sftpgo

mirror of https://github.com/drakkan/sftpgo.git synced 2025-12-06 14:20:55 +03:00

Author	SHA1	Message	Date
Nicola Murino	22c875c0a1	sftpd: add support for OpenPubkey SSH Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2025-11-19 09:16:56 +01:00
Nicola Murino	74f8539247	pre-login hook: require either a full user object or no user modification The previous behavior was a leftover from an old refactor. This change aligns the pre-login hook with the behavior of other hooks, although it may break some edge cases that relied on the previous inconsistent behavior. Fixes #2107 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2025-11-18 20:09:22 +01:00
Nicola Murino	b2948a5255	sshd: removed Git support Git integration has been removed as it is out of scope for a file transfer solution like SFTPGo. Maintaining Git support introduces unnecessary complexity and potential security risks due to reliance on system commands. In particular, allowing Git operations could enable authorized users to upload repositories containing hooks, which might then be executed and abused. To reduce the attack surface and simplify the codebase, Git support has been fully dropped. Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2025-08-02 18:58:03 +02:00
Nicola Murino	0265c4c4a1	update deps Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2025-05-31 20:30:58 +02:00
Nicola Murino	3f7533b86a	update deps ... ... and adapt the code to the new constants I added to golang.org/x/crypto/ssh Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2025-05-19 19:42:36 +02:00
Nicola Murino	cf573fc743	pre-login hook: fix loading user after update Fixes #1890 Closes #1891 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2025-03-29 17:29:28 +01:00
Nicola Murino	4a414f0fa4	test cases: fix some random failures Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-11-21 07:52:45 +01:00
Nicola Murino	ae1487d733	fix connection limits an SFTP client can start multiple transfers on a single connection Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-10-26 21:18:19 +02:00
Nicola Murino	d783ffc13f	fix new lint warnings Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-08-14 08:46:18 +02:00
Nicola Murino	ec4bf3d76a	update deps and replace deprecated methods Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-08-11 08:59:21 +02:00
Nicola Murino	d94f80c8da	replace utils.Contains with slices.Contains Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-07-24 18:27:13 +02:00
Nicola Murino	fef388d8cb	don't track quota for private virtual folders they are included within the user quota. This is a backward incompatible change. Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-07-13 21:02:40 +02:00
Nicola Murino	356795f8b0	add a test case for listing files with long names Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-06-22 19:23:02 +02:00
Nicola Murino	5bde4b92a2	fix test cases Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-05-29 19:35:42 +02:00
Nicola Murino	665a980d62	improve error wrapping Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-05-14 19:10:36 +02:00
Nicola Murino	aa426016f2	sftpd: remove folder_prefix Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-04-26 11:43:25 +02:00
Nicola Murino	f7d9e56cac	ssh: remove moduli, log negotiated algorithms Fixes #1324 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-02-24 20:35:09 +01:00
Nicola Murino	51ae2d7301	add copy permission Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-02-20 18:19:09 +01:00
Nicola Murino	ad75543172	fix some new lint warnings Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-02-15 21:13:45 +01:00
Nicola Murino	c49553abd0	keyboard interactive: ask only the passcode if it is the second step Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-02-05 19:02:01 +01:00
Nicola Murino	eec9c449d4	vfs: make PipeReader an interface Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-01-24 19:59:50 +01:00
Nicola Murino	784b7585c1	remove end year from Copyright notice in files so we don't have to update all the files every year Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-01-01 11:31:45 +01:00
Nicola Murino	61b5f97bf2	scp: close transfers before sending upload errors This change should fix the random failure in TestSCPTransferQuotaLimits because the quota is already updated when the scp command ends. Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-12-21 18:03:07 +01:00
Nicola Murino	5f30ea3658	tests: add some logs to debug some sporadic test failures Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-12-17 10:46:21 +01:00
Nicola Murino	ac309cf9a3	WebClient: remove data schema usage from mfa page Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-11-18 20:06:31 +01:00
Nicola Murino	c5c5860012	ssh: allow to configure public key auth algorithms Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-11-09 20:03:04 +01:00
Nicola Murino	ba9df51b2e	fix or suppress lint warnings detected by golangci-lint 1.55.0 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-10-20 20:31:17 +02:00
Nicola Murino	f05fe78737	ssh: refactor host key algorithm restriction Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-10-07 16:07:19 +02:00
Nicola Murino	64c7588a44	sftpd: improve permissions checking test cases Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-10-04 19:41:50 +02:00
Nicola Murino	5ef0a2ed4b	External/plugin auth: check for password change after empty response Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-08-26 12:04:41 +02:00
Nicola Murino	132d18d5d1	sftpd: fix keyboard interactive test cases Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-08-04 21:32:14 +02:00
Nicola Murino	af0d7b48ad	sftpd: refactor multi-step authentication Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-08-04 20:56:23 +02:00
Nicola Murino	0413c0471c	add a specific permission to manage folders creating/updating folders embedded in users is no longer supported. Fixes #1349 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-07-23 18:48:49 +02:00
Nicola Murino	74e5999c63	added support for verifying sha256/sha512 passwords hash this simplifies the migration of users from some proprietary products Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-06-03 16:58:45 +02:00
Nicola Murino	adad8e658b	osfs: add optional buffering Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-05-16 18:08:14 +02:00
Nicola Murino	d0a171558d	fix test cases for system commands Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-04-15 16:09:53 +02:00
Nicola Murino	1ade850557	add a log to better debug a randomically failing test case Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-04-15 15:08:42 +02:00
Nicola Murino	3cb53b2c33	fix cross folder copy also update css/js deps and other minor changes Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-04-13 18:23:42 +02:00
Nicola Murino	2710207779	update jquery, go deps, actions/setup-go to v4 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-03-15 18:44:08 +01:00
Nicola Murino	dba088daed	printf: replace %#v with the more explicit %q Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-02-27 19:19:57 +01:00
Nicola Murino	a3fff56da5	WebAdmin: add configs section Setting configurations is an experimental feature and is not currently supported in the REST API Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-02-19 19:03:45 +01:00
Nicola Murino	1b1745b7f7	move IP/Network lists to the data provider this is a backward incompatible change, all previous file based IP/network lists will not work anymore Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-02-09 09:33:33 +01:00
Nicola Murino	27c4ffd663	sftpd: fix duplicate defender error introduced in the previous commit improve the defender test cases by verifying the expected score Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-01-25 21:57:27 +01:00
Nicola Murino	7b5bebc588	EventManager: add "on-demand" trigger Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-01-21 15:41:24 +01:00
Nicola Murino	8cad436421	conditional support for recursive renaming for cloud providers Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-01-06 12:33:50 +01:00
Nicola Murino	0190d0b849	update Copyright year Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2023-01-03 10:18:30 +01:00
Nicola Murino	ea4c4dd57f	eventmanager: add copy action refactor sftpgo-copy and sftpgo-remove commands Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-12-27 18:51:53 +01:00
Nicola Murino	0841c7d7bd	REST API: remove merging of fields on updates we use PUT verb not PATCH. We keep merging only to allow to preserve hidden/encrypted fields. This is a backward incompatible change, but is necessary to avoid unexpected issues. You have to pass complete objects on updates. Fixes #1088 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-12-23 09:36:20 +01:00
Nicola Murino	ad5d657a1a	add support for password policies you can now set a password expiration and the password change requirement Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-12-11 17:15:34 +01:00
Nicola Murino	1f9cf194fe	add role to events Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-12-03 11:45:27 +01:00

1 2

67 Commits