459 commits

Author	SHA1	Message	Date
Nicola Murino	c71f0426ae	WebClient WIP: add support for localizations ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-12-10 16:40:13 +01:00
Nicola Murino	74836af66e	WebUI: extract a common struct for all pages ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-11-25 18:30:56 +01:00
Nicola Murino	ed828458ab	WebUI add title to all pages ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-11-25 18:11:10 +01:00
Nicola Murino	6175acb572	add support for reading more secrets from files ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-11-24 20:43:50 +01:00
patrickap	a91cf22e0f	provider: support for username and password file (#1455) ... Signed-off-by: patrickap <patrick.schlageter@web.de>	2023-11-24 20:28:51 +01:00
Nicola Murino	62854e4802	WebClient: use flatpickr as time picker ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-11-22 20:14:49 +01:00
Nicola Murino	bde5713ed6	WebClient: cleanup some js code ... also returns an error if file or directory names contain a slash instead of silently replacing slashes with a similar symbol Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-11-22 15:57:33 +01:00
Nicola Murino	ac309cf9a3	WebClient: remove data schema usage from mfa page ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-11-18 20:06:31 +01:00
Nicola Murino	59bdd4bc4e	WebClient: add support for more languages to the editor ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-11-18 14:17:28 +01:00
Nicola Murino	271d958acf	S3: fix compatibility with the latest SDK ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-11-18 12:00:53 +01:00
Nicola Murino	bfa17314c6	keyboard interactive auth: respect hook disabled setting ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-11-18 11:28:15 +01:00
Nicola Murino	1a765c7ff7	WebClient share: add a download page ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-11-17 19:10:03 +01:00
Nicola Murino	61e6cc6985	WebClient: remove remaining inline onclick events ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-11-16 18:55:14 +01:00
Nicola Murino	37b0c229fc	Web UI: propagate CSPNonce to templates ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-11-15 18:48:16 +01:00
Nicola Murino	c5c5860012	ssh: allow to configure public key auth algorithms ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-11-09 20:03:04 +01:00
Nicola Murino	a1346aa071	httpd: fixed logging of refused requests due to rate limiting/blocklisting ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-11-08 19:11:00 +01:00
Nicola Murino	6295be786f	WebClient: add a ping URL ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-11-06 19:58:39 +01:00
Nicola Murino	d5a9bec3da	WebClient: allow bulk move or copy actions ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-11-06 19:10:35 +01:00
Nicola Murino	654ce2e349	s3: allow to skip TLS verification ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-11-05 19:27:11 +01:00
Nicola Murino	010c36cab5	WebClient: allow to set a list of default CSS ... The new WIP WebClient requires 2 CSS files Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-11-05 17:30:33 +01:00
Nicola Murino	b872c423ee	Remove external integrations, they are not supported in the new WIP WebClient ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-11-05 17:30:21 +01:00
Nicola Murino	2ee2098a48	WebClient: add test cases for new backend code ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-11-05 17:30:17 +01:00
Nicola Murino	0671178e29	WebClient: fix test cases ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-11-05 17:30:06 +01:00
Nicola Murino	37facd21d4	WebClient shares: fix view pdf files ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-11-05 17:29:15 +01:00
Nicola Murino	9322701615	WIP: new WebClient UI ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-11-05 17:26:29 +01:00
Nicola Murino	87b12af932	static files: refactor neutered http.FileSystem ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-11-03 17:22:28 +01:00
Nicola Murino	75c2bcff8f	TLS: disable by default cipher suites using RSA key exchange ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-11-01 18:35:23 +01:00
Nicola Murino	822a05aa20	TLS ciphers: use a more secure default if no preference is specified ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-11-01 16:39:04 +01:00
Nicola Murino	379f87f571	loaddata: do not reveal the existence of the files in error messages ... return a generic error message Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-11-01 10:54:20 +01:00
Nicola Murino	51febb19fa	httpd: add database based token manager ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-11-01 10:54:14 +01:00
Nicola Murino	5c938e46b7	allow to restrict the env vars passed to plugins ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-10-29 15:19:30 +01:00
Nicola Murino	9a7a3b00dc	EventManager commands: allow to retrieve env vars from the process env ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-10-29 11:52:53 +01:00
Nicola Murino	8c31cc47b0	web UIs: fix dismissable alerts ... alerts can now be shown again after the user dismissal Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-10-29 08:17:24 +01:00
Nicola Murino	59378104b7	webclient: fix link for shares with a trailing space ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-10-29 07:33:56 +01:00
Nicola Murino	e1c3097546	event rules: add test case for rename after upload ... This is a common pattern in WinSCP Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-10-28 21:02:14 +02:00
Nicola Murino	9bcdc90ca8	add basic test cases for ALPN protocols ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-10-28 13:07:23 +02:00
Nicola Murino	7da5d8fcea	config: rename protocols to tls_protocols ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-10-28 12:42:05 +02:00
Nicola Murino	4a15775f65	allow to configure ALPN protocols ... Fixes #1406 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-10-28 12:35:26 +02:00
Nicola Murino	691e44c1dc	add more upload modes ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-10-25 19:05:37 +02:00
Nicola Murino	90bce505c4	improve conditional resuming of uploads ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-10-24 19:14:33 +02:00
Nicola Murino	320e404e4d	vfs: make PipeWriter an interface ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-10-23 09:56:46 +02:00
Nicola Murino	e3c4ee0833	add support for conditional resuming of uploads ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-10-23 09:56:40 +02:00
Nicola Murino	fc460922ad	events: fix event type string conversion ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-10-21 11:25:39 +02:00
Nicola Murino	ba9df51b2e	fix or suppress lint warnings detected by golangci-lint 1.55.0 ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-10-20 20:31:17 +02:00
Nicola Murino	6282f95bd3	improve temp dirs handling an some logs ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-10-17 18:06:52 +02:00
Nicola Murino	63972edb96	httpd: add a test case for StripSlash middleware ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-10-08 10:46:17 +02:00
Nicola Murino	da0eb5037e	httpd: skip StripSlash middleware for URL ending with multiple slashes ... Fixes #1434 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-10-08 10:40:08 +02:00
Nicola Murino	4b685b21a2	configs: fix backward compatibility ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-10-07 22:02:10 +02:00
Nicola Murino	f05fe78737	ssh: refactor host key algorithm restriction ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-10-07 16:07:19 +02:00
Nicola Murino	19a95d8c55	httpfs: limit body size ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-10-07 11:28:16 +02:00
Nicola Murino	64c7588a44	sftpd: improve permissions checking test cases ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-10-04 19:41:50 +02:00
Nicola Murino	c55196a525	portable mode: allow to set config dir/config file ... The -c flag is no longer used for SSH commands. This is a backward incompatible change Fixes #1423 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-09-25 18:20:09 +02:00
Nicola Murino	e54fd46a9e	SQL providers: make sure we don't exceed the allowed placeholders ... Fixes #1415 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-09-12 19:15:40 +02:00
Nicola Murino	fac022090d	httpd: disable directory index for static files ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-09-08 19:55:45 +02:00
Nicola Murino	aefcea034a	validate API key scope ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-09-08 18:54:11 +02:00
Nicola Murino	5ef0a2ed4b	External/plugin auth: check for password change after empty response ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-08-26 12:04:41 +02:00
Nicola Murino	a592e388cd	ftpd: advertise TLS support only if really enabled ... if we don't have a global TLS configuration, advertise TLS only on the bindings where it is configured instead of failing at runtime Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-08-21 15:48:29 +02:00
Nicola Murino	b94ec7597c	smtp: set default port to 587 ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-08-20 22:32:03 +02:00
Nicola Murino	c437f0ad76	logger: update mail adapter ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-08-20 21:42:41 +02:00
Nicola Murino	397cad93df	httpd request logger: set log level based on the status code ... Fixes #1393 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-08-20 19:01:16 +02:00
Nicola Murino	62b87083bb	ftpd: add support for TLS session reuse ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-08-20 16:00:36 +02:00
Nicola Murino	de35eb77cb	ftpd: use the extra field for certificate authentication ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-08-18 14:39:28 +02:00
Nicola Murino	163662a65a	eventmanager: replace placeholders in multipart filename ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-08-14 14:34:25 +02:00
Nicola Murino	6395fa0b67	eventmanager: fix params copy ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-08-12 19:03:47 +02:00
Nicola Murino	f03fdd1155	add object metadata to notification events ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-08-12 18:51:47 +02:00
Nicola Murino	6c482a248d	portable mode: add WebClient ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-08-10 19:02:55 +02:00
Nicola Murino	25450d9efc	fix event validation test case ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-08-09 19:00:59 +02:00
Nicola Murino	60cc07bc81	eventmanager: add DELETE method to HTTP notifications ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-08-09 18:44:17 +02:00
Nicola Murino	5011002d84	allow to set umask on *NIX platforms ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-08-08 18:30:42 +02:00
Nicola Murino	63212bb033	remove the legacy PreferServerCipherSuites configuration ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-08-07 19:11:48 +02:00
Nicola Murino	830116bcf2	shares: allow to force an expiration date ... this is a soft requirement, users can reactivate expired shares by updating the expiration date Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-08-07 19:07:20 +02:00
Nicola Murino	ea96fe9a26	postgres provider: add support for "allow" and "prefer" SSL modes ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-08-05 20:01:14 +02:00
Nicola Murino	54a76e8c45	s3: remove usage of the now deprecated EndpointResolver ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-08-05 11:58:01 +02:00
Nicola Murino	132d18d5d1	sftpd: fix keyboard interactive test cases ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-08-04 21:32:14 +02:00
Nicola Murino	75e6ef6132	sftpd: remove diffie-hellman-group18-sha512 KEX ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-08-04 21:10:39 +02:00
Nicola Murino	af0d7b48ad	sftpd: refactor multi-step authentication ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-08-04 20:56:23 +02:00
Nicola Murino	0413c0471c	add a specific permission to manage folders ... creating/updating folders embedded in users is no longer supported. Fixes #1349 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-07-23 18:48:49 +02:00
Nicola Murino	00366fce07	shares: respect password strength ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-07-16 16:51:38 +02:00
Nicola Murino	e88172dd7e	back to development ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-07-15 12:35:30 +02:00
Nicola Murino	4f8794a255	file patterns: fix denied except rules ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-07-08 17:02:47 +02:00
Nicola Murino	5e5a09f164	make GroupConditionPatterns uniform with the accepted PR ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-07-02 10:57:29 +02:00
David Stäheli	f78e4b0443	check for multiple inverse matches (#1332) ... * update check for multiple inverse matches Signed-off-by: David Stäheli <mistrdave@gmail.com> * after match, direct return true Signed-off-by: David Stäheli <mistrdave@gmail.com> * apply same behaviour to checkEventGroupConditionPatterns Signed-off-by: David Stäheli <mistrdave@gmail.com> * fix spellmistake of function name Signed-off-by: David Stäheli <mistrdave@gmail.com> --------- Signed-off-by: David Stäheli <mistrdave@gmail.com>	2023-07-02 09:49:21 +02:00
Nicola Murino	51d8f3b436	back to development ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-06-29 14:42:16 +02:00
Nicola Murino	d1e4ee7bc8	config: fix loading commands args from env vars ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-06-25 21:31:57 +02:00
Nicola Murino	76964a6b85	check second factor after plugin authentication ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-06-25 07:16:26 +02:00
Nicola Murino	66f360e66c	back to development ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-06-18 07:15:39 +02:00
Nicola Murino	a38ce460bb	WebClient: show user quota ... Also remove per-source data transfer limits. This was an oversight Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-06-16 21:06:21 +02:00
Nicola Murino	1c1b76011f	WebAdmin: relax key prefix validation ... try to automatically fix leading and trailing slashes Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-06-12 19:13:16 +02:00
Nicola Murino	957d3a7b4d	CockroachDB: use unordered_unique_rowid for primary keys ... sequential values in a primary key does not perform as well Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-06-10 18:23:35 +02:00
Nicola Murino	d7d7b0bbf0	dataprovider: fix sql for CockroachDB ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-06-10 15:32:51 +02:00
Nicola Murino	99424bfa58	squash database migrations ... SQLite: remove AUTOINCREMENT from primary keys. It is not needed. Postgres: switch from serial to identity for primary keys. This means Postgres < 10 will not work in v2.6.x Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-06-10 13:06:24 +02:00
Nicola Murino	324d695d93	try to fix a randomly failing test case ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-06-08 19:41:58 +02:00
Nicola Murino	9d60972743	WebClient: redirect to the requested URL after login ... This feature is only useful and enabled for file manager urls Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-06-08 18:14:47 +02:00
Nicola Murino	f938af5a61	WebClient: fix sorting by size ... Fixes #1313 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-06-04 21:45:31 +02:00
Nicola Murino	3499edd5c2	WebUI: remove leading and trailing spaces from user-submitted input ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-06-04 08:45:17 +02:00
Nicola Murino	9470cd6e69	multi-node installations: use a different backup path for each node ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-06-03 17:54:24 +02:00
Nicola Murino	74e5999c63	added support for verifying sha256/sha512 passwords hash ... this simplifies the migration of users from some proprietary products Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-06-03 16:58:45 +02:00
Nicola Murino	48939b2b4f	add XOAUTH2 ... start the countdown, let's see how long it takes for your favorite Go-based proprietary SFTP server to notice this change, copy the SFTPGo code and thus violate its license, and announce the same feature :) Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-06-03 16:17:32 +02:00
Nicola Murino	8339fee69d	smtp: add debug option ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-05-30 19:11:28 +02:00
Nicola Murino	8f934f7c82	email action: allow to configure Bcc ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-05-25 19:55:27 +02:00
Nicola Murino	e11473cf52	config: limit the size for env files ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-05-25 05:25:28 +02:00
Nicola Murino	f8f8962ccb	file patterns: evaluate allowed filters before the denied ones ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-05-24 19:56:53 +02:00
Nicola Murino	2238043efd	EventManager: add email field placeholder ... Fixes #1288 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-05-24 19:08:51 +02:00
Nicola Murino	255985b7b0	Windows: start the service in a goroutine ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-05-23 12:59:27 +02:00
Nicola Murino	2b77709a04	back to development ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-05-21 09:23:24 +02:00
Nicola Murino	5b4a1bda2e	set version to 2.5.1 ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-05-20 17:39:23 +02:00
Nicola Murino	3f94f6d0e7	proxy protocol: fix require policy in some edge cases ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-05-20 16:08:57 +02:00
Nicola Murino	d28a53a6cf	webdav: fix caching with external auth/plugins ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-05-20 12:39:07 +02:00
Nicola Murino	bbaca578cd	EventManager: add content type option for email config ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-05-17 19:28:13 +02:00
Nicola Murino	52ec36dbd6	update pwd reset template. Update deps and use new features from the OIDC library ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-05-17 18:10:57 +02:00
Nicola Murino	e0d9b8bddf	WebClient: update password change timestamp after password reset ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-05-16 19:15:45 +02:00
Nicola Murino	19da923369	webdav: add support for parsing more time formats ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-05-16 18:51:42 +02:00
Nicola Murino	adad8e658b	osfs: add optional buffering ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-05-16 18:08:14 +02:00
Nicola Murino	e10487ad57	EventManager: improve automatic detection of JSON body ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-05-12 19:22:50 +02:00
Nicola Murino	4eded56d5f	add support for log events ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-05-12 18:34:59 +02:00
Nicola Murino	05c54614b2	back to development ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-05-05 19:12:50 +02:00
Nicola Murino	32020e236f	set version to 2.5.0 ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-05-03 13:07:48 +02:00
Nicola Murino	ee5b7290a0	EventManager: add more debug logs for HTTP actions ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-04-25 20:27:40 +02:00
Nicola Murino	712f2053a4	REST API dumpdata: allow to specify the resources to dump ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-04-18 18:11:23 +02:00
Nicola Murino	d0a171558d	fix test cases for system commands ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-04-15 16:09:53 +02:00
Nicola Murino	1ade850557	add a log to better debug a randomically failing test case ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-04-15 15:08:42 +02:00
Nicola Murino	466f2e88b3	WebClient: fix rename ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-04-15 14:16:26 +02:00
Nicola Murino	3cb53b2c33	fix cross folder copy ... also update css/js deps and other minor changes Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-04-13 18:23:42 +02:00
Nicola Murino	6279216c2e	webdav: fix GET as PROPFIND if a prefix is defined ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-04-09 20:17:37 +02:00
Nicola Murino	5219c1fdd1	back to development ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-04-08 19:00:05 +02:00
Nicola Murino	4294659785	try harder to convert transfer errors in well-known error types ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-04-08 14:55:04 +02:00
Nicola Murino	f03f1b0156	improve test cases coverage ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-04-08 10:01:48 +02:00
Nicola Murino	184b99d500	user: add a field to indicate whether the password is set ... A structure similar to the one used for secrets would be better, but we don't want to break backwards compatibility. Also document that omitting the password field in the request body will preserve the current password when updating a user using the REST API. Added a test case for this. Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-04-06 18:22:09 +02:00
Nicola Murino	74f05e5305	EventManager: check the parent directory before creating a zip ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-04-03 18:53:13 +02:00
Nicola Murino	ee90bfb506	add unixcrypt build tag ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-03-26 10:33:30 +02:00
Nicola Murino	e17068a76f	postgres provider: add support for load balancing ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-03-25 09:29:13 +01:00
Nicola Murino	354fc9b3d6	OIDC: allow to extract custom fields from sub-structs ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-03-23 18:15:07 +01:00
Nicola Murino	e29f6857db	EventManager: add IDP login trigger and check account action ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-03-22 19:02:54 +01:00
Nicola Murino	2710207779	update jquery, go deps, actions/setup-go to v4 ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-03-15 18:44:08 +01:00
Nicola Murino	84396343da	fix some codeql warnings ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-03-10 17:30:06 +01:00
Nicola Murino	0423e8f157	httpd: generate defender events for failed 2fa and password resets ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-03-04 13:55:48 +01:00
Nicola Murino	bdcee06665	WebClient: remove the default upload size limit ... Users who want a limit can still set it. By default, we want to allow uploads of any size Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-03-02 18:26:21 +01:00
Nicola Murino	4ba3ae876d	allow to set password strength at user/group level ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-03-02 09:11:30 +01:00
Nicola Murino	662164c7ff	smtp: require templates only if a server is configured or in service mode ... This regression was introduced after recent changes to allow setting the SMTP settings from the WebAdmin UI. Fixes #1217 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-03-01 18:31:02 +01:00
Nicola Murino	fad6af11e5	don't expose error messages from pre-actions and post connect hooks ... always return a generic error instead to avoid leaking internal info Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-02-28 18:01:09 +01:00
Nicola Murino	dba088daed	printf: replace %#v with the more explicit %q ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-02-27 19:19:57 +01:00
Nicola Murino	a23fdea9e3	ftpd: allow hostnames as passive IP ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-02-27 19:19:50 +01:00
Nicola Murino	561976bcd0	WebClient: return proper status code for http.MaxBytesError ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-02-27 11:03:05 +01:00
Nicola Murino	874776bd12	also capture logs for pre-login and check-password commands ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-02-26 15:15:34 +01:00
Felix Eckhofer	ec67b67e9e	Send output from external_auth_hook to logs ... Signed-off-by: Felix Eckhofer <felix@eckhofer.com>	2023-02-26 07:39:34 +01:00
Nicola Murino	e0cbb966f0	eventmanager: skip password expiration check for expired users ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-02-25 16:33:39 +01:00
Nicola Murino	df9d47900a	eventmanager: add user/folders as comma separated string in errors ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-02-25 15:26:38 +01:00
Nicola Murino	b8496c4d6e	eventmanager: add user expiration check ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-02-25 13:06:09 +01:00
Nicola Murino	b0cfaf189c	portable mode: allow to read the password from a file ... Fixes #1206 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-02-25 10:24:23 +01:00
Nicola Murino	195cb9f081	enable keyboard interactive authentication by default ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-02-24 20:22:32 +01:00
Nicola Murino	9a10740218	allow ACME HTTP-01 challenge with https redirect from port 80 ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-02-24 20:08:14 +01:00
Nicola Murino	7bcd79a70a	telemetry: improve test cases ... remove an unnecessary nil check in tlsutils added as workaround to make telemetry test cases work Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-02-24 11:05:46 +01:00
Nicola Murino	8805d85377	configs: add ACME section ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-02-23 19:25:20 +01:00
Nicola Murino	fcf9a8c673	scheduler: disable verbose logs ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-02-21 18:18:24 +01:00
Nicola Murino	2c1319985d	sql providers: remove unnecessary []byte to string conversion ... always check affected rows for updates Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-02-20 18:14:02 +01:00
Nicola Murino	a3fff56da5	WebAdmin: add configs section ... Setting configurations is an experimental feature and is not currently supported in the REST API Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-02-19 19:03:45 +01:00
Nicola Murino	78cd5d8eba	groups: add expiration date override ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-02-13 19:32:36 +01:00
Nicola Murino	2df2803a37	ipfilter plugin: add protocol ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-02-13 13:45:45 +01:00
Nicola Murino	7738faa040	events: add elapsed to UI and exports ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-02-13 12:58:21 +01:00
Nicola Murino	157d1db0b1	fs events: add elapsed field to notifications ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-02-12 18:56:53 +01:00
Nicola Murino	7e85356325	WebClient shares: replace basic auth with a login form ... basic auth will continue to work for REST API Fixes #1166 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-02-12 08:29:53 +01:00
Nicola Murino	a3d0cf5ddf	fix lint errors ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-02-10 19:59:03 +01:00
Nicola Murino	04ab8e72f6	WebUI: make error messages user dismissible ... Fixes #1171 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-02-10 18:07:23 +01:00
Nicola Murino	e0c3a13ac5	azblob: update to the latest SDK ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-02-09 13:04:12 +01:00
Nicola Murino	1b1745b7f7	move IP/Network lists to the data provider ... this is a backward incompatible change, all previous file based IP/network lists will not work anymore Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-02-09 09:33:33 +01:00
Nicola Murino	1e14d006b1	defender: set score_no_auth to 0 as default ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-01-29 18:00:27 +01:00
Nicola Murino	27c4ffd663	sftpd: fix duplicate defender error introduced in the previous commit ... improve the defender test cases by verifying the expected score Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-01-25 21:57:27 +01:00
Nicola Murino	c0fe08b597	defender: allow to set a different score for "no auth tried" events ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-01-25 18:49:03 +01:00
Nicola Murino	5550a5d2c0	update users: also disconnect users from remote nodes when requested ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-01-24 18:53:34 +01:00
Nicola Murino	2066ad7c83	WebDAV: allow to define custom MIME type mappings ... Fixes #1154 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-01-23 18:43:25 +01:00
Nicola Murino	61199172d0	add support for monitoring and reloading externally provided TLS certs ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-01-22 18:31:14 +01:00
Nicola Murino	3ce4d04b27	EventManager: support placeholders within URL paths ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-01-22 08:46:58 +01:00
Nicola Murino	707729ee61	acme: allow to separate multiple domains with spaces ... This change is required to be able to set multiple domains for the same certificate using env vars. The change is backward compatible for general use cases but may be backward incompatible in some edge cases, for example: - "sftpgo.com,www.sftpgo.com" will work as before - "sftpgo.com, www.sftpgo.com" will not work anymore Check the logs to see if you are affected and rename the certificate and key to fix Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-01-21 18:00:23 +01:00
Nicola Murino	7b5bebc588	EventManager: add "on-demand" trigger ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-01-21 15:41:24 +01:00
Nicola Murino	53f17b5715	allow to disable event rules ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-01-19 18:33:04 +01:00
Nicola Murino	496c8bc785	allow to start if only httpd service is enabled ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-01-17 18:22:04 +01:00
Nicola Murino	c8d94f0a27	add a health check command ... Useful in restricted environments where commands like curl and such are not available. Fixes #1129 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-01-16 18:54:42 +01:00
Nicola Murino	f2618e7de6	switch from go-simple-mail to go-mail ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-01-15 15:28:31 +01:00
Nicola Murino	93e5cb36df	copy: use server side copy if available ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-01-07 16:28:46 +01:00
Nicola Murino	09dea57850	back to development ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-01-07 13:07:41 +01:00
Nicola Murino	8cad436421	conditional support for recursive renaming for cloud providers ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-01-06 12:33:50 +01:00
Nicola Murino	f0dedbfabf	eventmanager: auto-create destination folder for renames ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-01-03 18:13:01 +01:00
Nicola Murino	51f0ded222	update test certificates ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-01-03 11:48:08 +01:00
Nicola Murino	0190d0b849	update Copyright year ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-01-03 10:18:30 +01:00
Nicola Murino	7fa0959af4	eventmanager: add support for global star path matching ... This introduce a backward incompatible change for filesystem path matching in the Event Manager, now patterns like "*.txt" will no longer match any file with the "txt" suffix, you need to change them to "/**/*.txt". Also change pre-delete behaviour, now if an error is returned the client will get a permission denied error. This is the same as the other pre-* action. Previously it was not possible to deny deletion of a file. Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-01-02 15:59:00 +01:00
Nicola Murino	2611dd2c98	eventmanager: add support for pre-* actions ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-01-01 17:59:41 +01:00
Nicola Murino	6cebc037a0	eventmanager: check disk quota before executing the compress action ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-12-31 16:41:32 +01:00
Nicola Murino	15ad31da54	WebClient: add copy action ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-12-30 19:30:16 +01:00
Nicola Murino	ea4c4dd57f	eventmanager: add copy action ... refactor sftpgo-copy and sftpgo-remove commands Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-12-27 18:51:53 +01:00
Nicola Murino	e5a8220b8a	REST API: add location header to 201 responses ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-12-23 13:08:04 +01:00
Nicola Murino	0841c7d7bd	REST API: remove merging of fields on updates ... we use PUT verb not PATCH. We keep merging only to allow to preserve hidden/encrypted fields. This is a backward incompatible change, but is necessary to avoid unexpected issues. You have to pass complete objects on updates. Fixes #1088 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-12-23 09:36:20 +01:00
Nicola Murino	e17975ed7d	dataprovider: include port in node name and make it a hash ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-12-20 16:40:32 +01:00
Nicola Murino	6270b2c2d3	eventmanager: log a get task error only when required ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-12-19 18:10:40 +01:00
Nicola Murino	0296e0cafa	gcsfs: allow to customize upload part size/time ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-12-18 11:51:46 +01:00
Nicola Murino	147ad3b230	respect token validation mode for CSRF header ... Fixes #1104 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-12-16 19:14:56 +01:00
Nicola Murino	2da3eabc12	eventmanager: add password notification check action ... this action allow to send an email notification to users whose password is about to expire Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-12-16 18:51:29 +01:00
Nicola Murino	ac91170d65	S3: improve "directories" detection ... Fixes #1097 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-12-13 08:55:01 +01:00
Nicola Murino	f13b901f2d	local fs: fixed paths validation for some Windows specific edge cases ... Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-12-12 10:40:04 +01:00
Nicola Murino	ad5d657a1a	add support for password policies ... you can now set a password expiration and the password change requirement Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-12-11 17:15:34 +01:00
Nicola Murino	e2bebc99d1	AzureBlobs: update SDK to v0.6.1 ... Remove path escape for blob names, this issue is now fixed within the SDK Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-12-10 09:44:14 +01:00