mirror/opencloud
1
0
Fork 0
mirror of https://github.com/opencloud-eu/opencloud.git synced 2026-01-03 02:39:52 -06:00
Code Issues Packages Projects Releases Wiki Activity
22,249 Commits 52 Branches 39 Tags
triggerCi
Commit Graph

33 Commits

Author SHA1 Message Date
André Duffeck
e8d35e1280 Use the opencloud reva from now on 2025-01-21 11:16:38 +01:00
Jörn Friedrich Dreyer
7284acdfeb local occurences 
Signed-off-by: Jörn Friedrich Dreyer <jfd@butonic.de>
 2025-01-15 11:19:04 +01:00
Jörn Friedrich Dreyer
b07b5a1149 use plain pkg module 
Signed-off-by: Jörn Friedrich Dreyer <jfd@butonic.de>
 2025-01-13 16:42:19 +01:00
Jörn Friedrich Dreyer
8e028f17e9 change module name 
Signed-off-by: Jörn Friedrich Dreyer <jfd@butonic.de>
 2025-01-13 09:58:18 +01:00
Roman Perekhod
1d08e9f5ea use the context as a scopes carrier 2024-12-09 14:45:40 +01:00
Roman Perekhod
ebfcf5a164 use generic wopiContext.scope decoder 2024-12-09 14:45:39 +01:00
Roman Perekhod
8d83ac4459 fixed the FileInfo.BreadcrumbFolderURL in a collaboration api 2024-12-09 14:45:39 +01:00
Michael Barz
f9510e028e fix: proofkeys validation with proxy 2024-11-04 21:00:24 +01:00
Juan Pablo Villafáñez
b3f72d7a4d chore: typos and minor consistency changes for sonarcloud 2024-10-24 09:56:54 +02:00
Juan Pablo Villafáñez
924f77f044 fix: adjust unit tests 2024-10-24 08:46:54 +02:00
Juan Pablo Villafáñez
6782b243ae feat: switch to md5 + timestamp 
MD5 will make the token shorter. The timestamp will help to prevent
collisions since the tokens must be generated at the same nanosecond
(assuming the md5 sum generates the same hash, which is unlikely).

Using MD5 shouldn't be a security issue. The "real" access token is
already encrypted, and it's visible and accessible if short tokens
aren't used.
 2024-10-24 08:46:54 +02:00
Juan Pablo Villafáñez
b8f8ca813e feat: use short tokens as access tokens 
The "real" access token will be stored using the short token as key.
This short token will be sent to the clients to be used as access token
for the WOPI server.

This is configurable, and requires a store in order to keep the tokens.
 2024-10-24 08:46:54 +02:00
Michael Barz
e40b7240bf feat: template feature 
Signed-off-by: Michael Barz <mbarz@owncloud.com>
 2024-10-17 08:47:02 +02:00
Juan Pablo Villafáñez
4fcf6c1863 fix: include additional logging in the wopicontext middleware 2024-09-18 13:19:16 +02:00
Juan Pablo Villafáñez
8a02b926a5 fix: missing return in the tracing middleware if we want to skip it 2024-09-17 17:57:44 +02:00
Michael Barz
903b513d9c fix: implement review 2024-08-30 16:27:36 +02:00
Michael Barz
bfa3dd07bc feat: office 365 proxy support 2024-08-30 16:20:04 +02:00
Ralf Haferkamp
109b23966c bump some jwt related go modules to current version 
go-jwt/jwt to v5.2.1
MicahParks/keyfunc to v2.1.0
 2024-08-26 15:35:15 +02:00
Juan Pablo Villafáñez
5ddd51ea84 refactor: simplify openInApp code and remove hostViewUrl (and edit) 2024-08-21 13:43:04 +02:00
Juan Pablo Villafáñez
9e7d570c79 fix: verify file id in URL matches the one inside the access token 
We're using the file id from the access token, so changing the file id
in the URL shouldn't matter. However, the file id must represent a
single file.
It will also help to detect unwanted changes in the URL.
 2024-08-13 15:04:19 +02:00
Juan Pablo Villafáñez
29700046d7 docs: add missing code comments in the middlewares 2024-08-12 12:00:42 +02:00
Juan Pablo Villafáñez
eb40aa0460 feat: include X-WOPI-SessionId header in the logs and tracing 2024-08-06 13:36:25 +02:00
Juan Pablo Villafáñez
a5d27b2f98 feat: include additional metadata for tracing the collaboration service 2024-08-05 13:15:12 +02:00
Juan Pablo Villafáñez
b5b9f8d189 feat: implement putRelativeFile and deleteFile endpoints 2024-07-31 12:50:41 +02:00
Juan Pablo Villafáñez
7134374a2e fix: use int64 instead of bigInt 2024-07-25 13:16:07 +02:00
Juan Pablo Villafáñez
36d9a8c425 feat: proof keys verification for the collaboration service 2024-07-25 13:16:07 +02:00
Michael Barz
006c67a5db feat: add more logging to the collaboration service 2024-07-19 11:03:28 +02:00
Juan Pablo Villafáñez
0a33b934c1 feat: use info level for access log to the collaboration service 2024-07-18 10:48:08 +02:00
Christian Richter
c99550984e change providerv1beta1.Reference to pointer 
Signed-off-by: Christian Richter <crichter@owncloud.com>
 2024-07-12 12:00:18 +02:00
Jörn Friedrich Dreyer
1ed03c12f2 try using viewOnlyToken to download file if available 
Signed-off-by: Jörn Friedrich Dreyer <jfd@butonic.de>
 2024-05-17 13:58:29 +02:00
Juan Pablo Villafáñez
57b50c8587 docs: add missing documentation to functions 2024-04-17 15:54:51 +02:00
Juan Pablo Villafáñez
710a0b4561 test: add unit tests, adjust fileinfo 2024-04-17 15:54:51 +02:00
Juan Pablo Villafáñez
0a413223b9 refactor: move wopi context and related to middleware package 2024-04-17 15:54:51 +02:00