From dff2f29b88a2dd0ac0378cab3bc6cfc204d4b8d7 Mon Sep 17 00:00:00 2001 From: diroots Date: Wed, 12 May 2021 17:06:28 +0200 Subject: [PATCH 1/8] add notes to each patch of our custom nextcloud image --- patches/001-sha512-signature.patch | 7 +++++++ patches/002-login-without-domain.patch | 9 +++++++++ patches/003-contact-search-removal.patch | 7 +++++++ .../004-contact-search-controller-removal.patch | 7 +++++++ patches/005-autocomplete-user-leak-core.patch | 15 +++++++++++++++ .../005-autocomplete-user-leak-custom-app.patch | 13 +++++++++++++ patches/006-notes-url-fix.patch | 7 +++++++ patches/007-recovery-email-changes.patch | 8 ++++++++ 8 files changed, 73 insertions(+) diff --git a/patches/001-sha512-signature.patch b/patches/001-sha512-signature.patch index 10584644..87ac33bd 100644 --- a/patches/001-sha512-signature.patch +++ b/patches/001-sha512-signature.patch @@ -1,3 +1,10 @@ +From: Arnau +Date: Thu, 04 Feb 2021 12:43:42 +0100 +Subject: [PATCH] change checksum of files + +This patch replace file checksums for file integrity check to perform well + +diff --git files/signature_1908.json files/signature_1908-patched.json --- files/signature_1908.json 2021-02-04 12:42:17.000000000 +0100 +++ files/signature_1908-patched.json 2021-02-04 12:43:42.000000000 +0100 @@ -4873,11 +4873,11 @@ diff --git a/patches/002-login-without-domain.patch b/patches/002-login-without-domain.patch index 934665fe..6e670628 100644 --- a/patches/002-login-without-domain.patch +++ b/patches/002-login-without-domain.patch @@ -1,3 +1,12 @@ +From: Arnau +Date: Thu, 04 Feb 2021 11:24:27 +0100 +Subject: [PATCH] auto append domain when user logs in only with his username, except admin user + +This patch auto append the domain handled by nc, configured in env var. + +only the admin user (also configured in env var) will not have his login appended with a @domain suffix + +diff --git files/LoginController.php files/LoginController-new.php --- files/LoginController.php 2021-02-04 11:20:48.000000000 +0100 +++ files/LoginController-new.php 2021-02-04 11:24:27.000000000 +0100 @@ -299,6 +299,15 @@ diff --git a/patches/003-contact-search-removal.patch b/patches/003-contact-search-removal.patch index a7b28400..a4887e07 100644 --- a/patches/003-contact-search-removal.patch +++ b/patches/003-contact-search-removal.patch @@ -1,3 +1,10 @@ +From: diroots +Date: Tue, 02 Feb 2021 16:47:33 +0100 +Subject: [PATCH] remove user search icon in header tab + +This patch removes the top right icon enabling the global user search function available to all in nextcloud. + +diff --git layout.user.php layout.user.php-new --- layout.user.php 2021-02-02 16:47:17.348572250 +0100 +++ layout.user.php-new 2021-02-02 16:47:33.128646878 +0100 @@ -111,14 +111,6 @@ diff --git a/patches/004-contact-search-controller-removal.patch b/patches/004-contact-search-controller-removal.patch index 0ada4312..d4dc24da 100644 --- a/patches/004-contact-search-controller-removal.patch +++ b/patches/004-contact-search-controller-removal.patch @@ -1,3 +1,10 @@ +From: diroots +Date: Thu, 04 Feb 2021 10:30:13 +0100 +Subject: [PATCH] do not return these results in user search + +This patch removes some results from the contact menu controller, not to leak user informations + +diff --git ContactsMenuController.php ContactsMenuController-new.php --- ContactsMenuController.php 2021-02-04 10:20:18.000000000 +0100 +++ ContactsMenuController-new.php 2021-02-04 10:30:13.000000000 +0100 @@ -58,7 +58,7 @@ diff --git a/patches/005-autocomplete-user-leak-core.patch b/patches/005-autocomplete-user-leak-core.patch index c8967262..1b7a38bd 100644 --- a/patches/005-autocomplete-user-leak-core.patch +++ b/patches/005-autocomplete-user-leak-core.patch @@ -1,3 +1,17 @@ +From: diroots +Date: Fri, 19 Feb 2021 10:30:13 +0100 +Subject: [PATCH] filter and convert user search results during file sharing - NC core changes + +This patch : + +1 - filter results from user search not to return users by their displayname, but only return users with full username, ie. username@ecloud_domain so no user leaks with their display name (as some users can set John as their displayname) + +this filtering works in conjunction with the autocomplete feature disabled in nextcloud settings + +2 - converts the users found in addressbook as instance users during file sharing, so users are notified within nextcloud in the notification area of the new share available, instead of firing a mail if considered as external users + + +diff --git lib/private/Collaboration/Collaborators/UserPlugin.php lib/private/Collaboration/Collaborators/UserPlugin-new.php --- lib/private/Collaboration/Collaborators/UserPlugin.php 2021-01-25 15:56:05.000000000 +0100 +++ lib/private/Collaboration/Collaborators/UserPlugin-new.php 2021-02-16 14:56:26.778152834 +0100 @@ -114,7 +114,7 @@ @@ -9,6 +23,7 @@ strtolower($userEmail) === $lowerSearch) ) { if (strtolower($uid) === $lowerSearch) { +diff --git lib/private/Collaboration/Collaborators/MailPlugin.php lib/private/Collaboration/Collaborators/MailPlugin-new.php --- lib/private/Collaboration/Collaborators/MailPlugin.php 2021-02-16 14:55:37.281914086 +0100 +++ lib/private/Collaboration/Collaborators/MailPlugin-new.php 2021-02-19 16:22:07.662189199 +0100 @@ -36,6 +36,7 @@ diff --git a/patches/005-autocomplete-user-leak-custom-app.patch b/patches/005-autocomplete-user-leak-custom-app.patch index 5455ba66..d686b2a2 100644 --- a/patches/005-autocomplete-user-leak-custom-app.patch +++ b/patches/005-autocomplete-user-leak-custom-app.patch @@ -1,3 +1,16 @@ +From: diroots +Date: Tue, 02 Mar 2021 15:43:12 +0100 +Subject: [PATCH] filter user search results during file sharing - user_backend_sql_raw app changes + +This patch filter results from user search not to return users by their displayname, but only return users with full username, +ie. username@ecloud_domain so no user leaks with their display name which could be username + +this filtering works in conjunction with the autocomplete feature disabled in nextcloud settings + +this patch is applied to the user_backend_sql_raw app as this application superseeds the nextcloud's core UserBackend class + + +diff --git user_backend_sql_raw/lib/UserBackend.php user_backend_sql_raw/lib/UserBackend-new.php --- user_backend_sql_raw/lib/UserBackend.php 2020-10-06 01:56:49.000000000 +0200 +++ user_backend_sql_raw/lib/UserBackend-new.php 2021-03-02 15:43:12.615868478 +0100 @@ -108,7 +108,8 @@ diff --git a/patches/006-notes-url-fix.patch b/patches/006-notes-url-fix.patch index 5749edef..c5b57ed5 100644 --- a/patches/006-notes-url-fix.patch +++ b/patches/006-notes-url-fix.patch @@ -1,3 +1,10 @@ +From: Akhil +Date: Mon, 21 Dec 2020 13:47:24 +0530 +Subject: [PATCH] Changes for buggy notes with long file names, generates endless php loops + +This patch ... + +diff --git ../../notes-3.6.4/lib/Service/NoteUtilOriginal.php ../../notes-3.6.4/lib/Service/NoteUtil.php --- ../../notes-3.6.4/lib/Service/NoteUtilOriginal.php 2020-12-21 13:45:50.215222624 +0530 +++ ../../notes-3.6.4/lib/Service/NoteUtil.php 2020-12-21 13:47:24.277418659 +0530 @@ -86,23 +86,25 @@ diff --git a/patches/007-recovery-email-changes.patch b/patches/007-recovery-email-changes.patch index 7b8b1393..506af04f 100644 --- a/patches/007-recovery-email-changes.patch +++ b/patches/007-recovery-email-changes.patch @@ -1,3 +1,10 @@ +From: Akhil +Date: Thu, 22 Apr 2021 07:50:00 +0530 +Subject: [PATCH] Short description + +This patch ... + +diff --git ./core/Controller/LostController.php ./core/Controller/LostController.new.php --- ./core/Controller/LostController.php 2021-03-26 09:51:09.317785801 +0530 +++ ./core/Controller/LostController.new.php 2021-03-26 09:51:35.490073707 +0530 @@ -205,8 +205,9 @@ @@ -21,6 +28,7 @@ if (empty($email)) { throw new ResetPasswordException('Could not send reset e-mail since there is no email for username ' . $input); +diff --git ./apps/settings/templates/settings/personal/personal.info.php ./apps/settings/templates/settings/personal/personal.info.new.php --- ./apps/settings/templates/settings/personal/personal.info.php 2021-04-22 07:49:34.926418855 +0530 +++ ./apps/settings/templates/settings/personal/personal.info.new.php 2021-04-22 07:50:00.026660710 +0530 @@ -160,7 +160,7 @@ -- GitLab From da1651ac0ed13dcb8c462aac662fede888967eda Mon Sep 17 00:00:00 2001 From: Akhil Date: Thu, 13 May 2021 07:05:10 +0000 Subject: [PATCH 2/8] Update 006-notes-url-fix.patch --- patches/006-notes-url-fix.patch | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/patches/006-notes-url-fix.patch b/patches/006-notes-url-fix.patch index c5b57ed5..bb3a8a0c 100644 --- a/patches/006-notes-url-fix.patch +++ b/patches/006-notes-url-fix.patch @@ -2,7 +2,7 @@ From: Akhil Date: Mon, 21 Dec 2020 13:47:24 +0530 Subject: [PATCH] Changes for buggy notes with long file names, generates endless php loops -This patch ... +This patch replaces a buggy recursion method with an iterative procedure. When there is a very long filename the recursion doesn't end. An iterative procedure works well. diff --git ../../notes-3.6.4/lib/Service/NoteUtilOriginal.php ../../notes-3.6.4/lib/Service/NoteUtil.php --- ../../notes-3.6.4/lib/Service/NoteUtilOriginal.php 2020-12-21 13:45:50.215222624 +0530 -- GitLab From 023c836e1454fae8b3b4e05dc012900dd2fde40e Mon Sep 17 00:00:00 2001 From: Akhil Date: Thu, 13 May 2021 07:10:51 +0000 Subject: [PATCH 3/8] Update 007-recovery-email-changes.patch --- patches/007-recovery-email-changes.patch | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/patches/007-recovery-email-changes.patch b/patches/007-recovery-email-changes.patch index 506af04f..a44e13f7 100644 --- a/patches/007-recovery-email-changes.patch +++ b/patches/007-recovery-email-changes.patch @@ -1,8 +1,8 @@ From: Akhil Date: Thu, 22 Apr 2021 07:50:00 +0530 -Subject: [PATCH] Short description +Subject: [PATCH] Makes password reset links use recovery email set through "email-recovery" app, makes "email" uneditable by user -This patch ... +This patch adds the necessary changes to core NC controller and template for "email-recovery" app to work correctly. Instead of the user's email address, the user's recovery email address set through the "email-recovery" app is used for the password reset email. Further the user's "email" in the template(so that users cannot edit it). diff --git ./core/Controller/LostController.php ./core/Controller/LostController.new.php --- ./core/Controller/LostController.php 2021-03-26 09:51:09.317785801 +0530 -- GitLab From 8622d0a2961bda982b2a85d7715d3d456fcd09c7 Mon Sep 17 00:00:00 2001 From: Akhil Date: Thu, 13 May 2021 07:11:38 +0000 Subject: [PATCH 4/8] Update 006-notes-url-fix.patch --- patches/006-notes-url-fix.patch | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/patches/006-notes-url-fix.patch b/patches/006-notes-url-fix.patch index bb3a8a0c..dab16bdf 100644 --- a/patches/006-notes-url-fix.patch +++ b/patches/006-notes-url-fix.patch @@ -1,6 +1,6 @@ From: Akhil Date: Mon, 21 Dec 2020 13:47:24 +0530 -Subject: [PATCH] Changes for buggy notes with long file names, generates endless php loops +Subject: [PATCH] Changes for notes with long filenames that generate endless recursion and memory issues This patch replaces a buggy recursion method with an iterative procedure. When there is a very long filename the recursion doesn't end. An iterative procedure works well. -- GitLab From 35663e6bc5b9ab44916e9f2e261c35db98ea2652 Mon Sep 17 00:00:00 2001 From: akhil Date: Thu, 13 May 2021 12:49:14 +0530 Subject: [PATCH 5/8] Revert "Update 006-notes-url-fix.patch" This reverts commit 8622d0a2961bda982b2a85d7715d3d456fcd09c7. --- patches/006-notes-url-fix.patch | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/patches/006-notes-url-fix.patch b/patches/006-notes-url-fix.patch index dab16bdf..bb3a8a0c 100644 --- a/patches/006-notes-url-fix.patch +++ b/patches/006-notes-url-fix.patch @@ -1,6 +1,6 @@ From: Akhil Date: Mon, 21 Dec 2020 13:47:24 +0530 -Subject: [PATCH] Changes for notes with long filenames that generate endless recursion and memory issues +Subject: [PATCH] Changes for buggy notes with long file names, generates endless php loops This patch replaces a buggy recursion method with an iterative procedure. When there is a very long filename the recursion doesn't end. An iterative procedure works well. -- GitLab From bc14e34668248432238b89f0989fabd427a389b5 Mon Sep 17 00:00:00 2001 From: akhil Date: Thu, 13 May 2021 12:49:24 +0530 Subject: [PATCH 6/8] Revert "Update 007-recovery-email-changes.patch" This reverts commit 023c836e1454fae8b3b4e05dc012900dd2fde40e. --- patches/007-recovery-email-changes.patch | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/patches/007-recovery-email-changes.patch b/patches/007-recovery-email-changes.patch index a44e13f7..506af04f 100644 --- a/patches/007-recovery-email-changes.patch +++ b/patches/007-recovery-email-changes.patch @@ -1,8 +1,8 @@ From: Akhil Date: Thu, 22 Apr 2021 07:50:00 +0530 -Subject: [PATCH] Makes password reset links use recovery email set through "email-recovery" app, makes "email" uneditable by user +Subject: [PATCH] Short description -This patch adds the necessary changes to core NC controller and template for "email-recovery" app to work correctly. Instead of the user's email address, the user's recovery email address set through the "email-recovery" app is used for the password reset email. Further the user's "email" in the template(so that users cannot edit it). +This patch ... diff --git ./core/Controller/LostController.php ./core/Controller/LostController.new.php --- ./core/Controller/LostController.php 2021-03-26 09:51:09.317785801 +0530 -- GitLab From cb8b3acca2871b697c52e2b37090d41c78e7987d Mon Sep 17 00:00:00 2001 From: akhil Date: Thu, 13 May 2021 12:49:35 +0530 Subject: [PATCH 7/8] Revert "Update 006-notes-url-fix.patch" This reverts commit da1651ac0ed13dcb8c462aac662fede888967eda. --- patches/006-notes-url-fix.patch | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/patches/006-notes-url-fix.patch b/patches/006-notes-url-fix.patch index bb3a8a0c..c5b57ed5 100644 --- a/patches/006-notes-url-fix.patch +++ b/patches/006-notes-url-fix.patch @@ -2,7 +2,7 @@ From: Akhil Date: Mon, 21 Dec 2020 13:47:24 +0530 Subject: [PATCH] Changes for buggy notes with long file names, generates endless php loops -This patch replaces a buggy recursion method with an iterative procedure. When there is a very long filename the recursion doesn't end. An iterative procedure works well. +This patch ... diff --git ../../notes-3.6.4/lib/Service/NoteUtilOriginal.php ../../notes-3.6.4/lib/Service/NoteUtil.php --- ../../notes-3.6.4/lib/Service/NoteUtilOriginal.php 2020-12-21 13:45:50.215222624 +0530 -- GitLab From 56bf7785ff1e41298d817d32951c8c99835cd072 Mon Sep 17 00:00:00 2001 From: diroots Date: Tue, 18 May 2021 14:49:29 +0200 Subject: [PATCH 8/8] update notes from comments on the MR --- Dockerfile | 1 - patches/001-sha512-signature.patch | 32 ------------------------ patches/006-notes-url-fix.patch | 4 +-- patches/007-recovery-email-changes.patch | 4 +-- 4 files changed, 4 insertions(+), 37 deletions(-) delete mode 100644 patches/001-sha512-signature.patch diff --git a/Dockerfile b/Dockerfile index 991ba7a8..624b50fa 100644 --- a/Dockerfile +++ b/Dockerfile @@ -53,7 +53,6 @@ RUN curl -fsSL -o email-recovery.tar.gz \ rm email-recovery.tar.gz; # Patches -#RUN patch -u ${BASE_DIR}/core/signature.json -i ${TMP_PATCH_DIR}/001-sha512-signature.patch RUN patch -u ${BASE_DIR}/core/Controller/LoginController.php -i ${TMP_PATCH_DIR}/002-login-without-domain.patch RUN patch -u ${BASE_DIR}/core/templates/layout.user.php -i ${TMP_PATCH_DIR}/003-contact-search-removal.patch RUN patch -u ${BASE_DIR}/core/Controller/ContactsMenuController.php -i ${TMP_PATCH_DIR}/004-contact-search-controller-removal.patch diff --git a/patches/001-sha512-signature.patch b/patches/001-sha512-signature.patch deleted file mode 100644 index 87ac33bd..00000000 --- a/patches/001-sha512-signature.patch +++ /dev/null @@ -1,32 +0,0 @@ -From: Arnau -Date: Thu, 04 Feb 2021 12:43:42 +0100 -Subject: [PATCH] change checksum of files - -This patch replace file checksums for file integrity check to perform well - -diff --git files/signature_1908.json files/signature_1908-patched.json ---- files/signature_1908.json 2021-02-04 12:42:17.000000000 +0100 -+++ files/signature_1908-patched.json 2021-02-04 12:43:42.000000000 +0100 -@@ -4873,11 +4873,11 @@ - "core\/Controller\/ClientFlowLoginController.php": "71587f8fe5e11d3ae3d4cbc1ac27dc85ede307c77152bf0633ad2edfd990be7eebd1f5d39b1e7667139773e28577c8b1dc35d08dce094cca58846bd894039447", - "core\/Controller\/ClientFlowLoginV2Controller.php": "ff0bd22fb9d921f8c5d76881bfadcafae6681a561cfd8bcb1a86a0c6376fda06613bf44c9976908b7ede8d4d4f9cd4da8bcc688387cd26212780dc963a9be356", - "core\/Controller\/CollaborationResourcesController.php": "d56b420c51e4a85d8c998d9aeaa13fc044334f33e06a37d9b9f79541317ff6f9b987fbca954273285e412403f33ac22580855939bdb1923cdcc75f61a7e2d349", -- "core\/Controller\/ContactsMenuController.php": "3d5184a92a17914659a00f99768c51e5e86cba89409c862de8cab2051fc69bbd4b3bd3634ada375f7bf456284c1fed26c95e6a4b2bac8721c40b7c0922e236b5", -+ "core\/Controller\/ContactsMenuController.php": "da33f2e16937fe82641e14eb032a2d3666f52450b36474ea4543937f3400fe0b82c2a0b0c6f5a1d3b00d97e23f744161551f93d36297fb12e17c4b72cfcd77b9", - "core\/Controller\/CssController.php": "755803437284837250c5e13bf8e3764d2d96a2b29712f1e36e0c8f7e7ff684b438c5b06c3ac7da6c8e5ddd39ba5c7a8bdd4e258f902e50d3b45b5003c9c673c1", - "core\/Controller\/GuestAvatarController.php": "095faa68bd569a77ddb7b1d67aaca87b02c731deb70d21391191e66bede5ea1e06226c23f70c05a27608557eb599a65b3f923f66f39d24ae80b52061990d79d3", - "core\/Controller\/JsController.php": "46019b859527ee13bb248bcf64e6cdaf0c792d04b48871e569e0fe2c2f884e425d85623b5a7bf6c750fb85023eeede9aa13db94028e9e41133ac624b9b75aa8c", -- "core\/Controller\/LoginController.php": "600ef1e0c70f532ea07f7240ddd7090d4016a13c52b9a925e89226966b5e976a358f01c2f222e661fd126a25ec8289bde5dd6027aa2f51a742ec9931c33e2f35", -+ "core\/Controller\/LoginController.php": "29517ffc4ab6436e44ab33e17d28234e1ea7fa0376618596ed13033e925d3598c69c7faefa3419f5f677103c730837a18c5395946ba673df8dc9b01cd2b1b23d", - "core\/Controller\/LostController.php": "c9a7867646ef47466c0626f92052afa3442aa8c5a642b991a3936421ac7a64904611d5a6d66ccbdf3290bb5b2bcda094cf5cc7fc051863b27a07a0cf1e7c9f4d", - "core\/Controller\/NavigationController.php": "b0b558b7b561fd5396e19168ba46da932eaf5b813a6600e4b59829ec82d625407b47f08249b1791dd1a7066beed87fcf6bf8b09691799ad269310d6535a7cd37", - "core\/Controller\/OCJSController.php": "1dca2b59d295d3d533d3874f4a9efbe21747d505ff1381dd020bbac7993bd322f5ab883406bbd611af04b07998432585b11122067058fae33b2d8501bf5166da", -@@ -5960,7 +5960,7 @@ - "core\/templates\/layout.guest.php": "811fa50d904f8aa71b8d447a4e605448f41e461e0cc87fb855cdaced13e49cf30e4aecd27eab35faa2c56717bea9dd01131d92e10df0a5608d31e86687ff40b9", - "core\/templates\/layout.noscript.warning.php": "285c39896a1349b320900d4f07354a5b7528d0a8e1c85451e05c8e20aec1d67c2b3fe62b38eb75064dfcef77fd3828d66435cb10f7520f68cf5a0063ac4fa0c8", - "core\/templates\/layout.public.php": "a7225a5aabc6a349547360a0cae9e060e8e4ba7c1c0ca60957508d4e69bab01e808dfee9cf96331125376bc121f6b69b38e3610c108cbc5a40ed1147c34d23a1", -- "core\/templates\/layout.user.php": "af6bb312eb862e61a77e9001ee854e9aab20c0ea479ac05da307ff7832ad6cc8b9d3532e2c83863bb5448f3f7328955d06caf11d8590a42c65c1d6c1376cfc9c", -+ "core\/templates\/layout.user.php": "23e530850fc01fde0ba3c3d114c575edd75756988d1aa10ebb84dbd6bec4e7e3f43d2d33dc8a02c4858ffefe722adb52b7e09c1d91bf9a2a6d4477966dd2f162", - "core\/templates\/login.php": "d700a5edfd2dc67ffbc9e7410194d2ecd88fcba237a2c6fa3136d3ba8d38ba2893c8b0b759ddc5551a3c4ea25fe94b0276c220ea8501e278b9ee4ceae5d53155", - "core\/templates\/loginflow\/authpicker.php": "981cba91b82b133f68bf802b8f53383f9c12ce9a895338fc7bea47d9eaff7e0815f6724db52f760d6f6bcd353b164932e47e6d31c12007c8d222b2d4fbf639c7", - "core\/templates\/loginflow\/grant.php": "008e7dee5d572acf18ba404e95ca9acb4dc7e77769a02f8ef329bbb6cfee73affb86166f893406b876c74074beb5e7f20f27ff627392ade29e2a09e50505388f", diff --git a/patches/006-notes-url-fix.patch b/patches/006-notes-url-fix.patch index c5b57ed5..dab16bdf 100644 --- a/patches/006-notes-url-fix.patch +++ b/patches/006-notes-url-fix.patch @@ -1,8 +1,8 @@ From: Akhil Date: Mon, 21 Dec 2020 13:47:24 +0530 -Subject: [PATCH] Changes for buggy notes with long file names, generates endless php loops +Subject: [PATCH] Changes for notes with long filenames that generate endless recursion and memory issues -This patch ... +This patch replaces a buggy recursion method with an iterative procedure. When there is a very long filename the recursion doesn't end. An iterative procedure works well. diff --git ../../notes-3.6.4/lib/Service/NoteUtilOriginal.php ../../notes-3.6.4/lib/Service/NoteUtil.php --- ../../notes-3.6.4/lib/Service/NoteUtilOriginal.php 2020-12-21 13:45:50.215222624 +0530 diff --git a/patches/007-recovery-email-changes.patch b/patches/007-recovery-email-changes.patch index 506af04f..a44e13f7 100644 --- a/patches/007-recovery-email-changes.patch +++ b/patches/007-recovery-email-changes.patch @@ -1,8 +1,8 @@ From: Akhil Date: Thu, 22 Apr 2021 07:50:00 +0530 -Subject: [PATCH] Short description +Subject: [PATCH] Makes password reset links use recovery email set through "email-recovery" app, makes "email" uneditable by user -This patch ... +This patch adds the necessary changes to core NC controller and template for "email-recovery" app to work correctly. Instead of the user's email address, the user's recovery email address set through the "email-recovery" app is used for the password reset email. Further the user's "email" in the template(so that users cannot edit it). diff --git ./core/Controller/LostController.php ./core/Controller/LostController.new.php --- ./core/Controller/LostController.php 2021-03-26 09:51:09.317785801 +0530 -- GitLab