beenull/sftpgo-mirror

mirror of https://github.com/drakkan/sftpgo.git synced 2024-11-22 07:30:25 +00:00

Author	SHA1	Message	Date
Nicola Murino	550158ff4b	fix database reset Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-06-13 19:40:24 +02:00
Nicola Murino	049c2b7430	mysql: groups is a reserved keyfrom since MySQL 8.0.2 add mysql to CI Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-06-10 17:36:26 +02:00
Nicola Murino	b60255752f	web UIs: fix date formatting on Safari Fixes #869 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-06-09 09:47:02 +02:00
Nicola Murino	b2e28fe3a2	groups: apply placeholders to the fs config of virtual folders Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-06-02 09:45:01 +02:00
Nicola Murino	cc2f23bd89	trim values for string lists which can be set as env vars See #857 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-05-31 18:22:18 +02:00
Nicola Murino	7c724e18fe	add support for ACME compliant certificate authorities Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-05-27 07:39:55 +02:00
Nicola Murino	f536c64043	admin UI: allow to control columns visibility and ordering Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-05-22 11:45:49 +02:00
Nicola Murino	751946f47a	allow to customize timeout and env vars for program based hooks Fixes #847 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-05-20 19:30:54 +02:00
Nicola Murino	796ea1dde9	allow to store temporary sessions within the data provider so we can persist password reset codes, OIDC auth sessions and tokens. These features will also work in multi-node setups without sicky sessions now Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-05-19 19:49:51 +02:00
Tim Birkett	a87aa9b98e	feat: make MFA status visible in WebAdmin (#844 ) Signed-off-by: Tim Birkett <tim.birkett@sainsburys.co.uk>	2022-05-17 19:27:12 +02:00
Nicola Murino	9abd186166	external auth http hook: properly serialize the user in the POST body For historical reasons we send the json serialized user as a string field. I Initially copied the code used in the script hook where it is appropriate to convert the JSON user to string. After some time I have noticed this error, I know that changing it now might break existing external authentication hooks but we cannot continue with this mistake, new users are surprised by this behavior, sorry Fixes #836 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-05-15 18:26:07 +02:00
Nicola Murino	18d0bf9dc3	execute db migrations holding a database-level lock so migrations cannot be executed concurrently if you run them from multiple SFTPGo instances at the same time. CockroachDB doesn't support database-level locks Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-05-15 15:25:12 +02:00
Nicola Murino	67abf03fe3	web UIs: move common css to a separate template file so we can reuse it instead of copying the same CSS every time Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-05-14 11:54:55 +02:00
Nicola Murino	1e0b3a2a8c	web client: add share mode read/write Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-05-09 19:09:43 +02:00
Nicola Murino	e72bb1e124	allow building with bolt provider disabled Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-05-09 11:19:29 +02:00
Nicola Murino	14fb6c4038	always check recently updated users also fix the query to get users for quota check for sql based providers Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-04-30 11:59:36 +02:00
Nicola Murino	dd9c5b2149	sql provider: enhanced folder mapping query using an upsert Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-04-28 14:49:57 +02:00
Nicola Murino	ecd488a840	data provider: remove prefer_database_credentials Google Cloud Storage credentials are now always stored within the data provider. Added a migration to read credentials from disk and store them inside the data provider. After v2.3 we can also remove credentials_path Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-04-28 12:55:01 +02:00
Nicola Murino	4a44a7dfe1	improved readlink handling Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-04-27 18:38:46 +02:00
Nicola Murino	504cd3efda	add groups support Using groups simplifies the administration of multiple accounts by letting you assign settings once to a group, instead of multiple times to each individual user. Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-04-25 15:49:11 +02:00
Nicola Murino	cacfffc5bf	OIDC: add support for custom fields These fields can be used in the pre-login hook to implement custom logics Fixes #787 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-04-12 19:31:25 +02:00
Nicola Murino	5a40f998ae	check and update the password hashing algorithm on user login also add ldap md5 variant as per-user request Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-04-02 22:20:21 +02:00
Nicola Murino	77f3400161	allow to mount virtual folders on root (/) path Fixes #783 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-04-02 18:32:46 +02:00
Nicola Murino	5c114b28e3	sshd: we don't need the user certificate Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-03-31 18:16:50 +02:00
Nicola Murino	93b9c1617e	web UI: allow to load custom css Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-03-19 21:44:27 +01:00
Nicola Murino	883a3dceaf	db defender: fix getHost query and add more test cases Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-03-16 18:22:08 +01:00
lucatiozzo91	7b86e2ac59	always show banned host in ui When an host is banned but the updated_time field is in the past the ui didn't show the record. Fixes #758 Signed-off-by: lucatiozzo91 <luca.tiozzo91@gmail.com>	2022-03-16 17:38:29 +01:00
Nicola Murino	5582f5c811	data provider: add automatic backups Automatic backup are enabled by default, a new backup will be saved each day at midnight. The backups_path setting was moved from the httpd section to the data_provider one, please adjust your configuration file and or your env vars Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-03-13 13:45:07 +01:00
Nicola Murino	d8de0faef5	allow to require two-factor auth for users Fixes #721 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-03-06 16:57:13 +01:00
Nicola Murino	056daaddfc	always execute fs checks for users not logged in after an update Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-03-03 19:31:54 +01:00
Nicola Murino	5c2fd8d52a	add support for a start directory Fixes #705 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-03-03 12:44:56 +01:00
Nicola Murino	1ea7429921	initprovider: add load data options Fixes #741 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-02-28 17:05:18 +01:00
Nicola Murino	dcc3292dbc	web setup: add an optional installation code The purpose of this code is to prevent anyone who can access to the initial setup screen from creating an admin user Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-02-27 13:08:47 +01:00
Nicola Murino	b64d3c2fbf	simplify rename permission before this patch we allow a rename in the following cases: - the user has rename permission on both source and target path - the user has delete permission on source path and create/upload on target path we now check only the rename/rename_files/rename_dirs permissions. This is what SFTPGo users expect. This is a backward incompatible change and it will not backported to the 2.2.x branch Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-02-26 12:19:09 +01:00
Nicola Murino	4e9dae6fa4	allow to cache external authentications Fixes #733 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-02-25 11:51:10 +01:00
Nicola Murino	f5a0559be6	don't execute fs check if the user has recent activity The check could be expensive with some backends and is generally only required the first time that a user logs in Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-02-24 16:11:35 +01:00
Nicola Murino	c19b03a3f7	shares: add permission to deny sharing without password Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-02-19 13:31:58 +01:00
Nicola Murino	c6b8644828	OIDC: execute pre-login hook after IDP authentication so the SFTPGo users can be auto-created using the hook Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-02-19 10:53:35 +01:00
Nicola Murino	fa0ca8fe89	quota summary and docs improvements Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-02-08 12:43:08 +01:00
Nicola Murino	9382db751c	make HTTP shares browsable if you share a single folder with read scope, you can now browse the share and download single files Fixes #674 See #677 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-02-06 16:46:43 +01:00
Nicola Murino	d51adb041e	update data transfer quota only if the current IP has some limits Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-01-31 19:30:25 +01:00
Nicola Murino	02db00d008	dataprovider: add naming rules naming rules allow to support case insensitive usernames, trim trailing and leading white spaces, and accept any valid UTF-8 characters in usernames. If you were enabling `skip_natural_keys_validation` now you need to set `naming_rules` to `1` Fixes #687 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-01-31 18:01:37 +01:00
Nicola Murino	fb2d59ec92	data provider: add config options for certs validation/authentication Fixes #682 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-01-30 18:04:03 +01:00
Nicola Murino	1df1225eed	add support for data transfer bandwidth limits with total limit or separate settings for uploads and downloads and overrides based on the client's IP address. Limits can be reset using the REST API Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-01-30 11:42:36 +01:00
Nicola Murino	d2a4178846	check quota usage between ongoing transfers Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-01-20 18:19:20 +01:00
Nicola Murino	d73be7aee5	remove the use of some unnecessary pointers Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-01-16 12:09:17 +01:00
Nicola Murino	ffe7f7ff16	doc improvements and minor changes Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-01-16 09:50:23 +01:00
Nicola Murino	a6ed6fc721	pattern filters: don't allow files in hidden dirs Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-01-15 19:06:02 +01:00
Nicola Murino	c3831de94e	add hide policy to pattern filters Disallowed files/dirs can be completly hidden. This may cause performance issues for large directories Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-01-15 17:16:49 +01:00
Nicola Murino	1c51239da8	Admin UI: allow to create multiple users/folders from templates the clone button is not needed anymore, you can select a user and click on template to generate one or more similar users or you can create users/folders from an empty template Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-01-12 19:01:19 +01:00

1 2 3 4 5 ...

330 commits