opencloud

mirror of https://github.com/opencloud-eu/opencloud.git synced 2026-02-27 04:27:15 -05:00

Author	SHA1	Message	Date
Florian Schade	b69b9cd569	fix: simplify subject.session key parsing	2026-02-25 14:02:09 +01:00
Florian Schade	e8ecbd7af1	refactor: make the logout mode private	2026-02-25 14:02:09 +01:00
Florian Schade	fd614eacf1	fix: use base64 record keys to prevent separator clashes with subjects or sessionIds that contain a dot	2026-02-25 14:02:09 +01:00
Florian Schade	910298aa05	chore: change naming	2026-02-25 14:02:09 +01:00
Florian Schade	7350050a05	test: add more backchannellogout tests	2026-02-25 14:02:09 +01:00
Florian Schade	f72e3f1e32	chore: cleanup backchannel logout pr for review	2026-02-25 14:02:09 +01:00
Florian Schade	0c62c45494	enhancement: document idp side-effects	2026-02-25 14:02:09 +01:00
Florian Schade	f6553498f6	enhancement: finalize backchannel logout	2026-02-25 14:02:09 +01:00
Christian Richter	6a0fd89475	refactor deletion Co-authored-by: Jörn Dreyer <j.dreyer@opencloud.eu> Co-authored-by: Michael Barz <m.barz@opencloud.eu> Signed-off-by: Christian Richter <c.richter@opencloud.eu>	2026-02-25 14:02:09 +01:00
Christian Richter	cb38aaab16	create mapping in cache for subject => sessionid Signed-off-by: Christian Richter <c.richter@opencloud.eu>	2026-02-25 14:02:09 +01:00
Christian Richter	762062bfa3	add mapping to backchannel logout for subject => sessionid Signed-off-by: Christian Richter <c.richter@opencloud.eu>	2026-02-25 14:02:09 +01:00
Christian Richter	291265afb0	add additional validation to logout token Signed-off-by: Christian Richter <c.richter@opencloud.eu> Co-authored-by: Michael Barz <m.barz@opencloud.eu>	2026-02-25 14:02:09 +01:00
Ralf Haferkamp	6dde2839df	fix(oidc_auth): Fix userinfo cache expiration logic When the userinfo claims store in the usercache is found to be expired, do not return an error but ignore the cached entry and force a re-verification of the access token (either via parsing the JWT again or via a UserInfo lookup). This is required for setups with non-JWT access tokes where the expiry date set in the cached claims does not reflect the actual token expiry, but just the CacheTTL. Fixes: #1493	2026-02-19 13:17:17 +01:00
Ralf Haferkamp	0639304e96	docs(proxy): Clarify PROXY_OIDC_USERINFO_CACHE_TTL value Try to make it more precise when that value is actually relevant. Closes: #2252	2026-02-03 15:36:37 +01:00
Christian Richter	b51c4af8d9	remove logger from proxytest Signed-off-by: Christian Richter <c.richter@opencloud.eu>	2026-01-08 14:50:44 +01:00
Christian Richter	21975d75eb	consolidate log config in proxy Signed-off-by: Christian Richter <c.richter@opencloud.eu>	2026-01-08 13:16:55 +01:00
Jörn Friedrich Dreyer	84dce9a236	correctly handle paths ending in / Signed-off-by: Jörn Friedrich Dreyer <jfd@butonic.de>	2026-01-07 15:04:34 +01:00
Jörn Friedrich Dreyer	38eb7fb21b	use clean urls for routing Signed-off-by: Jörn Friedrich Dreyer <jfd@butonic.de>	2026-01-07 15:04:34 +01:00
Jörn Friedrich Dreyer	c99342318f	merge ocdav into frontend Signed-off-by: Jörn Friedrich Dreyer <jfd@butonic.de>	2026-01-07 15:04:34 +01:00
Florian Schade	151ccb1609	fix: remove unsupported service binary entrypoints	2025-12-23 12:23:41 +01:00
Christian Richter	0372869b8b	refactor remaining code from urfave/cli Signed-off-by: Christian Richter <c.richter@opencloud.eu>	2025-12-15 16:40:27 +01:00
Christian Richter	7be33b0607	refactor interims DefaultAppCobra to DefaultApp Signed-off-by: Christian Richter <c.richter@opencloud.eu>	2025-12-15 16:40:26 +01:00
Christian Richter	882dede6d3	migrate proxy from urfave/cli to spf13/cobra Signed-off-by: Christian Richter <c.richter@opencloud.eu>	2025-12-15 16:40:26 +01:00
Anja Barz	4dcecbf5c0	fix typo (#2024 )	2025-12-15 15:01:50 +01:00
Jörn Friedrich Dreyer	56817b7de7	introduce OC_EVENTS_TLS_INSECURE Signed-off-by: Jörn Friedrich Dreyer <jfd@butonic.de>	2025-11-28 11:17:39 +01:00
Jörn Friedrich Dreyer	10913ca00a	Merge pull request #1918 from opencloud-eu/otlp-tracing update otlp tracing	2025-11-27 12:57:26 +01:00
Christian Richter	444af91cce	Merge pull request #1714 from MahdiBaghbani/feature-ocm-wayf feat(ocm): add WAYF configuration for reva OCM service	2025-11-27 12:55:59 +01:00
Jörn Friedrich Dreyer	a3ef7f6d79	update otlp tracing Signed-off-by: Jörn Friedrich Dreyer <jfd@butonic.de>	2025-11-27 12:28:15 +01:00
fschade	60501659c5	chore: bump %%NEXT%%	2025-11-27 10:53:59 +01:00
Benedikt Kulmann	487a2a0aa6	fix: add update server to default csp rules (#1875 ) * fix: add update server to default csp rules * adapt tests --------- Co-authored-by: Viktor Scharf <v.scharf@opencloud.eu>	2025-11-21 17:13:22 +01:00
Christian Richter	97ee9b36a5	incorporate requested changes Signed-off-by: Christian Richter <c.richter@opencloud.eu>	2025-11-19 09:38:16 +01:00
Christian Richter	f9807f9f3a	actually load overrideyaml Signed-off-by: Christian Richter <c.richter@opencloud.eu>	2025-11-19 09:38:16 +01:00
Christian Richter	8007e8a269	add ability to completely override csp config Signed-off-by: Christian Richter <c.richter@opencloud.eu>	2025-11-19 09:38:16 +01:00
Christian Richter	63603679a5	remove obsolete comment Signed-off-by: Christian Richter <c.richter@opencloud.eu>	2025-11-19 09:38:16 +01:00
Christian Richter	16f9667fe8	adapt tests & deepmerge Signed-off-by: Christian Richter <c.richter@opencloud.eu>	2025-11-19 09:38:16 +01:00
Christian Richter	d16524510a	adapt tests Signed-off-by: Christian Richter <c.richter@opencloud.eu>	2025-11-19 09:38:16 +01:00
Christian Richter	20b903b32d	load two yaml configs Signed-off-by: Christian Richter <c.richter@opencloud.eu>	2025-11-19 09:38:16 +01:00
Ralf Haferkamp	37609e52df	feat!: Make the url signing secret a mandatory config option This is required for allowing the web office to download images to insert into documents. The secret is generated by `opencloud init` and the server refuses to start now without a secret being set. (Breaking Change) Also the setting is now moved to the shared options as all involved services need the same secret to work properly. Related: https://github.com/opencloud-eu/web/issues/704	2025-11-04 16:01:00 +01:00
Mahdi Baghbani	a004a9114f	feat(ocm): add wayf configuration for reva ocm service Signed-off-by: Mahdi Baghbani <mahdi-baghbani@azadehafzar.io>	2025-10-27 06:37:40 +00:00
Ralf Haferkamp	8cea8c8cfd	feat(proxy): account_resolver multi-tenancy Make the account resolve reject users without a tenantid, when multi-tenancy is enabled.	2025-10-06 11:21:57 +02:00
Michael Barz	4a0cc1004f	Fix collaboration service name (#1577 ) * fix: collaboration service name * change: do not use app name in service name * feat: make collaboration service name configurable * test: fix test config	2025-09-29 10:06:05 +02:00
Michael Barz	e7b7ceafd5	feat: make it possible to start the collaboration service in the single process (#1569 ) * feat: make it possible to start the collaboration service in the single process * feat: add proxy policy	2025-09-26 09:08:20 +02:00
Jörn Friedrich Dreyer	a75ece391f	use correct endpoint in nats check Signed-off-by: Jörn Friedrich Dreyer <jfd@butonic.de>	2025-09-22 15:41:17 +02:00
Roman Perekhod	c597dfb917	set default timeouts and clean up	2025-09-12 12:18:47 +02:00
Roman Perekhod	9a3fc08dd4	to separate controll ower the http and grpc driven services	2025-09-12 12:18:47 +02:00
Juan Pablo Villafáñez	9e1b80a1be	feat: use runners to startup the services	2025-09-12 12:18:47 +02:00
Jörn Friedrich Dreyer	1a8fc4d336	Merge pull request #1416 from opencloud-eu/nats-connection-names Nats connection names	2025-09-11 10:33:43 +02:00
Anja Barz	f36cf7832b	remove opencloud_full from the read.me and add opencloud-compose instead (#1474 ) * remove opencloud_full from the read.me and add opencloud-compose instead * remove wrong changes * add eicar file which accendially was removed * replace eicar.zip	2025-09-09 13:07:32 +02:00
Juan Pablo Villafáñez	c0b4a5daa0	chore: change constant name to camelcase	2025-09-08 17:32:36 +02:00
Juan Pablo Villafáñez	ca2dc823ef	feat: use names for connections to the nats event bus	2025-09-08 17:32:35 +02:00

1 2 3 4 5 ...

436 Commits