1. 20 Mar, 2015 1 commit
  2. 18 Mar, 2015 1 commit
  3. 11 Mar, 2015 2 commits
  4. 05 Mar, 2015 1 commit
    • Robin McCorkell's avatar
      Refactor \OC\Memcache\Factory · 0e4933e6
      Robin McCorkell authored
      Caches divided up into two groups: distributed and local. 'Low latency' is an
      alias for local caches, while the standard `create()` call tries to get
      distributed caches first, then local caches.
      
      Memcache backend is set in `config.php`, with the keys `memcache.local` and
      `memcache.distributed`. If not set, `memcache.distributed` defaults to the value
      of `memcache.local`.
      0e4933e6
  5. 02 Mar, 2015 1 commit
    • Lukas Reschke's avatar
      Let users configure security headers in their Webserver · bbd5f284
      Lukas Reschke authored
      Doing this in the PHP code is not the right approach for multiple reasons:
      
      1. A bug in the PHP code prevents them from being added to the response.
      2. They are only added when something is served via PHP and not in other cases (that makes for example the newest IE UXSS which is not yet patched by Microsoft exploitable on ownCloud)
      3. Some headers such as the Strict-Transport-Security might require custom modifications by administrators. This was not possible before and lead to buggy situations.
      
      This pull request moves those headers out of the PHP code and adds a security check to the admin settings performed via JS.
      bbd5f284
  6. 01 Mar, 2015 1 commit
  7. 27 Feb, 2015 1 commit
  8. 26 Feb, 2015 1 commit
  9. 24 Feb, 2015 1 commit
    • Lukas Reschke's avatar
      Always load authentication apps · c1d7b22d
      Lukas Reschke authored
      The current code path may trigger situations where the LDAP application is not yet loaded and thus problems with the authentication appeared.
      
      In previous versions of ownCloud the authentication mechanism manually loaded these apps which is why this affects ownCloud 8 and master only for my knowledge. (certainly not 6, maybe 7)
      
      Backport to 8 might be something to consider.
      
      Fixes https://github.com/owncloud/core/issues/14469
      c1d7b22d
  10. 23 Feb, 2015 3 commits
  11. 18 Feb, 2015 3 commits
    • Lukas Reschke's avatar
      Fix invalid `ini_set` directives · 593681a4
      Lukas Reschke authored
      Somehow they got messed up. Because PHP does automatic type juggling this has worked before as well however it's not guaranteed that this might work in the future as well.
      593681a4
    • Lukas Reschke's avatar
      cd4c064e
    • Lukas Reschke's avatar
      Check if instance is not yet installed · 1a41f8f6
      Lukas Reschke authored
      Due to a security hardening in 8.1 a missing value of empty trusted domains in the config would provoke an error as this was misused by a lot of users.
      
      This caused a problem where the initial installation happened from another domain than 127.0.0.1 as in this case the domain was considered untrusted as no value was defined. However, this special case should not get intercepted.
      
      To test:
      - [ ] Installing ownCloud on 127.0.0.1 works
      - [ ] Installing ownCloud on another domain / IP works
      - [ ] When setting up ownCloud from 127.0.0.1 and accessing it from the domain above the trusted domain error should be shown if not specified in the config
      
      Fixes https://github.com/owncloud/core/issues/14320
      1a41f8f6
  12. 16 Feb, 2015 4 commits
  13. 13 Feb, 2015 1 commit
  14. 31 Jan, 2015 1 commit
  15. 22 Jan, 2015 1 commit
  16. 09 Jan, 2015 2 commits
    • Lukas Reschke's avatar
      5f31207e
    • Lukas Reschke's avatar
      Verify authentication before initializing apps and routing · 1c75b732
      Lukas Reschke authored
      The current behaviour of the authenticion logic in base.php prevents REST APIs in ownCloud applications to work.
      
      Because `!self::$CLI` is usually always a true statement the previously above block was entered which returned, thus the authentication logic for this part does not trigger in.
      
      This can be reproduced by installing apps such as the News app and issuing the following command:
      
      `curl -u admin:admin http://localhost/index.php/apps/news/api/v1-2/feeds`
      
      The following parts needs to get throughly tested:
      
      - [ ] OCS
      - [ ] remote.php's DAV features
      - [ ] Regular login features
      
      This bug affects master and stable7. I'd propose that we merge this for 8.0 since this has the potential to break every component that relies on Basic Auth features. A backport would also be very nice.
      
      Remark to myself: We really need to move out the authentication code for 8.1 out of base.php - I already have a local branch that does that somewhere which I will get in shape for 8.1... - This untested code is a night-mare.
      
      Fixes itself.
      1c75b732
  17. 02 Jan, 2015 2 commits
  18. 17 Dec, 2014 2 commits
  19. 16 Dec, 2014 1 commit
  20. 15 Dec, 2014 1 commit
  21. 13 Dec, 2014 1 commit
  22. 10 Dec, 2014 1 commit
  23. 08 Dec, 2014 2 commits
  24. 06 Dec, 2014 1 commit
    • Lukas Reschke's avatar
      Create config if it does not exists · bd520d2e
      Lukas Reschke authored
      The codepath that is executed when executing ownCloud via CLI is different than via browser. Specifically, the config is created by the user session already in `OC_Util::getInstanceId()` by a call to `setValue`. That said, this seems to be quite a bad side-effect, but for the sake of "not breaking whatever might break if we touch this" let's keep it that way for now.
      
      When executing the autoconfig via `php -f index.php` the said session was not setup and thus no `config/config.php` file was created resulting in an installation error.
      
      To reproduce this try to setup ownCloud via `php -f index.php` with and without that patch. (ensure to delete all existing configs before and don't access ownCloud with a browser in the meantime)
      
      Fixes itself.
      bd520d2e
  25. 05 Dec, 2014 1 commit
  26. 27 Nov, 2014 1 commit
  27. 26 Nov, 2014 1 commit
  28. 25 Nov, 2014 1 commit
    • Lukas Reschke's avatar
      Allow read-only configuration · fc116f56
      Lukas Reschke authored
      Workaround required for IIS setups running ownCloud to prevent dataloss.
      
      Long-term solution would be to move some configuration settings to the database
      fc116f56