sftpgo

mirror of https://github.com/drakkan/sftpgo.git synced 2025-12-07 06:40:54 +03:00

Author	SHA1	Message	Date
Nicola Murino	e6bfbcd489	OIDC: allow to debug the received id_token Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-07-22 11:11:35 +02:00
Nicola Murino	d5946da1e2	OIDC: allow to enable only OIDC login for Web UIs Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-07-19 22:25:00 +02:00
Nicola Murino	21682d1c1d	add license header to source files Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-07-17 20:16:00 +02:00
Nicola Murino	101783ee86	config: fix replace from env vars for some sub list ensure to merge configuration from files with configuration from env for all the sub lists Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-06-28 19:44:12 +02:00
Nicola Murino	9a6b1a1315	Fix issues found in PR #887 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-06-25 10:42:17 +02:00
Nicola Murino	93ce593ed0	squash database migrations and remove the credentials_path setting Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-06-13 20:08:49 +02:00
Nicola Murino	f6b11c2d01	httpd/webdav: allow to configure trusted proxy header and depth Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-05-28 19:47:23 +02:00
Nicola Murino	7c724e18fe	add support for ACME compliant certificate authorities Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-05-27 07:39:55 +02:00
Nicola Murino	90c21458b8	OIDC: add support for implicit roles Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-05-22 14:38:25 +02:00
Nicola Murino	1a33b5bb53	allow different TLS certificates for each binding Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-05-21 16:34:47 +02:00
Nicola Murino	0ecaa862bd	web UIs: allow to replace the default CSS Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-05-21 11:05:58 +02:00
Nicola Murino	751946f47a	allow to customize timeout and env vars for program based hooks Fixes #847 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-05-20 19:30:54 +02:00
Nicola Murino	796ea1dde9	allow to store temporary sessions within the data provider so we can persist password reset codes, OIDC auth sessions and tokens. These features will also work in multi-node setups without sicky sessions now Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-05-19 19:49:51 +02:00
Nicola Murino	5d7f6960f3	web UIs: add branding support Fixes #829 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-05-13 19:40:52 +02:00
Nicola Murino	cacfffc5bf	OIDC: add support for custom fields These fields can be used in the pre-login hook to implement custom logics Fixes #787 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-04-12 19:31:25 +02:00
Nicola Murino	5cccb872bb	add support to redirect HTTP to HTTPS Fixes #777 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-03-26 10:00:02 +01:00
Nicola Murino	93b9c1617e	web UI: allow to load custom css Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-03-19 21:44:27 +01:00
Nicola Murino	7e7f662a23	ensure that defaults defined in code match the default config file Fixes #754 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-03-14 10:42:14 +01:00
Nicola Murino	dcc3292dbc	web setup: add an optional installation code The purpose of this code is to prevent anyone who can access to the initial setup screen from creating an admin user Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-02-27 13:08:47 +01:00
Nicola Murino	f1a255aa6c	httpd: allow to restrict allowed hosts ... ... and to add security headers to the responses Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-02-17 18:22:27 +01:00
Nicola Murino	1fccd05e9e	allow to configure the minimum version of TLS to be enabled Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-02-13 15:56:07 +01:00
Nicola Murino	66945c0a02	Web UIs: add OpenID Connect support Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-02-13 14:30:20 +01:00
Nicola Murino	1f619d5ea6	make the sdk a separate module The SFTPGo SDK now is at the following URL https://github.com/sftpgo/sdk Fixes #657 Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-01-06 11:54:43 +01:00
Nicola Murino	6d3d94a01f	move kms implementation outside the sdk package Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-01-06 10:11:47 +01:00
Nicola Murino	7c68b03d07	move plugin handling outside the sdk package Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-01-05 11:37:45 +01:00
Nicola Murino	2912b2e92e	sdk: add a logger interface we are now ready to make the sdk a separate module Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-01-04 16:07:41 +01:00
Nicola Murino	a6fe802370	move kms definitions to the sdk package This is the first step to make the sdk a separate module Signed-off-by: Nicola Murino <nicola.murino@gmail.com>	2022-01-04 12:49:30 +01:00
Nicola Murino	7d8823307f	defender: add provider driver Fixes #616	2021-12-25 12:08:07 +01:00
Nicola Murino	bedc8e288b	web client: add support for integrating external viewers/editors	2021-12-03 18:33:08 +01:00
Nicola Murino	4652f9ede8	FTPD: allow to set different passive IPs based on the client's IP address	2021-11-25 12:45:09 +01:00
Nicola Murino	3d6b09e949	REST API: expose OpenAPI schema and render it using Swagger UI Fixes #609	2021-11-21 09:32:51 +01:00
Martijn Pieters	f6938e76dc	Parse auth plugin information from env	2021-11-02 11:36:30 +01:00
Nicola Murino	74fc3aaf37	REST API: add events search	2021-10-23 15:47:21 +02:00
Nicola Murino	4aa9686e3b	refactor custom actions SFTPGo is now fully auditable, all fs and provider events that change something are notified and can be collected using hooks/plugins. There are some backward incompatible changes for command hooks	2021-10-10 13:08:05 +02:00
Nicola Murino	ea01c3a125	rate limiting: allow to exclude IP addresses/ranges Fixes #563	2021-10-03 20:50:05 +02:00
Nicola Murino	da0ccc6426	add SMTP support it will be used in future update to add email sending capabilities	2021-09-26 20:25:37 +02:00
Nicola Murino	8a4c21b64a	add builtin two-factor auth support The builtin two-factor authentication is based on time-based one time passwords (RFC 6238) which works with Authy, Google Authenticator and other compatible apps.	2021-09-04 12:11:04 +02:00
Nicola Murino	bcf088f586	data provider: update internal caches if the data provider is shared	2021-08-20 09:35:06 +02:00
Nicola Murino	a3c087456b	ftpd: add some security checks	2021-08-05 18:38:15 +02:00
Nicola Murino	4781921336	fix loading enabled_ssh_commands config key	2021-07-29 00:54:22 +02:00
Nicola Murino	90b324d707	Add a link on the login pages to switch between admin and web client login The links are hidden if only the web admin or only thw web client is enabled and can also be controlled using the "hide_login_url" setting Fixes #485	2021-07-27 18:43:00 +02:00
Nicola Murino	5967aa1aa5	FTP: enable ftpserverlib logging and make debug mode configurable	2021-07-20 17:22:08 +02:00
Nicola Murino	c900cde8e4	notifiers plugin: add settings to retry unhandled events	2021-07-20 12:51:21 +02:00
Nicola Murino	6d313f6d8f	expose KMS as plugin	2021-07-16 18:22:42 +02:00
Nicola Murino	bd5191dfc5	add experimental plugin system	2021-07-11 15:26:51 +02:00
Nicola Murino	076b2f0ee0	modules: add v2 support	2021-06-26 07:31:41 +02:00
Nicola Murino	3bb0ca1d2b	config: remove deprecated configuration keys	2021-06-19 09:47:06 +02:00
Nicola Murino	62744e081b	get HTTPD binding from env: respect the documented default	2021-06-17 15:57:41 +02:00
Nicola Murino	600268ebb8	httpclient: allow to set custom headers	2021-05-25 08:36:01 +02:00
Nicola Murino	c8f7fc9bc9	httpd/webdav: add a list of hosts allowed to send proxy headers X-Forwarded-For, X-Real-IP and X-Forwarded-Proto headers will be ignored for hosts not included in this list. This is a backward incompatible change, before the proxy headers were always used	2021-05-11 06:54:06 +02:00

1 2

93 Commits