mirror/opencloud
1
0
Fork 0
mirror of https://github.com/opencloud-eu/opencloud.git synced 2026-01-06 05:01:10 -05:00
Code Issues Packages Projects Releases Wiki Activity
22,324 Commits 52 Branches 39 Tags
disableRunningCIWithWatchFS
Commit Graph

18 Commits

Author SHA1 Message Date
Ralf Haferkamp
4bdb3bf70f proxy(sign_url_auth): Allow to verify server signed URLs 
With the ocdav service being able to provided signed download URLs we
need the proxy to be able to verify the signatures.
This should also be a first step towards phasing out the weird ocs based
client side signed urls.

Related Tickets: #1104
 2025-07-17 12:01:59 +02:00
Ralf Haferkamp
601bb4c955 cleanup(proxy): Remove misleading comment 
The signedurl middleware is already adding the user to the context.
 2025-07-17 12:01:59 +02:00
André Duffeck
e8d35e1280 Use the opencloud reva from now on 2025-01-21 11:16:38 +01:00
Jörn Friedrich Dreyer
747b2879d7 proxy 
Signed-off-by: Jörn Friedrich Dreyer <jfd@butonic.de>
 2025-01-16 17:31:51 +01:00
Jörn Friedrich Dreyer
b07b5a1149 use plain pkg module 
Signed-off-by: Jörn Friedrich Dreyer <jfd@butonic.de>
 2025-01-13 16:42:19 +01:00
Jörn Friedrich Dreyer
8e028f17e9 change module name 
Signed-off-by: Jörn Friedrich Dreyer <jfd@butonic.de>
 2025-01-13 09:58:18 +01:00
Jörn Friedrich Dreyer
7fd8284daf mark header to not show up as a potential password leak G101 
Signed-off-by: Jörn Friedrich Dreyer <jfd@butonic.de>
 2024-10-22 10:57:01 +02:00
André Duffeck
bea1deebba Work around a problem with reverse proxies changing URLs being signed 
Fixes https://github.com/owncloud/ocis/issues/10180
 2024-10-04 09:50:58 +02:00
Jörn Friedrich Dreyer
26136f8f81 drop store service in favor of a micro store implementation (#8419) 
Signed-off-by: Jörn Friedrich Dreyer <jfd@butonic.de>
 2024-02-26 16:08:03 +01:00
Thomas Müller
b12cff1016 fix: properly check expiry and verify signature of signed urls (#8385) 
fix: signed url expiry validation only checks for expiry and not for used before
 2024-02-07 15:44:33 +01:00
Ralf Haferkamp
d57d52b33d proxy: Add an interface for user role assignment 
This moves the lookup and the creation of the users' role assignemt out
of the user backend into its own interface. This makes the user backend
a bit simpler and allows to provide different implemenation for the user
role assignment more easily.
 2023-03-20 15:12:09 +01:00
Ralf Haferkamp
88e8bb1b72 account_resolver: Handle user roles separately from user lookup 
This removes the "withRoles" flag from the GetUserByClaims lookup and move the
functionality into a separate method. This should make the code a bit more readable
in preparation for maintaining the RoleAssignments from OIDC claims.
 2023-03-20 15:12:09 +01:00
David Christofas
12d42e0074 add missing comments 2022-08-22 14:24:12 +02:00
David Christofas
b5ef10dc2b add missing comments and changelog 2022-08-16 16:53:27 +02:00
David Christofas
f35c8b9205 clean up the authenticators middlewares 2022-08-12 10:47:48 +02:00
David Christofas
e96819bce8 rewrite the auth middleware 
The old approach of the authentication middlewares had the problem that when an authenticator could not authenticate a request it would still send it to the next handler, in case that the next one can authenticate it. But if no authenticator could successfully authenticate the request, it would still be handled, which leads to unauthorized access.
 2022-08-12 10:47:43 +02:00
Christian Richter
f8f1320501 refactor extensions -> services 
Signed-off-by: Christian Richter <crichter@owncloud.com>
 2022-06-27 14:05:36 +02:00
Christian Richter
78064e6bab rename folder extensions -> services 
Signed-off-by: Christian Richter <crichter@owncloud.com>
 2022-06-27 14:05:36 +02:00