Infinite Scale Changelog

Table of Contents

Changelog for unreleased (UNRELEASED)

The following sections list the changes for unreleased.

Summary

  • Bugfix - Fix the OCM role editor: #11071
  • Bugfix - Fix the SpaceMembershipExpired event: #11078
  • Bugfix - Fix the OCM role file editor: #11093
  • Bugfix - Fix the parent-id for the share-jail root: #11101
  • Bugfix - Adjust the capabilities according to full text search config: #11111
  • Bugfix - Fix app-auth: #11123
  • Bugfix - Fix the SpaceMembershipExpired duplicate event: #11127
  • Bugfix - Fix migrate rebuild-jsoncs3-indexes cli: #11145
  • Bugfix - OCM Share Notifications: #11162
  • Bugfix - Fix pdf form creation: #11163
  • Bugfix - Fix app-auth, REST status code: #11190
  • Bugfix - Fix Share roles translation: #11241
  • Enhancement - Update Mockery to 2.52.3: #11070
  • Enhancement - Improve postprocessing logs: #11108
  • Enhancement - Improve graph space management logs: #11115
  • Enhancement - Delete notification by ID: #11203
  • Enhancement - CLI, storage-users uploads delete-stale-nodes: #11216
  • Enhancement - Limit length of tags: #11231
  • Enhancement - Allow setting driveid through graph API: #11256

Details

Changelog for 7.1.2 (2025-03-28)

The following sections list the changes for 7.1.2.

Summary

  • Bugfix - Fix pdf form creation: #11163

Details

Changelog for 7.1.1 (2025-03-14)

The following sections list the changes for 7.1.1.

Summary

  • Bugfix - Fix translations of editor roles: #11116
  • Enhancement - Update Web to v11.3.1: #11131

Details

Changelog for 7.1.0 (2025-03-06)

The following sections list the changes for 7.1.0.

Summary

  • Bugfix - Update govips to 2.16.0: #10378
  • Bugfix - Share creation date is missing in invite response: #10781
  • Bugfix - Bump some golang dependencies: #10795
  • Bugfix - Allow to accepted invite after it was once deleted: #10834
  • Bugfix - Fix the mail notifications for the user light: #10865
  • Bugfix - Fix filtering of PostprocessingStepFinished events: #10868
  • Bugfix - Prevent empty email body for grouped email notifications: #10869
  • Bugfix - Consistently name roles: #10871
  • Bugfix - Fix grouped email notifications store key: #10873
  • Bugfix - Fix missing newline in grouped email: #10883
  • Bugfix - Fix email templates white spaces & new lines: #10884
  • Bugfix - Fix the ocm gateway connection pool: #10916
  • Bugfix - Add fallback for folder names: #10932
  • Bugfix - Allow view ocm shares: #10944
  • Bugfix - Fix Collaboration file extension check: #10947
  • Bugfix - Add Identities to education user: #11016
  • Bugfix - Bump libregraph api: #11021
  • Bugfix - Fix OCM create share: #11047
  • Bugfix - Fix update grants for the OCM share: #11052
  • Enhancement - Part I: The user settings are extended by notifications preferences: #10706
  • Enhancement - Part II: Filtering of in-app notifications: #10779
  • Enhancement - Part III: Filtering of mail notifications: #10792
  • Enhancement - Translate Notification Settings: #10812
  • Enhancement - Part IV: Grouping of mail notifications: #10838
  • Enhancement - Update web to v11.1.0: #10853
  • Enhancement - Add tests for grouped emails: #10885
  • Enhancement - Use maintained forks: #10886
  • Enhancement - Add email notification for share removed event: #10915
  • Enhancement - Update Web to v1.11.1: #10918
  • Enhancement - Update Web to v1.11.2: #10930
  • Enhancement - Implement debug docker for arm64 platform: #10940
  • Enhancement - Add roles: #10964
  • Enhancement - Update Web to v1.11.3: #10977
  • Enhancement - Add the ocm notification handler: #11005
  • Enhancement - Add logging when a users space gets deleted: #11037
  • Enhancement - Add the ocm notification ShareChangePermission: #11041
  • Enhancement - Update Web to v11.2.0: #11049
  • Enhancement - Update Web to v11.3.0: #11058
  • Enhancement - Bump Reva: #11083

Details

Changelog for 7.0.0 (2024-12-17)

The following sections list the changes for 7.0.0.

Summary

  • Bugfix - Generate short tokens to be used as access tokens for WOPI: #10391
  • Bugfix - Fix put relative wopi operation for microsoft: #10403
  • Bugfix - Make SSE keepalive interval configurable: #10411
  • Bugfix - Removed 'OCM_OCM_PROVIDER_AUTHORIZER_VERIFY_REQUEST_HOSTNAME' setting: #10425
  • Bugfix - Micro registry cache fixes: #10429
  • Bugfix - Fix the memlimit loglevel: #10433
  • Bugfix - Log GRPC requests in debug mode: #10438
  • Bugfix - Restart Postprocessing properly: #10439
  • Bugfix - Allow to configure data server URL for ocm: #10440
  • Bugfix - Respect proxy url when validating proofkeys: #10462
  • Bugfix - Return wopi lock header in get lock response: #10470
  • Bugfix - 'ocis backup consistency' fixed for file revisions: #10493
  • Bugfix - Wait for services to be ready before registering them: #10498
  • Bugfix - Fix 0-byte file uploads: #10500
  • Bugfix - Fixed sharedWithMe response for OCM shares: #10501
  • Bugfix - Fix gateway nats checks: #10502
  • Bugfix - Fix idp guest role default assignment: #10511
  • Bugfix - Remove mbreaker: #10524
  • Bugfix - Fix impersonated request user mismatch: #10548
  • Bugfix - Fix federated sharing when using an external IDP: #10567
  • Bugfix - Fix node cache ttl updates: #10575
  • Bugfix - We now limit the number of workers of the jsoncs3 share manager: #10578
  • Bugfix - Set MaxConcurrency to 1: #10580
  • Bugfix - Reuse go-micro service clients: #10582
  • Bugfix - Make collaboration service use a gateway selector: #10584
  • Bugfix - Return an error if we can't get the keys and ensure they're cached: #10590
  • Bugfix - Fix status code for thumbnail requests: #10592
  • Bugfix - Fix the activity field mapping: #10593
  • Bugfix - Fix deny access for graph roles: #10627
  • Bugfix - Fix link activity message: #10663
  • Bugfix - Fix possible race condition when a thumbnails is stored in the FS: #10693
  • Bugfix - Skip fetching members: #10701
  • Bugfix - Fix FileInfo BreadcrumbFolderURL: #10718
  • Bugfix - Fix graph drives response for federated shares: #10730
  • Bugfix - GetLastModified property in the REPORT response will use RFC1123 format: #10738
  • Bugfix - Unifi logging: #10743
  • Bugfix - Fix FileInfo BreadcrumbFolderURL upd: #10757
  • Bugfix - Bump Reva: #10766
  • Enhancement - Create thumbnails for GGP MIME types: #10304
  • Enhancement - Include a product name in the collaboration service: #10335
  • Enhancement - Add web extensions to the ocis_full example: #10399
  • Enhancement - Remove deprecated CLI commands: #10432
  • Enhancement - Bump cs3api: #10449
  • Enhancement - Bump reva to latest: #10472
  • Enhancement - Concurrent userlog processing: #10504
  • Enhancement - Concurrent autoaccept for shares: #10507
  • Enhancement - Fetch shared resource metadata concurrently in graph: #10683
  • Enhancement - Update web to v11.0.6: #10755

Details

Changelog for 5.0.9 (2024-11-14)

The following sections list the changes for 5.0.9.

Summary

  • Bugfix - Thumbnail request limit: #10280
  • Bugfix - Restart Postprocessing properly: #10439
  • Change - Define maximum input image dimensions and size when generating previews: #10270

Details

Changelog for 6.6.1 (2024-10-24)

The following sections list the changes for 6.6.1.

Summary

  • Bugfix - Fix panic when stopping the nats: #10363
  • Bugfix - Disable download activity: #10368
  • Bugfix - Fix Activitylog issues: #10376
  • Bugfix - Security fixes: #10376
  • Bugfix - Make antivirus workers configurable: #10383
  • Bugfix - Increase event processing workers: #10385
  • Bugfix - Fix envvar deprecations for next production release: #10386
  • Bugfix - Fix healthchecks: #10405

Details

Changelog for 6.6.0 (2024-10-21)

The following sections list the changes for 6.6.0.

Summary

  • Bugfix - Fix health and ready endpoints: #10163
  • Bugfix - Always treat LDAP attribute names case-insensitively: #10204
  • Bugfix - Fix delete share panic: #10219
  • Bugfix - Continue listing shares on error: #10243
  • Bugfix - Avoid re-creating thumbnails: #10251
  • Bugfix - Graph service now supports OCIS_LDAP_USER_SCHEMA_DISPLAYNAME env var: #10257
  • Bugfix - Kept historical resource naming in activity: #10266
  • Bugfix - Fix panic when sharing with groups: #10279
  • Bugfix - Thumbnail request limit: #10280
  • Bugfix - Forbid the ocm space sharing: #10287
  • Bugfix - Use secure config defaults for OCM: #10307
  • Enhancement - Add OCM wellknown configuration: #9815
  • Enhancement - Load IDP logo from theme: #10274
  • Enhancement - WebOffice Templates: #10276
  • Enhancement - Remove Deprecations: #10305
  • Enhancement - Allow to use libvips for generating thumbnails: #10310
  • Enhancement - Bump various dependencies: #10352
  • Enhancement - Update web to v11.0.0: #10357
  • Enhancement - Bump reva to 2.26.0: #10364

Details

Changelog for 6.5.0 (2024-10-01)

The following sections list the changes for 6.5.0.

Summary

  • Bugfix - Fixed the ocm email template: #10030
  • Bugfix - Fixed activity filter depth: #10031
  • Bugfix - Fixed proxy build info: #10039
  • Bugfix - Fixed the ocm tocken: #10050
  • Bugfix - Fix ocm space sharing: #10060
  • Bugfix - Fix the error code for ocm space sharing: #10079
  • Bugfix - Added LinkUpdated activity: #10085
  • Bugfix - Fix Activities leak: #10092
  • Bugfix - Include additional logs in the collaboration service: #10101
  • Bugfix - Added ShareUpdate activity: #10104
  • Bugfix - Fixed the collaboration service registration: #10107
  • Bugfix - CheckFileInfo will return a 404 error if the target file isn't found: #10112
  • Bugfix - Forbid Activities for Sharees: #10136
  • Bugfix - Always select next gateway client: #10141
  • Bugfix - Remove duplicate CSP header from responses: #10146
  • Bugfix - Fixed the missing folder variable: #10150
  • Bugfix - Fix activity limit: #10165
  • Bugfix - Fix email translations: #10171
  • Bugfix - Fix Activities translation: #10175
  • Enhancement - Allow to maintain the last sign-in timestamp of a user: #9942
  • Enhancement - Add an Activity for FileUpdated: #10072
  • Enhancement - Remove METADATA_BACKEND: #10113
  • Enhancement - Load CSP configuration file if it exists: #10139
  • Enhancement - FileDownloaded Activity: #10161
  • Enhancement - Add WOPI host URLs to the collaboration service: #10174
  • Enhancement - Update web to v10.3.0: #10177
  • Enhancement - Bump reva to 2.25.0: #10194

Details

Changelog for 5.0.8 (2024-09-30)

The following sections list the changes for 5.0.8.

Summary

  • Bugfix - Update reva to v2.19.8: #10138

Details

Changelog for 6.4.0 (2024-09-12)

The following sections list the changes for 6.4.0.

Summary

  • Bugfix - Set capability response disable_self_password_change correctly: #9853
  • Bugfix - Activity Translations: #9856
  • Bugfix - The user attributes userType and memberOf are readonly: #9867
  • Bugfix - Use key to get specific trash item: #9879
  • Bugfix - Fix response code when upload a file over locked: #9894
  • Bugfix - List OCM permissions as graph drive item permissions: #9905
  • Bugfix - Fix listing ocm shares: #9925
  • Bugfix - Allow update of ocm shares: #9980
  • Change - Remove store service: #9890
  • Enhancement - We now set the configured protocol transport for service metadata: #9490
  • Enhancement - Microsoft Office365 and Office Online support: #9686
  • Enhancement - Added a new role space editor without versions: #9880
  • Enhancement - Improve revisions purge: #9891
  • Enhancement - Allow setting default locale of activitylog: #9892
  • Enhancement - Graph translation path: #9902
  • Enhancement - Added a new roles viewer/editor with ListGrants: #9943
  • Enhancement - Handle OCM invite generated event: #9966
  • Enhancement - Update web to v10.2.0: #9988
  • Enhancement - Allow blob as connect-src in default CSP: #9993
  • Enhancement - Unified Roles Management: #10013
  • Enhancement - Bump reva to v2.24.1: #10028

Details

Changelog for 5.0.7 (2024-09-04)

The following sections list the changes for 5.0.7.

Summary

  • Enhancement - Add virus filter to sessions command: #9041
  • Enhancement - Assimilate clean into sessions command: #9828
  • Enhancement - Update web to v8.0.5: #9958

Details

Changelog for 6.3.0 (2024-08-20)

The following sections list the changes for 6.3.0.

Summary

  • Bugfix - Ignore address for kubernetes registry: #9490
  • Bugfix - Use bool type for web embed delegatedAuthentication: #9692
  • Bugfix - Repair nats-js-kv registry: #9734
  • Bugfix - Use less selectors that watch the registry: #9741
  • Bugfix - We fixed the client config generation for the built in IDP: #9770
  • Bugfix - Change ocmproviders config defaultpath: #9778
  • Bugfix - Web theme color contrasts: #10726
  • Enhancement - New WOPI operations added to the collaboration service: #9505
  • Enhancement - Allow configuring grpc max connection age: #9657
  • Enhancement - Tracing improvements in the collaboration service: #9684
  • Enhancement - Local WEB App configuration: #9691
  • Enhancement - Bump tusd pkg to v2: #9714
  • Enhancement - Gateways should directly talk to themselves: #9714
  • Enhancement - Support Skyhigh Security ICAP as an ICAP server: #9720
  • Enhancement - Added generic way to translate composite entities: #9722
  • Enhancement - Add an API to auth-app service: #9755
  • Enhancement - Bump go-micro plugins pkg: #9756
  • Enhancement - Allow querying federated user roles for sharing: #9765
  • Enhancement - Refactor the connector in the collaboration service: #9771
  • Enhancement - Add OCIS_ENABLE_OCM env var: #9784
  • Enhancement - OCM related adjustments in graph: #9788
  • Enhancement - Update web to v10.1.0: #9832
  • Enhancement - Bump reva to 2.23.0: #9852

Details

Changelog for 6.2.0 (2024-07-30)

The following sections list the changes for 6.2.0.

Summary

  • Bugfix - Fix restarting of postprocessing: #6945
  • Bugfix - Fix crash on empty tracing provider: #9622
  • Bugfix - Fixed the file name validation if nodeid is used: #9634
  • Bugfix - Fix a missing SecureView permission attribute in the REPORT response: #9638
  • Bugfix - Fixed the channel lock in a workers pool: #9647
  • Bugfix - Missing invitation in permission responses: #9652
  • Bugfix - Repair nats-js-kv registry: #9662
  • Bugfix - Fix panic: #9673
  • Bugfix - Fixed the response code when copying the shared from to personal: #9677
  • Bugfix - Fixed response code for DELETE file that is in postprocessing: #9689
  • Change - Remove unavailable web config options: #9679
  • Enhancement - Introduce auth-app service: #9079
  • Enhancement - Add support for proof keys for the collaboration service: #9366
  • Enhancement - Log user agent and remote addr on auth errors: #9475
  • Enhancement - Add missing WOPI features: #9580
  • Enhancement - Bump commitID for web: #9631
  • Enhancement - Remove oidc-go dependency: #9641
  • Enhancement - Improve the collaboration service logging: #9653
  • Enhancement - Fix trash command: #9665
  • Enhancement - Added the debugging to full ocis docker example: #9666
  • Enhancement - Add locking support for MS Office Online Server: #9685
  • Enhancement - Bump reva to v.2.22.0: #9690
  • Enhancement - Add --diff to the ocis init command: #9693
  • Enhancement - Update web to v10.0.0: #9707

Details

Changelog for 5.0.6 (2024-07-17)

The following sections list the changes for 5.0.6.

Summary

  • Bugfix - Allow all uploads to restart: #9506
  • Bugfix - Fix the email notification service: #9514
  • Enhancement - Limit concurrent thumbnail requests: #9199
  • Enhancement - Update web to v8.0.4: #9429
  • Enhancement - Add cli to purge revisions: #9497

Details

Changelog for 6.1.0 (2024-07-08)

The following sections list the changes for 6.1.0.

Summary

  • Bugfix - Fix sharing-ng permission listings for personal and virtual drive items: #9438
  • Bugfix - Add inotify-tools and bash packages to docker files: #9440
  • Bugfix - Allow all uploads to restart: #9465
  • Bugfix - Fix the email notification service: #9467
  • Bugfix - Fix Password Reset: #9479
  • Bugfix - Fixed the email template: #9484
  • Bugfix - Polish secure view: #9532
  • Enhancement - Rudimentary OCM support in graph: #8909
  • Enhancement - Activitylog API: #9361
  • Enhancement - Add the backchannel logout event: #9447
  • Enhancement - Add fail flag to consistency check: #9447
  • Enhancement - Configurable OCM timeouts: #9450
  • Enhancement - Deprecate gateway environment variables: #9451
  • Enhancement - Allow reindexing all spaces: #9456
  • Enhancement - Autoprovision group memberships: #9458
  • Enhancement - Allow disable versioning: #9473
  • Enhancement - Empty trash directories: #9483
  • Enhancement - Various fixes for the activitylog service: #9485
  • Enhancement - Add cli to purge revisions: #9497
  • Enhancement - Update web to v9.1.0: #9547
  • Enhancement - Bump reva to v2.21.0: #9556

Details

Changelog for 6.0.0 (2024-06-19)

The following sections list the changes for 6.0.0.

Summary

  • Bugfix - Fix an error when lock/unlock a public shared file: #8472
  • Bugfix - Fix the docker-compose wopi: #8483
  • Bugfix - Fix remove/update share permissions: #8529
  • Bugfix - Correct the default mapping of roles: #8534
  • Bugfix - Fix graph drive invite: #8538
  • Bugfix - Fix the mount points naming: #8543
  • Bugfix - We now always select the next clients when autoaccepting shares: #8570
  • Bugfix - Always select next before making calls: #8578
  • Bugfix - Fix sharing invite on virtual drive: #8609
  • Bugfix - Prevent copying a file to a parent folder: #8649
  • Bugfix - Disable Multipart uploads: #8666
  • Bugfix - Internal links shouldn't have a password: #8668
  • Bugfix - Fix uploading via a public link: #8702
  • Bugfix - Mask user email in output: #8726
  • Bugfix - Fix restarting of postprocessing: #8782
  • Bugfix - Fix the create personal space cache: #8799
  • Bugfix - Fix removing groups from space: #8803
  • Bugfix - Validate conditions for sharing roles by resource type: #8815
  • Bugfix - Fix creating the drive item: #8817
  • Bugfix - Fix unmount item from share: #8827
  • Bugfix - Fix creating new WOPI documents on public shares: #8828
  • Bugfix - Nats reconnects: #8880
  • Bugfix - Update the admin user role assignment to enforce the config: #8897
  • Bugfix - Fix affected users on sses: #8928
  • Bugfix - Fix well-known rewrite endpoint: #8946
  • Bugfix - Crash when processing crafted TIFF files: #8981
  • Bugfix - Fix collaboration registry setting: #9105
  • Bugfix - Service startup of WOPI example: #9127
  • Bugfix - Fix the status code for multiple mount and unmount share: #9193
  • Bugfix - Don't show thumbnails for secureview shares: #9299
  • Bugfix - Fix share update: #9301
  • Bugfix - Fix the error translation from utils: #9331
  • Bugfix - Fix the settings metedata tests: #9341
  • Bugfix - The hidden shares have been excluded from a search result: #9371
  • Bugfix - Encode Registry Keys: #9385
  • Change - Change the default store for presigned keys to nats-js-kv: #8419
  • Change - Disable resharing by default for deprecation: #8653
  • Change - The filesystem backend for the settings service has been removed: #9138
  • Change - Define maximum input image dimensions and size when generating previews: #9360
  • Enhancement - Introduce staticroutes package & remove well-known OIDC middleware: #6095
  • Enhancement - Graphs endpoint for mounting and unmounting shares: #7885
  • Enhancement - Add epub reader to web default apps: #8410
  • Enhancement - Change Cors default settings: #8518
  • Enhancement - Custom WEB App Loading: #8523
  • Enhancement - Update to go 1.22: #8586
  • Enhancement - Send more sse events: #8587
  • Enhancement - Send SSE when file is locked/unlocked: #8602
  • Enhancement - Add the spaceID to sse: #8614
  • Enhancement - The graph endpoints for listing permission works for spaces now: #8642
  • Enhancement - Bump keycloak: #8687
  • Enhancement - Make IDP cookies same site strict: #8716
  • Enhancement - Make server side space templates production ready: #8723
  • Enhancement - Sharing NG role names and descriptions: #8743
  • Enhancement - Ability to Change Share Item Visibility in Graph API: #8750
  • Enhancement - Enable web extension drawio by default: #8760
  • Enhancement - Remove resharing: #8762
  • Enhancement - Add CSP and other security related headers to oCIS: #8777
  • Enhancement - Add FileTouched SSE Event: #8778
  • Enhancement - Prepare runners to start the services: #8802
  • Enhancement - Sharing SSEs: #8854
  • Enhancement - Secure viewer share role: #8907
  • Enhancement - Add Link SSEs: #8908
  • Enhancement - ShareeIDs in SSEs: #8915
  • Enhancement - Allow to resolve public shares without the ocs tokeninfo endpoint: #8926
  • Enhancement - Initiator-IDs: #8936
  • Enhancement - Add endpoint for getting drive items: #8939
  • Enhancement - Improve infected file handling: #8947
  • Enhancement - Configurable claims for auto-provisioning user accounts: #8952
  • Enhancement - Bump nats-js-kv pkg: #8953
  • Enhancement - Graph permission created date time: #8954
  • Enhancement - Add virus filter to sessions command: #9041
  • Enhancement - Assimilate clean into sessions command: #9041
  • Enhancement - Add remote item id to WebDAV report responses: #9094
  • Enhancement - Theme Processing and Logo Customization: #9133
  • Enhancement - Add watermark text: #9144
  • Enhancement - Update selected attributes of autoprovisioned users: #9166
  • Enhancement - Limit concurrent thumbnail requests: #9199
  • Enhancement - The storage-users doc updated: #9228
  • Enhancement - Docker compose example for ClamAV: #9229
  • Enhancement - Add command to check ocis backup consistency: #9238
  • Enhancement - Web server compression: #9287
  • Enhancement - Add secureview flag when listing apps via http: #9289
  • Enhancement - Activitylog Service: #9327
  • Enhancement - Update web to v9.0.0-alpha.7: #9395
  • Enhancement - Bump Reva to v2.20.0: #9415

Details

Changelog for 5.0.5 (2024-05-22)

The following sections list the changes for 5.0.5.

Summary

  • Enhancement - Update web to v8.0.2: #9153

Details

Changelog for 5.0.4 (2024-05-13)

The following sections list the changes for 5.0.4.

Summary

  • Bugfix - Update reva to v2.19.7: #9011
  • Bugfix - Service startup of WOPI example: #9127
  • Bugfix - Nats reconnects: #9139

Details

Changelog for 5.0.3 (2024-05-02)

The following sections list the changes for 5.0.3.

Summary

  • Bugfix - Update the admin user role assignment to enforce the config: #8918
  • Bugfix - Crash when processing crafted TIFF files: #8981
  • Bugfix - Update reva to v2.19.6: #9011
  • Bugfix - Fix infected file handling: #9011

Details

Changelog for 5.0.2 (2024-04-17)

The following sections list the changes for 5.0.2.

Summary

  • Bugfix - Fix creating new WOPI documents on public shares: #8828
  • Bugfix - Update reva to v2.19.5: #8873

Details

Changelog for 5.0.1 (2024-04-10)

The following sections list the changes for 5.0.1.

Summary

  • Bugfix - Make IDP cookies same site strict: #8716
  • Bugfix - Update reva to v2.19.4: #8781
  • Bugfix - Fix restarting of postprocessing: #8782
  • Bugfix - Fix the create personal space cache: #8799

Details

  • Bugfix - Make IDP cookies same site strict: #8716

    To enhance the security of our application and prevent Cross-Site Request Forgery (CSRF) attacks, we have updated the SameSite attribute of the build in Identity Provider (IDP) cookies to Strict.

    This change restricts the browser from sending these cookies with any cross-site requests, thereby limiting the exposure of the user's session to potential threats.

    This update does not impact the existing functionality of the application but provides an additional layer of security where needed.

    This only affects cookies set by the built-in IDP. Production systems should not be affected.

    https://github.com/owncloud/ocis/pull/8716

  • Bugfix - Update reva to v2.19.4: #8781

    We updated reva to v2.19.4

    Https://github.com/owncloud/ocis/pull/8787

    We updated reva to v2.19.3

    https://github.com/owncloud/ocis/pull/8781

  • Bugfix - Fix restarting of postprocessing: #8782

    When an upload is not found, the logic to restart postprocessing was bunked. Additionally we extended the upload sessions command to be able to restart the uploads without using a second command.

    NOTE: This also includes a breaking fix for the deprecated ocis storage-users uploads list command

    https://github.com/owncloud/ocis/pull/8782

  • Bugfix - Fix the create personal space cache: #8799

    We fixed a problem with the config for the create personal space cache which resulted in the cache never being used.

    https://github.com/owncloud/ocis/pull/8799

Changelog for 4.0.7 (2024-03-27)

The following sections list the changes for 4.0.7.

Summary

  • Bugfix - Update reva to include bugfixes and improvements: #8718
  • Enhancement - Update to go 1.22: #8597

Details

Changelog for 5.0.0 (2024-03-18)

The following sections list the changes for 5.0.0.

Summary

  • Bugfix - Fix wrong compile date: #6132
  • Bugfix - Fix the kql-bleve search: #7290
  • Bugfix - Bring back the USERS_LDAP_USER_SCHEMA_ID variable: #7312
  • Bugfix - Do not reset state of received shares when rebuilding the jsoncs3 index: #7319
  • Bugfix - Deprecate redundant encryptions settings for notification service: #7345
  • Bugfix - Check school number for duplicates before adding a school: #7351
  • Bugfix - Don't reload web config: #7369
  • Bugfix - Delete outdated userlog events: #7410
  • Bugfix - Set the mountpoint on auto accept: #7460
  • Bugfix - Fix default language fallback: #7465
  • Bugfix - GetUserByClaim fixed for Active Directory: #7476
  • Bugfix - Fix preview request 500 error when made too early: #7502
  • Bugfix - Fix 403 in docs pipeline: #7509
  • Bugfix - Fix the auth service env variable: #7523
  • Bugfix - Token storage config fixed: #7528
  • Bugfix - Set existing mountpoint on auto accept: #7592
  • Bugfix - Return 423 status code on tag create: #7596
  • Bugfix - Fix libre-graph status codes: #7678
  • Bugfix - Fix unlock via space API: #7726
  • Bugfix - Disable DEPTH infinity in PROPFIND: #7746
  • Bugfix - Fix the tgz mime type: #7772
  • Bugfix - Fix natsjs cache: #7790
  • Bugfix - Fix search service start: #7795
  • Bugfix - Fix search response: #7815
  • Bugfix - The race conditions in tests: #7847
  • Bugfix - Do not purge expired upload sessions that are still postprocessing: #7859
  • Bugfix - Fix the public link update: #7862
  • Bugfix - Fix jwt config of policies service: #7893
  • Bugfix - Updating logo with new theme structure: #7930
  • Bugfix - Password policy return code was wrong: #7952
  • Bugfix - Removed outdated and unused dependency from idp package: #7957
  • Bugfix - Update permission validation: #7963
  • Bugfix - Renaming a user to a string with capital letters: #7964
  • Bugfix - Improve OCM support: #7973
  • Bugfix - Permissions of a role with duplicate ID: #7976
  • Bugfix - Non durable streams for sse service: #7986
  • Bugfix - Fix empty trace ids: #8023
  • Bugfix - Fix search by containing special characters: #8050
  • Bugfix - Fix the upload postprocessing: #8117
  • Bugfix - Disallow to delete a file during the processing: #8132
  • Bugfix - Fix wrong naming in nats-js-kv registry: #8140
  • Bugfix - IDP CS3 backend sessions now survive a restart: #8142
  • Bugfix - Fix patching of language: #8182
  • Bugfix - Fix search service to not log expected cases as errors: #8200
  • Bugfix - Updating and reset logo failed: #8211
  • Bugfix - Cleanup graph/pkg/service/v0/driveitems.go: #8228
  • Bugfix - Cleanup search/pkg/search/search.go: #8230
  • Bugfix - Graph/sharedWithMe works for shares from project spaces now: #8233
  • Bugfix - Fix PATCH/DELETE status code for drives that don't support them: #8235
  • Bugfix - Fix nats authentication: #8236
  • Bugfix - Fix the resource name: #8246
  • Bugfix - Apply role constraints when creating shares via the graph API: #8247
  • Bugfix - Fix concurrent access to a map: #8269
  • Bugfix - Fix nats registry: #8281
  • Bugfix - Remove invalid environment variables: #8303
  • Bugfix - Fix concurrent shares config: #8317
  • Bugfix - Fix Content-Disposition header for downloads: #8381
  • Bugfix - Signed url verification: #8385
  • Bugfix - Fix an error when move: #8396
  • Bugfix - Fix extended env parser: #8409
  • Bugfix - Graph/drives/permission Expiration date update: #8413
  • Bugfix - Fix search error message: #8444
  • Bugfix - Graph/sharedWithMe align IDs with webdav response: #8467
  • Bugfix - Fix an error when lock/unlock a public shared file: #8472
  • Bugfix - Bump reva to pull in changes to fix recursive trashcan purge: #8505
  • Bugfix - Fix remove/update share permissions: #8529
  • Bugfix - Fix graph drive invite: #8538
  • Bugfix - We now always select the next clients when autoaccepting shares: #8570
  • Bugfix - Correct the default mapping of roles: #8639
  • Bugfix - Disable Multipart uploads: #8667
  • Bugfix - Fix last month search: #31145
  • Change - Auto-Accept Shares: #7097
  • Change - Change the default TUS chunk size: #7273
  • Change - Remove privacyURL and imprintURL from the config: #7938
  • Change - Remove accessDeniedHelpUrl from the config: #7970
  • Change - Change the default store for presigned keys to nats-js-kv: #8419
  • Change - Deprecate sharing cs3 backends: #8478
  • Enhancement - Add the Banned Passwords List: #4197
  • Enhancement - Introduce service accounts: #6427
  • Enhancement - SSE for messaging: #6992
  • Enhancement - Support spec violating AD FS access token issuer: #7140
  • Enhancement - Add OCIS_LDAP_BIND_PASSWORD as replacement for LDAP_BIND_PASSWORD: #7176
  • Enhancement - Keyword Query Language (KQL) search syntax: #7212
  • Enhancement - Introduce clientlog service: #7217
  • Enhancement - Proxy uses service accounts for provisioning: #7240
  • Enhancement - The password policies change request: #7264
  • Enhancement - Introduce natsjs registry: #7272
  • Enhancement - Add the password policies: #7285
  • Enhancement - Add login URL config: #7317
  • Enhancement - Improve SSE format: #7325
  • Enhancement - New value auto for NOTIFICATIONS_SMTP_AUTHENTICATION: #7356
  • Enhancement - Make sse service scalable: #7382
  • Enhancement - Edit wrong named enves: #7406
  • Enhancement - Thumbnail generation with image processors: #7409
  • Enhancement - Set default for Async Uploads to true: #7416
  • Enhancement - The default language added: #7417
  • Enhancement - Add "Last modified" filter Chip: #7455
  • Enhancement - Config for disabling Web extensions: #7486
  • Enhancement - Store and index metadata: #7490
  • Enhancement - Add support for audio files to the thumbnails service: #7491
  • Enhancement - Implement sharing roles: #7524
  • Enhancement - Add new permission to delete public link password: #7538
  • Enhancement - Add config to enforce passwords on all public links: #7547
  • Enhancement - Tika content extraction cleanup for search: #7553
  • Enhancement - Allow configuring storage registry with envvars: #7554
  • Enhancement - Add search MediaType filter: #7602
  • Enhancement - Add Sharing NG endpoints: #7633
  • Enhancement - Configs for Web embed mode: #7670
  • Enhancement - Support login page background configuration: #7674
  • Enhancement - Add new permissions: #7700
  • Enhancement - Add preferred language to user settings: #7720
  • Enhancement - Add user filter startswith and contains: #7739
  • Enhancement - Allow configuring additional routes: #7741
  • Enhancement - Default link permission config: #7783
  • Enhancement - Add banned password list to the default deployments: #7784
  • Enhancement - Update to go 1.21: #7794
  • Enhancement - Add Sharing NG list permissions endpoint: #7805
  • Enhancement - Add user list requires filter config: #7866
  • Enhancement - Retry antivirus postprocessing step in case of problems: #7874
  • Enhancement - Add validation to public share provider: #7877
  • Enhancement - Graphs endpoint for mounting and unmounting shares: #7885
  • Enhancement - Store and index metadata: #7886
  • Enhancement - Allow regular users to list other users: #7887
  • Enhancement - Add edit public share to sharing NG: #7908
  • Enhancement - Add cli commands for trash-bin: #7917
  • Enhancement - Add validation update public share: #7978
  • Enhancement - Allow inmemory nats-js-kv stores: #7979
  • Enhancement - Disable the password policy: #7985
  • Enhancement - Use kv store in natsjs registry: #7987
  • Enhancement - Allow authentication nats connections: #7989
  • Enhancement - Add RED metrics to the metrics endpoint: #7994
  • Enhancement - Add ocm and sciencemesh services: #7998
  • Enhancement - Make nats-js-kv the default registry: #8011
  • Enhancement - Service Account roles: #8051
  • Enhancement - Update antivirus service: #8062
  • Enhancement - Remove deprecated environment variables: #8149
  • Enhancement - Disable the password policy: #8152
  • Enhancement - Allow restarting multiple uploads with one command: #8287
  • Enhancement - Modify the concurrency default: #8309
  • Enhancement - Improve ocis single binary start: #8320
  • Enhancement - Use environment variables in yaml config files: #8339
  • Enhancement - Increment filenames on upload collisions in secret filedrops: #8340
  • Enhancement - Allow sending multiple user ids in one sse event: #8379
  • Enhancement - Allow to skip service listing: #8408
  • Enhancement - Add a make step to validate the env var annotations: #8436
  • Enhancement - Drop the unnecessary grants exists check when creating shares: #8502
  • Enhancement - Update to go 1.22: #8586
  • Enhancement - Update web to v8.0.0: #8613
  • Enhancement - Update web to v8.0.1: #8626
  • Enhancement - Update reva to 2.19.2: #8638

Details

Changelog for 4.0.6 (2024-02-07)

The following sections list the changes for 4.0.6.

Summary

  • Bugfix - Fix RED metrics on the metrics endpoint: #7994
  • Bugfix - Signed url verification: #8385

Details

  • Bugfix - Fix RED metrics on the metrics endpoint: #7994

    We connected some metrics to the metrics endpoint to support the RED method for monitoring microservices.

    • Request Rate: The number of requests per second. The total count of requests is available under ocis_proxy_requests_total. - Error Rate: The number of failed requests per second. The total count of failed requests is available under ocis_proxy_errors_total. - Duration: The amount of time each request takes. The duration of all requests is available under ocis_proxy_request_duration_seconds. This is a histogram metric, so it also provides information about the distribution of request durations.

    The metrics are available under the following paths: PROXY_DEBUG_ADDR/metrics in a prometheus compatible format and maybe secured by PROXY_DEBUG_TOKEN.

    https://github.com/owncloud/ocis/pull/7994

  • Bugfix - Signed url verification: #8385

    Signed urls now expire properly

    https://github.com/owncloud/ocis/pull/8385

Changelog for 4.0.5 (2023-12-21)

The following sections list the changes for 4.0.5.

Summary

  • Bugfix - Fix reva config of frontend service to avoid misleading error logs: #7934
  • Bugfix - Do not purge expired upload sessions that are still postprocessing: #7941
  • Bugfix - Fix trace ids: #8026
  • Enhancement - Add cli commands for trash-bin: #7936

Details

Changelog for 4.0.4 (2023-12-07)

The following sections list the changes for 4.0.4.

Summary

  • Enhancement - Update reva to improve trashbin listing: #7858

Details

Changelog for 4.0.3 (2023-11-24)

The following sections list the changes for 4.0.3.

Summary

  • Bugfix - Bump reva to 2.16.2: #7512
  • Bugfix - Token storage config fixed: #7546
  • Enhancement - Support spec violating AD FS access token issuer: #7138
  • Enhancement - Update web to v7.1.2: #7798

Details

Changelog for 4.0.2 (2023-09-28)

The following sections list the changes for 4.0.2.

Summary

  • Bugfix - Actually pass PROXY_OIDC_SKIP_USER_INFO option to oidc client middleware: #7220
  • Bugfix - Disable username validation for keycloak example: #7230
  • Bugfix - Bring back the USERS_LDAP_USER_SCHEMA_ID variable: #7312
  • Bugfix - Do not reset received share state to pending: #7319
  • Bugfix - Bump reva to 2.16.1: #7350
  • Bugfix - Check school number for duplicates before adding a school: #7351
  • Enhancement - Add OCIS_LDAP_BIND_PASSWORD as replacement for LDAP_BIND_PASSWORD: #7176

Details

Changelog for 4.0.1 (2023-09-01)

The following sections list the changes for 4.0.1.

Summary

  • Bugfix - Disallow sharee to search sharer files outside the share: #7184

Details

  • Bugfix - Disallow sharee to search sharer files outside the share: #7184

    When a file was shared with user(sharee) and the sharee searched the shared file the response contained unshared resources as well.

    https://github.com/owncloud/ocis/pull/7184

Changelog for 4.0.0 (2023-08-21)

The following sections list the changes for 4.0.0.

Summary

  • Bugfix - Fix error message on 400 response for thumbnail requests: #2064
  • Bugfix - Handle the bad request status: #6469
  • Bugfix - Add missing timestamps: #6515
  • Bugfix - Add token to LinkAccessedEvent: #6554
  • Bugfix - Don't connect to ldap on startup: #6565
  • Bugfix - Add default store to postprocessing: #6578
  • Bugfix - Fix the oidc role assigner: #6605
  • Bugfix - Restart Postprocessing: #6726
  • Bugfix - Fix search shares: #6741
  • Bugfix - Fix the default document language for OnlyOffice: #6878
  • Bugfix - Fix nats registry: #6881
  • Bugfix - Check public auth first: #6900
  • Bugfix - Fix CORS issues: #6912
  • Bugfix - Let clients cache web and theme assets: #6914
  • Bugfix - Fix the search: #6947
  • Bugfix - Graph service did not honor the OCIS_LDAP_GROUP_SCHEMA_MEMBER setting: #7032
  • Bugfix - Fix the routing capability: #9367
  • Change - YAML configuration files are restricted to yaml-1.2: #6510
  • Enhancement - Add SSE Endpoint: #5998
  • Enhancement - Add postprocessing mimetype to extension helper: #6133
  • Enhancement - Add more metadata to the remote item: #6300
  • Enhancement - Add WEB_OPTION_OPEN_LINKS_WITH_DEFAULT_APP env variable: #6328
  • Enhancement - Fix the username validation: #6437
  • Enhancement - Use reva client selectors: #6452
  • Enhancement - Add companion URL config: #6453
  • Enhancement - Update go-micro kubernetes registry: #6457
  • Enhancement - Add imprint and privacy url config: #6462
  • Enhancement - Update web to v7.0.1: #6470
  • Enhancement - Make the app provider service name configurable: #6482
  • Enhancement - Fix the groupname validation: #6490
  • Enhancement - Add functionality to retry postprocessing: #6500
  • Enhancement - Fix envvar defaults: #6516
  • Enhancement - Add permissions to report: #6528
  • Enhancement - Add old & new values to audit logs: #6537
  • Enhancement - Allow disabling wopi chat: #6544
  • Enhancement - We added the storage id to the audit log for spaces: #6548
  • Enhancement - Add logged out url config: #6549
  • Enhancement - Add 'ocis decomposedfs check-treesize' command: #6556
  • Enhancement - Skip if the simulink is a directory: #6574
  • Enhancement - Thumbnails can be disabled for webdav & web now: #6577
  • Enhancement - Make the post logout redirect uri configurable: #6583
  • Enhancement - Move proxy to service tracerprovider: #6591
  • Enhancement - Add IDs to graph resource logging: #6593
  • Enhancement - Add search result content preview and term highlighting: #6634
  • Enhancement - Move graph to service tracerprovider: #6695
  • Enhancement - Provide Search filter for locations: #6713
  • Enhancement - Add X-Request-Id to all responses: #6715
  • Enhancement - Clarify license text in the dev docs: #6755
  • Enhancement - Add WEB_OPTION_TOKEN_STORAGE_LOCAL env variable: #6760
  • Enhancement - Bump Hugo: #6787
  • Enhancement - Bump reva to 2.16.0: #6829
  • Enhancement - Configure max grpc message size: #6849
  • Enhancement - Improve the notification logs: #6862
  • Enhancement - Extendable policy mimetype extension mapping: #6869
  • Enhancement - Evaluate policy resource information on single file shares: #6888
  • Enhancement - Update web to v7.1.0-rc.5: #6944
  • Enhancement - Add static secret to gn endpoints: #6946
  • Enhancement - Bump sonarcloud: #6961
  • Enhancement - Nats named connections: #6979
  • Enhancement - Add command for rebuilding the jsoncs3 share manager indexes: #6986
  • Enhancement - Remove deprecated environment variables: #7099
  • Enhancement - Update web to v7.1.0: #7107

Details

Changelog for 3.0.0 (2023-06-06)

The following sections list the changes for 3.0.0.

Summary

  • Bugfix - Use UUID attribute for computing "sub" claim in lico idp: #904
  • Bugfix - Fix default role assignment for demo users: #3432
  • Bugfix - Hide the existence of space when deleting/updating: #5031
  • Bugfix - Fix Postprocessing events: #5269
  • Bugfix - Return 425 on Thumbnails: #5300
  • Bugfix - Disassociate users from deleted school: #5343
  • Bugfix - Fix Search tag indexing: #5405
  • Bugfix - Populate expanded properties: #5421
  • Bugfix - Fix the empty string givenName attribute when creating user: #5431
  • Bugfix - Add portrait thumbnail resolutions: #5656
  • Bugfix - Fix so that PATCH requests for groups actually updates the group name: #5949
  • Bugfix - Add missing CORS config: #5987
  • Bugfix - Fix authenticate headers for API requests: #5992
  • Bugfix - Fix OIDC auth cache: #5997
  • Bugfix - Fix user type config for user provider: #6027
  • Bugfix - Fix the wrong status code when appRoleAssignments is forbidden: #6037
  • Bugfix - Fix Search reindexing performance regression: #6085
  • Bugfix - Fix userlog panic: #6114
  • Bugfix - Fix wrong compile date: #6132
  • Bugfix - Fix Logout Url config name: #6227
  • Bugfix - Allow selected updates on graph users: #6233
  • Bugfix - Add missing response to blocked requests: #6277
  • Bugfix - Update the default admin role: #6310
  • Bugfix - Trace proxy middlewares: #6313
  • Bugfix - Reduced default TTL of user and group caches in graph API: #6320
  • Bugfix - Empty exact list while searching for a sharee: #6398
  • Bugfix - Fix error message when disabling users: #6435
  • Change - Remove the settings ui: #5463
  • Change - Do not share versions: #5531
  • Change - Bump libregraph lico: #5768
  • Change - Updated Cache Configuration: #5829
  • Change - We renamed the guest role to user light: #6456
  • Enhancement - Rename permissions: #3922
  • Enhancement - Open Debug endpoint for Notifications: #5002
  • Enhancement - Open Debug endpoint for Nats: #5002
  • Enhancement - Add otlp tracing exporter: #5132
  • Enhancement - Add global env variable extractor: #5164
  • Enhancement - Async Postprocessing: #5207
  • Enhancement - Extended search: #5221
  • Enhancement - Resource tags: #5227
  • Enhancement - Bump libre-graph-api-go: #5309
  • Enhancement - Drive group permissions: #5312
  • Enhancement - Expiration Notifications: #5330
  • Enhancement - Graph Drives IdentitySet displayName: #5347
  • Enhancement - Make the group members addition limit configurable: #5357
  • Enhancement - Collect global envvars: #5367
  • Enhancement - Add webfinger service: #5373
  • Enhancement - Display surname and givenName attributes: #5388
  • Enhancement - Add expiration to user and group shares: #5389
  • Enhancement - Space Management permissions: #5441
  • Enhancement - Better config for postprocessing service: #5457
  • Enhancement - Cli to purge expired trash-bin items: #5500
  • Enhancement - Allow username to be changed: #5509
  • Enhancement - Allow users to be disabled: #5588
  • Enhancement - Make the settings bundles part of the service config: #5589
  • Enhancement - Add endpoint to list permissions: #5594
  • Enhancement - Eventhistory service: #5600
  • Enhancement - Userlog Service: #5610
  • Enhancement - Added option to configure default quota per role: #5616
  • Enhancement - Add new SetProjectSpaceQuota permission: #5660
  • Enhancement - Make graph/education API errors more consistent: #5682
  • Enhancement - Add new permission for public links: #5690
  • Enhancement - Userlog: #5699
  • Enhancement - Introduce policies-service: #5714
  • Enhancement - Update to go 1.20 to use memlimit: #5732
  • Enhancement - Add endpoints to upload a custom logo: #5735
  • Enhancement - Add config option to enforce passwords on public links: #5848
  • Enhancement - Add 'ocis decomposedfs metadata' command: #5858
  • Enhancement - Use gotext master: #5867
  • Enhancement - No Notifications for own actions: #5871
  • Enhancement - Automate md creation: #5901
  • Enhancement - Notify about policies: #5912
  • Enhancement - Use Accept-Language Header: #5918
  • Enhancement - Add MessageRichParameters: #5927
  • Enhancement - Add more logging to av service: #5973
  • Enhancement - Make the LDAP base DN for new groups configurable: #5974
  • Enhancement - Add a capability for the Personal Data export: #5984
  • Enhancement - Bump go-ldap version: #6004
  • Enhancement - Configure GRPC in ocs: #6022
  • Enhancement - Web config additions: #6032
  • Enhancement - Notifications: #6038
  • Enhancement - Added possibility to assign roles based on OIDC claims: #6048
  • Enhancement - GDPR Export: #6064
  • Enhancement - Add optional services to the runtime: #6071
  • Enhancement - Determine the users language to translate via Transifex: #6089
  • Enhancement - Return Bad Request when requesting GDPR export for another user: #6123
  • Enhancement - Disable Notifications: #6137
  • Enhancement - Add the email HTML templates: #6147
  • Enhancement - Add debug server to idm: #6153
  • Enhancement - Add debug server to audit: #6178
  • Enhancement - Web options configuration: #6188
  • Enhancement - Add debug server to userlog: #6202
  • Enhancement - Add debug server to postprocessing: #6203
  • Enhancement - Add debug server to eventhistory: #6204
  • Enhancement - Add specific result to antivirus for debugging: #6265
  • Enhancement - Add Store to postprocessing: #6281
  • Enhancement - Update web to v7.0.0-rc.37: #6294
  • Enhancement - Remove quota from share jails api responses: #6309
  • Enhancement - Graph user capabilities: #6339
  • Enhancement - Configurable ID Cache: #6353
  • Enhancement - Fix err when the user share the locked file: #6358
  • Enhancement - Remove the email logo: #6359
  • Enhancement - Default LDAP write to true: #6362
  • Enhancement - Add fulltextsearch capabilty: #6366
  • Enhancement - Update web to v7.0.0-rc.38: #6375
  • Enhancement - Fix preview or viewing of shared animated GIFs: #6386
  • Enhancement - Unify CA Cert envvars: #6392
  • Enhancement - Fix to prevent the email X-Site scripting: #6429
  • Enhancement - Update web to v7.0.0: #6438
  • Enhancement - Update Reva to version 2.14.0: #6448

Details

Changelog for 2.0.0 (2022-11-30)

The following sections list the changes for 2.0.0.

Summary

  • Bugfix - Substring search for sharees: #547
  • Bugfix - Return proper errors when ocs/cloud/users is using the cs3 backend: #3483
  • Bugfix - Thumbnails for /dav/xxx?preview=1 requests: #3567
  • Bugfix - URL encode the webdav url in the graph API: #3597
  • Bugfix - Idp: Check if CA certificate if present: #3623
  • Bugfix - Fix DN parsing issues and sizelimit handling in libregraph/idm: #3631
  • Bugfix - Fix the webdav URL of drive roots: #3706
  • Bugfix - Check permissions when deleting Space: #3709
  • Bugfix - Remove runtime kill and run commands: #3740
  • Bugfix - Make IDP secrets configurable via environment variables: #3744
  • Bugfix - Store user passwords hashed in idm: #3778
  • Bugfix - Fix version number in status page: #3788
  • Bugfix - Fix Thumbnails for IDs without a trailing path: #3791
  • Bugfix - Fix the ocis search command: #3796
  • Bugfix - Remove unused transfer secret from app provider: #3798
  • Bugfix - Fix the idm and settings extensions' admin user id configuration option: #3799
  • Bugfix - Rename search env variable for the grpc server address: #3800
  • Bugfix - Fix multiple storage-users env variables: #3802
  • Bugfix - Save Katherine: #3823
  • Bugfix - Enable debug server by default: #3827
  • Bugfix - Remove legacy accounts proxy routes: #3831
  • Bugfix - Set default name for public link via capabilities: #3834
  • Bugfix - Fix search index getting out of sync: #3851
  • Bugfix - Inconsistency env var naming for LDAP filter configuration: #3890
  • Bugfix - Allow empty environment variables: #3892
  • Bugfix - Fix user autoprovisioning: #3893
  • Bugfix - Fix LDAP insecure options: #3897
  • Bugfix - Rework default role provisioning: #3900
  • Bugfix - Fix configuration validation for extensions' server commands: #3911
  • Bugfix - Fix graph endpoint: #3925
  • Bugfix - Fix version info: #3953
  • Bugfix - Remove unused OCS storage configuration: #3955
  • Bugfix - Make ocdav service behave properly: #3957
  • Bugfix - Make IDP only wait for certs when using LDAP: #3965
  • Bugfix - Remove unused configuration options: #3973
  • Bugfix - CSP rules for silent token refresh in iframe: #4031
  • Bugfix - Logging in on the wrong account when an email address is not unique: #4039
  • Bugfix - Remove static ocs user backend config: #4077
  • Bugfix - Fix make sensitive config values in the proxy's debug server: #4086
  • Bugfix - Fix startup error logging: #4093
  • Bugfix - Polish search: #4094
  • Bugfix - Fix logging levels: #4102
  • Bugfix - Escape DN attribute value: #4117
  • Bugfix - Fix OCIS_RUN_SERVICES: #4133
  • Bugfix - Space Creators can hand over spaces: #4244
  • Bugfix - Fix handling of invalid LDAP users and groups: #4274
  • Bugfix - Fix search in received shares: #4308
  • Bugfix - Fix unrestricted quota on the graphAPI: #4363
  • Bugfix - Autocreate IDP private key also if file exists but is empty: #4394
  • Bugfix - Show help for some commands when unconfigured: #4405
  • Bugfix - Rename extensions to services (leftover occurrences): #4407
  • Bugfix - Fix configuration of mimetypes for the app registry: #4411
  • Bugfix - Disable default expiration for public links: #4445
  • Bugfix - Fix permissions in REPORT: #4520
  • Bugfix - Render webdav permissions as string in search report: #4575
  • Bugfix - Graph service now forwards trace context: #4582
  • Bugfix - Fix sharing jsoncs3 driver options: #4593
  • Bugfix - Fix the OIDC provider cache: #4600
  • Bugfix - Change the default value for PROXY_OIDC_INSECURE to false: #4601
  • Bugfix - Fix authentication for autoprovisioned users: #4616
  • Bugfix - Fix wopi access to public shares: #4631
  • Bugfix - Fix unfindable entities from shares/publicshares: #4651
  • Bugfix - Fix notifications service settings: #4652
  • Bugfix - Bring back the settings UI in Web: #4691
  • Bugfix - Don't run auth-bearer service by default: #4692
  • Bugfix - Mail notifications for group shares: #4714
  • Bugfix - Make tokeninfo endpoint unprotected: #4715
  • Bugfix - Fix cache stat table config: #4732
  • Bugfix - Trigger a rescan of spaces in the search index when items have changed: #4777
  • Bugfix - Disable cache for selected static web assets: #4809
  • Bugfix - Remove the storage-users event configuration: #4825
  • Bugfix - Fix the shareroot path in REPORT responses: #4859
  • Bugfix - Disable federation capabilities: #4864
  • Bugfix - Fix permission check in settings service: #4890
  • Bugfix - Fix CORS in frontend service: #4948
  • Bugfix - Fix notifications Web UI url: #4998
  • Bugfix - Do not reindex a space twice at the same time: #5001
  • Bugfix - Find spaces by their name: #5044
  • Bugfix - Initial role assignment with external IDM: #5045
  • Bugfix - Lower IDP token lifespans: #5077
  • Bugfix - Adjust cache related configuration options: #5087
  • Bugfix - Make storage users mount ids unique by default: #5091
  • Bugfix - Update reva to version 2.12.0: #5092
  • Bugfix - Decomposedfs increase filelock duration factor: #5130
  • Bugfix - Translations on login page: #7550
  • Bugfix - Fix search report: #7557
  • Bugfix - Fix unused config option GRAPH_SPACES_INSECURE: #55555
  • Change - Switched default configuration to use libregraph/idm: #3331
  • Change - Introduce ocis init and remove all default secrets: #3551
  • Change - Load configuration files just from one directory: #3587
  • Change - Reduce drives in graph /me/drives API: #3629
  • Change - Reduce permissions on docker image predeclared volumes: #3641
  • Change - Use new space ID util functions: #3648
  • Change - Rename MetadataUserID: #3671
  • Change - Split MachineAuth from SystemUser: #3672
  • Change - Rename serviceUser to systemUser: #3673
  • Change - Update ocis packages and imports to V2: #3678
  • Change - The glauth and accounts services are removed: #3685
  • Change - Prevent access to disabled space: #3779
  • Change - Rename "uploads purge" command to "uploads clean": #4403
  • Change - Enable private links by default: #4599
  • Change - Use the spaceID on the cs3 resource: #4748
  • Change - Build service frontends with pnpm instead of yarn: #4878
  • Enhancement - Disable the color logging in docker compose examples: #871
  • Enhancement - Product field in OCS version: #2918
  • Enhancement - Add /me/changePassword endpoint to GraphAPI: #3063
  • Enhancement - Update IdP UI: #3493
  • Enhancement - Update reva to v2.3.1: #3552
  • Enhancement - Update linkshare capabilities: #3579
  • Enhancement - Wrap metadata storage with dedicated reva gateway: #3602
  • Enhancement - Align service naming: #3606
  • Enhancement - Added share_jail and projects feature flags in spaces capability: #3626
  • Enhancement - Add initial version of the search extensions: #3635
  • Enhancement - Don't setup demo role assignments on default: #3661
  • Enhancement - Restrict admins from self-removal: #3713
  • Enhancement - Update reva to version 2.4.1: #3746
  • Enhancement - Add description tags to the thumbnails config structs: #3752
  • Enhancement - Add acting user to the audit log: #3753
  • Enhancement - Add descriptions to webdav configuration: #3755
  • Enhancement - Add descriptions for graph-explorer config: #3759
  • Enhancement - Add config option to provide TLS certificate: #3818
  • Enhancement - Introduce service registry cache: #3833
  • Enhancement - Improve validation of OIDC access tokens: #3841
  • Enhancement - Reintroduce user autoprovisioning in proxy: #3860
  • Enhancement - Allow resharing: #3904
  • Enhancement - Generate signing key and encryption secret: #3909
  • Enhancement - Add deprecation annotation: #3917
  • Enhancement - Update reva to version 2.5.1: #3932
  • Enhancement - Add audit events for created containers: #3941
  • Enhancement - Update reva: #3944
  • Enhancement - Make thumbnails service log less noisy: #3959
  • Enhancement - Refactor extensions to services: #3980
  • Enhancement - Add capability for alias links: #3983
  • Enhancement - New migrate command for migrating shares and public shares: #3987
  • Enhancement - Update ownCloud Web to v5.7.0-rc.1: #4005
  • Enhancement - Add FRONTEND_ENABLE_RESHARING env variable: #4023
  • Enhancement - Add drives field to users endpoint: #4072
  • Enhancement - Added command to reset administrator password: #4084
  • Enhancement - Update reva to version 2.7.2: #4115
  • Enhancement - Search service at the old webdav endpoint: #4118
  • Enhancement - Update ownCloud Web to v5.7.0-rc.4: #4140
  • Enhancement - Add number of total matches to the search result: #4189
  • Enhancement - Introduce "delete-all-spaces" permission: #4196
  • Enhancement - Improve error log for "could not get user by claim" error: #4227
  • Enhancement - Allow providing list of services NOT to start: #4254
  • Enhancement - Introduce insecure flag for smtp email notifications: #4279
  • Enhancement - Update reva to v2.7.4: #4294
  • Enhancement - Update ownCloud Web to v5.7.0-rc.8: #4314
  • Enhancement - OCS get share now also handle received shares: #4322
  • Enhancement - Fix behavior for foobar (in present tense): #4346
  • Enhancement - Use storageID when requesting special items: #4356
  • Enhancement - Expand personal drive on the graph user: #4357
  • Enhancement - Rewrite of the request authentication middleware: #4374
  • Enhancement - Add /app/open-with-web endpoint: #4376
  • Enhancement - Added language option to the app provider: #4399
  • Enhancement - Refactor the proxy service: #4401
  • Enhancement - Add previewFileMimeTypes to web default config: #4414
  • Enhancement - Update ownCloud Web to v5.7.0-rc.10: #4439
  • Enhancement - Add configuration options for mail authentication and encryption: #4443
  • Enhancement - Update reva to v2.8.0: #4444
  • Enhancement - Add missing unprotected paths: #4454
  • Enhancement - Automatically orientate photos when generating thumbnails: #4477
  • Enhancement - Improve login screen design: #4500
  • Enhancement - Update ownCloud Web to v5.7.0: #4508
  • Enhancement - Update Reva to version 2.10.0: #4522
  • Enhancement - Add Email templating: #4564
  • Enhancement - Allow to configure applications in Web: #4578
  • Enhancement - Add webURL to space root: #4588
  • Enhancement - Update reva to version 2.11.0: #4588
  • Enhancement - Allow to configuring the reva cache store: #4627
  • Enhancement - Add thumbnails support for tiff and bmp files: #4634
  • Enhancement - Add support for REPORT requests to /dav/spaces URLs: #4661
  • Enhancement - Make it possible to configure a WOPI folderurl: #4716
  • Enhancement - Add curl to the oCIS OCI image: #4751
  • Enhancement - Report parent id: #4757
  • Enhancement - Secure the nats connection with TLS: #4781
  • Enhancement - Allow to setup TLS for grpc services: #4798
  • Enhancement - We added e-mail subject templating: #4799
  • Enhancement - Logging improvements: #4815
  • Enhancement - Prohibit users from setting or listing other user's values: #4897
  • Enhancement - Deny access to resources: #4903
  • Enhancement - Validate space names: #4955
  • Enhancement - Configurable max lock cycles: #4965
  • Enhancement - Rename AUTH_BASIC_AUTH_PROVIDER envvar: #4966
  • Enhancement - Default to tls 1.2: #4969
  • Enhancement - Add the "hidden" state to the search index: #5018
  • Enhancement - Remove windows from ci & release makefile: #5026
  • Enhancement - Add tracing to search: #5113
  • Enhancement - Update ownCloud Web to v6.0.0: #5153
  • Enhancement - Add capability for public link single file edit: #6787
  • Enhancement - Update ownCloud Web to v5.5.0-rc.8: #6854
  • Enhancement - Update ownCloud Web to v5.5.0-rc.9: #6854
  • Enhancement - Update ownCloud Web to v5.5.0-rc.6: #6854
  • Enhancement - Optional events in graph service: #55555

Details

Changelog for 1.20.0 (2022-04-13)

The following sections list the changes for 1.20.0.

Summary

  • Bugfix - Ensure the same data on /ocs/v?.php/config like oC10: #3113
  • Bugfix - Use the default server download protocol if spaces are not supported: #3386
  • Bugfix - Add owncloudsql driver to authprovider config: #3435
  • Bugfix - Corrected documentation: #3439
  • Change - Fix keys with underscores in the config files: #3412
  • Change - Don't create demo users by default: #3474
  • Enhancement - Add sorting to GraphAPI users and groups: #3360
  • Enhancement - Use embeddable ocdav go micro service: #3397
  • Enhancement - Update reva to v2.2.0: #3397
  • Enhancement - Make config dir configurable: #3440
  • Enhancement - Replace deprecated String.prototype.substr(): #3448
  • Enhancement - Alias links: #3454
  • Enhancement - Implement audit events for user and groups: #3467
  • Enhancement - Unify LDAP config settings across services: #3476
  • Enhancement - Update ownCloud Web to v5.4.0: #6709

Details

Changelog for 1.19.1 (2022-03-29)

The following sections list the changes for 1.19.1.

Summary

  • Bugfix - Return correct special item urls: #3419

Details

Changelog for 1.19.0 (2022-03-29)

The following sections list the changes for 1.19.0.

Summary

  • Bugfix - Fix request validation on GraphAPI User updates: #3167
  • Bugfix - Network configuration in individual_services example: #3238
  • Bugfix - Improve gif thumbnails: #3305
  • Bugfix - Replace public mountpoint fileid with grant fileid: #3349
  • Bugfix - Fix error handling in GraphAPI GetUsers call: #3357
  • Change - Switch NATS backend: #3192
  • Change - Settings service now stores its data via metadata service: #3232
  • Change - Add remote item to mountpoint and fix spaceID: #3365
  • Change - Drop json config file support: #3366
  • Enhancement - Include etags in drives listing: #3267
  • Enhancement - Improve thumbnails API: #3272
  • Enhancement - Add space aliases: #3283
  • Enhancement - Log sharing events in audit service: #3301
  • Enhancement - Add password reset link to login page: #3329
  • Enhancement - Update reva to v2.1.0: #3330
  • Enhancement - Audit logger will now log file events: #3332
  • Enhancement - Update ownCloud Web to v5.3.0: #6561

Details

Changelog for 1.18.0 (2022-03-03)

The following sections list the changes for 1.18.0.

Summary

  • Bugfix - Align storage metadata GPRC bind port with other variable names: #3169
  • Bugfix - Make events settings configurable: #3214
  • Bugfix - Capabilities for password protected public links: #3229
  • Change - Unify file IDs: #3185
  • Enhancement - Re-Enabling web cache control: #3109
  • Enhancement - Add SPA conform fileserver for web: #3109
  • Enhancement - Add sorting to list Spaces: #3200
  • Enhancement - Change NATS port: #3210
  • Enhancement - Implement notifications service: #3217
  • Enhancement - Thumbnails in spaces: #3219
  • Enhancement - Update reva to v2.0.0: #3231
  • Enhancement - Update ownCloud Web to v5.2.0: #6506

Details

Changelog for 1.17.0 (2022-02-16)

The following sections list the changes for 1.17.0.

Summary

  • Bugfix - Fix configuration for space membership endpoint: #2893
  • Bugfix - Add ocis storage-auth-machine subcommand: #2910
  • Bugfix - Fix the default tracing provider: #2952
  • Bugfix - Fix retry handling for LDAP connections: #2974
  • Bugfix - Remove group memberships when deleting a user: #3027
  • Bugfix - Make the default grpc client use the registry settings: #3041
  • Bugfix - Use same jwt secret for accounts as for metadata storage: #3081
  • Change - Unify configuration and commands: #2818
  • Change - Update libre-graph-api to v0.3.0: #2858
  • Change - Return not found when updating non existent space: #2869
  • Change - Update the graph api: #2885
  • Change - Change log level default from debug to error: #3071
  • Change - Remove the ownCloud storage driver: #3072
  • Change - Functionality to restore spaces: #3092
  • Change - Extended Space Properties: #3141
  • Enhancement - Support signature auth in the public share auth middleware: #2831
  • Enhancement - Update REVA to v1.16.1-0.20220215130802-df1264deff58: #2878
  • Enhancement - Add new file url of the app provider to the ocs capabilities: #2884
  • Enhancement - Update ownCloud Web to v5.0.0: #2895
  • Enhancement - Add spaces capability: #2931
  • Enhancement - Add filter by driveType and id to /me/drives: #2946
  • Enhancement - Introduce User and Group Management capabilities on GraphAPI: #2947
  • Enhancement - Update REVA to v1.16.1-0.20220112085026-07451f6cd806: #2953
  • Enhancement - Add endpoint to retrieve a single space: #2978
  • Enhancement - Add graph endpoint to delete and purge spaces: #2979
  • Enhancement - Add permissions to graph drives: #3095
  • Enhancement - Consul as supported service registry: #3133
  • Enhancement - Provide Description when creating a space: #3167

Details

Changelog for 1.16.0 (2021-12-10)

The following sections list the changes for 1.16.0.

Summary

  • Bugfix - Fix claim selector based routing for basic auth: #2779
  • Bugfix - Fix using s3ng as the metadata storage backend: #2807
  • Bugfix - Disallow creation of a group with empty name via the OCS api: #2825
  • Bugfix - Use the CS3api up- and download workflow for the accounts service: #2837
  • Change - OIDC: fallback if IDP doesn't provide "preferred_username" claim: #2644
  • Change - Restructure Configuration Parsing: #2708
  • Change - Rename APP_PROVIDER_BASIC_* environment variables: #2812
  • Enhancement - Cleanup ocis-pkg config: #2813
  • Enhancement - Correct shutdown of services under runtime: #2843
  • Enhancement - Update ownCloud Web to v4.6.1: #2846
  • Enhancement - Update REVA to v1.17.0: #2849

Details

Changelog for 1.15.0 (2021-11-19)

The following sections list the changes for 1.15.0.

Summary

  • Bugfix - Don't allow empty password: #197
  • Bugfix - Don't announce resharing via capabilities: #2690
  • Bugfix - Fix oCIS startup ony systems with IPv6: #2698
  • Bugfix - Fix error logging when there is no thumbnail for a file: #2702
  • Bugfix - Fix basic auth config: #2719
  • Bugfix - Fix opening images in media viewer for some usernames: #2738
  • Bugfix - Fix basic auth with custom user claim: #2755
  • Change - Make all insecure options configurable and change the default to false: #2700
  • Change - Update ownCloud Web to v4.5.0: #2780
  • Enhancement - Add API to list all spaces: #2692
  • Enhancement - Update REVA to v1.16.0: #2737

Details

Changelog for 1.14.0 (2021-10-27)

The following sections list the changes for 1.14.0.

Summary

  • Security - Don't expose services by default: #2612
  • Bugfix - Create parent directories for idp configuration: #2667
  • Change - New default data paths and easier configuration of the data path: #2590
  • Change - Configurable default quota: #2621
  • Change - Split spaces webdav url and graph url in base and path: #2660
  • Change - Update ownCloud Web to v4.4.0: #2681
  • Enhancement - Replace fileb0x with go-embed: #1199
  • Enhancement - Start up a new machine auth provider in the storage service: #2528
  • Enhancement - Add a middleware to authenticate public share requests: #2536
  • Enhancement - Lower TUS max chunk size: #2584
  • Enhancement - Upgrade to go-micro v4.1.0: #2616
  • Enhancement - Report quota states: #2628
  • Enhancement - Broaden bufbuild/Buf usage: #2630
  • Enhancement - Add sharees additional info parameter config to ocs: #2637
  • Enhancement - Enforce permission on update space quota: #2650
  • Enhancement - Update lico to v0.51.1: #2654
  • Enhancement - Add user setting capability: #2655
  • Enhancement - Update reva to v1.15: #2658
  • Enhancement - Review and correct http header: #2666

Details

Changelog for 1.13.0 (2021-10-13)

The following sections list the changes for 1.13.0.

Summary

  • Bugfix - Use proper url path decode on the username: #2511
  • Bugfix - Remove notifications placeholder: #2514
  • Bugfix - Fix the account resolver middleware: #2557
  • Bugfix - Race condition in config parsing: #2574
  • Bugfix - Fix version information for extensions: #2575
  • Bugfix - Remove asset path configuration option from proxy: #2576
  • Bugfix - Add the gatewaysvc to all shared configuration in REVA services: #2597
  • Change - Make the drives create method odata compliant: #2531
  • Change - Unify Envvar names configuring REVA gateway address: #2587
  • Change - Update ownCloud Web to v4.3.0: #2589
  • Change - Configure users and metadata storage separately: #2598
  • Enhancement - TLS config options for ldap in reva: #2492
  • Enhancement - Redirect invalid links to oC Web: #2493
  • Enhancement - Add option to skip generation of demo users and groups: #2495
  • Enhancement - Allow overriding the cookie based route by claim: #2508
  • Enhancement - Expose the reva archiver in OCIS: #2509
  • Enhancement - Set reva JWT token expiration time to 24 hours by default: #2527
  • Enhancement - Use reva's Authenticate method instead of spawning token managers: #2528
  • Enhancement - Add maximum files and size to archiver capabilities: #2544
  • Enhancement - Make mimetype allow list configurable for app provider: #2553
  • Enhancement - Reduced repository size: #2579
  • Enhancement - Add allow_creation parameter to mime type config: #2591
  • Enhancement - Favorites capability: #2599
  • Enhancement - Updated MimeTypes configuration for AppRegistry: #2603
  • Enhancement - Upgrade to GO 1.17: #2605
  • Enhancement - Return the newly created space: #2610
  • Enhancement - Update reva to v1.14.0: #2615

Details

Changelog for 1.12.0 (2021-09-14)

The following sections list the changes for 1.12.0.

Summary

  • Bugfix - Set English as default language in the dropdown in the settings page: #2465
  • Bugfix - Remove non working proxy route and fix cs3 users example: #2474
  • Change - Remove OnlyOffice extension: #2433
  • Change - Remove OnlyOffice extension: #2433
  • Change - Update ownCloud Web to v4.2.0: #2501
  • Enhancement - Add app provider and app provider registry: #2204
  • Enhancement - Update go-chi/chi to version 5.0.3: #2429
  • Enhancement - Upgrade go micro to v3.6.0: #2451
  • Enhancement - Add set space quota permission: #2459
  • Enhancement - Add the create space permission: #2461
  • Enhancement - Create a Space using the Graph API: #2471
  • Enhancement - Update reva to v1.13.0: #2477

Details

Changelog for 1.11.0 (2021-08-24)

The following sections list the changes for 1.11.0.

Summary

  • Bugfix - Specify primary user type for all accounts: #2364
  • Bugfix - Fix naming of the user- and groupprovider services: #2388
  • Change - Update ownCloud Web to v4.1.0: #2426
  • Enhancement - Use non root user for the owncloud/ocis docker image: #2380
  • Enhancement - Replace unmaintained jwt library: #2386
  • Enhancement - Update bleve to version 2.1.0: #2391
  • Enhancement - Update github.com/coreos/go-oidc to v3.0.0: #2393
  • Enhancement - Update reva to v1.12: #2423

Details

  • Bugfix - Specify primary user type for all accounts: #2364

    https://github.com/owncloud/ocis/pull/2364

  • Bugfix - Fix naming of the user- and groupprovider services: #2388

    The services are called "storage-userprovider" and "storage-groupprovider". The 'ocis help' output was misleading.

    https://github.com/owncloud/ocis/pull/2388

  • Change - Update ownCloud Web to v4.1.0: #2426

    Tags: web

    We updated ownCloud Web to v4.1.0. Please refer to the changelog (linked) for details on the web release.

    https://github.com/owncloud/ocis/pull/2426 https://github.com/owncloud/web/releases/tag/v4.1.0

  • Enhancement - Use non root user for the owncloud/ocis docker image: #2380

    The owncloud/ocis docker image now uses a non root user and enables you to set a different user with the docker --user parameter. The default user has the UID 1000 is part of a group with the GID 1000.

    This is a breaking change for existing docker deployments. The permission on the files and folders in persistent volumes need to be changed to the UID and GID used for oCIS (default 1000:1000 if not changed by the user).

    https://github.com/owncloud/ocis/pull/2380

  • Enhancement - Replace unmaintained jwt library: #2386

    The old library github.com/dgrijalva/jwt-go is unmaintained and was replaced by the community maintained fork github.com/golang-jwt/jwt.

    https://github.com/owncloud/ocis/pull/2386

  • Enhancement - Update bleve to version 2.1.0: #2391

    Updated bleve to the current version.

    https://github.com/owncloud/ocis/pull/2391

  • Enhancement - Update github.com/coreos/go-oidc to v3.0.0: #2393

    Updated the github.com/coreos/go-oidc library to the version 3.0.0.

    https://github.com/owncloud/ocis/pull/2393

  • Enhancement - Update reva to v1.12: #2423

    • Enhancement cs3org/reva#1803: Introduce new webdav spaces endpoint
    • Bugfix cs3org/reva#1819: Disable notifications
    • Enhancement cs3org/reva#1861: Add support for runtime plugins
    • Bugfix cs3org/reva#1913: Logic to restore files to readonly nodes
    • Enhancement cs3org/reva#1946: Add share manager that connects to oc10 databases
    • Bugfix cs3org/reva#1954: Fix response format of the sharees API
    • Bugfix cs3org/reva#1956: Fix trashbin listing with depth 0
    • Bugfix cs3org/reva#1957: Fix etag propagation on deletes
    • Bugfix cs3org/reva#1960: Return the updated share after updating
    • Bugfix cs3org/reva#1965 cs3org/reva#1967: Fix the file target of user and group shares
    • Bugfix cs3org/reva#1980: Propagate the etag after restoring a file version
    • Enhancement cs3org/reva#1984: Replace OpenCensus with OpenTelemetry
    • Bugfix cs3org/reva#1985: Add quota stubs
    • Bugfix cs3org/reva#1987: Fix windows build
    • Bugfix cs3org/reva#1990: Increase oc10 compatibility of owncloudsql
    • Bugfix cs3org/reva#1992: Check if symlink exists instead of spamming the console
    • Bugfix cs3org/reva#1993: fix owncloudsql GetMD

    https://github.com/owncloud/ocis/pull/2423

Changelog for 1.10.0 (2021-08-06)

The following sections list the changes for 1.10.0.

Summary

  • Bugfix - Forward basic auth to OpenID connect token authentication endpoint: #2095
  • Bugfix - Log all requests in the proxy access log: #2301
  • Bugfix - Update glauth to 20210729125545-b9aecdfcac31: #2336
  • Bugfix - Improve IDP Login Accessibility: #5376
  • Change - Update ownCloud Web to v4.0.0: #2353
  • Enhancement - Proxy: Add claims policy selector: #2248
  • Enhancement - Refactor graph API: #2277
  • Enhancement - Add ocs cache warmup config and warn on protobuf ns conflicts: #2328
  • Enhancement - Use only one go.mod file for project dependencies: #2344
  • Enhancement - Update REVA: #2355

Details

  • Bugfix - Forward basic auth to OpenID connect token authentication endpoint: #2095

    When using PROXY_ENABLE_BASIC_AUTH=true we now forward request to the idp instead of trying to authenticate the request ourself.

    https://github.com/owncloud/ocis/issues/2095 https://github.com/owncloud/ocis/issues/2094

  • Bugfix - Log all requests in the proxy access log: #2301

    We now use a dedicated middleware to log all requests, regardless of routing selector outcome. While the log now includes the remote address, the selected routing policy is only logged when log level is set to debug because the request context cannot be changed in the directorSelectionDirector, as per the ReverseProxy.Director documentation.

    https://github.com/owncloud/ocis/pull/2301

  • Bugfix - Update glauth to 20210729125545-b9aecdfcac31: #2336

    • Fixes the backend config not being passed correctly in ocis
    • Fixes a mutex being copied, leading to concurrent writes
    • Fixes UTF8 chars in filters
    • Fixes case insensitive strings

    https://github.com/owncloud/ocis/pull/2336 https://github.com/glauth/glauth/pull/198 https://github.com/glauth/glauth/pull/194

  • Bugfix - Improve IDP Login Accessibility: #5376

    We have addressed the feedback from the a11y audit and improved the IDP login screen accordingly.

    https://github.com/owncloud/web/issues/5376 https://github.com/owncloud/web/issues/5377

  • Change - Update ownCloud Web to v4.0.0: #2353

    Tags: web

    We updated ownCloud Web to v4.0.0. Please refer to the changelog (linked) for details on the web release.

    https://github.com/owncloud/ocis/pull/2353 https://github.com/owncloud/web/releases/tag/v4.0.0

  • Enhancement - Proxy: Add claims policy selector: #2248

    Using the proxy config file, it is now possible to let let the IdP determine the routing policy by sending an ocis.routing.policy claim. Its value will be used to determine the set of routes for the logged in user.

    https://github.com/owncloud/ocis/pull/2248

  • Enhancement - Refactor graph API: #2277

    We refactored the /graph/v1.0/ endpoint which now relies on the internal access token fer authentication, getting rid of any LDAP or OIDC code to authenticate requests. This allows using the graph api when using basic auth or any other auth mechanism provided by the CS3 auth providers / reva gateway / ocis proxy.

    https://github.com/owncloud/ocis/pull/2277

  • Enhancement - Add ocs cache warmup config and warn on protobuf ns conflicts: #2328

    https://github.com/owncloud/ocis/pull/2328

  • Enhancement - Use only one go.mod file for project dependencies: #2344

    We now use one single go.mod file at the root of the repository rather than one per core extension.

    https://github.com/owncloud/ocis/pull/2344

  • Enhancement - Update REVA: #2355

    Update REVA from v1.10.1-0.20210730095301-fcb7a30a44a6 to v1.11.1-0.20210809134415-3fe79c870fb5 Fix cs3org/reva#1978: Fix owner type is optional Fix cs3org/reva#1965: fix value of file_target in shares Fix cs3org/reva#1960: fix updating shares in the memory share manager Fix cs3org/reva#1956: fix trashbin listing with depth 0 Fix cs3org/reva#1957: fix etag propagation on deletes Enh cs3org/reva#1861: [WIP] Runtime plugins Fix cs3org/reva#1954: fix response format of the sharees API Fix cs3org/reva#1819: Remove notifications key from ocs response Enh cs3org/reva#1946: Add a share manager that connects to oc10 databases Fix cs3org/reva#1899: Fix chunked uploads for new versions * Fix cs3org/reva#1906: Fix copy over existing resource

    • Fix cs3org/reva#1891: Delete Shared Resources as Receiver Fix cs3org/reva#1907: Error when creating folder with existing name Fix cs3org/reva#1937: Do not overwrite more specific matches when finding storage providers Fix cs3org/reva#1939: Fix the share jail permissions in the decomposedfs Fix cs3org/reva#1932: Numerous fixes to the owncloudsql storage driver Fix cs3org/reva#1912: Fix response when listing versions of another user Fix cs3org/reva#1910: Get user groups recursively in the cbox rest user driver Fix cs3org/reva#1904: Set Content-Length to 0 when swallowing body in the datagateway Fix cs3org/reva#1911: Fix version order in propfind responses
    • Fix cs3org/reva#1926: Trash Bin in oCIS Storage Operations Fix cs3org/reva#1901: Fix response code when folder doesnt exist on upload Enh cs3org/reva#1785: Extend app registry with AddProvider method and mimetype filters Enh cs3org/reva#1938: Add methods to get and put context values Enh cs3org/reva#1798: Add support for a deny-all permission on references Enh cs3org/reva#1916: Generate updated protobuf bindings for EOS GRPC Enh cs3org/reva#1887: Add "a" and "l" filter for grappa queries Enh cs3org/reva#1919: Run gofmt before building Enh cs3org/reva#1927: Implement RollbackToVersion for eosgrpc (needs a newer EOS MGM) Enh cs3org/reva#1944: Implement listing supported mime types in app registry Enh cs3org/reva#1870: Be defensive about wrongly quoted etags Enh cs3org/reva#1940: Reduce memory usage when uploading with S3ng storage Enh cs3org/reva#1888: Refactoring of the webdav code Enh cs3org/reva#1900: Check for illegal names while uploading or moving files Enh cs3org/reva#1925: Refactor listing and statting across providers for virtual views Fix cs3org/reva#1883: Pass directories with trailing slashes to eosclient.GenerateToken Fix cs3org/reva#1878: Improve the webdav error handling in the trashbin Fix cs3org/reva#1884: Do not send body on failed range request Enh cs3org/reva#1744: Add support for lightweight user types Fix cs3org/reva#1904: Set Content-Length to 0 when swallowing body in the datagateway Fix cs3org/reva#1899: Bugfix: Fix chunked uploads for new versions Enh cs3org/reva#1888: Refactoring of the webdav code Enh cs3org/reva#1887: Add "a" and "l" filter for grappa queries

    https://github.com/owncloud/ocis/pull/2355 https://github.com/owncloud/ocis/pull/2295 https://github.com/owncloud/ocis/pull/2314

Changelog for 1.9.0 (2021-07-13)

The following sections list the changes for 1.9.0.

Summary

  • Bugfix - Panic when service fails to start: #2252
  • Bugfix - Dont use port 80 as debug for GroupsProvider: #2271
  • Change - Update ownCloud Web to v3.4.0: #2276
  • Change - Update WEB to v3.4.1: #2283
  • Enhancement - Remove unnecessary Service.Init(): #1705
  • Enhancement - Update REVA to v1.9.1-0.20210628143859-9d29c36c0c3f: #2227
  • Enhancement - Runtime support for cherry picking extensions: #2229
  • Enhancement - Add readonly mode for storagehome and storageusers: #2230
  • Enhancement - Update REVA to v1.9.1: #2280

Details

  • Bugfix - Panic when service fails to start: #2252

    Tags: runtime

    When attempting to run a service through the runtime that is currently running and fails to start, a race condition still redirect os Interrupt signals to a closed channel.

    https://github.com/owncloud/ocis/pull/2252

  • Bugfix - Dont use port 80 as debug for GroupsProvider: #2271

    A copy/paste error where the configuration for the groupsprovider's debug address was not present leaves go-micro to start the debug service in port 80 by default.

    https://github.com/owncloud/ocis/pull/2271

  • Change - Update ownCloud Web to v3.4.0: #2276

    Tags: web

    We updated ownCloud Web to v3.4.0. Please refer to the changelog (linked) for details on the web release.

    https://github.com/owncloud/ocis/pull/2276 https://github.com/owncloud/web/releases/tag/v3.4.0

  • Change - Update WEB to v3.4.1: #2283

    • Fix 5501: loading previews in the right sidebar
    • Fix 5493: view options position

    https://github.com/owncloud/ocis/pull/2283 https://github.com/owncloud/web/releases/tag/v3.4.1

  • Enhancement - Remove unnecessary Service.Init(): #1705

    As it turns out oCIS already calls this method. Invoking it twice would end in accidentally resetting values.

    https://github.com/owncloud/ocis/pull/1705

  • Enhancement - Update REVA to v1.9.1-0.20210628143859-9d29c36c0c3f: #2227

    https://github.com/owncloud/ocis/pull/2227

  • Enhancement - Runtime support for cherry picking extensions: #2229

    Support for running certain extensions supervised via cli flags. Example usage:

     > ocis server --extensions="proxy, idp, storage-metadata, accounts"

    https://github.com/owncloud/ocis/pull/2229

  • Enhancement - Add readonly mode for storagehome and storageusers: #2230

    To enable the readonly mode use STORAGE_HOME_READ_ONLY=true and STORAGE_USERS_READ_ONLY=true. Alternative: use OCIS_STORAGE_READ_ONLY=true

    https://github.com/owncloud/ocis/pull/2230

  • Enhancement - Update REVA to v1.9.1: #2280

    • Fix cs3org/reva#1843: Correct Dockerfile path for the reva CLI and alpine3.13 as builder
    • Fix cs3org/reva#1835: Cleanup owncloudsql driver
    • Fix cs3org/reva#1868: Minor fixes to the grpc/http plugin: checksum, url escaping
    • Fix cs3org/reva#1885: Fix template in eoshomewrapper to use context user rather than resource
    • Fix cs3org/reva#1833: Properly handle name collisions for deletes in the owncloud driver
    • Fix cs3org/reva#1874: Use the original file mtime during upload
    • Fix cs3org/reva#1854: Add the uid/gid to the url for eos
    • Fix cs3org/reva#1848: Fill in missing gid/uid number with nobody
    • Fix cs3org/reva#1831: Make the ocm-provider endpoint in the ocmd service unprotected
    • Fix cs3org/reva#1808: Use empty array in OCS Notifications endpoints
    • Fix cs3org/reva#1825: Raise max grpc message size
    • Fix cs3org/reva#1828: Send a proper XML header with error messages
    • Chg cs3org/reva#1828: Remove the oidc provider in order to upgrad mattn/go-sqlite3 to v1.14.7
    • Enh cs3org/reva#1834: Add API key to Mentix GOCDB connector
    • Enh cs3org/reva#1855: Minor optimization in parsing EOS ACLs
    • Enh cs3org/reva#1873: Update the EOS image tag to be for revad-eos image
    • Enh cs3org/reva#1802: Introduce list spaces
    • Enh cs3org/reva#1849: Add readonly interceptor
    • Enh cs3org/reva#1875: Simplify resource comparison
    • Enh cs3org/reva#1827: Support trashbin sub paths in the recycle API

    https://github.com/owncloud/ocis/pull/2280

Changelog for 1.8.0 (2021-06-28)

The following sections list the changes for 1.8.0.

Summary

  • Bugfix - External storage registration used wrong config: #2120
  • Bugfix - Remove authentication from /status.php completely: #2188
  • Bugfix - Make webdav namespace configurable across services: #2198
  • Change - Update ownCloud Web to v3.3.0: #2187
  • Enhancement - Properly configure graph-explorer client registration: #2118
  • Enhancement - Use system default location to store TLS artefacts: #2129
  • Enhancement - Update REVA to v1.9: #2205

Details

Changelog for 1.7.0 (2021-06-04)

The following sections list the changes for 1.7.0.

Summary

  • Bugfix - Change the groups index to be case sensitive: #2109
  • Change - Update ownCloud Web to v3.2.0: #2096
  • Enhancement - Enable the s3ng storage driver: #1886
  • Enhancement - Announce user profile picture capability: #2036
  • Enhancement - Color contrasts on IDP/OIDC login pages: #2088
  • Enhancement - Update reva to v1.7.1-0.20210531093513-b74a2b156af6: #2104

Details

Changelog for 1.6.0 (2021-05-12)

The following sections list the changes for 1.6.0.

Summary

  • Bugfix - Fix STORAGE_METADATA_ROOT default value override: #1956
  • Bugfix - Stop the supervisor if a service fails to start: #1963
  • Change - Update ownCloud Web to v3.1.0: #2045
  • Enhancement - User Deprovisioning for the OCS API: #1962
  • Enhancement - Use oc-select: #1979
  • Enhancement - Support thumbnails for txt files: #1988
  • Enhancement - Introduce login form with h1 tag for screen readers only: #1991
  • Enhancement - Added dictionary files: #2003
  • Enhancement - Update reva to v1.7.1-0.20210430154404-69bd21f2cc97: #2010
  • Enhancement - Set SameSite settings to Strict for Web: #2019
  • Enhancement - Update reva to v1.7.1-0.20210507160327-e2c3841d0dbc: #2044

Details

Changelog for 1.5.0 (2021-04-21)

The following sections list the changes for 1.5.0.

Summary

  • Bugfix - Fixes "unaligned 64-bit atomic operation" panic on 32-bit ARM: #1888
  • Change - Make Protobuf package names unique: #1875
  • Change - Update ownCloud Web to v3.0.0: #1938
  • Enhancement - Update reva to v1.6.1-0.20210414111318-a4b5148cbfb2: #1872
  • Enhancement - Change default path for thumbnails: #1892
  • Enhancement - Add config for public share SQL driver: #1916
  • Enhancement - Add option to reading registry rules from json file: #1917
  • Enhancement - Remove dead runtime code: #1923
  • Enhancement - Parse config on supervised mode with run subcommand: #1931
  • Enhancement - Update ODS in accounts & settings extension: #1934

Details

Changelog for 1.4.0 (2021-03-30)

The following sections list the changes for 1.4.0.

Summary

  • Bugfix - Fix thumbnail generation for jpegs: #1785
  • Change - Update ownCloud Web to v2.1.0: #1870
  • Enhancement - Update reva to v1.6.1-0.20210326165326-e8a00d9b2368: #1683
  • Enhancement - Clarify expected failures: #1790
  • Enhancement - Generate thumbnails for .gif files: #1791
  • Enhancement - Add focus to input elements on login page: #1792
  • Enhancement - Improve accessibility to input elements on login page: #1794
  • Enhancement - Replace special character in login page title with a regular minus: #1813
  • Enhancement - File Logging: #1816
  • Enhancement - Tracing Refactor: #1819
  • Enhancement - Runtime Hostname and Port are now configurable: #1822
  • Enhancement - Add new build targets: #1824

Details

Changelog for 1.3.0 (2021-03-09)

The following sections list the changes for 1.3.0.

Summary

  • Bugfix - Fix accounts initialization: #1696
  • Bugfix - Fix the ttl of the authentication middleware cache: #1699
  • Bugfix - Add missing gateway config: #1716
  • Bugfix - Purposely delay accounts service startup: #1734
  • Change - Update ownCloud Web to v2.0.1: #1683
  • Change - Update ownCloud Web to v2.0.2: #1776
  • Enhancement - Update go-micro to v3.5.1-0.20210217182006-0f0ace1a44a9: #1670
  • Enhancement - Update reva to v1.6.1-0.20210223065028-53f39499762e: #1683
  • Enhancement - Add initial nats and kubernetes registry support: #1697
  • Enhancement - Remove the JWT from the log: #1758

Details

  • Bugfix - Fix accounts initialization: #1696

    Originally the accounts service relies on both the settings and storage-metadata to be up and running at the moment it starts. This is an antipattern as it will cause the entire service to panic if the dependants are not present.

    We inverted this dependency and moved the default initialization data (i.e: creating roles, permissions, settings bundles) and instead of notifying the settings service that the account has to provide with such options, the settings is instead initialized with the options the accounts rely on. Essentially saving bandwidth as there is no longer a gRPC call to the settings service.

    For the storage-metadata a retry mechanism was added that retries by default 20 times to fetch the com.owncloud.storage.metadata from the service registry every 500 milliseconds. If this retry expires the accounts panics, as its dependency on the storage-metadata service cannot be resolved.

    We also introduced a client wrapper that acts as middleware between a client and a server. For more information on how it works further read here

    https://github.com/owncloud/ocis/pull/1696

  • Bugfix - Fix the ttl of the authentication middleware cache: #1699

    The authentication cache ttl was multiplied with time.Second multiple times. This resulted in a ttl that was not intended.

    https://github.com/owncloud/ocis/pull/1699

  • Bugfix - Add missing gateway config: #1716

    The auth provider ldap and oidc drivers now need to be able talk to the reva gateway. We added the gatewayscv to the config that is passed to reva.

    https://github.com/owncloud/ocis/pull/1716

  • Bugfix - Purposely delay accounts service startup: #1734

    As it turns out the race condition between accounts <-> storage-metadata still remains. This PR is a hotfix, and it should be followed up with a proper fix. Either:

    • block the accounts' initialization until the storage metadata is ready (using the registry) or - allow the accounts service to initialize and use a message broker to signal the accounts the metadata storage is ready to receive requests.

    https://github.com/owncloud/ocis/pull/1734

  • Change - Update ownCloud Web to v2.0.1: #1683

    Tags: web

    We updated ownCloud Web to v2.0.1. Please refer to the changelog (linked) for details on the web release.

    https://github.com/owncloud/ocis/pull/1683 https://github.com/owncloud/web/releases/tag/v2.0.1

  • Change - Update ownCloud Web to v2.0.2: #1776

    Tags: web

    We updated ownCloud Web to v2.0.2. Please refer to the changelog (linked) for details on the web release.

    https://github.com/owncloud/ocis/pull/1776 https://github.com/owncloud/web/releases/tag/v2.0.2

  • Enhancement - Update go-micro to v3.5.1-0.20210217182006-0f0ace1a44a9: #1670

    • We updated from go micro v2 (v2.9.1) go-micro v3 (v3.5.1 edge). - oCIS runtime is now aware of MICRO_LOG_LEVEL and is set to error by default. This decision was made because ownCloud, as framework builders, want to log everything oCIS related and hide everything unrelated by default. It can be re-enabled by setting it to a log level other than error. i.e: MICRO_LOG_LEVEL=info. - Updated protoc-gen-micro to the latest version. - We're using Prometheus wrappers from go-micro.

    https://github.com/owncloud/ocis/pull/1670 https://github.com/asim/go-micro/pull/2126

  • Enhancement - Update reva to v1.6.1-0.20210223065028-53f39499762e: #1683

    https://github.com/owncloud/ocis/pull/1683 https://github.com/cs3org/reva/pull/1405

  • Enhancement - Add initial nats and kubernetes registry support: #1697

    We added initial support to use nats and kubernetes as a service registry using MICRO_REGISTRY=nats and MICRO_REGISTRY=kubernetes respectively. Multiple nodes can be given with MICRO_REGISTRY_ADDRESS=1.2.3.4,5.6.7.8,9.10.11.12.

    https://github.com/owncloud/ocis/pull/1697

  • Enhancement - Remove the JWT from the log: #1758

    We were logging the JWT in some places. Secrets should not be exposed in logs so it got removed.

    https://github.com/owncloud/ocis/pull/1758

Changelog for 1.2.0 (2021-02-17)

The following sections list the changes for 1.2.0.

Summary

  • Bugfix - Check if roles are present in user object before looking those up: #1388
  • Bugfix - Fix etcd address configuration: #1546
  • Bugfix - Fix thumbnail generation when using different idp: #1624
  • Bugfix - Remove unimplemented config file option for oCIS root command: #1636
  • Change - Move runtime code on refs/pman over to owncloud/ocis/ocis: #1483
  • Change - Initial release of graph and graph explorer: #1594
  • Change - Update ownCloud Web to v2.0.0: #1661
  • Enhancement - Introduce ADR: #1042
  • Enhancement - Functionality to map home directory to different storage providers: #1186
  • Enhancement - Use a default protocol parameter instead of explicitly disabling tus: #1331
  • Enhancement - Switch to opencontainers annotation scheme: #1381
  • Enhancement - Update reva to v1.5.2-0.20210125114636-0c10b333ee69: #1482
  • Enhancement - Migrate ocis-graph to ocis monorepo: #1594
  • Enhancement - Migrate ocis-graph-explorer to ocis monorepo: #1596
  • Enhancement - Make use of new design-system oc-table: #1597
  • Enhancement - Enable group sharing and add config for sharing SQL driver: #1626

Details

Changelog for 1.1.0 (2021-01-22)

The following sections list the changes for 1.1.0.

Summary

  • Change - Disable pretty logging by default: #1133
  • Change - Update ownCloud Web to v1.0.1: #1191
  • Change - Generate cryptographically secure state token: #1203
  • Change - Move k6 to cdperf: #1358
  • Change - Update go version: #1364
  • Change - Add "expose" information to docker images: #1366
  • Change - Add "volume" declaration to docker images: #1375
  • Enhancement - Add OCIS_URL env var: #1148
  • Enhancement - Update reva to v1.4.1-0.20210111080247-f2b63bfd6825: #1194
  • Enhancement - Add named locks and refactor cache: #1212
  • Enhancement - Use sync.cache for roles cache: #1367
  • Enhancement - Update reva to v1.5.1: #1372

Details

  • Change - Disable pretty logging by default: #1133

    Tags: ocis

    Disable pretty logging default for performance reasons.

    https://github.com/owncloud/ocis/pull/1133

  • Change - Update ownCloud Web to v1.0.1: #1191

    Tags: web

    We updated ownCloud Web to v1.0.1. Please refer to the changelog (linked) for details on the web release.

    https://github.com/owncloud/ocis/pull/1191 https://github.com/owncloud/web/releases/tag/v1.0.1

  • Change - Generate cryptographically secure state token: #1203

    Replaced Math.random with a cryptographically secure way to generate the oidc state token using the javascript crypto api.

    https://github.com/owncloud/ocis/pull/1203 https://developer.mozilla.org/en-US/docs/Web/API/Crypto/getRandomValues https://developer.mozilla.org/en-US/docs/Web/JavaScript/Reference/Global_Objects/Math/random

  • Change - Move k6 to cdperf: #1358

    Tags: performance, testing, k6

    The ownCloud performance tests can not only be used to test oCIS. This is why we have decided to move the k6 tests to https://github.com/owncloud/cdperf

    https://github.com/owncloud/ocis/pull/1358

  • Change - Update go version: #1364

    Tags: go

    Update go from 1.13 to 1.15

    https://github.com/owncloud/ocis/pull/1364

  • Change - Add "expose" information to docker images: #1366

    Tags: docker

    Add "expose" information to docker images. Docker users will now see that we offer services on port 9200.

    https://github.com/owncloud/ocis/pull/1366

  • Change - Add "volume" declaration to docker images: #1375

    Tags: docker

    Add "volume" declaration to docker images. This makes it easier for Docker users to see where oCIS stores data.

    https://github.com/owncloud/ocis/pull/1375

  • Enhancement - Add OCIS_URL env var: #1148

    Tags: ocis

    We introduced a new environment variable OCIS_URL that expects a URL including protocol, host and optionally port to simplify configuring all the different services. These existing environment variables still take precedence, but will also fall back to OCIS_URL: STORAGE_LDAP_IDP, STORAGE_OIDC_ISSUER, PROXY_OIDC_ISSUER, STORAGE_FRONTEND_PUBLIC_URL, KONNECTD_ISS, WEB_OIDC_AUTHORITY, and WEB_UI_CONFIG_SERVER.

    Some environment variables are now built dynamically if they are not set: - STORAGE_DATAGATEWAY_PUBLIC_URL defaults to <STORAGE_FRONTEND_PUBLIC_URL>/data, also falling back to OCIS_URL - WEB_OIDC_METADATA_URL defaults to <WEB_OIDC_AUTHORITY>/.well-known/openid-configuration, also falling back to OCIS_URL

    Furthermore, the built in konnectd will generate an identifier-registration.yaml that uses the KONNECTD_ISS in the allowed redirect_uris and origins. It simplifies the default https://localhost:9200 and remote deployment with OCIS_URL which is evaluated as a fallback if KONNECTD_ISS is not set.

    An oCIS server can now be started on a remote machine as easy as OCIS_URL=https://cloud.ocis.test PROXY_HTTP_ADDR=0.0.0.0:443 ocis server.

    Note that the OCIS_DOMAIN environment variable is not used by oCIS, but by the docker containers.

    https://github.com/owncloud/ocis/pull/1148

  • Enhancement - Update reva to v1.4.1-0.20210111080247-f2b63bfd6825: #1194

    https://github.com/owncloud/ocis/pull/1194 https://github.com/cs3org/reva/pull/1368 https://github.com/cs3org/reva/pull/1388

  • Enhancement - Add named locks and refactor cache: #1212

    Tags: ocis-pkg, accounts

    We had the case that we needed kind of a named locking mechanism which enables us to lock only under certain conditions. It's used in the indexer package where we do not need to lock everything, instead just lock the requested parts and differentiate between reads and writes.

    This made it possible to entirely remove locks from the accounts service and move them to the ocis-pkg indexer. Another part of this refactor was to make the cache atomic and write tests for it.

    • remove locking from accounts service - add sync package with named mutex - add named locking to indexer - move cache to sync package

    https://github.com/owncloud/ocis/issues/966 https://github.com/owncloud/ocis/pull/1212

  • Enhancement - Use sync.cache for roles cache: #1367

    Tags: ocis-pkg

    Update ocis-pkg/roles cache to use ocis-pkg/sync cache

    https://github.com/owncloud/ocis/pull/1367

  • Enhancement - Update reva to v1.5.1: #1372

    Summary -------

    • Fix #1401: Use the user in request for deciding the layout for non-home DAV requests
    • Fix #1413: Re-include the '.git' dir in the Docker images to pass the version tag
    • Fix #1399: Fix ocis trash-bin purge
    • Enh #1397: Bump the Copyright date to 2021
    • Enh #1398: Support site authorization status in Mentix
    • Enh #1393: Allow setting favorites, mtime and a temporary etag
    • Enh #1403: Support remote cloud gathering metrics

    Details -------

    • Bugfix #1401: Use the user in request for deciding the layout for non-home DAV requests

    For the incoming /dav/files/userID requests, we have different namespaces depending on whether the request is for the logged-in user's namespace or not. Since in the storage drivers, we specify the layout depending only on the user whose resources are to be accessed, this fails when a user wants to access another user's namespace when the storage provider depends on the logged in user's namespace. This PR fixes that.

    For example, consider the following case. The owncloud fs uses a layout {{substr 0 1 .Id.OpaqueId}}/{{.Id.OpaqueId}}. The user einstein sends a request to access a resource shared with him, say /dav/files/marie/abcd, which should be allowed. However, based on the way we applied the layout, there's no way in which this can be translated to /m/marie/.

    Https://github.com/cs3org/reva/pull/1401

    • Bugfix #1413: Re-include the '.git' dir in the Docker images to pass the version tag

    And git SHA to the release tool.

    Https://github.com/cs3org/reva/pull/1413

    • Bugfix #1399: Fix ocis trash-bin purge

    Fixes the empty trash-bin functionality for ocis-storage

    Https://github.com/owncloud/product/issues/254 https://github.com/cs3org/reva/pull/1399

    • Enhancement #1397: Bump the Copyright date to 2021

    Https://github.com/cs3org/reva/pull/1397

    • Enhancement #1398: Support site authorization status in Mentix

    This enhancement adds support for a site authorization status to Mentix. This way, sites registered via a web app can now be excluded until authorized manually by an administrator.

    Furthermore, Mentix now sets the scheme for Prometheus targets. This allows us to also support monitoring of sites that do not support the default HTTPS scheme.

    Https://github.com/cs3org/reva/pull/1398

    • Enhancement #1393: Allow setting favorites, mtime and a temporary etag

    We now let the oCIS driver persist favorites, set temporary etags and the mtime as arbitrary metadata.

    Https://github.com/owncloud/ocis/issues/567 https://github.com/cs3org/reva/issues/1394 https://github.com/cs3org/reva/pull/1393

    • Enhancement #1403: Support remote cloud gathering metrics

    The current metrics package can only gather metrics either from json files. With this feature, the metrics can be gathered polling the http endpoints exposed by the owncloud/nextcloud sciencemesh apps.

    Https://github.com/cs3org/reva/pull/1403

    https://github.com/owncloud/ocis/pull/1372

Changelog for [1.0.0] (2020-12-17)

The following sections list the changes for 1.0.0.

Summary

  • Bugfix - Fix path of files shared with me in ocs api: #204
  • Bugfix - Add missing env vars to docker compose: #392
  • Bugfix - Build docker images with alpine:latest instead of alpine:edge: #416
  • Bugfix - Don't enforce empty external apps slice: #473
  • Bugfix - Fix director selection in proxy: #521
  • Bugfix - Fix button layout after phoenix update: #625
  • Bugfix - Don't create account if id/mail/username already taken: #709
  • Bugfix - Use micro default client: #718
  • Bugfix - Mint token with uid and gid: #737
  • Bugfix - Lower Bound was not working for the cs3 api index implementation: #741
  • Bugfix - Fix id or username query handling: #745
  • Bugfix - Allow consent-prompt with switch-account: #788
  • Bugfix - Accounts config sometimes being overwritten: #808
  • Bugfix - Fix konnectd build: #809
  • Bugfix - Make settings service start without go coroutines: #835
  • Bugfix - Fix choose account dialogue: #846
  • Bugfix - Enable scrolling in accounts list: #909
  • Bugfix - Serve index.html for directories: #912
  • Bugfix - Disable public link expiration by default: #987
  • Bugfix - Fix minor ui bugs: #1043
  • Bugfix - Permission checks for settings write access: #1092
  • Change - Initial release of basic version: #2
  • Change - Start ocis-accounts with the ocis server command: #25
  • Change - Add cli-commands to manage accounts: #115
  • Change - Start ocis-proxy with the ocis server command: #119
  • Change - Account management permissions for Admin role: #124
  • Change - Add the thumbnails command: #156
  • Change - Integrate import command from ocis-migration: #249
  • Change - Switch over to a new custom-built runtime: #287
  • Change - Make ocis-settings available: #287
  • Change - Update reva config: #336
  • Change - Use bcrypt to hash the user passwords: #510
  • Change - Improve reva service descriptions: #536
  • Change - Choose disk or cs3 storage for accounts and groups: #623
  • Change - Update phoenix to v0.18.0: #651
  • Change - Accounts UI shows message when no permissions: #656
  • Change - Settings and accounts appear in the user menu: #656
  • Change - Update phoenix to v0.20.0: #674
  • Change - Unify Configuration Parsing: #675
  • Change - Default apps in ownCloud Web: #688
  • Change - Bring oC theme: #698
  • Change - Filesystem based index: #709
  • Change - Remove username field in OCS: #709
  • Change - Update phoenix to v0.21.0: #728
  • Change - Clarify storage driver env vars: #729
  • Change - Rebuild index command for accounts: #748
  • Change - Properly style konnectd consent page: #754
  • Change - Update phoenix to v0.22.0: #757
  • Change - Update phoenix to v0.23.0: #785
  • Change - Move the indexer package from ocis/accounts to ocis/ocis-pkg: #794
  • Change - Enable OpenID dynamic client registration: #811
  • Change - Update phoenix to v0.24.0: #817
  • Change - Move ocis default config to root level: #842
  • Change - Update phoenix to v0.25.0: #868
  • Change - Theme welcome and choose account pages: #887
  • Change - Replace the library which scales the images: #910
  • Change - Update phoenix to v0.26.0: #935
  • Change - Update phoenix to v0.27.0: #943
  • Change - Cache password validation: #958
  • Change - Proxy allow insecure upstreams: #1007
  • Change - CS3 can be used as accounts-backend: #1020
  • Change - Update phoenix to v0.28.0: #1027
  • Change - Update phoenix to v0.29.0: #1034
  • Change - Make all paths configurable and default to a common temp dir: #1080
  • Change - Update reva to v1.4.1-0.20201209113234-e791b5599a89: #1089
  • Change - Update ownCloud Web to v1.0.0-beta3: #1105
  • Change - Update ownCloud Web to v1.0.0-beta4: #1110
  • Enhancement - Simplify tracing config: #92
  • Enhancement - Document how to run OCIS on top of EOS: #172
  • Enhancement - Add a command to list the versions of running instances: #226
  • Enhancement - Add the accounts service: #244
  • Enhancement - Add the glauth service: #244
  • Enhancement - Add the konnectd service: #244
  • Enhancement - Add the ocis-phoenix service: #244
  • Enhancement - Add the ocis-pkg package: #244
  • Enhancement - Add the ocs service: #244
  • Enhancement - Add the proxy service: #244
  • Enhancement - Add the settings service: #244
  • Enhancement - Add the storage service: #244
  • Enhancement - Add the store service: #244
  • Enhancement - Add the thumbnails service: #244
  • Enhancement - Add the webdav service: #244
  • Enhancement - Launch a storage to store ocis-metadata: #602
  • Enhancement - Add basic auth option: #627
  • Enhancement - Add glauth fallback backend: #649
  • Enhancement - Update reva to dd3a8c0f38: #725
  • Enhancement - Update konnectd to v0.33.8: #744
  • Enhancement - Update reva to cdb3d6688da5: #748
  • Enhancement - Update glauth to dev 4f029234b2308: #786
  • Enhancement - Update reva to v1.4.1-0.20201123062044-b2c4af4e897d: #823
  • Enhancement - Update glauth to dev fd3ac7e4bbdc93578655d9a08d8e23f105aaa5b2: #834
  • Enhancement - Better adopt Go-Micro: #840
  • Enhancement - Tidy dependencies: #845
  • Enhancement - Create OnlyOffice extension: #857
  • Enhancement - Cache userinfo in proxy: #877
  • Enhancement - Add permission check when assigning and removing roles: #879
  • Enhancement - Show basic-auth warning only once: #886
  • Enhancement - Create a proxy access-log: #889
  • Enhancement - Add a version command to ocis: #915
  • Enhancement - Add k6: #941
  • Enhancement - Update reva to v1.4.1-0.20201127111856-e6a6212c1b7b: #971
  • Enhancement - Update reva to v1.4.1-0.20201130061320-ac85e68e0600: #980
  • Enhancement - Add www-authenticate based on user agent: #1009
  • Enhancement - Add tracing to the accounts service: #1016
  • Enhancement - Runtime Cleanup: #1066
  • Enhancement - Update reva to 063b3db9162b: #1091
  • Enhancement - Update OCIS Runtime: #1108
  • Enhancement - Update reva to v1.4.1-0.20201125144025-57da0c27434c: #1320

Details

Help

Chatroom

The really in-depth instant messaging channel for and with the ownCloud community and core developers. Join here if you want to contribute!

ownCloud Talk

Customer support

The experts behind ownCloud technology help you as an Enterprise customer with your large scale environments with many users and even more files.

Get help

GitHub

ownCloud’s development happens here. Participate or let us know when you’ve found a bug.

ownCloud on GitHub

You got big plans?

With our enterprise solutions, teams of 50 people or more can work together securely, digitally. 8/5 support included.