daenamnu/nextcloud
1
0
Fork 0
mirror of https://github.com/nextcloud/all-in-one.git synced 2026-05-28 06:20:14 +00:00
Code Issues Packages Projects Releases Wiki Activity
8,191 Commits 90 Branches 272 Tags
bbafd6ff8c4bd6d757d52d14b44e44a5ec7c41ed
Commit Graph

8191 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
copilot-swe-agent[bot]
bbafd6ff8c revert: remove borgRestorePassword clearing and rate limiting (to be addressed in separate PRs) 
Agent-Logs-Url: https://github.com/nextcloud/all-in-one/sessions/d7eb7ba7-23d8-4082-8255-09f1338de24b

Co-authored-by: szaimen <42591237+szaimen@users.noreply.github.com>
 2026-05-12 10:02:28 +00:00
Simon L.
adcc41f401 Revert "revert: address PR review comments - remove borgRestorePassword clearing and GetTryLogin HTML redirect" 
This reverts commit 68bb93a2c8.
 2026-05-12 11:58:34 +02:00
copilot-swe-agent[bot]
68bb93a2c8 revert: address PR review comments - remove borgRestorePassword clearing and GetTryLogin HTML redirect 
Agent-Logs-Url: https://github.com/nextcloud/all-in-one/sessions/55bc79a5-dea6-4bcf-9d13-030209b54382

Co-authored-by: szaimen <42591237+szaimen@users.noreply.github.com>
 2026-05-12 09:55:20 +00:00
copilot-swe-agent[bot]
a415c76ad2 security: null-check currentScript, handle apcu_inc failure, use apcu_fetch success param 
Agent-Logs-Url: https://github.com/nextcloud/all-in-one/sessions/f1016d36-0771-46e0-992c-95ce22594414

Co-authored-by: szaimen <42591237+szaimen@users.noreply.github.com>
 2026-05-04 10:09:07 +00:00
copilot-swe-agent[bot]
79e05f33cd security: enforce APCu availability, fix fixed-window rate limiting, tighten URL validation 
Agent-Logs-Url: https://github.com/nextcloud/all-in-one/sessions/f1016d36-0771-46e0-992c-95ce22594414

Co-authored-by: szaimen <42591237+szaimen@users.noreply.github.com>
 2026-05-04 10:06:14 +00:00
copilot-swe-agent[bot]
ef58220c09 security: use persistent HMAC key, validate clean-history target, improve comments 
Agent-Logs-Url: https://github.com/nextcloud/all-in-one/sessions/f1016d36-0771-46e0-992c-95ce22594414

Co-authored-by: szaimen <42591237+szaimen@users.noreply.github.com>
 2026-05-04 10:03:53 +00:00
copilot-swe-agent[bot]
6a9e55a8de security: address second round of code-review comments 
Agent-Logs-Url: https://github.com/nextcloud/all-in-one/sessions/f1016d36-0771-46e0-992c-95ce22594414

Co-authored-by: szaimen <42591237+szaimen@users.noreply.github.com>
 2026-05-04 10:01:09 +00:00
copilot-swe-agent[bot]
8356d0dadc security: address code-review comments on rate-limit and clean-history script 
Agent-Logs-Url: https://github.com/nextcloud/all-in-one/sessions/f1016d36-0771-46e0-992c-95ce22594414

Co-authored-by: szaimen <42591237+szaimen@users.noreply.github.com>
 2026-05-04 09:58:46 +00:00
copilot-swe-agent[bot]
3e72f06d32 security: fix brute-force protection, token history leak, streaming XSS, borg password persistence, and missing cache headers 
Agent-Logs-Url: https://github.com/nextcloud/all-in-one/sessions/f1016d36-0771-46e0-992c-95ce22594414

Co-authored-by: szaimen <42591237+szaimen@users.noreply.github.com>
 2026-05-04 09:56:38 +00:00
Simon L.
99ea91c5ef increase to v13.0.1 
Signed-off-by: Simon L. <szaimen@e.mail.de>
v13.0.1 		2026-05-04 10:49:10 +02:00
Simon L.
7b2de0683e fix harp container not starting anymore (#8048) 2026-05-04 10:48:29 +02:00
Simon L.
f7b677fb51 fix harp container not starting anymore 
Signed-off-by: Simon L. <szaimen@e.mail.de>
 2026-05-04 10:39:21 +02:00
Simon L.
ee8a5a185c mastercontainer: fix checking for AIO_LOG_LEVEL (#8035) 2026-05-04 10:36:45 +02:00
Simon L.
2b0cb13f35 aio-interface: fix Cross-Origin-* headers not being sent (#8046) 2026-05-04 10:36:22 +02:00
Zoey
a1eaea85ed fix Cross-Origin-* headers not being sent 
Signed-off-by: Zoey <zoey@z0ey.de>
 2026-05-03 22:34:27 +02:00
Simon L.
c545bffc53 mastercontainer: fix checking for AIO_LOG_LEVEL 
Signed-off-by: Simon L. <szaimen@e.mail.de>
 2026-04-30 16:07:48 +02:00
Simon L.
dc27f8078f nextcloud: update to 33.0.3 (#8032) v13.0.0 2026-04-30 11:22:32 +02:00
Simon L.
9f9846461e nextcloud: update to 33.0.3 
Signed-off-by: Simon L. <szaimen@e.mail.de>
 2026-04-30 11:19:13 +02:00
Simon L.
8e3141ab75 fix update-yaml script detail 
Signed-off-by: Simon L. <szaimen@e.mail.de>
 2026-04-29 18:41:12 +02:00
Simon L.
f060a334d3 collabora: fix log level info (#8030) 2026-04-29 17:59:10 +02:00
Simon L.
4417d1ca7a collabora: fix log level info 
Signed-off-by: Simon L. <szaimen@e.mail.de>
 2026-04-29 17:57:25 +02:00
Simon L.
cdc617d0b7 another fix for redis 
Signed-off-by: Simon L. <szaimen@e.mail.de>
 2026-04-29 17:31:35 +02:00
Simon L.
71dbf98d48 fix detail 
Signed-off-by: Simon L. <szaimen@e.mail.de>
 2026-04-29 17:06:32 +02:00
Simon L.
42e2d88b3e redis: fix log level (#8029) 2026-04-29 17:02:03 +02:00
Simon L.
4682355bfe redis: fix log level 
Signed-off-by: Simon L. <szaimen@e.mail.de>
 2026-04-29 17:01:14 +02:00
Simon L.
13ac536b68 nextcloud: overwrite the log level every start (#8028) 2026-04-29 15:02:35 +02:00
Simon L.
9b9b3b638d nextcloud: overwrite the log level every start 
Signed-off-by: Simon L. <szaimen@e.mail.de>
 2026-04-29 15:01:17 +02:00
Simon L.
7b6bda1f60 postgres: fix healthcheck (#8027) 2026-04-29 14:55:57 +02:00
Simon L.
764314524d caddy: revert being able to adjust the log level for it for now (#8021) 2026-04-29 14:55:21 +02:00
Simon L.
4910c3f012 postgres: fix healthcheck 
Signed-off-by: Simon L. <szaimen@e.mail.de>
 2026-04-29 14:54:36 +02:00
Simon L.
55790da3eb caddy: revert being able to adjust the log level for it for now 
Signed-off-by: Simon L. <szaimen@e.mail.de>
 2026-04-29 14:47:32 +02:00
Simon L.
4e8292b922 acme.Caddyfile: mute caddy warnings 
Signed-off-by: Simon L. <szaimen@e.mail.de>
 2026-04-28 21:38:41 +02:00
Simon L.
50643afd6a allow to adjust the log level globally (#7902) 2026-04-28 18:08:27 +02:00
Simon L.
4f4ef8f1d6 add our own entrypoint to fts and collabora 
Signed-off-by: Simon L. <szaimen@e.mail.de>
 2026-04-28 15:39:57 +02:00
Simon L.
4acc5b87e3 nextcloud: fix intermittent 502 Bad Gateway: PHP-FPM request_terminate_timeout + process_idle_timeout (#8013) 2026-04-28 10:00:59 +02:00
Simon L.
753ea8d3fd build(deps): bump nats from 2.12.7-scratch to 2.12.8-scratch in /Containers/talk (#8014) 2026-04-28 09:38:19 +02:00
dependabot[bot]
dbda18b67d build(deps): bump nats in /Containers/talk 
Bumps nats from 2.12.7-scratch to 2.12.8-scratch.

---
updated-dependencies:
- dependency-name: nats
  dependency-version: 2.12.8-scratch
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2026-04-28 04:46:51 +00:00
Simon L.
461f9e14c1 Apply suggestion from @szaimen 
Signed-off-by: Simon L. <szaimen@e.mail.de>
 2026-04-27 17:57:47 +02:00
Simon L.
457a0d9fef Apply suggestion from @szaimen 
Signed-off-by: Simon L. <szaimen@e.mail.de>
 2026-04-27 17:56:07 +02:00
copilot-swe-agent[bot]
ffd9dd2da8 refactor: move request_terminate_timeout to Dockerfile; remove 502 docs section 
- Remove request_terminate_timeout sed from start.sh (was runtime-dynamic)
- Add request_terminate_timeout sed to Dockerfile alongside pm.process_idle_timeout
  so it is baked into the image permanently at build time
- Remove the 502 Bad Gateway troubleshooting subsection from reverse-proxy.md

Agent-Logs-Url: https://github.com/nextcloud/all-in-one/sessions/bc8a9920-0b43-4645-9591-180fa8783767

Co-authored-by: szaimen <42591237+szaimen@users.noreply.github.com>
 2026-04-27 15:54:49 +00:00
copilot-swe-agent[bot]
2bc3c4e7ec refine: improve sed pattern specificity and remove hardcoded timeout from docs 
- Use \s*= in pm.process_idle_timeout sed pattern to match only setting
  lines, not comment-only lines that mention the setting name
- Remove hardcoded '5 minutes' from docs; reference pm.process_idle_timeout
  by name so it stays accurate if the value changes

Agent-Logs-Url: https://github.com/nextcloud/all-in-one/sessions/2fd7a6d1-bfdb-4f26-a8d0-cd54a7307999

Co-authored-by: szaimen <42591237+szaimen@users.noreply.github.com>
 2026-04-27 15:32:37 +00:00
copilot-swe-agent[bot]
46eb2dfc7d fix: prevent 502 Bad Gateway via PHP-FPM worker pool exhaustion and cold-start latency 
- Add request_terminate_timeout = PHP_MAX_TIME in start.sh: without this
  (default 0 = disabled) workers blocked on a slow DB query, stalled Redis
  connection, or hung syscall are never reaped.  Over time they fill
  pm.max_children and Apache returns 502 Bad Gateway to the reverse proxy.

- Set pm.process_idle_timeout = 300s in Dockerfile: the upstream default of
  10 s kills all idle workers after a brief quiet period.  The next request
  burst must then wait for fresh PHP-FPM forks; on a loaded host that
  spawn latency can push Apache past its FastCGI deadline and produce a 502.
  300 s keeps a warm pool through normal desktop-sync polling cycles.

- Add a dedicated 502 troubleshooting subsection to reverse-proxy.md
  documenting the six most common causes (proxy timeout, worker exhaustion,
  stuck workers, Redis session lock contention, container cold start, Caddy
  cert renewal) with actionable diagnostics.

Agent-Logs-Url: https://github.com/nextcloud/all-in-one/sessions/2fd7a6d1-bfdb-4f26-a8d0-cd54a7307999

Co-authored-by: szaimen <42591237+szaimen@users.noreply.github.com>
 2026-04-27 15:31:14 +00:00
Simon L.
119f68b6ee aio-interface: also reset the borg backup cache when resetting the backup path (#7998) 2026-04-27 14:36:05 +02:00
Simon L.
cd2d06fca6 aio-interface: only set the placeholder for timezone and not the value automatically because it is confusing (#7999) 2026-04-27 14:32:24 +02:00
Simon L.
6c3403d95d domain-check: replace curl with GuzzleHttp\Client in ConfigurationManager (#7994) 2026-04-27 14:31:53 +02:00
Simon L.
8b40127b0e fulltextsearch: update Elasticsearch to v9 (#8004) 2026-04-27 14:30:10 +02:00
Simon L.
8d77f3340a PHP dependency updates (#8011) 2026-04-27 14:29:30 +02:00
szaimen
dac2ccd195 php dependency updates 
Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
 2026-04-27 12:28:00 +00:00
Simon L.
c7d980e7bc build(deps): bump haproxy from 3.3.6-alpine to 3.3.7-alpine in /Containers/docker-socket-proxy (#8007) 2026-04-27 10:24:58 +02:00
dependabot[bot]
024e404c8d build(deps): bump haproxy in /Containers/docker-socket-proxy 
Bumps haproxy from 3.3.6-alpine to 3.3.7-alpine.

---
updated-dependencies:
- dependency-name: haproxy
  dependency-version: 3.3.7-alpine
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2026-04-27 04:20:12 +00:00