sftpgo

Author	SHA1	Message	Date
Nicola Murino	63e3891808	WebClient/HTTP API: ensure to check home dir, when needed, in multi-node setups Behind a load balancer with no sticky sessions enabled is not enough to check the home dir only when the client logs in Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-09-07 16:23:56 +02:00
Nicola Murino	3ebdfa9b2d	data providers: allow to disable SNI for TLS connections Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-09-07 14:31:50 +02:00
Nicola Murino	a61211d32c	OIDC: allow to get the role field from a sub-struct Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-08-10 21:42:58 +02:00
Nicola Murino	6bfdf941bc	webdav: allow to disable the WWW-Authenticate header Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-08-02 19:06:49 +02:00
Nicola Murino	fdc10aa6c7	CORS: add support for more parameters Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-08-02 18:44:34 +02:00
Nicola Murino	e96ae5ca51	add folders to data provider actions Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-07-24 08:10:23 +02:00
Nicola Murino	a2e73228d2	initprovider: don't execute actions we are not running as service here Fixes #932 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-07-23 19:38:15 +02:00
Nicola Murino	1470018054	web UI: allow to enable OIDC login and/or login forms any combination is now supported Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-07-22 20:55:33 +02:00
Nicola Murino	e6bfbcd489	OIDC: allow to debug the received id_token Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-07-22 11:11:35 +02:00
Nicola Murino	d5946da1e2	OIDC: allow to enable only OIDC login for Web UIs Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-07-19 22:25:00 +02:00
Nicola Murino	e0ce2e2e8a	allow to customize the log level The old log-verbose flag is not appropriate anymore. You should now use the log-level flag to set your preferred log level. The default level is "debug" as before, you can also set "info", "warn", "error" Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-07-13 10:40:24 +02:00
Nicola Murino	b5894b257f	try to better highlight donations and sponsorships options ... ... and to better explain why they are required. Please don't say "someone else will help the project, I'll just use it" Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-07-11 16:14:44 +02:00
Nicola Murino	1b8f94c08f	add event manager auto backup removed from setting. You can now schedule backups with the event manager Fixes #762 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-07-11 08:17:36 +02:00
Nicola Murino	9a6b1a1315	Fix issues found in PR #887 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-06-25 10:42:17 +02:00
Andre Mainka	90009a649d	Allow OAuth Scope to be configured (#887 ) Signed-off-by: BobSilent <andre_1@gmx.net>	2022-06-25 10:40:39 +02:00
Nicola Murino	b774289c6d	change default value for naming_rules to 1 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-06-03 16:09:02 +02:00
Nicola Murino	ecf715880f	update docs Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-06-03 14:36:38 +02:00
Nicola Murino	b2e28fe3a2	groups: apply placeholders to the fs config of virtual folders Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-06-02 09:45:01 +02:00
Nicola Murino	f6b11c2d01	httpd/webdav: allow to configure trusted proxy header and depth Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-05-28 19:47:23 +02:00
Nicola Murino	32da923dfe	httpd: add a setting to customize tokens validation Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-05-28 13:28:50 +02:00
Nicola Murino	7c724e18fe	add support for ACME compliant certificate authorities Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-05-27 07:39:55 +02:00
Nicola Murino	90c21458b8	OIDC: add support for implicit roles Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-05-22 14:38:25 +02:00
Nicola Murino	1a33b5bb53	allow different TLS certificates for each binding Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-05-21 16:34:47 +02:00
Nicola Murino	0ecaa862bd	web UIs: allow to replace the default CSS Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-05-21 11:05:58 +02:00
Nicola Murino	751946f47a	allow to customize timeout and env vars for program based hooks Fixes #847 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-05-20 19:30:54 +02:00
Nicola Murino	796ea1dde9	allow to store temporary sessions within the data provider so we can persist password reset codes, OIDC auth sessions and tokens. These features will also work in multi-node setups without sicky sessions now Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-05-19 19:49:51 +02:00
Nicola Murino	c9bd08cf9c	UI branding: use the short name on the login pages Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-05-15 07:30:36 +02:00
Nicola Murino	5d7f6960f3	web UIs: add branding support Fixes #829 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-05-13 19:40:52 +02:00
Nicola Murino	4995cf1b02	defender: allow to load blocklist/safelist also from config/env vars Fixes #831 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-05-13 14:46:07 +02:00
Dylan Legendre	4b099640de	Updating typos in openapi/swagger documentation as well as various markdown documentation files (#816 ) Signed-off-by: Dylan Legendre <dylanlegendre09@gmail.com>	2022-05-05 18:26:22 +02:00
Nicola Murino	14fb6c4038	always check recently updated users also fix the query to get users for quota check for sql based providers Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-04-30 11:59:36 +02:00
Nicola Murino	ecd488a840	data provider: remove prefer_database_credentials Google Cloud Storage credentials are now always stored within the data provider. Added a migration to read credentials from disk and store them inside the data provider. After v2.3 we can also remove credentials_path Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-04-28 12:55:01 +02:00
zemsten	857b6cc10a	Update full-configuration.md (#799 ) NGINX spelling Signed-off-by: Samuel Zarn <samz@localhost.localdomain>	2022-04-22 09:22:36 +02:00
Nicola Murino	cacfffc5bf	OIDC: add support for custom fields These fields can be used in the pre-login hook to implement custom logics Fixes #787 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-04-12 19:31:25 +02:00
Nicola Murino	f9d8b83c2a	sshd: disable by default ssh-rsa host key algo Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-04-04 18:52:19 +02:00
Nicola Murino	254b2ae87f	add support for AWS container Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-04-03 08:52:36 +02:00
Nicola Murino	5a40f998ae	check and update the password hashing algorithm on user login also add ldap md5 variant as per-user request Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-04-02 22:20:21 +02:00
Nicola Murino	55f8171dd1	sshd: add support for host key certificates Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-04-01 08:03:56 +02:00
Nicola Murino	a7b159aebb	ssh user certs: add a revoked list Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-03-31 21:49:06 +02:00
Nicola Murino	5cccb872bb	add support to redirect HTTP to HTTPS Fixes #777 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-03-26 10:00:02 +01:00
Nicola Murino	a31a9dc32c	update deps Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-03-21 17:52:18 +01:00
Pr0pHesyer	fa43791ea9	Optimized typography for better readability Signed-off-by: Pr0pHesyer <proskire@protonmail.com>	2022-03-21 15:05:43 +01:00
Nicola Murino	93b9c1617e	web UI: allow to load custom css Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-03-19 21:44:27 +01:00
Nicola Murino	4c710d731f	update to Go 1.18 temporarily disabled docker image for ppcle64 as alpine image is not yet available Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-03-18 21:52:00 +01:00
Nicola Murino	d9f30e7ac5	add a global whitelist if defined only the listed IPs/networks can access the configured services, all other client connections will be dropped before they even try to authenticate Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-03-17 22:10:52 +01:00
Nicola Murino	7e7f662a23	ensure that defaults defined in code match the default config file Fixes #754 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-03-14 10:42:14 +01:00
Nicola Murino	0bec1c6012	change the default value for prefer_database_credentials to true ... ... and deprecate this setting. In the future we'll remove prefer_database_credentials and credentials_path and we will not allow the credentials to be saved on the filesystem Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-03-13 14:29:11 +01:00
Nicola Murino	5582f5c811	data provider: add automatic backups Automatic backup are enabled by default, a new backup will be saved each day at midnight. The backups_path setting was moved from the httpd section to the data_provider one, please adjust your configuration file and or your env vars Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-03-13 13:45:07 +01:00
Nicola Murino	dcc3292dbc	web setup: add an optional installation code The purpose of this code is to prevent anyone who can access to the initial setup screen from creating an admin user Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-02-27 13:08:47 +01:00
Nicola Murino	7fc5cb80d6	deb/rpm packages: attempt to set the `cap_net_bind_service` capability so the service can bind to privileged ports without running as root user Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-02-26 10:10:51 +01:00

1 2 3 4

187 commits