beenull/sftpgo-mirror

mirror of https://github.com/drakkan/sftpgo.git synced 2024-11-22 07:30:25 +00:00

Author	SHA1	Message	Date
Nicola Murino	363770ab84	WebClient shares: add a logout button Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-06-18 19:10:32 +02:00
Nicola Murino	d650defa08	remove duplicated jwt tokens validation Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-06-15 16:19:37 +02:00
Nicola Murino	bd5b32101f	csrf: reuse the cookie in reset password no need to generate a new cookie each time. Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-06-15 15:18:17 +02:00
Nicola Murino	01b666a78f	WebUIs: check login conditions before allowing password reset Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-06-14 19:34:42 +02:00
Nicola Murino	8294952474	WebUIs: refactor CSRF Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-06-14 18:09:32 +02:00
Nicola Murino	7fb5b1b996	reduce share token duration Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-06-08 12:13:38 +02:00
Nicola Murino	08526da153	REST API: fix token invalidation after password change Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-06-07 18:19:05 +02:00
Nicola Murino	6c94173ca1	WebUI branding: remove unused login_image_path from config Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-05-27 18:43:44 +02:00
Nicola Murino	50a3c0d911	defender: allow to impose a delay between login attempts Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-05-18 10:35:54 +02:00
Nicola Murino	eb0c6549c4	micro optimization Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-05-12 18:10:03 +02:00
Nicola Murino	5d24d665bd	add an util method to convert []byte to string Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-05-08 19:01:58 +02:00
Nicola Murino	ea898ed104	silence lint warning Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-05-04 09:52:27 +02:00
Nicola Murino	a1af33c6aa	WebClient: allow to set TLS certificates Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-05-03 18:30:03 +02:00
Nicola Murino	d3f42e39db	move server version setting to common section Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-05-01 19:42:09 +02:00
Nicola Murino	0a8a0ee771	revert #450 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-04-27 10:50:25 +02:00
Nicola Murino	2bcf05ca45	refactor for secrets management in API and private key handling in SFTPFs Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-04-26 16:17:24 +02:00
Nicola Murino	e1fdc10ef8	remove robots.txt endpoint This reverts #833 because the contributor did not respond to our request to sign the CLA Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-04-26 11:00:55 +02:00
Nicola Murino	456517af87	notifier plugin: add support for login succeeded events Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-04-10 18:39:08 +02:00
Nicola Murino	1196727448	dataretention: remove ignore_user_permissions Required permissions are now automatically granted as for any other filesystem action Fixes #1564 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-04-01 15:07:03 +02:00
Nicola Murino	aaae191710	WebAPI: ensure to check rootfs before creating directories Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-04-01 12:40:35 +02:00
Nicola Murino	db577b154e	webclient: add more test cases for shares Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-04-01 11:42:22 +02:00
Nicola Murino	fc023748c1	WebClient: improve file uploads Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-03-31 20:42:28 +02:00
Nicola Murino	cb3bc3f604	update OpenAPI definition Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-03-18 19:32:01 +01:00
Nicola Murino	cc9a0d4dc2	add time-based access restrictions Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-03-17 11:30:03 +01:00
Nicola Murino	26d3105f54	groups: add role placeholder Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-03-12 18:21:50 +01:00
Nicola Murino	f38966c6ac	WebClient: refactor long-running tasks to improve browser compatibility Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-03-11 18:19:57 +01:00
Nicola Murino	4d357a6a57	EventManager: allow to check for inactive users Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-03-04 19:48:10 +01:00
Nicola Murino	8b2188fcb6	remove some useless nil checks Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-03-02 18:49:07 +01:00
Nicola Murino	799fdd7098	allow IPs in defender safe list to exceed max per-host connections Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-02-27 18:22:21 +01:00
Nicola Murino	12f599fd65	WebUI: skip checks for static resource Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-02-25 18:19:21 +01:00
Nicola Murino	92911bda2b	require at least 2048 bits for RSA certificates/keys Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-02-25 11:12:57 +01:00
Nicola Murino	f7d9e56cac	ssh: remove moduli, log negotiated algorithms Fixes #1324 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-02-24 20:35:09 +01:00
Nicola Murino	a577d8b3cd	WebAdmin: allow to disable 2FA Before it was only possible using REST API Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-02-23 18:24:07 +01:00
Nicola Murino	76ffa107dd	check admins' two-factor requirements in the disable API as well Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-02-22 19:05:16 +01:00
Nicola Murino	9a6a65931e	two-factor auth: fixed validation of conflicting settings Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-02-22 18:20:51 +01:00
Nicola Murino	de089e51fd	Web: allow to require password change and two-factor for admins Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-02-21 20:45:10 +01:00
Nicola Murino	51ae2d7301	add copy permission Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-02-20 18:19:09 +01:00
Nicola Murino	e61fb42cbc	remove metadata plugin Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-02-17 12:30:47 +01:00
Nicola Murino	ad75543172	fix some new lint warnings Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-02-15 21:13:45 +01:00
Nicola Murino	1ff55bbfa7	add DirLister interface Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-02-15 20:53:56 +01:00
Nicola Murino	ae309d64c4	WebClient: disable indicator if we redirect from the login page Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-02-04 21:13:04 +01:00
Nicola Murino	8385acd0e3	Redirect to two-factor auth page after creating the first admin Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-02-04 20:58:29 +01:00
Nicola Murino	e5836c8118	WebUI: add a JSON helper function Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-02-04 18:16:10 +01:00
Nicola Murino	c23d779280	WebClient: load shares using an async request instead of rendering them directly within the template Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-02-04 14:33:51 +01:00
Nicola Murino	3158190945	WebClient: respect second factor requirements enforced at group level Fixes #1506 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-02-04 12:09:47 +01:00
Nicola Murino	6074ed21f7	dataproviders: return an uniform error for foreign key violations Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-02-03 14:24:50 +01:00
Nicola Murino	71e01ab26d	new WebAdmin: add test cases Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-02-03 12:42:05 +01:00
Nicola Murino	ad80d4e475	WIP new WebAdmin: event rules Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-02-01 20:32:43 +01:00
Nicola Murino	c85601146d	WIP new WebAdmin: event actions Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-01-31 20:49:25 +01:00
Nicola Murino	143d4611ba	WIP new WebAdmin: events page Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-01-28 19:38:01 +01:00

1 2 3 4 5

233 commits