nextcloud-server-mirror

mirror of https://github.com/nextcloud/server.git synced 2026-06-29 12:24:50 +02:00

Author	SHA1	Message	Date
Git'Fellow	5dda39a61e	refactor(dbal): move to modern calls Signed-off-by: Git'Fellow <12234510+solracsf@users.noreply.github.com> Signed-off-by: Carl Schwan <carlschwan@kde.org>	2026-06-24 10:35:00 +02:00
Enrique Pérez Arnaud	ac2f9816a6	feat(auth): support permanent OCM refresh tokens and bearer login Co-authored-by: Micke Nordin <kano@sunet.se> Signed-off-by: Micke Nordin <kano@sunet.se> Signed-off-by: Enrique Pérez Arnaud <enrique@cazalla.net>	2026-06-17 10:44:51 +02:00
Côme Chilliet	802bce0a77	fix: Use token expiration for ephemeral sessions This simplifies the code a lot. Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>	2026-06-15 15:28:38 +02:00
Côme Chilliet	6515fa638a	fix: Add explicit getToken method for PublicKeyToken entity This allows mocking the method in tests, and makes sure typing is respected Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com> Signed-off-by: Benjamin Gaussorgues <benjamin.gaussorgues@nextcloud.com>	2026-06-11 09:45:30 +02:00
Côme Chilliet	b4f86c032c	chore(tests): Avoid deprecation in PublicKeyTokenProvider Also cleaned up the test a bit. Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com> Signed-off-by: Benjamin Gaussorgues <benjamin.gaussorgues@nextcloud.com>	2026-06-11 09:45:27 +02:00
Côme Chilliet	1ab09ec753	chore: Apply new coding standard to all files The diff can be checked using: git diff --ignore-all-space --ignore-blank-lines To see only the changes not related to blank lines. Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>	2026-06-01 13:46:39 +02:00
Ferdinand Thiessen	e0ba4d71b6	chore: add missing `Override` attribute to `OC` Signed-off-by: Ferdinand Thiessen <opensource@fthiessen.de>	2026-04-28 21:29:27 +02:00
provokateurin	f12cecb684	feat(rector): Enable SafeDeclareStrictTypesRector Signed-off-by: provokateurin <kate@provokateurin.de>	2026-02-09 10:59:31 +01:00
Carl Schwan	7b6078875b	refactor: Run rector on lib/private Signed-off-by: Carl Schwan <carl.schwan@nextcloud.com>	2026-02-06 13:50:18 +01:00
Joas Schilling	6c20e3e103	fix(onetime): Allow longer duration via app config Signed-off-by: Joas Schilling <coding@schilljs.com>	2026-01-09 19:07:07 +01:00
Joas Schilling	6b121c37da	feat: Allow to create one-time app passwords that only allow loading an app-password Signed-off-by: Joas Schilling <coding@schilljs.com>	2026-01-09 19:07:07 +01:00
Carl Schwan	693a2263cc	fix(entity): Do not call getId when inserting and $id is null Otherwise this breaks some existing code, in particular PublicKeyToken Signed-off-by: Carl Schwan <carlschwan@kde.org>	2026-01-06 15:42:03 +01:00
Carl Schwan	7c1a8a4060	feat: Adapt a bit the snowflake ids API - Rename setId() -> generateId() in SnowflakeAwareEntity Signed-off-by: Carl Schwan <carlschwan@kde.org>	2026-01-06 12:57:17 +01:00
Anna Larch	5f797ebc32	refactor: move existing usages of snoflake IDs SnowflakeAwareEntity Signed-off-by: Anna Larch <anna@nextcloud.com>	2026-01-06 12:57:17 +01:00
Carl Schwan	c4e6fbdae7	fix(query-builder): Don't catch UniqueConstraintViolationException UniqueConstraintViolationException is no longer throw directly but instead is now wrapped inside a \OCP\DB\Exception. So check the exception reason. Signed-off-by: Carl Schwan <carl.schwan@nextclound.com>	2025-09-02 11:55:58 +02:00
Julien Veyssier	3d36834284	feat(auth): include the token entity in TokenInvalidatedEvent Signed-off-by: Julien Veyssier <julien-nc@posteo.net>	2025-08-21 12:42:44 +02:00
Julien Veyssier	4a35837741	feat(auth): adjust PublicKeyTokenProviderTest Signed-off-by: Julien Veyssier <julien-nc@posteo.net>	2025-08-21 12:42:44 +02:00
Julien Veyssier	3da919c783	feat(auth): dispatch new TokenInvalidatedEvent when PublicKeyTokenProvider::invalidateToken is called Signed-off-by: Julien Veyssier <julien-nc@posteo.net>	2025-08-21 12:42:44 +02:00
Julien Veyssier	8ffd30bbf9	feat(auth): dispatch new TokenInvalidatedEvent when PublicKeyTokenProvider::invalidateTokenById is called Signed-off-by: Julien Veyssier <julien-nc@posteo.net>	2025-08-21 12:42:43 +02:00
Ferdinand Thiessen	5981b7eb51	chore: apply new CSFixer rules Signed-off-by: Ferdinand Thiessen <opensource@fthiessen.de> # Conflicts: # apps/settings/lib/SetupChecks/PhpOpcacheSetup.php	2025-07-01 16:26:50 +02:00
Ferdinand Thiessen	0e54c2bd43	fix: Adjust Entity types Signed-off-by: Ferdinand Thiessen <opensource@fthiessen.de>	2024-10-17 18:31:44 +02:00
Git'Fellow	c254855222	chore(db): Correctly apply query types fix: psalm fix: error fix: add batch fix: fatal error fix: add batch chore: add batch chore: add batch fix: psalm fix: typo fix: psalm fix: return bool fix: revert Manager	2024-10-17 09:21:07 +02:00
Ferdinand Thiessen	a8f46af20f	chore: Add proper deprecation dates where missing Signed-off-by: Ferdinand Thiessen <opensource@fthiessen.de>	2024-09-20 00:46:03 +02:00
Daniel Kesselberg	af6de04e9e	style: update codestyle for coding-standard 1.2.3 Signed-off-by: Daniel Kesselberg <mail@danielkesselberg.de>	2024-08-25 19:34:58 +02:00
Christoph Wurst	5100e3152d	feat(auth): Clean-up unused auth tokens and wipe tokens Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	2024-08-13 12:39:11 +02:00
Arthur Schiwon	99182aac37	fix(Token): take over scope in token refresh with login by cookie Signed-off-by: Arthur Schiwon <blizzz@arthur-schiwon.de>	2024-07-19 15:53:46 +02:00
Arthur Schiwon	6a783d9b08	fix(Session): avoid race conditions on clustered setups - re-stablishes old behaviour with cache to return null instead of throwing an InvalidTokenException when the token is cached as non-existing - token invalidation and re-generation are bundled in a DB transaction now Signed-off-by: Arthur Schiwon <blizzz@arthur-schiwon.de>	2024-07-10 13:28:33 +02:00
Arthur Schiwon	f6d6efef3a	refactor(Token): introduce scope constants Signed-off-by: Arthur Schiwon <blizzz@arthur-schiwon.de>	2024-06-05 19:01:14 +02:00
Arthur Schiwon	340939e688	fix(Session): avoid password confirmation on SSO SSO backends like SAML and OIDC tried a trick to suppress password confirmations as they are not possible by design. At least for SAML it was not reliable when existing user backends where used as user repositories. Now we are setting a special scope with the token, and also make sure that the scope is taken over when tokens are regenerated. Signed-off-by: Arthur Schiwon <blizzz@arthur-schiwon.de>	2024-06-05 19:01:13 +02:00
Daniel	fca38e12c8	Merge pull request #45411 from nextcloud/fix/auth/selective-token-activity-update fix(auth): Update authtoken activity selectively	2024-05-29 12:05:45 +02:00
Andy Scherzinger	dae7c159f7	chore: Add SPDX header Signed-off-by: Andy Scherzinger <info@andy-scherzinger.de>	2024-05-24 13:11:22 +02:00
Christoph Wurst	bcc02a3c71	fix(auth): Update authtoken activity selectively Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>	2024-05-21 07:55:01 +02:00
Christoph Wurst	fe7217d2d3	Merge pull request #45026 from nextcloud/fix/token-update Avoid updating the same oc_authtoken row twice	2024-05-16 12:00:32 +02:00
Julius Härtl	04780ae30a	fix: Always set last activity if we update the row of an authtoken anyways Signed-off-by: Julius Härtl <jus@bitgrid.net>	2024-04-29 15:20:17 +02:00
Joas Schilling	bc4a102f52	fix(session): Avoid race condition for cache::get() vs. cache::hasKey() Signed-off-by: Joas Schilling <coding@schilljs.com>	2024-04-29 12:45:44 +02:00
Côme Chilliet	ec5133b739	fix: Apply new coding standard to all files Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>	2024-04-02 14:16:21 +02:00
Benjamin Gaussorgues	d1189f923c	feat(perf): add cache for authtoken lookup Signed-off-by: Benjamin Gaussorgues <benjamin.gaussorgues@nextcloud.com>	2024-02-28 15:04:04 +01:00
Côme Chilliet	a526a382bf	Import OCP IToken as OCPIToken to avoid a name clash in lib/private Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>	2024-01-11 15:45:14 +01:00
Côme Chilliet	8fc39aeb1c	Use IToken from OCP instead of OC Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>	2024-01-11 14:02:15 +01:00
Côme Chilliet	95ea6188dc	Suppress or fix psalm errors related to InvalidTokenException Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>	2024-01-11 14:02:15 +01:00
Côme Chilliet	eee9f1eec4	Always catch OCP versions of authentication exceptions And always throw OC versions for BC Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>	2024-01-11 14:02:15 +01:00
Joas Schilling	aa5f037af7	chore: apply changes from Nextcloud coding standards 1.1.1 Signed-off-by: Joas Schilling <coding@schilljs.com> Signed-off-by: Benjamin Gaussorgues <benjamin.gaussorgues@nextcloud.com>	2023-11-23 10:36:13 +01:00
Côme Chilliet	d8b42c6131	Allow passing null to PublicKeyToken::setScope, fixes tests Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>	2023-10-23 15:52:07 +02:00
Côme Chilliet	33a24134a7	Improve docblock annotations for tokens and their exceptions Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>	2023-10-23 15:20:04 +02:00
Côme Chilliet	58a57a714e	Use more precise typing for setScope method parameter Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>	2023-10-23 15:19:38 +02:00
Côme Chilliet	356f0291a2	Align PublicKeyToken with interface changes Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>	2023-10-23 09:41:32 +02:00
Côme Chilliet	f94fb33062	Move IToken and IProvider::getToken to OCP Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>	2023-10-20 17:51:33 +02:00
Lucas Azevedo	2a36acfc2b	Fix typo Signed-off-by: Lucas Azevedo <lhs_azevedo@hotmail.com>	2023-08-25 11:20:34 -03:00
Lucas Azevedo	c93b1634d3	Fixes from static analysis Co-authored-by: Joas Schilling <213943+nickvergessen@users.noreply.github.com> Signed-off-by: Lucas Azevedo <lhs_azevedo@hotmail.com>	2023-08-25 10:41:46 -03:00
Lucas Azevedo	fe9b9c1955	Add last-used-before option Signed-off-by: Lucas Azevedo <lhs_azevedo@hotmail.com>	2023-08-25 02:07:57 -03:00

1 2 3 4 5

208 Commits