Mirrors/sftpgo
1
0
Fork 0
mirror of https://github.com/drakkan/sftpgo.git synced 2025-12-07 23:00:55 +03:00
Code Issues Packages Projects Releases Wiki Activity
2,047 Commits 9 Branches 53 Tags
0e77ba9546f9c4fe501d7d02a2c9bba16e7f208c
Commit Graph

183 Commits

Author SHA1 Message Date
Nicola Murino
c37b7f0493 provider rule events: allows to filter by user groups 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-11-15 14:01:08 +01:00
Nicola Murino
b524da11e9 EventManager: disable commands by default 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-11-10 12:08:17 +01:00
Nicola Murino
3dd412f6e3 WebAdmin and REST API: remove too granular permissions 
Our permissions system for admin users is too granular and some
permissions overlap. For example, you can define an administrator
with the "manage_system" permission and not with the "manage_admins"
or "manage_user" permission, but the "manage_system" permission
allows you to restore a backup and then create users and
administrators. The following permissions will be removed:
"manage_admins", "manage_apikeys", "manage_system", "retention_checks",
"manage_event_rules", "manage_roles", "manage_ip_lists". Now you
need to add the "*" permission to replace the removed granular
permissions because the removed permissions allow actions that
should only be allowed to super administrators.
There is no point in having separate, overlapping permissions.

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-11-10 10:46:28 +01:00
Nicola Murino
88b1850b58 EventManager: allow to define the allowed system commands 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-11-01 11:37:33 +01:00
Nicola Murino
21bd8c5660 node: use a plain string as key 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-10-28 18:34:36 +01:00
Nicola Murino
d8691d1e1a update translations 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-10-13 17:00:17 +02:00
Nicola Murino
eba4c93efd user: add additional emails 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-10-11 19:20:51 +02:00
Nicola Murino
126cb1ee0d remove some useless hooks 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-09-27 15:52:51 +02:00
Nicola Murino
eeef23139d EventManager: filter action execution based on event status 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-09-23 19:55:03 +02:00
Nicola Murino
433d45ed87 WebUI: add a token validation mode that allows checking the signature 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-09-21 14:06:25 +02:00
Nicola Murino
1b928ef6b2 sqlite: execute PRAGMA optimize on startup 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-09-06 19:35:18 +02:00
Nicola Murino
fd6126134e execute provider events also for plugin auth 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-09-06 19:17:31 +02:00
Nicola Murino
b9b370fbb8 add some pre-validation hooks 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-08-17 09:11:42 +02:00
Nicola Murino
d783ffc13f fix new lint warnings 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-08-14 08:46:18 +02:00
Nicola Murino
954c36c0a2 add fs providers hook 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-08-10 15:57:05 +02:00
Nicola Murino
81433e00d1 event action: add update modtime to fs rename 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-08-09 20:18:33 +02:00
Nicola Murino
d94f80c8da replace utils.Contains with slices.Contains 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-07-24 18:27:13 +02:00
Nicola Murino
b5c821795a allow to customize name and log from the WebUI 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-07-24 09:14:27 +02:00
Nicola Murino
fef388d8cb don't track quota for private virtual folders 
they are included within the user quota.
This is a backward incompatible change.

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-07-13 21:02:40 +02:00
Nicola Murino
92849ca473 quota: move user and folder management to a common method 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-07-13 19:30:40 +02:00
Nicola Murino
55be9f0b9c EventManager: allow to configure the timezone to use for the scheduler 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-06-30 18:52:59 +02:00
Nicola Murino
e0c1b974c9 add cgo to build constraints 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-06-16 09:46:17 +02:00
Nicola Murino
c5c42f072b squash database migrations 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-06-15 16:02:09 +02:00
Nicola Murino
0cddcba5a7 EventManager: add an action to rotate the log file 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-06-04 19:51:52 +02:00
Nicola Murino
3bd1eeacc1 make sure to return a fully populated user after plugin auth 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-06-04 18:14:09 +02:00
Nicola Murino
1698ec2eb3 EventManager: fix adding ObjectDataString for provider events 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-05-31 20:01:38 +02:00
Nicola Murino
eb0c6549c4 micro optimization 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-05-12 18:10:03 +02:00
Nicola Murino
4502509c2d pgsql: validate target_session_attrs 
silently ignore invalid values

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-05-09 19:55:12 +02:00
Nicola Murino
5d24d665bd add an util method to convert []byte to string 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-05-08 19:01:58 +02:00
Nicola Murino
a1af33c6aa WebClient: allow to set TLS certificates 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-05-03 18:30:03 +02:00
Nicola Murino
0a8a0ee771 revert #450 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-04-27 10:50:25 +02:00
Nicola Murino
1fc0f21506 hooks: remove logging output from external programs 
This reverts #1208 because the contributor did not respond to our
request to sign the CLA

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-04-26 11:13:16 +02:00
Nicola Murino
26d19abf61 remove reading data provider username and password from file 
This reverts #1455 because the contributor cannot sign the CLA

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-04-26 10:57:38 +02:00
Nicola Murino
a38fd26cf6 minor refactor to memory provider initialization 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-04-20 16:45:20 +02:00
Nicola Murino
950cf67e4c dataprovider: small refactor for password check 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-04-18 18:23:16 +02:00
Nicola Murino
150a338166 removed unused methods 
these methods were used in the old UIs

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-04-14 09:23:57 +02:00
Nicola Murino
ff48386cc8 store used data transfer as big integer 
we originally stored these values as MB but since we use bytes now,
an integer field is not enough.

Fixes #1575

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-04-02 18:38:22 +02:00
Nicola Murino
1196727448 dataretention: remove ignore_user_permissions 
Required permissions are now automatically granted as for any other
filesystem action

Fixes #1564

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-04-01 15:07:03 +02:00
Nicola Murino
cc9a0d4dc2 add time-based access restrictions 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-03-17 11:30:03 +01:00
Nicola Murino
26d3105f54 groups: add role placeholder 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-03-12 18:21:50 +01:00
Nicola Murino
f38966c6ac WebClient: refactor long-running tasks to improve browser compatibility 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-03-11 18:19:57 +01:00
Nicola Murino
4d357a6a57 EventManager: allow to check for inactive users 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-03-04 19:48:10 +01:00
Nicola Murino
8b2188fcb6 remove some useless nil checks 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-03-02 18:49:07 +01:00
Nicola Murino
92911bda2b require at least 2048 bits for RSA certificates/keys 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-02-25 11:12:57 +01:00
Nicola Murino
f7d9e56cac ssh: remove moduli, log negotiated algorithms 
Fixes #1324

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-02-24 20:35:09 +01:00
Nicola Murino
a577d8b3cd WebAdmin: allow to disable 2FA 
Before it was only possible using REST API

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-02-23 18:24:07 +01:00
Nicola Murino
9a6a65931e two-factor auth: fixed validation of conflicting settings 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-02-22 18:20:51 +01:00
Nicola Murino
de089e51fd Web: allow to require password change and two-factor for admins 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-02-21 20:45:10 +01:00
Nicola Murino
51ae2d7301 add copy permission 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-02-20 18:19:09 +01:00
Nicola Murino
e61fb42cbc remove metadata plugin 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-02-17 12:30:47 +01:00