Infinite Scale Changelog

Table of Contents

Changelog for unreleased (UNRELEASED)

The following sections list the changes for unreleased.

Summary

  • Bugfix - Fix graph drives response for federated shares: #10730

Details

Changelog for 7.0.0-rc.4 (2024-12-09)

The following sections list the changes for 7.0.0-rc.4.

Summary

  • Bugfix - Fix deny access for graph roles: #10627
  • Bugfix - Fix possible race condition when a thumbnails is stored in the FS: #10693
  • Bugfix - Skip fetching members: #10701
  • Bugfix - Fix FileInfo BreadcrumbFolderURL: #10718
  • Bugfix - Bump Reva: #10735
  • Enhancement - Fetch shared resource metadata concurrently in graph: #10683

Details

Changelog for 7.0.0-rc.3 (2024-11-21)

The following sections list the changes for 7.0.0-rc.3.

Summary

  • Bugfix - Log GRPC requests in debug mode: #10438
  • Bugfix - Fix impersonated request user mismatch: #10548
  • Bugfix - Fix federated sharing when using an external IDP: #10567
  • Bugfix - Fix node cache ttl updates: #10575
  • Bugfix - We now limit the number of workers of the jsoncs3 share manager: #10578
  • Bugfix - Set MaxConcurrency to 1: #10580
  • Bugfix - Reuse go-micro service clients: #10582
  • Bugfix - Make collaboration service use a gateway selector: #10584
  • Bugfix - Return an error if we can't get the keys and ensure they're cached: #10590
  • Bugfix - Fix status code for thumbnail requests: #10592
  • Bugfix - Fix the activity field mapping: #10593
  • Bugfix - Bump Reva to v2.26.7: #10612
  • Enhancement - Update web to v11.0.4: #10569

Details

Changelog for 5.0.9 (2024-11-14)

The following sections list the changes for 5.0.9.

Summary

  • Bugfix - Thumbnail request limit: #10280
  • Bugfix - Restart Postprocessing properly: #10439
  • Change - Define maximum input image dimensions and size when generating previews: #10270

Details

Changelog for 7.0.0-rc.2 (2024-11-12)

The following sections list the changes for 7.0.0-rc.2.

Summary

  • Bugfix - Fix idp guest role default assignment: #10511
  • Bugfix - Remove mbreaker: #10524
  • Bugfix - Bump Reva to v2.26.5: #10552

Details

Changelog for 7.0.0-rc.1 (2024-11-07)

The following sections list the changes for 7.0.0-rc.1.

Summary

  • Bugfix - Generate short tokens to be used as access tokens for WOPI: #10391
  • Bugfix - Fix put relative wopi operation for microsoft: #10403
  • Bugfix - Make SSE keepalive interval configurable: #10411
  • Bugfix - Removed 'OCM_OCM_PROVIDER_AUTHORIZER_VERIFY_REQUEST_HOSTNAME' setting: #10425
  • Bugfix - Micro registry cache fixes: #10429
  • Bugfix - Fix the memlimit loglevel: #10433
  • Bugfix - Restart Postprocessing properly: #10439
  • Bugfix - Allow to configure data server URL for ocm: #10440
  • Bugfix - Respect proxy url when validating proofkeys: #10462
  • Bugfix - Return wopi lock header in get lock response: #10470
  • Bugfix - 'ocis backup consistency' fixed for file revisions: #10493
  • Bugfix - Wait for services to be ready before registering them: #10498
  • Bugfix - Fix 0-byte file uploads: #10500
  • Bugfix - Fixed sharedWithMe response for OCM shares: #10501
  • Bugfix - Fix gateway nats checks: #10502
  • Enhancement - Create thumbnails for GGP MIME types: #10304
  • Enhancement - Include a product name in the collaboration service: #10335
  • Enhancement - Add web extensions to the ocis_full example: #10399
  • Enhancement - Bump reva to 2.26.4: #10419
  • Enhancement - Remove deprecated CLI commands: #10432
  • Enhancement - Bump cs3api: #10449
  • Enhancement - Update web to v11.0.2: #10467
  • Enhancement - Bump reva to latest: #10472
  • Enhancement - Concurrent userlog processing: #10504
  • Enhancement - Concurrent autoaccept for shares: #10507

Details

Changelog for 6.6.1 (2024-10-24)

The following sections list the changes for 6.6.1.

Summary

  • Bugfix - Fix panic when stopping the nats: #10363
  • Bugfix - Disable download activity: #10368
  • Bugfix - Fix Activitylog issues: #10376
  • Bugfix - Security fixes: #10376
  • Bugfix - Make antivirus workers configurable: #10383
  • Bugfix - Increase event processing workers: #10385
  • Bugfix - Fix envvar deprecations for next production release: #10386
  • Bugfix - Fix healthchecks: #10405

Details

Changelog for 6.6.0 (2024-10-21)

The following sections list the changes for 6.6.0.

Summary

  • Bugfix - Fix health and ready endpoints: #10163
  • Bugfix - Always treat LDAP attribute names case-insensitively: #10204
  • Bugfix - Fix delete share panic: #10219
  • Bugfix - Continue listing shares on error: #10243
  • Bugfix - Avoid re-creating thumbnails: #10251
  • Bugfix - Graph service now supports OCIS_LDAP_USER_SCHEMA_DISPLAYNAME env var: #10257
  • Bugfix - Kept historical resource naming in activity: #10266
  • Bugfix - Fix panic when sharing with groups: #10279
  • Bugfix - Thumbnail request limit: #10280
  • Bugfix - Forbid the ocm space sharing: #10287
  • Bugfix - Use secure config defaults for OCM: #10307
  • Enhancement - Add OCM wellknown configuration: #9815
  • Enhancement - Load IDP logo from theme: #10274
  • Enhancement - WebOffice Templates: #10276
  • Enhancement - Remove Deprecations: #10305
  • Enhancement - Allow to use libvips for generating thumbnails: #10310
  • Enhancement - Bump various dependencies: #10352
  • Enhancement - Update web to v11.0.0: #10357
  • Enhancement - Bump reva to 2.26.0: #10364

Details

Changelog for 6.5.0 (2024-10-01)

The following sections list the changes for 6.5.0.

Summary

  • Bugfix - Fixed the ocm email template: #10030
  • Bugfix - Fixed activity filter depth: #10031
  • Bugfix - Fixed proxy build info: #10039
  • Bugfix - Fixed the ocm tocken: #10050
  • Bugfix - Fix ocm space sharing: #10060
  • Bugfix - Fix the error code for ocm space sharing: #10079
  • Bugfix - Added LinkUpdated activity: #10085
  • Bugfix - Fix Activities leak: #10092
  • Bugfix - Include additional logs in the collaboration service: #10101
  • Bugfix - Added ShareUpdate activity: #10104
  • Bugfix - Fixed the collaboration service registration: #10107
  • Bugfix - CheckFileInfo will return a 404 error if the target file isn't found: #10112
  • Bugfix - Forbid Activities for Sharees: #10136
  • Bugfix - Always select next gateway client: #10141
  • Bugfix - Remove duplicate CSP header from responses: #10146
  • Bugfix - Fixed the missing folder variable: #10150
  • Bugfix - Fix activity limit: #10165
  • Bugfix - Fix email translations: #10171
  • Bugfix - Fix Activities translation: #10175
  • Enhancement - Allow to maintain the last sign-in timestamp of a user: #9942
  • Enhancement - Add an Activity for FileUpdated: #10072
  • Enhancement - Remove METADATA_BACKEND: #10113
  • Enhancement - Load CSP configuration file if it exists: #10139
  • Enhancement - FileDownloaded Activity: #10161
  • Enhancement - Add WOPI host URLs to the collaboration service: #10174
  • Enhancement - Update web to v10.3.0: #10177
  • Enhancement - Bump reva to 2.25.0: #10194

Details

Changelog for 5.0.8 (2024-09-30)

The following sections list the changes for 5.0.8.

Summary

  • Bugfix - Update reva to v2.19.8: #10138

Details

Changelog for 6.4.0 (2024-09-12)

The following sections list the changes for 6.4.0.

Summary

  • Bugfix - Set capability response disable_self_password_change correctly: #9853
  • Bugfix - Activity Translations: #9856
  • Bugfix - The user attributes userType and memberOf are readonly: #9867
  • Bugfix - Use key to get specific trash item: #9879
  • Bugfix - Fix response code when upload a file over locked: #9894
  • Bugfix - List OCM permissions as graph drive item permissions: #9905
  • Bugfix - Fix listing ocm shares: #9925
  • Bugfix - Allow update of ocm shares: #9980
  • Change - Remove store service: #9890
  • Enhancement - We now set the configured protocol transport for service metadata: #9490
  • Enhancement - Microsoft Office365 and Office Online support: #9686
  • Enhancement - Added a new role space editor without versions: #9880
  • Enhancement - Improve revisions purge: #9891
  • Enhancement - Allow setting default locale of activitylog: #9892
  • Enhancement - Graph translation path: #9902
  • Enhancement - Added a new roles viewer/editor with ListGrants: #9943
  • Enhancement - Handle OCM invite generated event: #9966
  • Enhancement - Update web to v10.2.0: #9988
  • Enhancement - Allow blob as connect-src in default CSP: #9993
  • Enhancement - Unified Roles Management: #10013
  • Enhancement - Bump reva to v2.24.1: #10028

Details

Changelog for 5.0.7 (2024-09-04)

The following sections list the changes for 5.0.7.

Summary

  • Enhancement - Add virus filter to sessions command: #9041
  • Enhancement - Assimilate clean into sessions command: #9828
  • Enhancement - Update web to v8.0.5: #9958

Details

Changelog for 6.3.0 (2024-08-20)

The following sections list the changes for 6.3.0.

Summary

  • Bugfix - Ignore address for kubernetes registry: #9490
  • Bugfix - Use bool type for web embed delegatedAuthentication: #9692
  • Bugfix - Repair nats-js-kv registry: #9734
  • Bugfix - Use less selectors that watch the registry: #9741
  • Bugfix - We fixed the client config generation for the built in IDP: #9770
  • Bugfix - Change ocmproviders config defaultpath: #9778
  • Bugfix - Web theme color contrasts: #10726
  • Enhancement - New WOPI operations added to the collaboration service: #9505
  • Enhancement - Allow configuring grpc max connection age: #9657
  • Enhancement - Tracing improvements in the collaboration service: #9684
  • Enhancement - Local WEB App configuration: #9691
  • Enhancement - Bump tusd pkg to v2: #9714
  • Enhancement - Gateways should directly talk to themselves: #9714
  • Enhancement - Support Skyhigh Security ICAP as an ICAP server: #9720
  • Enhancement - Added generic way to translate composite entities: #9722
  • Enhancement - Add an API to auth-app service: #9755
  • Enhancement - Bump go-micro plugins pkg: #9756
  • Enhancement - Allow querying federated user roles for sharing: #9765
  • Enhancement - Refactor the connector in the collaboration service: #9771
  • Enhancement - Add OCIS_ENABLE_OCM env var: #9784
  • Enhancement - OCM related adjustments in graph: #9788
  • Enhancement - Update web to v10.1.0: #9832
  • Enhancement - Bump reva to 2.23.0: #9852

Details

Changelog for 6.2.0 (2024-07-30)

The following sections list the changes for 6.2.0.

Summary

  • Bugfix - Fix restarting of postprocessing: #6945
  • Bugfix - Fix crash on empty tracing provider: #9622
  • Bugfix - Fixed the file name validation if nodeid is used: #9634
  • Bugfix - Fix a missing SecureView permission attribute in the REPORT response: #9638
  • Bugfix - Fixed the channel lock in a workers pool: #9647
  • Bugfix - Missing invitation in permission responses: #9652
  • Bugfix - Repair nats-js-kv registry: #9662
  • Bugfix - Fix panic: #9673
  • Bugfix - Fixed the response code when copying the shared from to personal: #9677
  • Bugfix - Fixed response code for DELETE file that is in postprocessing: #9689
  • Change - Remove unavailable web config options: #9679
  • Enhancement - Introduce auth-app service: #9079
  • Enhancement - Add support for proof keys for the collaboration service: #9366
  • Enhancement - Log user agent and remote addr on auth errors: #9475
  • Enhancement - Add missing WOPI features: #9580
  • Enhancement - Bump commitID for web: #9631
  • Enhancement - Remove oidc-go dependency: #9641
  • Enhancement - Improve the collaboration service logging: #9653
  • Enhancement - Fix trash command: #9665
  • Enhancement - Added the debugging to full ocis docker example: #9666
  • Enhancement - Add locking support for MS Office Online Server: #9685
  • Enhancement - Bump reva to v.2.22.0: #9690
  • Enhancement - Add --diff to the ocis init command: #9693
  • Enhancement - Update web to v10.0.0: #9707

Details

Changelog for 5.0.6 (2024-07-17)

The following sections list the changes for 5.0.6.

Summary

  • Bugfix - Allow all uploads to restart: #9506
  • Bugfix - Fix the email notification service: #9514
  • Enhancement - Limit concurrent thumbnail requests: #9199
  • Enhancement - Update web to v8.0.4: #9429
  • Enhancement - Add cli to purge revisions: #9497

Details

Changelog for 6.1.0 (2024-07-08)

The following sections list the changes for 6.1.0.

Summary

  • Bugfix - Fix sharing-ng permission listings for personal and virtual drive items: #9438
  • Bugfix - Add inotify-tools and bash packages to docker files: #9440
  • Bugfix - Allow all uploads to restart: #9465
  • Bugfix - Fix the email notification service: #9467
  • Bugfix - Fix Password Reset: #9479
  • Bugfix - Fixed the email template: #9484
  • Bugfix - Polish secure view: #9532
  • Enhancement - Rudimentary OCM support in graph: #8909
  • Enhancement - Activitylog API: #9361
  • Enhancement - Add the backchannel logout event: #9447
  • Enhancement - Add fail flag to consistency check: #9447
  • Enhancement - Configurable OCM timeouts: #9450
  • Enhancement - Deprecate gateway environment variables: #9451
  • Enhancement - Allow reindexing all spaces: #9456
  • Enhancement - Autoprovision group memberships: #9458
  • Enhancement - Allow disable versioning: #9473
  • Enhancement - Empty trash directories: #9483
  • Enhancement - Various fixes for the activitylog service: #9485
  • Enhancement - Add cli to purge revisions: #9497
  • Enhancement - Update web to v9.1.0: #9547
  • Enhancement - Bump reva to v2.21.0: #9556

Details

Changelog for 6.0.0 (2024-06-19)

The following sections list the changes for 6.0.0.

Summary

  • Bugfix - Fix an error when lock/unlock a public shared file: #8472
  • Bugfix - Fix the docker-compose wopi: #8483
  • Bugfix - Fix remove/update share permissions: #8529
  • Bugfix - Correct the default mapping of roles: #8534
  • Bugfix - Fix graph drive invite: #8538
  • Bugfix - Fix the mount points naming: #8543
  • Bugfix - We now always select the next clients when autoaccepting shares: #8570
  • Bugfix - Always select next before making calls: #8578
  • Bugfix - Fix sharing invite on virtual drive: #8609
  • Bugfix - Prevent copying a file to a parent folder: #8649
  • Bugfix - Disable Multipart uploads: #8666
  • Bugfix - Internal links shouldn't have a password: #8668
  • Bugfix - Fix uploading via a public link: #8702
  • Bugfix - Mask user email in output: #8726
  • Bugfix - Fix restarting of postprocessing: #8782
  • Bugfix - Fix the create personal space cache: #8799
  • Bugfix - Fix removing groups from space: #8803
  • Bugfix - Validate conditions for sharing roles by resource type: #8815
  • Bugfix - Fix creating the drive item: #8817
  • Bugfix - Fix unmount item from share: #8827
  • Bugfix - Fix creating new WOPI documents on public shares: #8828
  • Bugfix - Nats reconnects: #8880
  • Bugfix - Update the admin user role assignment to enforce the config: #8897
  • Bugfix - Fix affected users on sses: #8928
  • Bugfix - Fix well-known rewrite endpoint: #8946
  • Bugfix - Crash when processing crafted TIFF files: #8981
  • Bugfix - Fix collaboration registry setting: #9105
  • Bugfix - Service startup of WOPI example: #9127
  • Bugfix - Fix the status code for multiple mount and unmount share: #9193
  • Bugfix - Don't show thumbnails for secureview shares: #9299
  • Bugfix - Fix share update: #9301
  • Bugfix - Fix the error translation from utils: #9331
  • Bugfix - Fix the settings metedata tests: #9341
  • Bugfix - The hidden shares have been excluded from a search result: #9371
  • Bugfix - Encode Registry Keys: #9385
  • Change - Change the default store for presigned keys to nats-js-kv: #8419
  • Change - Disable resharing by default for deprecation: #8653
  • Change - The filesystem backend for the settings service has been removed: #9138
  • Change - Define maximum input image dimensions and size when generating previews: #9360
  • Enhancement - Introduce staticroutes package & remove well-known OIDC middleware: #6095
  • Enhancement - Graphs endpoint for mounting and unmounting shares: #7885
  • Enhancement - Add epub reader to web default apps: #8410
  • Enhancement - Change Cors default settings: #8518
  • Enhancement - Custom WEB App Loading: #8523
  • Enhancement - Update to go 1.22: #8586
  • Enhancement - Send more sse events: #8587
  • Enhancement - Send SSE when file is locked/unlocked: #8602
  • Enhancement - Add the spaceID to sse: #8614
  • Enhancement - The graph endpoints for listing permission works for spaces now: #8642
  • Enhancement - Bump keycloak: #8687
  • Enhancement - Make IDP cookies same site strict: #8716
  • Enhancement - Make server side space templates production ready: #8723
  • Enhancement - Sharing NG role names and descriptions: #8743
  • Enhancement - Ability to Change Share Item Visibility in Graph API: #8750
  • Enhancement - Enable web extension drawio by default: #8760
  • Enhancement - Remove resharing: #8762
  • Enhancement - Add CSP and other security related headers to oCIS: #8777
  • Enhancement - Add FileTouched SSE Event: #8778
  • Enhancement - Prepare runners to start the services: #8802
  • Enhancement - Sharing SSEs: #8854
  • Enhancement - Secure viewer share role: #8907
  • Enhancement - Add Link SSEs: #8908
  • Enhancement - ShareeIDs in SSEs: #8915
  • Enhancement - Allow to resolve public shares without the ocs tokeninfo endpoint: #8926
  • Enhancement - Initiator-IDs: #8936
  • Enhancement - Add endpoint for getting drive items: #8939
  • Enhancement - Improve infected file handling: #8947
  • Enhancement - Configurable claims for auto-provisioning user accounts: #8952
  • Enhancement - Bump nats-js-kv pkg: #8953
  • Enhancement - Graph permission created date time: #8954
  • Enhancement - Add virus filter to sessions command: #9041
  • Enhancement - Assimilate clean into sessions command: #9041
  • Enhancement - Add remote item id to WebDAV report responses: #9094
  • Enhancement - Theme Processing and Logo Customization: #9133
  • Enhancement - Add watermark text: #9144
  • Enhancement - Update selected attributes of autoprovisioned users: #9166
  • Enhancement - Limit concurrent thumbnail requests: #9199
  • Enhancement - The storage-users doc updated: #9228
  • Enhancement - Docker compose example for ClamAV: #9229
  • Enhancement - Add command to check ocis backup consistency: #9238
  • Enhancement - Web server compression: #9287
  • Enhancement - Add secureview flag when listing apps via http: #9289
  • Enhancement - Activitylog Service: #9327
  • Enhancement - Update web to v9.0.0-alpha.7: #9395
  • Enhancement - Bump Reva to v2.20.0: #9415

Details

Changelog for 5.0.5 (2024-05-22)

The following sections list the changes for 5.0.5.

Summary

  • Enhancement - Update web to v8.0.2: #9153

Details

Changelog for 5.0.4 (2024-05-13)

The following sections list the changes for 5.0.4.

Summary

  • Bugfix - Update reva to v2.19.7: #9011
  • Bugfix - Service startup of WOPI example: #9127
  • Bugfix - Nats reconnects: #9139

Details

Changelog for 5.0.3 (2024-05-02)

The following sections list the changes for 5.0.3.

Summary

  • Bugfix - Update the admin user role assignment to enforce the config: #8918
  • Bugfix - Crash when processing crafted TIFF files: #8981
  • Bugfix - Update reva to v2.19.6: #9011
  • Bugfix - Fix infected file handling: #9011

Details

Changelog for 5.0.2 (2024-04-17)

The following sections list the changes for 5.0.2.

Summary

  • Bugfix - Fix creating new WOPI documents on public shares: #8828
  • Bugfix - Update reva to v2.19.5: #8873

Details

Changelog for 5.0.1 (2024-04-10)

The following sections list the changes for 5.0.1.

Summary

  • Bugfix - Make IDP cookies same site strict: #8716
  • Bugfix - Update reva to v2.19.4: #8781
  • Bugfix - Fix restarting of postprocessing: #8782
  • Bugfix - Fix the create personal space cache: #8799

Details

  • Bugfix - Make IDP cookies same site strict: #8716

    To enhance the security of our application and prevent Cross-Site Request Forgery (CSRF) attacks, we have updated the SameSite attribute of the build in Identity Provider (IDP) cookies to Strict.

    This change restricts the browser from sending these cookies with any cross-site requests, thereby limiting the exposure of the user's session to potential threats.

    This update does not impact the existing functionality of the application but provides an additional layer of security where needed.

    This only affects cookies set by the built-in IDP. Production systems should not be affected.

    https://github.com/owncloud/ocis/pull/8716

  • Bugfix - Update reva to v2.19.4: #8781

    We updated reva to v2.19.4

    Https://github.com/owncloud/ocis/pull/8787

    We updated reva to v2.19.3

    https://github.com/owncloud/ocis/pull/8781

  • Bugfix - Fix restarting of postprocessing: #8782

    When an upload is not found, the logic to restart postprocessing was bunked. Additionally we extended the upload sessions command to be able to restart the uploads without using a second command.

    NOTE: This also includes a breaking fix for the deprecated ocis storage-users uploads list command

    https://github.com/owncloud/ocis/pull/8782

  • Bugfix - Fix the create personal space cache: #8799

    We fixed a problem with the config for the create personal space cache which resulted in the cache never being used.

    https://github.com/owncloud/ocis/pull/8799

Changelog for 4.0.7 (2024-03-27)

The following sections list the changes for 4.0.7.

Summary

  • Bugfix - Update reva to include bugfixes and improvements: #8718
  • Enhancement - Update to go 1.22: #8597

Details

Changelog for 5.0.0 (2024-03-18)

The following sections list the changes for 5.0.0.

Summary

  • Bugfix - Fix wrong compile date: #6132
  • Bugfix - Fix the kql-bleve search: #7290
  • Bugfix - Bring back the USERS_LDAP_USER_SCHEMA_ID variable: #7312
  • Bugfix - Do not reset state of received shares when rebuilding the jsoncs3 index: #7319
  • Bugfix - Deprecate redundant encryptions settings for notification service: #7345
  • Bugfix - Check school number for duplicates before adding a school: #7351
  • Bugfix - Don't reload web config: #7369
  • Bugfix - Delete outdated userlog events: #7410
  • Bugfix - Set the mountpoint on auto accept: #7460
  • Bugfix - Fix default language fallback: #7465
  • Bugfix - GetUserByClaim fixed for Active Directory: #7476
  • Bugfix - Fix preview request 500 error when made too early: #7502
  • Bugfix - Fix 403 in docs pipeline: #7509
  • Bugfix - Fix the auth service env variable: #7523
  • Bugfix - Token storage config fixed: #7528
  • Bugfix - Set existing mountpoint on auto accept: #7592
  • Bugfix - Return 423 status code on tag create: #7596
  • Bugfix - Fix libre-graph status codes: #7678
  • Bugfix - Fix unlock via space API: #7726
  • Bugfix - Disable DEPTH infinity in PROPFIND: #7746
  • Bugfix - Fix the tgz mime type: #7772
  • Bugfix - Fix natsjs cache: #7790
  • Bugfix - Fix search service start: #7795
  • Bugfix - Fix search response: #7815
  • Bugfix - The race conditions in tests: #7847
  • Bugfix - Do not purge expired upload sessions that are still postprocessing: #7859
  • Bugfix - Fix the public link update: #7862
  • Bugfix - Fix jwt config of policies service: #7893
  • Bugfix - Updating logo with new theme structure: #7930
  • Bugfix - Password policy return code was wrong: #7952
  • Bugfix - Removed outdated and unused dependency from idp package: #7957
  • Bugfix - Update permission validation: #7963
  • Bugfix - Renaming a user to a string with capital letters: #7964
  • Bugfix - Improve OCM support: #7973
  • Bugfix - Permissions of a role with duplicate ID: #7976
  • Bugfix - Non durable streams for sse service: #7986
  • Bugfix - Fix empty trace ids: #8023
  • Bugfix - Fix search by containing special characters: #8050
  • Bugfix - Fix the upload postprocessing: #8117
  • Bugfix - Disallow to delete a file during the processing: #8132
  • Bugfix - Fix wrong naming in nats-js-kv registry: #8140
  • Bugfix - IDP CS3 backend sessions now survive a restart: #8142
  • Bugfix - Fix patching of language: #8182
  • Bugfix - Fix search service to not log expected cases as errors: #8200
  • Bugfix - Updating and reset logo failed: #8211
  • Bugfix - Cleanup graph/pkg/service/v0/driveitems.go: #8228
  • Bugfix - Cleanup search/pkg/search/search.go: #8230
  • Bugfix - Graph/sharedWithMe works for shares from project spaces now: #8233
  • Bugfix - Fix PATCH/DELETE status code for drives that don't support them: #8235
  • Bugfix - Fix nats authentication: #8236
  • Bugfix - Fix the resource name: #8246
  • Bugfix - Apply role constraints when creating shares via the graph API: #8247
  • Bugfix - Fix concurrent access to a map: #8269
  • Bugfix - Fix nats registry: #8281
  • Bugfix - Remove invalid environment variables: #8303
  • Bugfix - Fix concurrent shares config: #8317
  • Bugfix - Fix Content-Disposition header for downloads: #8381
  • Bugfix - Signed url verification: #8385
  • Bugfix - Fix an error when move: #8396
  • Bugfix - Fix extended env parser: #8409
  • Bugfix - Graph/drives/permission Expiration date update: #8413
  • Bugfix - Fix search error message: #8444
  • Bugfix - Graph/sharedWithMe align IDs with webdav response: #8467
  • Bugfix - Fix an error when lock/unlock a public shared file: #8472
  • Bugfix - Bump reva to pull in changes to fix recursive trashcan purge: #8505
  • Bugfix - Fix remove/update share permissions: #8529
  • Bugfix - Fix graph drive invite: #8538
  • Bugfix - We now always select the next clients when autoaccepting shares: #8570
  • Bugfix - Correct the default mapping of roles: #8639
  • Bugfix - Disable Multipart uploads: #8667
  • Bugfix - Fix last month search: #31145
  • Change - Auto-Accept Shares: #7097
  • Change - Change the default TUS chunk size: #7273
  • Change - Remove privacyURL and imprintURL from the config: #7938
  • Change - Remove accessDeniedHelpUrl from the config: #7970
  • Change - Change the default store for presigned keys to nats-js-kv: #8419
  • Change - Deprecate sharing cs3 backends: #8478
  • Enhancement - Add the Banned Passwords List: #4197
  • Enhancement - Introduce service accounts: #6427
  • Enhancement - SSE for messaging: #6992
  • Enhancement - Support spec violating AD FS access token issuer: #7140
  • Enhancement - Add OCIS_LDAP_BIND_PASSWORD as replacement for LDAP_BIND_PASSWORD: #7176
  • Enhancement - Keyword Query Language (KQL) search syntax: #7212
  • Enhancement - Introduce clientlog service: #7217
  • Enhancement - Proxy uses service accounts for provisioning: #7240
  • Enhancement - The password policies change request: #7264
  • Enhancement - Introduce natsjs registry: #7272
  • Enhancement - Add the password policies: #7285
  • Enhancement - Add login URL config: #7317
  • Enhancement - Improve SSE format: #7325
  • Enhancement - New value auto for NOTIFICATIONS_SMTP_AUTHENTICATION: #7356
  • Enhancement - Make sse service scalable: #7382
  • Enhancement - Edit wrong named enves: #7406
  • Enhancement - Thumbnail generation with image processors: #7409
  • Enhancement - Set default for Async Uploads to true: #7416
  • Enhancement - The default language added: #7417
  • Enhancement - Add "Last modified" filter Chip: #7455
  • Enhancement - Config for disabling Web extensions: #7486
  • Enhancement - Store and index metadata: #7490
  • Enhancement - Add support for audio files to the thumbnails service: #7491
  • Enhancement - Implement sharing roles: #7524
  • Enhancement - Add new permission to delete public link password: #7538
  • Enhancement - Add config to enforce passwords on all public links: #7547
  • Enhancement - Tika content extraction cleanup for search: #7553
  • Enhancement - Allow configuring storage registry with envvars: #7554
  • Enhancement - Add search MediaType filter: #7602
  • Enhancement - Add Sharing NG endpoints: #7633
  • Enhancement - Configs for Web embed mode: #7670
  • Enhancement - Support login page background configuration: #7674
  • Enhancement - Add new permissions: #7700
  • Enhancement - Add preferred language to user settings: #7720
  • Enhancement - Add user filter startswith and contains: #7739
  • Enhancement - Allow configuring additional routes: #7741
  • Enhancement - Default link permission config: #7783
  • Enhancement - Add banned password list to the default deployments: #7784
  • Enhancement - Update to go 1.21: #7794
  • Enhancement - Add Sharing NG list permissions endpoint: #7805
  • Enhancement - Add user list requires filter config: #7866
  • Enhancement - Retry antivirus postprocessing step in case of problems: #7874
  • Enhancement - Add validation to public share provider: #7877
  • Enhancement - Graphs endpoint for mounting and unmounting shares: #7885
  • Enhancement - Store and index metadata: #7886
  • Enhancement - Allow regular users to list other users: #7887
  • Enhancement - Add edit public share to sharing NG: #7908
  • Enhancement - Add cli commands for trash-bin: #7917
  • Enhancement - Add validation update public share: #7978
  • Enhancement - Allow inmemory nats-js-kv stores: #7979
  • Enhancement - Disable the password policy: #7985
  • Enhancement - Use kv store in natsjs registry: #7987
  • Enhancement - Allow authentication nats connections: #7989
  • Enhancement - Add RED metrics to the metrics endpoint: #7994
  • Enhancement - Add ocm and sciencemesh services: #7998
  • Enhancement - Make nats-js-kv the default registry: #8011
  • Enhancement - Service Account roles: #8051
  • Enhancement - Update antivirus service: #8062
  • Enhancement - Remove deprecated environment variables: #8149
  • Enhancement - Disable the password policy: #8152
  • Enhancement - Allow restarting multiple uploads with one command: #8287
  • Enhancement - Modify the concurrency default: #8309
  • Enhancement - Improve ocis single binary start: #8320
  • Enhancement - Use environment variables in yaml config files: #8339
  • Enhancement - Increment filenames on upload collisions in secret filedrops: #8340
  • Enhancement - Allow sending multiple user ids in one sse event: #8379
  • Enhancement - Allow to skip service listing: #8408
  • Enhancement - Add a make step to validate the env var annotations: #8436
  • Enhancement - Drop the unnecessary grants exists check when creating shares: #8502
  • Enhancement - Update to go 1.22: #8586
  • Enhancement - Update web to v8.0.0: #8613
  • Enhancement - Update web to v8.0.1: #8626
  • Enhancement - Update reva to 2.19.2: #8638

Details

Changelog for 4.0.6 (2024-02-07)

The following sections list the changes for 4.0.6.

Summary

  • Bugfix - Fix RED metrics on the metrics endpoint: #7994
  • Bugfix - Signed url verification: #8385

Details

  • Bugfix - Fix RED metrics on the metrics endpoint: #7994

    We connected some metrics to the metrics endpoint to support the RED method for monitoring microservices.

    • Request Rate: The number of requests per second. The total count of requests is available under ocis_proxy_requests_total. - Error Rate: The number of failed requests per second. The total count of failed requests is available under ocis_proxy_errors_total. - Duration: The amount of time each request takes. The duration of all requests is available under ocis_proxy_request_duration_seconds. This is a histogram metric, so it also provides information about the distribution of request durations.

    The metrics are available under the following paths: PROXY_DEBUG_ADDR/metrics in a prometheus compatible format and maybe secured by PROXY_DEBUG_TOKEN.

    https://github.com/owncloud/ocis/pull/7994

  • Bugfix - Signed url verification: #8385

    Signed urls now expire properly

    https://github.com/owncloud/ocis/pull/8385

Changelog for 4.0.5 (2023-12-21)

The following sections list the changes for 4.0.5.

Summary

  • Bugfix - Fix reva config of frontend service to avoid misleading error logs: #7934
  • Bugfix - Do not purge expired upload sessions that are still postprocessing: #7941
  • Bugfix - Fix trace ids: #8026
  • Enhancement - Add cli commands for trash-bin: #7936

Details

Changelog for 4.0.4 (2023-12-07)

The following sections list the changes for 4.0.4.

Summary

  • Enhancement - Update reva to improve trashbin listing: #7858

Details

Changelog for 4.0.3 (2023-11-24)

The following sections list the changes for 4.0.3.

Summary

  • Bugfix - Bump reva to 2.16.2: #7512
  • Bugfix - Token storage config fixed: #7546
  • Enhancement - Support spec violating AD FS access token issuer: #7138
  • Enhancement - Update web to v7.1.2: #7798

Details

Changelog for 4.0.2 (2023-09-28)

The following sections list the changes for 4.0.2.

Summary

  • Bugfix - Actually pass PROXY_OIDC_SKIP_USER_INFO option to oidc client middleware: #7220
  • Bugfix - Disable username validation for keycloak example: #7230
  • Bugfix - Bring back the USERS_LDAP_USER_SCHEMA_ID variable: #7312
  • Bugfix - Do not reset received share state to pending: #7319
  • Bugfix - Bump reva to 2.16.1: #7350
  • Bugfix - Check school number for duplicates before adding a school: #7351
  • Enhancement - Add OCIS_LDAP_BIND_PASSWORD as replacement for LDAP_BIND_PASSWORD: #7176

Details

Changelog for 4.0.1 (2023-09-01)

The following sections list the changes for 4.0.1.

Summary

  • Bugfix - Disallow sharee to search sharer files outside the share: #7184

Details

  • Bugfix - Disallow sharee to search sharer files outside the share: #7184

    When a file was shared with user(sharee) and the sharee searched the shared file the response contained unshared resources as well.

    https://github.com/owncloud/ocis/pull/7184

Changelog for 4.0.0 (2023-08-21)

The following sections list the changes for 4.0.0.

Summary

  • Bugfix - Fix error message on 400 response for thumbnail requests: #2064
  • Bugfix - Handle the bad request status: #6469
  • Bugfix - Add missing timestamps: #6515
  • Bugfix - Add token to LinkAccessedEvent: #6554
  • Bugfix - Don't connect to ldap on startup: #6565
  • Bugfix - Add default store to postprocessing: #6578
  • Bugfix - Fix the oidc role assigner: #6605
  • Bugfix - Restart Postprocessing: #6726
  • Bugfix - Fix search shares: #6741
  • Bugfix - Fix the default document language for OnlyOffice: #6878
  • Bugfix - Fix nats registry: #6881
  • Bugfix - Check public auth first: #6900
  • Bugfix - Fix CORS issues: #6912
  • Bugfix - Let clients cache web and theme assets: #6914
  • Bugfix - Fix the search: #6947
  • Bugfix - Graph service did not honor the OCIS_LDAP_GROUP_SCHEMA_MEMBER setting: #7032
  • Bugfix - Fix the routing capability: #9367
  • Change - YAML configuration files are restricted to yaml-1.2: #6510
  • Enhancement - Add SSE Endpoint: #5998
  • Enhancement - Add postprocessing mimetype to extension helper: #6133
  • Enhancement - Add more metadata to the remote item: #6300
  • Enhancement - Add WEB_OPTION_OPEN_LINKS_WITH_DEFAULT_APP env variable: #6328
  • Enhancement - Fix the username validation: #6437
  • Enhancement - Use reva client selectors: #6452
  • Enhancement - Add companion URL config: #6453
  • Enhancement - Update go-micro kubernetes registry: #6457
  • Enhancement - Add imprint and privacy url config: #6462
  • Enhancement - Update web to v7.0.1: #6470
  • Enhancement - Make the app provider service name configurable: #6482
  • Enhancement - Fix the groupname validation: #6490
  • Enhancement - Add functionality to retry postprocessing: #6500
  • Enhancement - Fix envvar defaults: #6516
  • Enhancement - Add permissions to report: #6528
  • Enhancement - Add old & new values to audit logs: #6537
  • Enhancement - Allow disabling wopi chat: #6544
  • Enhancement - We added the storage id to the audit log for spaces: #6548
  • Enhancement - Add logged out url config: #6549
  • Enhancement - Add 'ocis decomposedfs check-treesize' command: #6556
  • Enhancement - Skip if the simulink is a directory: #6574
  • Enhancement - Thumbnails can be disabled for webdav & web now: #6577
  • Enhancement - Make the post logout redirect uri configurable: #6583
  • Enhancement - Move proxy to service tracerprovider: #6591
  • Enhancement - Add IDs to graph resource logging: #6593
  • Enhancement - Add search result content preview and term highlighting: #6634
  • Enhancement - Move graph to service tracerprovider: #6695
  • Enhancement - Provide Search filter for locations: #6713
  • Enhancement - Add X-Request-Id to all responses: #6715
  • Enhancement - Clarify license text in the dev docs: #6755
  • Enhancement - Add WEB_OPTION_TOKEN_STORAGE_LOCAL env variable: #6760
  • Enhancement - Bump Hugo: #6787
  • Enhancement - Bump reva to 2.16.0: #6829
  • Enhancement - Configure max grpc message size: #6849
  • Enhancement - Improve the notification logs: #6862
  • Enhancement - Extendable policy mimetype extension mapping: #6869
  • Enhancement - Evaluate policy resource information on single file shares: #6888
  • Enhancement - Update web to v7.1.0-rc.5: #6944
  • Enhancement - Add static secret to gn endpoints: #6946
  • Enhancement - Bump sonarcloud: #6961
  • Enhancement - Nats named connections: #6979
  • Enhancement - Add command for rebuilding the jsoncs3 share manager indexes: #6986
  • Enhancement - Remove deprecated environment variables: #7099
  • Enhancement - Update web to v7.1.0: #7107

Details

Changelog for 3.0.0 (2023-06-06)

The following sections list the changes for 3.0.0.

Summary

  • Bugfix - Use UUID attribute for computing "sub" claim in lico idp: #904
  • Bugfix - Fix default role assignment for demo users: #3432
  • Bugfix - Hide the existence of space when deleting/updating: #5031
  • Bugfix - Fix Postprocessing events: #5269
  • Bugfix - Return 425 on Thumbnails: #5300
  • Bugfix - Disassociate users from deleted school: #5343
  • Bugfix - Fix Search tag indexing: #5405
  • Bugfix - Populate expanded properties: #5421
  • Bugfix - Fix the empty string givenName attribute when creating user: #5431
  • Bugfix - Add portrait thumbnail resolutions: #5656
  • Bugfix - Fix so that PATCH requests for groups actually updates the group name: #5949
  • Bugfix - Add missing CORS config: #5987
  • Bugfix - Fix authenticate headers for API requests: #5992
  • Bugfix - Fix OIDC auth cache: #5997
  • Bugfix - Fix user type config for user provider: #6027
  • Bugfix - Fix the wrong status code when appRoleAssignments is forbidden: #6037
  • Bugfix - Fix Search reindexing performance regression: #6085
  • Bugfix - Fix userlog panic: #6114
  • Bugfix - Fix wrong compile date: #6132
  • Bugfix - Fix Logout Url config name: #6227
  • Bugfix - Allow selected updates on graph users: #6233
  • Bugfix - Add missing response to blocked requests: #6277
  • Bugfix - Update the default admin role: #6310
  • Bugfix - Trace proxy middlewares: #6313
  • Bugfix - Reduced default TTL of user and group caches in graph API: #6320
  • Bugfix - Empty exact list while searching for a sharee: #6398
  • Bugfix - Fix error message when disabling users: #6435
  • Change - Remove the settings ui: #5463
  • Change - Do not share versions: #5531
  • Change - Bump libregraph lico: #5768
  • Change - Updated Cache Configuration: #5829
  • Change - We renamed the guest role to user light: #6456
  • Enhancement - Rename permissions: #3922
  • Enhancement - Open Debug endpoint for Notifications: #5002
  • Enhancement - Open Debug endpoint for Nats: #5002
  • Enhancement - Add otlp tracing exporter: #5132
  • Enhancement - Add global env variable extractor: #5164
  • Enhancement - Async Postprocessing: #5207
  • Enhancement - Extended search: #5221
  • Enhancement - Resource tags: #5227
  • Enhancement - Bump libre-graph-api-go: #5309
  • Enhancement - Drive group permissions: #5312
  • Enhancement - Expiration Notifications: #5330
  • Enhancement - Graph Drives IdentitySet displayName: #5347
  • Enhancement - Make the group members addition limit configurable: #5357
  • Enhancement - Collect global envvars: #5367
  • Enhancement - Add webfinger service: #5373
  • Enhancement - Display surname and givenName attributes: #5388
  • Enhancement - Add expiration to user and group shares: #5389
  • Enhancement - Space Management permissions: #5441
  • Enhancement - Better config for postprocessing service: #5457
  • Enhancement - Cli to purge expired trash-bin items: #5500
  • Enhancement - Allow username to be changed: #5509
  • Enhancement - Allow users to be disabled: #5588
  • Enhancement - Make the settings bundles part of the service config: #5589
  • Enhancement - Add endpoint to list permissions: #5594
  • Enhancement - Eventhistory service: #5600
  • Enhancement - Userlog Service: #5610
  • Enhancement - Added option to configure default quota per role: #5616
  • Enhancement - Add new SetProjectSpaceQuota permission: #5660
  • Enhancement - Make graph/education API errors more consistent: #5682
  • Enhancement - Add new permission for public links: #5690
  • Enhancement - Userlog: #5699
  • Enhancement - Introduce policies-service: #5714
  • Enhancement - Update to go 1.20 to use memlimit: #5732
  • Enhancement - Add endpoints to upload a custom logo: #5735
  • Enhancement - Add config option to enforce passwords on public links: #5848
  • Enhancement - Add 'ocis decomposedfs metadata' command: #5858
  • Enhancement - Use gotext master: #5867
  • Enhancement - No Notifications for own actions: #5871
  • Enhancement - Automate md creation: #5901
  • Enhancement - Notify about policies: #5912
  • Enhancement - Use Accept-Language Header: #5918
  • Enhancement - Add MessageRichParameters: #5927
  • Enhancement - Add more logging to av service: #5973
  • Enhancement - Make the LDAP base DN for new groups configurable: #5974
  • Enhancement - Add a capability for the Personal Data export: #5984
  • Enhancement - Bump go-ldap version: #6004
  • Enhancement - Configure GRPC in ocs: #6022
  • Enhancement - Web config additions: #6032
  • Enhancement - Notifications: #6038
  • Enhancement - Added possibility to assign roles based on OIDC claims: #6048
  • Enhancement - GDPR Export: #6064
  • Enhancement - Add optional services to the runtime: #6071
  • Enhancement - Determine the users language to translate via Transifex: #6089
  • Enhancement - Return Bad Request when requesting GDPR export for another user: #6123
  • Enhancement - Disable Notifications: #6137
  • Enhancement - Add the email HTML templates: #6147
  • Enhancement - Add debug server to idm: #6153
  • Enhancement - Add debug server to audit: #6178
  • Enhancement - Web options configuration: #6188
  • Enhancement - Add debug server to userlog: #6202
  • Enhancement - Add debug server to postprocessing: #6203
  • Enhancement - Add debug server to eventhistory: #6204
  • Enhancement - Add specific result to antivirus for debugging: #6265
  • Enhancement - Add Store to postprocessing: #6281
  • Enhancement - Update web to v7.0.0-rc.37: #6294
  • Enhancement - Remove quota from share jails api responses: #6309
  • Enhancement - Graph user capabilities: #6339
  • Enhancement - Configurable ID Cache: #6353
  • Enhancement - Fix err when the user share the locked file: #6358
  • Enhancement - Remove the email logo: #6359
  • Enhancement - Default LDAP write to true: #6362
  • Enhancement - Add fulltextsearch capabilty: #6366
  • Enhancement - Update web to v7.0.0-rc.38: #6375
  • Enhancement - Fix preview or viewing of shared animated GIFs: #6386
  • Enhancement - Unify CA Cert envvars: #6392
  • Enhancement - Fix to prevent the email X-Site scripting: #6429
  • Enhancement - Update web to v7.0.0: #6438
  • Enhancement - Update Reva to version 2.14.0: #6448

Details

Changelog for 2.0.0 (2022-11-30)

The following sections list the changes for 2.0.0.

Summary

  • Bugfix - Substring search for sharees: #547
  • Bugfix - Return proper errors when ocs/cloud/users is using the cs3 backend: #3483
  • Bugfix - Thumbnails for /dav/xxx?preview=1 requests: #3567
  • Bugfix - URL encode the webdav url in the graph API: #3597
  • Bugfix - Idp: Check if CA certificate if present: #3623
  • Bugfix - Fix DN parsing issues and sizelimit handling in libregraph/idm: #3631
  • Bugfix - Fix the webdav URL of drive roots: #3706
  • Bugfix - Check permissions when deleting Space: #3709
  • Bugfix - Remove runtime kill and run commands: #3740
  • Bugfix - Make IDP secrets configurable via environment variables: #3744
  • Bugfix - Store user passwords hashed in idm: #3778
  • Bugfix - Fix version number in status page: #3788
  • Bugfix - Fix Thumbnails for IDs without a trailing path: #3791
  • Bugfix - Fix the ocis search command: #3796
  • Bugfix - Remove unused transfer secret from app provider: #3798
  • Bugfix - Fix the idm and settings extensions' admin user id configuration option: #3799
  • Bugfix - Rename search env variable for the grpc server address: #3800
  • Bugfix - Fix multiple storage-users env variables: #3802
  • Bugfix - Save Katherine: #3823
  • Bugfix - Enable debug server by default: #3827
  • Bugfix - Remove legacy accounts proxy routes: #3831
  • Bugfix - Set default name for public link via capabilities: #3834
  • Bugfix - Fix search index getting out of sync: #3851
  • Bugfix - Inconsistency env var naming for LDAP filter configuration: #3890
  • Bugfix - Allow empty environment variables: #3892
  • Bugfix - Fix user autoprovisioning: #3893
  • Bugfix - Fix LDAP insecure options: #3897
  • Bugfix - Rework default role provisioning: #3900
  • Bugfix - Fix configuration validation for extensions' server commands: #3911
  • Bugfix - Fix graph endpoint: #3925
  • Bugfix - Fix version info: #3953
  • Bugfix - Remove unused OCS storage configuration: #3955
  • Bugfix - Make ocdav service behave properly: #3957
  • Bugfix - Make IDP only wait for certs when using LDAP: #3965
  • Bugfix - Remove unused configuration options: #3973
  • Bugfix - CSP rules for silent token refresh in iframe: #4031
  • Bugfix - Logging in on the wrong account when an email address is not unique: #4039
  • Bugfix - Remove static ocs user backend config: #4077
  • Bugfix - Fix make sensitive config values in the proxy's debug server: #4086
  • Bugfix - Fix startup error logging: #4093
  • Bugfix - Polish search: #4094
  • Bugfix - Fix logging levels: #4102
  • Bugfix - Escape DN attribute value: #4117
  • Bugfix - Fix OCIS_RUN_SERVICES: #4133
  • Bugfix - Space Creators can hand over spaces: #4244
  • Bugfix - Fix handling of invalid LDAP users and groups: #4274
  • Bugfix - Fix search in received shares: #4308
  • Bugfix - Fix unrestricted quota on the graphAPI: #4363
  • Bugfix - Autocreate IDP private key also if file exists but is empty: #4394
  • Bugfix - Show help for some commands when unconfigured: #4405
  • Bugfix - Rename extensions to services (leftover occurrences): #4407
  • Bugfix - Fix configuration of mimetypes for the app registry: #4411
  • Bugfix - Disable default expiration for public links: #4445
  • Bugfix - Fix permissions in REPORT: #4520
  • Bugfix - Render webdav permissions as string in search report: #4575
  • Bugfix - Graph service now forwards trace context: #4582
  • Bugfix - Fix sharing jsoncs3 driver options: #4593
  • Bugfix - Fix the OIDC provider cache: #4600
  • Bugfix - Change the default value for PROXY_OIDC_INSECURE to false: #4601
  • Bugfix - Fix authentication for autoprovisioned users: #4616
  • Bugfix - Fix wopi access to public shares: #4631
  • Bugfix - Fix unfindable entities from shares/publicshares: #4651
  • Bugfix - Fix notifications service settings: #4652
  • Bugfix - Bring back the settings UI in Web: #4691
  • Bugfix - Don't run auth-bearer service by default: #4692
  • Bugfix - Mail notifications for group shares: #4714
  • Bugfix - Make tokeninfo endpoint unprotected: #4715
  • Bugfix - Fix cache stat table config: #4732
  • Bugfix - Trigger a rescan of spaces in the search index when items have changed: #4777
  • Bugfix - Disable cache for selected static web assets: #4809
  • Bugfix - Remove the storage-users event configuration: #4825
  • Bugfix - Fix the shareroot path in REPORT responses: #4859
  • Bugfix - Disable federation capabilities: #4864
  • Bugfix - Fix permission check in settings service: #4890
  • Bugfix - Fix CORS in frontend service: #4948
  • Bugfix - Fix notifications Web UI url: #4998
  • Bugfix - Do not reindex a space twice at the same time: #5001
  • Bugfix - Find spaces by their name: #5044
  • Bugfix - Initial role assignment with external IDM: #5045
  • Bugfix - Lower IDP token lifespans: #5077
  • Bugfix - Adjust cache related configuration options: #5087
  • Bugfix - Make storage users mount ids unique by default: #5091
  • Bugfix - Update reva to version 2.12.0: #5092
  • Bugfix - Decomposedfs increase filelock duration factor: #5130
  • Bugfix - Translations on login page: #7550
  • Bugfix - Fix search report: #7557
  • Bugfix - Fix unused config option GRAPH_SPACES_INSECURE: #55555
  • Change - Switched default configuration to use libregraph/idm: #3331
  • Change - Introduce ocis init and remove all default secrets: #3551
  • Change - Load configuration files just from one directory: #3587
  • Change - Reduce drives in graph /me/drives API: #3629
  • Change - Reduce permissions on docker image predeclared volumes: #3641
  • Change - Use new space ID util functions: #3648
  • Change - Rename MetadataUserID: #3671
  • Change - Split MachineAuth from SystemUser: #3672
  • Change - Rename serviceUser to systemUser: #3673
  • Change - Update ocis packages and imports to V2: #3678
  • Change - The glauth and accounts services are removed: #3685
  • Change - Prevent access to disabled space: #3779
  • Change - Rename "uploads purge" command to "uploads clean": #4403
  • Change - Enable private links by default: #4599
  • Change - Use the spaceID on the cs3 resource: #4748
  • Change - Build service frontends with pnpm instead of yarn: #4878
  • Enhancement - Disable the color logging in docker compose examples: #871
  • Enhancement - Product field in OCS version: #2918
  • Enhancement - Add /me/changePassword endpoint to GraphAPI: #3063
  • Enhancement - Update IdP UI: #3493
  • Enhancement - Update reva to v2.3.1: #3552
  • Enhancement - Update linkshare capabilities: #3579
  • Enhancement - Wrap metadata storage with dedicated reva gateway: #3602
  • Enhancement - Align service naming: #3606
  • Enhancement - Added share_jail and projects feature flags in spaces capability: #3626
  • Enhancement - Add initial version of the search extensions: #3635
  • Enhancement - Don't setup demo role assignments on default: #3661
  • Enhancement - Restrict admins from self-removal: #3713
  • Enhancement - Update reva to version 2.4.1: #3746
  • Enhancement - Add description tags to the thumbnails config structs: #3752
  • Enhancement - Add acting user to the audit log: #3753
  • Enhancement - Add descriptions to webdav configuration: #3755
  • Enhancement - Add descriptions for graph-explorer config: #3759
  • Enhancement - Add config option to provide TLS certificate: #3818
  • Enhancement - Introduce service registry cache: #3833
  • Enhancement - Improve validation of OIDC access tokens: #3841
  • Enhancement - Reintroduce user autoprovisioning in proxy: #3860
  • Enhancement - Allow resharing: #3904
  • Enhancement - Generate signing key and encryption secret: #3909
  • Enhancement - Add deprecation annotation: #3917
  • Enhancement - Update reva to version 2.5.1: #3932
  • Enhancement - Add audit events for created containers: #3941
  • Enhancement - Update reva: #3944
  • Enhancement - Make thumbnails service log less noisy: #3959
  • Enhancement - Refactor extensions to services: #3980
  • Enhancement - Add capability for alias links: #3983
  • Enhancement - New migrate command for migrating shares and public shares: #3987
  • Enhancement - Update ownCloud Web to v5.7.0-rc.1: #4005
  • Enhancement - Add FRONTEND_ENABLE_RESHARING env variable: #4023
  • Enhancement - Add drives field to users endpoint: #4072
  • Enhancement - Added command to reset administrator password: #4084
  • Enhancement - Update reva to version 2.7.2: #4115
  • Enhancement - Search service at the old webdav endpoint: #4118
  • Enhancement - Update ownCloud Web to v5.7.0-rc.4: #4140
  • Enhancement - Add number of total matches to the search result: #4189
  • Enhancement - Introduce "delete-all-spaces" permission: #4196
  • Enhancement - Improve error log for "could not get user by claim" error: #4227
  • Enhancement - Allow providing list of services NOT to start: #4254
  • Enhancement - Introduce insecure flag for smtp email notifications: #4279
  • Enhancement - Update reva to v2.7.4: #4294
  • Enhancement - Update ownCloud Web to v5.7.0-rc.8: #4314
  • Enhancement - OCS get share now also handle received shares: #4322
  • Enhancement - Fix behavior for foobar (in present tense): #4346
  • Enhancement - Use storageID when requesting special items: #4356
  • Enhancement - Expand personal drive on the graph user: #4357
  • Enhancement - Rewrite of the request authentication middleware: #4374
  • Enhancement - Add /app/open-with-web endpoint: #4376
  • Enhancement - Added language option to the app provider: #4399
  • Enhancement - Refactor the proxy service: #4401
  • Enhancement - Add previewFileMimeTypes to web default config: #4414
  • Enhancement - Update ownCloud Web to v5.7.0-rc.10: #4439
  • Enhancement - Add configuration options for mail authentication and encryption: #4443
  • Enhancement - Update reva to v2.8.0: #4444
  • Enhancement - Add missing unprotected paths: #4454
  • Enhancement - Automatically orientate photos when generating thumbnails: #4477
  • Enhancement - Improve login screen design: #4500
  • Enhancement - Update ownCloud Web to v5.7.0: #4508
  • Enhancement - Update Reva to version 2.10.0: #4522
  • Enhancement - Add Email templating: #4564
  • Enhancement - Allow to configure applications in Web: #4578
  • Enhancement - Add webURL to space root: #4588
  • Enhancement - Update reva to version 2.11.0: #4588
  • Enhancement - Allow to configuring the reva cache store: #4627
  • Enhancement - Add thumbnails support for tiff and bmp files: #4634
  • Enhancement - Add support for REPORT requests to /dav/spaces URLs: #4661
  • Enhancement - Make it possible to configure a WOPI folderurl: #4716
  • Enhancement - Add curl to the oCIS OCI image: #4751
  • Enhancement - Report parent id: #4757
  • Enhancement - Secure the nats connection with TLS: #4781
  • Enhancement - Allow to setup TLS for grpc services: #4798
  • Enhancement - We added e-mail subject templating: #4799
  • Enhancement - Logging improvements: #4815
  • Enhancement - Prohibit users from setting or listing other user's values: #4897
  • Enhancement - Deny access to resources: #4903
  • Enhancement - Validate space names: #4955
  • Enhancement - Configurable max lock cycles: #4965
  • Enhancement - Rename AUTH_BASIC_AUTH_PROVIDER envvar: #4966
  • Enhancement - Default to tls 1.2: #4969
  • Enhancement - Add the "hidden" state to the search index: #5018
  • Enhancement - Remove windows from ci & release makefile: #5026
  • Enhancement - Add tracing to search: #5113
  • Enhancement - Update ownCloud Web to v6.0.0: #5153
  • Enhancement - Add capability for public link single file edit: #6787
  • Enhancement - Update ownCloud Web to v5.5.0-rc.8: #6854
  • Enhancement - Update ownCloud Web to v5.5.0-rc.9: #6854
  • Enhancement - Update ownCloud Web to v5.5.0-rc.6: #6854
  • Enhancement - Optional events in graph service: #55555

Details

Changelog for 1.20.0 (2022-04-13)

The following sections list the changes for 1.20.0.

Summary

  • Bugfix - Ensure the same data on /ocs/v?.php/config like oC10: #3113
  • Bugfix - Use the default server download protocol if spaces are not supported: #3386
  • Bugfix - Add owncloudsql driver to authprovider config: #3435
  • Bugfix - Corrected documentation: #3439
  • Change - Fix keys with underscores in the config files: #3412
  • Change - Don't create demo users by default: #3474
  • Enhancement - Add sorting to GraphAPI users and groups: #3360
  • Enhancement - Use embeddable ocdav go micro service: #3397
  • Enhancement - Update reva to v2.2.0: #3397
  • Enhancement - Make config dir configurable: #3440
  • Enhancement - Replace deprecated String.prototype.substr(): #3448
  • Enhancement - Alias links: #3454
  • Enhancement - Implement audit events for user and groups: #3467
  • Enhancement - Unify LDAP config settings across services: #3476
  • Enhancement - Update ownCloud Web to v5.4.0: #6709

Details

Changelog for 1.19.0 (2022-03-29)

The following sections list the changes for 1.19.0.

Summary

  • Bugfix - Fix request validation on GraphAPI User updates: #3167
  • Bugfix - Network configuration in individual_services example: #3238
  • Bugfix - Improve gif thumbnails: #3305
  • Bugfix - Replace public mountpoint fileid with grant fileid: #3349
  • Bugfix - Fix error handling in GraphAPI GetUsers call: #3357
  • Change - Switch NATS backend: #3192
  • Change - Settings service now stores its data via metadata service: #3232
  • Change - Add remote item to mountpoint and fix spaceID: #3365
  • Change - Drop json config file support: #3366
  • Enhancement - Include etags in drives listing: #3267
  • Enhancement - Improve thumbnails API: #3272
  • Enhancement - Add space aliases: #3283
  • Enhancement - Log sharing events in audit service: #3301
  • Enhancement - Add password reset link to login page: #3329
  • Enhancement - Update reva to v2.1.0: #3330
  • Enhancement - Audit logger will now log file events: #3332
  • Enhancement - Update ownCloud Web to v5.3.0: #6561

Details

Changelog for 1.19.1 (2022-03-29)

The following sections list the changes for 1.19.1.

Summary

  • Bugfix - Return correct special item urls: #3419

Details

Changelog for 1.18.0 (2022-03-03)

The following sections list the changes for 1.18.0.

Summary

  • Bugfix - Align storage metadata GPRC bind port with other variable names: #3169
  • Bugfix - Make events settings configurable: #3214
  • Bugfix - Capabilities for password protected public links: #3229
  • Change - Unify file IDs: #3185
  • Enhancement - Re-Enabling web cache control: #3109
  • Enhancement - Add SPA conform fileserver for web: #3109
  • Enhancement - Add sorting to list Spaces: #3200
  • Enhancement - Change NATS port: #3210
  • Enhancement - Implement notifications service: #3217
  • Enhancement - Thumbnails in spaces: #3219
  • Enhancement - Update reva to v2.0.0: #3231
  • Enhancement - Update ownCloud Web to v5.2.0: #6506

Details

Changelog for 1.17.0 (2022-02-16)

The following sections list the changes for 1.17.0.

Summary

  • Bugfix - Fix configuration for space membership endpoint: #2893
  • Bugfix - Add ocis storage-auth-machine subcommand: #2910
  • Bugfix - Fix the default tracing provider: #2952
  • Bugfix - Fix retry handling for LDAP connections: #2974
  • Bugfix - Remove group memberships when deleting a user: #3027
  • Bugfix - Make the default grpc client use the registry settings: #3041
  • Bugfix - Use same jwt secret for accounts as for metadata storage: #3081
  • Change - Unify configuration and commands: #2818
  • Change - Update libre-graph-api to v0.3.0: #2858
  • Change - Return not found when updating non existent space: #2869
  • Change - Update the graph api: #2885
  • Change - Change log level default from debug to error: #3071
  • Change - Remove the ownCloud storage driver: #3072
  • Change - Functionality to restore spaces: #3092
  • Change - Extended Space Properties: #3141
  • Enhancement - Support signature auth in the public share auth middleware: #2831
  • Enhancement - Update REVA to v1.16.1-0.20220215130802-df1264deff58: #2878
  • Enhancement - Add new file url of the app provider to the ocs capabilities: #2884
  • Enhancement - Update ownCloud Web to v5.0.0: #2895
  • Enhancement - Add spaces capability: #2931
  • Enhancement - Add filter by driveType and id to /me/drives: #2946
  • Enhancement - Introduce User and Group Management capabilities on GraphAPI: #2947
  • Enhancement - Update REVA to v1.16.1-0.20220112085026-07451f6cd806: #2953
  • Enhancement - Add endpoint to retrieve a single space: #2978
  • Enhancement - Add graph endpoint to delete and purge spaces: #2979
  • Enhancement - Add permissions to graph drives: #3095
  • Enhancement - Consul as supported service registry: #3133
  • Enhancement - Provide Description when creating a space: #3167

Details

Changelog for 1.16.0 (2021-12-10)

The following sections list the changes for 1.16.0.

Summary

  • Bugfix - Fix claim selector based routing for basic auth: #2779
  • Bugfix - Fix using s3ng as the metadata storage backend: #2807
  • Bugfix - Disallow creation of a group with empty name via the OCS api: #2825
  • Bugfix - Use the CS3api up- and download workflow for the accounts service: #2837
  • Change - OIDC: fallback if IDP doesn't provide "preferred_username" claim: #2644
  • Change - Restructure Configuration Parsing: #2708
  • Change - Rename APP_PROVIDER_BASIC_* environment variables: #2812
  • Enhancement - Cleanup ocis-pkg config: #2813
  • Enhancement - Correct shutdown of services under runtime: #2843
  • Enhancement - Update ownCloud Web to v4.6.1: #2846
  • Enhancement - Update REVA to v1.17.0: #2849

Details

  • Bugfix - Fix claim selector based routing for basic auth: #2779

    We've fixed the claim selector based routing for requests using basic auth. Previously requests using basic auth have always been routed to the DefaultPolicy when using the claim selector despite the set cookie because the basic auth middleware fakes some OIDC claims.

    Now the cookie is checked before routing to the DefaultPolicy and therefore set cookie will also be respected for requests using basic auth.

    https://github.com/owncloud/ocis/pull/2779

  • Bugfix - Fix using s3ng as the metadata storage backend: #2807

    It is now possible to use s3ng as the metadata storage backend.

    https://github.com/owncloud/ocis/issues/2668 https://github.com/owncloud/ocis/pull/2807

  • Bugfix - Disallow creation of a group with empty name via the OCS api: #2825

    We've fixed the behavior for group creation on the OCS api, where it was possible to create a group with an empty name. This was is not possible on oC10 and is therefore also forbidden on oCIS to keep compatibility. This PR forbids the creation and also ensures the correct status code for both OCS v1 and OCS v2 apis.

    https://github.com/owncloud/ocis/issues/2823 https://github.com/owncloud/ocis/pull/2825

  • Bugfix - Use the CS3api up- and download workflow for the accounts service: #2837

    We've fixed the interaction of the accounts service with the metadata storage after bypassing the InitiateUpload and InitiateDownload have been removed from various storage drivers. The accounts service now uses the proper CS3apis workflow for up-