0ct0pu5/webdav-server

Author	SHA1	Message	Date
Henrique Dias	ca7f3374d5	chore: update dependencies	2024-11-28 16:59:04 +01:00
Henrique Dias	64bbdc7b15	fix: error if rule has no regex or path	2024-11-28 16:57:10 +01:00
Steven Vandevelde	d418bd2661	fix: Pass ExposedHeaders to cors.New	2024-11-19 17:52:14 +01:00
Henrique Dias	d500716f29	fix: spoofing of X-Forwarded-For	2024-10-21 08:15:19 +02:00
Henrique Dias	8c49af0b68	fix: environment parsing for username	2024-10-20 09:09:05 +02:00
Henrique Dias	a5777e18ee	chore: update dependencies	2024-10-12 14:41:05 +02:00
Henrique Dias	49a6e935c3	docs(readme): make fail2ban config part of the examples	2024-10-12 14:40:29 +02:00
炯轩	a698e31cb4	chore: removed the the login attempt log commented line to makes the code cleaner and more focused	2024-10-12 14:38:42 +02:00
Jiongxuan Zhang	74b514c877	feat(authentication): enhance login failure logging and reduce log volume - Added logging for invalid username attempts to provide more detailed failure reasons. - Removed "login attempt" log entries to reduce log volume and focus on final verification results. - Retained logging for invalid password and successful user authorization for clarity.	2024-10-12 14:38:42 +02:00
Jiongxuan Zhang	ca0bdb1cfa	docs: add Fail2Ban configuration guide to README - Added a section in README.md explaining how to configure Fail2Ban for WebDAV security. - Included examples for filter and jail configuration. - Provided instructions on setting up and testing Fail2Ban to block IPs after failed login attempts.	2024-10-12 14:38:42 +02:00
Jiongxuan Zhang	a056e1ba18	feat(authentication): improve IP logging by extracting real client IP from X-Forwarded-For header - Added getRealRemoteIP function to retrieve the real client IP address when behind a reverse proxy. - Updated authentication logging to use the extracted IP instead of r.RemoteAddr. - Ensured compatibility for both proxy and non-proxy setups, falling back to r.RemoteAddr when X-Forwarded-For is not present.	2024-10-12 14:38:42 +02:00
Keith Gaughan	189af88bc8	chore: omit debug information release builds (#185 )	2024-09-08 21:34:26 +02:00
Henrique Dias	4e87e6a613	chore: disable CGO (#184 )	2024-08-25 15:06:46 +02:00
Henrique Dias	63449f1636	fix: check permissions at copy/move source and destination (#181 )	2024-08-21 18:15:32 +02:00
Henrique Dias	4ad26dad35	ci: use go 1.23	2024-08-19 19:32:46 +02:00
Henrique Dias	623bbc9a70	chore: update dependencies	2024-08-19 19:32:46 +02:00
Henrique Dias	feeb33d249	docs: add note about noSniff	2024-08-01 21:53:58 +02:00
Henrique Dias	d3bee98000	feat: allow disabling password check for delegated authentication	2024-08-01 21:53:58 +02:00
Henrique Dias	373b2ec931	docs: fix nginx configuration Closes #132	2024-08-01 10:39:21 +02:00
Henrique Dias	000f404f7a	docs: remove dev version note	2024-07-31 10:07:23 +01:00
Henrique Dias	e4a8622c1e	docs: remove outdated SECURITY.md	2024-07-31 10:07:01 +01:00
Henrique Dias	b5a3d07f5c	feat!: fine-grained permissions	2024-07-31 11:06:34 +02:00
Henrique Dias	f4de82cfd1	feat: add test for server listing characters	2024-07-30 15:01:17 +02:00
Henrique Dias	ebcf500d5e	docs: cleanup readme	2024-07-29 09:13:46 +01:00
Henrique Dias	d7faa1f887	feat!: further log customizations	2024-07-29 10:11:02 +02:00
Henrique Dias	d5e5052f63	feat!: rename 'scope' to 'directory' Directory makes it more clear of what it is. In addition, this will make it easier when allowing for multiple directories in the future, since we can just name it 'directories', which is more clear than 'scopes'.	2024-07-29 10:11:02 +02:00
Henrique Dias	a255fb51e2	feat!: remove Auth option	2024-07-29 10:11:02 +02:00
Henrique Dias	ed23ca1820	feat!: change default port and scope BREAKING CHANGE: the default port is no longer random, but 6065. The default scope is now the current directory instead of the root directory.	2024-07-29 10:11:02 +02:00
Henrique Dias	e7e9c3176d	feat!: simplified rule with regex instead of boolean BREAKING CHANGE: the "regex" field in the rule is now a regular expression instead of a boolean.	2024-07-29 10:11:02 +02:00
Henrique Dias	d3732322bc	chore: bump version to v5	2024-07-29 10:10:19 +02:00
Henrique Dias	f708664906	feat: permissions, auth, rules basic tests	2024-07-26 17:18:46 +02:00
Henrique Dias	814462bed1	fix: environment variable parsing This is more of a workaround than the correct solution. It only fixes top-level ENV variables parsing.	2024-07-25 22:46:34 +02:00
Henrique Dias	f6a0707fe6	refactor: shorten response writer code	2024-07-22 22:28:56 +02:00
Henrique Dias	947b163ea7	fix: rules parsing	2024-07-22 22:25:50 +02:00
Henrique Dias	732cf5eff5	docs: fix readme highlighting	2024-07-22 19:22:25 +02:00
Henrique Dias	1e87b21bb1	docs: improve configuration section	2024-07-22 18:55:04 +02:00
Henrique Dias	6166061f20	docs: install, docker, systemd instructions	2024-07-22 18:55:04 +02:00
Henrique Dias	4f8eab48ab	fix: config parsing keys	2024-07-22 18:36:58 +02:00
Henrique Dias	7542860a47	fix: panic when getting requests	2024-07-22 18:32:57 +02:00
Henrique Dias	3688420246	feat: centrally defined defaults	2024-07-22 17:52:56 +02:00
Henrique Dias	47e3f6de6f	fix: remove 'v' from version name	2024-07-21 21:43:53 +02:00
Henrique Dias	356edb8b93	feat: add tests for json and toml config	2024-07-21 21:41:16 +02:00
Henrique Dias	b16c041d0c	fix: add 'v' prefix to version	2024-07-21 21:31:52 +02:00
Henrique Dias	dc45f32af8	fix: dockerfile build version	2024-07-21 21:25:49 +02:00
Henrique Dias	d1691e1bd1	fix: docker workflow tags	2024-07-21 21:03:23 +02:00
Henrique Dias	5f685dbe98	ci: new goreleaser workflow (#157 )	2024-07-21 21:01:03 +02:00
Henrique Dias	85219df921	ci: use cache for docker builds	2024-07-21 20:53:06 +02:00
Henrique Dias	c125bedae1	refactor: code cleanup, stricter config validation (#155 )	2024-07-21 20:52:50 +02:00
Henrique Dias	46d54e4465	ci: fix docker image attestation	2024-07-21 20:45:14 +02:00
Henrique Dias	90c031846d	ci: new docker release workflows	2024-07-21 20:32:59 +02:00

1 2 3

141 commits