Mirrors/sftpgo
1
0
Fork 0
mirror of https://github.com/drakkan/sftpgo.git synced 2025-12-07 23:00:55 +03:00
Code Issues Packages Projects Releases Wiki Activity
1,659 Commits 9 Branches 53 Tags
59bdd4bc4e88c95e338a7ec2210056b67b70cb17
Commit Graph

113 Commits

Author SHA1 Message Date
Nicola Murino
bfa17314c6 keyboard interactive auth: respect hook disabled setting 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-11-18 11:28:15 +01:00
Nicola Murino
c5c5860012 ssh: allow to configure public key auth algorithms 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-11-09 20:03:04 +01:00
Nicola Murino
51febb19fa httpd: add database based token manager 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-11-01 10:54:14 +01:00
Nicola Murino
59378104b7 webclient: fix link for shares with a trailing space 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-10-29 07:33:56 +01:00
Nicola Murino
4a15775f65 allow to configure ALPN protocols 
Fixes #1406

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-10-28 12:35:26 +02:00
Nicola Murino
ba9df51b2e fix or suppress lint warnings detected by golangci-lint 1.55.0 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-10-20 20:31:17 +02:00
Nicola Murino
6282f95bd3 improve temp dirs handling an some logs 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-10-17 18:06:52 +02:00
Nicola Murino
4b685b21a2 configs: fix backward compatibility 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-10-07 22:02:10 +02:00
Nicola Murino
f05fe78737 ssh: refactor host key algorithm restriction 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-10-07 16:07:19 +02:00
Nicola Murino
19a95d8c55 httpfs: limit body size 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-10-07 11:28:16 +02:00
Nicola Murino
e54fd46a9e SQL providers: make sure we don't exceed the allowed placeholders 
Fixes #1415

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-09-12 19:15:40 +02:00
Nicola Murino
5ef0a2ed4b External/plugin auth: check for password change after empty response 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-08-26 12:04:41 +02:00
Nicola Murino
60cc07bc81 eventmanager: add DELETE method to HTTP notifications 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-08-09 18:44:17 +02:00
Nicola Murino
830116bcf2 shares: allow to force an expiration date 
this is a soft requirement, users can reactivate expired shares by
updating the expiration date

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-08-07 19:07:20 +02:00
Nicola Murino
ea96fe9a26 postgres provider: add support for "allow" and "prefer" SSL modes 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-08-05 20:01:14 +02:00
Nicola Murino
75e6ef6132 sftpd: remove diffie-hellman-group18-sha512 KEX 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-08-04 21:10:39 +02:00
Nicola Murino
af0d7b48ad sftpd: refactor multi-step authentication 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-08-04 20:56:23 +02:00
Nicola Murino
0413c0471c add a specific permission to manage folders 
creating/updating folders embedded in users is no longer supported.

Fixes #1349

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-07-23 18:48:49 +02:00
Nicola Murino
00366fce07 shares: respect password strength 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-07-16 16:51:38 +02:00
Nicola Murino
4f8794a255 file patterns: fix denied except rules 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-07-08 17:02:47 +02:00
Nicola Murino
76964a6b85 check second factor after plugin authentication 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-06-25 07:16:26 +02:00
Nicola Murino
a38ce460bb WebClient: show user quota 
Also remove per-source data transfer limits. This was an
oversight

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-06-16 21:06:21 +02:00
Nicola Murino
957d3a7b4d CockroachDB: use unordered_unique_rowid for primary keys 
sequential values in a primary key does not perform as well

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-06-10 18:23:35 +02:00
Nicola Murino
d7d7b0bbf0 dataprovider: fix sql for CockroachDB 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-06-10 15:32:51 +02:00
Nicola Murino
99424bfa58 squash database migrations 
SQLite: remove AUTOINCREMENT from primary keys. It is not needed.

Postgres: switch from serial to identity for primary keys.
This means Postgres < 10 will not work in v2.6.x

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-06-10 13:06:24 +02:00
Nicola Murino
9470cd6e69 multi-node installations: use a different backup path for each node 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-06-03 17:54:24 +02:00
Nicola Murino
74e5999c63 added support for verifying sha256/sha512 passwords hash 
this simplifies the migration of users from some proprietary products

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-06-03 16:58:45 +02:00
Nicola Murino
48939b2b4f add XOAUTH2 
start the countdown, let's see how long it takes for your favorite
Go-based proprietary SFTP server to notice this change, copy the SFTPGo
code and thus violate its license, and announce the same feature :)

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-06-03 16:17:32 +02:00
Nicola Murino
8339fee69d smtp: add debug option 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-05-30 19:11:28 +02:00
Nicola Murino
8f934f7c82 email action: allow to configure Bcc 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-05-25 19:55:27 +02:00
Nicola Murino
255985b7b0 Windows: start the service in a goroutine 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-05-23 12:59:27 +02:00
Nicola Murino
d28a53a6cf webdav: fix caching with external auth/plugins 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-05-20 12:39:07 +02:00
Nicola Murino
bbaca578cd EventManager: add content type option for email config 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-05-17 19:28:13 +02:00
Nicola Murino
adad8e658b osfs: add optional buffering 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-05-16 18:08:14 +02:00
Nicola Murino
4eded56d5f add support for log events 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-05-12 18:34:59 +02:00
Nicola Murino
712f2053a4 REST API dumpdata: allow to specify the resources to dump 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-04-18 18:11:23 +02:00
Nicola Murino
3cb53b2c33 fix cross folder copy 
also update css/js deps and other minor changes

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-04-13 18:23:42 +02:00
Nicola Murino
184b99d500 user: add a field to indicate whether the password is set 
A structure similar to the one used for secrets would be better,
but we don't want to break backwards compatibility.

Also document that omitting the password field in the request body
will preserve the current password when updating a user using the
REST API. Added a test case for this.

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-04-06 18:22:09 +02:00
Nicola Murino
ee90bfb506 add unixcrypt build tag 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-03-26 10:33:30 +02:00
Nicola Murino
e17068a76f postgres provider: add support for load balancing 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-03-25 09:29:13 +01:00
Nicola Murino
e29f6857db EventManager: add IDP login trigger and check account action 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-03-22 19:02:54 +01:00
Nicola Murino
0423e8f157 httpd: generate defender events for failed 2fa and password resets 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-03-04 13:55:48 +01:00
Nicola Murino
4ba3ae876d allow to set password strength at user/group level 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-03-02 09:11:30 +01:00
Nicola Murino
dba088daed printf: replace %#v with the more explicit %q 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-02-27 19:19:57 +01:00
Nicola Murino
874776bd12 also capture logs for pre-login and check-password commands 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-02-26 15:15:34 +01:00
Felix Eckhofer
ec67b67e9e Send output from external_auth_hook to logs 
Signed-off-by: Felix Eckhofer <felix@eckhofer.com>
 2023-02-26 07:39:34 +01:00
Nicola Murino
b8496c4d6e eventmanager: add user expiration check 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-02-25 13:06:09 +01:00
Nicola Murino
8805d85377 configs: add ACME section 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-02-23 19:25:20 +01:00
Nicola Murino
fcf9a8c673 scheduler: disable verbose logs 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-02-21 18:18:24 +01:00
Nicola Murino
2c1319985d sql providers: remove unnecessary []byte to string conversion 
always check affected rows for updates

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-02-20 18:14:02 +01:00