averello/nextcloud-server-mirror
1
0
Fork 0
mirror of https://github.com/nextcloud/server.git synced 2026-03-04 18:28:08 +01:00
Code Issues Packages Projects Releases Wiki Activity
54,337 Commits 712 Branches 1,186 Tags
2e4cc6da17028e777dc223689f1b9964ff2a4d8f
Commit Graph

412 Commits

Author SHA1 Message Date
Joas Schilling
736e884e9a Move the reset token to core app 2016-08-23 15:01:38 +02:00
Joas Schilling
139fb8de94 Remove "password reset token" after successful login 2016-08-23 12:54:45 +02:00
Roeland Jago Douma
0963397cb8 we are Nextcloud :) 2016-08-18 09:37:11 +02:00
Roeland Jago Douma
6bc1c6590c Move /config over to Core OCSController 2016-08-18 09:37:09 +02:00
Roeland Jago Douma
0cb8f74cd1 Delete IE8 support in the avatar controller 2016-08-16 20:48:04 +02:00
Lukas Reschke
9ca25e857c Redirect users when already logged-in on login form 2016-08-11 15:22:29 +02:00
Roeland Jago Douma
ba922c9f73 Merge pull request #807 from nextcloud/ocs_dataresponse 
OCSController requires DataResponse
 2016-08-10 22:36:25 +02:00
Roeland Jago Douma
9544c97ffe Fix Core's OCSController response 2016-08-10 20:53:13 +02:00
Thomas Müller
4cf2f97a16 Add missing array element - fixes #25714 2016-08-10 11:11:23 +02:00
Roeland Jago Douma
69da896785 Move /cloud/user to Core app 2016-08-09 20:56:31 +02:00
Roeland Jago Douma
02449c8336 Move getCapabilities over to Core 2016-08-09 20:56:31 +02:00
Roeland Jago Douma
575875e8d0 Allow OCS routes in Core and Settings 2016-08-09 20:56:31 +02:00
Damjan Georgievski
4d559267bd SetupController should use \OC::$configDir too 2016-08-02 15:28:19 +02:00
Bjoern Schiessle
4ecd16c555 Redirect to default page after login 2016-07-27 12:11:58 +02:00
Joas Schilling
0215b004da Update with robin 2016-07-21 18:13:58 +02:00
Joas Schilling
ba87db3fcc Fix others 2016-07-21 18:13:57 +02:00
Lukas Reschke
c1589f163c Mitigate race condition 2016-07-20 23:09:27 +02:00
Lukas Reschke
ba4f12baa0 Implement brute force protection 
Class Throttler implements the bruteforce protection for security actions in
Nextcloud.

It is working by logging invalid login attempts to the database and slowing
down all login attempts from the same subnet. The max delay is 30 seconds and
the starting delay are 200 milliseconds. (after the first failed login)
 2016-07-20 22:08:56 +02:00
Joas Schilling
2c988ecbf4 Use the themed Defaults everywhere 2016-07-15 09:17:30 +02:00
Morris Jobke
2791b8f00d Revert "occ web executor (#24957)" 
This reverts commit 854352d9a0.
 2016-07-07 12:14:45 +02:00
Lukas Reschke
7a9d60d87e Merge remote-tracking branch 'upstream/master' into master-upstream-sync 2016-06-26 12:55:05 +02:00
VicDeo
854352d9a0 occ web executor (#24957) 
* Initial web executor

* Fix PHPDoc

Fix broken integration test

OccControllerTests do not require database access - moch them all!

Kill unused sprintf
 2016-06-22 13:12:36 +02:00
Arthur Schiwon
42c66efea5 Merge branch 'master' of https://github.com/owncloud/core into downstream-160611 2016-06-11 15:34:43 +02:00
Lukas Reschke
5fdde426eb Add fancy layout 2016-06-09 17:55:26 +02:00
Thomas Müller
232d735893 Do not leak the login name - fixes #25047 2016-06-09 16:44:31 +02:00
Joas Schilling
7f88645eab Allow to cancel 2FA after login 2016-06-09 14:00:02 +02:00
Christoph Wurst
60e15e934c do not generate device token if 2FA is enable for user 2016-06-09 14:00:00 +02:00
Vincent Petry
7dcc47dc94 Merge pull request #25011 from owncloud/issue-24745-allow-to-cancel-2fa 
Allow to cancel 2FA after login
 2016-06-08 10:27:21 +02:00
Joas Schilling
3e3b326c85 Allow to cancel 2FA after login 2016-06-07 18:17:29 +02:00
Christoph Wurst
8f7a4aaa4d do not generate device token if 2FA is enable for user 2016-06-07 09:09:51 +02:00
Christoph Wurst
5e71d23ded remember redirect_url when solving the 2FA challenge 2016-06-01 14:43:47 +02:00
Vincent Petry
235f03da64 Merge pull request #24795 from owncloud/issue-24789-reset-password-link-new-window 
Allow opening the password reset link in a new window when its a URL
 2016-05-31 10:12:30 +02:00
Lukas Reschke
aba539703c Update license headers 2016-05-26 19:57:24 +02:00
Vincent Petry
25e6026fa6 Merge pull request #24735 from juliushaertl/passwordreset-invalid 
Show error messages if a password reset link is invalid or expired
 2016-05-25 11:08:46 +02:00
Christoph Wurst
ad10485cec when generating browser/device token, save the login name for later password checks 2016-05-24 11:49:15 +02:00
Christoph Wurst
a0ccebfdcb generate device token for UID, not login name 
fixes #24785
 2016-05-24 09:49:40 +02:00
Christoph Wurst
4128b853e5 login explicitly 2016-05-24 09:48:02 +02:00
Joas Schilling
5c063cf7c9 Allow opening the password reset link in a new window when its a URL 2016-05-24 09:23:25 +02:00
Julius Haertl
8ee2cb47d0 Show error messages if a password reset link is invalid or expired 
- Moved token validation to method checkPasswordResetToken
- Render error with message from exceptions
 2016-05-23 16:48:10 +02:00
Christoph Wurst
dfb4d426c2 Add two factor auth to core 2016-05-23 11:21:10 +02:00
Christoph Wurst
e077d78ec9 Show login error message correctly (#24599) 2016-05-12 16:53:50 +02:00
Lukas Reschke
ee0ebd192a Use proper URL generation function (#24576) 
Fixes the redirection after login, otherwise `core/files/index` is opened which fails.
 2016-05-11 19:39:57 +02:00
Christoph Wurst
0486d750aa use the UID for creating the session token, not the login name 2016-05-11 13:36:46 +02:00
Christoph Wurst
214aa6639c fix login with email 2016-05-11 13:36:46 +02:00
Christoph Wurst
46bdf6ea2b fix PHPDoc and other minor issues 2016-05-11 13:36:46 +02:00
Christoph Wurst
3ffa7d986a show login error 2016-05-11 13:36:46 +02:00
Christoph Wurst
f0f8bdd495 PHPDoc and other minor fixes 2016-05-11 13:36:46 +02:00
Christoph Wurst
fbb5768587 add unit tests for all new classes 2016-05-11 13:36:46 +02:00
Christoph Wurst
aa85edd224 increase token column width 
add some range to time() assertions
 2016-05-11 13:36:46 +02:00
Christoph Wurst
aafd660b97 fix LoginController unit tests 2016-05-11 13:36:46 +02:00