beenull/sftpgo-mirror

mirror of https://github.com/drakkan/sftpgo.git synced 2024-11-25 09:00:27 +00:00

Author	SHA1	Message	Date
Nicola Murino	80fb56bc48	WebClient: validate PDF files before rendering Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-09-23 16:53:15 +02:00
Nicola Murino	836b36b816	WebClient/HTTP API: ensure to check home dir, when needed, in multi-node setups Behind a load balancer with no sticky sessions enabled is not enough to check the home dir only when the client logs in Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-09-08 11:55:08 +02:00
Nicola Murino	e7866047aa	allow to edit profile to users logged in via OIDC Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-08-01 21:49:53 +02:00
Nicola Murino	78a399eed4	download as zip: improve filename include username and also filename/directory name if the user downloads a single file/directory Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-07-26 17:53:04 +02:00
Nicola Murino	b34bc2b818	add license header to source files Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-07-18 13:43:25 +02:00
Nicola Murino	796ea1dde9	allow to store temporary sessions within the data provider so we can persist password reset codes, OIDC auth sessions and tokens. These features will also work in multi-node setups without sicky sessions now Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-05-19 19:49:51 +02:00
Nicola Murino	67abf03fe3	web UIs: move common css to a separate template file so we can reuse it instead of copying the same CSS every time Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-05-14 11:54:55 +02:00
Nicola Murino	5d7f6960f3	web UIs: add branding support Fixes #829 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-05-13 19:40:52 +02:00
Nicola Murino	1e0b3a2a8c	web client: add share mode read/write Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-05-09 19:09:43 +02:00
Nicola Murino	504cd3efda	add groups support Using groups simplifies the administration of multiple accounts by letting you assign settings once to a group, instead of multiple times to each individual user. Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-04-25 15:49:11 +02:00
Nicola Murino	002a06629e	refactoring of user session counters Fixes #792 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-04-14 19:07:41 +02:00
Nicola Murino	aaf940edab	enforce CSRF token usage by the same IP for which it was issued Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-03-26 08:41:50 +01:00
Nicola Murino	93b9c1617e	web UI: allow to load custom css Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-03-19 21:44:27 +01:00
Nicola Murino	5c2fd8d52a	add support for a start directory Fixes #705 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-03-03 12:44:56 +01:00
Nicola Murino	c19b03a3f7	shares: add permission to deny sharing without password Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-02-19 13:31:58 +01:00
Nicola Murino	c6b8644828	OIDC: execute pre-login hook after IDP authentication so the SFTPGo users can be auto-created using the hook Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-02-19 10:53:35 +01:00
Nicola Murino	f1832d4478	shares: add an upload form for shares with write scope Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-02-15 19:19:25 +01:00
Nicola Murino	66945c0a02	Web UIs: add OpenID Connect support Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-02-13 14:30:20 +01:00
Nicola Murino	9382db751c	make HTTP shares browsable if you share a single folder with read scope, you can now browse the share and download single files Fixes #674 See #677 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-02-06 16:46:43 +01:00
Nicola Murino	1f619d5ea6	make the sdk a separate module The SFTPGo SDK now is at the following URL https://github.com/sftpgo/sdk Fixes #657 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-01-06 11:54:43 +01:00
Nicola Murino	6d3d94a01f	move kms implementation outside the sdk package Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-01-06 10:11:47 +01:00
Nicola Murino	c153330ab8	web client: use fetch to upload files also add REST API to upload a single file as POST body	2021-12-08 19:25:22 +01:00
Nicola Murino	bedc8e288b	web client: add support for integrating external viewers/editors	2021-12-03 18:33:08 +01:00
Nicola Murino	3f3591bae0	web client: allow to preview images and pdf pdf depends on browser support. It does not work on mobile devices.	2021-11-25 19:24:32 +01:00
Nicola Murino	78233ff9a3	web UI/REST API: add password reset In order to reset the password from the admin/client user interface, an SMTP configuration must be added and the user/admin must have an email address. You can prohibit the reset functionality on a per-user basis by using a specific restriction. Fixes #597	2021-11-13 13:25:43 +01:00
Nicola Murino	3bc58f5988	WebClient/REST API: add sharing support	2021-11-06 14:13:20 +01:00
Nicola Murino	4aa9686e3b	refactor custom actions SFTPGo is now fully auditable, all fs and provider events that change something are notified and can be collected using hooks/plugins. There are some backward incompatible changes for command hooks	2021-10-10 13:08:05 +02:00
Nicola Murino	64e87d64bd	web client UI: allow to edit plain text files Fixes #567	2021-10-09 14:17:28 +02:00
Nicola Murino	ba1febba73	rework user and admin profiles users and admins can now also update their email and description	2021-09-29 18:46:15 +02:00
Nicola Murino	8a4c21b64a	add builtin two-factor auth support The builtin two-factor authentication is based on time-based one time passwords (RFC 6238) which works with Authy, Google Authenticator and other compatible apps.	2021-09-04 12:11:04 +02:00
Nicola Murino	fe953d6b38	REST API: add support for API key authentication	2021-08-17 18:08:32 +02:00
Nicola Murino	0503215e7a	web client: try to prevent browsers from caching requests Fixes #493	2021-08-03 19:58:03 +02:00
Nicola Murino	90b324d707	Add a link on the login pages to switch between admin and web client login The links are hidden if only the web admin or only thw web client is enabled and can also be controlled using the "hide_login_url" setting Fixes #485	2021-07-27 18:43:00 +02:00
Nicola Murino	3a22aae34f	web UI: add support for upload, create dirs, rename, delete	2021-07-26 20:55:49 +02:00
Nicola Murino	c41ae116eb	improve logging Fixes #381	2021-07-24 20:11:17 +02:00
Nicola Murino	bd5191dfc5	add experimental plugin system	2021-07-11 15:26:51 +02:00
Nicola Murino	076b2f0ee0	modules: add v2 support	2021-06-26 07:31:41 +02:00
Manuel Reithuber	88b10da596	updated utils.LoadTemplate() to call template.ParseFiles() directly and added a way to specify a base template (will be used in the next commit)	2021-06-19 19:27:54 +02:00
Nicola Murino	43182fc25e	OpenAPI: add users API These new APIs match the web client features. I'm aware that some API do not follow REST best practises. I want to avoid things likes "/user/folders/<path>" where "path" must be encoded and making it optional create issues, so I defined resources as query parameters instead of path parameters	2021-06-05 16:07:09 +02:00
Nicola Murino	575bcf1f03	add remote address to transfer and commands logs	2021-06-01 22:28:43 +02:00
Nicola Murino	423d8306be	webclient: allow to download multiple files as zip	2021-05-30 23:07:46 +02:00
Nicola Murino	7a85c66ee7	webclient: defer file list rendering combined with server side processing I can now list a directory with about 100.000 files in less than 2 seconds without losing client side filtering and pagination	2021-05-27 09:40:46 +02:00
Nicola Murino	25a44030f9	actions: add pre-download and pre-upload Downloads and uploads can be denied based on hook response	2021-05-26 07:48:37 +02:00
Nicola Murino	1223957f91	webclient: use different icons based on the file extension	2021-05-24 19:09:03 +02:00
Nicola Murino	b9bc8d722d	try to improve web client credentials page I should do the same for the admin page too	2021-05-22 09:54:27 +02:00
Nicola Murino	019b0f2fd5	http cookie: add max-age and samesite update deps too	2021-05-16 09:13:00 +02:00
Nicola Murino	c8f7fc9bc9	httpd/webdav: add a list of hosts allowed to send proxy headers X-Forwarded-For, X-Real-IP and X-Forwarded-Proto headers will be ignored for hosts not included in this list. This is a backward incompatible change, before the proxy headers were always used	2021-05-11 06:54:06 +02:00
Nicola Murino	8f6cdacd00	allow to limit the number of per-host connections	2021-05-08 19:45:21 +02:00
Nicola Murino	4ea4202b99	httpd/webdav: use a custom listener with read and write deadlines	2021-05-07 20:41:20 +02:00
Nicola Murino	23d9ebfc91	add a basic front-end web interface for end-users Fixes #339 #321 #398	2021-05-06 21:35:43 +02:00

50 commits