Mirrors/sftpgo
1
0
Fork 0
mirror of https://github.com/drakkan/sftpgo.git synced 2025-12-06 14:20:55 +03:00
Code Issues Packages Projects Releases Wiki Activity
2,174 Commits 9 Branches 53 Tags
392b22219f02607a48a79442d6b2dbe17f2604c6
Commit Graph

2174 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Nicola Murino
dee3f3f87a EventManager: add placeholder for filename without extension 
Fixes #1828
Fixes #1833

Co-authored-by: Per Osbeck <per.osbeck@consid.se>
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-12-23 19:08:48 +01:00
Nicola Murino
d2c5a6a914 update deps 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-12-23 08:50:51 +01:00
Nicola Murino
1a7f346b51 acme: use retryable client 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-12-21 18:28:15 +01:00
Nicola Murino
bb579e36db update deps 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-12-19 20:01:55 +01:00
Nicola Murino
843b8c38d3 SSH: add a test case for DSA keys 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-12-19 19:55:25 +01:00
Nicola Murino
70fc00d7eb Allow to choose enabled languages 
Fixes #1835

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-12-19 19:50:19 +01:00
Nicola Murino
9f873d1059 prefer strings.EqualFold to strings.strings.ToLower where possible 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-12-19 19:44:01 +01:00
Nicola Murino
b0061f570e WebClient: refactor preserving share password 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-12-18 19:54:39 +01:00
Nicola Murino
bfe6c58133 don't allow DSA keys 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-12-18 19:01:15 +01:00
Nicola Murino
8c5f92aeb1 dataprovider events: fix string formatting for program hook 
Fixes #1845

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-12-18 18:37:44 +01:00
Nicola Murino
ec90b61bb4 allow to configure JWT tokens and cookies duration 
Fixes #1839

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-12-18 18:33:37 +01:00
Nicola Murino
6a72552754 update deps 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-12-15 11:55:49 +01:00
dependabot[bot]
1ce408e673 Bump alpine from 3.20 to 3.21 (#1832) 
* Bump alpine from 3.20 to 3.21

Bumps alpine from 3.20 to 3.21.

---
updated-dependencies:
- dependency-name: alpine
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

* Update Dockerfile.alpine

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>

---------

Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Nicola Murino <nicola.murino@gmail.com>
 2024-12-15 10:01:09 +01:00
Nicola Murino
d3db80dc32 set stat: remove unecessary check 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-12-15 09:59:06 +01:00
Nicola Murino
c56be285a5 replace fnv with sha256 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-12-14 14:42:43 +01:00
Nicola Murino
599ee5a58f EventManager: check file size for more events 
Also add some defensive code

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-12-14 13:19:02 +01:00
Nicola Murino
7703f57122 rename: minor optimization 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-12-08 09:58:28 +01:00
Nicola Murino
b8a4ea50bd CI codecov action: replace deprecated "file" attribute with "files" 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-12-07 11:46:15 +01:00
Nicola Murino
49f2555914 update deps 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-12-07 10:35:09 +01:00
Nicola Murino
e21c989038 logs: add a specific log structure for successful logins 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-12-07 10:29:33 +01:00
Nicola Murino
f8bdb84e8d s3: metadata is not currently supported 
remove useless code, we'll add it again once we support metadata

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-12-01 17:32:15 +01:00
Nicola Murino
e161015c67 upload: avoid a stat call if not strictly required 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-11-30 20:43:19 +01:00
Nicola Murino
cbd7fc917e back to development 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-11-28 08:19:40 +01:00
Nicola Murino
6a7c8df1ef use GenerateOpaqueString also for node secrets 
this method will use rand.Text() with Go 1.24

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-11-27 19:05:19 +01:00
Nicola Murino
d3e76898cd WebAdmin: refactor template permissions 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-11-26 20:39:36 +01:00
Nicola Murino
0f9314f900 CI: skip signing Windows binaries for pull requests 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-11-23 19:26:28 +01:00
Nicola Murino
502e3658e0 CI: update workflows to use Azure Trusted Signing 
Fixes #1778

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-11-22 18:20:58 +01:00
Nicola Murino
0e77ba9546 update deps 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-11-21 07:52:57 +01:00
Nicola Murino
10b2e5671b silence lint warning 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-11-21 07:52:53 +01:00
Nicola Murino
ebc085da77 EventManager: always close the connection filesystem 
closing the user filesystem is not enough here

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-11-21 07:52:49 +01:00
Nicola Murino
4a414f0fa4 test cases: fix some random failures 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-11-21 07:52:45 +01:00
Nicola Murino
7a12db6cdb upgrade nfpm to 2.41.1 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-11-21 07:52:42 +01:00
Nicola Murino
f30a9a2095 OIDC cookie: use a cryptographically secure random string 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-11-21 07:52:36 +01:00
Nicola Murino
ed5ff9c5cc sftpd: remove allocator 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-11-21 07:52:24 +01:00
Nicola Murino
59833fba0d back to development 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-11-15 20:50:54 +01:00
Nicola Murino
a79cb30cdc CI: update codecov action to v5 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-11-15 17:28:55 +01:00
Nicola Murino
e1cd69d5ff update deps 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-11-15 17:26:12 +01:00
Nicola Murino
85333087fa fix license in Windows installer 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-11-15 17:06:49 +01:00
Nicola Murino
5ddac4b3b4 fix links to docs, add NOTICE 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-11-15 15:19:26 +01:00
Nicola Murino
c37b7f0493 provider rule events: allows to filter by user groups 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-11-15 14:01:08 +01:00
Nicola Murino
5896c1b7a5 update deps 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-11-13 20:22:31 +01:00
Nicola Murino
0f073a40fd logger: add cipher suite 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-11-13 18:33:07 +01:00
Nicola Murino
618723c457 httpd: always use an opaque signing key 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-11-12 19:27:34 +01:00
Nicola Murino
4cb6acefb2 oidc/oauth2: use an opaque state 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-11-11 19:43:57 +01:00
Nicola Murino
f22ec2275f fix new lint warnings 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-11-10 20:58:22 +01:00
Nicola Murino
7bffed712a events: add copy action 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-11-10 15:00:11 +01:00
Nicola Murino
f30d6ad82a update css and js deps 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-11-10 12:34:10 +01:00
Nicola Murino
b524da11e9 EventManager: disable commands by default 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-11-10 12:08:17 +01:00
Nicola Murino
3dd412f6e3 WebAdmin and REST API: remove too granular permissions 
Our permissions system for admin users is too granular and some
permissions overlap. For example, you can define an administrator
with the "manage_system" permission and not with the "manage_admins"
or "manage_user" permission, but the "manage_system" permission
allows you to restore a backup and then create users and
administrators. The following permissions will be removed:
"manage_admins", "manage_apikeys", "manage_system", "retention_checks",
"manage_event_rules", "manage_roles", "manage_ip_lists". Now you
need to add the "*" permission to replace the removed granular
permissions because the removed permissions allow actions that
should only be allowed to super administrators.
There is no point in having separate, overlapping permissions.

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-11-10 10:46:28 +01:00
Nicola Murino
ef98ee7d11 don't allow admins to change their own permissions 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2024-11-09 20:24:35 +01:00