opencloud

mirror of https://github.com/opencloud-eu/opencloud.git synced 2026-01-05 11:51:16 -06:00

Author	SHA1	Message	Date
jkoberg	30a0f8a71b	fix(ocis): get rid of go-chi/cors lib Signed-off-by: jkoberg <jkoberg@owncloud.com>	2024-07-18 11:34:49 +02:00
Thomas Müller	e79d63208e	feat: limit concurrent processing of thumbnail requests	2024-05-21 14:12:50 +02:00
Thomas Müller	bdbba929d0	feat: add CSP and other security related headers in the oCIS proxy service (#8777 ) * feat: add CSP and other security related headers in the oCIS proxy service * fix: consolidate security related headers - drop middleware.Secure * fix: use github.com/DeepDiver1975/secure * fix: acceptance tests * feat: support env var replacements in csp.yaml	2024-04-26 09:10:35 +02:00
Jörn Friedrich Dreyer	e8da108edc	use mutex when lazy initializing the OIDC provider Signed-off-by: Jörn Friedrich Dreyer <jfd@butonic.de>	2024-03-18 11:29:33 +01:00
Christian Richter	4a347e8c13	Fix nil pointer exception in webfinger Co-authoredjby: Jörn Dreyer <jdreyer@owncloud.com> Signed-off-by: Christian Richter <crichter@owncloud.com>	2023-04-21 16:16:26 +02:00
Christian Richter	30bcf32062	incorporate requested changes Signed-off-by: Christian Richter <crichter@owncloud.com>	2023-04-20 09:00:58 +02:00
Daniel Swärd	c17add76c4	graph: Move token middleware and return proper JSON response on error. Fixes #5661	2023-03-06 10:24:44 +01:00
Jörn Friedrich Dreyer	2c98d3246c	minimal webfinger (#5373 ) * initial webfinger stub Signed-off-by: Jörn Friedrich Dreyer <jfd@butonic.de> * add webfinger to proxy, return current host Signed-off-by: Jörn Friedrich Dreyer <jfd@butonic.de> * some cleanup Signed-off-by: Jörn Friedrich Dreyer <jfd@butonic.de> * allow passing multiple rel params Signed-off-by: Jörn Friedrich Dreyer <jfd@butonic.de> * introduce interfaces Signed-off-by: Jörn Friedrich Dreyer <jfd@butonic.de> * parse oidc auth token Signed-off-by: Jörn Friedrich Dreyer <jfd@butonic.de> * add templating, drop chain, use map of relation providers Signed-off-by: Jörn Friedrich Dreyer <jfd@butonic.de> * fix ocis url yaml Signed-off-by: Jörn Friedrich Dreyer <jfd@butonic.de> * fix typos Co-authored-by: Dominik Schmidt <dschmidt@owncloud.com> * switch to userinfo claims Signed-off-by: Jörn Friedrich Dreyer <jfd@butonic.de> * readme cleanup Signed-off-by: Jörn Friedrich Dreyer <jfd@butonic.de> * add TODO.md with ideas Signed-off-by: Jörn Friedrich Dreyer <jfd@butonic.de> * replace subject on authenticated request responses Signed-off-by: Jörn Friedrich Dreyer <jfd@butonic.de> * Apply suggestions from code review Co-authored-by: Martin <github@diemattels.at> * markdown lint Signed-off-by: Jörn Friedrich Dreyer <jfd@butonic.de> * return a 401 when bearer token expired, some more docs Signed-off-by: Jörn Friedrich Dreyer <jfd@butonic.de> * Apply suggestions from code review Co-authored-by: Martin <github@diemattels.at> * fix docs Signed-off-by: Jörn Friedrich Dreyer <jfd@butonic.de> * clarify env var Signed-off-by: Jörn Friedrich Dreyer <jfd@butonic.de> * extract handler func Signed-off-by: Jörn Friedrich Dreyer <jfd@butonic.de> * use correct service in reflex.conf Signed-off-by: Jörn Friedrich Dreyer <jfd@butonic.de> * test relations Signed-off-by: Jörn Friedrich Dreyer <jfd@butonic.de> * Update services/webfinger/pkg/config/config.go --------- Signed-off-by: Jörn Friedrich Dreyer <jfd@butonic.de> Co-authored-by: Dominik Schmidt <dschmidt@owncloud.com> Co-authored-by: Martin <github@diemattels.at>	2023-02-13 11:05:20 +01:00
Jörn Friedrich Dreyer	70a6323c42	token middleware: use constant time comparison (#5225 ) Signed-off-by: Jörn Friedrich Dreyer <jfd@butonic.de> Signed-off-by: Jörn Friedrich Dreyer <jfd@butonic.de>	2022-12-14 14:04:02 +01:00
Michael Barz	f84fbdd6ff	corrections from code review	2022-10-17 17:22:33 +02:00
Ralf Haferkamp	8d11ba02d3	Remove unused OpenID connect middleware The proxy comes with it's own middleware. This implementation was used by the graph service at some point but that went away with commit `5070941dc4`.	2022-06-30 16:04:34 +02:00
Michael Barz	189987bcbd	Bump major version to v2	2022-05-04 14:49:59 +02:00
Michael Barz	b15db1794a	update reva to version 2.0.0 (#3258 )	2022-03-03 19:56:04 +01:00
David Christofas	9ecc065879	update CORS middleware and make it configurable	2021-10-22 13:27:31 +02:00
David Christofas	c370276198	add some information about the security headers	2021-10-22 12:01:00 +02:00
David Christofas	4a30624fe8	remove deprecated X-XSS-Protection header Only legacy browsers are still supporting this header. See https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-XSS-Protection#browser_compatibility.	2021-10-22 12:00:56 +02:00
David Christofas	45fe331ad7	remove deprecated context key	2021-10-21 10:16:58 +02:00
Willy Kloucek	8fdf8e340b	Merge pull request #2536 from owncloud/public-share-auth-middleware add public share auth middleware	2021-10-18 07:54:11 +02:00
David Christofas	f5aabe1a87	update reva to latest master	2021-10-15 17:45:16 +02:00
David Christofas	600c7ca351	use updated VerifyScope	2021-10-15 17:45:11 +02:00
David Christofas	fb0380820c	enable archiver for public shares	2021-10-15 17:45:06 +02:00
Willy Kloucek	6d5a3733ff	upgrade to go micro v4.1.0	2021-10-14 15:56:19 +02:00
Ishank Arora	3e98b8df72	Set reva JWT token expiration time to 24 hours by default	2021-09-23 09:10:40 +02:00
Ralf Haferkamp	3a42fdc578	Move to go-chi/chi v5	2021-08-24 17:48:37 +02:00
A.Unger	aac45a46f4	Merge branch 'master' into remake-traces	2021-08-17 13:29:05 +02:00
David Christofas	ed85fedf1a	update github.com/coreos/go-oidc to version 3.0.0	2021-08-13 09:55:17 +02:00
A.Unger	e62a9b6a36	Merge branch 'master' into remake-traces	2021-08-13 09:43:31 +02:00
David Christofas	3bc60510ce	use go-chi middlewares go-chi already delivers the middlewares we need so we don't need to import other libraries for that.	2021-08-12 17:14:41 +02:00
Jörn Friedrich Dreyer	55aacdea13	update reva to ec4099da Signed-off-by: Jörn Friedrich Dreyer <jfd@butonic.de>	2021-08-12 11:08:10 +00:00
A.Unger	2bdd07e41b	add test spans	2021-08-06 15:47:46 +02:00
A.Unger	9f50776b17	enable traces in proxy	2021-08-06 13:29:40 +02:00
Jörn Friedrich Dreyer	1f3e963c29	use claims map instead of struct Signed-off-by: Jörn Friedrich Dreyer <jfd@butonic.de>	2021-07-22 09:20:36 +00:00
Jörn Friedrich Dreyer	1dc7aac6fd	proxy access log Signed-off-by: Jörn Friedrich Dreyer <jfd@butonic.de>	2021-07-14 13:14:27 +00:00
David Christofas	f6ac50244b	update invocations of MintToken and DismantleToken	2021-05-11 14:18:43 +02:00
David Christofas	c532073dd1	remove JWT from logs secrets should not be exposed in the logs	2021-03-03 15:30:11 +01:00
David Christofas	a22b7d6844	resolve linter issues	2021-02-24 16:24:36 +01:00
A.Unger	7e505fbd9f	remove any micro v2 occurences from the project	2021-02-18 08:01:53 +00:00
Ishank Arora	30c80b0923	Check if roles are present in user object before looking those up	2021-01-28 17:25:59 +01:00
Benedikt Kulmann	633391e30d	Set empty role ids array	2020-12-15 00:25:01 +01:00
Benedikt Kulmann	7db02045b4	Introduce permission checks for WRITE access via http	2020-12-15 00:24:57 +01:00
Benedikt Kulmann	b3871d8e0b	Disable static assets caching	2020-12-14 22:57:53 +01:00
Benedikt Kulmann	5de15f4d12	Force web asset re-validation (on last modification date)	2020-11-23 13:16:49 +01:00
Benedikt Kulmann	005825bbc9	Set proper expires header	2020-11-23 13:06:05 +01:00
Benedikt Kulmann	d91008c3c2	Serve index.html in static middleware	2020-11-20 10:47:17 +01:00
Benedikt Kulmann	9c6dac8328	Add caching for static web assets	2020-11-16 23:22:56 +01:00
Benedikt Kulmann	aaf9029a3e	Rename "Cache" middleware to "NoCache"	2020-11-16 22:13:26 +01:00
Jörn Friedrich Dreyer	8e39d8b873	actually check permissions to fix tests Signed-off-by: Jörn Friedrich Dreyer <jfd@butonic.de>	2020-11-05 13:06:05 +01:00
A.Unger	815d07f71c	fix linter	2020-10-14 18:03:52 +02:00
A.Unger	fcca9faa81	accounts running	2020-09-18 14:51:07 +02:00
A.Unger	c284b4d07b	Add 'ocis-pkg/' from commit '72d605ba3857d0b972ddd72e226d8a5360fb480d' git-subtree-dir: ocis-pkg git-subtree-mainline: `4c12bed11b` git-subtree-split: `72d605ba38`	2020-09-18 12:34:50 +02:00

50 Commits