beenull/sftpgo-mirror

mirror of https://github.com/drakkan/sftpgo.git synced 2024-11-22 23:50:32 +00:00

Author	SHA1	Message	Date
Nicola Murino	59bdd4bc4e	WebClient: add support for more languages to the editor Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-11-18 14:17:28 +01:00
Nicola Murino	6439569f36	WebClient: add csp nonce to CodeMirror Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-11-18 11:18:31 +01:00
Nicola Murino	50a9ac0163	WebClient: use standard HTML5 video tag video-js does not work well with CSP Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-11-17 21:42:22 +01:00
Nicola Murino	1a765c7ff7	WebClient share: add a download page Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-11-17 19:10:03 +01:00
Nicola Murino	61e6cc6985	WebClient: remove remaining inline onclick events Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-11-16 18:55:14 +01:00
Nicola Murino	37b0c229fc	Web UI: propagate CSPNonce to templates Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-11-15 18:48:16 +01:00
Nicola Murino	d32d0d7587	WebClient: remove href to javascript Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-11-14 19:59:53 +01:00
Nicola Murino	3c522961af	WebClient: remove inline onclick from file edit page Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-11-14 19:41:20 +01:00
Nicola Murino	2d9e7dfba2	WebClient: remove inline onclick from MFA page Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-11-14 19:38:09 +01:00
Nicola Murino	4a737be421	WebClient: replace some inline onclick with event listeners Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-11-13 22:09:55 +01:00
Nicola Murino	450ae868ff	WebClient: update theme to the latest version Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-11-12 16:28:21 +01:00
Nicola Murino	894e12e285	WebClient: refactor alerts Fix events handling on disabling MFA Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-11-07 18:52:05 +01:00
Nicola Murino	96c614550f	WebClient: remove inline style from HTML elements Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-11-07 18:09:24 +01:00
Nicola Murino	6295be786f	WebClient: add a ping URL Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-11-06 19:58:39 +01:00
Nicola Murino	d5a9bec3da	WebClient: allow bulk move or copy actions Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-11-06 19:10:35 +01:00
Nicola Murino	9e9d6a5585	WebClient: allow to share multiple items from the files page Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-11-06 18:46:12 +01:00
Nicola Murino	9456884584	WebClient: fix display of long usernames in dropdown menu Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-11-05 17:33:16 +01:00
Nicola Murino	010c36cab5	WebClient: allow to set a list of default CSS The new WIP WebClient requires 2 CSS files Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-11-05 17:30:33 +01:00
Nicola Murino	9322701615	WIP: new WebClient UI Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-11-05 17:26:29 +01:00
Nicola Murino	daf643596d	WebClient: fix icon for 0 byte files Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-10-29 08:27:00 +01:00
Nicola Murino	bc8d71dfc7	editfiles: fix label Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-10-29 08:18:58 +01:00
Nicola Murino	8c31cc47b0	web UIs: fix dismissable alerts alerts can now be shown again after the user dismissal Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-10-29 08:17:24 +01:00
Nicola Murino	e88172dd7e	back to development Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-07-15 12:35:30 +02:00
Nicola Murino	a38ce460bb	WebClient: show user quota Also remove per-source data transfer limits. This was an oversight Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-06-16 21:06:21 +02:00
Nicola Murino	f938af5a61	WebClient: fix sorting by size Fixes #1313 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-06-04 21:45:31 +02:00
Nicola Murino	ae7954eee2	WebUIs: fix disclaimer paths Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-05-26 17:59:38 +02:00
Nicola Murino	184b99d500	user: add a field to indicate whether the password is set A structure similar to the one used for secrets would be better, but we don't want to break backwards compatibility. Also document that omitting the password field in the request body will preserve the current password when updating a user using the REST API. Added a test case for this. Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-04-06 18:22:09 +02:00
Nicola Murino	7e85356325	WebClient shares: replace basic auth with a login form basic auth will continue to work for REST API Fixes #1166 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-02-12 08:29:53 +01:00
Nicola Murino	04ab8e72f6	WebUI: make error messages user dismissible Fixes #1171 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-02-10 18:07:23 +01:00
Nicola Murino	1b1745b7f7	move IP/Network lists to the data provider this is a backward incompatible change, all previous file based IP/network lists will not work anymore Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-02-09 09:33:33 +01:00
Daniel Hammer	bbebd9b163	"Spell-Jacking" mitigation ~ prevent sensitive data leak from spell checker. @see https://www.otto-js.com/news/article/chrome-and-edge-enhanced-spellcheck-features-expose-pii-even-your-passwords Signed-off-by: Daniel Hammer <daniel.hammer+oss@gmail.com>	2023-01-16 19:23:43 +01:00
Nicola Murino	0190d0b849	update Copyright year Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-01-03 10:18:30 +01:00
Nicola Murino	2611dd2c98	eventmanager: add support for pre-* actions Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-01-01 17:59:41 +01:00
Nicola Murino	15ad31da54	WebClient: add copy action Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-12-30 19:30:16 +01:00
Nicola Murino	75d911f29e	WebAdmin: allow to search and export event logs Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-12-07 18:47:38 +01:00
Nicola Murino	6ebe7691db	WebClient: add drag and drop upload UI thanks to @wooneusean for the help Fixes #951 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-11-19 12:31:03 +01:00
Nicola Murino	965d059400	WebUI: try harder to prevent browsers from auto-filling in password fields Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-11-03 19:57:43 +01:00
Nicola Murino	6f422c3d8b	WebClient: make folder deletion recursive Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-10-27 08:27:44 +02:00
Nicola Murino	7e0b62b703	update swagger-ui, codemirror, video-js Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-10-16 18:29:42 +02:00
Nicola Murino	a538255034	httpclient: add leaf certificates Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-09-23 17:49:42 +02:00
Nicola Murino	7f19f9f39c	WebClient: allow partial download of shared files each partial download will count as a share usage Fixes #970 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-09-19 19:58:35 +02:00
Nicola Murino	f8a19f747d	WebUI: improve HTML escaping Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-09-13 19:16:07 +02:00
Nicola Murino	3267a50ae3	MFA: allow recovery codes only if two-factor auth is enabled Fixes #965 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-08-31 09:29:39 +02:00
Nicola Murino	2a827544ef	allow to edit profile to users logged in via OIDC Fixes #942 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-08-01 19:41:18 +02:00
Nicola Murino	e059197398	WebClient: show images as gallery Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-07-23 21:12:16 +02:00
Nicola Murino	a0bbcf6ebb	web client: add HTML5 player See #914 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-07-21 18:42:22 +02:00
Nicola Murino	d5946da1e2	OIDC: allow to enable only OIDC login for Web UIs Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-07-19 22:25:00 +02:00
Nicola Murino	21682d1c1d	add license header to source files Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-07-17 20:16:00 +02:00
Nicola Murino	ecf715880f	update docs Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-06-03 14:36:38 +02:00
Nicola Murino	f536c64043	admin UI: allow to control columns visibility and ordering Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-05-22 11:45:49 +02:00
Nicola Murino	0ecaa862bd	web UIs: allow to replace the default CSS Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-05-21 11:05:58 +02:00
Nicola Murino	c9bd08cf9c	UI branding: use the short name on the login pages Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-05-15 07:30:36 +02:00
Nicola Murino	67abf03fe3	web UIs: move common css to a separate template file so we can reuse it instead of copying the same CSS every time Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-05-14 11:54:55 +02:00
Nicola Murino	5d7f6960f3	web UIs: add branding support Fixes #829 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-05-13 19:40:52 +02:00
Paul Laffitte	4bea9ed760	add sftpgo logo on login pages (#835 ) Signed-off-by: Paul Laffitte <paul.laffitte@enix.fr>	2022-05-13 17:12:52 +02:00
Nicola Murino	1e0b3a2a8c	web client: add share mode read/write Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-05-09 19:09:43 +02:00
Nicola Murino	16a44a144b	webclient: don't restore checkbox status Fixes #807 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-04-26 09:15:26 +02:00
Nicola Murino	93b9c1617e	web UI: allow to load custom css Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-03-19 21:44:27 +01:00
Nicola Murino	f1832d4478	shares: add an upload form for shares with write scope Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-02-15 19:19:25 +01:00
Nicola Murino	66945c0a02	Web UIs: add OpenID Connect support Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-02-13 14:30:20 +01:00
Nicola Murino	9382db751c	make HTTP shares browsable if you share a single folder with read scope, you can now browse the share and download single files Fixes #674 See #677 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-02-06 16:46:43 +01:00
Nicola Murino	1c51239da8	Admin UI: allow to create multiple users/folders from templates the clone button is not needed anymore, you can select a user and click on template to generate one or more similar users or you can create users/folders from an empty template Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-01-12 19:01:19 +01:00
Nicola Murino	4d7a4aa99a	check rename source and target	2021-12-28 12:03:52 +01:00
Nicola Murino	59bb578b89	web client: allow to move files between folders Fixes #653	2021-12-25 17:13:23 +01:00
Nicola Murino	0bb141960f	add support for different bandwidth limits based on client IP	2021-12-10 18:43:26 +01:00
Nicola Murino	c153330ab8	web client: use fetch to upload files also add REST API to upload a single file as POST body	2021-12-08 19:25:22 +01:00
Nicola Murino	dc1cc88a46	keyboard interactive hooks: allow to validate passcode	2021-12-04 15:14:44 +01:00
Nicola Murino	3f5451eab6	web client: save/restore file list preferences	2021-12-04 07:58:49 +01:00
Nicola Murino	bedc8e288b	web client: add support for integrating external viewers/editors	2021-12-03 18:33:08 +01:00
Nicola Murino	4df0ae82ac	web client: allow downloading of single shared files without compression Fixes #629	2021-11-30 20:32:10 +01:00
Nicola Murino	5db31f0fb3	web client: allow to upload/delete multiple files	2021-11-30 18:40:50 +01:00
Nicola Murino	dc19921b0c	web client: don't show the link for expired shares	2021-11-25 20:09:11 +01:00
Nicola Murino	3f3591bae0	web client: allow to preview images and pdf pdf depends on browser support. It does not work on mobile devices.	2021-11-25 19:24:32 +01:00
Nicola Murino	8a8298ad46	web client: improve file upload	2021-11-22 12:25:36 +01:00
Nicola Murino	78233ff9a3	web UI/REST API: add password reset In order to reset the password from the admin/client user interface, an SMTP configuration must be added and the user/admin must have an email address. You can prohibit the reset functionality on a per-user basis by using a specific restriction. Fixes #597	2021-11-13 13:25:43 +01:00
Nicola Murino	3bc58f5988	WebClient/REST API: add sharing support	2021-11-06 14:13:20 +01:00
Nicola Murino	64e87d64bd	web client UI: allow to edit plain text files Fixes #567	2021-10-09 14:17:28 +02:00
Nicola Murino	ba1febba73	rework user and admin profiles users and admins can now also update their email and description	2021-09-29 18:46:15 +02:00
Nicola Murino	7bad65a43e	user: add a permission to disable changing api key authentication also implement the missing APIs to enable/disable api key authentication	2021-09-06 18:46:35 +02:00
Nicola Murino	101c2962ab	web client UI: add a permission to disable password change Fixes #528	2021-09-05 18:49:13 +02:00
Nicola Murino	8a4c21b64a	add builtin two-factor auth support The builtin two-factor authentication is based on time-based one time passwords (RFC 6238) which works with Authy, Google Authenticator and other compatible apps.	2021-09-04 12:11:04 +02:00
Nicola Murino	fe953d6b38	REST API: add support for API key authentication	2021-08-17 18:08:32 +02:00
Nicola Murino	0503215e7a	web client: try to prevent browsers from caching requests Fixes #493	2021-08-03 19:58:03 +02:00
Nicola Murino	90b324d707	Add a link on the login pages to switch between admin and web client login The links are hidden if only the web admin or only thw web client is enabled and can also be controlled using the "hide_login_url" setting Fixes #485	2021-07-27 18:43:00 +02:00
Nicola Murino	3a22aae34f	web UI: add support for upload, create dirs, rename, delete	2021-07-26 20:55:49 +02:00
Nicola Murino	4be6307d87	webadmin: add defender page	2021-06-08 13:24:28 +02:00
Nicola Murino	43182fc25e	OpenAPI: add users API These new APIs match the web client features. I'm aware that some API do not follow REST best practises. I want to avoid things likes "/user/folders/<path>" where "path" must be encoded and making it optional create issues, so I defined resources as query parameters instead of path parameters	2021-06-05 16:07:09 +02:00
Nicola Murino	423d8306be	webclient: allow to download multiple files as zip	2021-05-30 23:07:46 +02:00
Nicola Murino	7a85c66ee7	webclient: defer file list rendering combined with server side processing I can now list a directory with about 100.000 files in less than 2 seconds without losing client side filtering and pagination	2021-05-27 09:40:46 +02:00
Nicola Murino	1223957f91	webclient: use different icons based on the file extension	2021-05-24 19:09:03 +02:00
Nicola Murino	50e441849a	try to make the web admin more user friendly removed all the textarea with fields separated using "::". This should, hopefully, improve user experience	2021-05-23 22:02:01 +02:00
Nicola Murino	b9bc8d722d	try to improve web client credentials page I should do the same for the admin page too	2021-05-22 09:54:27 +02:00
Nicola Murino	f2b93c0402	add a setup screen to create the first admin user If you prefer to auto-create the first admin you can enable the "create_default_admin" configuration key and SFTPGo will work as before. You can also create the first admin by loading initial data: now you can set both username and password, before you could only change the password	2021-05-14 19:21:15 +02:00
Nicola Murino	c8f7fc9bc9	httpd/webdav: add a list of hosts allowed to send proxy headers X-Forwarded-For, X-Real-IP and X-Forwarded-Proto headers will be ignored for hosts not included in this list. This is a backward incompatible change, before the proxy headers were always used	2021-05-11 06:54:06 +02:00
Nicola Murino	4ea4202b99	httpd/webdav: use a custom listener with read and write deadlines	2021-05-07 20:41:20 +02:00
Nicola Murino	23d9ebfc91	add a basic front-end web interface for end-users Fixes #339 #321 #398	2021-05-06 21:35:43 +02:00

1 2 3

146 commits