beenull/sftpgo-mirror

mirror of https://github.com/drakkan/sftpgo.git synced 2024-11-22 07:30:25 +00:00

Author	SHA1	Message	Date
Nicola Murino	52ec36dbd6	update pwd reset template. Update deps and use new features from the OIDC library Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-05-17 18:10:57 +02:00
Nicola Murino	e0d9b8bddf	WebClient: update password change timestamp after password reset Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-05-16 19:15:45 +02:00
Nicola Murino	19da923369	webdav: add support for parsing more time formats Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-05-16 18:51:42 +02:00
Nicola Murino	adad8e658b	osfs: add optional buffering Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-05-16 18:08:14 +02:00
Nicola Murino	e10487ad57	EventManager: improve automatic detection of JSON body Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-05-12 19:22:50 +02:00
Nicola Murino	4eded56d5f	add support for log events Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-05-12 18:34:59 +02:00
Nicola Murino	05c54614b2	back to development Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-05-05 19:12:50 +02:00
Nicola Murino	32020e236f	set version to 2.5.0 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-05-03 13:07:48 +02:00
Nicola Murino	ee5b7290a0	EventManager: add more debug logs for HTTP actions Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-04-25 20:27:40 +02:00
Nicola Murino	712f2053a4	REST API dumpdata: allow to specify the resources to dump Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-04-18 18:11:23 +02:00
Nicola Murino	d0a171558d	fix test cases for system commands Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-04-15 16:09:53 +02:00
Nicola Murino	1ade850557	add a log to better debug a randomically failing test case Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-04-15 15:08:42 +02:00
Nicola Murino	466f2e88b3	WebClient: fix rename Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-04-15 14:16:26 +02:00
Nicola Murino	3cb53b2c33	fix cross folder copy also update css/js deps and other minor changes Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-04-13 18:23:42 +02:00
Nicola Murino	6279216c2e	webdav: fix GET as PROPFIND if a prefix is defined Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-04-09 20:17:37 +02:00
Nicola Murino	5219c1fdd1	back to development Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-04-08 19:00:05 +02:00
Nicola Murino	4294659785	try harder to convert transfer errors in well-known error types Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-04-08 14:55:04 +02:00
Nicola Murino	f03f1b0156	improve test cases coverage Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-04-08 10:01:48 +02:00
Nicola Murino	184b99d500	user: add a field to indicate whether the password is set A structure similar to the one used for secrets would be better, but we don't want to break backwards compatibility. Also document that omitting the password field in the request body will preserve the current password when updating a user using the REST API. Added a test case for this. Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-04-06 18:22:09 +02:00
Nicola Murino	74f05e5305	EventManager: check the parent directory before creating a zip Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-04-03 18:53:13 +02:00
Nicola Murino	ee90bfb506	add unixcrypt build tag Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-03-26 10:33:30 +02:00
Nicola Murino	e17068a76f	postgres provider: add support for load balancing Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-03-25 09:29:13 +01:00
Nicola Murino	354fc9b3d6	OIDC: allow to extract custom fields from sub-structs Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-03-23 18:15:07 +01:00
Nicola Murino	e29f6857db	EventManager: add IDP login trigger and check account action Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-03-22 19:02:54 +01:00
Nicola Murino	2710207779	update jquery, go deps, actions/setup-go to v4 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-03-15 18:44:08 +01:00
Nicola Murino	84396343da	fix some codeql warnings Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-03-10 17:30:06 +01:00
Nicola Murino	0423e8f157	httpd: generate defender events for failed 2fa and password resets Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-03-04 13:55:48 +01:00
Nicola Murino	bdcee06665	WebClient: remove the default upload size limit Users who want a limit can still set it. By default, we want to allow uploads of any size Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-03-02 18:26:21 +01:00
Nicola Murino	4ba3ae876d	allow to set password strength at user/group level Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-03-02 09:11:30 +01:00
Nicola Murino	662164c7ff	smtp: require templates only if a server is configured or in service mode This regression was introduced after recent changes to allow setting the SMTP settings from the WebAdmin UI. Fixes #1217 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-03-01 18:31:02 +01:00
Nicola Murino	fad6af11e5	don't expose error messages from pre-actions and post connect hooks always return a generic error instead to avoid leaking internal info Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-02-28 18:01:09 +01:00
Nicola Murino	dba088daed	printf: replace %#v with the more explicit %q Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-02-27 19:19:57 +01:00
Nicola Murino	a23fdea9e3	ftpd: allow hostnames as passive IP Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-02-27 19:19:50 +01:00
Nicola Murino	561976bcd0	WebClient: return proper status code for http.MaxBytesError Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-02-27 11:03:05 +01:00
Nicola Murino	874776bd12	also capture logs for pre-login and check-password commands Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-02-26 15:15:34 +01:00
Felix Eckhofer	ec67b67e9e	Send output from external_auth_hook to logs Signed-off-by: Felix Eckhofer <felix@eckhofer.com>	2023-02-26 07:39:34 +01:00
Nicola Murino	e0cbb966f0	eventmanager: skip password expiration check for expired users Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-02-25 16:33:39 +01:00
Nicola Murino	df9d47900a	eventmanager: add user/folders as comma separated string in errors Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-02-25 15:26:38 +01:00
Nicola Murino	b8496c4d6e	eventmanager: add user expiration check Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-02-25 13:06:09 +01:00
Nicola Murino	b0cfaf189c	portable mode: allow to read the password from a file Fixes #1206 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-02-25 10:24:23 +01:00
Nicola Murino	195cb9f081	enable keyboard interactive authentication by default Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-02-24 20:22:32 +01:00
Nicola Murino	9a10740218	allow ACME HTTP-01 challenge with https redirect from port 80 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-02-24 20:08:14 +01:00
Nicola Murino	7bcd79a70a	telemetry: improve test cases remove an unnecessary nil check in tlsutils added as workaround to make telemetry test cases work Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-02-24 11:05:46 +01:00
Nicola Murino	8805d85377	configs: add ACME section Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-02-23 19:25:20 +01:00
Nicola Murino	fcf9a8c673	scheduler: disable verbose logs Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-02-21 18:18:24 +01:00
Nicola Murino	2c1319985d	sql providers: remove unnecessary []byte to string conversion always check affected rows for updates Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-02-20 18:14:02 +01:00
Nicola Murino	a3fff56da5	WebAdmin: add configs section Setting configurations is an experimental feature and is not currently supported in the REST API Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-02-19 19:03:45 +01:00
Nicola Murino	78cd5d8eba	groups: add expiration date override Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-02-13 19:32:36 +01:00
Nicola Murino	2df2803a37	ipfilter plugin: add protocol Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-02-13 13:45:45 +01:00
Nicola Murino	7738faa040	events: add elapsed to UI and exports Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-02-13 12:58:21 +01:00
Nicola Murino	157d1db0b1	fs events: add elapsed field to notifications Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-02-12 18:56:53 +01:00
Nicola Murino	7e85356325	WebClient shares: replace basic auth with a login form basic auth will continue to work for REST API Fixes #1166 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-02-12 08:29:53 +01:00
Nicola Murino	a3d0cf5ddf	fix lint errors Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-02-10 19:59:03 +01:00
Nicola Murino	04ab8e72f6	WebUI: make error messages user dismissible Fixes #1171 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-02-10 18:07:23 +01:00
Nicola Murino	e0c3a13ac5	azblob: update to the latest SDK Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-02-09 13:04:12 +01:00
Nicola Murino	1b1745b7f7	move IP/Network lists to the data provider this is a backward incompatible change, all previous file based IP/network lists will not work anymore Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-02-09 09:33:33 +01:00
Nicola Murino	1e14d006b1	defender: set score_no_auth to 0 as default Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-01-29 18:00:27 +01:00
Nicola Murino	27c4ffd663	sftpd: fix duplicate defender error introduced in the previous commit improve the defender test cases by verifying the expected score Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-01-25 21:57:27 +01:00
Nicola Murino	c0fe08b597	defender: allow to set a different score for "no auth tried" events Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-01-25 18:49:03 +01:00
Nicola Murino	5550a5d2c0	update users: also disconnect users from remote nodes when requested Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-01-24 18:53:34 +01:00
Nicola Murino	2066ad7c83	WebDAV: allow to define custom MIME type mappings Fixes #1154 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-01-23 18:43:25 +01:00
Nicola Murino	61199172d0	add support for monitoring and reloading externally provided TLS certs Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-01-22 18:31:14 +01:00
Nicola Murino	3ce4d04b27	EventManager: support placeholders within URL paths Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-01-22 08:46:58 +01:00
Nicola Murino	707729ee61	acme: allow to separate multiple domains with spaces This change is required to be able to set multiple domains for the same certificate using env vars. The change is backward compatible for general use cases but may be backward incompatible in some edge cases, for example: - "sftpgo.com,www.sftpgo.com" will work as before - "sftpgo.com, www.sftpgo.com" will not work anymore Check the logs to see if you are affected and rename the certificate and key to fix Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-01-21 18:00:23 +01:00
Nicola Murino	7b5bebc588	EventManager: add "on-demand" trigger Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-01-21 15:41:24 +01:00
Nicola Murino	53f17b5715	allow to disable event rules Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-01-19 18:33:04 +01:00
Nicola Murino	496c8bc785	allow to start if only httpd service is enabled Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-01-17 18:22:04 +01:00
Nicola Murino	c8d94f0a27	add a health check command Useful in restricted environments where commands like curl and such are not available. Fixes #1129 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-01-16 18:54:42 +01:00
Nicola Murino	f2618e7de6	switch from go-simple-mail to go-mail Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-01-15 15:28:31 +01:00
Nicola Murino	93e5cb36df	copy: use server side copy if available Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-01-07 16:28:46 +01:00
Nicola Murino	09dea57850	back to development Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-01-07 13:07:41 +01:00
Nicola Murino	8cad436421	conditional support for recursive renaming for cloud providers Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-01-06 12:33:50 +01:00
Nicola Murino	f0dedbfabf	eventmanager: auto-create destination folder for renames Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-01-03 18:13:01 +01:00
Nicola Murino	51f0ded222	update test certificates Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-01-03 11:48:08 +01:00
Nicola Murino	0190d0b849	update Copyright year Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-01-03 10:18:30 +01:00
Nicola Murino	7fa0959af4	eventmanager: add support for global star path matching This introduce a backward incompatible change for filesystem path matching in the Event Manager, now patterns like ".txt" will no longer match any file with the "txt" suffix, you need to change them to "//.txt". Also change pre-delete behaviour, now if an error is returned the client will get a permission denied error. This is the same as the other pre-* action. Previously it was not possible to deny deletion of a file. Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-01-02 15:59:00 +01:00
Nicola Murino	2611dd2c98	eventmanager: add support for pre-* actions Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-01-01 17:59:41 +01:00
Nicola Murino	6cebc037a0	eventmanager: check disk quota before executing the compress action Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-12-31 16:41:32 +01:00
Nicola Murino	15ad31da54	WebClient: add copy action Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-12-30 19:30:16 +01:00
Nicola Murino	ea4c4dd57f	eventmanager: add copy action refactor sftpgo-copy and sftpgo-remove commands Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-12-27 18:51:53 +01:00
Nicola Murino	e5a8220b8a	REST API: add location header to 201 responses Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-12-23 13:08:04 +01:00
Nicola Murino	0841c7d7bd	REST API: remove merging of fields on updates we use PUT verb not PATCH. We keep merging only to allow to preserve hidden/encrypted fields. This is a backward incompatible change, but is necessary to avoid unexpected issues. You have to pass complete objects on updates. Fixes #1088 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-12-23 09:36:20 +01:00
Nicola Murino	e17975ed7d	dataprovider: include port in node name and make it a hash Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-12-20 16:40:32 +01:00
Nicola Murino	6270b2c2d3	eventmanager: log a get task error only when required Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-12-19 18:10:40 +01:00
Nicola Murino	0296e0cafa	gcsfs: allow to customize upload part size/time Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-12-18 11:51:46 +01:00
Nicola Murino	147ad3b230	respect token validation mode for CSRF header Fixes #1104 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-12-16 19:14:56 +01:00
Nicola Murino	2da3eabc12	eventmanager: add password notification check action this action allow to send an email notification to users whose password is about to expire Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-12-16 18:51:29 +01:00
Nicola Murino	ac91170d65	S3: improve "directories" detection Fixes #1097 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-12-13 08:55:01 +01:00
Nicola Murino	f13b901f2d	local fs: fixed paths validation for some Windows specific edge cases Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-12-12 10:40:04 +01:00
Nicola Murino	ad5d657a1a	add support for password policies you can now set a password expiration and the password change requirement Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-12-11 17:15:34 +01:00
Nicola Murino	e2bebc99d1	AzureBlobs: update SDK to v0.6.1 Remove path escape for blob names, this issue is now fixed within the SDK Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-12-10 09:44:14 +01:00
Nicola Murino	926dcbbc63	add a CLI command to reset admin passwords Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-12-09 18:28:16 +01:00
Nicola Murino	a7f9581d99	provider events: add support for omit_object_data search param Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-12-08 10:02:12 +01:00
Nicola Murino	75d911f29e	WebAdmin: allow to search and export event logs Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-12-07 18:47:38 +01:00
Nicola Murino	91e4a54385	fix build with some features disabled Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-12-04 08:44:45 +01:00
Nicola Murino	221a4878aa	eventmanager: allow to filter based on role name Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-12-03 17:47:43 +01:00
Nicola Murino	1f9cf194fe	add role to events Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-12-03 11:45:27 +01:00
Nicola Murino	e87118d2a8	allow WebClient login with multi-step auth enabled Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-11-29 18:43:48 +01:00
Nicola Murino	fe888729f9	back to development Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-11-27 12:15:56 +01:00
Nicola Murino	ba9fe38b8b	azblob: handle dirs metadata Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-11-24 18:14:24 +01:00

1 2 3 4 5

250 commits