mirror/opencloud
1
0
Fork 0
mirror of https://github.com/opencloud-eu/opencloud.git synced 2026-01-05 11:51:16 -06:00
Code Issues Packages Projects Releases Wiki Activity
11,943 Commits 50 Branches 39 Tags
48ffc19554203531cc0ffdf11ceb43aab3313ecd
Commit Graph

42 Commits

Author SHA1 Message Date
Jörn Friedrich Dreyer
70a6323c42 token middleware: use constant time comparison (#5225) 
Signed-off-by: Jörn Friedrich Dreyer <jfd@butonic.de>

Signed-off-by: Jörn Friedrich Dreyer <jfd@butonic.de>
 2022-12-14 14:04:02 +01:00
Michael Barz
f84fbdd6ff corrections from code review 2022-10-17 17:22:33 +02:00
Ralf Haferkamp
8d11ba02d3 Remove unused OpenID connect middleware 
The proxy comes with it's own middleware. This implementation was used
by the graph service at some point but that went away with commit
5070941dc4.
 2022-06-30 16:04:34 +02:00
Michael Barz
189987bcbd Bump major version to v2 2022-05-04 14:49:59 +02:00
Michael Barz
b15db1794a update reva to version 2.0.0 (#3258) 2022-03-03 19:56:04 +01:00
David Christofas
9ecc065879 update CORS middleware and make it configurable 2021-10-22 13:27:31 +02:00
David Christofas
c370276198 add some information about the security headers 2021-10-22 12:01:00 +02:00
David Christofas
4a30624fe8 remove deprecated X-XSS-Protection header 
Only legacy browsers are still supporting this header. See
https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-XSS-Protection#browser_compatibility.
 2021-10-22 12:00:56 +02:00
David Christofas
45fe331ad7 remove deprecated context key 2021-10-21 10:16:58 +02:00
Willy Kloucek
8fdf8e340b Merge pull request #2536 from owncloud/public-share-auth-middleware 
add public share auth middleware
 2021-10-18 07:54:11 +02:00
David Christofas
f5aabe1a87 update reva to latest master 2021-10-15 17:45:16 +02:00
David Christofas
600c7ca351 use updated VerifyScope 2021-10-15 17:45:11 +02:00
David Christofas
fb0380820c enable archiver for public shares 2021-10-15 17:45:06 +02:00
Willy Kloucek
6d5a3733ff upgrade to go micro v4.1.0 2021-10-14 15:56:19 +02:00
Ishank Arora
3e98b8df72 Set reva JWT token expiration time to 24 hours by default 2021-09-23 09:10:40 +02:00
Ralf Haferkamp
3a42fdc578 Move to go-chi/chi v5 2021-08-24 17:48:37 +02:00
A.Unger
aac45a46f4 Merge branch 'master' into remake-traces 2021-08-17 13:29:05 +02:00
David Christofas
ed85fedf1a update github.com/coreos/go-oidc to version 3.0.0 2021-08-13 09:55:17 +02:00
A.Unger
e62a9b6a36 Merge branch 'master' into remake-traces 2021-08-13 09:43:31 +02:00
David Christofas
3bc60510ce use go-chi middlewares 
go-chi already delivers the middlewares we need so we don't need to import other libraries for that.
 2021-08-12 17:14:41 +02:00
Jörn Friedrich Dreyer
55aacdea13 update reva to ec4099da 
Signed-off-by: Jörn Friedrich Dreyer <jfd@butonic.de>
 2021-08-12 11:08:10 +00:00
A.Unger
2bdd07e41b add test spans 2021-08-06 15:47:46 +02:00
A.Unger
9f50776b17 enable traces in proxy 2021-08-06 13:29:40 +02:00
Jörn Friedrich Dreyer
1f3e963c29 use claims map instead of struct 
Signed-off-by: Jörn Friedrich Dreyer <jfd@butonic.de>
 2021-07-22 09:20:36 +00:00
Jörn Friedrich Dreyer
1dc7aac6fd proxy access log 
Signed-off-by: Jörn Friedrich Dreyer <jfd@butonic.de>
 2021-07-14 13:14:27 +00:00
David Christofas
f6ac50244b update invocations of MintToken and DismantleToken 2021-05-11 14:18:43 +02:00
David Christofas
c532073dd1 remove JWT from logs 
secrets should not be exposed in the logs
 2021-03-03 15:30:11 +01:00
David Christofas
a22b7d6844 resolve linter issues 2021-02-24 16:24:36 +01:00
A.Unger
7e505fbd9f remove any micro v2 occurences from the project 2021-02-18 08:01:53 +00:00
Ishank Arora
30c80b0923 Check if roles are present in user object before looking those up 2021-01-28 17:25:59 +01:00
Benedikt Kulmann
633391e30d Set empty role ids array 2020-12-15 00:25:01 +01:00
Benedikt Kulmann
7db02045b4 Introduce permission checks for WRITE access via http 2020-12-15 00:24:57 +01:00
Benedikt Kulmann
b3871d8e0b Disable static assets caching 2020-12-14 22:57:53 +01:00
Benedikt Kulmann
5de15f4d12 Force web asset re-validation (on last modification date) 2020-11-23 13:16:49 +01:00
Benedikt Kulmann
005825bbc9 Set proper expires header 2020-11-23 13:06:05 +01:00
Benedikt Kulmann
d91008c3c2 Serve index.html in static middleware 2020-11-20 10:47:17 +01:00
Benedikt Kulmann
9c6dac8328 Add caching for static web assets 2020-11-16 23:22:56 +01:00
Benedikt Kulmann
aaf9029a3e Rename "Cache" middleware to "NoCache" 2020-11-16 22:13:26 +01:00
Jörn Friedrich Dreyer
8e39d8b873 actually check permissions to fix tests 
Signed-off-by: Jörn Friedrich Dreyer <jfd@butonic.de>
 2020-11-05 13:06:05 +01:00
A.Unger
815d07f71c fix linter 2020-10-14 18:03:52 +02:00
A.Unger
fcca9faa81 accounts running 2020-09-18 14:51:07 +02:00
A.Unger
c284b4d07b Add 'ocis-pkg/' from commit '72d605ba3857d0b972ddd72e226d8a5360fb480d' 
git-subtree-dir: ocis-pkg
git-subtree-mainline: 4c12bed11b
git-subtree-split: 72d605ba38
 2020-09-18 12:34:50 +02:00