beenull/sftpgo-mirror
1
0
Fork 0
mirror of https://github.com/drakkan/sftpgo.git synced 2024-11-22 07:30:25 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions
1940 commits 8 branches 49 tags 49 MiB
Commit graph

244 commits

Author SHA1 Message Date
Nicola Murino
68e62d3d9b
httpd: allow to use proxy protocol 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-08-10 21:02:38 +02:00
Nicola Murino
954c36c0a2
add fs providers hook 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-08-10 15:57:05 +02:00
Nicola Murino
81433e00d1
event action: add update modtime to fs rename 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-08-09 20:18:33 +02:00
Nicola Murino
d94f80c8da
replace utils.Contains with slices.Contains 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-07-24 18:27:13 +02:00
Nicola Murino
b5c821795a
allow to customize name and log from the WebUI 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-07-24 09:14:27 +02:00
Nicola Murino
b2926377b7
WebUI: switch favicon from ico to png 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-07-20 16:11:21 +02:00
Nicola Murino
fef388d8cb
don't track quota for private virtual folders 
they are included within the user quota.
This is a backward incompatible change.

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-07-13 21:02:40 +02:00
Nicola Murino
92849ca473
quota: move user and folder management to a common method 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-07-13 19:30:40 +02:00
Nicola Murino
58de410850
nt: fix unused write warnings 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-07-03 20:42:51 +02:00
Nicola Murino
54bc3ea87d
restore: fix quota scan for users with folders associated via groups 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-07-03 20:35:12 +02:00
Nicola Murino
64a2f7aa4f
oidc refresh token: validate nonce only if set 
As clarified in OpenID core spec errata 2, section 12.2

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-07-01 19:06:11 +02:00
Nicola Murino
363770ab84
WebClient shares: add a logout button 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-06-18 19:10:32 +02:00
Nicola Murino
d650defa08
remove duplicated jwt tokens validation 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-06-15 16:19:37 +02:00
Nicola Murino
bd5b32101f
csrf: reuse the cookie in reset password 
no need to generate a new cookie each time.

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-06-15 15:18:17 +02:00
Nicola Murino
01b666a78f
WebUIs: check login conditions before allowing password reset 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-06-14 19:34:42 +02:00
Nicola Murino
8294952474
WebUIs: refactor CSRF 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-06-14 18:09:32 +02:00
Nicola Murino
7fb5b1b996
reduce share token duration 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-06-08 12:13:38 +02:00
Nicola Murino
08526da153
REST API: fix token invalidation after password change 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-06-07 18:19:05 +02:00
Nicola Murino
6c94173ca1
WebUI branding: remove unused login_image_path from config 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-05-27 18:43:44 +02:00
Nicola Murino
50a3c0d911
defender: allow to impose a delay between login attempts 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-05-18 10:35:54 +02:00
Nicola Murino
eb0c6549c4
micro optimization 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-05-12 18:10:03 +02:00
Nicola Murino
5d24d665bd
add an util method to convert []byte to string 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-05-08 19:01:58 +02:00
Nicola Murino
ea898ed104
silence lint warning 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-05-04 09:52:27 +02:00
Nicola Murino
a1af33c6aa
WebClient: allow to set TLS certificates 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-05-03 18:30:03 +02:00
Nicola Murino
d3f42e39db
move server version setting to common section 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-05-01 19:42:09 +02:00
Nicola Murino
0a8a0ee771
revert #450 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-04-27 10:50:25 +02:00
Nicola Murino
2bcf05ca45
refactor for secrets management in API and private key handling in SFTPFs 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-04-26 16:17:24 +02:00
Nicola Murino
e1fdc10ef8
remove robots.txt endpoint 
This reverts #833 because the contributor did not respond to our
request to sign the CLA

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-04-26 11:00:55 +02:00
Nicola Murino
456517af87
notifier plugin: add support for login succeeded events 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-04-10 18:39:08 +02:00
Nicola Murino
1196727448
dataretention: remove ignore_user_permissions 
Required permissions are now automatically granted as for any other
filesystem action

Fixes #1564

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-04-01 15:07:03 +02:00
Nicola Murino
aaae191710
WebAPI: ensure to check rootfs before creating directories 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-04-01 12:40:35 +02:00
Nicola Murino
db577b154e
webclient: add more test cases for shares 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-04-01 11:42:22 +02:00
Nicola Murino
fc023748c1
WebClient: improve file uploads 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-03-31 20:42:28 +02:00
Nicola Murino
cb3bc3f604
update OpenAPI definition 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-03-18 19:32:01 +01:00
Nicola Murino
cc9a0d4dc2
add time-based access restrictions 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-03-17 11:30:03 +01:00
Nicola Murino
26d3105f54
groups: add role placeholder 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-03-12 18:21:50 +01:00
Nicola Murino
f38966c6ac
WebClient: refactor long-running tasks to improve browser compatibility 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-03-11 18:19:57 +01:00
Nicola Murino
4d357a6a57
EventManager: allow to check for inactive users 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-03-04 19:48:10 +01:00
Nicola Murino
8b2188fcb6
remove some useless nil checks 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-03-02 18:49:07 +01:00
Nicola Murino
799fdd7098
allow IPs in defender safe list to exceed max per-host connections 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-02-27 18:22:21 +01:00
Nicola Murino
12f599fd65
WebUI: skip checks for static resource 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-02-25 18:19:21 +01:00
Nicola Murino
92911bda2b
require at least 2048 bits for RSA certificates/keys 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-02-25 11:12:57 +01:00
Nicola Murino
f7d9e56cac
ssh: remove moduli, log negotiated algorithms 
Fixes #1324

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-02-24 20:35:09 +01:00
Nicola Murino
a577d8b3cd
WebAdmin: allow to disable 2FA 
Before it was only possible using REST API

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-02-23 18:24:07 +01:00
Nicola Murino
76ffa107dd
check admins' two-factor requirements in the disable API as well 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-02-22 19:05:16 +01:00
Nicola Murino
9a6a65931e
two-factor auth: fixed validation of conflicting settings 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-02-22 18:20:51 +01:00
Nicola Murino
de089e51fd
Web: allow to require password change and two-factor for admins 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-02-21 20:45:10 +01:00
Nicola Murino
51ae2d7301
add copy permission 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-02-20 18:19:09 +01:00
Nicola Murino
e61fb42cbc
remove metadata plugin 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-02-17 12:30:47 +01:00
Nicola Murino
ad75543172
fix some new lint warnings 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-02-15 21:13:45 +01:00