0ct0pu5/sftpgo
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
1485 commits 8 branches 48 tags 35 MiB
Commit graph

90 commits

Author SHA1 Message Date
Nicola Murino
712f2053a4
REST API dumpdata: allow to specify the resources to dump 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-04-18 18:11:23 +02:00
Nicola Murino
466f2e88b3
WebClient: fix rename 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-04-15 14:16:26 +02:00
Nicola Murino
4294659785
try harder to convert transfer errors in well-known error types 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-04-08 14:55:04 +02:00
Nicola Murino
184b99d500
user: add a field to indicate whether the password is set 
A structure similar to the one used for secrets would be better,
but we don't want to break backwards compatibility.

Also document that omitting the password field in the request body
will preserve the current password when updating a user using the
REST API. Added a test case for this.

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-04-06 18:22:09 +02:00
Nicola Murino
354fc9b3d6
OIDC: allow to extract custom fields from sub-structs 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-03-23 18:15:07 +01:00
Nicola Murino
e29f6857db
EventManager: add IDP login trigger and check account action 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-03-22 19:02:54 +01:00
Nicola Murino
84396343da
fix some codeql warnings 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-03-10 17:30:06 +01:00
Nicola Murino
0423e8f157
httpd: generate defender events for failed 2fa and password resets 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-03-04 13:55:48 +01:00
Nicola Murino
bdcee06665
WebClient: remove the default upload size limit 
Users who want a limit can still set it.
By default, we want to allow uploads of any size

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-03-02 18:26:21 +01:00
Nicola Murino
4ba3ae876d
allow to set password strength at user/group level 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-03-02 09:11:30 +01:00
Nicola Murino
662164c7ff
smtp: require templates only if a server is configured or in service mode 
This regression was introduced after recent changes to allow setting the SMTP
settings from the WebAdmin UI.

Fixes #1217

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-03-01 18:31:02 +01:00
Nicola Murino
fad6af11e5
don't expose error messages from pre-actions and post connect hooks 
always return a generic error instead to avoid leaking internal info

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-02-28 18:01:09 +01:00
Nicola Murino
dba088daed
printf: replace %#v with the more explicit %q 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-02-27 19:19:57 +01:00
Nicola Murino
561976bcd0
WebClient: return proper status code for http.MaxBytesError 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-02-27 11:03:05 +01:00
Nicola Murino
9a10740218
allow ACME HTTP-01 challenge with https redirect from port 80 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-02-24 20:08:14 +01:00
Nicola Murino
8805d85377
configs: add ACME section 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-02-23 19:25:20 +01:00
Nicola Murino
a3fff56da5
WebAdmin: add configs section 
Setting configurations is an experimental feature and is not currently
supported in the REST API

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-02-19 19:03:45 +01:00
Nicola Murino
78cd5d8eba
groups: add expiration date override 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-02-13 19:32:36 +01:00
Nicola Murino
7738faa040
events: add elapsed to UI and exports 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-02-13 12:58:21 +01:00
Nicola Murino
7e85356325
WebClient shares: replace basic auth with a login form 
basic auth will continue to work for REST API

Fixes #1166

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-02-12 08:29:53 +01:00
Nicola Murino
1b1745b7f7
move IP/Network lists to the data provider 
this is a backward incompatible change, all previous file based IP/network
lists will not work anymore

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-02-09 09:33:33 +01:00
Nicola Murino
c0fe08b597
defender: allow to set a different score for "no auth tried" events 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-01-25 18:49:03 +01:00
Nicola Murino
5550a5d2c0
update users: also disconnect users from remote nodes when requested 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-01-24 18:53:34 +01:00
Nicola Murino
7b5bebc588
EventManager: add "on-demand" trigger 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-01-21 15:41:24 +01:00
Nicola Murino
53f17b5715
allow to disable event rules 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-01-19 18:33:04 +01:00
Nicola Murino
f2618e7de6
switch from go-simple-mail to go-mail 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-01-15 15:28:31 +01:00
Nicola Murino
8cad436421
conditional support for recursive renaming for cloud providers 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-01-06 12:33:50 +01:00
Nicola Murino
51f0ded222
update test certificates 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-01-03 11:48:08 +01:00
Nicola Murino
0190d0b849
update Copyright year 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-01-03 10:18:30 +01:00
Nicola Murino
7fa0959af4
eventmanager: add support for global star path matching 
This introduce a backward incompatible change for filesystem path matching
in the Event Manager, now patterns like "*.txt" will no longer match any
file with the "txt" suffix, you need to change them to "/**/*.txt".

Also change pre-delete behaviour, now if an error is returned the client
will get a permission denied error. This is the same as the other pre-*
action. Previously it was not possible to deny deletion of a file.

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-01-02 15:59:00 +01:00
Nicola Murino
2611dd2c98
eventmanager: add support for pre-* actions 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-01-01 17:59:41 +01:00
Nicola Murino
15ad31da54
WebClient: add copy action 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2022-12-30 19:30:16 +01:00
Nicola Murino
ea4c4dd57f
eventmanager: add copy action 
refactor sftpgo-copy and sftpgo-remove commands

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2022-12-27 18:51:53 +01:00
Nicola Murino
e5a8220b8a
REST API: add location header to 201 responses 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2022-12-23 13:08:04 +01:00
Nicola Murino
0841c7d7bd
REST API: remove merging of fields on updates 
we use PUT verb not PATCH. We keep merging only to allow to preserve
hidden/encrypted fields.

This is a backward incompatible change, but is necessary to avoid unexpected
issues.
You have to pass complete objects on updates.

Fixes #1088

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2022-12-23 09:36:20 +01:00
Nicola Murino
0296e0cafa
gcsfs: allow to customize upload part size/time 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2022-12-18 11:51:46 +01:00
Nicola Murino
147ad3b230
respect token validation mode for CSRF header 
Fixes #1104

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2022-12-16 19:14:56 +01:00
Nicola Murino
2da3eabc12
eventmanager: add password notification check action 
this action allow to send an email notification to users whose
password is about to expire

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2022-12-16 18:51:29 +01:00
Nicola Murino
ad5d657a1a
add support for password policies 
you can now set a password expiration and the password change requirement

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2022-12-11 17:15:34 +01:00
Nicola Murino
a7f9581d99
provider events: add support for omit_object_data search param 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2022-12-08 10:02:12 +01:00
Nicola Murino
75d911f29e
WebAdmin: allow to search and export event logs 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2022-12-07 18:47:38 +01:00
Nicola Murino
221a4878aa
eventmanager: allow to filter based on role name 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2022-12-03 17:47:43 +01:00
Nicola Murino
1f9cf194fe
add role to events 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2022-12-03 11:45:27 +01:00
Nicola Murino
ec4cc33364
WebAdmin users form: trim spaces from some form fields 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2022-11-17 18:26:19 +01:00
Nicola Murino
5a222807b7
add roles 
Fixes #837

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2022-11-16 19:04:50 +01:00
Nicola Murino
048591553a
allow to set a default expiration for newly created users 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2022-11-05 18:01:24 +01:00
Nicola Murino
e3e85867b1
sftpfs: reuse connections 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2022-11-01 12:22:54 +01:00
Nicola Murino
6f422c3d8b
WebClient: make folder deletion recursive 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2022-10-27 08:27:44 +02:00
Nicola Murino
db0e58ae7e
Add support for graceful shutdown 
Fixes #1014

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2022-10-22 11:56:41 +02:00
Nicola Murino
54f1946aba
OIDC: allow to skip JWT signature validation 
It's intended for special cases where providers,such as Azure,
use the "none" algorithm

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2022-10-19 18:38:09 +02:00