beenull/sftpgo-mirror

mirror of https://github.com/drakkan/sftpgo.git synced 2024-11-22 07:30:25 +00:00

Author	SHA1	Message	Date
Nicola Murino	665016ed1e	set version to 2.3.3 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-08-05 09:47:00 +02:00
Nicola Murino	b34bc2b818	add license header to source files Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-07-18 13:43:25 +02:00
Nicola Murino	cc2f23bd89	trim values for string lists which can be set as env vars See #857 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-05-31 18:22:18 +02:00
Nicola Murino	7329cd804b	Fixes #855 update OpenAPI definition, add test cases, fix lint Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-05-30 19:01:12 +02:00
Nicola Murino	796ea1dde9	allow to store temporary sessions within the data provider so we can persist password reset codes, OIDC auth sessions and tokens. These features will also work in multi-node setups without sicky sessions now Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-05-19 19:49:51 +02:00
Nicola Murino	d2f4edcdb6	sftpd statvfs: check the virtual quota against that of the filesystem if the virtual quota limit is greater than the filesystem available space, we need to return the filesystem limits Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-05-14 14:53:26 +02:00
Nicola Murino	5d7f6960f3	web UIs: add branding support Fixes #829 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-05-13 19:40:52 +02:00
Nicola Murino	1e0b3a2a8c	web client: add share mode read/write Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-05-09 19:09:43 +02:00
Nicola Murino	ecd488a840	data provider: remove prefer_database_credentials Google Cloud Storage credentials are now always stored within the data provider. Added a migration to read credentials from disk and store them inside the data provider. After v2.3 we can also remove credentials_path Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-04-28 12:55:01 +02:00
Nicola Murino	4a44a7dfe1	improved readlink handling Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-04-27 18:38:46 +02:00
Nicola Murino	504cd3efda	add groups support Using groups simplifies the administration of multiple accounts by letting you assign settings once to a group, instead of multiple times to each individual user. Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-04-25 15:49:11 +02:00
Nicola Murino	002a06629e	refactoring of user session counters Fixes #792 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-04-14 19:07:41 +02:00
Nicola Murino	f9d8b83c2a	sshd: disable by default ssh-rsa host key algo Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-04-04 18:52:19 +02:00
Nicola Murino	5a40f998ae	check and update the password hashing algorithm on user login also add ldap md5 variant as per-user request Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-04-02 22:20:21 +02:00
Nicola Murino	77f3400161	allow to mount virtual folders on root (/) path Fixes #783 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-04-02 18:32:46 +02:00
Nicola Murino	55f8171dd1	sshd: add support for host key certificates Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-04-01 08:03:56 +02:00
Nicola Murino	a7b159aebb	ssh user certs: add a revoked list Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-03-31 21:49:06 +02:00
Nicola Murino	5c114b28e3	sshd: we don't need the user certificate Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-03-31 18:16:50 +02:00
Nicola Murino	8fb256ac91	add link to an external Traefik tutorial update deps Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-03-29 18:13:43 +02:00
Nicola Murino	d955ddcef9	check that the jwt token is used by the same IP for which it Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-03-24 22:03:17 +01:00
Nicola Murino	4c710d731f	update to Go 1.18 temporarily disabled docker image for ppcle64 as alpine image is not yet available Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-03-18 21:52:00 +01:00
Nicola Murino	d9f30e7ac5	add a global whitelist if defined only the listed IPs/networks can access the configured services, all other client connections will be dropped before they even try to authenticate Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-03-17 22:10:52 +01:00
Nicola Murino	03da7f696c	SFTPGo is now listed on Azure Marketplace Fixes #684 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-03-17 14:59:02 +01:00
Nicola Murino	7e7f662a23	ensure that defaults defined in code match the default config file Fixes #754 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-03-14 10:42:14 +01:00
Nicola Murino	0bec1c6012	change the default value for prefer_database_credentials to true ... ... and deprecate this setting. In the future we'll remove prefer_database_credentials and credentials_path and we will not allow the credentials to be saved on the filesystem Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-03-13 14:29:11 +01:00
Nicola Murino	d8de0faef5	allow to require two-factor auth for users Fixes #721 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-03-06 16:57:13 +01:00
Nicola Murino	056daaddfc	always execute fs checks for users not logged in after an update Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-03-03 19:31:54 +01:00
Nicola Murino	5c2fd8d52a	add support for a start directory Fixes #705 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-03-03 12:44:56 +01:00
Nicola Murino	7f674a7fb3	add more details to the server status page add all supported fields to the OpenAPI docs Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-02-26 16:43:29 +01:00
Nicola Murino	b64d3c2fbf	simplify rename permission before this patch we allow a rename in the following cases: - the user has rename permission on both source and target path - the user has delete permission on source path and create/upload on target path we now check only the rename/rename_files/rename_dirs permissions. This is what SFTPGo users expect. This is a backward incompatible change and it will not backported to the 2.2.x branch Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-02-26 12:19:09 +01:00
Nicola Murino	4e9dae6fa4	allow to cache external authentications Fixes #733 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-02-25 11:51:10 +01:00
Nicola Murino	f5a0559be6	don't execute fs check if the user has recent activity The check could be expensive with some backends and is generally only required the first time that a user logs in Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-02-24 16:11:35 +01:00
Nicola Murino	f1a255aa6c	httpd: allow to restrict allowed hosts ... ... and to add security headers to the responses Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-02-17 18:22:27 +01:00
Nicola Murino	900e519ff1	SFTP: respect file open flags also for file creation Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-02-16 16:05:56 +01:00
Nicola Murino	02db00d008	dataprovider: add naming rules naming rules allow to support case insensitive usernames, trim trailing and leading white spaces, and accept any valid UTF-8 characters in usernames. If you were enabling `skip_natural_keys_validation` now you need to set `naming_rules` to `1` Fixes #687 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-01-31 18:01:37 +01:00
Nicola Murino	1df1225eed	add support for data transfer bandwidth limits with total limit or separate settings for uploads and downloads and overrides based on the client's IP address. Limits can be reset using the REST API Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-01-30 11:42:36 +01:00
Nicola Murino	d2a4178846	check quota usage between ongoing transfers Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-01-20 18:19:20 +01:00
Nicola Murino	c3831de94e	add hide policy to pattern filters Disallowed files/dirs can be completly hidden. This may cause performance issues for large directories Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-01-15 17:16:49 +01:00
Nicola Murino	ec1d20f46f	sshd: improve docs about supported ciphers, KEX and MACs also added a check to ensure that the configured values are valid Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-01-06 18:09:49 +01:00
Nicola Murino	1f619d5ea6	make the sdk a separate module The SFTPGo SDK now is at the following URL https://github.com/sftpgo/sdk Fixes #657 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-01-06 11:54:43 +01:00
Nicola Murino	6d3d94a01f	move kms implementation outside the sdk package Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-01-06 10:11:47 +01:00
Nicola Murino	2912b2e92e	sdk: add a logger interface we are now ready to make the sdk a separate module Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-01-04 16:07:41 +01:00
Nicola Murino	a6fe802370	move kms definitions to the sdk package This is the first step to make the sdk a separate module Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-01-04 12:49:30 +01:00
Nicola Murino	222db53410	notifiers plugin: replace params with a struct Fixes #658 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-01-02 15:16:35 +01:00
Nicola Murino	ced73ed04e	REST API: add an option to create missing dirs	2021-12-19 12:14:53 +01:00
Nicola Murino	cc73bb811b	change log level from warn to error where appropriate Fixes #649	2021-12-16 19:53:00 +01:00
Nicola Murino	a587228cf0	add support for metadata plugins	2021-12-16 18:18:36 +01:00
Nicola Murino	1472a0f415	hooks: preserve MFA related configs if a user is updated using pre-login or external auth hook we need to preserve the MFA related configs in the same way we do if the user is updated using the REST API	2021-12-11 11:08:20 +01:00
Nicola Murino	a7c0b07a2a	add session id to notifier plugins/hook	2021-12-04 17:27:24 +01:00
Nicola Murino	dc1cc88a46	keyboard interactive hooks: allow to validate passcode	2021-12-04 15:14:44 +01:00

1 2 3 4 5 ...

369 commits