Commit Graph

49641 Commits

Author SHA1 Message Date
Arthur Schiwon 29b04742db do not send null value when string is expected
Signed-off-by: Arthur Schiwon <blizzz@arthur-schiwon.de>
2019-08-02 12:08:22 +00:00
Arthur Schiwon 9e5994a210 adjusts LDAP's home handler to use the correct user object
Signed-off-by: Arthur Schiwon <blizzz@arthur-schiwon.de>
2019-08-02 12:08:21 +00:00
Arthur Schiwon bb9f14115c fixes terminology and allows to request an IUser instance
Signed-off-by: Arthur Schiwon <blizzz@arthur-schiwon.de>
2019-08-02 12:08:21 +00:00
Julius Härtl f852c82bf9 Provide proper user context from initMountPoints
Signed-off-by: Julius Härtl <jus@bitgrid.net>
2019-08-02 12:08:21 +00:00
Julius Härtl 40cf574df9 files_external: Make sure the correct user context is used in substitution of variables
Signed-off-by: Julius Härtl <jus@bitgrid.net>
2019-08-02 12:08:21 +00:00
Nextcloud bot ad3efd6efb
[tx-robot] updated from transifex 2019-08-02 02:14:38 +00:00
Arthur Schiwon bf10181e49
remove unncessary code block in share recommendations
Signed-off-by: Arthur Schiwon <blizzz@arthur-schiwon.de>
2019-08-02 01:05:15 +02:00
blizzz 291f85f0b8
Merge pull request #16630 from nextcloud/backport/16624/stable16
[stable16] Make sure we only fetch the file by id for the actual owner
2019-08-01 22:47:29 +02:00
Julius Härtl 53bb2862f0 Make sure we only fetch the file by id for the actual owner
Otherwise this will fetch all mounts for the file id which is quite
expensive and causes long saving times in big sharing structures

Signed-off-by: Julius Härtl <jus@bitgrid.net>
2019-08-01 13:01:26 +00:00
Sascha Wiswedel c730e2269c log circles and remote shares in admin_audit
Signed-off-by: Sascha Wiswedel <sascha.wiswedel@nextcloud.com>
2019-08-01 10:36:10 +00:00
Nextcloud bot 11109c6dfa
[tx-robot] updated from transifex 2019-08-01 02:15:36 +00:00
Roeland Jago Douma 51fd053d6c
Merge pull request #16607 from nextcloud/backport/16596
[stable16] Set proper defaults for v-tooltip usages
2019-07-31 08:33:38 +02:00
Nextcloud bot ee6f4febbd
[tx-robot] updated from transifex 2019-07-31 02:16:13 +00:00
Roeland Jago Douma 07d32779db
Merge pull request #16610 from nextcloud/backport/16599/stable16
[stable16] Fix/xss/on favorite file
2019-07-30 16:30:19 +02:00
Roeland Jago Douma 516588ff91
Merge pull request #16598 from nextcloud/backport/16502/stable16
[stable16] Check the if we can actually access the storage cache for recent files
2019-07-30 11:44:01 +02:00
Max Fichtelmann 951147c6e9 prevent potential XSS via unchecked use innerHTML
Signed-off-by: Max Fichtelmann <max.fichtelmann@procilon.de>
2019-07-30 07:52:40 +00:00
Max Fichtelmann af87bd2f60 fix XSS when adding a file with a malicious name to favorites
Signed-off-by: Max Fichtelmann <max.fichtelmann@procilon.de>
2019-07-30 07:52:40 +00:00
Julius Härtl a557d34481
Bump bundles
Signed-off-by: Julius Härtl <jus@bitgrid.net>
2019-07-30 08:54:01 +02:00
Julius Härtl 10ce9c6878
Force defaultHtml setting of v-tooltip to be disabled
Signed-off-by: Julius Härtl <jus@bitgrid.net>
2019-07-30 08:50:08 +02:00
Nextcloud bot 48b271a216
[tx-robot] updated from transifex 2019-07-30 02:14:53 +00:00
Julius Härtl e7920203ba Add additional check for read permissions
Signed-off-by: Julius Härtl <jus@bitgrid.net>
2019-07-29 15:00:12 +00:00
Julius Härtl f1f755740d Check the if we can actually access the storage cache for recent files
Signed-off-by: Julius Härtl <jus@bitgrid.net>
2019-07-29 15:00:11 +00:00
Roeland Jago Douma 5ac52d2e09
Merge pull request #16578 from nextcloud/backport/16558/stable16
[stable16] Do not log all locked exceptions
2019-07-29 10:40:23 +02:00
Nextcloud bot 6b814e5002
[tx-robot] updated from transifex 2019-07-29 02:15:08 +00:00
Nextcloud bot ff3e510b76
[tx-robot] updated from transifex 2019-07-28 02:15:33 +00:00
Roeland Jago Douma 45815e5c09
Merge pull request #16561 from nextcloud/backport/16551/stable16
[stable16] supresses disclosing the userid for LDAP users in the welcome mail
2019-07-27 12:22:02 +02:00
Roeland Jago Douma 5959245417 Do not log all locked exceptions
This can happen for valid reasons (multiple users writing at the same
time) with for example the text app. Apps should properly handle it. No
reason to log it by default.

Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
2019-07-27 08:40:00 +00:00
Roeland Jago Douma 64fb4c7736
Merge pull request #16562 from nextcloud/backport/16555/stable16
[stable16] use a pattern to identify sensitive config keys
2019-07-27 10:38:41 +02:00
Roeland Jago Douma d092802a2d
Merge pull request #16564 from nextcloud/backport/16557/stable16
[stable16] Do not log locked files
2019-07-27 10:38:25 +02:00
Roeland Jago Douma 5786c6c058
Merge pull request #16566 from nextcloud/backport/16556/stable16
[stable16] log email shares in admin_audit log
2019-07-27 10:37:53 +02:00
Roeland Jago Douma 05788a814e
Merge pull request #16567 from nextcloud/backport/16163/stable16
[stable16] Change send to sent
2019-07-27 10:37:20 +02:00
Nextcloud bot d638060520
[tx-robot] updated from transifex 2019-07-27 02:14:46 +00:00
Frederic Werner 7c225bd706
Change send to sent
Signed-off-by: Frederic Werner <frederic-github@werner-net.work>
2019-07-26 16:21:37 +02:00
Sascha Wiswedel 94db7053d2 log email shares in admin_audit log
Signed-off-by: Sascha Wiswedel <sascha.wiswedel@nextcloud.com>
2019-07-26 14:15:45 +00:00
Roeland Jago Douma 167a8d72cf Do not log locked files
This is the code doing its job. There is no need to spam the log file
with this.

Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
2019-07-26 13:46:02 +00:00
Arthur Schiwon a9ccac2f20 treat sensitive config keys by pattern
Signed-off-by: Arthur Schiwon <blizzz@arthur-schiwon.de>
2019-07-26 13:21:22 +00:00
Arthur Schiwon 84a849ec8a supresses disclosing the userid for LDAP users in the welcome mail
The userid is not relevant here, and by default cannot be used to login
with. Typically, there is a common type of login names in organizations
(LDAP username or email most often) that does not need to be disclosed.

Signed-off-by: Arthur Schiwon <blizzz@arthur-schiwon.de>
2019-07-26 13:16:33 +00:00
Roeland Jago Douma 159ff6dd97
Merge pull request #16543 from nextcloud/backport/16532/stable16
[stable16] Fix max contrast retrieval to limit minimum color for relative time
2019-07-26 08:08:00 +02:00
Nextcloud bot 00379ebffa
[tx-robot] updated from transifex 2019-07-26 02:14:49 +00:00
Roeland Jago Douma 540168fc43
Merge pull request #16541 from nextcloud/backport/15794/stable16
[stable16] Lock SCSS so we only run 1 job at a time
2019-07-25 19:40:41 +02:00
Morris Jobke 6ee98f3567 Trigger fallback code to get max contrast value and use integer there
Signed-off-by: Morris Jobke <hey@morrisjobke.de>
2019-07-25 15:08:05 +00:00
Morris Jobke 861daee4d8 Fix max contrast retrieval to limit minimum color for relative time
Signed-off-by: Morris Jobke <hey@morrisjobke.de>
2019-07-25 15:08:05 +00:00
Roeland Jago Douma 3f5ce65879 Lock SCSS so we only run 1 job at a time
This is bit hacky but a start to lock the SCSS compiler properly
Retry during 10s then give up
Properly get error message
Do not clear locks and properly debug scss caching

Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
2019-07-25 13:44:06 +00:00
Roeland Jago Douma c08d2cbda7
Merge pull request #16536 from nextcloud/backport/16503/stable16
[stable16] allow to provide supported calendar component set internally as a string
2019-07-25 15:44:01 +02:00
Georg Ehrke 19e5cb37a6 allow to provide supported calendar component set internally as a string
Signed-off-by: Georg Ehrke <developer@georgehrke.com>
2019-07-25 11:36:46 +00:00
Nextcloud bot eeefef4843
[tx-robot] updated from transifex 2019-07-25 02:14:48 +00:00
Morris Jobke 67c8dc001d
Merge pull request #16527 from nextcloud/backport/15637/stable16
[stable16] Allow hidden smb shares
2019-07-24 15:14:57 +02:00
Morris Jobke c9bf543cd4
Merge pull request #16524 from nextcloud/backport/16523/stable16
[stable16] Nested recursion breaking max nested level for parent comment calculation
2019-07-24 15:14:29 +02:00
Daniel Kesselberg f1031e1e24 Fix wrong indentation
Signed-off-by: Daniel Kesselberg <mail@danielkesselberg.de>
2019-07-24 10:44:20 +00:00
Daniel Kesselberg 62826ae018 Fix invalid recursion
Signed-off-by: Daniel Kesselberg <mail@danielkesselberg.de>
2019-07-24 10:44:20 +00:00