Mirrors/sftpgo
1
0
Fork 0
mirror of https://github.com/drakkan/sftpgo.git synced 2025-12-08 23:28:39 +03:00
Code Issues Packages Projects Releases Wiki Activity
1,570 Commits 10 Branches 53 Tags
5d9cda9d34273c452aafb54737c60c7d3dfdf25c
Commit Graph

1570 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Nicola Murino
184b99d500 user: add a field to indicate whether the password is set 
A structure similar to the one used for secrets would be better,
but we don't want to break backwards compatibility.

Also document that omitting the password field in the request body
will preserve the current password when updating a user using the
REST API. Added a test case for this.

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-04-06 18:22:09 +02:00
Nicola Murino
74f05e5305 EventManager: check the parent directory before creating a zip 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-04-03 18:53:13 +02:00
Nicola Murino
aefa7f77c2 add a link to the Terraform provider 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-04-02 18:48:56 +02:00
Nicola Murino
084d4109b8 WebAdmin: ensure to sanitize data before rendering 
Thanks to Polina Zvorykina, VK for reporting this issue

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-03-28 12:28:38 +02:00
Nicola Murino
b60d3f680e user as JSON: rename 2fa_protocols to two_factor_protocols 
This is a breaking change, but it is necessary to make JSON serialization of
users more compatible.
For example, Terraform does not allow JSON fields starting with numbers

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-03-26 15:57:53 +02:00
Nicola Murino
ee90bfb506 add unixcrypt build tag 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-03-26 10:33:30 +02:00
Nicola Murino
e17068a76f postgres provider: add support for load balancing 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-03-25 09:29:13 +01:00
Nicola Murino
354fc9b3d6 OIDC: allow to extract custom fields from sub-structs 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-03-23 18:15:07 +01:00
Nicola Murino
e29f6857db EventManager: add IDP login trigger and check account action 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-03-22 19:02:54 +01:00
Nicola Murino
40344ec0ff CI FreeBSD: compile and run tests using the same user 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-03-17 12:51:37 +01:00
Nicola Murino
783dff369b CI FreeBSD: install git 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-03-15 20:20:52 +01:00
Nicola Murino
72e0325d05 run test cases also on FreeBSD 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-03-15 19:44:45 +01:00
Nicola Murino
2710207779 update jquery, go deps, actions/setup-go to v4 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-03-15 18:44:08 +01:00
Nicola Murino
b719d03ebe WebAdmin: improve fs config layout 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-03-12 15:08:32 +01:00
Nicola Murino
84396343da fix some codeql warnings 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-03-10 17:30:06 +01:00
Nicola Murino
14242b59a2 oidc docs: add env vars config 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-03-09 18:58:36 +01:00
Nicola Murino
dad346cee8 add codeql 
update deps

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-03-05 16:38:29 +01:00
Nicola Murino
04282f94a4 update js and css deps 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-03-04 16:14:16 +01:00
Nicola Murino
0423e8f157 httpd: generate defender events for failed 2fa and password resets 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-03-04 13:55:48 +01:00
Nicola Murino
bdcee06665 WebClient: remove the default upload size limit 
Users who want a limit can still set it.
By default, we want to allow uploads of any size

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-03-02 18:26:21 +01:00
Nicola Murino
ae90ed2ba0 Docker: try again to add armv7 support 
Let's see if the actions are more stable now

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-03-02 18:11:26 +01:00
Nicola Murino
4ba3ae876d allow to set password strength at user/group level 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-03-02 09:11:30 +01:00
Nicola Murino
662164c7ff smtp: require templates only if a server is configured or in service mode 
This regression was introduced after recent changes to allow setting the SMTP
settings from the WebAdmin UI.

Fixes #1217

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-03-01 18:31:02 +01:00
Nicola Murino
fad6af11e5 don't expose error messages from pre-actions and post connect hooks 
always return a generic error instead to avoid leaking internal info

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-02-28 18:01:09 +01:00
Nicola Murino
dba088daed printf: replace %#v with the more explicit %q 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-02-27 19:19:57 +01:00
Nicola Murino
a23fdea9e3 ftpd: allow hostnames as passive IP 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-02-27 19:19:50 +01:00
Nicola Murino
561976bcd0 WebClient: return proper status code for http.MaxBytesError 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-02-27 11:03:05 +01:00
Nicola Murino
874776bd12 also capture logs for pre-login and check-password commands 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-02-26 15:15:34 +01:00
Felix Eckhofer
ec67b67e9e Send output from external_auth_hook to logs 
Signed-off-by: Felix Eckhofer <felix@eckhofer.com>
 2023-02-26 07:39:34 +01:00
Felix Eckhofer
71f691b208 Fix potential ldap injection 
Signed-off-by: Felix Eckhofer <felix@eckhofer.com>
 2023-02-26 07:10:58 +01:00
Nicola Murino
e0cbb966f0 eventmanager: skip password expiration check for expired users 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-02-25 16:33:39 +01:00
Nicola Murino
df9d47900a eventmanager: add user/folders as comma separated string in errors 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-02-25 15:26:38 +01:00
Nicola Murino
b8496c4d6e eventmanager: add user expiration check 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-02-25 13:06:09 +01:00
Nicola Murino
b0cfaf189c portable mode: allow to read the password from a file 
Fixes #1206

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-02-25 10:24:23 +01:00
Nicola Murino
195cb9f081 enable keyboard interactive authentication by default 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-02-24 20:22:32 +01:00
Nicola Murino
9a10740218 allow ACME HTTP-01 challenge with https redirect from port 80 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-02-24 20:08:14 +01:00
Nicola Murino
7bcd79a70a telemetry: improve test cases 
remove an unnecessary nil check in tlsutils added as workaround
to make telemetry test cases work

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-02-24 11:05:46 +01:00
Nicola Murino
beb8822df4 examples: update deps 
to silence dependabot alerts

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-02-23 19:25:30 +01:00
Nicola Murino
8805d85377 configs: add ACME section 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-02-23 19:25:20 +01:00
Nicola Murino
fcf9a8c673 scheduler: disable verbose logs 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-02-21 18:18:24 +01:00
Nicola Murino
2c1319985d sql providers: remove unnecessary []byte to string conversion 
always check affected rows for updates

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-02-20 18:14:02 +01:00
Nicola Murino
a3fff56da5 WebAdmin: add configs section 
Setting configurations is an experimental feature and is not currently
supported in the REST API

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-02-19 19:03:45 +01:00
Nicola Murino
14961a573f examples: update deps 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-02-18 13:46:06 +01:00
Nicola Murino
78cd5d8eba groups: add expiration date override 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-02-13 19:32:36 +01:00
Nicola Murino
2df2803a37 ipfilter plugin: add protocol 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-02-13 13:45:45 +01:00
Nicola Murino
7738faa040 events: add elapsed to UI and exports 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-02-13 12:58:21 +01:00
Nicola Murino
157d1db0b1 fs events: add elapsed field to notifications 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-02-12 18:56:53 +01:00
Nicola Murino
7e85356325 WebClient shares: replace basic auth with a login form 
basic auth will continue to work for REST API

Fixes #1166

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-02-12 08:29:53 +01:00
Nicola Murino
a3d0cf5ddf fix lint errors 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-02-10 19:59:03 +01:00
Nicola Murino
04ab8e72f6 WebUI: make error messages user dismissible 
Fixes #1171

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
 2023-02-10 18:07:23 +01:00