mirror/opencloud
1
0
Fork 0
mirror of https://github.com/opencloud-eu/opencloud.git synced 2026-05-03 09:20:50 -05:00
Code Issues Packages Projects Releases Wiki Activity
22,249 Commits 57 Branches 55 Tags
2b4a88feb99e53d03e1f0e3876ea202ca4510e1f
Commit Graph

18 Commits

Author SHA1 Message Date
Ralf Haferkamp 4bdb3bf70f proxy(sign_url_auth): Allow to verify server signed URLs 
With the ocdav service being able to provided signed download URLs we
need the proxy to be able to verify the signatures.
This should also be a first step towards phasing out the weird ocs based
client side signed urls.

Related Tickets: #1104
 2025-07-17 12:01:59 +02:00
Ralf Haferkamp 601bb4c955 cleanup(proxy): Remove misleading comment 
The signedurl middleware is already adding the user to the context.
 2025-07-17 12:01:59 +02:00
André Duffeck e8d35e1280 Use the opencloud reva from now on 2025-01-21 11:16:38 +01:00
Jörn Friedrich Dreyer 747b2879d7 proxy 
Signed-off-by: Jörn Friedrich Dreyer <jfd@butonic.de>
 2025-01-16 17:31:51 +01:00
Jörn Friedrich Dreyer b07b5a1149 use plain pkg module 
Signed-off-by: Jörn Friedrich Dreyer <jfd@butonic.de>
 2025-01-13 16:42:19 +01:00
Jörn Friedrich Dreyer 8e028f17e9 change module name 
Signed-off-by: Jörn Friedrich Dreyer <jfd@butonic.de>
 2025-01-13 09:58:18 +01:00
Jörn Friedrich Dreyer 7fd8284daf mark header to not show up as a potential password leak G101 
Signed-off-by: Jörn Friedrich Dreyer <jfd@butonic.de>
 2024-10-22 10:57:01 +02:00
André Duffeck bea1deebba Work around a problem with reverse proxies changing URLs being signed 
Fixes https://github.com/owncloud/ocis/issues/10180
 2024-10-04 09:50:58 +02:00
Jörn Friedrich Dreyer 26136f8f81 drop store service in favor of a micro store implementation (#8419) 
Signed-off-by: Jörn Friedrich Dreyer <jfd@butonic.de>
 2024-02-26 16:08:03 +01:00
Thomas Müller b12cff1016 fix: properly check expiry and verify signature of signed urls (#8385) 
fix: signed url expiry validation only checks for expiry and not for used before
 2024-02-07 15:44:33 +01:00
Ralf Haferkamp d57d52b33d proxy: Add an interface for user role assignment 
This moves the lookup and the creation of the users' role assignemt out
of the user backend into its own interface. This makes the user backend
a bit simpler and allows to provide different implemenation for the user
role assignment more easily.
 2023-03-20 15:12:09 +01:00
Ralf Haferkamp 88e8bb1b72 account_resolver: Handle user roles separately from user lookup 
This removes the "withRoles" flag from the GetUserByClaims lookup and move the
functionality into a separate method. This should make the code a bit more readable
in preparation for maintaining the RoleAssignments from OIDC claims.
 2023-03-20 15:12:09 +01:00
David Christofas 12d42e0074 add missing comments 2022-08-22 14:24:12 +02:00
David Christofas b5ef10dc2b add missing comments and changelog 2022-08-16 16:53:27 +02:00
David Christofas f35c8b9205 clean up the authenticators middlewares 2022-08-12 10:47:48 +02:00
David Christofas e96819bce8 rewrite the auth middleware 
The old approach of the authentication middlewares had the problem that when an authenticator could not authenticate a request it would still send it to the next handler, in case that the next one can authenticate it. But if no authenticator could successfully authenticate the request, it would still be handled, which leads to unauthorized access.
 2022-08-12 10:47:43 +02:00
Christian Richter f8f1320501 refactor extensions -> services 
Signed-off-by: Christian Richter <crichter@owncloud.com>
 2022-06-27 14:05:36 +02:00
Christian Richter 78064e6bab rename folder extensions -> services 
Signed-off-by: Christian Richter <crichter@owncloud.com>
 2022-06-27 14:05:36 +02:00