mirror/opencloud
1
0
Fork 0
mirror of https://github.com/opencloud-eu/opencloud.git synced 2026-02-14 16:18:59 -06:00
Code Issues Packages Projects Releases Wiki Activity
10,769 Commits 51 Branches 47 Tags
93bf3356e92ec24c42648802e1e7bc7d1da43a42
Commit Graph

145 Commits

Author SHA1 Message Date
Michael Barz
77ade496a7 update web to v5.7.0-rc9 2022-08-10 19:11:34 +02:00
Michael Barz
a503e808c0 Merge pull request #4256 from aduffeck/cleanup-uploads 
Add a cli for listing and cleaning up expired uploads
 2022-08-09 12:09:17 +02:00
Michael Barz
0f4597da92 Merge pull request #4363 from owncloud/fix-quota-unrestricted 
fix unrestricted quota
 2022-08-08 20:57:44 +02:00
Michael Barz
bb9903515f fix unrestricted quota 2022-08-08 19:25:22 +02:00
Benedikt Kulmann
84daa63380 Merge pull request #4359 from owncloud/update-web-5.7.0-rc.8 
[full-ci] bump web to v5.7.0-rc.8
 2022-08-08 18:01:51 +02:00
Michael Barz
df8e64665b Merge pull request #4358 from owncloud/update-graph-api 
add expand query for personal drive
 2022-08-08 17:45:12 +02:00
Benedikt Kulmann
974469346c chore: bump web to v5.7.0-rc.8 2022-08-08 17:25:13 +02:00
Michael Barz
67b52bbd55 add expand query for personal drive 2022-08-08 16:43:59 +02:00
Michael Barz
51fe4a8560 Merge pull request #4356 from owncloud/code-improvements 
add storageID to the special items, improve code
 2022-08-08 16:43:14 +02:00
Michael Barz
bde5d69839 add storageID to the special items, improve code 2022-08-08 16:07:19 +02:00
Michael Barz
03c63380da Merge pull request #4346 from wkloucek/rewrite-oidc-well-known 
add middleware to rewrite the /.well-known/openid-configuration endpoint for external idps
 2022-08-08 15:36:34 +02:00
Ralf Haferkamp
23b9437c08 Avoid panics when LDAP users miss required attributes 2022-08-05 16:46:45 +02:00
Ralf Haferkamp
c7359a849f Avoid unneeded extra LDAP query per group 
When expanding members of an LDAP group we did two group lookup per
Group. This can be avoided by expanding the members right from the
Group entry of the first query.

This also add some more unit test coverage, especially to the expand/select
group member test cases.
 2022-08-05 16:46:45 +02:00
Ralf Haferkamp
8dde4e5b94 Add LDAP query details to debug log 2022-08-05 16:46:45 +02:00
Ralf Haferkamp
d867a8bc7c Don't panic on missing group attributes 
Closes #4274
 2022-08-05 16:46:45 +02:00
Willy Kloucek
94646c8060 add middleware to rewrite the /.well-known/openid-configuration endpoint for external idps 2022-08-05 14:12:01 +02:00
Willy Kloucek
58ccdaca08 improve PROXY_USER_CS3_CLAIM description 2022-08-05 10:47:51 +02:00
Ralf Haferkamp
03a8db45c1 Switch default for user and group substring search 
We now default LDAP_GROUP_SUBSTRING_FILTER_TYPE and LDAP_USER_SUBSTRING_FILTER_TYPE
to "any", which means full substring search. The previous default was just using prefix
matching.

Closes #4282
 2022-08-04 11:23:17 +02:00
André Duffeck
e35327cdf2 Add a cli for listing and cleaning up expired uploads 
Fixes #2622
 2022-08-04 09:41:55 +02:00
Michael Barz
1808fa0bdf Merge pull request #4323 from owncloud/fix-user-drives-quota 
fix listing of drives and quota
 2022-08-03 14:40:41 +02:00
Michael Barz
cb7d024d89 fix listing of drives and quota 2022-08-03 12:50:00 +02:00
Jannik Stehle
492ac5ced4 Set the alias link capability to false 2022-08-03 12:17:27 +02:00
Ralf Haferkamp
6e848c7254 Use mutex for lazy init function 
To avoid possible threading issues
 2022-08-03 12:00:31 +02:00
Ralf Haferkamp
74d9d0f3e0 Apply suggestions from code review 
Co-authored-by: Martin <github@diemattels.at>
 2022-08-03 12:00:31 +02:00
Ralf Haferkamp
8229567213 Allow to configure the JWKS refresh settings 
This exposes a couple for knobs for the jwks keyfunc module to adjust
timeout and refresh intervals.
 2022-08-03 12:00:31 +02:00
Ralf Haferkamp
eb94530433 Add option to configure access token verification 
Allow to switch jwt access token verification and off. Many (most?) IDP
provide JWT encoded access tokens. If ocis is configure to assume jwt
access tokens (access_token_verify_method==jwt) we now properly verify
the tokens signature and a set of standard claims ("exp", "iat" and nbf"
by way of the jwt module's standard verification and "iss" explicitliy).

This change also allows for introduction of other access token verification
mechanism in the future (e.g. through introspection (RFC7662).
 2022-08-03 12:00:31 +02:00
Ralf Haferkamp
454cea8a1c Try to verify access_token as JWT and extract expiry 
We try to parse the access token as a JWT now. Verifying the signature
using the keys downloaded from the jwks_uri of the IDP. Currently we
only use it to extract the expiry information from the JWT. This could
be reworked to extract other claims from the token for authorization
purposes.

Fixes: #3841
 2022-08-03 12:00:31 +02:00
Ralf Haferkamp
0b055ca621 Remove obsolete comment 
Token/Userinfo caching is already present since a while
 2022-08-03 12:00:31 +02:00
Benedikt Kulmann
ca3c6ff570 chore: bump web to v5.7.0-rc.7 2022-08-02 18:19:55 +02:00
Ralf Haferkamp
53751339a6 Use existing mockery mock instead of manual ldap.Client mock 2022-08-02 16:14:39 +02:00
Ralf Haferkamp
fa36a73c54 Add missing new methods to fulfill ldap.Client interface 2022-08-02 15:34:59 +02:00
Andre Duffeck
9fc485c95f Merge pull request #4308 from aduffeck/fix-search-in-received-shares 
Fix search in received shares
 2022-08-02 09:11:32 +02:00
André Duffeck
814342a101 Fix search in received shares 
It apparently broke as a fallout of the shareid refactoring.
 2022-08-01 13:55:52 +02:00
Michael Barz
cce04f94ff set virtual owner on non-personal spaces 2022-08-01 12:53:24 +02:00
Christian Richter
a030459c70 incorporate requested changes 
Signed-off-by: Christian Richter <crichter@owncloud.com>
 2022-07-29 14:39:19 +02:00
Christian Richter
1e21e23056 add drives output 
Signed-off-by: Christian Richter <crichter@owncloud.com>
 2022-07-29 14:39:19 +02:00
ownClouders
1da7c12ee7 [tx] updated from transifex 2022-07-29 00:06:21 +00:00
Jörn Friedrich Dreyer
9b99a61cdb Merge pull request #4266 from wkloucek/update-go-micro 
update go-micro
 2022-07-26 06:51:25 +00:00
Willy Kloucek
7365d6cb13 short error return syntax 2022-07-25 16:38:02 +02:00
Willy Kloucek
26d50b5623 switch to different mail lib to add insecure flag 2022-07-25 16:22:27 +02:00
Willy Kloucek
bee33638ef remove Body from endpoint, see 3381a9f3db 2022-07-25 12:16:37 +02:00
Ralf Haferkamp
b4a90b132b Demote demo user "moss" from admin to space-admin 
Fixes: #3625
 2022-07-22 16:47:04 +02:00
jkoberg
e6ef03fb43 add Makefile 
Signed-off-by: jkoberg <jkoberg@owncloud.com>
 2022-07-22 11:25:04 +02:00
jkoberg
fdaa55865c add search unit test to ci 
Signed-off-by: jkoberg <jkoberg@owncloud.com>
 2022-07-22 11:16:53 +02:00
jkoberg
e56632681b update description for event structs 
Signed-off-by: jkoberg <jkoberg@owncloud.com>
 2022-07-21 10:27:43 +02:00
Pascal Wengerter
cdadd5d00f Merge pull request #4214 from owncloud/dependabot/npm_and_yarn/services/settings/eslint-plugin-n-15.2.4 
Bump eslint-plugin-n from 15.2.3 to 15.2.4 in /services/settings
 2022-07-20 13:44:28 +02:00
Pascal Wengerter
18d758fef7 Merge pull request #4236 from owncloud/dependabot/npm_and_yarn/services/settings/terser-5.14.2 
Bump terser from 5.7.2 to 5.14.2 in /services/settings
 2022-07-20 13:44:08 +02:00
Ralf Haferkamp
288b76d955 Add config for setting search_min_length capability 
This adds the "search_min_length" setting to the frontend service which
allows to set the search_min_length capabilty which is e.g. used by
web.

Partial: #547
 2022-07-20 11:55:04 +02:00
Ralf Haferkamp
6d47ee16c9 Allow configuration of substring search for searching sharees 
This introduces new settings for the users and groups services.
"group_substring_filter_type" for the group services and
"user_substring_filter_type" for the users service. They allow to set
the type of LDAP filter that is used for substring user searches.
Possible values are: "initial", "final" and "any" to do either prefix,
suffix or full substring searches.

Fixes #547
 2022-07-20 11:55:04 +02:00
dependabot[bot]
6dc8047f32 Bump terser from 5.7.2 to 5.14.2 in /services/settings 
Bumps [terser](https://github.com/terser/terser) from 5.7.2 to 5.14.2.
- [Release notes](https://github.com/terser/terser/releases)
- [Changelog](https://github.com/terser/terser/blob/master/CHANGELOG.md)
- [Commits](https://github.com/terser/terser/commits)

---
updated-dependencies:
- dependency-name: terser
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-07-20 09:13:54 +00:00