org/pipermail/owncloud/2012-August/004649.html 2012-08-24 14:58:47 +02:00
Bjoern Schiessle 0ac8434670 fix for bug 879 - add parent directory to file cache if it does not exist yet. 
For example this can happen if the sync client is used before the user created the root directory (e.g. through web login).
 2012-08-24 14:58:47 +02:00
Georg Ehrke 2832311640 fix label for versioning in admin settings 2012-08-24 14:54:17 +02:00
Bart Visscher 5e9f92e5dd Calendar: remove double html encoding 2012-08-24 14:54:17 +02:00
Bart Visscher 646bc1fc24 Contacts: Fix no active Addressbooks 2012-08-24 14:54:16 +02:00
Arthur Schiwon 2af7473651 LDAP: sanitize base, user and group trees. fixes oc-1302 2012-08-24 14:54:16 +02:00
Arthur Schiwon a3b4cb205c Show Login-Button when user+pw are autocompleted, fixes oc-1068 2012-08-24 14:54:16 +02:00
Thomas Tanghus 46d6fd15e4 Implemented sharing api for CalDAV. 2012-08-24 14:26:06 +02:00
Thomas Tanghus d1421ca5ab White-space. 2012-08-24 13:49:56 +02:00
Thomas Tanghus b716296203 Forgot to reenable the export plugin. 2012-08-24 05:04:45 +02:00
Thomas Tanghus 953f9d95f8 Implemented sharing api for CardDAV. Next step CalDAV. 2012-08-24 04:56:21 +02:00
Jenkins for ownCloud 07a889631e [tx-robot] updated from transifex 2012-08-24 02:07:18 +02:00
Thomas Tanghus 2cffcfbc03 Permission checking for shared addressbooks/contacts. 2012-08-23 22:03:36 +02:00
Thomas Tanghus f568ba9c8c Removed redundant __CLASS__ in logging. 2012-08-23 22:03:36 +02:00
Thomas Tanghus fdb4c820d3 Fix for deleting queued contacts. 2012-08-23 22:03:35 +02:00
Thomas Tanghus 394617e0b6 Missing IM variable assignments. 2012-08-23 22:03:35 +02:00
Thomas Tanghus 069d16fdd4 Use correct js class in first-run template. 2012-08-23 22:03:35 +02:00
Thomas Tanghus a3af9f4773 Used non-existing variable. 2012-08-23 22:03:35 +02:00
Thomas Tanghus d5127b14be Return newly created addressbook. 2012-08-23 22:03:35 +02:00
Arthur Schiwon d5c111a984 LDAP: identify (map) users with their directory UUID. Fixes the issue, that usernames for owncloud will change, when the DN changes (which happens rarely, but it happens). 2012-08-23 18:29:43 +02:00
Thomas Tanghus c90c358f0d Only load js and css once. 2012-08-23 05:02:30 +02:00
Thomas Tanghus 2d97164f80 Limit styles so they don't interfere with sharing dropdown. 2012-08-23 05:02:30 +02:00
Thomas Tanghus aefa52018d Use right variable name. 2012-08-23 05:02:30 +02:00
Thomas Tanghus 6941266e7b Remove obsolete closure. 2012-08-23 05:02:30 +02:00
Jenkins for ownCloud 082ed4ab71 [tx-robot] updated from transifex 2012-08-23 02:07:35 +02:00
Thomas Tanghus 99d17c5190 Don't add empty property parameters. 2012-08-23 01:18:59 +02:00
Thomas Tanghus 1df596e758 CSS fix for Windows. 2012-08-23 00:40:10 +02:00
Juan Carlos Cornejo 0944b4455b Moves the lastAction=null outside the if so it can include the undo requests from replace 2012-08-22 17:08:10 -04:00
Juan Carlos Cornejo 24a207a8fa Fixes a bug where if one tries to delete a file, then clicks undo, and then tries to delete the file again, no questions or undo options were presented. 
Essentially, just set FileLists.lastAction = null when one clicks undo.
 2012-08-22 16:56:00 -04:00
Thomas Tanghus 61c7700ce6 Add support for IMPP properties. 2012-08-22 18:51:17 +02:00
Michael Gapczynski 885b8c481b Check if files_sharing app is enabled, move file specific javascript to files_sharing app 2012-08-22 12:32:07 -04:00
Michael Gapczynski 3debb67458 Move share CSS to core, add script and style from inside Share API 2012-08-22 11:57:58 -04:00
Michael Gapczynski 25d474579a Removing most of files_sharing, the Share API implemented the majority of it 2012-08-22 11:57:58 -04:00