sftpgo

mirror of https://github.com/drakkan/sftpgo.git synced 2025-12-06 14:20:55 +03:00

Author	SHA1	Message	Date
Nicola Murino	a5dd529d88	node token: embed permissions directly in JWT Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2025-08-22 15:57:41 +02:00
Nicola Murino	6bde42fc3f	dataprovider: prevent action execution after external authentication As per the documentation for external authentication, provider actions should not be executed post-authentication. Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2025-08-21 07:20:06 +02:00
Nicola Murino	a2d3613250	dataprovider: preserve initial sort order for related resources Folders and groups now retain their initial order, improving compatibility and predictability when used with Terraform Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2025-08-19 16:11:53 +02:00
Nicola Murino	76f6dc06de	Log output from command hooks Re-adds #1208 now that the CLA has been signed. Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2025-07-20 10:45:48 +02:00
Nicola Murino	b6873768b2	replace strings.Split with SplitSeq Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2025-05-31 19:03:41 +02:00
Nicola Murino	3f7533b86a	update deps ... ... and adapt the code to the new constants I added to golang.org/x/crypto/ssh Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2025-05-19 19:42:36 +02:00
Nicola Murino	9e2230cc33	Support leading and trailing spaces in user passwords This improves compatibility with external authentication providers that allow such characters in passwords. Passwords created via the WebAdmin UI are still sanitized to prevent user confusion. Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2025-04-26 14:31:13 +02:00
Nicola Murino	11d8fffd1b	remove obsoletes build constraints Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2025-04-20 17:15:40 +02:00
Nicola Murino	0da8adb7ac	EventManager: breaking change for placeholder names Placeholder names must now be in the format: {{.VirtualPath}} instead of: {{.VirtualPath}} Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2025-04-14 09:11:44 +02:00
Nicola Murino	cf573fc743	pre-login hook: fix loading user after update Fixes #1890 Closes #1891 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2025-03-29 17:29:28 +01:00
Nicola Murino	2255c5f000	upgrade golangci-lint to v2 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2025-03-29 11:36:19 +01:00
Nicola Murino	38689a71a7	migrations: fix placeholder for shared session table Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2025-03-23 12:06:57 +01:00
Nicola Murino	e590deebe0	db shared sessions: set key and type as primary key Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2025-03-23 11:34:10 +01:00
Nicola Murino	152448d116	dataprovider: add options to shares for future extensibility Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2025-02-16 12:06:00 +01:00
Nicola Murino	0013e35b28	update deps Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2025-02-06 19:23:05 +01:00
Nicola Murino	83ee977746	ip lists: check the list size before parsing the IP Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2025-01-23 08:07:33 +01:00
Nicola Murino	bf0961458c	remove some unnecessary string conversions Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2025-01-04 11:58:37 +01:00
Nicola Murino	37f8fb3a0e	add a link to the upgrading docs in the error message Fixes #1854 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-12-31 10:04:43 +01:00
Nicola Murino	9f873d1059	prefer strings.EqualFold to strings.strings.ToLower where possible Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-12-19 19:44:01 +01:00
Nicola Murino	b0061f570e	WebClient: refactor preserving share password Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-12-18 19:54:39 +01:00
Nicola Murino	bfe6c58133	don't allow DSA keys Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-12-18 19:01:15 +01:00
Nicola Murino	8c5f92aeb1	dataprovider events: fix string formatting for program hook Fixes #1845 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-12-18 18:37:44 +01:00
Nicola Murino	ec90b61bb4	allow to configure JWT tokens and cookies duration Fixes #1839 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-12-18 18:33:37 +01:00
Nicola Murino	c56be285a5	replace fnv with sha256 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-12-14 14:42:43 +01:00
Nicola Murino	6a7c8df1ef	use GenerateOpaqueString also for node secrets this method will use rand.Text() with Go 1.24 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-11-27 19:05:19 +01:00
Nicola Murino	d3e76898cd	WebAdmin: refactor template permissions Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-11-26 20:39:36 +01:00
Nicola Murino	c37b7f0493	provider rule events: allows to filter by user groups Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-11-15 14:01:08 +01:00
Nicola Murino	b524da11e9	EventManager: disable commands by default Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-11-10 12:08:17 +01:00
Nicola Murino	3dd412f6e3	WebAdmin and REST API: remove too granular permissions Our permissions system for admin users is too granular and some permissions overlap. For example, you can define an administrator with the "manage_system" permission and not with the "manage_admins" or "manage_user" permission, but the "manage_system" permission allows you to restore a backup and then create users and administrators. The following permissions will be removed: "manage_admins", "manage_apikeys", "manage_system", "retention_checks", "manage_event_rules", "manage_roles", "manage_ip_lists". Now you need to add the "*" permission to replace the removed granular permissions because the removed permissions allow actions that should only be allowed to super administrators. There is no point in having separate, overlapping permissions. Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-11-10 10:46:28 +01:00
Nicola Murino	88b1850b58	EventManager: allow to define the allowed system commands Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-11-01 11:37:33 +01:00
Nicola Murino	21bd8c5660	node: use a plain string as key Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-10-28 18:34:36 +01:00
Nicola Murino	d8691d1e1a	update translations Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-10-13 17:00:17 +02:00
Nicola Murino	eba4c93efd	user: add additional emails Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-10-11 19:20:51 +02:00
Nicola Murino	126cb1ee0d	remove some useless hooks Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-09-27 15:52:51 +02:00
Nicola Murino	eeef23139d	EventManager: filter action execution based on event status Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-09-23 19:55:03 +02:00
Nicola Murino	433d45ed87	WebUI: add a token validation mode that allows checking the signature Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-09-21 14:06:25 +02:00
Nicola Murino	1b928ef6b2	sqlite: execute PRAGMA optimize on startup Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-09-06 19:35:18 +02:00
Nicola Murino	fd6126134e	execute provider events also for plugin auth Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-09-06 19:17:31 +02:00
Nicola Murino	b9b370fbb8	add some pre-validation hooks Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-08-17 09:11:42 +02:00
Nicola Murino	d783ffc13f	fix new lint warnings Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-08-14 08:46:18 +02:00
Nicola Murino	954c36c0a2	add fs providers hook Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-08-10 15:57:05 +02:00
Nicola Murino	81433e00d1	event action: add update modtime to fs rename Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-08-09 20:18:33 +02:00
Nicola Murino	d94f80c8da	replace utils.Contains with slices.Contains Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-07-24 18:27:13 +02:00
Nicola Murino	b5c821795a	allow to customize name and log from the WebUI Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-07-24 09:14:27 +02:00
Nicola Murino	fef388d8cb	don't track quota for private virtual folders they are included within the user quota. This is a backward incompatible change. Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-07-13 21:02:40 +02:00
Nicola Murino	92849ca473	quota: move user and folder management to a common method Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-07-13 19:30:40 +02:00
Nicola Murino	55be9f0b9c	EventManager: allow to configure the timezone to use for the scheduler Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-06-30 18:52:59 +02:00
Nicola Murino	e0c1b974c9	add cgo to build constraints Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-06-16 09:46:17 +02:00
Nicola Murino	c5c42f072b	squash database migrations Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-06-15 16:02:09 +02:00
Nicola Murino	0cddcba5a7	EventManager: add an action to rotate the log file Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2024-06-04 19:51:52 +02:00

1 2 3 4 5

209 Commits