Bot releases are hidden (Show)

ocis - 2.0.0

Published by ownclouders almost 2 years ago

Changes in 2.0.0

Summary of all Changes between 1.20.0 and 2.0.0

Warning

BREAKING CHANGE in ocis deployments

In order to make every ocis storage provider ID unique by default, we needed to use a random uuidv4 during ocis init. Existing installations need to set this value explicitly or ocis will terminate after the upgrade.
To upgrade from 2.0.0-rc.1 to 2.0.0-rc.2, 2.0.0 or later you need to set GATEWAY_STORAGE_USERS_MOUNT_ID and STORAGE_USERS_MOUNT_ID to the same random uuidv4.

You can also add
storage_users:
 mount_id: some-random-uuid
gateway:
 storage_registry:
   storage_users_mount_id: some-random-uuid
to the ocis.yaml file which was created during initialisation

Changing the ID of the storage-users provider will change all

WebDAV Urls

FileIDs

SpaceIDs

Bookmarks

and will make all existing shares invalid.

The Android, Web and iOS clients will continue to work without interruptions. The Desktop Client sync connections need to be deleted and recreated.
Sorry for the inconvenience 😅

WORKAROUND - Not Recommended: You can avoid this by setting
GATEWAY_STORAGE_USERS_MOUNT_ID=1284d238-aa92-42ce-bdc4-0b0000009157 and
STORAGE_USERS_MOUNT_ID=1284d238-aa92-42ce-bdc4-0b0000009157
But this will cause problems later when two ocis instances want to federate.

BREAKING CHANGE for users in owncloud web

owncloud/web#6648: breaks existing bookmarks - they won't resolve anymore.

BREAKING CHANGE for developers in owncloud web

owncloud/web#6648: the appDefaults composables from web-pkg now work with drive aliases, concatenated with relative item paths, instead of webdav paths. If you use the appDefaults composables in your application it's likely that your code needs to be adapted.

Changelog

Bugfix - Fix configuration of mimetypes for the app registry: #4411
Bugfix - Disable default expiration for public links: #4445
Bugfix - Show help for some commands when unconfigured: #4405
Bugfix - Translations on login page: #7550
Bugfix - Autocreate IDP private key also if file exists but is empty: #4394
Bugfix - Rename extensions to services (leftover occurences): #4407
Bugfix - Fix DN parsing issues and sizelimit handling in libregraph/idm: #3631
Bugfix - Lower IDP token lifespans: #5077
Bugfix - Remove runtime kill and run commands: #3740
Bugfix - Check permissions when deleting Space: #3709
Bugfix - Do not reindex a space twice at the same time: #5001
Bugfix - Disable federation capabilities: #4864
Bugfix - Decomposedfs increase filelock duration factor: #5130
Bugfix - Find spaces by their name: #5044
Bugfix - Logging in on the wrong account when an email address is not unique: #4039
Bugfix - Allow empty environment variables: #3892
Bugfix - Remove unused transfer secret from app provider: #3798
Bugfix - Fix authentication for autoprovisioned users: #4616
Bugfix - Bring back the settings UI in Web: #4691
Bugfix - Fix cache stat table config: #4732
Bugfix - Adjust cache related configuration options: #5087
Bugfix - Make IDP secrets configurable via environment variables: #3744
Bugfix - CSP rules for silent token refresh in iframe: #4031
Bugfix - Enable debug server by default: #3827
Bugfix - Rework default role provisioning: #3900
Bugfix - Fix search index getting out of sync: #3851
Bugfix - Change the default value for PROXY_OIDC_INSECURE to false: #4601
Bugfix - Fix sharing jsoncs3 driver options: #4593
Bugfix - Inconsistency env var naming for LDAP filter configuration: #3890
Bugfix - Fix LDAP insecure options: #3897
Bugfix - Fix handling of invalid LDAP users and groups: #4274
Bugfix - Fix logging levels: #4102
Bugfix - Don't run auth-bearer service by default: #4692
Bugfix - Fix notifications service settings: #4652
Bugfix - Fix notifications Web UI url: #4998
Bugfix - Fix OCIS_RUN_SERVICES: #4133
Bugfix - Fix the OIDC provider cache: #4600
Bugfix - Fix permissions in REPORT: #4520
Bugfix - Set default name for public link via capabilities: #3834
Bugfix - Remove legacy accounts proxy routes: #3831
Bugfix - Fix unused config option GRAPH_SPACES_INSECURE: #55555
Bugfix - Remove unused configuration options: #3973
Bugfix - Remove static ocs user backend config: #4077
Bugfix - Remove unused OCS storage configuration: #3955
Bugfix - Fix the ocis search command: #3796
Bugfix - Rename search env variable for the grpc server address: #3800
Bugfix - Fix search in received shares: #4308
Bugfix - Fix search report: #7557
Bugfix - Render webdav permissions as string in search report: #4575
Bugfix - Fix make sensitive config values in the proxy's debug server: #4086
Bugfix - Fix the idm and settings extensions' admin user id configuration option: #3799
Bugfix - Mail notifications for group shares: #4714
Bugfix - Substring search for sharees: #547
Bugfix - Fix configuration validation for extensions' server commands: #3911
Bugfix - Fix startup error logging: #4093
Bugfix - Disable cache for selected static web assets: #4809
Bugfix - Fix multiple storage-users env variables: #3802
Bugfix - Thumbnails for /dav/xxx?preview=1 requests: #3567
Bugfix - Fix unfindable entities from shares/publicshares: #4651
Bugfix - Fix unrestricted quota on the graphAPI: #4363
Bugfix - Fix user autoprovisioning: #3893
Bugfix - Fix version info: #3953
Bugfix - Fix version number in status page: #3788
Bugfix - Fix CORS in frontend service: #4948
Bugfix - Graph service now forwards trace context: #4582
Bugfix - Fix the webdav URL of drive roots: #3706
Bugfix - Idp: Check if CA certificate if present: #3623
Bugfix - Fix graph endpoint: #3925
Bugfix - Initial role assingment with external IDM: #5045
Bugfix - Escape DN attribute value: #4117
Bugfix - Make IDP only wait for certs when using LDAP: #3965
Bugfix - Make ocdav service behave properly: #3957
Bugfix - Make storage users mount ids unique by default: #5091
Bugfix - Return proper errors when ocs/cloud/users is using the cs3 backend: #3483
Bugfix - Polish search: #4094
Bugfix - Fix the shareroot path in REPORT responses: #4859
Bugfix - Remove the storage-users event configuration: #4825
Bugfix - Trigger a rescan of spaces in the search index when items have changed: #4777
Bugfix - Save Katherine: #3823
Bugfix - Fix permission check in settings service: #4890
Bugfix - Fix Thumbnails for IDs without a trailing path: #3791
Bugfix - Space Creators can hand over spaces: #4244
Bugfix - Make tokeninfo endpoint unprotected: #4715
Bugfix - Update reva to version 2.12.0: #5092
Bugfix - URL encode the webdav url in the graph API: #3597
Bugfix - Store user passwords hashed in idm: #3778
Bugfix - Fix wopi access to public shares: #4631
Change - Update ocis packages and imports to V2: #3678
Change - Build service frontends with pnpm instead of yarn: #4878
Change - Load configuration files just from one directory: #3587
Change - Reduce permissions on docker image predeclared volumes: #3641
Change - Introduce ocis init and remove all default secrets: #3551
Change - Rename "uploads purge" command to "uploads clean": #4403
Change - Enable privatelinks by default: #4599
Change - The glauth and accounts services are removed: #3685
Change - Reduce drives in graph /me/drives API: #3629
Change - Switched default configuration to use libregraph/idm: #3331
Change - Rename MetadataUserID: #3671
Change - Use new space ID util functions: #3648
Change - Prevent access to disabled space: #3779
Change - Rename serviceUser to systemUser: #3673
Change - Use the spaceID on the cs3 resource: #4748
Change - Split MachineAuth from SystemUser: #3672
Enhancement - Add capability for alias links: #3983
Enhancement - Add curl to the oCIS OCI image: #4751
Enhancement - Add deprecation annotation: #3917
Enhancement - Add drives field to users endpoint: #4072
Enhancement - Add Email templating: #4564
Enhancement - Add FRONTEND_ENABLE_RESHARING env variable: #4023
Enhancement - We added e-mail subject templating: #4799
Enhancement - Add number of total matches to the search result: #4189
Enhancement - Add tracing to search: #5113
Enhancement - Add webURL to space root: #4588
Enhancement - Align service naming: #3606
Enhancement - Add acting user to the audit log: #3753
Enhancement - Configurable max lock cycles: #4965
Enhancement - Allow to configuring the reva cache store: #4627
Enhancement - Add audit events for created containers: #3941
Enhancement - Add support for REPORT requests to /dav/spaces URLs: #4661
Enhancement - Don't setup demo role assignments on default: #3661
Enhancement - Introduce "delete-all-spaces" permission: #4196
Enhancement - Deny access to resources: #4903
Enhancement - Improve validation of OIDC access tokens: #3841
Enhancement - Add /app/open-with-web endpoint: #4376
Enhancement - Add previewFileMimeTypes to web default config: #4414
Enhancement - Added language option to the app provider: #4399
Enhancement - Improve error log for "could not get user by claim" error: #4227
Enhancement - Improve login screen design: #4500
Enhancement - Add configuration options for mail authentication and encryption: #4443
Enhancement - Introduce service registry cache: #3833
Enhancement - Reintroduce user autoprovisioning in proxy: #3860
Enhancement - Allow to configure applications in Web: #4578
Enhancement - Added command to reset administrator password: #4084
Enhancement - Disable the color logging in docker compose examples: #871
Enhancement - Allow providing list of services NOT to start: #4254
Enhancement - Introduce insecure flag for smtp email notifications: #4279
Enhancement - Optional events in graph service: #55555
Enhancement - Fix behavior for foobar (in present tense): #4346
Enhancement - Add the "hidden" state to the search index: #5018
Enhancement - Restrict admins from self-removal: #3713
Enhancement - OCS get share now also handle received shares: #4322
Enhancement - Add config option to provide TLS certificate: #3818
Enhancement - Add descriptions for graph-explorer config: #3759
Enhancement - Add /me/changePassword endpoint to GraphAPI: #3063
Enhancement - Allow to setup TLS for grpc services: #4798
Enhancement - Generate signing key and encryption secret: #3909
Enhancement - Update IdP UI: #3493
Enhancement - Logging improvements: #4815
Enhancement - Wrap metadata storage with dedicated reva gateway: #3602
Enhancement - New migrate command for migrating shares and public shares: #3987
Enhancement - Default to tls 1.2: #4969
Enhancement - Add missing unprotected paths: #4454
Enhancement - Secure the nats connection with TLS: #4781
Enhancement - Product field in OCS version: #2918
Enhancement - Automatically orientate photos when generating thumbnails: #4477
Enhancement - Refactor extensions to services: #3980
Enhancement - Refactor the proxy service: #4401
Enhancement - Remove windows from ci & release makefile: #5026
Enhancement - Rename AUTH_BASIC_AUTH_PROVIDER envvar: #4966
Enhancement - Report parent id: #4757
Enhancement - Allow resharing: #3904
Enhancement - Rewrite of the request authentication middleware: #4374
Enhancement - Add initial version of the search extensions: #3635
Enhancement - Prohibit users from setting or listing other user's values: #4897
Enhancement - Add capability for public link single file edit: #6787
Enhancement - Added share_jail and projects feature flags in spaces capability: #3626
Enhancement - Use storageID when requesting special items: #4356
Enhancement - Add description tags to the thumbnails config structs: #3752
Enhancement - Make thumbnails service log less noisy: #3959
Enhancement - Add thumbnails support for tiff and bmp files: #4634
Enhancement - Update linkshare capabilities: #3579
Enhancement - Update reva: #3944
Enhancement - Update reva to version 2.7.2: #4115
Enhancement - Update reva to v2.7.4: #4294
Enhancement - Update reva to v2.8.0: #4444
Enhancement - Update reva to version 2.4.1: #3746
Enhancement - Update reva to version 2.5.1: #3932
Enhancement - Update Reva to version 2.10.0: #4522
Enhancement - Update reva to version 2.11.0: #4588
Enhancement - Update reva to v2.3.1: #3552
Enhancement - Update ownCloud Web to v5.5.0-rc.8: #6854
Enhancement - Update ownCloud Web to v5.5.0-rc.9: #6854
Enhancement - Update ownCloud Web to v5.5.0-rc.6: #6854
Enhancement - Update ownCloud Web to v5.7.0-rc.1: #4005
Enhancement - Update ownCloud Web to v6.0.0: #5153
Enhancement - Update ownCloud Web to v5.7.0-rc.4: #4140
Enhancement - Update ownCloud Web to v5.7.0-rc.8: #4314
Enhancement - Update ownCloud Web to v5.7.0-rc.10: #4439
Enhancement - Update ownCloud Web to v5.7.0: #4508
Enhancement - Expand personal drive on the graph user: #4357
Enhancement - Validate space names: #4955
Enhancement - Add descriptions to webdav configuration: #3755
Enhancement - Search service at the old webdav endpoint: #4118
Enhancement - Make it possible to configure a WOPI folderurl: #4716

ocis - 2.0.0-rc.2

Published by ownclouders almost 2 years ago

Changes between 2.0.0-rc.2 and 2.0.0-rc1

Warning
BREAKING Change: In order to make every ocis storage provider ID unique by default, we needed to use a random uuidv4 during ocis init. Existing istallations need to set this value explicitly or ocis will terminate after the upgrade.
To upgrade from 2.0.0-rc.1 to 2.0.0-rc.2 you need to set GATEWAY_STORAGE_USERS_MOUNT_ID and STORAGE_USERS_MOUNT_ID to the same random uuidv4.

You can also add
storage_users:
 mount_id: some-random-uuid
gateway:
 storage_registry:
   storage_users_mount_id: some-random-uuid
to the ocis.yaml file which was created during initialisation

Changing the ID of the storage-users provider will change all

WebDAV Urls

FileIDs

SpaceIDs

Bookmarks
and will make all existing shares invalid.
The Android, Web and iOS clients have continue to work without interruptions. The Desktop Client sync connections need to be deleted and recreated.
Sorry for the inconveniance 😅
WORKAROUND - Not Recommended: You can avoid this by setting
GATEWAY_STORAGE_USERS_MOUNT_ID=1284d238-aa92-42ce-bdc4-0b0000009157 and
STORAGE_USERS_MOUNT_ID=1284d238-aa92-42ce-bdc4-0b0000009157
But this will cause problems later when two ocis instances want to federate.

ocis

Bugfix - Lower IDP token lifespans: #5077
Bugfix - Do not reindex a space twice at the same time: #5001
Bugfix - Find spaces by their name: #5044
Bugfix - Adjust cache related configuration options: #5087
Bugfix - Fix notifications Web UI url: #4998
Bugfix - Initial role assingment with external IDM: #5045
Bugfix - Make storage users mount ids unique by default: #5091
Bugfix - Update reva: #5092
Enhancement - Add tracing to search: #5113
Enhancement - Add the "hidden" state to the search index: #5018
Enhancement - Remove windows from ci & release makefile: #5026
Enhancement - Update ownCloud Web to v6.0.0-rc.8: #5120

Reva

Bugfix cs3org/reva#3436: Allow updating to internal link
Bugfix cs3org/reva#3473: Decomposedfs fix revision download
Bugfix cs3org/reva#3482: Decomposedfs propagate sizediff
Bugfix cs3org/reva#3449: Don't leak space information on update drive
Bugfix cs3org/reva#3470: Add missing events for managing spaces
Bugfix cs3org/reva#3472: Fix an oCDAV error message
Bugfix cs3org/reva#3452: Fix access to spaces shared via public link
Bugfix cs3org/reva#3440: Set proper names and paths for space roots
Bugfix cs3org/reva#3437: Refactor delete error handling
Bugfix cs3org/reva#3432: Remove share jail fix
Bugfix cs3org/reva#3458: Set the Oc-Fileid header when copying items
Enhancement cs3org/reva#3441: Cover ocdav with more unit tests
Enhancement cs3org/reva#3493: Configurable filelock duration factor in decomposedfs
Enhancement cs3org/reva#3397: Reduce lock contention issues

Web

Bugfix owncloud/web#7946: Prevent shares from disappearing after sharing with groups
Bugfix owncloud/web#7936: Editing text files on public pages
Bugfix owncloud/web#7975: Prevent file upload when folder creation failed
Bugfix owncloud/web#8007: Missing password form on public drop page
Bugfix owncloud/web#7985: Prevent retrying uploads with status code 5xx
Bugfix owncloud/web#7941: Add origin check to Draw.io events
Bugfix owncloud/web#8006: Public link loading on role change
Bugfix owncloud/web#7962: Quota check when replacing files
Bugfix owncloud/web#7960: Display error messages in text editor
Bugfix owncloud/web#7956: Introduce "upload finalizing"-state in upload overlay
Bugfix owncloud/web#8011: Prevent unnecessary request when saving a user
Bugfix owncloud/web#7989: Versions on the "Shared with me"-page
Change owncloud/web#7935: Remove mediaSource and v-image-source

All Changes in 2.x

Bugfix - Fix configuration of mimetypes for the app registry: #4411
Bugfix - Disable default expiration for public links: #4445
Bugfix - Show help for some commands when unconfigured: #4405
Bugfix - Translations on login page: #7550
Bugfix - Autocreate IDP private key also if file exists but is empty: #4394
Bugfix - Rename extensions to services (leftover occurences): #4407
Bugfix - Fix DN parsing issues and sizelimit handling in libregraph/idm: #3631
Bugfix - Lower IDP token lifespans: #5077
Bugfix - Remove runtime kill and run commands: #3740
Bugfix - Check permissions when deleting Space: #3709
Bugfix - Do not reindex a space twice at the same time: #5001
Bugfix - Disable federation capabilities: #4864
Bugfix - Decomposedfs increase filelock duration factor: #5130
Bugfix - Find spaces by their name: #5044
Bugfix - Logging in on the wrong account when an email address is not unique: #4039
Bugfix - Allow empty environment variables: #3892
Bugfix - Remove unused transfer secret from app provider: #3798
Bugfix - Fix authentication for autoprovisioned users: #4616
Bugfix - Bring back the settings UI in Web: #4691
Bugfix - Fix cache stat table config: #4732
Bugfix - Adjust cache related configuration options: #5087
Bugfix - Make IDP secrets configurable via environment variables: #3744
Bugfix - CSP rules for silent token refresh in iframe: #4031
Bugfix - Enable debug server by default: #3827
Bugfix - Rework default role provisioning: #3900
Bugfix - Fix search index getting out of sync: #3851
Bugfix - Change the default value for PROXY_OIDC_INSECURE to false: #4601
Bugfix - Fix sharing jsoncs3 driver options: #4593
Bugfix - Inconsistency env var naming for LDAP filter configuration: #3890
Bugfix - Fix LDAP insecure options: #3897
Bugfix - Fix handling of invalid LDAP users and groups: #4274
Bugfix - Fix logging levels: #4102
Bugfix - Don't run auth-bearer service by default: #4692
Bugfix - Fix notifications service settings: #4652
Bugfix - Fix notifications Web UI url: #4998
Bugfix - Fix OCIS_RUN_SERVICES: #4133
Bugfix - Fix the OIDC provider cache: #4600
Bugfix - Fix permissions in REPORT: #4520
Bugfix - Set default name for public link via capabilities: #3834
Bugfix - Remove legacy accounts proxy routes: #3831
Bugfix - Fix unused config option GRAPH_SPACES_INSECURE: #55555
Bugfix - Remove unused configuration options: #3973
Bugfix - Remove static ocs user backend config: #4077
Bugfix - Remove unused OCS storage configuration: #3955
Bugfix - Fix the ocis search command: #3796
Bugfix - Rename search env variable for the grpc server address: #3800
Bugfix - Fix search in received shares: #4308
Bugfix - Fix search report: #7557
Bugfix - Render webdav permissions as string in search report: #4575
Bugfix - Fix make sensitive config values in the proxy's debug server: #4086
Bugfix - Fix the idm and settings extensions' admin user id configuration option: #3799
Bugfix - Mail notifications for group shares: #4714
Bugfix - Substring search for sharees: #547
Bugfix - Fix configuration validation for extensions' server commands: #3911
Bugfix - Fix startup error logging: #4093
Bugfix - Disable cache for selected static web assets: #4809
Bugfix - Fix multiple storage-users env variables: #3802
Bugfix - Thumbnails for /dav/xxx?preview=1 requests: #3567
Bugfix - Fix unfindable entities from shares/publicshares: #4651
Bugfix - Fix unrestricted quota on the graphAPI: #4363
Bugfix - Fix user autoprovisioning: #3893
Bugfix - Fix version info: #3953
Bugfix - Fix version number in status page: #3788
Bugfix - Fix CORS in frontend service: #4948
Bugfix - Graph service now forwards trace context: #4582
Bugfix - Fix the webdav URL of drive roots: #3706
Bugfix - Idp: Check if CA certificate if present: #3623
Bugfix - Fix graph endpoint: #3925
Bugfix - Initial role assingment with external IDM: #5045
Bugfix - Escape DN attribute value: #4117
Bugfix - Make IDP only wait for certs when using LDAP: #3965
Bugfix - Make ocdav service behave properly: #3957
Bugfix - Make storage users mount ids unique by default: #5091
Bugfix - Return proper errors when ocs/cloud/users is using the cs3 backend: #3483
Bugfix - Polish search: #4094
Bugfix - Fix the shareroot path in REPORT responses: #4859
Bugfix - Remove the storage-users event configuration: #4825
Bugfix - Trigger a rescan of spaces in the search index when items have changed: #4777
Bugfix - Save Katherine: #3823
Bugfix - Fix permission check in settings service: #4890
Bugfix - Fix Thumbnails for IDs without a trailing path: #3791
Bugfix - Space Creators can hand over spaces: #4244
Bugfix - Make tokeninfo endpoint unprotected: #4715
Bugfix - Update reva to version 2.12.0: #5092
Bugfix - URL encode the webdav url in the graph API: #3597
Bugfix - Store user passwords hashed in idm: #3778
Bugfix - Fix wopi access to public shares: #4631
Change - Update ocis packages and imports to V2: #3678
Change - Build service frontends with pnpm instead of yarn: #4878
Change - Load configuration files just from one directory: #3587
Change - Reduce permissions on docker image predeclared volumes: #3641
Change - Introduce ocis init and remove all default secrets: #3551
Change - Rename "uploads purge" command to "uploads clean": #4403
Change - Enable privatelinks by default: #4599
Change - The glauth and accounts services are removed: #3685
Change - Reduce drives in graph /me/drives API: #3629
Change - Switched default configuration to use libregraph/idm: #3331
Change - Rename MetadataUserID: #3671
Change - Use new space ID util functions: #3648
Change - Prevent access to disabled space: #3779
Change - Rename serviceUser to systemUser: #3673
Change - Use the spaceID on the cs3 resource: #4748
Change - Split MachineAuth from SystemUser: #3672
Enhancement - Add capability for alias links: #3983
Enhancement - Add curl to the oCIS OCI image: #4751
Enhancement - Add drives field to users endpoint: #4072
Enhancement - Add Email templating: #4564
Enhancement - Add FRONTEND_ENABLE_RESHARING env variable: #4023
Enhancement - We added e-mail subject templating: #4799
Enhancement - Add number of total matches to the search result: #4189
Enhancement - Add tracing to search: #5113
Enhancement - Add webURL to space root: #4588
Enhancement - Align service naming: #3606
Enhancement - Add acting user to the audit log: #3753
Enhancement - Configurable max lock cycles: #4965
Enhancement - Allow to configuring the reva cache store: #4627
Enhancement - Add audit events for created containers: #3941
Enhancement - Add support for REPORT requests to /dav/spaces URLs: #4661
Enhancement - Don't setup demo role assignments on default: #3661
Enhancement - Introduce "delete-all-spaces" permission: #4196
Enhancement - Deny access to resources: #4903
Enhancement - Improve validation of OIDC access tokens: #3841
Enhancement - Add /app/open-with-web endpoint: #4376
Enhancement - Add previewFileMimeTypes to web default config: #4414
Enhancement - Added language option to the app provider: #4399
Enhancement - Improve error log for "could not get user by claim" error: #4227
Enhancement - Improve login screen design: #4500
Enhancement - Add configuration options for mail authentication and encryption: #4443
Enhancement - Introduce service registry cache: #3833
Enhancement - Reintroduce user autoprovisioning in proxy: #3860
Enhancement - Allow to configure applications in Web: #4578
Enhancement - Added command to reset administrator password: #4084
Enhancement - Disable the color logging in docker compose examples: #871
Enhancement - Allow providing list of services NOT to start: #4254
Enhancement - Introduce insecure flag for smtp email notifications: #4279
Enhancement - Optional events in graph service: #55555
Enhancement - Fix behavior for foobar (in present tense): #4346
Enhancement - Add the "hidden" state to the search index: #5018
Enhancement - Restrict admins from self-removal: #3713
Enhancement - OCS get share now also handle received shares: #4322
Enhancement - Add config option to provide TLS certificate: #3818
Enhancement - Add descriptions for graph-explorer config: #3759
Enhancement - Add /me/changePassword endpoint to GraphAPI: #3063
Enhancement - Allow to setup TLS for grpc services: #4798
Enhancement - Generate signing key and encryption secret: #3909
Enhancement - Update IdP UI: #3493
Enhancement - Logging improvements: #4815
Enhancement - Wrap metadata storage with dedicated reva gateway: #3602
Enhancement - New migrate command for migrating shares and public shares: #3987
Enhancement - Default to tls 1.2: #4969
Enhancement - Add missing unprotected paths: #4454
Enhancement - Secure the nats connection with TLS: #4781
Enhancement - Product field in OCS version: #2918
Enhancement - Automatically orientate photos when generating thumbnails: #4477
Enhancement - Refactor extensions to services: #3980
Enhancement - Refactor the proxy service: #4401
Enhancement - Remove windows from ci & release makefile: #5026
Enhancement - Rename AUTH_BASIC_AUTH_PROVIDER envvar: #4966
Enhancement - Report parent id: #4757
Enhancement - Allow resharing: #3904
Enhancement - Rewrite of the request authentication middleware: #4374
Enhancement - Add initial version of the search extensions: #3635
Enhancement - Prohibit users from setting or listing other user's values: #4897
Enhancement - Add capability for public link single file edit: #6787
Enhancement - Added share_jail and projects feature flags in spaces capability: #3626
Enhancement - Use storageID when requesting special items: #4356
Enhancement - Add description tags to the thumbnails config structs: #3752
Enhancement - Make thumbnails service log less noisy: #3959
Enhancement - Add thumbnails support for tiff and bmp files: #4634
Enhancement - Update linkshare capabilities: #3579
Enhancement - Update reva: #3944
Enhancement - Update reva to version 2.7.2: #4115
Enhancement - Update reva to v2.7.4: #4294
Enhancement - Update reva to v2.8.0: #4444
Enhancement - Update reva to version 2.4.1: #3746
Enhancement - Update reva to version 2.5.1: #3932
Enhancement - Update Reva to version 2.10.0: #4522
Enhancement - Update reva to version 2.11.0: #4588
Enhancement - Update reva to v2.3.1: #3552
Enhancement - Update ownCloud Web to v5.5.0-rc.8: #6854
Enhancement - Update ownCloud Web to v5.5.0-rc.9: #6854
Enhancement - Update ownCloud Web to v5.5.0-rc.6: #6854
Enhancement - Update ownCloud Web to v5.7.0-rc.1: #4005
Enhancement - Update ownCloud Web to v6.0.0-rc.6: #4970
Enhancement - Update ownCloud Web to v6.0.0-rc.8: #5120
Enhancement - Update ownCloud Web to v5.7.0-rc.4: #4140
Enhancement - Update ownCloud Web to v5.7.0-rc.8: #4314
Enhancement - Update ownCloud Web to v5.7.0-rc.10: #4439
Enhancement - Update ownCloud Web to v5.7.0: #4508
Enhancement - Expand personal drive on the graph user: #4357
Enhancement - Validate space names: #4955
Enhancement - Add descriptions to webdav configuration: #3755
Enhancement - Search service at the old webdav endpoint: #4118
Enhancement - Make it possible to configure a WOPI folderurl: #4716

ocis - 2.0.0-rc.1

Published by micbar almost 2 years ago

Changes in 2.0.0-rc.1

The following sections list the changes for 2.0.0-rc.1.

Summary

Bugfix - Fix configuration of mimetypes for the app registry: #4411
Bugfix - Disable default expiration for public links: #4445
Bugfix - Show help for some commands when unconfigured: #4405
Bugfix - Translations on login page: #7550
Bugfix - Autocreate IDP private key also if file exists but is empty: #4394
Bugfix - Rename extensions to services (leftover occurences): #4407
Bugfix - Fix DN parsing issues and sizelimit handling in libregraph/idm: #3631
Bugfix - Remove runtime kill and run commands: #3740
Bugfix - Check permissions when deleting Space: #3709
Bugfix - Disable federation capabilities: #4864
Bugfix - Logging in on the wrong account when an email address is not unique: #4039
Bugfix - Allow empty environment variables: #3892
Bugfix - Remove unused transfer secret from app provider: #3798
Bugfix - Fix authentication for autoprovisioned users: #4616
Bugfix - Bring back the settings UI in Web: #4691
Bugfix - Fix cache stat table config: #4732
Bugfix - Make IDP secrets configurable via environment variables: #3744
Bugfix - CSP rules for silent token refresh in iframe: #4031
Bugfix - Enable debug server by default: #3827
Bugfix - Rework default role provisioning: #3900
Bugfix - Fix search index getting out of sync: #3851
Bugfix - Change the default value for PROXY_OIDC_INSECURE to false: #4601
Bugfix - Fix sharing jsoncs3 driver options: #4593
Bugfix - Inconsistency env var naming for LDAP filter configuration: #3890
Bugfix - Fix LDAP insecure options: #3897
Bugfix - Fix handling of invalid LDAP users and groups: #4274
Bugfix - Fix logging levels: #4102
Bugfix - Don't run auth-bearer service by default: #4692
Bugfix - Fix notifications service settings: #4652
Bugfix - Fix OCIS_RUN_SERVICES: #4133
Bugfix - Fix the OIDC provider cache: #4600
Bugfix - Fix permissions in REPORT: #4520
Bugfix - Set default name for public link via capabilities: #3834
Bugfix - Remove legacy accounts proxy routes: #3831
Bugfix - Fix unused config option GRAPH_SPACES_INSECURE: #55555
Bugfix - Remove unused configuration options: #3973
Bugfix - Remove static ocs user backend config: #4077
Bugfix - Remove unused OCS storage configuration: #3955
Bugfix - Fix the ocis search command: #3796
Bugfix - Rename search env variable for the grpc server address: #3800
Bugfix - Fix search in received shares: #4308
Bugfix - Fix search report: #7557
Bugfix - Render webdav permissions as string in search report: #4575
Bugfix - Fix make sensitive config values in the proxy's debug server: #4086
Bugfix - Fix the idm and settings extensions' admin user id configuration option: #3799
Bugfix - Mail notifications for group shares: #4714
Bugfix - Substring search for sharees: #547
Bugfix - Fix configuration validation for extensions' server commands: #3911
Bugfix - Fix startup error logging: #4093
Bugfix - Disable cache for selected static web assets: #4809
Bugfix - Fix multiple storage-users env variables: #3802
Bugfix - Thumbnails for /dav/xxx?preview=1 requests: #3567
Bugfix - Fix unfindable entities from shares/publicshares: #4651
Bugfix - Fix unrestricted quota on the graphAPI: #4363
Bugfix - Fix user autoprovisioning: #3893
Bugfix - Fix version info: #3953
Bugfix - Fix version number in status page: #3788
Bugfix - Fix CORS in frontend service: #4948
Bugfix - Graph service now forwards trace context: #4582
Bugfix - Fix the webdav URL of drive roots: #3706
Bugfix - Idp: Check if CA certificate if present: #3623
Bugfix - Fix graph endpoint: #3925
Bugfix - Escape DN attribute value: #4117
Bugfix - Make IDP only wait for certs when using LDAP: #3965
Bugfix - Make ocdav service behave properly: #3957
Bugfix - Return proper errors when ocs/cloud/users is using the cs3 backend: #3483
Bugfix - Polish search: #4094
Bugfix - Fix the shareroot path in REPORT responses: #4859
Bugfix - Remove the storage-users event configuration: #4825
Bugfix - Trigger a rescan of spaces in the search index when items have changed: #4777
Bugfix - Save Katherine: #3823
Bugfix - Fix permission check in settings service: #4890
Bugfix - Fix Thumbnails for IDs without a trailing path: #3791
Bugfix - Space Creators can hand over spaces: #4244
Bugfix - Make tokeninfo endpoint unprotected: #4715
Bugfix - URL encode the webdav url in the graph API: #3597
Bugfix - Store user passwords hashed in idm: #3778
Bugfix - Fix wopi access to public shares: #4631
Change - Update ocis packages and imports to V2: #3678
Change - Build service frontends with pnpm instead of yarn: #4878
Change - Load configuration files just from one directory: #3587
Change - Reduce permissions on docker image predeclared volumes: #3641
Change - Introduce ocis init and remove all default secrets: #3551
Change - Rename "uploads purge" command to "uploads clean": #4403
Change - Enable privatelinks by default: #4599
Change - The glauth and accounts services are removed: #3685
Change - Reduce drives in graph /me/drives API: #3629
Change - Switched default configuration to use libregraph/idm: #3331
Change - Rename MetadataUserID: #3671
Change - Use new space ID util functions: #3648
Change - Prevent access to disabled space: #3779
Change - Rename serviceUser to systemUser: #3673
Change - Use the spaceID on the cs3 resource: #4748
Change - Split MachineAuth from SystemUser: #3672
Enhancement - Add capability for alias links: #3983
Enhancement - Add curl to the oCIS OCI image: #4751
Enhancement - Add drives field to users endpoint: #4072
Enhancement - Add Email templating: #4564
Enhancement - Add FRONTEND_ENABLE_RESHARING env variable: #4023
Enhancement - We added e-mail subject templating: #4799
Enhancement - Add number of total matches to the search result: #4189
Enhancement - Add webURL to space root: #4588
Enhancement - Align service naming: #3606
Enhancement - Add acting user to the audit log: #3753
Enhancement - Configurable max lock cycles: #4964
Enhancement - Allow to configuring the reva cache store: #4627
Enhancement - Add audit events for created containers: #3941
Enhancement - Add support for REPORT requests to /dav/spaces URLs: #4661
Enhancement - Don't setup demo role assignments on default: #3661
Enhancement - Introduce "delete-all-spaces" permission: #4196
Enhancement - Deny access to resources: #4903
Enhancement - Improve validation of OIDC access tokens: #3841
Enhancement - Add /app/open-with-web endpoint: #4376
Enhancement - Add previewFileMimeTypes to web default config: #4414
Enhancement - Added language option to the app provider: #4399
Enhancement - Improve error log for "could not get user by claim" error: #4227
Enhancement - Improve login screen design: #4500
Enhancement - Add configuration options for mail authentication and encryption: #4443
Enhancement - Introduce service registry cache: #3833
Enhancement - Reintroduce user autoprovisioning in proxy: #3860
Enhancement - Allow to configure applications in Web: #4578
Enhancement - Added command to reset administrator password: #4084
Enhancement - Disable the color logging in docker compose examples: #871
Enhancement - Allow providing list of services NOT to start: #4254
Enhancement - Introduce insecure flag for smtp email notifications: #4279
Enhancement - Optional events in graph service: #55555
Enhancement - Fix behavior for foobar (in present tense): #4346
Enhancement - Restrict admins from self-removal: #3713
Enhancement - OCS get share now also handle received shares: #4322
Enhancement - Add config option to provide TLS certificate: #3818
Enhancement - Add descriptions for graph-explorer config: #3759
Enhancement - Add /me/changePassword endpoint to GraphAPI: #3063
Enhancement - Allow to setup TLS for grpc services: #4798
Enhancement - Generate signing key and encryption secret: #3909
Enhancement - Update IdP UI: #3493
Enhancement - Logging improvements: #4815
Enhancement - Wrap metadata storage with dedicated reva gateway: #3602
Enhancement - New migrate command for migrating shares and public shares: #3987
Enhancement - Default to tls 1.2: #4969
Enhancement - Add missing unprotected paths: #4454
Enhancement - Secure the nats connection with TLS: #4781
Enhancement - Product field in OCS version: #2918
Enhancement - Automatically orientate photos when generating thumbnails: #4477
Enhancement - Refactor extensions to services: #3980
Enhancement - Refactor the proxy service: #4401
Enhancement - Rename AUTH_BASIC_AUTH_PROVIDER envvar: #4966
Enhancement - Report parent id: #4757
Enhancement - Allow resharing: #3904
Enhancement - Rewrite of the request authentication middleware: #4374
Enhancement - Add initial version of the search extensions: #3635
Enhancement - Prohibit users from setting or listing other user's values: #4897
Enhancement - Add capability for public link single file edit: #6787
Enhancement - Added share_jail and projects feature flags in spaces capability: #3626
Enhancement - Use storageID when requesting special items: #4356
Enhancement - Add description tags to the thumbnails config structs: #3752
Enhancement - Make thumbnails service log less noisy: #3959
Enhancement - Add thumbnails support for tiff and bmp files: #4634
Enhancement - Update linkshare capabilities: #3579
Enhancement - Update reva: #3944
Enhancement - Update reva to version 2.7.2: #4115
Enhancement - Update reva to v2.7.4: #4294
Enhancement - Update reva to v2.8.0: #4444
Enhancement - Update reva to version 2.4.1: #3746
Enhancement - Update reva to version 2.5.1: #3932
Enhancement - Update Reva to version 2.10.0: #4522
Enhancement - Update reva to version 2.11.0: #4588
Enhancement - Update reva to v2.3.1: #3552
Enhancement - Update ownCloud Web to v5.5.0-rc.8: #6854
Enhancement - Update ownCloud Web to v5.5.0-rc.9: #6854
Enhancement - Update ownCloud Web to v5.5.0-rc.6: #6854
Enhancement - Update ownCloud Web to v5.7.0-rc.1: #4005
Enhancement - Update ownCloud Web to v6.0.0-rc.6: #4970
Enhancement - Update ownCloud Web to v5.7.0-rc.4: #4140
Enhancement - Update ownCloud Web to v5.7.0-rc.8: #4314
Enhancement - Update ownCloud Web to v5.7.0-rc.10: #4439
Enhancement - Update ownCloud Web to v5.7.0: #4508
Enhancement - Expand personal drive on the graph user: #4357
Enhancement - Validate space names: #4955
Enhancement - Add descriptions to webdav configuration: #3755
Enhancement - Search service at the old webdav endpoint: #4118
Enhancement - Make it possible to configure a WOPI folderurl: #4716

ocis - 2.0.0-beta.8

Published by ownclouders about 2 years ago

Changes in 2.0.0-beta.8

Summary

Bugfix - Fix configuration of mimetypes for the app registry: #4411
Bugfix - Disable default expiration for public links: #4445
Bugfix - Show help for some commands when unconfigured: #4405
Bugfix - Translations on login page: #7550
Bugfix - Autocreate IDP private key also if file exists but is empty: #4394
Bugfix - Rename extensions to services (leftover occurences): #4407
Bugfix - Fix DN parsing issues and sizelimit handling in libregraph/idm: #3631
Bugfix - Remove runtime kill and run commands: #3740
Bugfix - Check permissions when deleting Space: #3709
Bugfix - Logging in on the wrong account when an email address is not unique: #4039
Bugfix - Allow empty environment variables: #3892
Bugfix - Remove unused transfer secret from app provider: #3798
Bugfix - Make IDP secrets configurable via environment variables: #3744
Bugfix - CSP rules for silent token refresh in iframe: #4031
Bugfix - Enable debug server by default: #3827
Bugfix - Rework default role provisioning: #3900
Bugfix - Fix search index getting out of sync: #3851
Bugfix - Inconsistency env var naming for LDAP filter configuration: #3890
Bugfix - Fix LDAP insecure options: #3897
Bugfix - Fix handling of invalid LDAP users and groups: #4274
Bugfix - Fix logging levels: #4102
Bugfix - Fix OCIS_RUN_SERVICES: #4133
Bugfix - Fix permissions in REPORT: #4520
Bugfix - Set default name for public link via capabilities: #3834
Bugfix - Remove legacy accounts proxy routes: #3831
Bugfix - Fix unused config option GRAPH_SPACES_INSECURE: #55555
Bugfix - Remove unused configuration options: #3973
Bugfix - Remove static ocs user backend config: #4077
Bugfix - Remove unused OCS storage configuration: #3955
Bugfix - Fix the ocis search command: #3796
Bugfix - Rename search env variable for the grpc server address: #3800
Bugfix - Fix search in received shares: #4308
Bugfix - Fix search report: #7557
Bugfix - Fix make sensitive config values in the proxy's debug server: #4086
Bugfix - Fix the idm and settings extensions' admin user id configuration option: #3799
Bugfix - Substring search for sharees: #547
Bugfix - Fix configuration validation for extensions' server commands: #3911
Bugfix - Fix startup error logging: #4093
Bugfix - Fix multiple storage-users env variables: #3802
Bugfix - Thumbnails for /dav/xxx?preview=1 requests: #3567
Bugfix - Fix unrestricted quota on the graphAPI: #4363
Bugfix - Fix user autoprovisioning: #3893
Bugfix - Fix version info: #3953
Bugfix - Fix version number in status page: #3788
Bugfix - Fix the webdav URL of drive roots: #3706
Bugfix - Idp: Check if CA certificate if present: #3623
Bugfix - Fix graph endpoint: #3925
Bugfix - Escape DN attribute value: #4117
Bugfix - Make IDP only wait for certs when using LDAP: #3965
Bugfix - Make ocdav service behave properly: #3957
Bugfix - Return proper errors when ocs/cloud/users is using the cs3 backend: #3483
Bugfix - Polish search: #4094
Bugfix - Save Katherine: #3823
Bugfix - Fix Thumbnails for IDs without a trailing path: #3791
Bugfix - Space Creators can hand over spaces: #4244
Bugfix - URL encode the webdav url in the graph API: #3597
Bugfix - Store user passwords hashed in idm: #3778
Change - Update ocis packages and imports to V2: #3678
Change - Load configuration files just from one directory: #3587
Change - Reduce permissions on docker image predeclared volumes: #3641
Change - Introduce ocis init and remove all default secrets: #3551
Change - Rename "uploads purge" command to "uploads clean": #4403
Change - The glauth and accounts services are removed: #3685
Change - Reduce drives in graph /me/drives API: #3629
Change - Switched default configuration to use libregraph/idm: #3331
Change - Rename MetadataUserID: #3671
Change - Use new space ID util functions: #3648
Change - Prevent access to disabled space: #3779
Change - Rename serviceUser to systemUser: #3673
Change - Use the spaceID on the cs3 resource: #4748
Change - Split MachineAuth from SystemUser: #3672
Enhancement - Add capability for alias links: #3983
Enhancement - Add drives field to users endpoint: #4072
Enhancement - Add FRONTEND_ENABLE_RESHARING env variable: #4023
Enhancement - Add number of total matches to the search result: #4189
Enhancement - Align service naming: #3606
Enhancement - Add acting user to the audit log: #3753
Enhancement - Add audit events for created containers: #3941
Enhancement - Don't setup demo role assignments on default: #3661
Enhancement - Introduce "delete-all-spaces" permission: #4196
Enhancement - Improve validation of OIDC access tokens: #3841
Enhancement - Add /app/open-with-web endpoint: #4376
Enhancement - Add previewFileMimeTypes to web default config: #4414
Enhancement - Added language option to the app provider: #4399
Enhancement - Improve error log for "could not get user by claim" error: #4227
Enhancement - Improve login screen design: #4500
Enhancement - Add configuration options for mail authentication and encryption: #4443
Enhancement - Introduce service registry cache: #3833
Enhancement - Reintroduce user autoprovisioning in proxy: #3860
Enhancement - Added command to reset administrator password: #4084
Enhancement - Disable the color logging in docker compose examples: #871
Enhancement - Allow providing list of services NOT to start: #4254
Enhancement - Introduce insecure flag for smtp email notifications: #4279
Enhancement - Optional events in graph service: #55555
Enhancement - Fix behavior for foobar (in present tense): #4346
Enhancement - OCS get share now also handle received shares: #4322
Enhancement - Add config option to provide TLS certificate: #3818
Enhancement - Add descriptions for graph-explorer config: #3759
Enhancement - Add /me/changePassword endpoint to GraphAPI: #3063
Enhancement - Generate signing key and encryption secret: #3909
Enhancement - Update IdP UI: #3493
Enhancement - Wrap metadata storage with dedicated reva gateway: #3602
Enhancement - New migrate command for migrating shares and public shares: #3987
Enhancement - Add missing unprotected paths: #4454
Enhancement - Product field in OCS version: #2918
Enhancement - Automatically orientate photos when generating thumbnails: #4477
Enhancement - Refactor extensions to services: #3980
Enhancement - Refactor the proxy service: #4401
Enhancement - Allow resharing: #3904
Enhancement - Rewrite of the request authentication middleware: #4374
Enhancement - Add initial version of the search extensions: #3635
Enhancement - Add capability for public link single file edit: #6787
Enhancement - Added share_jail and projects feature flags in spaces capability: #3626
Enhancement - Use storageID when requesting special items: #4356
Enhancement - Add description tags to the thumbnails config structs: #3752
Enhancement - Make thumbnails service log less noisy: #3959
Enhancement - Update linkshare capabilities: #3579
Enhancement - Update reva: #3944
Enhancement - Update reva to version 2.7.2: #4115
Enhancement - Update reva to v2.7.4: #4294
Enhancement - Update reva to v2.8.0: #4444
Enhancement - Update reva to version 2.4.1: #3746
Enhancement - Update reva to version 2.5.1: #3932
Enhancement - Update Reva to version 2.10.0: #4522
Enhancement - Update reva to v2.3.1: #3552
Enhancement - Update ownCloud Web to v5.5.0-rc.8: #6854
Enhancement - Update ownCloud Web to v5.5.0-rc.9: #6854
Enhancement - Update ownCloud Web to v5.5.0-rc.6: #6854
Enhancement - Update ownCloud Web to v5.7.0-rc.1: #4005
Enhancement - Update ownCloud Web to v5.7.0-rc.4: #4140
Enhancement - Update ownCloud Web to v5.7.0-rc.8: #4314
Enhancement - Update ownCloud Web to v5.7.0-rc.10: #4439
Enhancement - Update ownCloud Web to v5.7.0: #4508
Enhancement - Expand personal drive on the graph user: #4357
Enhancement - Add descriptions to webdav configuration: #3755
Enhancement - Search service at the old webdav endpoint: #4118

Details

Bugfix - Fix configuration of mimetypes for the app registry: #4411

We've fixed the configuration option for mimetypes in the app registry. Previously the
default config would always be merged over the user provided configuration. Now the default
mimetype configuration is only used if the user does not providy any mimetype configuration
(like it is already done in the proxy with the routes configuration).

https://github.com/owncloud/ocis/pull/4411
Bugfix - Disable default expiration for public links: #4445

The default expiration for public links was enabled in the capabilities without providing a
(then required) default amount of days for clients to pick a reasonable expiration date upon
link creation. This has been fixed by disabling the default expiration for public links in the
capabilities. With this configuration clients will no longer set a default expiration date
upon link creation.

https://github.com/owncloud/ocis/issues/4445
https://github.com/owncloud/ocis/pull/4475
Bugfix - Show help for some commands when unconfigured: #4405

We've fixed some commands to show the help also when oCIS is not yet configured. Previously the
help was not displayed to the user but instead a configuration validation error.

https://github.com/owncloud/ocis/pull/4405
Bugfix - Translations on login page: #7550

We've fixed several translations on the login page. Also, the browser language is now being
used properly to determine the language.

https://github.com/owncloud/web/issues/7550
https://github.com/owncloud/ocis/pull/4504
Bugfix - Autocreate IDP private key also if file exists but is empty: #4394

We've fixed the behavior for the IDP private key generation so that a private key is also
generated when the file already exists but is empty.

https://github.com/owncloud/ocis/pull/4394
Bugfix - Rename extensions to services (leftover occurences): #4407

We've already renamed extensions to services in previous PRs and this PR peforms this rename
for leftover occurences.

https://github.com/owncloud/ocis/pull/4407
Bugfix - Fix DN parsing issues and sizelimit handling in libregraph/idm: #3631

We fixed a couple on issues in libregraph/idm related to correctly parsing LDAP DNs for
usernames contain characters that require escaping.

Also libregraph/idm was not properly returning "Size limit exceeded" errors when the result
set exceeded the requested size.

https://github.com/owncloud/ocis/issues/3631
https://github.com/owncloud/ocis/issues/4039
https://github.com/owncloud/ocis/issues/4078
Bugfix - Remove runtime kill and run commands: #3740

We've removed the kill and run commands from the oCIS runtime. If these dynamic capabilities
are needed, one should switch to a full fledged supervisor and start oCIS as individual
services.

If one wants to start a only a subset of services, this is still possible by setting
OCIS_RUN_EXTENSIONS.

https://github.com/owncloud/ocis/pull/3740
Bugfix - Check permissions when deleting Space: #3709

Check for manager permissions when deleting spaces. Do not allow deleting spaces via dav
service

https://github.com/owncloud/ocis/pull/3709
Bugfix - Logging in on the wrong account when an email address is not unique: #4039

The default configuration to use the same logon attribute for all services. Also, if the
configured logon attribute is not unique access to ocis is denied.

https://github.com/owncloud/ocis/issues/4039
Bugfix - Allow empty environment variables: #3892

We've fixed the behavior for empty environment variables, that previously would not have
overwritten default values. Therefore it had the same effect like not setting the environment
variable. We now check if the environment variable is set at all and if so, we also allow to
override a default value with an empty value.

https://github.com/owncloud/ocis/pull/3892
Bugfix - Remove unused transfer secret from app provider: #3798

We've fixed the startup of the app provider by removing the startup dependency on a configured
transfer secret, which was not used. This only happend if you start the app provider without
runtime (eg. ocis app-provider server) and didn't have configured all oCIS secrets.

https://github.com/owncloud/ocis/pull/3798
Bugfix - Make IDP secrets configurable via environment variables: #3744

We've fixed the configuration options of the IDP to make the IDP secrets again configurable via
environment variables.

https://github.com/owncloud/ocis/pull/3744
Bugfix - CSP rules for silent token refresh in iframe: #4031

When renewing the access token silently web needs to be opened in an iframe. This was previously
blocked by a restrictive iframe CSP rule in the Secure middleware and has now been fixed by
allow self for iframes.

https://github.com/owncloud/web/issues/7030
https://github.com/owncloud/ocis/pull/4031
Bugfix - Enable debug server by default: #3827

We've fixed the behavior for the audit, idm, nats and notifications extensions, that did not
start their debug server by default.

https://github.com/owncloud/ocis/pull/3827
Bugfix - Rework default role provisioning: #3900

We fixed a race condition in the default role assignment code that could lead to users loosing
privileges. When authenticating before the settings service was fully running.

https://github.com/owncloud/ocis/issues/3900
Bugfix - Fix search index getting out of sync: #3851

We fixed a problem where the search index got out of sync with child elements of a parent
containing special characters.

https://github.com/owncloud/ocis/pull/3851
Bugfix - Inconsistency env var naming for LDAP filter configuration: #3890

There was a naming inconsitency for the enviroment variables used to define LDAP filters for
user and groups queries. Some services used LDAP_USER_FILTER while others used
LDAP_USERFILTER. This is now changed to use LDAP_USER_FILTER and LDAP_GROUP_FILTER.

Note: If your oCIS setup is using an LDAP configuration that has any of the *_LDAP_USERFILTER
or *_LDAP_GROUPFILTER environment variables set, please update the configuration to use
the new unified names *_LDAP_USER_FILTER respectively *_LDAP_GROUP_FILTER instead.

https://github.com/owncloud/ocis/issues/3890
Bugfix - Fix LDAP insecure options: #3897

We've fixed multiple LDAP insecure options:
- The Graph LDAP insecure option default was set to true and now defaults to false. This is possible after #3888, since the Graph also now uses the LDAP CAcert by default.
- The Graph LDAP insecure option was configurable by the environment variable OCIS_INSECURE, which was replaced by the dedicated LDAP_INSECURE variable. This variable is also used by all other services using LDAP.
- The IDP insecure option for the user backend now also picks up configuration from LDAP_INSECURE.
https://github.com/owncloud/ocis/pull/3897
Bugfix - Fix handling of invalid LDAP users and groups: #4274

We fixed an issue where ocis would exit with a panic when LDAP users or groups where missing
required attributes (e.g. the id)

https://github.com/owncloud/ocis/issues/4274
Bugfix - Fix logging levels: #4102

We've fixed the configuration of logging levels. Previously it was not possible to configure a
service with a more or less verbose log level then all other services when running in the
supervised / runtime mode ocis server.

For example OCIS_LOG_LEVEL=error PROXY_LOG_LEVEL=debug ocis server did not configure
error logging for all services except the proxy, which should be on debug logging. This is now
fixed and working properly.

Also we fixed the format of go-micro logs to always default to error level. Previously this was
only ensured in the supervised / runtime mode.

https://github.com/owncloud/ocis/issues/4089
https://github.com/owncloud/ocis/pull/4102
Bugfix - Fix OCIS_RUN_SERVICES: #4133

OCIS_RUN_SERVICES was introduced as successor to OCIS_RUN_EXTENSIONS because we
wanted to call oCIS "core" extensions services. We kept OCIS_RUN_EXTENSIONS for backwards
compatibility reasons.

It turned out, that setting OCIS_RUN_SERVICES has no effect since introduced.
OCIS_RUN_EXTENSIONS. OCIS_RUN_EXTENSIONS was working fine all the time.

We now fixed OCIS_RUN_SERVICES, so that you can use it as a equivalent replacement for
OCIS_RUN_EXTENSIONS

https://github.com/owncloud/ocis/pull/4133
Bugfix - Fix permissions in REPORT: #4520

The REPORT endpoint wouldn't return any permissions on personal spaces Now it does. Also bumps
reva

https://github.com/owncloud/ocis/pull/4520
Bugfix - Set default name for public link via capabilities: #3834

We have now added a default name for public link shares which is communicated via the
capabilities.

https://github.com/owncloud/ocis/issues/1237
https://github.com/owncloud/ocis/pull/3834
Bugfix - Remove legacy accounts proxy routes: #3831

We've removed the legacy accounts routes from the proxy default config. There were no longer
used since the switch to IDM as the default user backend. Also accounts is no longer part of the
oCIS binary and therefore should not be part of the proxy default route config.

https://github.com/owncloud/ocis/pull/3831
Bugfix - Fix unused config option GRAPH_SPACES_INSECURE: #55555

We've removed the unused config option GRAPH_SPACES_INSECURE from the GRAPH service.

https://github.com/owncloud/ocis/pull/55555
Bugfix - Remove unused configuration options: #3973

We've removed multiple unused configuration options:
- STORAGE_SYSTEM_DATAPROVIDER_INSECURE, see also cs3org/reva#2993 -
  STORAGE_USERS_DATAPROVIDER_INSECURE, see also cs3org/reva#2993 -
  STORAGE_SYSTEM_TEMP_FOLDER, see also cs3org/reva#2993 -
  STORAGE_USERS_TEMP_FOLDER, see also cs3org/reva#2993 - WEB_UI_CONFIG_VERSION, see
  also owncloud/web#7130 - GATEWAY_COMMIT_SHARE_TO_STORAGE_REF, see also
  cs3org/reva#3017
https://github.com/owncloud/ocis/pull/3973
Bugfix - Remove static ocs user backend config: #4077

We've remove the OCS_ACCOUNT_BACKEND_TYPE configuration option. It was intended to allow
configuration of different user backends for the ocs service. Right now the ocs service only
has a "cs3" backend. Therefor it's a static entry and not configurable.

https://github.com/owncloud/ocis/pull/4077
Bugfix - Remove unused OCS storage configuration: #3955

We've removed the unused OCS configuration option OCS_STORAGE_USERS_DRIVER.

https://github.com/owncloud/ocis/pull/3955
Bugfix - Fix the ocis search command: #3796

We've fixed the behavior for ocis search, which didn't show further help when not all secrets
have been configured. It also was not possible to start the search service standalone from the
oCIS binary without configuring all oCIS secrets, even they were not needed by the search
service.

https://github.com/owncloud/ocis/pull/3796
Bugfix - Rename search env variable for the grpc server address: #3800

We've fixed the gprc server address configuration environment variable by renaming it from
ACCOUNTS_GRPC_ADDR to SEARCH_GRPC_ADDR

https://github.com/owncloud/ocis/pull/3800
Bugfix - Fix search in received shares: #4308

We fixed a problem where items in received shares were not found.

https://github.com/owncloud/ocis/issues/4308
Bugfix - Fix search report: #7557

There were multiple issues with REPORT search responses from webdav. Also we want it to be
consistent with PROPFIND responses. * the remote.php prefix was missing from the href
(added even though not neccessary) * the ids were formatted wrong, they should look different
for shares and spaces. * the name of the resource was missing * the shareid was missing (for
shares) * the prop shareroot (containing the name of the share root) was missing * the
permissions prop was empty

https://github.com/owncloud/web/issues/7557
https://github.com/owncloud/ocis/pull/4484
Bugfix - Fix make sensitive config values in the proxy's debug server: #4086

We've fixed a security issue of the proxy's debug server config report endpoint. Previously
sensitive configuration values haven't been masked. We now mask these values.

https://github.com/owncloud/ocis/pull/4086
Bugfix - Fix the idm and settings extensions' admin user id configuration option: #3799

We've fixed the admin user id configuration of the settings and idm extensions. The have
previously only been configurable via the oCIS shared configuration and therefore have been
undocumented for the extensions. This config option is now part of both extensions'
configuration and can now also be used when the extensions are compiled standalone.

https://github.com/owncloud/ocis/pull/3799
Bugfix - Substring search for sharees: #547

We fixed searching for sharees to be no longer case-sensitive. With this we introduced two new
settings for the users and groups services: "group_substring_filter_type" for the group
services and "user_substring_filter_type" for the users service. They allow to set the type
of LDAP filter that is used for substring user searches. Possible values are: "initial",
"final" and "any" to do either prefix, suffix or full substring searches. Both settings
default to "initial".

Also a new option "search_min_length" was added for the "frontend" service. It allows to
configure the minimum number of characters to enter before a search for Sharees is started.
This setting is e.g. evaluated by the web ui via the capabilities endpoint.

https://github.com/owncloud/ocis/issues/547
Bugfix - Fix configuration validation for extensions' server commands: #3911

We've fixed the configuration validation for the extensions' server commands. Before this
fix error messages have occurred when trying to start individual services without certain
oCIS fullstack configuration values.

We now no longer do the common oCIS configuration validation for extensions' server commands
and now rely only on the extensions' validation function.

https://github.com/owncloud/ocis/pull/3911
Bugfix - Fix startup error logging: #4093

We've fixed the startup error logging, so that users will the reason for a failed startup even on
"error" log level. Previously they would only see it on "info" log level. Also in a lot of cases
the reason for the failed shutdown was omitted.

https://github.com/owncloud/ocis/pull/4093
Bugfix - Fix multiple storage-users env variables: #3802

We've fixed multiple environment variable configuration options for the storage-users
extension:
- STORAGE_USERS_GRPC_ADDR was used to configure both the address of the http and grpc server. This resulted in a failing startup of the storage-users extension if this config option is set, because the service tries to double-bind the configured port (one time for each of the http and grpc server). You can now configure the grpc server's address with the environment variable STORAGE_USERS_GRPC_ADDR and the http server's address with the environment variable STORAGE_USERS_HTTP_ADDR
- STORAGE_USERS_S3NG_USERS_PROVIDER_ENDPOINT was used to configure the permissions service endpoint for the S3NG driver and was therefore renamed to STORAGE_USERS_S3NG_PERMISSIONS_ENDPOINT
- It's now possible to configure the permissions service endpoint for all storage drivers with the environment variable STORAGE_USERS_PERMISSION_ENDPOINT, which was previously only used by the S3NG driver.
https://github.com/owncloud/ocis/pull/3802
Bugfix - Thumbnails for /dav/xxx?preview=1 requests: #3567

We've added the thumbnail rendering for /dav/xxx?preview=1,
/remote.php/webdav/{relative path}?preview=1 and /webdav/{relative path}?preview=1 requests, which was previously not supported because of missing routes. It
now returns the same thumbnails as for /remote.php/dav/xxx?preview=1.

https://github.com/owncloud/ocis/pull/3567
Bugfix - Fix unrestricted quota on the graphAPI: #4363

Unrestricted quota needs to show 0 on the API. It is not good for clients when the property is
missing.

https://github.com/owncloud/ocis/pull/4363
Bugfix - Fix user autoprovisioning: #3893

We've fixed the autoprovsioning feature that was introduced in beta2. Due to a bug the role
assignment of the privileged user that is used to create accounts wasn't propagated correctly
to the graph service.

https://github.com/owncloud/ocis/issues/3893
Bugfix - Fix version info: #3953

We've fixed the version info that is displayed when you run:
- ocis version - ocis <extension name> version
Since #2918, these commands returned an empty version only.

https://github.com/owncloud/ocis/pull/3953
Bugfix - Fix version number in status page: #3788

We needed to undo the version number changes on the status page to keep compatibility for legacy
clients. We added a new field productversion for the actual version of the product.

https://github.com/owncloud/ocis/issues/3788
https://github.com/owncloud/ocis/pull/3805
Bugfix - Fix the webdav URL of drive roots: #3706

Fixed the webdav URL of drive roots in the graph API.

https://github.com/owncloud/ocis/issues/3706
https://github.com/owncloud/ocis/pull/3916
Bugfix - Idp: Check if CA certificate if present: #3623

Upon first start with the default configurtation the idm service creates a server
certificate, that might not be finished before the idp service is starting. Add a check to idp
similar to what the user, group, and auth-providers implement.

https://github.com/owncloud/ocis/issues/3623
Bugfix - Fix graph endpoint: #3925

We have added the memberOf slice to the /users endpoint and the member slice to the /group
endpoint

https://github.com/owncloud/ocis/issues/3925
Bugfix - Escape DN attribute value: #4117

Escaped the DN attribute value on creating users and groups.

https://github.com/owncloud/ocis/pull/4117
Bugfix - Make IDP only wait for certs when using LDAP: #3965

When configuring cs3 as the backend the IDP no longer waits for an LDAP certificate to appear.

https://github.com/owncloud/ocis/pull/3965
Bugfix - Make ocdav service behave properly: #3957

The ocdav service now properly passes the tracing config and shuts down when receiving a kill
signal.

https://github.com/owncloud/ocis/pull/3957
Bugfix - Return proper errors when ocs/cloud/users is using the cs3 backend: #3483

The ocs API was just exiting with a fatal error on any update request, when configured for the cs3
backend. Now it returns a proper error.

https://github.com/owncloud/ocis/issues/3483
Bugfix - Polish search: #4094

We improved the feedback when providing invalid search queries and added support for limiting
the number of results returned.

https://github.com/owncloud/ocis/pull/4094
Bugfix - Save Katherine: #3823

SpaceManager user katherine was removed with the demo user switch. Now she comes back

https://github.com/owncloud/ocis/issues/3823
https://github.com/owncloud/ocis/pull/3824
Bugfix - Fix Thumbnails for IDs without a trailing path: #3791

The routes in the chi router were not matching thumbnail requests without a trailing path.

https://github.com/owncloud/ocis/pull/3791
Bugfix - Space Creators can hand over spaces: #4244

Set no owner on non personal spaces to be able to pass the space manager role to a new user.

https://github.com/owncloud/ocis/pull/4244
Bugfix - URL encode the webdav url in the graph API: #3597

Fixed the webdav URL in the drives responses. Without encoding the URL could be broken by files
with spaces in the file name.

https://github.com/owncloud/ocis/issues/3538
https://github.com/owncloud/ocis/pull/3597
Bugfix - Store user passwords hashed in idm: #3778

Support for hashing user passwords was added to libregraph/idm. The graph API will now set
userpasswords using the LDAP Modify Extended Operation (RFC3062). In the default
configuration passwords will be hashed using the argon2id algorithm.

https://github.com/owncloud/ocis/issues/3778
https://github.com/owncloud/ocis/pull/4053
Change - Update ocis packages and imports to V2: #3678

This needs to be done in preparation for the major version bump in ocis.

https://github.com/owncloud/ocis/pull/3678
Change - Load configuration files just from one directory: #3587

We've changed the configuration file loading behavior and are now only loading configuration
files from ONE single directory. This directory can be set on compile time or via an environment
variable on startup (OCIS_CONFIG_DIR).

We are using following configuration default paths:
- Docker images: /etc/ocis/ - Binary releases: $HOME/.ocis/config/
https://github.com/owncloud/ocis/pull/3587
Change - Reduce permissions on docker image predeclared volumes: #3641

We've lowered the permissions on the predeclared volumes of the oCIS docker image from 777 to
750.

This change doesn't affect you, unless you use the docker image with the non default uid/guid to
start oCIS (default is 1000:1000).

https://github.com/owncloud/ocis/pull/3641
Change - Introduce ocis init and remove all default secrets: #3551

We've removed all default secrets and the hardcoded UUID of the user admin. This means you
can't start oCIS any longer without setting these via environment variable or configuration
file.

In order to make this easy for you, we introduced a new command: ocis init. You can run this
command before starting oCIS with ocis server and it will bootstrap you a configuration file
for a secure oCIS instance.

https://github.com/owncloud/ocis/issues/3524
https://github.com/owncloud/ocis/pull/3551
https://github.com/owncloud/ocis/pull/3743
Change - Rename "uploads purge" command to "uploads clean": #4403

We've renamed the storage-users service's "uploads purge" command to "upload clean".

https://github.com/owncloud/ocis/pull/4403
Change - The glauth and accounts services are removed: #3685

After switching the default configuration to libregraph/idm we could remove the glauth and
accounts services from the source code (they were already disabled by default with the
previous release)

https://github.com/owncloud/ocis/pull/3685
Change - Reduce drives in graph /me/drives API: #3629

Reduced the drives in the graph /me/drives API to only the drives the user has access to. The
endpoint /drives will list all drives when the user has the permission.

https://github.com/owncloud/ocis/pull/3629
Change - Switched default configuration to use libregraph/idm: #3331

We switched the default configuration of oCIS to use the "idm" service (based on
libregraph/idm) as the standard source for user and group information. The accounts and
glauth services are no longer enabled by default and will be removed with an upcoming release.

https://github.com/owncloud/ocis/pull/3331
https://github.com/owncloud/ocis/pull/3633
Change - Rename MetadataUserID: #3671

MetadataUserID is renamed to SystemUserID including yaml tags and env vars

https://github.com/owncloud/ocis/pull/3671
Change - Use new space ID util functions: #3648

Changed code to use the new space ID util functions so that everything works with the new spaces
ID format.

https://github.com/owncloud/ocis/pull/3648
https://github.com/owncloud/ocis/pull/3669
Change - Prevent access to disabled space: #3779

Previously managers where allowed to edit the space even when it is disabled This is no longer
possible

https://github.com/owncloud/ocis/pull/3779
Change - Rename serviceUser to systemUser: #3673

We renamed serviceUser to systemUser in all configs and vars including yaml-tags and env vars

https://github.com/owncloud/ocis/pull/3673
Change - Use the spaceID on the cs3 resource: #4748

We cleaned up the CS3Api to use a proper attribute for the space id.

https://github.com/owncloud/ocis/pull/4748
Change - Split MachineAuth from SystemUser: #3672

We now have two different APIKeys: MachineAuth for the machine-auth service and SystemUser
for the system user used e.g. by settings service

https://github.com/owncloud/ocis/pull/3672
Enhancement - Add capability for alias links: #3983

For better UX clients need a way to discover if alias links are supported by the server. We added a
capability under "files_sharing/public/alias"

https://github.com/owncloud/ocis/issues/3983
https://github.com/owncloud/ocis/pull/3991
Enhancement - Add drives field to users endpoint: #4072

We have added $expand=drives to the /users/{id}/ endpoint using the user filter
implemented in reva.

https://github.com/owncloud/ocis/pull/4072
https://github.com/cs3org/reva/pull/3046
https://github.com/owncloud/ocis/pull/4323
Enhancement - Add FRONTEND_ENABLE_RESHARING env variable: #4023

We introduced resharing which was enabled by default, this is now configurable and can be
enabled by setting the env FRONTEND_ENABLE_RESHARING to true. By default resharing is
now disabled.

https://github.com/owncloud/ocis/pull/4023
Enhancement - Add number of total matches to the search result: #4189

The search service now returns the number of total matches alongside the results.

https://github.com/owncloud/ocis/issues/4189
Enhancement - Align service naming: #3606

We now reflect the configured service names when listing them in the ocis runtime

https://github.com/owncloud/ocis/issues/3603
https://github.com/owncloud/ocis/pull/3606
Enhancement - Add acting user to the audit log: #3753

Added the acting user to the events in the audit log.

https://github.com/owncloud/ocis/issues/3753
https://github.com/owncloud/ocis/pull/3992
Enhancement - Add audit events for created containers: #3941

Handle the event ContainerCreated in the audit service.

https://github.com/owncloud/ocis/pull/3941
Enhancement - Don't setup demo role assignments on default: #3661

Added a configuration option to explicitly tell the settings service to generate the default
role assignments.

https://github.com/owncloud/ocis/issues/3661
https://github.com/owncloud/ocis/pull/3956
Enhancement - Introduce "delete-all-spaces" permission: #4196

This is assigned to the Admin role by default and allows to cleanup orphaned spaces (e.g. where
the owner as been deleted)

https://github.com/owncloud/ocis/issues/4196
Enhancement - Improve validation of OIDC access tokens: #3841

Previously OIDC access tokes were only validated by requesting the userinfo from the IDP. It is
now possible to enable additional verification if the IDP issues access tokens in JWT format.
In that case the oCIS proxy service will now verify the signature of the token using the public
keys provided by jwks_uri endpoint of the IDP. It will also verify if the issuer claim (iss)
matches the expected values.

The new validation is enabled by setting PROXY_OIDC_ACCESS_TOKEN_VERIFY_METHOD to
"jwt". Which is also the default. Setting it to "none" will disable the feature.

https://github.com/owncloud/ocis/issues/3841
https://github.com/owncloud/ocis/pull/4227
Enhancement - Add /app/open-with-web endpoint: #4376

We've added an /app/open-with-web endpoint to the app provider, so that clients that are no
browser or have only limited browser access can also open apps with the help of a Web URL.

https://github.com/owncloud/ocis/pull/4376
https://github.com/cs3org/reva/pull/3143
Enhancement - Add previewFileMimeTypes to web default config: #4414

We've added previewFileMimeTypes to the web default config, so web can determine which
preview types are supported by the backend.

https://github.com/owncloud/ocis/pull/4414
Enhancement - Added language option to the app provider: #4399

We've added a language option to the app provider which will in the end be passed to the app a user
opens so that the web ui is displayed in the users language.

https://github.com/owncloud/ocis/issues/4367
https://github.com/owncloud/ocis/pull/4399
https://github.com/cs3org/reva/pull/3156
Enhancement - Improve error log for "could not get user by claim" error: #4227

We've improved the error log for "could not get user by claim" error where previously only the
"nil" error has been logged. Now we're logging the message from the transport.

https://github.com/owncloud/ocis/pull/4227
Enhancement - Improve login screen design: #4500

We've improved the design of the login screen to match with the general design used in Web.

https://github.com/owncloud/web/issues/7552
https://github.com/owncloud/ocis/pull/4500
Enhancement - Add configuration options for mail authentication and encryption: #4443

We've added configuration options to configure the authentication and encryption for
sending mails in the notifications service.

Furthermore there is now a distinguished configuration option for the username to use for
authentication against the mail server. This allows you to customize the sender address to
your liking. For example sender addresses like my oCIS instance <[email protected]> are
now possible, too.

https://github.com/owncloud/ocis/pull/4443
Enhancement - Introduce service registry cache: #3833

We've improved the service registry / service discovery by setting up registry caching (TTL
20s), so that not every requests has to do a lookup on the registry.

https://github.com/owncloud/ocis/pull/3833
Enhancement - Reintroduce user autoprovisioning in proxy: #3860

With the removal of the accounts service autoprovisioning of users upon first login was no
longer possible. We added this feature back for the cs3 user backend in the proxy. Leveraging
the libregraph users API for creating the users.

https://github.com/owncloud/ocis/pull/3860
Enhancement - Added command to reset administrator password: #4084

The new command ocis idm resetpassword allows to reset the administrator password when ocis
is not running. So it is possible to recover setups where the admin password was lost.

https://github.com/owncloud/ocis/issues/4084
https://github.com/owncloud/ocis/pull/4365
Enhancement - Disable the color logging in docker compose examples: #871

Disabled the color logging in the example docker compose deployments. Although colored logs
are helpful during the development process they may be undesired in other situations like
production deployments, where the logs aren't consumed by humans directly but instead by a log
aggregator.

https://github.com/owncloud/ocis/issues/871
https://github.com/owncloud/ocis/pull/3935
Enhancement - Allow providing list of services NOT to start: #4254

Until now if one wanted to use a custom version of a service, one needed to provide
OCIS_RUN_SERVICES which is a list of all services to start. Now one can provide
OCIS_EXCLUDE_RUN_SERVICES which is a list of only services not to start

https://github.com/owncloud/ocis/pull/4254
Enhancement - Introduce insecure flag for smtp email notifications: #4279

We've introduced the NOTIFICATIONS_SMTP_INSECURE configuration option, that let's you
skip certificate verification for smtp email servers.

https://github.com/owncloud/ocis/pull/4279
Enhancement - Optional events in graph service: #55555

We've changed the graph service so that you also can start it without any event bus. Therefore
you need to set GRAPH_EVENTS_ENDPOINT to an empty string. The graph API will not emit any
events in this case.

https://github.com/owncloud/ocis/pull/55555
Enhancement - Fix behavior for foobar (in present tense): #4346

We've added the configuration option PROXY_OIDC_REWRITE_WELLKNOWN to rewrite the
/.well-known/openid-configuration endpoint. If active, it serves the
/.well-known/openid-configuration response of the original IDP configured in
OCIS_OIDC_ISSUER / PROXY_OIDC_ISSUER. This is needed so that the Desktop Client,
Android Client and iOS Client can discover the OIDC identity provider.

Previously this rewrite needed to be performed with an external proxy as NGINX or Traefik if an
external IDP was used.

https://github.com/owncloud/ocis/issues/2819
https://github.com/owncloud/ocis/issues/3280
https://github.com/owncloud/ocis/pull/4346
Enhancement - OCS get share now also handle received shares: #4322

Requesting a specific share can now also correctly map the path to the mountpoint if the
requested share is a received share.

https://github.com/owncloud/ocis/issues/4322
https://github.com/owncloud/ocis/pull/4539
Enhancement - Add config option to provide TLS certificate: #3818

Added a config option to the graph service to provide a TLS certificate to be used to verify the
LDAP server certificate.

https://github.com/owncloud/ocis/issues/3818
https://github.com/owncloud/ocis/pull/3888
Enhancement - Add descriptions for graph-explorer config: #3759

Added descriptions tags to the graph-explorer config tags so that they will be included in the
documentation.

https://github.com/owncloud/ocis/pull/3759
Enhancement - Add /me/changePassword endpoint to GraphAPI: #3063

When using the builtin user management, allow users to update their own password via the
graph/v1.0/me/changePassword endpoint.

https://github.com/owncloud/ocis/issues/3063
https://github.com/owncloud/ocis/pull/3705
Enhancement - Generate signing key and encryption secret: #3909

The idp service now automatically generates a signing key and encryption secret when they
don't exist. This will enable service restarts without invalidating existing sessions.

https://github.com/owncloud/ocis/issues/3909
https://github.com/owncloud/ocis/pull/4022
Enhancement - Update IdP UI: #3493

Updated our fork of the lico IdP UI. This also updated the used npm dependencies. The design
didn't change.

https://github.com/owncloud/ocis/issues/3493
https://github.com/owncloud/ocis/pull/4074
Enhancement - Wrap metadata storage with dedicated reva gateway: #3602

We wrapped the metadata storage in a minimal reva instance with a dedicated gateway, including
static storage registry, static auth registry, in memory userprovider, machine
authprovider and demo permissions service. This allows us to preconfigure the service user
for the ocis settings service, share and public share providers.

https://github.com/owncloud/ocis/pull/3602
https://github.com/owncloud/ocis/pull/3647
Enhancement - New migrate command for migrating shares and public shares: #3987

We added a new migrate subcommand which can be used to migrate shares and public shares
between different share and publicshare managers.

https://github.com/owncloud/ocis/pull/3987
https://github.com/owncloud/ocis/pull/4019
Enhancement - Add missing unprotected paths: #4454

Added missing unprotected paths for the text-editor, preview, pdf-viewer, draw-io and
index.html to the authentication middleware.

https://github.com/owncloud/ocis/pull/4454
https://github.com/owncloud/ocis/pull/4458
Enhancement - Product field in OCS version: #2918

We've added a new field to the OCS Version, which is supposed to announce the product name. The
web ui as a client will make use of it to make the backend product and version available (e.g. for
easier bug reports).

https://github.com/owncloud/ocis/pull/2918
Enhancement - Automatically orientate photos when generating thumbnails: #4477

The thumbnailer now makes use of the exif orientation information to automatically orientate
pictures before generating thumbnails.

https://github.com/owncloud/ocis/issues/4477
https://github.com/owncloud/ocis/pull/4513
Enhancement - Refactor extensions to services: #3980

We have decided to name all extensions, we maintain and provide with ocis, services from here on
to avoid confusion between external extensions and code we provide and maintain.

https://github.com/owncloud/ocis/pull/3980
Enhancement - Refactor the proxy service: #4401

The routes of the proxy service now have a "unprotected" flag. This is used by the
authentication middleware to determine if the request needs to be blocked when missing
authentication or not.

https://github.com/owncloud/ocis/issues/4401
https://github.com/owncloud/ocis/issues/4497
https://github.com/owncloud/ocis/pull/4461
https://github.com/owncloud/ocis/pull/4498
https://github.com/owncloud/ocis/pull/4514
Enhancement - Allow resharing: #3904

This will allow resharing files

https://github.com/owncloud/ocis/pull/3904
Enhancement - Rewrite of the request authentication middleware: #4374

There were some flaws in the authentication middleware which were resolved by this rewrite.
This rewrite also introduced the need to manually mark certain paths as "unprotected" if
requests to these paths must not be authenticated.

https://github.com/owncloud/ocis/pull/4374
Enhancement - Add initial version of the search extensions: #3635

It is now possible to search for files and directories by their name using the web UI. Therefor
new search extension indexes files in a persistent local index.

https://github.com/owncloud/ocis/pull/3635
Enhancement - Add capability for public link single file edit: #6787

It is now possible to share a single file by link with edit permissions. Therefore we need a
public share capability to enable that feature in the clients. At the same time, we improved the
WebDAV permissions for public links.

https://github.com/owncloud/web/pull/6787
https://github.com/owncloud/ocis/pull/3538
Enhancement - Added share_jail and projects feature flags in spaces capability: #3626

We've added feature flags to the spaces capability to indicate to clients which features are
supposed to be shown to users.

https://github.com/owncloud/ocis/pull/3626
Enhancement - Use storageID when requesting special items: #4356

We need to use the storageID when requesting the special items of a space to spare a registry
lookup and improve the performance

https://github.com/owncloud/ocis/pull/4356
Enhancement - Add description tags to the thumbnails config structs: #3752

Added description tags to the config structs in the thumbnails service so they will be included
in the config documentation.

Important If you ran ocis init with the v2.0.0-alpha* version then you have to manually add the transfer_secret to the ocis.yaml.

Just open the ocis.yaml config file and look for the thumbnails section. Then add a random
transfer_secret so that it looks like this:

yaml thumbnails: thumbnail: transfer_secret: <put random value here>

https://github.com/owncloud/ocis/pull/3752
Enhancement - Make thumbnails service log less noisy: #3959

Reduced the log severity when no thumbnail was found from warn to debug. This reduces the spam in
the logs.

https://github.com/owncloud/ocis/pull/3959
Enhancement - Update linkshare capabilities: #3579

We have updated the capabilities regarding password enforcement and expiration dates of
public links. They were previously hardcoded in a way that didn't reflect the actual backend
functionality anymore.

https://github.com/owncloud/ocis/pull/3579
Enhancement - Update reva: #3944

Changelog for reva 2.6.1 (2022-06-27) =======================================

The following sections list the changes in reva 2.6.1 relevant to reva users. The changes are
ordered by importance.

Summary -------
- Bugfix cs3org/reva#2998: Fix 0-byte-uploads
- Enhancement cs3org/reva#3983: Add capability for alias links
- Enhancement cs3org/reva#3000: Make less stat requests
- Enhancement cs3org/reva#3003: Distinguish GRPC FAILED_PRECONDITION and ABORTED codes
- Enhancement cs3org/reva#3005: Remove unused HomeMapping variable
Changelog for reva 2.6.0 (2022-06-21) =======================================

The following sections list the changes in reva 2.6.0 relevant to reva users. The changes are
ordered by importance.
- Bugfix cs3org/reva#2985: Make stat requests route based on storage providerid
- Bugfix cs3org/reva#2987: Let archiver handle all error codes
- Bugfix cs3org/reva#2994: Bugfix errors when loading shares
- Bugfix cs3org/reva#2996: Do not close share dump channels
- Bugfix cs3org/reva#2993: Remove unused configuration
- Bugfix cs3org/reva#2950: Bugfix sharing with space ref
- Bugfix cs3org/reva#2991: Make sharesstorageprovider get accepted share
- Change cs3org/reva#2877: Enable resharing
- Change cs3org/reva#2984: Update CS3Apis
- Enhancement cs3org/reva#3753: Add executant to the events
- Enhancement cs3org/reva#2820: Instrument GRPC and HTTP requests with OTel
- Enhancement cs3org/reva#2975: Leverage shares space storageid and type when listing shares
- Enhancement cs3org/reva#3882: Explicitly return on ocdav move requests with body
- Enhancement cs3org/reva#2932: Stat accepted shares mountpoints, configure existing share updates
- Enhancement cs3org/reva#2944: Improve owncloudsql connection management
- Enhancement cs3org/reva#2962: Per service TracerProvider
- Enhancement cs3org/reva#2911: Allow for dumping and loading shares
- Enhancement cs3org/reva#2938: Sharpen tooling
https://github.com/owncloud/ocis/pull/3944
https://github.com/owncloud/ocis/pull/3975
https://github.com/owncloud/ocis/pull/3982
https://github.com/owncloud/ocis/pull/4000
https://github.com/owncloud/ocis/pull/4006
Enhancement - Update reva to version 2.7.2: #4115

Changelog for reva 2.7.2 (2022-07-18) =======================================
- Bugfix cs3org/reva#3079: Allow empty permissions
- Bugfix cs3org/reva#3084: Spaces related permissions and providerID cleanup
- Bugfix cs3org/reva#3083: Add space id to ItemTrashed event
Changelog for reva 2.7.1 (2022-07-15) =======================================
- Bugfix cs3org/reva#3080: Make dataproviders return more headers
- Enhancement cs3org/reva#3046: Add user filter
Changelog for reva 2.7.0 (2022-07-15) =======================================
- Bugfix cs3org/reva#3075: Check permissions of the move operation destination
- Bugfix cs3org/reva#3036:
- Bugfix revad with EOS docker image
- Bugfix cs3org/reva#3037: Add uid- and gidNumber to LDAP queries
- Bugfix cs3org/reva#4061: Forbid resharing with higher permissions
- Bugfix cs3org/reva#3017: Removed unused gateway config "commit_share_to_storage_ref"
- Bugfix cs3org/reva#3031: Return proper response code when detecting recursive copy/move operations
- Bugfix cs3org/reva#3071: Make CS3 sharing drivers parse legacy resource id
- Bugfix cs3org/reva#3035: Prevent cross space move
- Bugfix cs3org/reva#3074: Send storage provider and space id to wopi server
- Bugfix cs3org/reva#3022: Improve the sharing internals
- Bugfix cs3org/reva#2977: Test valid filename on spaces tus upload
- Change cs3org/reva#3006: Use spaceID on the cs3api
- Enhancement cs3org/reva#3043: Introduce LookupCtx for index interface
- Enhancement cs3org/reva#3009: Prevent recursive copy/move operations
- Enhancement cs3org/reva#2977: Skip space lookup on space propfind
https://github.com/owncloud/ocis/pull/4115
https://github.com/owncloud/ocis/pull/4201
https://github.com/owncloud/ocis/pull/4203
https://github.com/owncloud/ocis/pull/4025
https://github.com/owncloud/ocis/pull/4211
Enhancement - Update reva to v2.7.4: #4294

Updated reva to version 2.7.4 This update includes:
- Bugfix cs3org/reva#3141: Check ListGrants permission when listing shares
Updated reva to version 2.7.3 This update includes:
- Bugfix cs3org/reva#3109: Bugfix missing check in MustCheckNodePermissions
- Bugfix cs3org/reva#3086: Bugfix crash in ldap authprovider
- Bugfix cs3org/reva#3094: Allow removing password from public links
- Bugfix cs3org/reva#3096: Bugfix user filter
- Bugfix cs3org/reva#3091: Project spaces need no real owner
- Bugfix cs3org/reva#3088: Use correct sublogger
- Enhancement cs3org/reva#3123: Allow stating links that have no permissions
- Enhancement cs3org/reva#3087: Allow to set LDAP substring filter type
- Enhancement cs3org/reva#3098: App provider http endpoint uses Form instead of Query
- Enhancement cs3org/reva#3133: Admins can set quota on all spaces
- Enhancement cs3org/reva#3117: Update go-ldap to v3.4.4
- Enhancement cs3org/reva#3095: Upload expiration and cleanup
Https://github.com/owncloud/ocis/pull/4272
https://github.com/cs3org/reva/pull/3096 https://github.com/cs3org/reva/pull/4315

https://github.com/owncloud/ocis/pull/4294
https://github.com/owncloud/ocis/pull/4330
https://github.com/owncloud/ocis/pull/4369
Enhancement - Update reva to v2.8.0: #4444

Updated reva to version 2.8.0. This update includes:
- Bugfix cs3org/reva#3158: Add name to the propfind response
- Bugfix cs3org/reva#3157: Fix locking response codes
- Bugfix cs3org/reva#3152: Disable caching of not found stat responses
- Bugfix cs3org/reva#4251: Disable caching
- Enhancement cs3org/reva#3154: Dataproviders now return file metadata
- Enhancement cs3org/reva#3143: Add /app/open-with-web endpoint
- Enhancement cs3org/reva#3156: Added language option to the app provider
- Enhancement cs3org/reva#3148: Add new jsoncs3 share manager
https://github.com/owncloud/ocis/pull/4444
Enhancement - Update reva to version 2.4.1: #3746

Changelog for reva 2.4.1 (2022-05-24) =======================================

The following sections list the changes in reva 2.4.1 relevant to reva users. The changes are
ordered by importance.

Summary -------
- Bugfix cs3org/reva#2891: Add missing http status code
Changelog for reva 2.4.0 (2022-05-24) =======================================

The following sections list the changes in reva 2.4.0 relevant to reva users. The changes are
ordered by importance.

Summary -------
- Bugfix cs3org/reva#2854: Handle non uuid space and nodeid in decomposedfs
- Bugfix cs3org/reva#2853: Filter CS3 share manager listing
- Bugfix cs3org/reva#2868: Actually remove blobs when purging
- Bugfix cs3org/reva#2882: Fix FileUploaded event being emitted too early
- Bugfix cs3org/reva#2848: Fix storage id in the references in the ItemTrashed events
- Bugfix cs3org/reva#2852: Fix rcbox dependency on reva 1.18
- Bugfix cs3org/reva#3505: Fix creating a new file with wopi
- Bugfix cs3org/reva#2885: Move stat out of usershareprovider
- Bugfix cs3org/reva#2883: Fix role consideration when updating a share
- Bugfix cs3org/reva#2864: Fix Grant Space IDs
- Bugfix cs3org/reva#2870: Update quota calculation
- Bugfix cs3org/reva#2876: Fix version number in status page
- Bugfix cs3org/reva#2829: Don't include versions in quota
- Change cs3org/reva#2856: Do not allow to edit disabled spaces
- Enhancement cs3org/reva#3741: Add download endpoint to ocdav versions API
- Enhancement cs3org/reva#2884: Show mounted shares in virtual share jail root
- Enhancement cs3org/reva#2792: Use storageproviderid for spaces routing
https://github.com/owncloud/ocis/pull/3746
https://github.com/owncloud/ocis/pull/3771
https://github.com/owncloud/ocis/pull/3778
https://github.com/owncloud/ocis/pull/3842
https://github.com/owncloud/ocis/pull/3854
https://github.com/owncloud/ocis/pull/3858
https://github.com/owncloud/ocis/pull/3867
Enhancement - Update reva to version 2.5.1: #3932

Changelog for reva 2.5.1 (2022-06-08) =======================================

The following sections list the changes in reva 2.5.1 relevant to reva users. The changes are
ordered by importance.

Summary -------
- Bugfix cs3org/reva#2931: Allow listing share jail space
- Bugfix cs3org/reva#2918: Fix propfinds with depth 0
Changelog for reva 2.5.0 (2022-06-07) =======================================

The following sections list the changes in reva 2.5.0 relevant to reva users. The changes are
ordered by importance.

Summary -------
- Bugfix cs3org/reva#2909: The decomposedfs now checks the GetPath permission
- Bugfix cs3org/reva#2899: Empty meta requests should return body
- Bugfix cs3org/reva#2928: Fix mkcol response code
- Bugfix cs3org/reva#2907: Correct share jail child aggregation
- Bugfix cs3org/reva#2895: Fix unlimited quota in spaces
- Bugfix cs3org/reva#2905: Check user permissions before updating/removing public shares
- Bugfix cs3org/reva#2904: Share jail now works properly when accessed as a space
- Bugfix cs3org/reva#2903: User owncloudsql now uses the correct userid
- Change cs3org/reva#2920: Clean up the propfind code
- Change cs3org/reva#2913: Rename ocs parameter "space_ref"
- Enhancement cs3org/reva#2919: EOS Spaces implementation
- Enhancement cs3org/reva#2888: Introduce spaces field mask
- Enhancement cs3org/reva#2922: Refactor webdav error handling
https://github.com/owncloud/ocis/pull/3932
https://github.com/owncloud/ocis/pull/3928
https://github.com/owncloud/ocis/pull/3922
Enhancement - Update Reva to version 2.10.0: #4522

Changelog for reva 2.10.0 (2022-09-09) =======================================
- Bugfix cs3org/reva#3210: Jsoncs3 mtime fix
- Enhancement cs3org/reva#3213: Allow for dumping the public shares from the cs3 publicshare manager
- Enhancement cs3org/reva#3199: Add support for cs3 storage backends to the json publicshare manager
Changelog for reva 2.9.0 (2022-09-08) =======================================
- Bugfix cs3org/reva#3206: Add spaceid when listing share jail mount points
- Bugfix cs3org/reva#3194: Adds the rootinfo to storage spaces
- Bugfix cs3org/reva#3201: Fix shareid on PROPFIND
- Bugfix cs3org/reva#3176: Forbid duplicate shares
- Bugfix cs3org/reva#3208: Prevent panic in time conversion
- Bugfix cs3org/reva#3207: Align ocs status code for permission error on publiclink update
- Enhancement cs3org/reva#3193: Add shareid to PROPFIND
- Enhancement cs3org/reva#3180: Add canDeleteAllHomeSpaces permission
- Enhancement cs3org/reva#3203: Added "delete-all-spaces" permission
- Enhancement cs3org/reva#3200: OCS get share now also handle received shares
- Enhancement cs3org/reva#3185: Improve ldap authprovider's error reporting
- Enhancement cs3org/reva#3179: Improve tokeninfo endpoint
- Enhancement cs3org/reva#3171: Cs3 to jsoncs3 share manager migration
- Enhancement cs3org/reva#3204: Make the function flockFile private
- Enhancement cs3org/reva#3192: Enable space members to update shares
https://github.com/owncloud/ocis/pull/4522
https://github.com/owncloud/ocis/pull/4534
https://github.com/owncloud/ocis/pull/4548
https://github.com/owncloud/ocis/pull/4558
Enhancement - Update reva to v2.3.1: #3552

Updated reva to version 2.3.1. This update includes
- Bugfix cs3org/reva#2827: Check permissions when deleting spaces
- Bugfix cs3org/reva#2830: Correctly render response when accepting merged shares
- Bugfix cs3org/reva#2831: Fix uploads to owncloudsql storage when no mtime is provided
- Enhancement cs3org/reva#2833: Make status.php values configurable
- Enhancement cs3org/reva#2832: Add version option for ocdav go-micro service
Updated reva to version 2.3.0. This update includes:
- Bugfix cs3org/reva#2693: Support editnew actions from MS Office
- Bugfix cs3org/reva#2588: Dockerfile.revad-ceph to use the right base image
- Bugfix cs3org/reva#2499: Removed check DenyGrant in resource permission
- Bugfix cs3org/reva#2285: Accept new userid idp format
- Bugfix cs3org/reva#2802: Bugfix the resource id handling for space shares
- Bugfix cs3org/reva#2800: Bugfix spaceid parsing in spaces trashbin API
- Bugfix cs3org/reva#2608: Respect the tracing_service_name config variable
- Bugfix cs3org/reva#2742: Use exact match in login filter
- Bugfix cs3org/reva#2759: Made uid, gid claims parsing more robust in OIDC auth provider
- Bugfix cs3org/reva#2788: Return the correct file IDs on public link resources
- Bugfix cs3org/reva#2322: Use RFC3339 for parsing dates
- Bugfix cs3org/reva#2784: Disable storageprovider cache for the share jail
- Bugfix cs3org/reva#2555: Bugfix site accounts endpoints
- Bugfix cs3org/reva#2675: Updates Makefile according to latest go standards
- Bugfix cs3org/reva#2572: Wait for nats server on middleware start
- Change cs3org/reva#2735: Avoid user enumeration
- Change cs3org/reva#2737: Bump go-cs3api
- Change cs3org/reva#2763: Change the oCIS and S3NG storage driver blob store layout
- Change cs3org/reva#2596: Remove hash from public link urls
- Change cs3org/reva#2785: Implement workaround for chi.RegisterMethod
- Change cs3org/reva#2559: Do not encode webDAV ids to base64
- Change cs3org/reva#2740: Rename oc10 share manager driver
- Change cs3org/reva#2561: Merge oidcmapping auth manager into oidc
- Enhancement cs3org/reva#2698: Make capabilities endpoint public, authenticate users is present
- Enhancement cs3org/reva#2515: Enabling tracing by default if not explicitly disabled
- Enhancement cs3org/reva#2686: Features for favorites xattrs in EOS, cache for scope expansion
- Enhancement cs3org/reva#2494: Use sys ACLs for file permissions
- Enhancement cs3org/reva#2522: Introduce events
- Enhancement cs3org/reva#2811: Add event for created directories
- Enhancement cs3org/reva#2798: Add additional fields to events to enable search
- Enhancement cs3org/reva#2790: Fake providerids so API stays stable after beta
- Enhancement cs3org/reva#2685: Enable federated account access
- Enhancement cs3org/reva#1787: Add support for HTTP TPC
- Enhancement cs3org/reva#2799: Add flag to enable unrestriced listing of spaces
- Enhancement cs3org/reva#2560: Mentix PromSD extensions
- Enhancement cs3org/reva#2741: Meta path for user
- Enhancement cs3org/reva#2613: Externalize custom mime types configuration for storage providers
- Enhancement cs3org/reva#2163: Nextcloud-based share manager for pkg/ocm/share
- Enhancement cs3org/reva#2696: Preferences driver refactor and cbox sql implementation
- Enhancement cs3org/reva#2052: New CS3API datatx methods
- Enhancement cs3org/reva#2743: Add capability for public link single file edit
- Enhancement cs3org/reva#2738: Site accounts site-global settings
- Enhancement cs3org/reva#2672: Further Site Accounts improvements
- Enhancement cs3org/reva#2549: Site accounts improvements
- Enhancement cs3org/reva#2795: Add feature flags "projects" and "share_jail" to spaces capability
- Enhancement cs3org/reva#2514: Reuse ocs role objects in other drivers
- Enhancement cs3org/reva#2781: In memory user provider
- Enhancement cs3org/reva#2752: Refactor the rest user and group provider drivers
https://github.com/owncloud/ocis/issues/3621
https://github.com/owncloud/ocis/pull/3552
https://github.com/owncloud/ocis/pull/3570
https://github.com/owncloud/ocis/pull/3601
https://github.com/owncloud/ocis/pull/3602
https://github.com/owncloud/ocis/pull/3605
https://github.com/owncloud/ocis/pull/3611
https://github.com/owncloud/ocis/pull/3637
https://github.com/owncloud/ocis/pull/3652
https://github.com/owncloud/ocis/pull/3681
Enhancement - Update ownCloud Web to v5.5.0-rc.8: #6854

Tags: web

We updated ownCloud Web to v5.5.0-rc.8. Please refer to the changelog (linked) for details on
the web release.

https://github.com/owncloud/web/pull/6854
https://github.com/owncloud/ocis/pull/3844
https://github.com/owncloud/ocis/pull/3862
https://github.com/owncloud/web/releases/tag/v5.5.0-rc.8
Enhancement - Update ownCloud Web to v5.5.0-rc.9: #6854

Tags: web

We updated ownCloud Web to v5.5.0-rc.9. Please refer to the changelog (linked) for details on
the web release.

Summary -------
- Bugfix owncloud/web#6939: Not logged out if backend is ownCloud 10
- Bugfix owncloud/web#7061: Prevent rename button from getting covered
- Bugfix owncloud/web#7032: Show message when upload size exceeds quota
- Bugfix owncloud/web#7036: Drag and drop upload when a file is selected
- Enhancement owncloud/web#7022: Add config option for hoverable quick actions
- Enhancement owncloud/web#6555: Consistent dropdown menus
- Enhancement owncloud/web#6994: Copy/Move conflict dialog
- Enhancement owncloud/web#6750: Make contexthelpers opt-out
- Enhancement owncloud/web#7038: Rendering of share-indicators in ResourceTable
- Enhancement owncloud/web#6776: Prevent the resource name in the sidebar from being truncated
- Enhancement owncloud/web#7067: Upload progress & overlay improvements
https://github.com/owncloud/web/pull/6854
https://github.com/owncloud/ocis/pull/3927
https://github.com/owncloud/web/releases/tag/v5.5.0-rc.9
Enhancement - Update ownCloud Web to v5.5.0-rc.6: #6854

Tags: web

We updated ownCloud Web to v5.5.0-rc.6. Please refer to the changelog (linked) for details on
the web release.

https://github.com/owncloud/web/pull/6854
https://github.com/owncloud/ocis/pull/3664
https://github.com/owncloud/ocis/pull/3680
https://github.com/owncloud/ocis/pull/3727
https://github.com/owncloud/ocis/pull/3747
https://github.com/owncloud/ocis/pull/3797
https://github.com/owncloud/web/releases/tag/v5.5.0-rc.6
Enhancement - Update ownCloud Web to v5.7.0-rc.1: #4005

Tags: web

We updated ownCloud Web to v5.7.0-rc.1. Please refer to the changelog (linked) for details on
the web release.
- Enhancement owncloud/web#7119: Copy/Move conflict dialog
- Enhancement owncloud/web#7122: Enable Drag&Drop and keyboard shortcuts for all views
- Enhancement owncloud/web#7053: Personal space id in URL
- Enhancement owncloud/web#6933: Customize additional mimeTypes for preview app
- Enhancement owncloud/web#7078: Add Hotkeys to ResourceTable
- Enhancement owncloud/web#7120: Use tus chunksize from backend
- Enhancement owncloud/web#6749: Update ODS to v13.2.0-rc.1
- Enhancement owncloud/web#7111: Upload data during creation
- Enhancement owncloud/web#7109: Clickable folder links in upload overlay
- Enhancement owncloud/web#7123: Indeterminate progress bar in upload overlay
- Enhancement owncloud/web#7088: Upload time estimation
- Enhancement owncloud/web#7125: Wording improvements
- Enhancement owncloud/web#7140: Separate direct and indirect link shares in sidebar
- Bugfix owncloud/web#7156: Folder link targets
- Bugfix owncloud/web#7108: Reload of an updated space-image and/or -readme
- Bugfix owncloud/web#6846: Upload meta data serialization
- Bugfix owncloud/web#7100: Complete-state of the upload overlay
- Bugfix owncloud/web#7104: Parent folder name on public links
- Bugfix owncloud/web#7173: Re-introduce dynamic app name in document title
- Bugfix owncloud/web#7166: External apps fixes
https://github.com/owncloud/ocis/pull/4005
https://github.com/owncloud/web/pull/7158
https://github.com/owncloud/ocis/pull/3990
https://github.com/owncloud/web/pull/6854
https://github.com/owncloud/web/releases/tag/v5.7.0-rc.1
Enhancement - Update ownCloud Web to v5.7.0-rc.4: #4140

Tags: web

We updated ownCloud Web to v5.7.0-rc.4. Please refer to the changelog (linked) for details on
the web release.
- Bugfix owncloud/web#7230: Context menu misplaced when triggered by keyboard navigation
- Bugfix owncloud/web#7214: Prevent error when pasting with empty clipboard
- Bugfix owncloud/web#7173: Re-introduce dynamic app name in document title
- Bugfix owncloud/web#7166: External apps fixes
- Bugfix owncloud/web#7248: Hide empty trash bin modal on error
- Bugfix owncloud/web#4677: Logout deleted user on page reload
- Bugfix owncloud/web#7216: Filename hovers over the image in the preview app
- Bugfix owncloud/web#7228: Shared with others page apps not working with oc10 as backend
- Bugfix owncloud/web#7197: Create space and access user management permission
- Bugfix owncloud/web#6921: Space sidebar sharing indicators
- Bugfix owncloud/web#7030: Access token renewal
- Enhancement owncloud/web#7217: Add app top bar component
- Enhancement owncloud/web#7153: Add Keyboard navigation/selection
- Enhancement owncloud/web#7030: Loading context blocks application bootstrap
- Enhancement owncloud/web#7206: Add change own password dialog to the account info page
- Enhancement owncloud/web#7086: Re-sharing for ocis
- Enhancement owncloud/web#7201: Added a toolbar to pdf-viewer app
- Enhancement owncloud/web#7139: Reposition notifications
- Enhancement owncloud/web#7030: Resolve bookmarked public links with password protection
- Enhancement owncloud/web#7038: Improve performance of share indicators
- Enhancement owncloud/web#6661: Option to block file extensions from text-editor app
- Enhancement owncloud/web#7139: Update ODS to v14.0.0-alpha.4
- Enhancement owncloud/web#7176: Introduce group assignments
https://github.com/owncloud/ocis/pull/4140
https://github.com/owncloud/web/releases/tag/v5.7.0-rc.4
Enhancement - Update ownCloud Web to v5.7.0-rc.8: #4314

Tags: web

We updated ownCloud Web to v5.7.0-rc.9. Please refer to the changelog (linked) for details on
the web release.
- Bugfix owncloud/web#7080: Add Droparea again
- Bugfix owncloud/web#7357: Batch deleting multiple files
- Bugfix owncloud/web#7379: Decline share not possible
- Bugfix owncloud/web#7322: Files pagination scroll to top
- Bugfix owncloud/web#7348: Left sidebar active navigation item has wrong cursor
- Bugfix owncloud/web#7355: Link indicator on "Shared via link"-page
- Bugfix owncloud/web#7325: Loading state in views
- Bugfix owncloud/web#7344: Missing file icon in details panel
- Bugfix owncloud/web#7321: Missing scroll bar in user management app
- Bugfix owncloud/web#7334: No redirect after disabling space
- Bugfix owncloud/web#3071: Don't leak oidc callback url into browser history
- Bugfix owncloud/web#7379: Open file on shared space resource not possible
- Bugfix owncloud/web#7268: Personal shares leaked into project space
- Bugfix owncloud/web#7359: Fix infinite loading spinner on invalid preview links
- Bugfix owncloud/web#7272: Print backend version
- Bugfix owncloud/web#7424: Quicklinks not shown
- Bugfix owncloud/web#7379: Rename shared space resource not possible
- Bugfix owncloud/web#7210: Repair navigation highlighter
- Bugfix owncloud/web#7393: Selected item bottom glue
- Bugfix owncloud/web#7308: "Shared with others" and "Shared via Link" resource links not working
- Bugfix owncloud/web#7400: Respect space quota permission
- Bugfix owncloud/web#7349: Missing quick actions in spaces file list
- Bugfix owncloud/web#7396: Add storage ID when navigating to a shared parent directory
- Bugfix owncloud/web#7394: Suppress active panel error log
- Bugfix owncloud/web#7038: File list render performance
- Bugfix owncloud/web#7240: Access token renewal during upload
- Bugfix owncloud/web#7376: Tooltips not shown on disabled create and upload button
- Bugfix owncloud/web#7297: Upload overlay progress bar spacing
- Bugfix owncloud/web#7332: Users list not loading if user has no role
- Bugfix owncloud/web#7313: Versions of shared files not visible
- Enhancement owncloud/web#7404: Adjust helper texts
- Enhancement owncloud/web#7350: Change file loading mechanism in preview app
- Enhancement owncloud/web#7356: Declined shares are now easily accessible
- Enhancement owncloud/web#7365: Drop menu styling in right sidebar
- Enhancement owncloud/web#7252: Redesign shared with list
- Enhancement owncloud/web#7371: Use fixed width for the right sidebar
- Enhancement owncloud/web#7267: Search all files announce limit
- Enhancement owncloud/web#7364: Sharing panel show label instead of description for links
- Enhancement owncloud/web#7355: Update ODS to v14.0.0-alpha.12
- Enhancement owncloud/web#7375: User management app saved dialog
https://github.com/owncloud/ocis/pull/4314
https://github.com/owncloud/web/releases/tag/v5.7.0-rc.8
Enhancement - Update ownCloud Web to v5.7.0-rc.10: #4439

Tags: web

We updated ownCloud Web to v5.7.0-rc.10. Please refer to the changelog (linked) for details on
the web release.
- Bugfix owncloud/web#7443: Datetime formatting
- Bugfix owncloud/web#7437: Default to user context
- Bugfix owncloud/web#7473: Dragging a file causes no selection
- Bugfix owncloud/web#7469: File size not updated while restoring file version
- Bugfix owncloud/web#7443: File size formatting
- Bugfix owncloud/web#7474: Load only supported thumbnails (configurable)
- Bugfix owncloud/web#7309: SidebarNavItem icon flickering
- Bugfix owncloud/web#7425: Open Folder in project space context menu
- Bugfix owncloud/web#7486: Prevent unnecessary PROPFIND request during upload
- Bugfix owncloud/web#7415: Re-fetch quota
- Bugfix owncloud/web#7478: "Shared via"-indicator for links
- Bugfix owncloud/web#7480: Missing space image in sidebar
- Bugfix owncloud/web#7436: Hide share actions for space viewers/editors
- Bugfix owncloud/web#7445: User management app close side bar throws error
- Enhancement owncloud/web#7309: Keyboard shortcut indicators in ContextMenu
- Enhancement owncloud/web#7309: Lowlight cut resources
- Enhancement owncloud/web#7133: Permissionless (internal) link shares
- Enhancement owncloud/web#7309: Replace locationpicker with clipboard actions
- Enhancement owncloud/web#7363: Streamline UI sizings
- Enhancement owncloud/web#7355: Update ODS to v14.0.0-alpha.16
- Enhancement owncloud/web#7476: Users table on small screen
- Enhancement owncloud/web#7182: User management app edit quota
https://github.com/owncloud/ocis/pull/4439
https://github.com/owncloud/web/releases/tag/v5.7.0-rc.10
Enhancement - Update ownCloud Web to v5.7.0: #4508

Tags: web

We updated ownCloud Web to v5.7.0. Please refer to the changelog (linked) for details on the web
release.
- Bugfix owncloud/web#7522: Allow uploads outside of user's home despite quota being exceeded
- Bugfix owncloud/web#7622: Expiration date picker with long language codes
- Bugfix owncloud/web#7516: File name in text editor
- Bugfix owncloud/web#7498: Fix right sidebar content on small screens
- Bugfix owncloud/web#7455: Improve keyboard shortcuts copy/cut files
- Bugfix owncloud/web#7510: Paste action (keyboard) not working in project spaces
- Bugfix owncloud/web#7526: Left sidebar when switching apps
- Bugfix owncloud/web#7582: Merge share with group and group member into one
- Bugfix owncloud/web#7534: Redirect after removing self from space members
- Bugfix owncloud/web#7560: Search share representation
- Bugfix owncloud/web#7519: Sidebar for current folder
- Bugfix owncloud/web#7453: Stuck After Session Expired
- Bugfix owncloud/web#7595: Typo when reading public links capabilities
- Enhancement owncloud/web#7570: Adjust spacing of the files list options menu
- Enhancement owncloud/web#7540: Left sidebar hover effect
- Enhancement owncloud/web#7555: Propose unique file name while creating a new file
- Enhancement owncloud/web#7038: Reduce pagination options
- Enhancement owncloud/web#6173: Remember the UI that was last selected via the application switcher
- Enhancement owncloud/web#7584: Remove clickOutside directive
- Enhancement owncloud/web#7485: Add resource name to the WebDAV properties
- Enhancement owncloud/web#7559: Don't open right sidebar from private links
- Enhancement owncloud/web#7586: Search improvements
- Enhancement owncloud/web#7605: Simplify mime type checking
- Enhancement owncloud/web#7626: Update ODS to v14.0.0-alpha.18
- Enhancement owncloud/web#7177: Update Uppy to v3.0.1
- Enhancement owncloud/web#7182: User management app edit quota
https://github.com/owncloud/ocis/pull/4508
https://github.com/owncloud/ocis/pull/4547
https://github.com/owncloud/ocis/pull/4550
https://github.com/owncloud/web/releases/tag/v5.7.0
Enhancement - Expand personal drive on the graph user: #4357

We can now list the personal drive on the users endpoint via the graph API. A user can add an
$expand=drive query to list the personal drive of the requested user.

https://github.com/owncloud/ocis/pull/4357
Enhancement - Add descriptions to webdav configuration: #3755

Added descriptions to webdav config structs to include them in the config documentation.

https://github.com/owncloud/ocis/pull/3755
Enhancement - Search service at the old webdav endpoint: #4118

We made the search service available for legacy clients at the old webdav endpoint.

https://github.com/owncloud/ocis/pull/4118

ocis - 2.0.0-beta.7

Published by kulmann about 2 years ago

Changes in 2.0.0-beta.7

Summary

Bugfix - Fix configuration of mimetypes for the app registry: #4411
Bugfix - Show help for some commands when unconfigured: #4405
Bugfix - Autocreate IDP private key also if file exists but is empty: #4394
Bugfix - Rename extensions to services (leftover occurences): #4407
Bugfix - Fix DN parsing issues and sizelimit handling in libregraph/idm: #3631
Bugfix - Remove runtime kill and run commands: #3740
Bugfix - Check permissions when deleting Space: #3709
Bugfix - Logging in on the wrong account when an email address is not unique: #4039
Bugfix - Allow empty environment variables: #3892
Bugfix - Remove unused transfer secret from app provider: #3798
Bugfix - Make IDP secrets configurable via environment variables: #3744
Bugfix - CSP rules for silent token refresh in iframe: #4031
Bugfix - Enable debug server by default: #3827
Bugfix - Rework default role provisioning: #3900
Bugfix - Fix search index getting out of sync: #3851
Bugfix - Inconsistency env var naming for LDAP filter configuration: #3890
Bugfix - Fix LDAP insecure options: #3897
Bugfix - Fix handling of invalid LDAP users and groups: #4274
Bugfix - Fix logging levels: #4102
Bugfix - Fix OCIS_RUN_SERVICES: #4133
Bugfix - Set default name for public link via capabilities: #3834
Bugfix - Remove legacy accounts proxy routes: #3831
Bugfix - Fix unused config option GRAPH_SPACES_INSECURE: #55555
Bugfix - Remove unused configuration options: #3973
Bugfix - Remove static ocs user backend config: #4077
Bugfix - Remove unused OCS storage configuration: #3955
Bugfix - Fix the ocis search command: #3796
Bugfix - Rename search env variable for the grpc server address: #3800
Bugfix - Fix search in received shares: #4308
Bugfix - Fix make sensitive config values in the proxy's debug server: #4086
Bugfix - Fix the idm and settings extensions' admin user id configuration option: #3799
Bugfix - Substring search for sharees: #547
Bugfix - Fix configuration validation for extensions' server commands: #3911
Bugfix - Fix startup error logging: #4093
Bugfix - Fix multiple storage-users env variables: #3802
Bugfix - Thumbnails for /dav/xxx?preview=1 requests: #3567
Bugfix - Fix unrestricted quota on the graphAPI: #4363
Bugfix - Fix user autoprovisioning: #3893
Bugfix - Fix version info: #3953
Bugfix - Fix version number in status page: #3788
Bugfix - Fix the webdav URL of drive roots: #3706
Bugfix - Idp: Check if CA certificate if present: #3623
Bugfix - Fix graph endpoint: #3925
Bugfix - Escape DN attribute value: #4117
Bugfix - Make IDP only wait for certs when using LDAP: #3965
Bugfix - Make ocdav service behave properly: #3957
Bugfix - Return proper errors when ocs/cloud/users is using the cs3 backend: #3483
Bugfix - Polish search: #4094
Bugfix - Save Katherine: #3823
Bugfix - Fix Thumbnails for IDs without a trailing path: #3791
Bugfix - Space Creators can hand over spaces: #4244
Bugfix - URL encode the webdav url in the graph API: #3597
Bugfix - Store user passwords hashed in idm: #3778
Change - Update ocis packages and imports to V2: #3678
Change - Load configuration files just from one directory: #3587
Change - Reduce permissions on docker image predeclared volumes: #3641
Change - Introduce ocis init and remove all default secrets: #3551
Change - Rename "uploads purge" command to "uploads clean": #4403
Change - The glauth and accounts services are removed: #3685
Change - Reduce drives in graph /me/drives API: #3629
Change - Switched default configuration to use libregraph/idm: #3331
Change - Rename MetadataUserID: #3671
Change - Use new space ID util functions: #3648
Change - Prevent access to disabled space: #3779
Change - Rename serviceUser to systemUser: #3673
Change - Use the spaceID on the cs3 resource: #4748
Change - Split MachineAuth from SystemUser: #3672
Enhancement - Add capability for alias links: #3983
Enhancement - Add drives field to users endpoint: #4072
Enhancement - Add FRONTEND_ENABLE_RESHARING env variable: #4023
Enhancement - Add number of total matches to the search result: #4189
Enhancement - Align service naming: #3606
Enhancement - Add acting user to the audit log: #3753
Enhancement - Add audit events for created containers: #3941
Enhancement - Don't setup demo role assignments on default: #3661
Enhancement - Improve validation of OIDC access tokens: #3841
Enhancement - Add /app/open-with-web endpoint: #4376
Enhancement - Added language option to the app provider: #4399
Enhancement - Improve error log for "could not get user by claim" error: #4227
Enhancement - Add configuration options for mail authentication and encryption: #4443
Enhancement - Introduce service registry cache: #3833
Enhancement - Reintroduce user autoprovisioning in proxy: #3860
Enhancement - Added command to reset administrator password: #4084
Enhancement - Disable the color logging in docker compose examples: #871
Enhancement - Allow providing list of services NOT to start: #4254
Enhancement - Introduce insecure flag for smtp email notifications: #4279
Enhancement - Optional events in graph service: #55555
Enhancement - Fix behavior for foobar (in present tense): #4346
Enhancement - Add config option to provide TLS certificate: #3818
Enhancement - Add descriptions for graph-explorer config: #3759
Enhancement - Add /me/changePassword endpoint to GraphAPI: #3063
Enhancement - Generate signing key and encryption secret: #3909
Enhancement - Update IdP UI: #3493
Enhancement - Wrap metadata storage with dedicated reva gateway: #3602
Enhancement - New migrate command for migrating shares and public shares: #3987
Enhancement - Add missing unprotected paths: #4454
Enhancement - Product field in OCS version: #2918
Enhancement - Refactor extensions to services: #3980
Enhancement - Allow resharing: #3904
Enhancement - Rewrite of the request authentication middleware: #4374
Enhancement - Add initial version of the search extensions: #3635
Enhancement - Add capability for public link single file edit: #6787
Enhancement - Added share_jail and projects feature flags in spaces capability: #3626
Enhancement - Use storageID when requesting special items: #4356
Enhancement - Add description tags to the thumbnails config structs: #3752
Enhancement - Make thumbnails service log less noisy: #3959
Enhancement - Update linkshare capabilities: #3579
Enhancement - Update reva: #3944
Enhancement - Update reva to version 2.7.2: #4115
Enhancement - Update reva to v2.7.4: #4294
Enhancement - Update reva to v2.8.0: #4444
Enhancement - Update reva to version 2.4.1: #3746
Enhancement - Update reva to version 2.5.1: #3932
Enhancement - Update reva to v2.3.1: #3552
Enhancement - Update ownCloud Web to v5.5.0-rc.8: #6854
Enhancement - Update ownCloud Web to v5.5.0-rc.9: #6854
Enhancement - Update ownCloud Web to v5.5.0-rc.6: #6854
Enhancement - Update ownCloud Web to v5.7.0-rc.1: #4005
Enhancement - Update ownCloud Web to v5.7.0-rc.4: #4140
Enhancement - Update ownCloud Web to v5.7.0-rc.8: #4314
Enhancement - Update ownCloud Web to v5.7.0-rc.10: #4439
Enhancement - Expand personal drive on the graph user: #4357
Enhancement - Add descriptions to webdav configuration: #3755
Enhancement - Search service at the old webdav endpoint: #4118

Details

Bugfix - Fix configuration of mimetypes for the app registry: #4411

We've fixed the configuration option for mimetypes in the app registry. Previously the
default config would always be merged over the user provided configuration. Now the default
mimetype configuration is only used if the user does not providy any mimetype configuration
(like it is already done in the proxy with the routes configuration).

https://github.com/owncloud/ocis/pull/4411
Bugfix - Show help for some commands when unconfigured: #4405

We've fixed some commands to show the help also when oCIS is not yet configured. Previously the
help was not displayed to the user but instead a configuration validation error.

https://github.com/owncloud/ocis/pull/4405
Bugfix - Autocreate IDP private key also if file exists but is empty: #4394

We've fixed the behavior for the IDP private key generation so that a private key is also
generated when the file already exists but is empty.

https://github.com/owncloud/ocis/pull/4394
Bugfix - Rename extensions to services (leftover occurences): #4407

We've already renamed extensions to services in previous PRs and this PR peforms this rename
for leftover occurences.

https://github.com/owncloud/ocis/pull/4407
Bugfix - Fix DN parsing issues and sizelimit handling in libregraph/idm: #3631

We fixed a couple on issues in libregraph/idm related to correctly parsing LDAP DNs for
usernames contain characters that require escaping.

Also libregraph/idm was not properly returning "Size limit exceeded" errors when the result
set exceeded the requested size.

https://github.com/owncloud/ocis/issues/3631
https://github.com/owncloud/ocis/issues/4039
https://github.com/owncloud/ocis/issues/4078
Bugfix - Remove runtime kill and run commands: #3740

We've removed the kill and run commands from the oCIS runtime. If these dynamic capabilities
are needed, one should switch to a full fledged supervisor and start oCIS as individual
services.

If one wants to start a only a subset of services, this is still possible by setting
OCIS_RUN_EXTENSIONS.

https://github.com/owncloud/ocis/pull/3740
Bugfix - Check permissions when deleting Space: #3709

Check for manager permissions when deleting spaces. Do not allow deleting spaces via dav
service

https://github.com/owncloud/ocis/pull/3709
Bugfix - Logging in on the wrong account when an email address is not unique: #4039

The default configuration to use the same logon attribute for all services. Also, if the
configured logon attribute is not unique access to ocis is denied.

https://github.com/owncloud/ocis/issues/4039
Bugfix - Allow empty environment variables: #3892

We've fixed the behavior for empty environment variables, that previously would not have
overwritten default values. Therefore it had the same effect like not setting the environment
variable. We now check if the environment variable is set at all and if so, we also allow to
override a default value with an empty value.

https://github.com/owncloud/ocis/pull/3892
Bugfix - Remove unused transfer secret from app provider: #3798

We've fixed the startup of the app provider by removing the startup dependency on a configured
transfer secret, which was not used. This only happend if you start the app provider without
runtime (eg. ocis app-provider server) and didn't have configured all oCIS secrets.

https://github.com/owncloud/ocis/pull/3798
Bugfix - Make IDP secrets configurable via environment variables: #3744

We've fixed the configuration options of the IDP to make the IDP secrets again configurable via
environment variables.

https://github.com/owncloud/ocis/pull/3744
Bugfix - CSP rules for silent token refresh in iframe: #4031

When renewing the access token silently web needs to be opened in an iframe. This was previously
blocked by a restrictive iframe CSP rule in the Secure middleware and has now been fixed by
allow self for iframes.

https://github.com/owncloud/web/issues/7030
https://github.com/owncloud/ocis/pull/4031
Bugfix - Enable debug server by default: #3827

We've fixed the behavior for the audit, idm, nats and notifications extensions, that did not
start their debug server by default.

https://github.com/owncloud/ocis/pull/3827
Bugfix - Rework default role provisioning: #3900

We fixed a race condition in the default role assignment code that could lead to users loosing
privileges. When authenticating before the settings service was fully running.

https://github.com/owncloud/ocis/issues/3900
Bugfix - Fix search index getting out of sync: #3851

We fixed a problem where the search index got out of sync with child elements of a parent
containing special characters.

https://github.com/owncloud/ocis/pull/3851
Bugfix - Inconsistency env var naming for LDAP filter configuration: #3890

There was a naming inconsitency for the enviroment variables used to define LDAP filters for
user and groups queries. Some services used LDAP_USER_FILTER while others used
LDAP_USERFILTER. This is now changed to use LDAP_USER_FILTER and LDAP_GROUP_FILTER.

Note: If your oCIS setup is using an LDAP configuration that has any of the *_LDAP_USERFILTER
or *_LDAP_GROUPFILTER environment variables set, please update the configuration to use
the new unified names *_LDAP_USER_FILTER respectively *_LDAP_GROUP_FILTER instead.

https://github.com/owncloud/ocis/issues/3890
Bugfix - Fix LDAP insecure options: #3897

We've fixed multiple LDAP insecure options:
- The Graph LDAP insecure option default was set to true and now defaults to false. This is possible after #3888, since the Graph also now uses the LDAP CAcert by default.
- The Graph LDAP insecure option was configurable by the environment variable OCIS_INSECURE, which was replaced by the dedicated LDAP_INSECURE variable. This variable is also used by all other services using LDAP.
- The IDP insecure option for the user backend now also picks up configuration from LDAP_INSECURE.
https://github.com/owncloud/ocis/pull/3897
Bugfix - Fix handling of invalid LDAP users and groups: #4274

We fixed an issue where ocis would exit with a panic when LDAP users or groups where missing
required attributes (e.g. the id)

https://github.com/owncloud/ocis/issues/4274
Bugfix - Fix logging levels: #4102

We've fixed the configuration of logging levels. Previously it was not possible to configure a
service with a more or less verbose log level then all other services when running in the
supervised / runtime mode ocis server.

For example OCIS_LOG_LEVEL=error PROXY_LOG_LEVEL=debug ocis server did not configure
error logging for all services except the proxy, which should be on debug logging. This is now
fixed and working properly.

Also we fixed the format of go-micro logs to always default to error level. Previously this was
only ensured in the supervised / runtime mode.

https://github.com/owncloud/ocis/issues/4089
https://github.com/owncloud/ocis/pull/4102
Bugfix - Fix OCIS_RUN_SERVICES: #4133

OCIS_RUN_SERVICES was introduced as successor to OCIS_RUN_EXTENSIONS because we
wanted to call oCIS "core" extensions services. We kept OCIS_RUN_EXTENSIONS for backwards
compatibility reasons.

It turned out, that setting OCIS_RUN_SERVICES has no effect since introduced.
OCIS_RUN_EXTENSIONS. OCIS_RUN_EXTENSIONS was working fine all the time.

We now fixed OCIS_RUN_SERVICES, so that you can use it as a equivalent replacement for
OCIS_RUN_EXTENSIONS

https://github.com/owncloud/ocis/pull/4133
Bugfix - Set default name for public link via capabilities: #3834

We have now added a default name for public link shares which is communicated via the
capabilities.

https://github.com/owncloud/ocis/issues/1237
https://github.com/owncloud/ocis/pull/3834
Bugfix - Remove legacy accounts proxy routes: #3831

We've removed the legacy accounts routes from the proxy default config. There were no longer
used since the switch to IDM as the default user backend. Also accounts is no longer part of the
oCIS binary and therefore should not be part of the proxy default route config.

https://github.com/owncloud/ocis/pull/3831
Bugfix - Fix unused config option GRAPH_SPACES_INSECURE: #55555

We've removed the unused config option GRAPH_SPACES_INSECURE from the GRAPH service.

https://github.com/owncloud/ocis/pull/55555
Bugfix - Remove unused configuration options: #3973

We've removed multiple unused configuration options:
- STORAGE_SYSTEM_DATAPROVIDER_INSECURE, see also cs3org/reva#2993 -
  STORAGE_USERS_DATAPROVIDER_INSECURE, see also cs3org/reva#2993 -
  STORAGE_SYSTEM_TEMP_FOLDER, see also cs3org/reva#2993 -
  STORAGE_USERS_TEMP_FOLDER, see also cs3org/reva#2993 - WEB_UI_CONFIG_VERSION, see
  also owncloud/web#7130 - GATEWAY_COMMIT_SHARE_TO_STORAGE_REF, see also
  cs3org/reva#3017
https://github.com/owncloud/ocis/pull/3973
Bugfix - Remove static ocs user backend config: #4077

We've remove the OCS_ACCOUNT_BACKEND_TYPE configuration option. It was intended to allow
configuration of different user backends for the ocs service. Right now the ocs service only
has a "cs3" backend. Therefor it's a static entry and not configurable.

https://github.com/owncloud/ocis/pull/4077
Bugfix - Remove unused OCS storage configuration: #3955

We've removed the unused OCS configuration option OCS_STORAGE_USERS_DRIVER.

https://github.com/owncloud/ocis/pull/3955
Bugfix - Fix the ocis search command: #3796

We've fixed the behavior for ocis search, which didn't show further help when not all secrets
have been configured. It also was not possible to start the search service standalone from the
oCIS binary without configuring all oCIS secrets, even they were not needed by the search
service.

https://github.com/owncloud/ocis/pull/3796
Bugfix - Rename search env variable for the grpc server address: #3800

We've fixed the gprc server address configuration environment variable by renaming it from
ACCOUNTS_GRPC_ADDR to SEARCH_GRPC_ADDR

https://github.com/owncloud/ocis/pull/3800
Bugfix - Fix search in received shares: #4308

We fixed a problem where items in received shares were not found.

https://github.com/owncloud/ocis/issues/4308
Bugfix - Fix make sensitive config values in the proxy's debug server: #4086

We've fixed a security issue of the proxy's debug server config report endpoint. Previously
sensitive configuration values haven't been masked. We now mask these values.

https://github.com/owncloud/ocis/pull/4086
Bugfix - Fix the idm and settings extensions' admin user id configuration option: #3799

We've fixed the admin user id configuration of the settings and idm extensions. The have
previously only been configurable via the oCIS shared configuration and therefore have been
undocumented for the extensions. This config option is now part of both extensions'
configuration and can now also be used when the extensions are compiled standalone.

https://github.com/owncloud/ocis/pull/3799
Bugfix - Substring search for sharees: #547

We fixed searching for sharees to be no longer case-sensitive. With this we introduced two new
settings for the users and groups services: "group_substring_filter_type" for the group
services and "user_substring_filter_type" for the users service. They allow to set the type
of LDAP filter that is used for substring user searches. Possible values are: "initial",
"final" and "any" to do either prefix, suffix or full substring searches. Both settings
default to "initial".

Also a new option "search_min_length" was added for the "frontend" service. It allows to
configure the minimum number of characters to enter before a search for Sharees is started.
This setting is e.g. evaluated by the web ui via the capabilities endpoint.

https://github.com/owncloud/ocis/issues/547
Bugfix - Fix configuration validation for extensions' server commands: #3911

We've fixed the configuration validation for the extensions' server commands. Before this
fix error messages have occurred when trying to start individual services without certain
oCIS fullstack configuration values.

We now no longer do the common oCIS configuration validation for extensions' server commands
and now rely only on the extensions' validation function.

https://github.com/owncloud/ocis/pull/3911
Bugfix - Fix startup error logging: #4093

We've fixed the startup error logging, so that users will the reason for a failed startup even on
"error" log level. Previously they would only see it on "info" log level. Also in a lot of cases
the reason for the failed shutdown was omitted.

https://github.com/owncloud/ocis/pull/4093
Bugfix - Fix multiple storage-users env variables: #3802

We've fixed multiple environment variable configuration options for the storage-users
extension:
- STORAGE_USERS_GRPC_ADDR was used to configure both the address of the http and grpc server. This resulted in a failing startup of the storage-users extension if this config option is set, because the service tries to double-bind the configured port (one time for each of the http and grpc server). You can now configure the grpc server's address with the environment variable STORAGE_USERS_GRPC_ADDR and the http server's address with the environment variable STORAGE_USERS_HTTP_ADDR
- STORAGE_USERS_S3NG_USERS_PROVIDER_ENDPOINT was used to configure the permissions service endpoint for the S3NG driver and was therefore renamed to STORAGE_USERS_S3NG_PERMISSIONS_ENDPOINT
- It's now possible to configure the permissions service endpoint for all storage drivers with the environment variable STORAGE_USERS_PERMISSION_ENDPOINT, which was previously only used by the S3NG driver.
https://github.com/owncloud/ocis/pull/3802
Bugfix - Thumbnails for /dav/xxx?preview=1 requests: #3567

We've added the thumbnail rendering for /dav/xxx?preview=1,
/remote.php/webdav/{relative path}?preview=1 and /webdav/{relative path}?preview=1 requests, which was previously not supported because of missing routes. It
now returns the same thumbnails as for /remote.php/dav/xxx?preview=1.

https://github.com/owncloud/ocis/pull/3567
Bugfix - Fix unrestricted quota on the graphAPI: #4363

Unrestricted quota needs to show 0 on the API. It is not good for clients when the property is
missing.

https://github.com/owncloud/ocis/pull/4363
Bugfix - Fix user autoprovisioning: #3893

We've fixed the autoprovsioning feature that was introduced in beta2. Due to a bug the role
assignment of the privileged user that is used to create accounts wasn't propagated correctly
to the graph service.

https://github.com/owncloud/ocis/issues/3893
Bugfix - Fix version info: #3953

We've fixed the version info that is displayed when you run:
- ocis version - ocis <extension name> version
Since #2918, these commands returned an empty version only.

https://github.com/owncloud/ocis/pull/3953
Bugfix - Fix version number in status page: #3788

We needed to undo the version number changes on the status page to keep compatibility for legacy
clients. We added a new field productversion for the actual version of the product.

https://github.com/owncloud/ocis/issues/3788
https://github.com/owncloud/ocis/pull/3805
Bugfix - Fix the webdav URL of drive roots: #3706

Fixed the webdav URL of drive roots in the graph API.

https://github.com/owncloud/ocis/issues/3706
https://github.com/owncloud/ocis/pull/3916
Bugfix - Idp: Check if CA certificate if present: #3623

Upon first start with the default configurtation the idm service creates a server
certificate, that might not be finished before the idp service is starting. Add a check to idp
similar to what the user, group, and auth-providers implement.

https://github.com/owncloud/ocis/issues/3623
Bugfix - Fix graph endpoint: #3925

We have added the memberOf slice to the /users endpoint and the member slice to the /group
endpoint

https://github.com/owncloud/ocis/issues/3925
Bugfix - Escape DN attribute value: #4117

Escaped the DN attribute value on creating users and groups.

https://github.com/owncloud/ocis/pull/4117
Bugfix - Make IDP only wait for certs when using LDAP: #3965

When configuring cs3 as the backend the IDP no longer waits for an LDAP certificate to appear.

https://github.com/owncloud/ocis/pull/3965
Bugfix - Make ocdav service behave properly: #3957

The ocdav service now properly passes the tracing config and shuts down when receiving a kill
signal.

https://github.com/owncloud/ocis/pull/3957
Bugfix - Return proper errors when ocs/cloud/users is using the cs3 backend: #3483

The ocs API was just exiting with a fatal error on any update request, when configured for the cs3
backend. Now it returns a proper error.

https://github.com/owncloud/ocis/issues/3483
Bugfix - Polish search: #4094

We improved the feedback when providing invalid search queries and added support for limiting
the number of results returned.

https://github.com/owncloud/ocis/pull/4094
Bugfix - Save Katherine: #3823

SpaceManager user katherine was removed with the demo user switch. Now she comes back

https://github.com/owncloud/ocis/issues/3823
https://github.com/owncloud/ocis/pull/3824
Bugfix - Fix Thumbnails for IDs without a trailing path: #3791

The routes in the chi router were not matching thumbnail requests without a trailing path.

https://github.com/owncloud/ocis/pull/3791
Bugfix - Space Creators can hand over spaces: #4244

Set no owner on non personal spaces to be able to pass the space manager role to a new user.

https://github.com/owncloud/ocis/pull/4244
Bugfix - URL encode the webdav url in the graph API: #3597

Fixed the webdav URL in the drives responses. Without encoding the URL could be broken by files
with spaces in the file name.

https://github.com/owncloud/ocis/issues/3538
https://github.com/owncloud/ocis/pull/3597
Bugfix - Store user passwords hashed in idm: #3778

Support for hashing user passwords was added to libregraph/idm. The graph API will now set
userpasswords using the LDAP Modify Extended Operation (RFC3062). In the default
configuration passwords will be hashed using the argon2id algorithm.

https://github.com/owncloud/ocis/issues/3778
https://github.com/owncloud/ocis/pull/4053
Change - Update ocis packages and imports to V2: #3678

This needs to be done in preparation for the major version bump in ocis.

https://github.com/owncloud/ocis/pull/3678
Change - Load configuration files just from one directory: #3587

We've changed the configuration file loading behavior and are now only loading configuration
files from ONE single directory. This directory can be set on compile time or via an environment
variable on startup (OCIS_CONFIG_DIR).

We are using following configuration default paths:
- Docker images: /etc/ocis/ - Binary releases: $HOME/.ocis/config/
https://github.com/owncloud/ocis/pull/3587
Change - Reduce permissions on docker image predeclared volumes: #3641

We've lowered the permissions on the predeclared volumes of the oCIS docker image from 777 to
750.

This change doesn't affect you, unless you use the docker image with the non default uid/guid to
start oCIS (default is 1000:1000).

https://github.com/owncloud/ocis/pull/3641
Change - Introduce ocis init and remove all default secrets: #3551

We've removed all default secrets and the hardcoded UUID of the user admin. This means you
can't start oCIS any longer without setting these via environment variable or configuration
file.

In order to make this easy for you, we introduced a new command: ocis init. You can run this
command before starting oCIS with ocis server and it will bootstrap you a configuration file
for a secure oCIS instance.

https://github.com/owncloud/ocis/issues/3524
https://github.com/owncloud/ocis/pull/3551
https://github.com/owncloud/ocis/pull/3743
Change - Rename "uploads purge" command to "uploads clean": #4403

We've renamed the storage-users service's "uploads purge" command to "upload clean".

https://github.com/owncloud/ocis/pull/4403
Change - The glauth and accounts services are removed: #3685

After switching the default configuration to libregraph/idm we could remove the glauth and
accounts services from the source code (they were already disabled by default with the
previous release)

https://github.com/owncloud/ocis/pull/3685
Change - Reduce drives in graph /me/drives API: #3629

Reduced the drives in the graph /me/drives API to only the drives the user has access to. The
endpoint /drives will list all drives when the user has the permission.

https://github.com/owncloud/ocis/pull/3629
Change - Switched default configuration to use libregraph/idm: #3331

We switched the default configuration of oCIS to use the "idm" service (based on
libregraph/idm) as the standard source for user and group information. The accounts and
glauth services are no longer enabled by default and will be removed with an upcoming release.

https://github.com/owncloud/ocis/pull/3331
https://github.com/owncloud/ocis/pull/3633
Change - Rename MetadataUserID: #3671

MetadataUserID is renamed to SystemUserID including yaml tags and env vars

https://github.com/owncloud/ocis/pull/3671
Change - Use new space ID util functions: #3648

Changed code to use the new space ID util functions so that everything works with the new spaces
ID format.

https://github.com/owncloud/ocis/pull/3648
https://github.com/owncloud/ocis/pull/3669
Change - Prevent access to disabled space: #3779

Previously managers where allowed to edit the space even when it is disabled This is no longer
possible

https://github.com/owncloud/ocis/pull/3779
Change - Rename serviceUser to systemUser: #3673

We renamed serviceUser to systemUser in all configs and vars including yaml-tags and env vars

https://github.com/owncloud/ocis/pull/3673
Change - Use the spaceID on the cs3 resource: #4748

We cleaned up the CS3Api to use a proper attribute for the space id.

https://github.com/owncloud/ocis/pull/4748
Change - Split MachineAuth from SystemUser: #3672

We now have two different APIKeys: MachineAuth for the machine-auth service and SystemUser
for the system user used e.g. by settings service

https://github.com/owncloud/ocis/pull/3672
Enhancement - Add capability for alias links: #3983

For better UX clients need a way to discover if alias links are supported by the server. We added a
capability under "files_sharing/public/alias"

https://github.com/owncloud/ocis/issues/3983
https://github.com/owncloud/ocis/pull/3991
Enhancement - Add drives field to users endpoint: #4072

We have added $expand=drives to the /users/{id}/ endpoint using the user filter
implemented in reva.

https://github.com/owncloud/ocis/pull/4072
https://github.com/cs3org/reva/pull/3046
https://github.com/owncloud/ocis/pull/4323
Enhancement - Add FRONTEND_ENABLE_RESHARING env variable: #4023

We introduced resharing which was enabled by default, this is now configurable and can be
enabled by setting the env FRONTEND_ENABLE_RESHARING to true. By default resharing is
now disabled.

https://github.com/owncloud/ocis/pull/4023
Enhancement - Add number of total matches to the search result: #4189

The search service now returns the number of total matches alongside the results.

https://github.com/owncloud/ocis/issues/4189
Enhancement - Align service naming: #3606

We now reflect the configured service names when listing them in the ocis runtime

https://github.com/owncloud/ocis/issues/3603
https://github.com/owncloud/ocis/pull/3606
Enhancement - Add acting user to the audit log: #3753

Added the acting user to the events in the audit log.

https://github.com/owncloud/ocis/issues/3753
https://github.com/owncloud/ocis/pull/3992
Enhancement - Add audit events for created containers: #3941

Handle the event ContainerCreated in the audit service.

https://github.com/owncloud/ocis/pull/3941
Enhancement - Don't setup demo role assignments on default: #3661

Added a configuration option to explicitly tell the settings service to generate the default
role assignments.

https://github.com/owncloud/ocis/issues/3661
https://github.com/owncloud/ocis/pull/3956
Enhancement - Improve validation of OIDC access tokens: #3841

Previously OIDC access tokes were only validated by requesting the userinfo from the IDP. It is
now possible to enable additional verification if the IDP issues access tokens in JWT format.
In that case the oCIS proxy service will now verify the signature of the token using the public
keys provided by jwks_uri endpoint of the IDP. It will also verify if the issuer claim (iss)
matches the expected values.

The new validation is enabled by setting PROXY_OIDC_ACCESS_TOKEN_VERIFY_METHOD to
"jwt". Which is also the default. Setting it to "none" will disable the feature.

https://github.com/owncloud/ocis/issues/3841
https://github.com/owncloud/ocis/pull/4227
Enhancement - Add /app/open-with-web endpoint: #4376

We've added an /app/open-with-web endpoint to the app provider, so that clients that are no
browser or have only limited browser access can also open apps with the help of a Web URL.

https://github.com/owncloud/ocis/pull/4376
https://github.com/cs3org/reva/pull/3143
Enhancement - Added language option to the app provider: #4399

We've added a language option to the app provider which will in the end be passed to the app a user
opens so that the web ui is displayed in the users language.

https://github.com/owncloud/ocis/issues/4367
https://github.com/owncloud/ocis/pull/4399
https://github.com/cs3org/reva/pull/3156
Enhancement - Improve error log for "could not get user by claim" error: #4227

We've improved the error log for "could not get user by claim" error where previously only the
"nil" error has been logged. Now we're logging the message from the transport.

https://github.com/owncloud/ocis/pull/4227
Enhancement - Add configuration options for mail authentication and encryption: #4443

We've added configuration options to configure the authentication and encryption for
sending mails in the notifications service.

Furthermore there is now a distinguished configuration option for the username to use for
authentication against the mail server. This allows you to customize the sender address to
your liking. For example sender addresses like my oCIS instance <[email protected]> are
now possible, too.

https://github.com/owncloud/ocis/pull/4443
Enhancement - Introduce service registry cache: #3833

We've improved the service registry / service discovery by setting up registry caching (TTL
20s), so that not every requests has to do a lookup on the registry.

https://github.com/owncloud/ocis/pull/3833
Enhancement - Reintroduce user autoprovisioning in proxy: #3860

With the removal of the accounts service autoprovisioning of users upon first login was no
longer possible. We added this feature back for the cs3 user backend in the proxy. Leveraging
the libregraph users API for creating the users.

https://github.com/owncloud/ocis/pull/3860
Enhancement - Added command to reset administrator password: #4084

The new command ocis idm resetpassword allows to reset the administrator password when ocis
is not running. So it is possible to recover setups where the admin password was lost.

https://github.com/owncloud/ocis/issues/4084
https://github.com/owncloud/ocis/pull/4365
Enhancement - Disable the color logging in docker compose examples: #871

Disabled the color logging in the example docker compose deployments. Although colored logs
are helpful during the development process they may be undesired in other situations like
production deployments, where the logs aren't consumed by humans directly but instead by a log
aggregator.

https://github.com/owncloud/ocis/issues/871
https://github.com/owncloud/ocis/pull/3935
Enhancement - Allow providing list of services NOT to start: #4254

Until now if one wanted to use a custom version of a service, one needed to provide
OCIS_RUN_SERVICES which is a list of all services to start. Now one can provide
OCIS_EXCLUDE_RUN_SERVICES which is a list of only services not to start

https://github.com/owncloud/ocis/pull/4254
Enhancement - Introduce insecure flag for smtp email notifications: #4279

We've introduced the NOTIFICATIONS_SMTP_INSECURE configuration option, that let's you
skip certificate verification for smtp email servers.

https://github.com/owncloud/ocis/pull/4279
Enhancement - Optional events in graph service: #55555

We've changed the graph service so that you also can start it without any event bus. Therefore
you need to set GRAPH_EVENTS_ENDPOINT to an empty string. The graph API will not emit any
events in this case.

https://github.com/owncloud/ocis/pull/55555
Enhancement - Fix behavior for foobar (in present tense): #4346

We've added the configuration option PROXY_OIDC_REWRITE_WELLKNOWN to rewrite the
/.well-known/openid-configuration endpoint. If active, it serves the
/.well-known/openid-configuration response of the original IDP configured in
OCIS_OIDC_ISSUER / PROXY_OIDC_ISSUER. This is needed so that the Desktop Client,
Android Client and iOS Client can discover the OIDC identity provider.

Previously this rewrite needed to be performed with an external proxy as NGINX or Traefik if an
external IDP was used.

https://github.com/owncloud/ocis/issues/2819
https://github.com/owncloud/ocis/issues/3280
https://github.com/owncloud/ocis/pull/4346
Enhancement - Add config option to provide TLS certificate: #3818

Added a config option to the graph service to provide a TLS certificate to be used to verify the
LDAP server certificate.

https://github.com/owncloud/ocis/issues/3818
https://github.com/owncloud/ocis/pull/3888
Enhancement - Add descriptions for graph-explorer config: #3759

Added descriptions tags to the graph-explorer config tags so that they will be included in the
documentation.

https://github.com/owncloud/ocis/pull/3759
Enhancement - Add /me/changePassword endpoint to GraphAPI: #3063

When using the builtin user management, allow users to update their own password via the
graph/v1.0/me/changePassword endpoint.

https://github.com/owncloud/ocis/issues/3063
https://github.com/owncloud/ocis/pull/3705
Enhancement - Generate signing key and encryption secret: #3909

The idp service now automatically generates a signing key and encryption secret when they
don't exist. This will enable service restarts without invalidating existing sessions.

https://github.com/owncloud/ocis/issues/3909
https://github.com/owncloud/ocis/pull/4022
Enhancement - Update IdP UI: #3493

Updated our fork of the lico IdP UI. This also updated the used npm dependencies. The design
didn't change.

https://github.com/owncloud/ocis/issues/3493
https://github.com/owncloud/ocis/pull/4074
Enhancement - Wrap metadata storage with dedicated reva gateway: #3602

We wrapped the metadata storage in a minimal reva instance with a dedicated gateway, including
static storage registry, static auth registry, in memory userprovider, machine
authprovider and demo permissions service. This allows us to preconfigure the service user
for the ocis settings service, share and public share providers.

https://github.com/owncloud/ocis/pull/3602
https://github.com/owncloud/ocis/pull/3647
Enhancement - New migrate command for migrating shares and public shares: #3987

We added a new migrate subcommand which can be used to migrate shares and public shares
between different share and publicshare managers.

https://github.com/owncloud/ocis/pull/3987
https://github.com/owncloud/ocis/pull/4019
Enhancement - Add missing unprotected paths: #4454

Added missing unprotected paths for the text-editor, preview, pdf-viewer, draw-io and
index.html to the authentication middleware.

https://github.com/owncloud/ocis/pull/4454
https://github.com/owncloud/ocis/pull/4458
Enhancement - Product field in OCS version: #2918

We've added a new field to the OCS Version, which is supposed to announce the product name. The
web ui as a client will make use of it to make the backend product and version available (e.g. for
easier bug reports).

https://github.com/owncloud/ocis/pull/2918
Enhancement - Refactor extensions to services: #3980

We have decided to name all extensions, we maintain and provide with ocis, services from here on
to avoid confusion between external extensions and code we provide and maintain.

https://github.com/owncloud/ocis/pull/3980
Enhancement - Allow resharing: #3904

This will allow resharing files

https://github.com/owncloud/ocis/pull/3904
Enhancement - Rewrite of the request authentication middleware: #4374

There were some flaws in the authentication middleware which were resolved by this rewrite.
This rewrite also introduced the need to manually mark certain paths as "unprotected" if
requests to these paths must not be authenticated.

https://github.com/owncloud/ocis/pull/4374
Enhancement - Add initial version of the search extensions: #3635

It is now possible to search for files and directories by their name using the web UI. Therefor
new search extension indexes files in a persistent local index.

https://github.com/owncloud/ocis/pull/3635
Enhancement - Add capability for public link single file edit: #6787

It is now possible to share a single file by link with edit permissions. Therefore we need a
public share capability to enable that feature in the clients. At the same time, we improved the
WebDAV permissions for public links.

https://github.com/owncloud/web/pull/6787
https://github.com/owncloud/ocis/pull/3538
Enhancement - Added share_jail and projects feature flags in spaces capability: #3626

We've added feature flags to the spaces capability to indicate to clients which features are
supposed to be shown to users.

https://github.com/owncloud/ocis/pull/3626
Enhancement - Use storageID when requesting special items: #4356

We need to use the storageID when requesting the special items of a space to spare a registry
lookup and improve the performance

https://github.com/owncloud/ocis/pull/4356
Enhancement - Add description tags to the thumbnails config structs: #3752

Added description tags to the config structs in the thumbnails service so they will be included
in the config documentation.

Important If you ran ocis init with the v2.0.0-alpha* version then you have to manually add the transfer_secret to the ocis.yaml.

Just open the ocis.yaml config file and look for the thumbnails section. Then add a random
transfer_secret so that it looks like this:

yaml thumbnails: thumbnail: transfer_secret: <put random value here>

https://github.com/owncloud/ocis/pull/3752
Enhancement - Make thumbnails service log less noisy: #3959

Reduced the log severity when no thumbnail was found from warn to debug. This reduces the spam in
the logs.

https://github.com/owncloud/ocis/pull/3959
Enhancement - Update linkshare capabilities: #3579

We have updated the capabilities regarding password enforcement and expiration dates of
public links. They were previously hardcoded in a way that didn't reflect the actual backend
functionality anymore.

https://github.com/owncloud/ocis/pull/3579
Enhancement - Update reva: #3944

Changelog for reva 2.6.1 (2022-06-27) =======================================

The following sections list the changes in reva 2.6.1 relevant to reva users. The changes are
ordered by importance.

Summary -------
- Bugfix cs3org/reva#2998: Fix 0-byte-uploads
- Enhancement cs3org/reva#3983: Add capability for alias links
- Enhancement cs3org/reva#3000: Make less stat requests
- Enhancement cs3org/reva#3003: Distinguish GRPC FAILED_PRECONDITION and ABORTED codes
- Enhancement cs3org/reva#3005: Remove unused HomeMapping variable
Changelog for reva 2.6.0 (2022-06-21) =======================================

The following sections list the changes in reva 2.6.0 relevant to reva users. The changes are
ordered by importance.
- Bugfix cs3org/reva#2985: Make stat requests route based on storage providerid
- Bugfix cs3org/reva#2987: Let archiver handle all error codes
- Bugfix cs3org/reva#2994: Bugfix errors when loading shares
- Bugfix cs3org/reva#2996: Do not close share dump channels
- Bugfix cs3org/reva#2993: Remove unused configuration
- Bugfix cs3org/reva#2950: Bugfix sharing with space ref
- Bugfix cs3org/reva#2991: Make sharesstorageprovider get accepted share
- Change cs3org/reva#2877: Enable resharing
- Change cs3org/reva#2984: Update CS3Apis
- Enhancement cs3org/reva#3753: Add executant to the events
- Enhancement cs3org/reva#2820: Instrument GRPC and HTTP requests with OTel
- Enhancement cs3org/reva#2975: Leverage shares space storageid and type when listing shares
- Enhancement cs3org/reva#3882: Explicitly return on ocdav move requests with body
- Enhancement cs3org/reva#2932: Stat accepted shares mountpoints, configure existing share updates
- Enhancement cs3org/reva#2944: Improve owncloudsql connection management
- Enhancement cs3org/reva#2962: Per service TracerProvider
- Enhancement cs3org/reva#2911: Allow for dumping and loading shares
- Enhancement cs3org/reva#2938: Sharpen tooling
https://github.com/owncloud/ocis/pull/3944
https://github.com/owncloud/ocis/pull/3975
https://github.com/owncloud/ocis/pull/3982
https://github.com/owncloud/ocis/pull/4000
https://github.com/owncloud/ocis/pull/4006
Enhancement - Update reva to version 2.7.2: #4115

Changelog for reva 2.7.2 (2022-07-18) =======================================
- Bugfix cs3org/reva#3079: Allow empty permissions
- Bugfix cs3org/reva#3084: Spaces related permissions and providerID cleanup
- Bugfix cs3org/reva#3083: Add space id to ItemTrashed event
Changelog for reva 2.7.1 (2022-07-15) =======================================
- Bugfix cs3org/reva#3080: Make dataproviders return more headers
- Enhancement cs3org/reva#3046: Add user filter
Changelog for reva 2.7.0 (2022-07-15) =======================================
- Bugfix cs3org/reva#3075: Check permissions of the move operation destination
- Bugfix cs3org/reva#3036:
- Bugfix revad with EOS docker image
- Bugfix cs3org/reva#3037: Add uid- and gidNumber to LDAP queries
- Bugfix cs3org/reva#4061: Forbid resharing with higher permissions
- Bugfix cs3org/reva#3017: Removed unused gateway config "commit_share_to_storage_ref"
- Bugfix cs3org/reva#3031: Return proper response code when detecting recursive copy/move operations
- Bugfix cs3org/reva#3071: Make CS3 sharing drivers parse legacy resource id
- Bugfix cs3org/reva#3035: Prevent cross space move
- Bugfix cs3org/reva#3074: Send storage provider and space id to wopi server
- Bugfix cs3org/reva#3022: Improve the sharing internals
- Bugfix cs3org/reva#2977: Test valid filename on spaces tus upload
- Change cs3org/reva#3006: Use spaceID on the cs3api
- Enhancement cs3org/reva#3043: Introduce LookupCtx for index interface
- Enhancement cs3org/reva#3009: Prevent recursive copy/move operations
- Enhancement cs3org/reva#2977: Skip space lookup on space propfind
https://github.com/owncloud/ocis/pull/4115
https://github.com/owncloud/ocis/pull/4201
https://github.com/owncloud/ocis/pull/4203
https://github.com/owncloud/ocis/pull/4025
https://github.com/owncloud/ocis/pull/4211
Enhancement - Update reva to v2.7.4: #4294

Updated reva to version 2.7.4 This update includes:
- Bugfix cs3org/reva#3141: Check ListGrants permission when listing shares
Updated reva to version 2.7.3 This update includes:
- Bugfix cs3org/reva#3109: Bugfix missing check in MustCheckNodePermissions
- Bugfix cs3org/reva#3086: Bugfix crash in ldap authprovider
- Bugfix cs3org/reva#3094: Allow removing password from public links
- Bugfix cs3org/reva#3096: Bugfix user filter
- Bugfix cs3org/reva#3091: Project spaces need no real owner
- Bugfix cs3org/reva#3088: Use correct sublogger
- Enhancement cs3org/reva#3123: Allow stating links that have no permissions
- Enhancement cs3org/reva#3087: Allow to set LDAP substring filter type
- Enhancement cs3org/reva#3098: App provider http endpoint uses Form instead of Query
- Enhancement cs3org/reva#3133: Admins can set quota on all spaces
- Enhancement cs3org/reva#3117: Update go-ldap to v3.4.4
- Enhancement cs3org/reva#3095: Upload expiration and cleanup
Https://github.com/owncloud/ocis/pull/4272
https://github.com/cs3org/reva/pull/3096 https://github.com/cs3org/reva/pull/4315

https://github.com/owncloud/ocis/pull/4294
https://github.com/owncloud/ocis/pull/4330
https://github.com/owncloud/ocis/pull/4369
Enhancement - Update reva to v2.8.0: #4444

Updated reva to version 2.8.0. This update includes:
- Bugfix cs3org/reva#3158: Add name to the propfind response
- Bugfix cs3org/reva#3157: Fix locking response codes
- Bugfix cs3org/reva#3152: Disable caching of not found stat responses
- Bugfix cs3org/reva#4251: Disable caching
- Enhancement cs3org/reva#3154: Dataproviders now return file metadata
- Enhancement cs3org/reva#3143: Add /app/open-with-web endpoint
- Enhancement cs3org/reva#3156: Added language option to the app provider
- Enhancement cs3org/reva#3148: Add new jsoncs3 share manager
https://github.com/owncloud/ocis/pull/4444
Enhancement - Update reva to version 2.4.1: #3746

Changelog for reva 2.4.1 (2022-05-24) =======================================

The following sections list the changes in reva 2.4.1 relevant to reva users. The changes are
ordered by importance.

Summary -------
- Bugfix cs3org/reva#2891: Add missing http status code
Changelog for reva 2.4.0 (2022-05-24) =======================================

The following sections list the changes in reva 2.4.0 relevant to reva users. The changes are
ordered by importance.

Summary -------
- Bugfix cs3org/reva#2854: Handle non uuid space and nodeid in decomposedfs
- Bugfix cs3org/reva#2853: Filter CS3 share manager listing
- Bugfix cs3org/reva#2868: Actually remove blobs when purging
- Bugfix cs3org/reva#2882: Fix FileUploaded event being emitted too early
- Bugfix cs3org/reva#2848: Fix storage id in the references in the ItemTrashed events
- Bugfix cs3org/reva#2852: Fix rcbox dependency on reva 1.18
- Bugfix cs3org/reva#3505: Fix creating a new file with wopi
- Bugfix cs3org/reva#2885: Move stat out of usershareprovider
- Bugfix cs3org/reva#2883: Fix role consideration when updating a share
- Bugfix cs3org/reva#2864: Fix Grant Space IDs
- Bugfix cs3org/reva#2870: Update quota calculation
- Bugfix cs3org/reva#2876: Fix version number in status page
- Bugfix cs3org/reva#2829: Don't include versions in quota
- Change cs3org/reva#2856: Do not allow to edit disabled spaces
- Enhancement cs3org/reva#3741: Add download endpoint to ocdav versions API
- Enhancement cs3org/reva#2884: Show mounted shares in virtual share jail root
- Enhancement cs3org/reva#2792: Use storageproviderid for spaces routing
https://github.com/owncloud/ocis/pull/3746
https://github.com/owncloud/ocis/pull/3771
https://github.com/owncloud/ocis/pull/3778
https://github.com/owncloud/ocis/pull/3842
https://github.com/owncloud/ocis/pull/3854
https://github.com/owncloud/ocis/pull/3858
https://github.com/owncloud/ocis/pull/3867
Enhancement - Update reva to version 2.5.1: #3932

Changelog for reva 2.5.1 (2022-06-08) =======================================

The following sections list the changes in reva 2.5.1 relevant to reva users. The changes are
ordered by importance.

Summary -------
- Bugfix cs3org/reva#2931: Allow listing share jail space
- Bugfix cs3org/reva#2918: Fix propfinds with depth 0
Changelog for reva 2.5.0 (2022-06-07) =======================================

The following sections list the changes in reva 2.5.0 relevant to reva users. The changes are
ordered by importance.

Summary -------
- Bugfix cs3org/reva#2909: The decomposedfs now checks the GetPath permission
- Bugfix cs3org/reva#2899: Empty meta requests should return body
- Bugfix cs3org/reva#2928: Fix mkcol response code
- Bugfix cs3org/reva#2907: Correct share jail child aggregation
- Bugfix cs3org/reva#2895: Fix unlimited quota in spaces
- Bugfix cs3org/reva#2905: Check user permissions before updating/removing public shares
- Bugfix cs3org/reva#2904: Share jail now works properly when accessed as a space
- Bugfix cs3org/reva#2903: User owncloudsql now uses the correct userid
- Change cs3org/reva#2920: Clean up the propfind code
- Change cs3org/reva#2913: Rename ocs parameter "space_ref"
- Enhancement cs3org/reva#2919: EOS Spaces implementation
- Enhancement cs3org/reva#2888: Introduce spaces field mask
- Enhancement cs3org/reva#2922: Refactor webdav error handling
https://github.com/owncloud/ocis/pull/3932
https://github.com/owncloud/ocis/pull/3928
https://github.com/owncloud/ocis/pull/3922
Enhancement - Update reva to v2.3.1: #3552

Updated reva to version 2.3.1. This update includes
- Bugfix cs3org/reva#2827: Check permissions when deleting spaces
- Bugfix cs3org/reva#2830: Correctly render response when accepting merged shares
- Bugfix cs3org/reva#2831: Fix uploads to owncloudsql storage when no mtime is provided
- Enhancement cs3org/reva#2833: Make status.php values configurable
- Enhancement cs3org/reva#2832: Add version option for ocdav go-micro service
Updated reva to version 2.3.0. This update includes:
- Bugfix cs3org/reva#2693: Support editnew actions from MS Office
- Bugfix cs3org/reva#2588: Dockerfile.revad-ceph to use the right base image
- Bugfix cs3org/reva#2499: Removed check DenyGrant in resource permission
- Bugfix cs3org/reva#2285: Accept new userid idp format
- Bugfix cs3org/reva#2802: Bugfix the resource id handling for space shares
- Bugfix cs3org/reva#2800: Bugfix spaceid parsing in spaces trashbin API
- Bugfix cs3org/reva#2608: Respect the tracing_service_name config variable
- Bugfix cs3org/reva#2742: Use exact match in login filter
- Bugfix cs3org/reva#2759: Made uid, gid claims parsing more robust in OIDC auth provider
- Bugfix cs3org/reva#2788: Return the correct file IDs on public link resources
- Bugfix cs3org/reva#2322: Use RFC3339 for parsing dates
- Bugfix cs3org/reva#2784: Disable storageprovider cache for the share jail
- Bugfix cs3org/reva#2555: Bugfix site accounts endpoints
- Bugfix cs3org/reva#2675: Updates Makefile according to latest go standards
- Bugfix cs3org/reva#2572: Wait for nats server on middleware start
- Change cs3org/reva#2735: Avoid user enumeration
- Change cs3org/reva#2737: Bump go-cs3api
- Change cs3org/reva#2763: Change the oCIS and S3NG storage driver blob store layout
- Change cs3org/reva#2596: Remove hash from public link urls
- Change cs3org/reva#2785: Implement workaround for chi.RegisterMethod
- Change cs3org/reva#2559: Do not encode webDAV ids to base64
- Change cs3org/reva#2740: Rename oc10 share manager driver
- Change cs3org/reva#2561: Merge oidcmapping auth manager into oidc
- Enhancement cs3org/reva#2698: Make capabilities endpoint public, authenticate users is present
- Enhancement cs3org/reva#2515: Enabling tracing by default if not explicitly disabled
- Enhancement cs3org/reva#2686: Features for favorites xattrs in EOS, cache for scope expansion
- Enhancement cs3org/reva#2494: Use sys ACLs for file permissions
- Enhancement cs3org/reva#2522: Introduce events
- Enhancement cs3org/reva#2811: Add event for created directories
- Enhancement cs3org/reva#2798: Add additional fields to events to enable search
- Enhancement cs3org/reva#2790: Fake providerids so API stays stable after beta
- Enhancement cs3org/reva#2685: Enable federated account access
- Enhancement cs3org/reva#1787: Add support for HTTP TPC
- Enhancement cs3org/reva#2799: Add flag to enable unrestriced listing of spaces
- Enhancement cs3org/reva#2560: Mentix PromSD extensions
- Enhancement cs3org/reva#2741: Meta path for user
- Enhancement cs3org/reva#2613: Externalize custom mime types configuration for storage providers
- Enhancement cs3org/reva#2163: Nextcloud-based share manager for pkg/ocm/share
- Enhancement cs3org/reva#2696: Preferences driver refactor and cbox sql implementation
- Enhancement cs3org/reva#2052: New CS3API datatx methods
- Enhancement cs3org/reva#2743: Add capability for public link single file edit
- Enhancement cs3org/reva#2738: Site accounts site-global settings
- Enhancement cs3org/reva#2672: Further Site Accounts improvements
- Enhancement cs3org/reva#2549: Site accounts improvements
- Enhancement cs3org/reva#2795: Add feature flags "projects" and "share_jail" to spaces capability
- Enhancement cs3org/reva#2514: Reuse ocs role objects in other drivers
- Enhancement cs3org/reva#2781: In memory user provider
- Enhancement cs3org/reva#2752: Refactor the rest user and group provider drivers
https://github.com/owncloud/ocis/issues/3621
https://github.com/owncloud/ocis/pull/3552
https://github.com/owncloud/ocis/pull/3570
https://github.com/owncloud/ocis/pull/3601
https://github.com/owncloud/ocis/pull/3602
https://github.com/owncloud/ocis/pull/3605
https://github.com/owncloud/ocis/pull/3611
https://github.com/owncloud/ocis/pull/3637
https://github.com/owncloud/ocis/pull/3652
https://github.com/owncloud/ocis/pull/3681
Enhancement - Update ownCloud Web to v5.5.0-rc.8: #6854

Tags: web

We updated ownCloud Web to v5.5.0-rc.8. Please refer to the changelog (linked) for details on
the web release.

https://github.com/owncloud/web/pull/6854
https://github.com/owncloud/ocis/pull/3844
https://github.com/owncloud/ocis/pull/3862
https://github.com/owncloud/web/releases/tag/v5.5.0-rc.8
Enhancement - Update ownCloud Web to v5.5.0-rc.9: #6854

Tags: web

We updated ownCloud Web to v5.5.0-rc.9. Please refer to the changelog (linked) for details on
the web release.

Summary -------
- Bugfix owncloud/web#6939: Not logged out if backend is ownCloud 10
- Bugfix owncloud/web#7061: Prevent rename button from getting covered
- Bugfix owncloud/web#7032: Show message when upload size exceeds quota
- Bugfix owncloud/web#7036: Drag and drop upload when a file is selected
- Enhancement owncloud/web#7022: Add config option for hoverable quick actions
- Enhancement owncloud/web#6555: Consistent dropdown menus
- Enhancement owncloud/web#6994: Copy/Move conflict dialog
- Enhancement owncloud/web#6750: Make contexthelpers opt-out
- Enhancement owncloud/web#7038: Rendering of share-indicators in ResourceTable
- Enhancement owncloud/web#6776: Prevent the resource name in the sidebar from being truncated
- Enhancement owncloud/web#7067: Upload progress & overlay improvements
https://github.com/owncloud/web/pull/6854
https://github.com/owncloud/ocis/pull/3927
https://github.com/owncloud/web/releases/tag/v5.5.0-rc.9
Enhancement - Update ownCloud Web to v5.5.0-rc.6: #6854

Tags: web

We updated ownCloud Web to v5.5.0-rc.6. Please refer to the changelog (linked) for details on
the web release.

https://github.com/owncloud/web/pull/6854
https://github.com/owncloud/ocis/pull/3664
https://github.com/owncloud/ocis/pull/3680
https://github.com/owncloud/ocis/pull/3727
https://github.com/owncloud/ocis/pull/3747
https://github.com/owncloud/ocis/pull/3797
https://github.com/owncloud/web/releases/tag/v5.5.0-rc.6
Enhancement - Update ownCloud Web to v5.7.0-rc.1: #4005

Tags: web

We updated ownCloud Web to v5.7.0-rc.1. Please refer to the changelog (linked) for details on
the web release.
- Enhancement owncloud/web#7119: Copy/Move conflict dialog
- Enhancement owncloud/web#7122: Enable Drag&Drop and keyboard shortcuts for all views
- Enhancement owncloud/web#7053: Personal space id in URL
- Enhancement owncloud/web#6933: Customize additional mimeTypes for preview app
- Enhancement owncloud/web#7078: Add Hotkeys to ResourceTable
- Enhancement owncloud/web#7120: Use tus chunksize from backend
- Enhancement owncloud/web#6749: Update ODS to v13.2.0-rc.1
- Enhancement owncloud/web#7111: Upload data during creation
- Enhancement owncloud/web#7109: Clickable folder links in upload overlay
- Enhancement owncloud/web#7123: Indeterminate progress bar in upload overlay
- Enhancement owncloud/web#7088: Upload time estimation
- Enhancement owncloud/web#7125: Wording improvements
- Enhancement owncloud/web#7140: Separate direct and indirect link shares in sidebar
- Bugfix owncloud/web#7156: Folder link targets
- Bugfix owncloud/web#7108: Reload of an updated space-image and/or -readme
- Bugfix owncloud/web#6846: Upload meta data serialization
- Bugfix owncloud/web#7100: Complete-state of the upload overlay
- Bugfix owncloud/web#7104: Parent folder name on public links
- Bugfix owncloud/web#7173: Re-introduce dynamic app name in document title
- Bugfix owncloud/web#7166: External apps fixes
https://github.com/owncloud/ocis/pull/4005
https://github.com/owncloud/web/pull/7158
https://github.com/owncloud/ocis/pull/3990
https://github.com/owncloud/web/pull/6854
https://github.com/owncloud/web/releases/tag/v5.7.0-rc.1
Enhancement - Update ownCloud Web to v5.7.0-rc.4: #4140

Tags: web

We updated ownCloud Web to v5.7.0-rc.4. Please refer to the changelog (linked) for details on
the web release.
- Bugfix owncloud/web#7230: Context menu misplaced when triggered by keyboard navigation
- Bugfix owncloud/web#7214: Prevent error when pasting with empty clipboard
- Bugfix owncloud/web#7173: Re-introduce dynamic app name in document title
- Bugfix owncloud/web#7166: External apps fixes
- Bugfix owncloud/web#7248: Hide empty trash bin modal on error
- Bugfix owncloud/web#4677: Logout deleted user on page reload
- Bugfix owncloud/web#7216: Filename hovers over the image in the preview app
- Bugfix owncloud/web#7228: Shared with others page apps not working with oc10 as backend
- Bugfix owncloud/web#7197: Create space and access user management permission
- Bugfix owncloud/web#6921: Space sidebar sharing indicators
- Bugfix owncloud/web#7030: Access token renewal
- Enhancement owncloud/web#7217: Add app top bar component
- Enhancement owncloud/web#7153: Add Keyboard navigation/selection
- Enhancement owncloud/web#7030: Loading context blocks application bootstrap
- Enhancement owncloud/web#7206: Add change own password dialog to the account info page
- Enhancement owncloud/web#7086: Re-sharing for ocis
- Enhancement owncloud/web#7201: Added a toolbar to pdf-viewer app
- Enhancement owncloud/web#7139: Reposition notifications
- Enhancement owncloud/web#7030: Resolve bookmarked public links with password protection
- Enhancement owncloud/web#7038: Improve performance of share indicators
- Enhancement owncloud/web#6661: Option to block file extensions from text-editor app
- Enhancement owncloud/web#7139: Update ODS to v14.0.0-alpha.4
- Enhancement owncloud/web#7176: Introduce group assignments
https://github.com/owncloud/ocis/pull/4140
https://github.com/owncloud/web/releases/tag/v5.7.0-rc.4
Enhancement - Update ownCloud Web to v5.7.0-rc.8: #4314

Tags: web

We updated ownCloud Web to v5.7.0-rc.9. Please refer to the changelog (linked) for details on
the web release.
- Bugfix owncloud/web#7080: Add Droparea again
- Bugfix owncloud/web#7357: Batch deleting multiple files
- Bugfix owncloud/web#7379: Decline share not possible
- Bugfix owncloud/web#7322: Files pagination scroll to top
- Bugfix owncloud/web#7348: Left sidebar active navigation item has wrong cursor
- Bugfix owncloud/web#7355: Link indicator on "Shared via link"-page
- Bugfix owncloud/web#7325: Loading state in views
- Bugfix owncloud/web#7344: Missing file icon in details panel
- Bugfix owncloud/web#7321: Missing scroll bar in user management app
- Bugfix owncloud/web#7334: No redirect after disabling space
- Bugfix owncloud/web#3071: Don't leak oidc callback url into browser history
- Bugfix owncloud/web#7379: Open file on shared space resource not possible
- Bugfix owncloud/web#7268: Personal shares leaked into project space
- Bugfix owncloud/web#7359: Fix infinite loading spinner on invalid preview links
- Bugfix owncloud/web#7272: Print backend version
- Bugfix owncloud/web#7424: Quicklinks not shown
- Bugfix owncloud/web#7379: Rename shared space resource not possible
- Bugfix owncloud/web#7210: Repair navigation highlighter
- Bugfix owncloud/web#7393: Selected item bottom glue
- Bugfix owncloud/web#7308: "Shared with others" and "Shared via Link" resource links not working
- Bugfix owncloud/web#7400: Respect space quota permission
- Bugfix owncloud/web#7349: Missing quick actions in spaces file list
- Bugfix owncloud/web#7396: Add storage ID when navigating to a shared parent directory
- Bugfix owncloud/web#7394: Suppress active panel error log
- Bugfix owncloud/web#7038: File list render performance
- Bugfix owncloud/web#7240: Access token renewal during upload
- Bugfix owncloud/web#7376: Tooltips not shown on disabled create and upload button
- Bugfix owncloud/web#7297: Upload overlay progress bar spacing
- Bugfix owncloud/web#7332: Users list not loading if user has no role
- Bugfix owncloud/web#7313: Versions of shared files not visible
- Enhancement owncloud/web#7404: Adjust helper texts
- Enhancement owncloud/web#7350: Change file loading mechanism in preview app
- Enhancement owncloud/web#7356: Declined shares are now easily accessible
- Enhancement owncloud/web#7365: Drop menu styling in right sidebar
- Enhancement owncloud/web#7252: Redesign shared with list
- Enhancement owncloud/web#7371: Use fixed width for the right sidebar
- Enhancement owncloud/web#7267: Search all files announce limit
- Enhancement owncloud/web#7364: Sharing panel show label instead of description for links
- Enhancement owncloud/web#7355: Update ODS to v14.0.0-alpha.12
- Enhancement owncloud/web#7375: User management app saved dialog
https://github.com/owncloud/ocis/pull/4314
https://github.com/owncloud/web/releases/tag/v5.7.0-rc.8
Enhancement - Update ownCloud Web to v5.7.0-rc.10: #4439

Tags: web

We updated ownCloud Web to v5.7.0-rc.10. Please refer to the changelog (linked) for details on
the web release.
- Bugfix owncloud/web#7443: Datetime formatting
- Bugfix owncloud/web#7437: Default to user context
- Bugfix owncloud/web#7473: Dragging a file causes no selection
- Bugfix owncloud/web#7469: File size not updated while restoring file version
- Bugfix owncloud/web#7443: File size formatting
- Bugfix owncloud/web#7474: Load only supported thumbnails (configurable)
- Bugfix owncloud/web#7309: SidebarNavItem icon flickering
- Bugfix owncloud/web#7425: Open Folder in project space context menu
- Bugfix owncloud/web#7486: Prevent unnecessary PROPFIND request during upload
- Bugfix owncloud/web#7415: Re-fetch quota
- Bugfix owncloud/web#7478: "Shared via"-indicator for links
- Bugfix owncloud/web#7480: Missing space image in sidebar
- Bugfix owncloud/web#7436: Hide share actions for space viewers/editors
- Bugfix owncloud/web#7445: User management app close side bar throws error
- Enhancement owncloud/web#7309: Keyboard shortcut indicators in ContextMenu
- Enhancement owncloud/web#7309: Lowlight cut resources
- Enhancement owncloud/web#7133: Permissionless (internal) link shares
- Enhancement owncloud/web#7309: Replace locationpicker with clipboard actions
- Enhancement owncloud/web#7363: Streamline UI sizings
- Enhancement owncloud/web#7355: Update ODS to v14.0.0-alpha.16
- Enhancement owncloud/web#7476: Users table on small screen
- Enhancement owncloud/web#7182: User management app edit quota
https://github.com/owncloud/ocis/pull/4439
https://github.com/owncloud/web/releases/tag/v5.7.0-rc.10
Enhancement - Expand personal drive on the graph user: #4357

We can now list the personal drive on the users endpoint via the graph API. A user can add an
$expand=drive query to list the personal drive of the requested user.

https://github.com/owncloud/ocis/pull/4357
Enhancement - Add descriptions to webdav configuration: #3755

Added descriptions to webdav config structs to include them in the config documentation.

https://github.com/owncloud/ocis/pull/3755
Enhancement - Search service at the old webdav endpoint: #4118

We made the search service available for legacy clients at the old webdav endpoint.

https://github.com/owncloud/ocis/pull/4118

ocis - 2.0.0-beta.6

Published by ownclouders about 2 years ago

Changes in 2.0.0-beta.6

Summary

Bugfix - Fix DN parsing issues and sizelimit handling in libregraph/idm: #3631
Bugfix - Remove runtime kill and run commands: #3740
Bugfix - Check permissions when deleting Space: #3709
Bugfix - Logging in on the wrong account when an email address is not unique: #4039
Bugfix - Allow empty environment variables: #3892
Bugfix - Remove unused transfer secret from app provider: #3798
Bugfix - Make IDP secrets configurable via environment variables: #3744
Bugfix - CSP rules for silent token refresh in iframe: #4031
Bugfix - Enable debug server by default: #3827
Bugfix - Rework default role provisioning: #3900
Bugfix - Fix search index getting out of sync: #3851
Bugfix - Inconsistency env var naming for LDAP filter configuration: #3890
Bugfix - Fix LDAP insecure options: #3897
Bugfix - Fix handling of invalid LDAP users and groups: #4274
Bugfix - Fix logging levels: #4102
Bugfix - Fix OCIS_RUN_SERVICES: #4133
Bugfix - Set default name for public link via capabilities: #3834
Bugfix - Remove legacy accounts proxy routes: #3831
Bugfix - Fix unused config option GRAPH_SPACES_INSECURE: #55555
Bugfix - Remove unused configuration options: #3973
Bugfix - Remove static ocs user backend config: #4077
Bugfix - Remove unused OCS storage configuration: #3955
Bugfix - Fix the ocis search command: #3796
Bugfix - Rename search env variable for the grpc server address: #3800
Bugfix - Fix search in received shares: #4308
Bugfix - Fix make sensitive config values in the proxy's debug server: #4086
Bugfix - Fix the idm and settings extensions' admin user id configuration option: #3799
Bugfix - Substring search for sharees: #547
Bugfix - Fix configuration validation for extensions' server commands: #3911
Bugfix - Fix startup error logging: #4093
Bugfix - Fix multiple storage-users env variables: #3802
Bugfix - Thumbnails for /dav/xxx?preview=1 requests: #3567
Bugfix - Fix unrestricted quota on the graphAPI: #4363
Bugfix - Fix user autoprovisioning: #3893
Bugfix - Fix version info: #3953
Bugfix - Fix version number in status page: #3788
Bugfix - Fix the webdav URL of drive roots: #3706
Bugfix - Idp: Check if CA certificate if present: #3623
Bugfix - Fix graph endpoint: #3925
Bugfix - Escape DN attribute value: #4117
Bugfix - Make IDP only wait for certs when using LDAP: #3965
Bugfix - Make ocdav service behave properly: #3957
Bugfix - Return proper errors when ocs/cloud/users is using the cs3 backend: #3483
Bugfix - Polish search: #4094
Bugfix - Save Katherine: #3823
Bugfix - Fix Thumbnails for IDs without a trailing path: #3791
Bugfix - Space Creators can hand over spaces: #4244
Bugfix - URL encode the webdav url in the graph API: #3597
Bugfix - Store user passwords hashed in idm: #3778
Change - Update ocis packages and imports to V2: #3678
Change - Load configuration files just from one directory: #3587
Change - Reduce permissions on docker image predeclared volumes: #3641
Change - Introduce ocis init and remove all default secrets: #3551
Change - The glauth and accounts services are removed: #3685
Change - Reduce drives in graph /me/drives API: #3629
Change - Switched default configuration to use libregraph/idm: #3331
Change - Rename MetadataUserID: #3671
Change - Use new space ID util functions: #3648
Change - Prevent access to disabled space: #3779
Change - Rename serviceUser to systemUser: #3673
Change - Use the spaceID on the cs3 resource: #4748
Change - Split MachineAuth from SystemUser: #3672
Enhancement - Add capability for alias links: #3983
Enhancement - Add drives field to users endpoint: #4072
Enhancement - Add FRONTEND_ENABLE_RESHARING env variable: #4023
Enhancement - Add number of total matches to the search result: #4189
Enhancement - Align service naming: #3606
Enhancement - Add acting user to the audit log: #3753
Enhancement - Add audit events for created containers: #3941
Enhancement - Don't setup demo role assignments on default: #3661
Enhancement - Improve validation of OIDC access tokens: #3841
Enhancement - Improve error log for "could not get user by claim" error: #4227
Enhancement - Introduce service registry cache: #3833
Enhancement - Reintroduce user autoprovisioning in proxy: #3860
Enhancement - Disable the color logging in docker compose examples: #871
Enhancement - Allow providing list of services NOT to start: #4254
Enhancement - Introduce insecure flag for smtp email notifications: #4279
Enhancement - Optional events in graph service: #55555
Enhancement - Fix behavior for foobar (in present tense): #4346
Enhancement - Add config option to provide TLS certificate: #3818
Enhancement - Add descriptions for graph-explorer config: #3759
Enhancement - Add /me/changePassword endpoint to GraphAPI: #3063
Enhancement - Generate signing key and encryption secret: #3909
Enhancement - Update IdP UI: #3493
Enhancement - Wrap metadata storage with dedicated reva gateway: #3602
Enhancement - New migrate command for migrating shares and public shares: #3987
Enhancement - Product field in OCS version: #2918
Enhancement - Refactor extensions to services: #3980
Enhancement - Allow resharing: #3904
Enhancement - Add initial version of the search extensions: #3635
Enhancement - Add capability for public link single file edit: #6787
Enhancement - Added share_jail and projects feature flags in spaces capability: #3626
Enhancement - Use storageID when requesting special items: #4356
Enhancement - Add description tags to the thumbnails config structs: #3752
Enhancement - Make thumbnails service log less noisy: #3959
Enhancement - Update linkshare capabilities: #3579
Enhancement - Update reva: #3944
Enhancement - Update reva to version 2.7.2: #4115
Enhancement - Update reva to v2.7.4: #4294
Enhancement - Update reva to version 2.4.1: #3746
Enhancement - Update reva to version 2.5.1: #3932
Enhancement - Update reva to v2.3.1: #3552
Enhancement - Update ownCloud Web to v5.5.0-rc.8: #6854
Enhancement - Update ownCloud Web to v5.5.0-rc.9: #6854
Enhancement - Update ownCloud Web to v5.5.0-rc.6: #6854
Enhancement - Update ownCloud Web to v5.7.0-rc.1: #4005
Enhancement - Update ownCloud Web to v5.7.0-rc.4: #4140
Enhancement - Update ownCloud Web to v5.7.0-rc.8: #4314
Enhancement - Expand personal drive on the graph user: #4357
Enhancement - Add descriptions to webdav configuration: #3755
Enhancement - Search service at the old webdav endpoint: #4118

Details

Bugfix - Fix DN parsing issues and sizelimit handling in libregraph/idm: #3631

We fixed a couple on issues in libregraph/idm related to correctly parsing LDAP DNs for
usernames contain characters that require escaping.

Also libregraph/idm was not properly returning "Size limit exceeded" errors when the result
set exceeded the requested size.

https://github.com/owncloud/ocis/issues/3631
https://github.com/owncloud/ocis/issues/4039
https://github.com/owncloud/ocis/issues/4078
Bugfix - Remove runtime kill and run commands: #3740

We've removed the kill and run commands from the oCIS runtime. If these dynamic capabilities
are needed, one should switch to a full fledged supervisor and start oCIS as individual
services.

If one wants to start a only a subset of services, this is still possible by setting
OCIS_RUN_EXTENSIONS.

https://github.com/owncloud/ocis/pull/3740
Bugfix - Check permissions when deleting Space: #3709

Check for manager permissions when deleting spaces. Do not allow deleting spaces via dav
service

https://github.com/owncloud/ocis/pull/3709
Bugfix - Logging in on the wrong account when an email address is not unique: #4039

The default configuration to use the same logon attribute for all services. Also, if the
configured logon attribute is not unique access to ocis is denied.

https://github.com/owncloud/ocis/issues/4039
Bugfix - Allow empty environment variables: #3892

We've fixed the behavior for empty environment variables, that previously would not have
overwritten default values. Therefore it had the same effect like not setting the environment
variable. We now check if the environment variable is set at all and if so, we also allow to
override a default value with an empty value.

https://github.com/owncloud/ocis/pull/3892
Bugfix - Remove unused transfer secret from app provider: #3798

We've fixed the startup of the app provider by removing the startup dependency on a configured
transfer secret, which was not used. This only happend if you start the app provider without
runtime (eg. ocis app-provider server) and didn't have configured all oCIS secrets.

https://github.com/owncloud/ocis/pull/3798
Bugfix - Make IDP secrets configurable via environment variables: #3744

We've fixed the configuration options of the IDP to make the IDP secrets again configurable via
environment variables.

https://github.com/owncloud/ocis/pull/3744
Bugfix - CSP rules for silent token refresh in iframe: #4031

When renewing the access token silently web needs to be opened in an iframe. This was previously
blocked by a restrictive iframe CSP rule in the Secure middleware and has now been fixed by
allow self for iframes.

https://github.com/owncloud/web/issues/7030
https://github.com/owncloud/ocis/pull/4031
Bugfix - Enable debug server by default: #3827

We've fixed the behavior for the audit, idm, nats and notifications extensions, that did not
start their debug server by default.

https://github.com/owncloud/ocis/pull/3827
Bugfix - Rework default role provisioning: #3900

We fixed a race condition in the default role assignment code that could lead to users loosing
privileges. When authenticating before the settings service was fully running.

https://github.com/owncloud/ocis/issues/3900
Bugfix - Fix search index getting out of sync: #3851

We fixed a problem where the search index got out of sync with child elements of a parent
containing special characters.

https://github.com/owncloud/ocis/pull/3851
Bugfix - Inconsistency env var naming for LDAP filter configuration: #3890

There was a naming inconsitency for the enviroment variables used to define LDAP filters for
user and groups queries. Some services used LDAP_USER_FILTER while others used
LDAP_USERFILTER. This is now changed to use LDAP_USER_FILTER and LDAP_GROUP_FILTER.

Note: If your oCIS setup is using an LDAP configuration that has any of the *_LDAP_USERFILTER
or *_LDAP_GROUPFILTER environment variables set, please update the configuration to use
the new unified names *_LDAP_USER_FILTER respectively *_LDAP_GROUP_FILTER instead.

https://github.com/owncloud/ocis/issues/3890
Bugfix - Fix LDAP insecure options: #3897

We've fixed multiple LDAP insecure options:
- The Graph LDAP insecure option default was set to true and now defaults to false. This is possible after #3888, since the Graph also now uses the LDAP CAcert by default.
- The Graph LDAP insecure option was configurable by the environment variable OCIS_INSECURE, which was replaced by the dedicated LDAP_INSECURE variable. This variable is also used by all other services using LDAP.
- The IDP insecure option for the user backend now also picks up configuration from LDAP_INSECURE.
https://github.com/owncloud/ocis/pull/3897
Bugfix - Fix handling of invalid LDAP users and groups: #4274

We fixed an issue where ocis would exit with a panic when LDAP users or groups where missing
required attributes (e.g. the id)

https://github.com/owncloud/ocis/issues/4274
Bugfix - Fix logging levels: #4102

We've fixed the configuration of logging levels. Previously it was not possible to configure a
service with a more or less verbose log level then all other services when running in the
supervised / runtime mode ocis server.

For example OCIS_LOG_LEVEL=error PROXY_LOG_LEVEL=debug ocis server did not configure
error logging for all services except the proxy, which should be on debug logging. This is now
fixed and working properly.

Also we fixed the format of go-micro logs to always default to error level. Previously this was
only ensured in the supervised / runtime mode.

https://github.com/owncloud/ocis/issues/4089
https://github.com/owncloud/ocis/pull/4102
Bugfix - Fix OCIS_RUN_SERVICES: #4133

OCIS_RUN_SERVICES was introduced as successor to OCIS_RUN_EXTENSIONS because we
wanted to call oCIS "core" extensions services. We kept OCIS_RUN_EXTENSIONS for backwards
compatibility reasons.

It turned out, that setting OCIS_RUN_SERVICES has no effect since introduced.
OCIS_RUN_EXTENSIONS. OCIS_RUN_EXTENSIONS was working fine all the time.

We now fixed OCIS_RUN_SERVICES, so that you can use it as a equivalent replacement for
OCIS_RUN_EXTENSIONS

https://github.com/owncloud/ocis/pull/4133
Bugfix - Set default name for public link via capabilities: #3834

We have now added a default name for public link shares which is communicated via the
capabilities.

https://github.com/owncloud/ocis/issues/1237
https://github.com/owncloud/ocis/pull/3834
Bugfix - Remove legacy accounts proxy routes: #3831

We've removed the legacy accounts routes from the proxy default config. There were no longer
used since the switch to IDM as the default user backend. Also accounts is no longer part of the
oCIS binary and therefore should not be part of the proxy default route config.

https://github.com/owncloud/ocis/pull/3831
Bugfix - Fix unused config option GRAPH_SPACES_INSECURE: #55555

We've removed the unused config option GRAPH_SPACES_INSECURE from the GRAPH service.

https://github.com/owncloud/ocis/pull/55555
Bugfix - Remove unused configuration options: #3973

We've removed multiple unused configuration options:
- STORAGE_SYSTEM_DATAPROVIDER_INSECURE, see also cs3org/reva#2993 -
  STORAGE_USERS_DATAPROVIDER_INSECURE, see also cs3org/reva#2993 -
  STORAGE_SYSTEM_TEMP_FOLDER, see also cs3org/reva#2993 -
  STORAGE_USERS_TEMP_FOLDER, see also cs3org/reva#2993 - WEB_UI_CONFIG_VERSION, see
  also owncloud/web#7130 - GATEWAY_COMMIT_SHARE_TO_STORAGE_REF, see also
  cs3org/reva#3017
https://github.com/owncloud/ocis/pull/3973
Bugfix - Remove static ocs user backend config: #4077

We've remove the OCS_ACCOUNT_BACKEND_TYPE configuration option. It was intended to allow
configuration of different user backends for the ocs service. Right now the ocs service only
has a "cs3" backend. Therefor it's a static entry and not configurable.

https://github.com/owncloud/ocis/pull/4077
Bugfix - Remove unused OCS storage configuration: #3955

We've removed the unused OCS configuration option OCS_STORAGE_USERS_DRIVER.

https://github.com/owncloud/ocis/pull/3955
Bugfix - Fix the ocis search command: #3796

We've fixed the behavior for ocis search, which didn't show further help when not all secrets
have been configured. It also was not possible to start the search service standalone from the
oCIS binary without configuring all oCIS secrets, even they were not needed by the search
service.

https://github.com/owncloud/ocis/pull/3796
Bugfix - Rename search env variable for the grpc server address: #3800

We've fixed the gprc server address configuration environment variable by renaming it from
ACCOUNTS_GRPC_ADDR to SEARCH_GRPC_ADDR

https://github.com/owncloud/ocis/pull/3800
Bugfix - Fix search in received shares: #4308

We fixed a problem where items in received shares were not found.

https://github.com/owncloud/ocis/issues/4308
Bugfix - Fix make sensitive config values in the proxy's debug server: #4086

We've fixed a security issue of the proxy's debug server config report endpoint. Previously
sensitive configuration values haven't been masked. We now mask these values.

https://github.com/owncloud/ocis/pull/4086
Bugfix - Fix the idm and settings extensions' admin user id configuration option: #3799

We've fixed the admin user id configuration of the settings and idm extensions. The have
previously only been configurable via the oCIS shared configuration and therefore have been
undocumented for the extensions. This config option is now part of both extensions'
configuration and can now also be used when the extensions are compiled standalone.

https://github.com/owncloud/ocis/pull/3799
Bugfix - Substring search for sharees: #547

We fixed searching for sharees to be no longer case-sensitive. With this we introduced two new
settings for the users and groups services: "group_substring_filter_type" for the group
services and "user_substring_filter_type" for the users service. They allow to set the type
of LDAP filter that is used for substring user searches. Possible values are: "initial",
"final" and "any" to do either prefix, suffix or full substring searches. Both settings
default to "initial".

Also a new option "search_min_length" was added for the "frontend" service. It allows to
configure the minimum number of characters to enter before a search for Sharees is started.
This setting is e.g. evaluated by the web ui via the capabilities endpoint.

https://github.com/owncloud/ocis/issues/547
Bugfix - Fix configuration validation for extensions' server commands: #3911

We've fixed the configuration validation for the extensions' server commands. Before this
fix error messages have occurred when trying to start individual services without certain
oCIS fullstack configuration values.

We now no longer do the common oCIS configuration validation for extensions' server commands
and now rely only on the extensions' validation function.

https://github.com/owncloud/ocis/pull/3911
Bugfix - Fix startup error logging: #4093

We've fixed the startup error logging, so that users will the reason for a failed startup even on
"error" log level. Previously they would only see it on "info" log level. Also in a lot of cases
the reason for the failed shutdown was omitted.

https://github.com/owncloud/ocis/pull/4093
Bugfix - Fix multiple storage-users env variables: #3802

We've fixed multiple environment variable configuration options for the storage-users
extension:
- STORAGE_USERS_GRPC_ADDR was used to configure both the address of the http and grpc server. This resulted in a failing startup of the storage-users extension if this config option is set, because the service tries to double-bind the configured port (one time for each of the http and grpc server). You can now configure the grpc server's address with the environment variable STORAGE_USERS_GRPC_ADDR and the http server's address with the environment variable STORAGE_USERS_HTTP_ADDR
- STORAGE_USERS_S3NG_USERS_PROVIDER_ENDPOINT was used to configure the permissions service endpoint for the S3NG driver and was therefore renamed to STORAGE_USERS_S3NG_PERMISSIONS_ENDPOINT
- It's now possible to configure the permissions service endpoint for all storage drivers with the environment variable STORAGE_USERS_PERMISSION_ENDPOINT, which was previously only used by the S3NG driver.
https://github.com/owncloud/ocis/pull/3802
Bugfix - Thumbnails for /dav/xxx?preview=1 requests: #3567

We've added the thumbnail rendering for /dav/xxx?preview=1,
/remote.php/webdav/{relative path}?preview=1 and /webdav/{relative path}?preview=1 requests, which was previously not supported because of missing routes. It
now returns the same thumbnails as for /remote.php/dav/xxx?preview=1.

https://github.com/owncloud/ocis/pull/3567
Bugfix - Fix unrestricted quota on the graphAPI: #4363

Unrestricted quota needs to show 0 on the API. It is not good for clients when the property is
missing.

https://github.com/owncloud/ocis/pull/4363
Bugfix - Fix user autoprovisioning: #3893

We've fixed the autoprovsioning feature that was introduced in beta2. Due to a bug the role
assignment of the privileged user that is used to create accounts wasn't propagated correctly
to the graph service.

https://github.com/owncloud/ocis/issues/3893
Bugfix - Fix version info: #3953

We've fixed the version info that is displayed when you run:
- ocis version - ocis <extension name> version
Since #2918, these commands returned an empty version only.

https://github.com/owncloud/ocis/pull/3953
Bugfix - Fix version number in status page: #3788

We needed to undo the version number changes on the status page to keep compatibility for legacy
clients. We added a new field productversion for the actual version of the product.

https://github.com/owncloud/ocis/issues/3788
https://github.com/owncloud/ocis/pull/3805
Bugfix - Fix the webdav URL of drive roots: #3706

Fixed the webdav URL of drive roots in the graph API.

https://github.com/owncloud/ocis/issues/3706
https://github.com/owncloud/ocis/pull/3916
Bugfix - Idp: Check if CA certificate if present: #3623

Upon first start with the default configurtation the idm service creates a server
certificate, that might not be finished before the idp service is starting. Add a check to idp
similar to what the user, group, and auth-providers implement.

https://github.com/owncloud/ocis/issues/3623
Bugfix - Fix graph endpoint: #3925

We have added the memberOf slice to the /users endpoint and the member slice to the /group
endpoint

https://github.com/owncloud/ocis/issues/3925
Bugfix - Escape DN attribute value: #4117

Escaped the DN attribute value on creating users and groups.

https://github.com/owncloud/ocis/pull/4117
Bugfix - Make IDP only wait for certs when using LDAP: #3965

When configuring cs3 as the backend the IDP no longer waits for an LDAP certificate to appear.

https://github.com/owncloud/ocis/pull/3965
Bugfix - Make ocdav service behave properly: #3957

The ocdav service now properly passes the tracing config and shuts down when receiving a kill
signal.

https://github.com/owncloud/ocis/pull/3957
Bugfix - Return proper errors when ocs/cloud/users is using the cs3 backend: #3483

The ocs API was just exiting with a fatal error on any update request, when configured for the cs3
backend. Now it returns a proper error.

https://github.com/owncloud/ocis/issues/3483
Bugfix - Polish search: #4094

We improved the feedback when providing invalid search queries and added support for limiting
the number of results returned.

https://github.com/owncloud/ocis/pull/4094
Bugfix - Save Katherine: #3823

SpaceManager user katherine was removed with the demo user switch. Now she comes back

https://github.com/owncloud/ocis/issues/3823
https://github.com/owncloud/ocis/pull/3824
Bugfix - Fix Thumbnails for IDs without a trailing path: #3791

The routes in the chi router were not matching thumbnail requests without a trailing path.

https://github.com/owncloud/ocis/pull/3791
Bugfix - Space Creators can hand over spaces: #4244

Set no owner on non personal spaces to be able to pass the space manager role to a new user.

https://github.com/owncloud/ocis/pull/4244
Bugfix - URL encode the webdav url in the graph API: #3597

Fixed the webdav URL in the drives responses. Without encoding the URL could be broken by files
with spaces in the file name.

https://github.com/owncloud/ocis/issues/3538
https://github.com/owncloud/ocis/pull/3597
Bugfix - Store user passwords hashed in idm: #3778

Support for hashing user passwords was added to libregraph/idm. The graph API will now set
userpasswords using the LDAP Modify Extended Operation (RFC3062). In the default
configuration passwords will be hashed using the argon2id algorithm.

https://github.com/owncloud/ocis/issues/3778
https://github.com/owncloud/ocis/pull/4053
Change - Update ocis packages and imports to V2: #3678

This needs to be done in preparation for the major version bump in ocis.

https://github.com/owncloud/ocis/pull/3678
Change - Load configuration files just from one directory: #3587

We've changed the configuration file loading behavior and are now only loading configuration
files from ONE single directory. This directory can be set on compile time or via an environment
variable on startup (OCIS_CONFIG_DIR).

We are using following configuration default paths:
- Docker images: /etc/ocis/ - Binary releases: $HOME/.ocis/config/
https://github.com/owncloud/ocis/pull/3587
Change - Reduce permissions on docker image predeclared volumes: #3641

We've lowered the permissions on the predeclared volumes of the oCIS docker image from 777 to
750.

This change doesn't affect you, unless you use the docker image with the non default uid/guid to
start oCIS (default is 1000:1000).

https://github.com/owncloud/ocis/pull/3641
Change - Introduce ocis init and remove all default secrets: #3551

We've removed all default secrets and the hardcoded UUID of the user admin. This means you
can't start oCIS any longer without setting these via environment variable or configuration
file.

In order to make this easy for you, we introduced a new command: ocis init. You can run this
command before starting oCIS with ocis server and it will bootstrap you a configuration file
for a secure oCIS instance.

https://github.com/owncloud/ocis/issues/3524
https://github.com/owncloud/ocis/pull/3551
https://github.com/owncloud/ocis/pull/3743
Change - The glauth and accounts services are removed: #3685

After switching the default configuration to libregraph/idm we could remove the glauth and
accounts services from the source code (they were already disabled by default with the
previous release)

https://github.com/owncloud/ocis/pull/3685
Change - Reduce drives in graph /me/drives API: #3629

Reduced the drives in the graph /me/drives API to only the drives the user has access to. The
endpoint /drives will list all drives when the user has the permission.

https://github.com/owncloud/ocis/pull/3629
Change - Switched default configuration to use libregraph/idm: #3331

We switched the default configuration of oCIS to use the "idm" service (based on
libregraph/idm) as the standard source for user and group information. The accounts and
glauth services are no longer enabled by default and will be removed with an upcoming release.

https://github.com/owncloud/ocis/pull/3331
https://github.com/owncloud/ocis/pull/3633
Change - Rename MetadataUserID: #3671

MetadataUserID is renamed to SystemUserID including yaml tags and env vars

https://github.com/owncloud/ocis/pull/3671
Change - Use new space ID util functions: #3648

Changed code to use the new space ID util functions so that everything works with the new spaces
ID format.

https://github.com/owncloud/ocis/pull/3648
https://github.com/owncloud/ocis/pull/3669
Change - Prevent access to disabled space: #3779

Previously managers where allowed to edit the space even when it is disabled This is no longer
possible

https://github.com/owncloud/ocis/pull/3779
Change - Rename serviceUser to systemUser: #3673

We renamed serviceUser to systemUser in all configs and vars including yaml-tags and env vars

https://github.com/owncloud/ocis/pull/3673
Change - Use the spaceID on the cs3 resource: #4748

We cleaned up the CS3Api to use a proper attribute for the space id.

https://github.com/owncloud/ocis/pull/4748
Change - Split MachineAuth from SystemUser: #3672

We now have two different APIKeys: MachineAuth for the machine-auth service and SystemUser
for the system user used e.g. by settings service

https://github.com/owncloud/ocis/pull/3672
Enhancement - Add capability for alias links: #3983

For better UX clients need a way to discover if alias links are supported by the server. We added a
capability under "files_sharing/public/alias"

https://github.com/owncloud/ocis/issues/3983
https://github.com/owncloud/ocis/pull/3991
Enhancement - Add drives field to users endpoint: #4072

We have added $expand=drives to the /users/{id}/ endpoint using the user filter
implemented in reva.

https://github.com/owncloud/ocis/pull/4072
https://github.com/cs3org/reva/pull/3046
https://github.com/owncloud/ocis/pull/4323
Enhancement - Add FRONTEND_ENABLE_RESHARING env variable: #4023

We introduced resharing which was enabled by default, this is now configurable and can be
enabled by setting the env FRONTEND_ENABLE_RESHARING to true. By default resharing is
now disabled.

https://github.com/owncloud/ocis/pull/4023
Enhancement - Add number of total matches to the search result: #4189

The search service now returns the number of total matches alongside the results.

https://github.com/owncloud/ocis/issues/4189
Enhancement - Align service naming: #3606

We now reflect the configured service names when listing them in the ocis runtime

https://github.com/owncloud/ocis/issues/3603
https://github.com/owncloud/ocis/pull/3606
Enhancement - Add acting user to the audit log: #3753

Added the acting user to the events in the audit log.

https://github.com/owncloud/ocis/issues/3753
https://github.com/owncloud/ocis/pull/3992
Enhancement - Add audit events for created containers: #3941

Handle the event ContainerCreated in the audit service.

https://github.com/owncloud/ocis/pull/3941
Enhancement - Don't setup demo role assignments on default: #3661

Added a configuration option to explicitly tell the settings service to generate the default
role assignments.

https://github.com/owncloud/ocis/issues/3661
https://github.com/owncloud/ocis/pull/3956
Enhancement - Improve validation of OIDC access tokens: #3841

Previously OIDC access tokes were only validated by requesting the userinfo from the IDP. It is
now possible to enable additional verification if the IDP issues access tokens in JWT format.
In that case the oCIS proxy service will now verify the signature of the token using the public
keys provided by jwks_uri endpoint of the IDP. It will also verify if the issuer claim (iss)
matches the expected values.

The new validation is enabled by setting PROXY_OIDC_ACCESS_TOKEN_VERIFY_METHOD to
"jwt". Which is also the default. Setting it to "none" will disable the feature.

https://github.com/owncloud/ocis/issues/3841
https://github.com/owncloud/ocis/pull/4227
Enhancement - Improve error log for "could not get user by claim" error: #4227

We've improved the error log for "could not get user by claim" error where previously only the
"nil" error has been logged. Now we're logging the message from the transport.

https://github.com/owncloud/ocis/pull/4227
Enhancement - Introduce service registry cache: #3833

We've improved the service registry / service discovery by setting up registry caching (TTL
20s), so that not every requests has to do a lookup on the registry.

https://github.com/owncloud/ocis/pull/3833
Enhancement - Reintroduce user autoprovisioning in proxy: #3860

With the removal of the accounts service autoprovisioning of users upon first login was no
longer possible. We added this feature back for the cs3 user backend in the proxy. Leveraging
the libregraph users API for creating the users.

https://github.com/owncloud/ocis/pull/3860
Enhancement - Disable the color logging in docker compose examples: #871

Disabled the color logging in the example docker compose deployments. Although colored logs
are helpful during the development process they may be undesired in other situations like
production deployments, where the logs aren't consumed by humans directly but instead by a log
aggregator.

https://github.com/owncloud/ocis/issues/871
https://github.com/owncloud/ocis/pull/3935
Enhancement - Allow providing list of services NOT to start: #4254

Until now if one wanted to use a custom version of a service, one needed to provide
OCIS_RUN_SERVICES which is a list of all services to start. Now one can provide
OCIS_EXCLUDE_RUN_SERVICES which is a list of only services not to start

https://github.com/owncloud/ocis/pull/4254
Enhancement - Introduce insecure flag for smtp email notifications: #4279

We've introduced the NOTIFICATIONS_SMTP_INSECURE configuration option, that let's you
skip certificate verification for smtp email servers.

https://github.com/owncloud/ocis/pull/4279
Enhancement - Optional events in graph service: #55555

We've changed the graph service so that you also can start it without any event bus. Therefore
you need to set GRAPH_EVENTS_ENDPOINT to an empty string. The graph API will not emit any
events in this case.

https://github.com/owncloud/ocis/pull/55555
Enhancement - Fix behavior for foobar (in present tense): #4346

We've added the configuration option PROXY_OIDC_REWRITE_WELLKNOWN to rewrite the
/.well-known/openid-configuration endpoint. If active, it serves the
/.well-known/openid-configuration response of the original IDP configured in
OCIS_OIDC_ISSUER / PROXY_OIDC_ISSUER. This is needed so that the Desktop Client,
Android Client and iOS Client can discover the OIDC identity provider.

Previously this rewrite needed to be performed with an external proxy as NGINX or Traefik if an
external IDP was used.

https://github.com/owncloud/ocis/issues/2819
https://github.com/owncloud/ocis/issues/3280
https://github.com/owncloud/ocis/pull/4346
Enhancement - Add config option to provide TLS certificate: #3818

Added a config option to the graph service to provide a TLS certificate to be used to verify the
LDAP server certificate.

https://github.com/owncloud/ocis/issues/3818
https://github.com/owncloud/ocis/pull/3888
Enhancement - Add descriptions for graph-explorer config: #3759

Added descriptions tags to the graph-explorer config tags so that they will be included in the
documentation.

https://github.com/owncloud/ocis/pull/3759
Enhancement - Add /me/changePassword endpoint to GraphAPI: #3063

When using the builtin user management, allow users to update their own password via the
graph/v1.0/me/changePassword endpoint.

https://github.com/owncloud/ocis/issues/3063
https://github.com/owncloud/ocis/pull/3705
Enhancement - Generate signing key and encryption secret: #3909

The idp service now automatically generates a signing key and encryption secret when they
don't exist. This will enable service restarts without invalidating existing sessions.

https://github.com/owncloud/ocis/issues/3909
https://github.com/owncloud/ocis/pull/4022
Enhancement - Update IdP UI: #3493

Updated our fork of the lico IdP UI. This also updated the used npm dependencies. The design
didn't change.

https://github.com/owncloud/ocis/issues/3493
https://github.com/owncloud/ocis/pull/4074
Enhancement - Wrap metadata storage with dedicated reva gateway: #3602

We wrapped the metadata storage in a minimal reva instance with a dedicated gateway, including
static storage registry, static auth registry, in memory userprovider, machine
authprovider and demo permissions service. This allows us to preconfigure the service user
for the ocis settings service, share and public share providers.

https://github.com/owncloud/ocis/pull/3602
https://github.com/owncloud/ocis/pull/3647
Enhancement - New migrate command for migrating shares and public shares: #3987

We added a new migrate subcommand which can be used to migrate shares and public shares
between different share and publicshare managers.

https://github.com/owncloud/ocis/pull/3987
https://github.com/owncloud/ocis/pull/4019
Enhancement - Product field in OCS version: #2918

We've added a new field to the OCS Version, which is supposed to announce the product name. The
web ui as a client will make use of it to make the backend product and version available (e.g. for
easier bug reports).

https://github.com/owncloud/ocis/pull/2918
Enhancement - Refactor extensions to services: #3980

We have decided to name all extensions, we maintain and provide with ocis, services from here on
to avoid confusion between external extensions and code we provide and maintain.

https://github.com/owncloud/ocis/pull/3980
Enhancement - Allow resharing: #3904

This will allow resharing files

https://github.com/owncloud/ocis/pull/3904
Enhancement - Add initial version of the search extensions: #3635

It is now possible to search for files and directories by their name using the web UI. Therefor
new search extension indexes files in a persistent local index.

https://github.com/owncloud/ocis/pull/3635
Enhancement - Add capability for public link single file edit: #6787

It is now possible to share a single file by link with edit permissions. Therefore we need a
public share capability to enable that feature in the clients. At the same time, we improved the
WebDAV permissions for public links.

https://github.com/owncloud/web/pull/6787
https://github.com/owncloud/ocis/pull/3538
Enhancement - Added share_jail and projects feature flags in spaces capability: #3626

We've added feature flags to the spaces capability to indicate to clients which features are
supposed to be shown to users.

https://github.com/owncloud/ocis/pull/3626
Enhancement - Use storageID when requesting special items: #4356

We need to use the storageID when requesting the special items of a space to spare a registry
lookup and improve the performance

https://github.com/owncloud/ocis/pull/4356
Enhancement - Add description tags to the thumbnails config structs: #3752

Added description tags to the config structs in the thumbnails service so they will be included
in the config documentation.

Important If you ran ocis init with the v2.0.0-alpha* version then you have to manually add the transfer_secret to the ocis.yaml.

Just open the ocis.yaml config file and look for the thumbnails section. Then add a random
transfer_secret so that it looks like this:

yaml thumbnails: thumbnail: transfer_secret: <put random value here>

https://github.com/owncloud/ocis/pull/3752
Enhancement - Make thumbnails service log less noisy: #3959

Reduced the log severity when no thumbnail was found from warn to debug. This reduces the spam in
the logs.

https://github.com/owncloud/ocis/pull/3959
Enhancement - Update linkshare capabilities: #3579

We have updated the capabilities regarding password enforcement and expiration dates of
public links. They were previously hardcoded in a way that didn't reflect the actual backend
functionality anymore.

https://github.com/owncloud/ocis/pull/3579
Enhancement - Update reva: #3944

Changelog for reva 2.6.1 (2022-06-27) =======================================

The following sections list the changes in reva 2.6.1 relevant to reva users. The changes are
ordered by importance.

Summary -------
- Bugfix cs3org/reva#2998: Fix 0-byte-uploads
- Enhancement cs3org/reva#3983: Add capability for alias links
- Enhancement cs3org/reva#3000: Make less stat requests
- Enhancement cs3org/reva#3003: Distinguish GRPC FAILED_PRECONDITION and ABORTED codes
- Enhancement cs3org/reva#3005: Remove unused HomeMapping variable
Changelog for reva 2.6.0 (2022-06-21) =======================================

The following sections list the changes in reva 2.6.0 relevant to reva users. The changes are
ordered by importance.
- Bugfix cs3org/reva#2985: Make stat requests route based on storage providerid
- Bugfix cs3org/reva#2987: Let archiver handle all error codes
- Bugfix cs3org/reva#2994: Bugfix errors when loading shares
- Bugfix cs3org/reva#2996: Do not close share dump channels
- Bugfix cs3org/reva#2993: Remove unused configuration
- Bugfix cs3org/reva#2950: Bugfix sharing with space ref
- Bugfix cs3org/reva#2991: Make sharesstorageprovider get accepted share
- Change cs3org/reva#2877: Enable resharing
- Change cs3org/reva#2984: Update CS3Apis
- Enhancement cs3org/reva#3753: Add executant to the events
- Enhancement cs3org/reva#2820: Instrument GRPC and HTTP requests with OTel
- Enhancement cs3org/reva#2975: Leverage shares space storageid and type when listing shares
- Enhancement cs3org/reva#3882: Explicitly return on ocdav move requests with body
- Enhancement cs3org/reva#2932: Stat accepted shares mountpoints, configure existing share updates
- Enhancement cs3org/reva#2944: Improve owncloudsql connection management
- Enhancement cs3org/reva#2962: Per service TracerProvider
- Enhancement cs3org/reva#2911: Allow for dumping and loading shares
- Enhancement cs3org/reva#2938: Sharpen tooling
https://github.com/owncloud/ocis/pull/3944
https://github.com/owncloud/ocis/pull/3975
https://github.com/owncloud/ocis/pull/3982
https://github.com/owncloud/ocis/pull/4000
https://github.com/owncloud/ocis/pull/4006
Enhancement - Update reva to version 2.7.2: #4115

Changelog for reva 2.7.2 (2022-07-18) =======================================
- Bugfix cs3org/reva#3079: Allow empty permissions
- Bugfix cs3org/reva#3084: Spaces related permissions and providerID cleanup
- Bugfix cs3org/reva#3083: Add space id to ItemTrashed event
Changelog for reva 2.7.1 (2022-07-15) =======================================
- Bugfix cs3org/reva#3080: Make dataproviders return more headers
- Enhancement cs3org/reva#3046: Add user filter
Changelog for reva 2.7.0 (2022-07-15) =======================================
- Bugfix cs3org/reva#3075: Check permissions of the move operation destination
- Bugfix cs3org/reva#3036:
- Bugfix revad with EOS docker image
- Bugfix cs3org/reva#3037: Add uid- and gidNumber to LDAP queries
- Bugfix cs3org/reva#4061: Forbid resharing with higher permissions
- Bugfix cs3org/reva#3017: Removed unused gateway config "commit_share_to_storage_ref"
- Bugfix cs3org/reva#3031: Return proper response code when detecting recursive copy/move operations
- Bugfix cs3org/reva#3071: Make CS3 sharing drivers parse legacy resource id
- Bugfix cs3org/reva#3035: Prevent cross space move
- Bugfix cs3org/reva#3074: Send storage provider and space id to wopi server
- Bugfix cs3org/reva#3022: Improve the sharing internals
- Bugfix cs3org/reva#2977: Test valid filename on spaces tus upload
- Change cs3org/reva#3006: Use spaceID on the cs3api
- Enhancement cs3org/reva#3043: Introduce LookupCtx for index interface
- Enhancement cs3org/reva#3009: Prevent recursive copy/move operations
- Enhancement cs3org/reva#2977: Skip space lookup on space propfind
https://github.com/owncloud/ocis/pull/4115
https://github.com/owncloud/ocis/pull/4201
https://github.com/owncloud/ocis/pull/4203
https://github.com/owncloud/ocis/pull/4025
https://github.com/owncloud/ocis/pull/4211
Enhancement - Update reva to v2.7.4: #4294

Updated reva to version 2.7.4 This update includes:
- Bugfix cs3org/reva#3141: Check ListGrants permission when listing shares
Updated reva to version 2.7.3 This update includes:
- Bugfix cs3org/reva#3109: Bugfix missing check in MustCheckNodePermissions
- Bugfix cs3org/reva#3086: Bugfix crash in ldap authprovider
- Bugfix cs3org/reva#3094: Allow removing password from public links
- Bugfix cs3org/reva#3096: Bugfix user filter
- Bugfix cs3org/reva#3091: Project spaces need no real owner
- Bugfix cs3org/reva#3088: Use correct sublogger
- Enhancement cs3org/reva#3123: Allow stating links that have no permissions
- Enhancement cs3org/reva#3087: Allow to set LDAP substring filter type
- Enhancement cs3org/reva#3098: App provider http endpoint uses Form instead of Query
- Enhancement cs3org/reva#3133: Admins can set quota on all spaces
- Enhancement cs3org/reva#3117: Update go-ldap to v3.4.4
- Enhancement cs3org/reva#3095: Upload expiration and cleanup
Https://github.com/owncloud/ocis/pull/4272
https://github.com/cs3org/reva/pull/3096 https://github.com/cs3org/reva/pull/4315

https://github.com/owncloud/ocis/pull/4294
https://github.com/owncloud/ocis/pull/4330
https://github.com/owncloud/ocis/pull/4369
Enhancement - Update reva to version 2.4.1: #3746

Changelog for reva 2.4.1 (2022-05-24) =======================================

The following sections list the changes in reva 2.4.1 relevant to reva users. The changes are
ordered by importance.

Summary -------
- Bugfix cs3org/reva#2891: Add missing http status code
Changelog for reva 2.4.0 (2022-05-24) =======================================

The following sections list the changes in reva 2.4.0 relevant to reva users. The changes are
ordered by importance.

Summary -------
- Bugfix cs3org/reva#2854: Handle non uuid space and nodeid in decomposedfs
- Bugfix cs3org/reva#2853: Filter CS3 share manager listing
- Bugfix cs3org/reva#2868: Actually remove blobs when purging
- Bugfix cs3org/reva#2882: Fix FileUploaded event being emitted too early
- Bugfix cs3org/reva#2848: Fix storage id in the references in the ItemTrashed events
- Bugfix cs3org/reva#2852: Fix rcbox dependency on reva 1.18
- Bugfix cs3org/reva#3505: Fix creating a new file with wopi
- Bugfix cs3org/reva#2885: Move stat out of usershareprovider
- Bugfix cs3org/reva#2883: Fix role consideration when updating a share
- Bugfix cs3org/reva#2864: Fix Grant Space IDs
- Bugfix cs3org/reva#2870: Update quota calculation
- Bugfix cs3org/reva#2876: Fix version number in status page
- Bugfix cs3org/reva#2829: Don't include versions in quota
- Change cs3org/reva#2856: Do not allow to edit disabled spaces
- Enhancement cs3org/reva#3741: Add download endpoint to ocdav versions API
- Enhancement cs3org/reva#2884: Show mounted shares in virtual share jail root
- Enhancement cs3org/reva#2792: Use storageproviderid for spaces routing
https://github.com/owncloud/ocis/pull/3746
https://github.com/owncloud/ocis/pull/3771
https://github.com/owncloud/ocis/pull/3778
https://github.com/owncloud/ocis/pull/3842
https://github.com/owncloud/ocis/pull/3854
https://github.com/owncloud/ocis/pull/3858
https://github.com/owncloud/ocis/pull/3867
Enhancement - Update reva to version 2.5.1: #3932

Changelog for reva 2.5.1 (2022-06-08) =======================================

The following sections list the changes in reva 2.5.1 relevant to reva users. The changes are
ordered by importance.

Summary -------
- Bugfix cs3org/reva#2931: Allow listing share jail space
- Bugfix cs3org/reva#2918: Fix propfinds with depth 0
Changelog for reva 2.5.0 (2022-06-07) =======================================

The following sections list the changes in reva 2.5.0 relevant to reva users. The changes are
ordered by importance.

Summary -------
- Bugfix cs3org/reva#2909: The decomposedfs now checks the GetPath permission
- Bugfix cs3org/reva#2899: Empty meta requests should return body
- Bugfix cs3org/reva#2928: Fix mkcol response code
- Bugfix cs3org/reva#2907: Correct share jail child aggregation
- Bugfix cs3org/reva#2895: Fix unlimited quota in spaces
- Bugfix cs3org/reva#2905: Check user permissions before updating/removing public shares
- Bugfix cs3org/reva#2904: Share jail now works properly when accessed as a space
- Bugfix cs3org/reva#2903: User owncloudsql now uses the correct userid
- Change cs3org/reva#2920: Clean up the propfind code
- Change cs3org/reva#2913: Rename ocs parameter "space_ref"
- Enhancement cs3org/reva#2919: EOS Spaces implementation
- Enhancement cs3org/reva#2888: Introduce spaces field mask
- Enhancement cs3org/reva#2922: Refactor webdav error handling
https://github.com/owncloud/ocis/pull/3932
https://github.com/owncloud/ocis/pull/3928
https://github.com/owncloud/ocis/pull/3922
Enhancement - Update reva to v2.3.1: #3552

Updated reva to version 2.3.1. This update includes
- Bugfix cs3org/reva#2827: Check permissions when deleting spaces
- Bugfix cs3org/reva#2830: Correctly render response when accepting merged shares
- Bugfix cs3org/reva#2831: Fix uploads to owncloudsql storage when no mtime is provided
- Enhancement cs3org/reva#2833: Make status.php values configurable
- Enhancement cs3org/reva#2832: Add version option for ocdav go-micro service
Updated reva to version 2.3.0. This update includes:
- Bugfix cs3org/reva#2693: Support editnew actions from MS Office
- Bugfix cs3org/reva#2588: Dockerfile.revad-ceph to use the right base image
- Bugfix cs3org/reva#2499: Removed check DenyGrant in resource permission
- Bugfix cs3org/reva#2285: Accept new userid idp format
- Bugfix cs3org/reva#2802: Bugfix the resource id handling for space shares
- Bugfix cs3org/reva#2800: Bugfix spaceid parsing in spaces trashbin API
- Bugfix cs3org/reva#2608: Respect the tracing_service_name config variable
- Bugfix cs3org/reva#2742: Use exact match in login filter
- Bugfix cs3org/reva#2759: Made uid, gid claims parsing more robust in OIDC auth provider
- Bugfix cs3org/reva#2788: Return the correct file IDs on public link resources
- Bugfix cs3org/reva#2322: Use RFC3339 for parsing dates
- Bugfix cs3org/reva#2784: Disable storageprovider cache for the share jail
- Bugfix cs3org/reva#2555: Bugfix site accounts endpoints
- Bugfix cs3org/reva#2675: Updates Makefile according to latest go standards
- Bugfix cs3org/reva#2572: Wait for nats server on middleware start
- Change cs3org/reva#2735: Avoid user enumeration
- Change cs3org/reva#2737: Bump go-cs3api
- Change cs3org/reva#2763: Change the oCIS and S3NG storage driver blob store layout
- Change cs3org/reva#2596: Remove hash from public link urls
- Change cs3org/reva#2785: Implement workaround for chi.RegisterMethod
- Change cs3org/reva#2559: Do not encode webDAV ids to base64
- Change cs3org/reva#2740: Rename oc10 share manager driver
- Change cs3org/reva#2561: Merge oidcmapping auth manager into oidc
- Enhancement cs3org/reva#2698: Make capabilities endpoint public, authenticate users is present
- Enhancement cs3org/reva#2515: Enabling tracing by default if not explicitly disabled
- Enhancement cs3org/reva#2686: Features for favorites xattrs in EOS, cache for scope expansion
- Enhancement cs3org/reva#2494: Use sys ACLs for file permissions
- Enhancement cs3org/reva#2522: Introduce events
- Enhancement cs3org/reva#2811: Add event for created directories
- Enhancement cs3org/reva#2798: Add additional fields to events to enable search
- Enhancement cs3org/reva#2790: Fake providerids so API stays stable after beta
- Enhancement cs3org/reva#2685: Enable federated account access
- Enhancement cs3org/reva#1787: Add support for HTTP TPC
- Enhancement cs3org/reva#2799: Add flag to enable unrestriced listing of spaces
- Enhancement cs3org/reva#2560: Mentix PromSD extensions
- Enhancement cs3org/reva#2741: Meta path for user
- Enhancement cs3org/reva#2613: Externalize custom mime types configuration for storage providers
- Enhancement cs3org/reva#2163: Nextcloud-based share manager for pkg/ocm/share
- Enhancement cs3org/reva#2696: Preferences driver refactor and cbox sql implementation
- Enhancement cs3org/reva#2052: New CS3API datatx methods
- Enhancement cs3org/reva#2743: Add capability for public link single file edit
- Enhancement cs3org/reva#2738: Site accounts site-global settings
- Enhancement cs3org/reva#2672: Further Site Accounts improvements
- Enhancement cs3org/reva#2549: Site accounts improvements
- Enhancement cs3org/reva#2795: Add feature flags "projects" and "share_jail" to spaces capability
- Enhancement cs3org/reva#2514: Reuse ocs role objects in other drivers
- Enhancement cs3org/reva#2781: In memory user provider
- Enhancement cs3org/reva#2752: Refactor the rest user and group provider drivers
https://github.com/owncloud/ocis/issues/3621
https://github.com/owncloud/ocis/pull/3552
https://github.com/owncloud/ocis/pull/3570
https://github.com/owncloud/ocis/pull/3601
https://github.com/owncloud/ocis/pull/3602
https://github.com/owncloud/ocis/pull/3605
https://github.com/owncloud/ocis/pull/3611
https://github.com/owncloud/ocis/pull/3637
https://github.com/owncloud/ocis/pull/3652
https://github.com/owncloud/ocis/pull/3681
Enhancement - Update ownCloud Web to v5.5.0-rc.8: #6854

Tags: web

We updated ownCloud Web to v5.5.0-rc.8. Please refer to the changelog (linked) for details on
the web release.

https://github.com/owncloud/web/pull/6854
https://github.com/owncloud/ocis/pull/3844
https://github.com/owncloud/ocis/pull/3862
https://github.com/owncloud/web/releases/tag/v5.5.0-rc.8
Enhancement - Update ownCloud Web to v5.5.0-rc.9: #6854

Tags: web

We updated ownCloud Web to v5.5.0-rc.9. Please refer to the changelog (linked) for details on
the web release.

Summary -------
- Bugfix owncloud/web#6939: Not logged out if backend is ownCloud 10
- Bugfix owncloud/web#7061: Prevent rename button from getting covered
- Bugfix owncloud/web#7032: Show message when upload size exceeds quota
- Bugfix owncloud/web#7036: Drag and drop upload when a file is selected
- Enhancement owncloud/web#7022: Add config option for hoverable quick actions
- Enhancement owncloud/web#6555: Consistent dropdown menus
- Enhancement owncloud/web#6994: Copy/Move conflict dialog
- Enhancement owncloud/web#6750: Make contexthelpers opt-out
- Enhancement owncloud/web#7038: Rendering of share-indicators in ResourceTable
- Enhancement owncloud/web#6776: Prevent the resource name in the sidebar from being truncated
- Enhancement owncloud/web#7067: Upload progress & overlay improvements
https://github.com/owncloud/web/pull/6854
https://github.com/owncloud/ocis/pull/3927
https://github.com/owncloud/web/releases/tag/v5.5.0-rc.9
Enhancement - Update ownCloud Web to v5.5.0-rc.6: #6854

Tags: web

We updated ownCloud Web to v5.5.0-rc.6. Please refer to the changelog (linked) for details on
the web release.

https://github.com/owncloud/web/pull/6854
https://github.com/owncloud/ocis/pull/3664
https://github.com/owncloud/ocis/pull/3680
https://github.com/owncloud/ocis/pull/3727
https://github.com/owncloud/ocis/pull/3747
https://github.com/owncloud/ocis/pull/3797
https://github.com/owncloud/web/releases/tag/v5.5.0-rc.6
Enhancement - Update ownCloud Web to v5.7.0-rc.1: #4005

Tags: web

We updated ownCloud Web to v5.7.0-rc.1. Please refer to the changelog (linked) for details on
the web release.
- Enhancement owncloud/web#7119: Copy/Move conflict dialog
- Enhancement owncloud/web#7122: Enable Drag&Drop and keyboard shortcuts for all views
- Enhancement owncloud/web#7053: Personal space id in URL
- Enhancement owncloud/web#6933: Customize additional mimeTypes for preview app
- Enhancement owncloud/web#7078: Add Hotkeys to ResourceTable
- Enhancement owncloud/web#7120: Use tus chunksize from backend
- Enhancement owncloud/web#6749: Update ODS to v13.2.0-rc.1
- Enhancement owncloud/web#7111: Upload data during creation
- Enhancement owncloud/web#7109: Clickable folder links in upload overlay
- Enhancement owncloud/web#7123: Indeterminate progress bar in upload overlay
- Enhancement owncloud/web#7088: Upload time estimation
- Enhancement owncloud/web#7125: Wording improvements
- Enhancement owncloud/web#7140: Separate direct and indirect link shares in sidebar
- Bugfix owncloud/web#7156: Folder link targets
- Bugfix owncloud/web#7108: Reload of an updated space-image and/or -readme
- Bugfix owncloud/web#6846: Upload meta data serialization
- Bugfix owncloud/web#7100: Complete-state of the upload overlay
- Bugfix owncloud/web#7104: Parent folder name on public links
- Bugfix owncloud/web#7173: Re-introduce dynamic app name in document title
- Bugfix owncloud/web#7166: External apps fixes
https://github.com/owncloud/ocis/pull/4005
https://github.com/owncloud/web/pull/7158
https://github.com/owncloud/ocis/pull/3990
https://github.com/owncloud/web/pull/6854
https://github.com/owncloud/web/releases/tag/v5.7.0-rc.1
Enhancement - Update ownCloud Web to v5.7.0-rc.4: #4140

Tags: web

We updated ownCloud Web to v5.7.0-rc.4. Please refer to the changelog (linked) for details on
the web release.
- Bugfix owncloud/web#7230: Context menu misplaced when triggered by keyboard navigation
- Bugfix owncloud/web#7214: Prevent error when pasting with empty clipboard
- Bugfix owncloud/web#7173: Re-introduce dynamic app name in document title
- Bugfix owncloud/web#7166: External apps fixes
- Bugfix owncloud/web#7248: Hide empty trash bin modal on error
- Bugfix owncloud/web#4677: Logout deleted user on page reload
- Bugfix owncloud/web#7216: Filename hovers over the image in the preview app
- Bugfix owncloud/web#7228: Shared with others page apps not working with oc10 as backend
- Bugfix owncloud/web#7197: Create space and access user management permission
- Bugfix owncloud/web#6921: Space sidebar sharing indicators
- Bugfix owncloud/web#7030: Access token renewal
- Enhancement owncloud/web#7217: Add app top bar component
- Enhancement owncloud/web#7153: Add Keyboard navigation/selection
- Enhancement owncloud/web#7030: Loading context blocks application bootstrap
- Enhancement owncloud/web#7206: Add change own password dialog to the account info page
- Enhancement owncloud/web#7086: Re-sharing for ocis
- Enhancement owncloud/web#7201: Added a toolbar to pdf-viewer app
- Enhancement owncloud/web#7139: Reposition notifications
- Enhancement owncloud/web#7030: Resolve bookmarked public links with password protection
- Enhancement owncloud/web#7038: Improve performance of share indicators
- Enhancement owncloud/web#6661: Option to block file extensions from text-editor app
- Enhancement owncloud/web#7139: Update ODS to v14.0.0-alpha.4
- Enhancement owncloud/web#7176: Introduce group assignments
https://github.com/owncloud/ocis/pull/4140
https://github.com/owncloud/web/releases/tag/v5.7.0-rc.4
Enhancement - Update ownCloud Web to v5.7.0-rc.8: #4314

Tags: web

We updated ownCloud Web to v5.7.0-rc.9. Please refer to the changelog (linked) for details on
the web release.
- Bugfix owncloud/web#7080: Add Droparea again
- Bugfix owncloud/web#7357: Batch deleting multiple files
- Bugfix owncloud/web#7379: Decline share not possible
- Bugfix owncloud/web#7322: Files pagination scroll to top
- Bugfix owncloud/web#7348: Left sidebar active navigation item has wrong cursor
- Bugfix owncloud/web#7355: Link indicator on "Shared via link"-page
- Bugfix owncloud/web#7325: Loading state in views
- Bugfix owncloud/web#7344: Missing file icon in details panel
- Bugfix owncloud/web#7321: Missing scroll bar in user management app
- Bugfix owncloud/web#7334: No redirect after disabling space
- Bugfix owncloud/web#3071: Don't leak oidc callback url into browser history
- Bugfix owncloud/web#7379: Open file on shared space resource not possible
- Bugfix owncloud/web#7268: Personal shares leaked into project space
- Bugfix owncloud/web#7359: Fix infinite loading spinner on invalid preview links
- Bugfix owncloud/web#7272: Print backend version
- Bugfix owncloud/web#7424: Quicklinks not shown
- Bugfix owncloud/web#7379: Rename shared space resource not possible
- Bugfix owncloud/web#7210: Repair navigation highlighter
- Bugfix owncloud/web#7393: Selected item bottom glue
- Bugfix owncloud/web#7308: "Shared with others" and "Shared via Link" resource links not working
- Bugfix owncloud/web#7400: Respect space quota permission
- Bugfix owncloud/web#7349: Missing quick actions in spaces file list
- Bugfix owncloud/web#7396: Add storage ID when navigating to a shared parent directory
- Bugfix owncloud/web#7394: Suppress active panel error log
- Bugfix owncloud/web#7038: File list render performance
- Bugfix owncloud/web#7240: Access token renewal during upload
- Bugfix owncloud/web#7376: Tooltips not shown on disabled create and upload button
- Bugfix owncloud/web#7297: Upload overlay progress bar spacing
- Bugfix owncloud/web#7332: Users list not loading if user has no role
- Bugfix owncloud/web#7313: Versions of shared files not visible
- Enhancement owncloud/web#7404: Adjust helper texts
- Enhancement owncloud/web#7350: Change file loading mechanism in preview app
- Enhancement owncloud/web#7356: Declined shares are now easily accessible
- Enhancement owncloud/web#7365: Drop menu styling in right sidebar
- Enhancement owncloud/web#7252: Redesign shared with list
- Enhancement owncloud/web#7371: Use fixed width for the right sidebar
- Enhancement owncloud/web#7267: Search all files announce limit
- Enhancement owncloud/web#7364: Sharing panel show label instead of description for links
- Enhancement owncloud/web#7355: Update ODS to v14.0.0-alpha.12
- Enhancement owncloud/web#7375: User management app saved dialog
https://github.com/owncloud/ocis/pull/4314
https://github.com/owncloud/web/releases/tag/v5.7.0-rc.8
Enhancement - Expand personal drive on the graph user: #4357

We can now list the personal drive on the users endpoint via the graph API. A user can add an
$expand=drive query to list the personal drive of the requested user.

https://github.com/owncloud/ocis/pull/4357
Enhancement - Add descriptions to webdav configuration: #3755

Added descriptions to webdav config structs to include them in the config documentation.

https://github.com/owncloud/ocis/pull/3755
Enhancement - Search service at the old webdav endpoint: #4118

We made the search service available for legacy clients at the old webdav endpoint.

https://github.com/owncloud/ocis/pull/4118

ocis - 2.0.0-beta.5

Published by ownclouders over 2 years ago

Changes in 2.0.0-beta.5

Summary

Bugfix - Fix DN parsing issues and sizelimit handling in libregraph/idm: #3631
Bugfix - Remove runtime kill and run commands: #3740
Bugfix - Check permissions when deleting Space: #3709
Bugfix - Logging in on the wrong account when an email address is not unique: #4039
Bugfix - Allow empty environment variables: #3892
Bugfix - Remove unused transfer secret from app provider: #3798
Bugfix - Make IDP secrets configurable via environment variables: #3744
Bugfix - CSP rules for silent token refresh in iframe: #4031
Bugfix - Enable debug server by default: #3827
Bugfix - Rework default role provisioning: #3900
Bugfix - Fix search index getting out of sync: #3851
Bugfix - Inconsistency env var naming for LDAP filter configuration: #3890
Bugfix - Fix LDAP insecure options: #3897
Bugfix - Fix logging levels: #4102
Bugfix - Fix OCIS_RUN_SERVICES: #4133
Bugfix - Set default name for public link via capabilities: #3834
Bugfix - Remove legacy accounts proxy routes: #3831
Bugfix - Fix unused config option GRAPH_SPACES_INSECURE: #55555
Bugfix - Remove unused configuration options: #3973
Bugfix - Remove static ocs user backend config: #4077
Bugfix - Remove unused OCS storage configuration: #3955
Bugfix - Fix the ocis search command: #3796
Bugfix - Rename search env variable for the grpc server address: #3800
Bugfix - Fix make sensitive config values in the proxy's debug server: #4086
Bugfix - Fix the idm and settings extensions' admin user id configuration option: #3799
Bugfix - Fix configuration validation for extensions' server commands: #3911
Bugfix - Fix startup error logging: #4093
Bugfix - Fix multiple storage-users env variables: #3802
Bugfix - Thumbnails for /dav/xxx?preview=1 requests: #3567
Bugfix - Fix user autoprovisioning: #3893
Bugfix - Fix version info: #3953
Bugfix - Fix version number in status page: #3788
Bugfix - Fix the webdav URL of drive roots: #3706
Bugfix - Idp: Check if CA certificate if present: #3623
Bugfix - Fix graph endpoint: #3925
Bugfix - Escape DN attribute value: #4117
Bugfix - Make IDP only wait for certs when using LDAP: #3965
Bugfix - Make ocdav service behave properly: #3957
Bugfix - Return proper errors when ocs/cloud/users is using the cs3 backend: #3483
Bugfix - Polish search: #4094
Bugfix - Save Katherine: #3823
Bugfix - Fix Thumbnails for IDs without a trailing path: #3791
Bugfix - URL encode the webdav url in the graph API: #3597
Bugfix - Store user passwords hashed in idm: #3778
Change - Update ocis packages and imports to V2: #3678
Change - Load configuration files just from one directory: #3587
Change - Reduce permissions on docker image predeclared volumes: #3641
Change - Introduce ocis init and remove all default secrets: #3551
Change - The glauth and accounts services are removed: #3685
Change - Reduce drives in graph /me/drives API: #3629
Change - Switched default configuration to use libregraph/idm: #3331
Change - Rename MetadataUserID: #3671
Change - Use new space ID util functions: #3648
Change - Prevent access to disabled space: #3779
Change - Rename serviceUser to systemUser: #3673
Change - Use the spaceID on the cs3 resource: #4748
Change - Split MachineAuth from SystemUser: #3672
Enhancement - Add capability for alias links: #3983
Enhancement - Add FRONTEND_ENABLE_RESHARING env variable: #4023
Enhancement - Add number of total matches to the search result: #4189
Enhancement - Align service naming: #3606
Enhancement - Add acting user to the audit log: #3753
Enhancement - Add audit events for created containers: #3941
Enhancement - Don't setup demo role assignments on default: #3661
Enhancement - Introduce service registry cache: #3833
Enhancement - Reintroduce user autoprovisioning in proxy: #3860
Enhancement - Disable the color logging in docker compose examples: #871
Enhancement - Optional events in graph service: #55555
Enhancement - Add config option to provide TLS certificate: #3818
Enhancement - Add descriptions for graph-explorer config: #3759
Enhancement - Add /me/changePassword endpoint to GraphAPI: #3063
Enhancement - Generate signing key and encryption secret: #3909
Enhancement - Update IdP UI: #3493
Enhancement - Wrap metadata storage with dedicated reva gateway: #3602
Enhancement - New migrate command for migrating shares and public shares: #3987
Enhancement - Product field in OCS version: #2918
Enhancement - Refactor extensions to services: #3980
Enhancement - Allow resharing: #3904
Enhancement - Add initial version of the search extensions: #3635
Enhancement - Add capability for public link single file edit: #6787
Enhancement - Added share_jail and projects feature flags in spaces capability: #3626
Enhancement - Add description tags to the thumbnails config structs: #3752
Enhancement - Make thumbnails service log less noisy: #3959
Enhancement - Update linkshare capabilities: #3579
Enhancement - Update reva: #3944
Enhancement - Update reva to version 2.7.2: #4115
Enhancement - Update reva to version 2.4.1: #3746
Enhancement - Update reva to version 2.5.1: #3932
Enhancement - Update reva to v2.3.1: #3552
Enhancement - Update ownCloud Web to v5.5.0-rc.8: #6854
Enhancement - Update ownCloud Web to v5.5.0-rc.9: #6854
Enhancement - Update ownCloud Web to v5.5.0-rc.6: #6854
Enhancement - Update ownCloud Web to v5.7.0-rc.1: #4005
Enhancement - Update ownCloud Web to v5.7.0-rc.4: #4140
Enhancement - Add descriptions to webdav configuration: #3755
Enhancement - Search service at the old webdav endpoint: #4118

Details

Bugfix - Fix DN parsing issues and sizelimit handling in libregraph/idm: #3631

We fixed a couple on issues in libregraph/idm related to correctly parsing LDAP DNs for
usernames contain characters that require escaping.

Also libregraph/idm was not properly returning "Size limit exceeded" errors when the result
set exceeded the requested size.

https://github.com/owncloud/ocis/issues/3631
https://github.com/owncloud/ocis/issues/4039
https://github.com/owncloud/ocis/issues/4078
Bugfix - Remove runtime kill and run commands: #3740

We've removed the kill and run commands from the oCIS runtime. If these dynamic capabilities
are needed, one should switch to a full fledged supervisor and start oCIS as individual
services.

If one wants to start a only a subset of services, this is still possible by setting
OCIS_RUN_EXTENSIONS.

https://github.com/owncloud/ocis/pull/3740
Bugfix - Check permissions when deleting Space: #3709

Check for manager permissions when deleting spaces. Do not allow deleting spaces via dav
service

https://github.com/owncloud/ocis/pull/3709
Bugfix - Logging in on the wrong account when an email address is not unique: #4039

The default configuration to use the same logon attribute for all services. Also, if the
configured logon attribute is not unique access to ocis is denied.

https://github.com/owncloud/ocis/issues/4039
Bugfix - Allow empty environment variables: #3892

We've fixed the behavior for empty environment variables, that previously would not have
overwritten default values. Therefore it had the same effect like not setting the environment
variable. We now check if the environment variable is set at all and if so, we also allow to
override a default value with an empty value.

https://github.com/owncloud/ocis/pull/3892
Bugfix - Remove unused transfer secret from app provider: #3798

We've fixed the startup of the app provider by removing the startup dependency on a configured
transfer secret, which was not used. This only happend if you start the app provider without
runtime (eg. ocis app-provider server) and didn't have configured all oCIS secrets.

https://github.com/owncloud/ocis/pull/3798
Bugfix - Make IDP secrets configurable via environment variables: #3744

We've fixed the configuration options of the IDP to make the IDP secrets again configurable via
environment variables.

https://github.com/owncloud/ocis/pull/3744
Bugfix - CSP rules for silent token refresh in iframe: #4031

When renewing the access token silently web needs to be opened in an iframe. This was previously
blocked by a restrictive iframe CSP rule in the Secure middleware and has now been fixed by
allow self for iframes.

https://github.com/owncloud/web/issues/7030
https://github.com/owncloud/ocis/pull/4031
Bugfix - Enable debug server by default: #3827

We've fixed the behavior for the audit, idm, nats and notifications extensions, that did not
start their debug server by default.

https://github.com/owncloud/ocis/pull/3827
Bugfix - Rework default role provisioning: #3900

We fixed a race condition in the default role assignment code that could lead to users loosing
privileges. When authenticating before the settings service was fully running.

https://github.com/owncloud/ocis/issues/3900
Bugfix - Fix search index getting out of sync: #3851

We fixed a problem where the search index got out of sync with child elements of a parent
containing special characters.

https://github.com/owncloud/ocis/pull/3851
Bugfix - Inconsistency env var naming for LDAP filter configuration: #3890

There was a naming inconsitency for the enviroment variables used to define LDAP filters for
user and groups queries. Some services used LDAP_USER_FILTER while others used
LDAP_USERFILTER. This is now changed to use LDAP_USER_FILTER and LDAP_GROUP_FILTER.

Note: If your oCIS setup is using an LDAP configuration that has any of the *_LDAP_USERFILTER
or *_LDAP_GROUPFILTER environment variables set, please update the configuration to use
the new unified names *_LDAP_USER_FILTER respectively *_LDAP_GROUP_FILTER instead.

https://github.com/owncloud/ocis/issues/3890
Bugfix - Fix LDAP insecure options: #3897

We've fixed multiple LDAP insecure options:
- The Graph LDAP insecure option default was set to true and now defaults to false. This is possible after #3888, since the Graph also now uses the LDAP CAcert by default.
- The Graph LDAP insecure option was configurable by the environment variable OCIS_INSECURE, which was replaced by the dedicated LDAP_INSECURE variable. This variable is also used by all other services using LDAP.
- The IDP insecure option for the user backend now also picks up configuration from LDAP_INSECURE.
https://github.com/owncloud/ocis/pull/3897
Bugfix - Fix logging levels: #4102

We've fixed the configuration of logging levels. Previously it was not possible to configure a
service with a more or less verbose log level then all other services when running in the
supervised / runtime mode ocis server.

For example OCIS_LOG_LEVEL=error PROXY_LOG_LEVEL=debug ocis server did not configure
error logging for all services except the proxy, which should be on debug logging. This is now
fixed and working properly.

Also we fixed the format of go-micro logs to always default to error level. Previously this was
only ensured in the supervised / runtime mode.

https://github.com/owncloud/ocis/issues/4089
https://github.com/owncloud/ocis/pull/4102
Bugfix - Fix OCIS_RUN_SERVICES: #4133

OCIS_RUN_SERVICES was introduced as successor to OCIS_RUN_EXTENSIONS because we
wanted to call oCIS "core" extensions services. We kept OCIS_RUN_EXTENSIONS for backwards
compatibility reasons.

It turned out, that setting OCIS_RUN_SERVICES has no effect since introduced.
OCIS_RUN_EXTENSIONS. OCIS_RUN_EXTENSIONS was working fine all the time.

We now fixed OCIS_RUN_SERVICES, so that you can use it as a equivalent replacement for
OCIS_RUN_EXTENSIONS

https://github.com/owncloud/ocis/pull/4133
Bugfix - Set default name for public link via capabilities: #3834

We have now added a default name for public link shares which is communicated via the
capabilities.

https://github.com/owncloud/ocis/issues/1237
https://github.com/owncloud/ocis/pull/3834
Bugfix - Remove legacy accounts proxy routes: #3831

We've removed the legacy accounts routes from the proxy default config. There were no longer
used since the switch to IDM as the default user backend. Also accounts is no longer part of the
oCIS binary and therefore should not be part of the proxy default route config.

https://github.com/owncloud/ocis/pull/3831
Bugfix - Fix unused config option GRAPH_SPACES_INSECURE: #55555

We've removed the unused config option GRAPH_SPACES_INSECURE from the GRAPH service.

https://github.com/owncloud/ocis/pull/55555
Bugfix - Remove unused configuration options: #3973

We've removed multiple unused configuration options:
- STORAGE_SYSTEM_DATAPROVIDER_INSECURE, see also cs3org/reva#2993 -
  STORAGE_USERS_DATAPROVIDER_INSECURE, see also cs3org/reva#2993 -
  STORAGE_SYSTEM_TEMP_FOLDER, see also cs3org/reva#2993 -
  STORAGE_USERS_TEMP_FOLDER, see also cs3org/reva#2993 - WEB_UI_CONFIG_VERSION, see
  also owncloud/web#7130 - GATEWAY_COMMIT_SHARE_TO_STORAGE_REF, see also
  cs3org/reva#3017
https://github.com/owncloud/ocis/pull/3973
Bugfix - Remove static ocs user backend config: #4077

We've remove the OCS_ACCOUNT_BACKEND_TYPE configuration option. It was intended to allow
configuration of different user backends for the ocs service. Right now the ocs service only
has a "cs3" backend. Therefor it's a static entry and not configurable.

https://github.com/owncloud/ocis/pull/4077
Bugfix - Remove unused OCS storage configuration: #3955

We've removed the unused OCS configuration option OCS_STORAGE_USERS_DRIVER.

https://github.com/owncloud/ocis/pull/3955
Bugfix - Fix the ocis search command: #3796

We've fixed the behavior for ocis search, which didn't show further help when not all secrets
have been configured. It also was not possible to start the search service standalone from the
oCIS binary without configuring all oCIS secrets, even they were not needed by the search
service.

https://github.com/owncloud/ocis/pull/3796
Bugfix - Rename search env variable for the grpc server address: #3800

We've fixed the gprc server address configuration environment variable by renaming it from
ACCOUNTS_GRPC_ADDR to SEARCH_GRPC_ADDR

https://github.com/owncloud/ocis/pull/3800
Bugfix - Fix make sensitive config values in the proxy's debug server: #4086

We've fixed a security issue of the proxy's debug server config report endpoint. Previously
sensitive configuration values haven't been masked. We now mask these values.

https://github.com/owncloud/ocis/pull/4086
Bugfix - Fix the idm and settings extensions' admin user id configuration option: #3799

We've fixed the admin user id configuration of the settings and idm extensions. The have
previously only been configurable via the oCIS shared configuration and therefore have been
undocumented for the extensions. This config option is now part of both extensions'
configuration and can now also be used when the extensions are compiled standalone.

https://github.com/owncloud/ocis/pull/3799
Bugfix - Fix configuration validation for extensions' server commands: #3911

We've fixed the configuration validation for the extensions' server commands. Before this
fix error messages have occurred when trying to start individual services without certain
oCIS fullstack configuration values.

We now no longer do the common oCIS configuration validation for extensions' server commands
and now rely only on the extensions' validation function.

https://github.com/owncloud/ocis/pull/3911
Bugfix - Fix startup error logging: #4093

We've fixed the startup error logging, so that users will the reason for a failed startup even on
"error" log level. Previously they would only see it on "info" log level. Also in a lot of cases
the reason for the failed shutdown was omitted.

https://github.com/owncloud/ocis/pull/4093
Bugfix - Fix multiple storage-users env variables: #3802

We've fixed multiple environment variable configuration options for the storage-users
extension:
- STORAGE_USERS_GRPC_ADDR was used to configure both the address of the http and grpc server. This resulted in a failing startup of the storage-users extension if this config option is set, because the service tries to double-bind the configured port (one time for each of the http and grpc server). You can now configure the grpc server's address with the environment variable STORAGE_USERS_GRPC_ADDR and the http server's address with the environment variable STORAGE_USERS_HTTP_ADDR
- STORAGE_USERS_S3NG_USERS_PROVIDER_ENDPOINT was used to configure the permissions service endpoint for the S3NG driver and was therefore renamed to STORAGE_USERS_S3NG_PERMISSIONS_ENDPOINT
- It's now possible to configure the permissions service endpoint for all storage drivers with the environment variable STORAGE_USERS_PERMISSION_ENDPOINT, which was previously only used by the S3NG driver.
https://github.com/owncloud/ocis/pull/3802
Bugfix - Thumbnails for /dav/xxx?preview=1 requests: #3567

We've added the thumbnail rendering for /dav/xxx?preview=1,
/remote.php/webdav/{relative path}?preview=1 and /webdav/{relative path}?preview=1 requests, which was previously not supported because of missing routes. It
now returns the same thumbnails as for /remote.php/dav/xxx?preview=1.

https://github.com/owncloud/ocis/pull/3567
Bugfix - Fix user autoprovisioning: #3893

We've fixed the autoprovsioning feature that was introduced in beta2. Due to a bug the role
assignment of the privileged user that is used to create accounts wasn't propagated correctly
to the graph service.

https://github.com/owncloud/ocis/issues/3893
Bugfix - Fix version info: #3953

We've fixed the version info that is displayed when you run:
- ocis version - ocis <extension name> version
Since #2918, these commands returned an empty version only.

https://github.com/owncloud/ocis/pull/3953
Bugfix - Fix version number in status page: #3788

We needed to undo the version number changes on the status page to keep compatibility for legacy
clients. We added a new field productversion for the actual version of the product.

https://github.com/owncloud/ocis/issues/3788
https://github.com/owncloud/ocis/pull/3805
Bugfix - Fix the webdav URL of drive roots: #3706

Fixed the webdav URL of drive roots in the graph API.

https://github.com/owncloud/ocis/issues/3706
https://github.com/owncloud/ocis/pull/3916
Bugfix - Idp: Check if CA certificate if present: #3623

Upon first start with the default configurtation the idm service creates a server
certificate, that might not be finished before the idp service is starting. Add a check to idp
similar to what the user, group, and auth-providers implement.

https://github.com/owncloud/ocis/issues/3623
Bugfix - Fix graph endpoint: #3925

We have added the memberOf slice to the /users endpoint and the member slice to the /group
endpoint

https://github.com/owncloud/ocis/issues/3925
Bugfix - Escape DN attribute value: #4117

Escaped the DN attribute value on creating users and groups.

https://github.com/owncloud/ocis/pull/4117
Bugfix - Make IDP only wait for certs when using LDAP: #3965

When configuring cs3 as the backend the IDP no longer waits for an LDAP certificate to appear.

https://github.com/owncloud/ocis/pull/3965
Bugfix - Make ocdav service behave properly: #3957

The ocdav service now properly passes the tracing config and shuts down when receiving a kill
signal.

https://github.com/owncloud/ocis/pull/3957
Bugfix - Return proper errors when ocs/cloud/users is using the cs3 backend: #3483

The ocs API was just exiting with a fatal error on any update request, when configured for the cs3
backend. Now it returns a proper error.

https://github.com/owncloud/ocis/issues/3483
Bugfix - Polish search: #4094

We improved the feedback when providing invalid search queries and added support for limiting
the number of results returned.

https://github.com/owncloud/ocis/pull/4094
Bugfix - Save Katherine: #3823

SpaceManager user katherine was removed with the demo user switch. Now she comes back

https://github.com/owncloud/ocis/issues/3823
https://github.com/owncloud/ocis/pull/3824
Bugfix - Fix Thumbnails for IDs without a trailing path: #3791

The routes in the chi router were not matching thumbnail requests without a trailing path.

https://github.com/owncloud/ocis/pull/3791
Bugfix - URL encode the webdav url in the graph API: #3597

Fixed the webdav URL in the drives responses. Without encoding the URL could be broken by files
with spaces in the file name.

https://github.com/owncloud/ocis/issues/3538
https://github.com/owncloud/ocis/pull/3597
Bugfix - Store user passwords hashed in idm: #3778

Support for hashing user passwords was added to libregraph/idm. The graph API will now set
userpasswords using the LDAP Modify Extended Operation (RFC3062). In the default
configuration passwords will be hashed using the argon2id algorithm.

https://github.com/owncloud/ocis/issues/3778
https://github.com/owncloud/ocis/pull/4053
Change - Update ocis packages and imports to V2: #3678

This needs to be done in preparation for the major version bump in ocis.

https://github.com/owncloud/ocis/pull/3678
Change - Load configuration files just from one directory: #3587

We've changed the configuration file loading behavior and are now only loading configuration
files from ONE single directory. This directory can be set on compile time or via an environment
variable on startup (OCIS_CONFIG_DIR).

We are using following configuration default paths:
- Docker images: /etc/ocis/ - Binary releases: $HOME/.ocis/config/
https://github.com/owncloud/ocis/pull/3587
Change - Reduce permissions on docker image predeclared volumes: #3641

We've lowered the permissions on the predeclared volumes of the oCIS docker image from 777 to
750.

This change doesn't affect you, unless you use the docker image with the non default uid/guid to
start oCIS (default is 1000:1000).

https://github.com/owncloud/ocis/pull/3641
Change - Introduce ocis init and remove all default secrets: #3551

We've removed all default secrets and the hardcoded UUID of the user admin. This means you
can't start oCIS any longer without setting these via environment variable or configuration
file.

In order to make this easy for you, we introduced a new command: ocis init. You can run this
command before starting oCIS with ocis server and it will bootstrap you a configuration file
for a secure oCIS instance.

https://github.com/owncloud/ocis/issues/3524
https://github.com/owncloud/ocis/pull/3551
https://github.com/owncloud/ocis/pull/3743
Change - The glauth and accounts services are removed: #3685

After switching the default configuration to libregraph/idm we could remove the glauth and
accounts services from the source code (they were already disabled by default with the
previous release)

https://github.com/owncloud/ocis/pull/3685
Change - Reduce drives in graph /me/drives API: #3629

Reduced the drives in the graph /me/drives API to only the drives the user has access to. The
endpoint /drives will list all drives when the user has the permission.

https://github.com/owncloud/ocis/pull/3629
Change - Switched default configuration to use libregraph/idm: #3331

We switched the default configuration of oCIS to use the "idm" service (based on
libregraph/idm) as the standard source for user and group information. The accounts and
glauth services are no longer enabled by default and will be removed with an upcoming release.

https://github.com/owncloud/ocis/pull/3331
https://github.com/owncloud/ocis/pull/3633
Change - Rename MetadataUserID: #3671

MetadataUserID is renamed to SystemUserID including yaml tags and env vars

https://github.com/owncloud/ocis/pull/3671
Change - Use new space ID util functions: #3648

Changed code to use the new space ID util functions so that everything works with the new spaces
ID format.

https://github.com/owncloud/ocis/pull/3648
https://github.com/owncloud/ocis/pull/3669
Change - Prevent access to disabled space: #3779

Previously managers where allowed to edit the space even when it is disabled This is no longer
possible

https://github.com/owncloud/ocis/pull/3779
Change - Rename serviceUser to systemUser: #3673

We renamed serviceUser to systemUser in all configs and vars including yaml-tags and env vars

https://github.com/owncloud/ocis/pull/3673
Change - Use the spaceID on the cs3 resource: #4748

We cleaned up the CS3Api to use a proper attribute for the space id.

https://github.com/owncloud/ocis/pull/4748
Change - Split MachineAuth from SystemUser: #3672

We now have two different APIKeys: MachineAuth for the machine-auth service and SystemUser
for the system user used e.g. by settings service

https://github.com/owncloud/ocis/pull/3672
Enhancement - Add capability for alias links: #3983

For better UX clients need a way to discover if alias links are supported by the server. We added a
capability under "files_sharing/public/alias"

https://github.com/owncloud/ocis/issues/3983
https://github.com/owncloud/ocis/pull/3991
Enhancement - Add FRONTEND_ENABLE_RESHARING env variable: #4023

We introduced resharing which was enabled by default, this is now configurable and can be
enabled by setting the env FRONTEND_ENABLE_RESHARING to true. By default resharing is
now disabled.

https://github.com/owncloud/ocis/pull/4023
Enhancement - Add number of total matches to the search result: #4189

The search service now returns the number of total matches alongside the results.

https://github.com/owncloud/ocis/issues/4189
Enhancement - Align service naming: #3606

We now reflect the configured service names when listing them in the ocis runtime

https://github.com/owncloud/ocis/issues/3603
https://github.com/owncloud/ocis/pull/3606
Enhancement - Add acting user to the audit log: #3753

Added the acting user to the events in the audit log.

https://github.com/owncloud/ocis/issues/3753
https://github.com/owncloud/ocis/pull/3992
Enhancement - Add audit events for created containers: #3941

Handle the event ContainerCreated in the audit service.

https://github.com/owncloud/ocis/pull/3941
Enhancement - Don't setup demo role assignments on default: #3661

Added a configuration option to explicitly tell the settings service to generate the default
role assignments.

https://github.com/owncloud/ocis/issues/3661
https://github.com/owncloud/ocis/pull/3956
Enhancement - Introduce service registry cache: #3833

We've improved the service registry / service discovery by setting up registry caching (TTL
20s), so that not every requests has to do a lookup on the registry.

https://github.com/owncloud/ocis/pull/3833
Enhancement - Reintroduce user autoprovisioning in proxy: #3860

With the removal of the accounts service autoprovisioning of users upon first login was no
longer possible. We added this feature back for the cs3 user backend in the proxy. Leveraging
the libregraph users API for creating the users.

https://github.com/owncloud/ocis/pull/3860
Enhancement - Disable the color logging in docker compose examples: #871

Disabled the color logging in the example docker compose deployments. Although colored logs
are helpful during the development process they may be undesired in other situations like
production deployments, where the logs aren't consumed by humans directly but instead by a log
aggregator.

https://github.com/owncloud/ocis/issues/871
https://github.com/owncloud/ocis/pull/3935
Enhancement - Optional events in graph service: #55555

We've changed the graph service so that you also can start it without any event bus. Therefore
you need to set GRAPH_EVENTS_ENDPOINT to an empty string. The graph API will not emit any
events in this case.

https://github.com/owncloud/ocis/pull/55555
Enhancement - Add config option to provide TLS certificate: #3818

Added a config option to the graph service to provide a TLS certificate to be used to verify the
LDAP server certificate.

https://github.com/owncloud/ocis/issues/3818
https://github.com/owncloud/ocis/pull/3888
Enhancement - Add descriptions for graph-explorer config: #3759

Added descriptions tags to the graph-explorer config tags so that they will be included in the
documentation.

https://github.com/owncloud/ocis/pull/3759
Enhancement - Add /me/changePassword endpoint to GraphAPI: #3063

When using the builtin user management, allow users to update their own password via the
graph/v1.0/me/changePassword endpoint.

https://github.com/owncloud/ocis/issues/3063
https://github.com/owncloud/ocis/pull/3705
Enhancement - Generate signing key and encryption secret: #3909

The idp service now automatically generates a signing key and encryption secret when they
don't exist. This will enable service restarts without invalidating existing sessions.

https://github.com/owncloud/ocis/issues/3909
https://github.com/owncloud/ocis/pull/4022
Enhancement - Update IdP UI: #3493

Updated our fork of the lico IdP UI. This also updated the used npm dependencies. The design
didn't change.

https://github.com/owncloud/ocis/issues/3493
https://github.com/owncloud/ocis/pull/4074
Enhancement - Wrap metadata storage with dedicated reva gateway: #3602

We wrapped the metadata storage in a minimal reva instance with a dedicated gateway, including
static storage registry, static auth registry, in memory userprovider, machine
authprovider and demo permissions service. This allows us to preconfigure the service user
for the ocis settings service, share and public share providers.

https://github.com/owncloud/ocis/pull/3602
https://github.com/owncloud/ocis/pull/3647
Enhancement - New migrate command for migrating shares and public shares: #3987

We added a new migrate subcommand which can be used to migrate shares and public shares
between different share and publicshare managers.

https://github.com/owncloud/ocis/pull/3987
https://github.com/owncloud/ocis/pull/4019
Enhancement - Product field in OCS version: #2918

We've added a new field to the OCS Version, which is supposed to announce the product name. The
web ui as a client will make use of it to make the backend product and version available (e.g. for
easier bug reports).

https://github.com/owncloud/ocis/pull/2918
Enhancement - Refactor extensions to services: #3980

We have decided to name all extensions, we maintain and provide with ocis, services from here on
to avoid confusion between external extensions and code we provide and maintain.

https://github.com/owncloud/ocis/pull/3980
Enhancement - Allow resharing: #3904

This will allow resharing files

https://github.com/owncloud/ocis/pull/3904
Enhancement - Add initial version of the search extensions: #3635

It is now possible to search for files and directories by their name using the web UI. Therefor
new search extension indexes files in a persistent local index.

https://github.com/owncloud/ocis/pull/3635
Enhancement - Add capability for public link single file edit: #6787

It is now possible to share a single file by link with edit permissions. Therefore we need a
public share capability to enable that feature in the clients. At the same time, we improved the
WebDAV permissions for public links.

https://github.com/owncloud/web/pull/6787
https://github.com/owncloud/ocis/pull/3538
Enhancement - Added share_jail and projects feature flags in spaces capability: #3626

We've added feature flags to the spaces capability to indicate to clients which features are
supposed to be shown to users.

https://github.com/owncloud/ocis/pull/3626
Enhancement - Add description tags to the thumbnails config structs: #3752

Added description tags to the config structs in the thumbnails service so they will be included
in the config documentation.

Important If you ran ocis init with the v2.0.0-alpha* version then you have to manually add the transfer_secret to the ocis.yaml.

Just open the ocis.yaml config file and look for the thumbnails section. Then add a random
transfer_secret so that it looks like this:

yaml thumbnails: thumbnail: transfer_secret: <put random value here>

https://github.com/owncloud/ocis/pull/3752
Enhancement - Make thumbnails service log less noisy: #3959

Reduced the log severity when no thumbnail was found from warn to debug. This reduces the spam in
the logs.

https://github.com/owncloud/ocis/pull/3959
Enhancement - Update linkshare capabilities: #3579

We have updated the capabilities regarding password enforcement and expiration dates of
public links. They were previously hardcoded in a way that didn't reflect the actual backend
functionality anymore.

https://github.com/owncloud/ocis/pull/3579
Enhancement - Update reva: #3944

Changelog for reva 2.6.1 (2022-06-27) =======================================

The following sections list the changes in reva 2.6.1 relevant to reva users. The changes are
ordered by importance.

Summary -------
- Bugfix cs3org/reva#2998: Fix 0-byte-uploads
- Enhancement cs3org/reva#3983: Add capability for alias links
- Enhancement cs3org/reva#3000: Make less stat requests
- Enhancement cs3org/reva#3003: Distinguish GRPC FAILED_PRECONDITION and ABORTED codes
- Enhancement cs3org/reva#3005: Remove unused HomeMapping variable
Changelog for reva 2.6.0 (2022-06-21) =======================================

The following sections list the changes in reva 2.6.0 relevant to reva users. The changes are
ordered by importance.
- Bugfix cs3org/reva#2985: Make stat requests route based on storage providerid
- Bugfix cs3org/reva#2987: Let archiver handle all error codes
- Bugfix cs3org/reva#2994: Bugfix errors when loading shares
- Bugfix cs3org/reva#2996: Do not close share dump channels
- Bugfix cs3org/reva#2993: Remove unused configuration
- Bugfix cs3org/reva#2950: Bugfix sharing with space ref
- Bugfix cs3org/reva#2991: Make sharesstorageprovider get accepted share
- Change cs3org/reva#2877: Enable resharing
- Change cs3org/reva#2984: Update CS3Apis
- Enhancement cs3org/reva#3753: Add executant to the events
- Enhancement cs3org/reva#2820: Instrument GRPC and HTTP requests with OTel
- Enhancement cs3org/reva#2975: Leverage shares space storageid and type when listing shares
- Enhancement cs3org/reva#3882: Explicitly return on ocdav move requests with body
- Enhancement cs3org/reva#2932: Stat accepted shares mountpoints, configure existing share updates
- Enhancement cs3org/reva#2944: Improve owncloudsql connection management
- Enhancement cs3org/reva#2962: Per service TracerProvider
- Enhancement cs3org/reva#2911: Allow for dumping and loading shares
- Enhancement cs3org/reva#2938: Sharpen tooling
https://github.com/owncloud/ocis/pull/3944
https://github.com/owncloud/ocis/pull/3975
https://github.com/owncloud/ocis/pull/3982
https://github.com/owncloud/ocis/pull/4000
https://github.com/owncloud/ocis/pull/4006
Enhancement - Update reva to version 2.7.2: #4115

Changelog for reva 2.7.2 (2022-07-18) =======================================
- Bugfix cs3org/reva#3079: Allow empty permissions
- Bugfix cs3org/reva#3084: Spaces related permissions and providerID cleanup
- Bugfix cs3org/reva#3083: Add space id to ItemTrashed event
Changelog for reva 2.7.1 (2022-07-15) =======================================
- Bugfix cs3org/reva#3080: Make dataproviders return more headers
- Enhancement cs3org/reva#3046: Add user filter
Changelog for reva 2.7.0 (2022-07-15) =======================================
- Bugfix cs3org/reva#3075: Check permissions of the move operation destination
- Bugfix cs3org/reva#3036:
- Bugfix revad with EOS docker image
- Bugfix cs3org/reva#3037: Add uid- and gidNumber to LDAP queries
- Bugfix cs3org/reva#4061: Forbid resharing with higher permissions
- Bugfix cs3org/reva#3017: Removed unused gateway config "commit_share_to_storage_ref"
- Bugfix cs3org/reva#3031: Return proper response code when detecting recursive copy/move operations
- Bugfix cs3org/reva#3071: Make CS3 sharing drivers parse legacy resource id
- Bugfix cs3org/reva#3035: Prevent cross space move
- Bugfix cs3org/reva#3074: Send storage provider and space id to wopi server
- Bugfix cs3org/reva#3022: Improve the sharing internals
- Bugfix cs3org/reva#2977: Test valid filename on spaces tus upload
- Change cs3org/reva#3006: Use spaceID on the cs3api
- Enhancement cs3org/reva#3043: Introduce LookupCtx for index interface
- Enhancement cs3org/reva#3009: Prevent recursive copy/move operations
- Enhancement cs3org/reva#2977: Skip space lookup on space propfind
https://github.com/owncloud/ocis/pull/4115
https://github.com/owncloud/ocis/pull/4201
https://github.com/owncloud/ocis/pull/4203
https://github.com/owncloud/ocis/pull/4025
https://github.com/owncloud/ocis/pull/4211
Enhancement - Update reva to version 2.4.1: #3746

Changelog for reva 2.4.1 (2022-05-24) =======================================

The following sections list the changes in reva 2.4.1 relevant to reva users. The changes are
ordered by importance.

Summary -------
- Bugfix cs3org/reva#2891: Add missing http status code
Changelog for reva 2.4.0 (2022-05-24) =======================================

The following sections list the changes in reva 2.4.0 relevant to reva users. The changes are
ordered by importance.

Summary -------
- Bugfix cs3org/reva#2854: Handle non uuid space and nodeid in decomposedfs
- Bugfix cs3org/reva#2853: Filter CS3 share manager listing
- Bugfix cs3org/reva#2868: Actually remove blobs when purging
- Bugfix cs3org/reva#2882: Fix FileUploaded event being emitted too early
- Bugfix cs3org/reva#2848: Fix storage id in the references in the ItemTrashed events
- Bugfix cs3org/reva#2852: Fix rcbox dependency on reva 1.18
- Bugfix cs3org/reva#3505: Fix creating a new file with wopi
- Bugfix cs3org/reva#2885: Move stat out of usershareprovider
- Bugfix cs3org/reva#2883: Fix role consideration when updating a share
- Bugfix cs3org/reva#2864: Fix Grant Space IDs
- Bugfix cs3org/reva#2870: Update quota calculation
- Bugfix cs3org/reva#2876: Fix version number in status page
- Bugfix cs3org/reva#2829: Don't include versions in quota
- Change cs3org/reva#2856: Do not allow to edit disabled spaces
- Enhancement cs3org/reva#3741: Add download endpoint to ocdav versions API
- Enhancement cs3org/reva#2884: Show mounted shares in virtual share jail root
- Enhancement cs3org/reva#2792: Use storageproviderid for spaces routing
https://github.com/owncloud/ocis/pull/3746
https://github.com/owncloud/ocis/pull/3771
https://github.com/owncloud/ocis/pull/3778
https://github.com/owncloud/ocis/pull/3842
https://github.com/owncloud/ocis/pull/3854
https://github.com/owncloud/ocis/pull/3858
https://github.com/owncloud/ocis/pull/3867
Enhancement - Update reva to version 2.5.1: #3932

Changelog for reva 2.5.1 (2022-06-08) =======================================

The following sections list the changes in reva 2.5.1 relevant to reva users. The changes are
ordered by importance.

Summary -------
- Bugfix cs3org/reva#2931: Allow listing share jail space
- Bugfix cs3org/reva#2918: Fix propfinds with depth 0
Changelog for reva 2.5.0 (2022-06-07) =======================================

The following sections list the changes in reva 2.5.0 relevant to reva users. The changes are
ordered by importance.

Summary -------
- Bugfix cs3org/reva#2909: The decomposedfs now checks the GetPath permission
- Bugfix cs3org/reva#2899: Empty meta requests should return body
- Bugfix cs3org/reva#2928: Fix mkcol response code
- Bugfix cs3org/reva#2907: Correct share jail child aggregation
- Bugfix cs3org/reva#2895: Fix unlimited quota in spaces
- Bugfix cs3org/reva#2905: Check user permissions before updating/removing public shares
- Bugfix cs3org/reva#2904: Share jail now works properly when accessed as a space
- Bugfix cs3org/reva#2903: User owncloudsql now uses the correct userid
- Change cs3org/reva#2920: Clean up the propfind code
- Change cs3org/reva#2913: Rename ocs parameter "space_ref"
- Enhancement cs3org/reva#2919: EOS Spaces implementation
- Enhancement cs3org/reva#2888: Introduce spaces field mask
- Enhancement cs3org/reva#2922: Refactor webdav error handling
https://github.com/owncloud/ocis/pull/3932
https://github.com/owncloud/ocis/pull/3928
https://github.com/owncloud/ocis/pull/3922
Enhancement - Update reva to v2.3.1: #3552

Updated reva to version 2.3.1. This update includes
- Bugfix cs3org/reva#2827: Check permissions when deleting spaces
- Bugfix cs3org/reva#2830: Correctly render response when accepting merged shares
- Bugfix cs3org/reva#2831: Fix uploads to owncloudsql storage when no mtime is provided
- Enhancement cs3org/reva#2833: Make status.php values configurable
- Enhancement cs3org/reva#2832: Add version option for ocdav go-micro service
Updated reva to version 2.3.0. This update includes:
- Bugfix cs3org/reva#2693: Support editnew actions from MS Office
- Bugfix cs3org/reva#2588: Dockerfile.revad-ceph to use the right base image
- Bugfix cs3org/reva#2499: Removed check DenyGrant in resource permission
- Bugfix cs3org/reva#2285: Accept new userid idp format
- Bugfix cs3org/reva#2802: Bugfix the resource id handling for space shares
- Bugfix cs3org/reva#2800: Bugfix spaceid parsing in spaces trashbin API
- Bugfix cs3org/reva#2608: Respect the tracing_service_name config variable
- Bugfix cs3org/reva#2742: Use exact match in login filter
- Bugfix cs3org/reva#2759: Made uid, gid claims parsing more robust in OIDC auth provider
- Bugfix cs3org/reva#2788: Return the correct file IDs on public link resources
- Bugfix cs3org/reva#2322: Use RFC3339 for parsing dates
- Bugfix cs3org/reva#2784: Disable storageprovider cache for the share jail
- Bugfix cs3org/reva#2555: Bugfix site accounts endpoints
- Bugfix cs3org/reva#2675: Updates Makefile according to latest go standards
- Bugfix cs3org/reva#2572: Wait for nats server on middleware start
- Change cs3org/reva#2735: Avoid user enumeration
- Change cs3org/reva#2737: Bump go-cs3api
- Change cs3org/reva#2763: Change the oCIS and S3NG storage driver blob store layout
- Change cs3org/reva#2596: Remove hash from public link urls
- Change cs3org/reva#2785: Implement workaround for chi.RegisterMethod
- Change cs3org/reva#2559: Do not encode webDAV ids to base64
- Change cs3org/reva#2740: Rename oc10 share manager driver
- Change cs3org/reva#2561: Merge oidcmapping auth manager into oidc
- Enhancement cs3org/reva#2698: Make capabilities endpoint public, authenticate users is present
- Enhancement cs3org/reva#2515: Enabling tracing by default if not explicitly disabled
- Enhancement cs3org/reva#2686: Features for favorites xattrs in EOS, cache for scope expansion
- Enhancement cs3org/reva#2494: Use sys ACLs for file permissions
- Enhancement cs3org/reva#2522: Introduce events
- Enhancement cs3org/reva#2811: Add event for created directories
- Enhancement cs3org/reva#2798: Add additional fields to events to enable search
- Enhancement cs3org/reva#2790: Fake providerids so API stays stable after beta
- Enhancement cs3org/reva#2685: Enable federated account access
- Enhancement cs3org/reva#1787: Add support for HTTP TPC
- Enhancement cs3org/reva#2799: Add flag to enable unrestriced listing of spaces
- Enhancement cs3org/reva#2560: Mentix PromSD extensions
- Enhancement cs3org/reva#2741: Meta path for user
- Enhancement cs3org/reva#2613: Externalize custom mime types configuration for storage providers
- Enhancement cs3org/reva#2163: Nextcloud-based share manager for pkg/ocm/share
- Enhancement cs3org/reva#2696: Preferences driver refactor and cbox sql implementation
- Enhancement cs3org/reva#2052: New CS3API datatx methods
- Enhancement cs3org/reva#2743: Add capability for public link single file edit
- Enhancement cs3org/reva#2738: Site accounts site-global settings
- Enhancement cs3org/reva#2672: Further Site Accounts improvements
- Enhancement cs3org/reva#2549: Site accounts improvements
- Enhancement cs3org/reva#2795: Add feature flags "projects" and "share_jail" to spaces capability
- Enhancement cs3org/reva#2514: Reuse ocs role objects in other drivers
- Enhancement cs3org/reva#2781: In memory user provider
- Enhancement cs3org/reva#2752: Refactor the rest user and group provider drivers
https://github.com/owncloud/ocis/issues/3621
https://github.com/owncloud/ocis/pull/3552
https://github.com/owncloud/ocis/pull/3570
https://github.com/owncloud/ocis/pull/3601
https://github.com/owncloud/ocis/pull/3602
https://github.com/owncloud/ocis/pull/3605
https://github.com/owncloud/ocis/pull/3611
https://github.com/owncloud/ocis/pull/3637
https://github.com/owncloud/ocis/pull/3652
https://github.com/owncloud/ocis/pull/3681
Enhancement - Update ownCloud Web to v5.5.0-rc.8: #6854

Tags: web

We updated ownCloud Web to v5.5.0-rc.8. Please refer to the changelog (linked) for details on
the web release.

https://github.com/owncloud/web/pull/6854
https://github.com/owncloud/ocis/pull/3844
https://github.com/owncloud/ocis/pull/3862
https://github.com/owncloud/web/releases/tag/v5.5.0-rc.8
Enhancement - Update ownCloud Web to v5.5.0-rc.9: #6854

Tags: web

We updated ownCloud Web to v5.5.0-rc.9. Please refer to the changelog (linked) for details on
the web release.

Summary -------
- Bugfix owncloud/web#6939: Not logged out if backend is ownCloud 10
- Bugfix owncloud/web#7061: Prevent rename button from getting covered
- Bugfix owncloud/web#7032: Show message when upload size exceeds quota
- Bugfix owncloud/web#7036: Drag and drop upload when a file is selected
- Enhancement owncloud/web#7022: Add config option for hoverable quick actions
- Enhancement owncloud/web#6555: Consistent dropdown menus
- Enhancement owncloud/web#6994: Copy/Move conflict dialog
- Enhancement owncloud/web#6750: Make contexthelpers opt-out
- Enhancement owncloud/web#7038: Rendering of share-indicators in ResourceTable
- Enhancement owncloud/web#6776: Prevent the resource name in the sidebar from being truncated
- Enhancement owncloud/web#7067: Upload progress & overlay improvements
https://github.com/owncloud/web/pull/6854
https://github.com/owncloud/ocis/pull/3927
https://github.com/owncloud/web/releases/tag/v5.5.0-rc.9
Enhancement - Update ownCloud Web to v5.5.0-rc.6: #6854

Tags: web

We updated ownCloud Web to v5.5.0-rc.6. Please refer to the changelog (linked) for details on
the web release.

https://github.com/owncloud/web/pull/6854
https://github.com/owncloud/ocis/pull/3664
https://github.com/owncloud/ocis/pull/3680
https://github.com/owncloud/ocis/pull/3727
https://github.com/owncloud/ocis/pull/3747
https://github.com/owncloud/ocis/pull/3797
https://github.com/owncloud/web/releases/tag/v5.5.0-rc.6
Enhancement - Update ownCloud Web to v5.7.0-rc.1: #4005

Tags: web

We updated ownCloud Web to v5.7.0-rc.1. Please refer to the changelog (linked) for details on
the web release.
- Enhancement owncloud/web#7119: Copy/Move conflict dialog
- Enhancement owncloud/web#7122: Enable Drag&Drop and keyboard shortcuts for all views
- Enhancement owncloud/web#7053: Personal space id in URL
- Enhancement owncloud/web#6933: Customize additional mimeTypes for preview app
- Enhancement owncloud/web#7078: Add Hotkeys to ResourceTable
- Enhancement owncloud/web#7120: Use tus chunksize from backend
- Enhancement owncloud/web#6749: Update ODS to v13.2.0-rc.1
- Enhancement owncloud/web#7111: Upload data during creation
- Enhancement owncloud/web#7109: Clickable folder links in upload overlay
- Enhancement owncloud/web#7123: Indeterminate progress bar in upload overlay
- Enhancement owncloud/web#7088: Upload time estimation
- Enhancement owncloud/web#7125: Wording improvements
- Enhancement owncloud/web#7140: Separate direct and indirect link shares in sidebar
- Bugfix owncloud/web#7156: Folder link targets
- Bugfix owncloud/web#7108: Reload of an updated space-image and/or -readme
- Bugfix owncloud/web#6846: Upload meta data serialization
- Bugfix owncloud/web#7100: Complete-state of the upload overlay
- Bugfix owncloud/web#7104: Parent folder name on public links
- Bugfix owncloud/web#7173: Re-introduce dynamic app name in document title
- Bugfix owncloud/web#7166: External apps fixes
https://github.com/owncloud/ocis/pull/4005
https://github.com/owncloud/web/pull/7158
https://github.com/owncloud/ocis/pull/3990
https://github.com/owncloud/web/pull/6854
https://github.com/owncloud/web/releases/tag/v5.7.0-rc.1
Enhancement - Update ownCloud Web to v5.7.0-rc.4: #4140

Tags: web

We updated ownCloud Web to v5.7.0-rc.4. Please refer to the changelog (linked) for details on
the web release.
- Bugfix owncloud/web#7230: Context menu misplaced when triggered by keyboard navigation
- Bugfix owncloud/web#7214: Prevent error when pasting with empty clipboard
- Bugfix owncloud/web#7173: Re-introduce dynamic app name in document title
- Bugfix owncloud/web#7166: External apps fixes
- Bugfix owncloud/web#7248: Hide empty trash bin modal on error
- Bugfix owncloud/web#4677: Logout deleted user on page reload
- Bugfix owncloud/web#7216: Filename hovers over the image in the preview app
- Bugfix owncloud/web#7228: Shared with others page apps not working with oc10 as backend
- Bugfix owncloud/web#7197: Create space and access user management permission
- Bugfix owncloud/web#6921: Space sidebar sharing indicators
- Bugfix owncloud/web#7030: Access token renewal
- Enhancement owncloud/web#7217: Add app top bar component
- Enhancement owncloud/web#7153: Add Keyboard navigation/selection
- Enhancement owncloud/web#7030: Loading context blocks application bootstrap
- Enhancement owncloud/web#7206: Add change own password dialog to the account info page
- Enhancement owncloud/web#7086: Re-sharing for ocis
- Enhancement owncloud/web#7201: Added a toolbar to pdf-viewer app
- Enhancement owncloud/web#7139: Reposition notifications
- Enhancement owncloud/web#7030: Resolve bookmarked public links with password protection
- Enhancement owncloud/web#7038: Improve performance of share indicators
- Enhancement owncloud/web#6661: Option to block file extensions from text-editor app
- Enhancement owncloud/web#7139: Update ODS to v14.0.0-alpha.4
- Enhancement owncloud/web#7176: Introduce group assignments
https://github.com/owncloud/ocis/pull/4140
https://github.com/owncloud/web/releases/tag/v5.7.0-rc.4
Enhancement - Add descriptions to webdav configuration: #3755

Added descriptions to webdav config structs to include them in the config documentation.

https://github.com/owncloud/ocis/pull/3755
Enhancement - Search service at the old webdav endpoint: #4118

We made the search service available for legacy clients at the old webdav endpoint.

https://github.com/owncloud/ocis/pull/4118

ocis - 2.0.0-beta.4

Published by ownclouders over 2 years ago

Changes in 2.0.0-beta.4

Summary

Bugfix - Remove runtime kill and run commands: #3740
Bugfix - Check permissions when deleting Space: #3709
Bugfix - Allow empty environment variables: #3892
Bugfix - Remove unused transfer secret from app provider: #3798
Bugfix - Make IDP secrets configurable via environment variables: #3744
Bugfix - Enable debug server by default: #3827
Bugfix - Rework default role provisioning: #3900
Bugfix - Fix search index getting out of sync: #3851
Bugfix - Inconsistency env var naming for LDAP filter configuration: #3890
Bugfix - Fix LDAP insecure options: #3897
Bugfix - Set default name for public link via capabilities: #3834
Bugfix - Remove legacy accounts proxy routes: #3831
Bugfix - Remove unused OCS storage configuration: #3955
Bugfix - Fix the ocis search command: #3796
Bugfix - Rename search env variable for the grpc server address: #3800
Bugfix - Fix the idm and settings extensions' admin user id configuration option: #3799
Bugfix - Fix configuration validation for extensions' server commands: #3911
Bugfix - Fix multiple storage-users env variables: #3802
Bugfix - Thumbnails for /dav/xxx?preview=1 requests: #3567
Bugfix - Fix user autoprovisioning: #3893
Bugfix - Fix version info: #3953
Bugfix - Fix version number in status page: #3788
Bugfix - Fix the webdav URL of drive roots: #3706
Bugfix - Idp: Check if CA certificate if present: #3623
Bugfix - Fix graph endpoint: #3925
Bugfix - Make IDP only wait for certs when using LDAP: #3965
Bugfix - Make ocdav service behave properly: #3957
Bugfix - Return proper errors when ocs/cloud/users is using the cs3 backend: #3483
Bugfix - Save Katherine: #3823
Bugfix - Fix Thumbnails for IDs without a trailing path: #3791
Bugfix - URL encode the webdav url in the graph API: #3597
Change - Update ocis packages and imports to V2: #3678
Change - Load configuration files just from one directory: #3587
Change - Reduce permissions on docker image predeclared volumes: #3641
Change - Introduce ocis init and remove all default secrets: #3551
Change - The glauth and accounts services are removed: #3685
Change - Reduce drives in graph /me/drives API: #3629
Change - Switched default configuration to use libregraph/idm: #3331
Change - Rename MetadataUserID: #3671
Change - Use new space ID util functions: #3648
Change - Prevent access to disabled space: #3779
Change - Rename serviceUser to systemUser: #3673
Change - Split MachineAuth from SystemUser: #3672
Enhancement - Add FRONTEND_ENABLE_RESHARING env variable: #4023
Enhancement - Align service naming: #3606
Enhancement - Add acting user to the audit log: #3753
Enhancement - Add audit events for created containers: #3941
Enhancement - Don't setup demo role assignments on default: #3661
Enhancement - Introduce service registry cache: #3833
Enhancement - Reintroduce user autoprovisioning in proxy: #3860
Enhancement - Disable the color logging in docker compose examples: #871
Enhancement - Add config option to provide TLS certificate: #3818
Enhancement - Add descriptions for graph-explorer config: #3759
Enhancement - Add /me/changePassword endpoint to GraphAPI: #3063
Enhancement - Generate signing key and encryption secret: #3909
Enhancement - Wrap metadata storage with dedicated reva gateway: #3602
Enhancement - New migrate command for migrating shares and public shares: #3987
Enhancement - Product field in OCS version: #2918
Enhancement - Allow resharing: #3904
Enhancement - Add initial version of the search extensions: #3635
Enhancement - Add capability for public link single file edit: #6787
Enhancement - Added share_jail and projects feature flags in spaces capability: #3626
Enhancement - Add description tags to the thumbnails config structs: #3752
Enhancement - Make thumbnails service log less noisy: #3959
Enhancement - Update linkshare capabilities: #3579
Enhancement - Update reva: #3944
Enhancement - Update reva: #4025
Enhancement - Update reva to version 2.4.1: #3746
Enhancement - Update reva to version 2.5.1: #3932
Enhancement - Update reva to v2.3.1: #3552
Enhancement - Update ownCloud Web to v5.5.0-rc.8: #6854
Enhancement - Update ownCloud Web to v5.5.0-rc.9: #6854
Enhancement - Update ownCloud Web to v5.5.0-rc.6: #6854
Enhancement - Update ownCloud Web to v5.7.0-rc.1: #4005
Enhancement - Add descriptions to webdav configuration: #3755

Details

Bugfix - Remove runtime kill and run commands: #3740

We've removed the kill and run commands from the oCIS runtime. If these dynamic capabilities
are needed, one should switch to a full fledged supervisor and start oCIS as individual
services.

If one wants to start a only a subset of services, this is still possible by setting
OCIS_RUN_EXTENSIONS.

https://github.com/owncloud/ocis/pull/3740
Bugfix - Check permissions when deleting Space: #3709

Check for manager permissions when deleting spaces. Do not allow deleting spaces via dav
service

https://github.com/owncloud/ocis/pull/3709
Bugfix - Allow empty environment variables: #3892

We've fixed the behavior for empty environment variables, that previously would not have
overwritten default values. Therefore it had the same effect like not setting the environment
variable. We now check if the environment variable is set at all and if so, we also allow to
override a default value with an empty value.

https://github.com/owncloud/ocis/pull/3892
Bugfix - Remove unused transfer secret from app provider: #3798

We've fixed the startup of the app provider by removing the startup dependency on a configured
transfer secret, which was not used. This only happend if you start the app provider without
runtime (eg. ocis app-provider server) and didn't have configured all oCIS secrets.

https://github.com/owncloud/ocis/pull/3798
Bugfix - Make IDP secrets configurable via environment variables: #3744

We've fixed the configuration options of the IDP to make the IDP secrets again configurable via
environment variables.

https://github.com/owncloud/ocis/pull/3744
Bugfix - Enable debug server by default: #3827

We've fixed the behavior for the audit, idm, nats and notifications extensions, that did not
start their debug server by default.

https://github.com/owncloud/ocis/pull/3827
Bugfix - Rework default role provisioning: #3900

We fixed a race condition in the default role assignment code that could lead to users loosing
privileges. When authenticating before the settings service was fully running.

https://github.com/owncloud/ocis/issues/3900
Bugfix - Fix search index getting out of sync: #3851

We fixed a problem where the search index got out of sync with child elements of a parent
containing special characters.

https://github.com/owncloud/ocis/pull/3851
Bugfix - Inconsistency env var naming for LDAP filter configuration: #3890

There was a naming inconsitency for the enviroment variables used to define LDAP filters for
user and groups queries. Some services used LDAP_USER_FILTER while others used
LDAP_USERFILTER. This is now changed to use LDAP_USER_FILTER and LDAP_GROUP_FILTER.

Note: If your oCIS setup is using an LDAP configuration that has any of the *_LDAP_USERFILTER
or *_LDAP_GROUPFILTER environment variables set, please update the configuration to use
the new unified names *_LDAP_USER_FILTER respectively *_LDAP_GROUP_FILTER instead.

https://github.com/owncloud/ocis/issues/3890
Bugfix - Fix LDAP insecure options: #3897

We've fixed multiple LDAP insecure options:
- The Graph LDAP insecure option default was set to true and now defaults to false. This is possible after #3888, since the Graph also now uses the LDAP CAcert by default.
- The Graph LDAP insecure option was configurable by the environment variable OCIS_INSECURE, which was replaced by the dedicated LDAP_INSECURE variable. This variable is also used by all other services using LDAP.
- The IDP insecure option for the user backend now also picks up configuration from LDAP_INSECURE.
https://github.com/owncloud/ocis/pull/3897
Bugfix - Set default name for public link via capabilities: #3834

We have now added a default name for public link shares which is communicated via the
capabilities.

https://github.com/owncloud/ocis/issues/1237
https://github.com/owncloud/ocis/pull/3834
Bugfix - Remove legacy accounts proxy routes: #3831

We've removed the legacy accounts routes from the proxy default config. There were no longer
used since the switch to IDM as the default user backend. Also accounts is no longer part of the
oCIS binary and therefore should not be part of the proxy default route config.

https://github.com/owncloud/ocis/pull/3831
Bugfix - Remove unused OCS storage configuration: #3955

We've removed the unused OCS configuration option OCS_STORAGE_USERS_DRIVER.

https://github.com/owncloud/ocis/pull/3955
Bugfix - Fix the ocis search command: #3796

We've fixed the behavior for ocis search, which didn't show further help when not all secrets
have been configured. It also was not possible to start the search service standalone from the
oCIS binary without configuring all oCIS secrets, even they were not needed by the search
service.

https://github.com/owncloud/ocis/pull/3796
Bugfix - Rename search env variable for the grpc server address: #3800

We've fixed the gprc server address configuration environment variable by renaming it from
ACCOUNTS_GRPC_ADDR to SEARCH_GRPC_ADDR

https://github.com/owncloud/ocis/pull/3800
Bugfix - Fix the idm and settings extensions' admin user id configuration option: #3799

We've fixed the admin user id configuration of the settings and idm extensions. The have
previously only been configurable via the oCIS shared configuration and therefore have been
undocumented for the extensions. This config option is now part of both extensions'
configuration and can now also be used when the extensions are compiled standalone.

https://github.com/owncloud/ocis/pull/3799
Bugfix - Fix configuration validation for extensions' server commands: #3911

We've fixed the configuration validation for the extensions' server commands. Before this
fix error messages have occurred when trying to start individual services without certain
oCIS fullstack configuration values.

We now no longer do the common oCIS configuration validation for extensions' server commands
and now rely only on the extensions' validation function.

https://github.com/owncloud/ocis/pull/3911
Bugfix - Fix multiple storage-users env variables: #3802

We've fixed multiple environment variable configuration options for the storage-users
extension:
- STORAGE_USERS_GRPC_ADDR was used to configure both the address of the http and grpc server. This resulted in a failing startup of the storage-users extension if this config option is set, because the service tries to double-bind the configured port (one time for each of the http and grpc server). You can now configure the grpc server's address with the environment variable STORAGE_USERS_GRPC_ADDR and the http server's address with the environment variable STORAGE_USERS_HTTP_ADDR
- STORAGE_USERS_S3NG_USERS_PROVIDER_ENDPOINT was used to configure the permissions service endpoint for the S3NG driver and was therefore renamed to STORAGE_USERS_S3NG_PERMISSIONS_ENDPOINT
- It's now possible to configure the permissions service endpoint for all storage drivers with the environment variable STORAGE_USERS_PERMISSION_ENDPOINT, which was previously only used by the S3NG driver.
https://github.com/owncloud/ocis/pull/3802
Bugfix - Thumbnails for /dav/xxx?preview=1 requests: #3567

We've added the thumbnail rendering for /dav/xxx?preview=1,
/remote.php/webdav/{relative path}?preview=1 and /webdav/{relative path}?preview=1 requests, which was previously not supported because of missing routes. It
now returns the same thumbnails as for /remote.php/dav/xxx?preview=1.

https://github.com/owncloud/ocis/pull/3567
Bugfix - Fix user autoprovisioning: #3893

We've fixed the autoprovsioning feature that was introduced in beta2. Due to a bug the role
assignment of the privileged user that is used to create accounts wasn't propagated correctly
to the graph service.

https://github.com/owncloud/ocis/issues/3893
Bugfix - Fix version info: #3953

We've fixed the version info that is displayed when you run:
- ocis version - ocis <extension name> version
Since #2918, these commands returned an empty version only.

https://github.com/owncloud/ocis/pull/3953
Bugfix - Fix version number in status page: #3788

We needed to undo the version number changes on the status page to keep compatibility for legacy
clients. We added a new field productversion for the actual version of the product.

https://github.com/owncloud/ocis/issues/3788
https://github.com/owncloud/ocis/pull/3805
Bugfix - Fix the webdav URL of drive roots: #3706

Fixed the webdav URL of drive roots in the graph API.

https://github.com/owncloud/ocis/issues/3706
https://github.com/owncloud/ocis/pull/3916
Bugfix - Idp: Check if CA certificate if present: #3623

Upon first start with the default configurtation the idm service creates a server
certificate, that might not be finished before the idp service is starting. Add a check to idp
similar to what the user, group, and auth-providers implement.

https://github.com/owncloud/ocis/issues/3623
Bugfix - Fix graph endpoint: #3925

We have added the memberOf slice to the /users endpoint and the member slice to the /group
endpoint

https://github.com/owncloud/ocis/issues/3925
Bugfix - Make IDP only wait for certs when using LDAP: #3965

When configuring cs3 as the backend the IDP no longer waits for an LDAP certificate to appear.

https://github.com/owncloud/ocis/pull/3965
Bugfix - Make ocdav service behave properly: #3957

The ocdav service now properly passes the tracing config and shuts down when receiving a kill
signal.

https://github.com/owncloud/ocis/pull/3957
Bugfix - Return proper errors when ocs/cloud/users is using the cs3 backend: #3483

The ocs API was just exiting with a fatal error on any update request, when configured for the cs3
backend. Now it returns a proper error.

https://github.com/owncloud/ocis/issues/3483
Bugfix - Save Katherine: #3823

SpaceManager user katherine was removed with the demo user switch. Now she comes back

https://github.com/owncloud/ocis/issues/3823
https://github.com/owncloud/ocis/pull/3824
Bugfix - Fix Thumbnails for IDs without a trailing path: #3791

The routes in the chi router were not matching thumbnail requests without a trailing path.

https://github.com/owncloud/ocis/pull/3791
Bugfix - URL encode the webdav url in the graph API: #3597

Fixed the webdav URL in the drives responses. Without encoding the URL could be broken by files
with spaces in the file name.

https://github.com/owncloud/ocis/issues/3538
https://github.com/owncloud/ocis/pull/3597
Change - Update ocis packages and imports to V2: #3678

This needs to be done in preparation for the major version bump in ocis.

https://github.com/owncloud/ocis/pull/3678
Change - Load configuration files just from one directory: #3587

We've changed the configuration file loading behavior and are now only loading configuration
files from ONE single directory. This directory can be set on compile time or via an environment
variable on startup (OCIS_CONFIG_DIR).

We are using following configuration default paths:
- Docker images: /etc/ocis/ - Binary releases: $HOME/.ocis/config/
https://github.com/owncloud/ocis/pull/3587
Change - Reduce permissions on docker image predeclared volumes: #3641

We've lowered the permissions on the predeclared volumes of the oCIS docker image from 777 to
750.

This change doesn't affect you, unless you use the docker image with the non default uid/guid to
start oCIS (default is 1000:1000).

https://github.com/owncloud/ocis/pull/3641
Change - Introduce ocis init and remove all default secrets: #3551

We've removed all default secrets and the hardcoded UUID of the user admin. This means you
can't start oCIS any longer without setting these via environment variable or configuration
file.

In order to make this easy for you, we introduced a new command: ocis init. You can run this
command before starting oCIS with ocis server and it will bootstrap you a configuration file
for a secure oCIS instance.

https://github.com/owncloud/ocis/issues/3524
https://github.com/owncloud/ocis/pull/3551
https://github.com/owncloud/ocis/pull/3743
Change - The glauth and accounts services are removed: #3685

After switching the default configuration to libregraph/idm we could remove the glauth and
accounts services from the source code (they were already disabled by default with the
previous release)

https://github.com/owncloud/ocis/pull/3685
Change - Reduce drives in graph /me/drives API: #3629

Reduced the drives in the graph /me/drives API to only the drives the user has access to. The
endpoint /drives will list all drives when the user has the permission.

https://github.com/owncloud/ocis/pull/3629
Change - Switched default configuration to use libregraph/idm: #3331

We switched the default configuration of oCIS to use the "idm" service (based on
libregraph/idm) as the standard source for user and group information. The accounts and
glauth services are no longer enabled by default and will be removed with an upcoming release.

https://github.com/owncloud/ocis/pull/3331
https://github.com/owncloud/ocis/pull/3633
Change - Rename MetadataUserID: #3671

MetadataUserID is renamed to SystemUserID including yaml tags and env vars

https://github.com/owncloud/ocis/pull/3671
Change - Use new space ID util functions: #3648

Changed code to use the new space ID util functions so that everything works with the new spaces
ID format.

https://github.com/owncloud/ocis/pull/3648
https://github.com/owncloud/ocis/pull/3669
Change - Prevent access to disabled space: #3779

Previously managers where allowed to edit the space even when it is disabled This is no longer
possible

https://github.com/owncloud/ocis/pull/3779
Change - Rename serviceUser to systemUser: #3673

We renamed serviceUser to systemUser in all configs and vars including yaml-tags and env vars

https://github.com/owncloud/ocis/pull/3673
Change - Split MachineAuth from SystemUser: #3672

We now have two different APIKeys: MachineAuth for the machine-auth service and SystemUser
for the system user used e.g. by settings service

https://github.com/owncloud/ocis/pull/3672
Enhancement - Add FRONTEND_ENABLE_RESHARING env variable: #4023

We introduced resharing which was enabled by default, this is now configurable and can be
enabled by setting the env FRONTEND_ENABLE_RESHARING to true. By default resharing is
now disabled.

https://github.com/owncloud/ocis/pull/4023
Enhancement - Align service naming: #3606

We now reflect the configured service names when listing them in the ocis runtime

https://github.com/owncloud/ocis/issues/3603
https://github.com/owncloud/ocis/pull/3606
Enhancement - Add acting user to the audit log: #3753

Added the acting user to the events in the audit log.

https://github.com/owncloud/ocis/issues/3753
https://github.com/owncloud/ocis/pull/3992
Enhancement - Add audit events for created containers: #3941

Handle the event ContainerCreated in the audit service.

https://github.com/owncloud/ocis/pull/3941
Enhancement - Don't setup demo role assignments on default: #3661

Added a configuration option to explicitly tell the settings service to generate the default
role assignments.

https://github.com/owncloud/ocis/issues/3661
https://github.com/owncloud/ocis/pull/3956
Enhancement - Introduce service registry cache: #3833

We've improved the service registry / service discovery by setting up registry caching (TTL
20s), so that not every requests has to do a lookup on the registry.

https://github.com/owncloud/ocis/pull/3833
Enhancement - Reintroduce user autoprovisioning in proxy: #3860

With the removal of the accounts service autoprovisioning of users upon first login was no
longer possible. We added this feature back for the cs3 user backend in the proxy. Leveraging
the libregraph users API for creating the users.

https://github.com/owncloud/ocis/pull/3860
Enhancement - Disable the color logging in docker compose examples: #871

Disabled the color logging in the example docker compose deployments. Although colored logs
are helpful during the development process they may be undesired in other situations like
production deployments, where the logs aren't consumed by humans directly but instead by a log
aggregator.

https://github.com/owncloud/ocis/issues/871
https://github.com/owncloud/ocis/pull/3935
Enhancement - Add config option to provide TLS certificate: #3818

Added a config option to the graph service to provide a TLS certificate to be used to verify the
LDAP server certificate.

https://github.com/owncloud/ocis/issues/3818
https://github.com/owncloud/ocis/pull/3888
Enhancement - Add descriptions for graph-explorer config: #3759

Added descriptions tags to the graph-explorer config tags so that they will be included in the
documentation.

https://github.com/owncloud/ocis/pull/3759
Enhancement - Add /me/changePassword endpoint to GraphAPI: #3063

When using the builtin user management, allow users to update their own password via the
graph/v1.0/me/changePassword endpoint.

https://github.com/owncloud/ocis/issues/3063
https://github.com/owncloud/ocis/pull/3705
Enhancement - Generate signing key and encryption secret: #3909

The idp service now automatically generates a signing key and encryption secret when they
don't exist. This will enable service restarts without invalidating existing sessions.

https://github.com/owncloud/ocis/issues/3909
https://github.com/owncloud/ocis/pull/4022
Enhancement - Wrap metadata storage with dedicated reva gateway: #3602

We wrapped the metadata storage in a minimal reva instance with a dedicated gateway, including
static storage registry, static auth registry, in memory userprovider, machine
authprovider and demo permissions service. This allows us to preconfigure the service user
for the ocis settings service, share and public share providers.

https://github.com/owncloud/ocis/pull/3602
https://github.com/owncloud/ocis/pull/3647
Enhancement - New migrate command for migrating shares and public shares: #3987

We added a new migrate subcommand which can be used to migrate shares and public shares
between different share and publicshare managers.

https://github.com/owncloud/ocis/pull/3987
https://github.com/owncloud/ocis/pull/4019
Enhancement - Product field in OCS version: #2918

We've added a new field to the OCS Version, which is supposed to announce the product name. The
web ui as a client will make use of it to make the backend product and version available (e.g. for
easier bug reports).

https://github.com/owncloud/ocis/pull/2918
Enhancement - Allow resharing: #3904

This will allow resharing files

https://github.com/owncloud/ocis/pull/3904
Enhancement - Add initial version of the search extensions: #3635

It is now possible to search for files and directories by their name using the web UI. Therefor
new search extension indexes files in a persistent local index.

https://github.com/owncloud/ocis/pull/3635
Enhancement - Add capability for public link single file edit: #6787

It is now possible to share a single file by link with edit permissions. Therefore we need a
public share capability to enable that feature in the clients. At the same time, we improved the
WebDAV permissions for public links.

https://github.com/owncloud/web/pull/6787
https://github.com/owncloud/ocis/pull/3538
Enhancement - Added share_jail and projects feature flags in spaces capability: #3626

We've added feature flags to the spaces capability to indicate to clients which features are
supposed to be shown to users.

https://github.com/owncloud/ocis/pull/3626
Enhancement - Add description tags to the thumbnails config structs: #3752

Added description tags to the config structs in the thumbnails service so they will be included
in the config documentation.

Important If you ran ocis init with the v2.0.0-alpha* version then you have to manually add the transfer_secret to the ocis.yaml.

Just open the ocis.yaml config file and look for the thumbnails section. Then add a random
transfer_secret so that it looks like this:

yaml thumbnails: thumbnail: transfer_secret: <put random value here>

https://github.com/owncloud/ocis/pull/3752
Enhancement - Make thumbnails service log less noisy: #3959

Reduced the log severity when no thumbnail was found from warn to debug. This reduces the spam in
the logs.

https://github.com/owncloud/ocis/pull/3959
Enhancement - Update linkshare capabilities: #3579

We have updated the capabilities regarding password enforcement and expiration dates of
public links. They were previously hardcoded in a way that didn't reflect the actual backend
functionality anymore.

https://github.com/owncloud/ocis/pull/3579
Enhancement - Update reva: #3944

Changelog for reva 2.6.1 (2022-06-27) =======================================

The following sections list the changes in reva 2.6.1 relevant to reva users. The changes are
ordered by importance.

Summary -------
- Bugfix cs3org/reva#2998: Fix 0-byte-uploads
- Enhancement cs3org/reva#3983: Add capability for alias links
- Enhancement cs3org/reva#3000: Make less stat requests
- Enhancement cs3org/reva#3003: Distinguish GRPC FAILED_PRECONDITION and ABORTED codes
- Enhancement cs3org/reva#3005: Remove unused HomeMapping variable
Changelog for reva 2.6.0 (2022-06-21) =======================================

The following sections list the changes in reva 2.6.0 relevant to reva users. The changes are
ordered by importance.
- Bugfix cs3org/reva#2985: Make stat requests route based on storage providerid
- Bugfix cs3org/reva#2987: Let archiver handle all error codes
- Bugfix cs3org/reva#2994: Bugfix errors when loading shares
- Bugfix cs3org/reva#2996: Do not close share dump channels
- Bugfix cs3org/reva#2993: Remove unused configuration
- Bugfix cs3org/reva#2950: Bugfix sharing with space ref
- Bugfix cs3org/reva#2991: Make sharesstorageprovider get accepted share
- Change cs3org/reva#2877: Enable resharing
- Change cs3org/reva#2984: Update CS3Apis
- Enhancement cs3org/reva#3753: Add executant to the events
- Enhancement cs3org/reva#2820: Instrument GRPC and HTTP requests with OTel
- Enhancement cs3org/reva#2975: Leverage shares space storageid and type when listing shares
- Enhancement cs3org/reva#3882: Explicitly return on ocdav move requests with body
- Enhancement cs3org/reva#2932: Stat accepted shares mountpoints, configure existing share updates
- Enhancement cs3org/reva#2944: Improve owncloudsql connection management
- Enhancement cs3org/reva#2962: Per service TracerProvider
- Enhancement cs3org/reva#2911: Allow for dumping and loading shares
- Enhancement cs3org/reva#2938: Sharpen tooling
https://github.com/owncloud/ocis/pull/3944
https://github.com/owncloud/ocis/pull/3975
https://github.com/owncloud/ocis/pull/3982
https://github.com/owncloud/ocis/pull/4000
https://github.com/owncloud/ocis/pull/4006
Enhancement - Update reva: #4025

https://github.com/owncloud/ocis/pull/4025
Enhancement - Update reva to version 2.4.1: #3746

Changelog for reva 2.4.1 (2022-05-24) =======================================

The following sections list the changes in reva 2.4.1 relevant to reva users. The changes are
ordered by importance.

Summary -------
- Bugfix cs3org/reva#2891: Add missing http status code
Changelog for reva 2.4.0 (2022-05-24) =======================================

The following sections list the changes in reva 2.4.0 relevant to reva users. The changes are
ordered by importance.

Summary -------
- Bugfix cs3org/reva#2854: Handle non uuid space and nodeid in decomposedfs
- Bugfix cs3org/reva#2853: Filter CS3 share manager listing
- Bugfix cs3org/reva#2868: Actually remove blobs when purging
- Bugfix cs3org/reva#2882: Fix FileUploaded event being emitted too early
- Bugfix cs3org/reva#2848: Fix storage id in the references in the ItemTrashed events
- Bugfix cs3org/reva#2852: Fix rcbox dependency on reva 1.18
- Bugfix cs3org/reva#3505: Fix creating a new file with wopi
- Bugfix cs3org/reva#2885: Move stat out of usershareprovider
- Bugfix cs3org/reva#2883: Fix role consideration when updating a share
- Bugfix cs3org/reva#2864: Fix Grant Space IDs
- Bugfix cs3org/reva#2870: Update quota calculation
- Bugfix cs3org/reva#2876: Fix version number in status page
- Bugfix cs3org/reva#2829: Don't include versions in quota
- Change cs3org/reva#2856: Do not allow to edit disabled spaces
- Enhancement cs3org/reva#3741: Add download endpoint to ocdav versions API
- Enhancement cs3org/reva#2884: Show mounted shares in virtual share jail root
- Enhancement cs3org/reva#2792: Use storageproviderid for spaces routing
https://github.com/owncloud/ocis/pull/3746
https://github.com/owncloud/ocis/pull/3771
https://github.com/owncloud/ocis/pull/3778
https://github.com/owncloud/ocis/pull/3842
https://github.com/owncloud/ocis/pull/3854
https://github.com/owncloud/ocis/pull/3858
https://github.com/owncloud/ocis/pull/3867
Enhancement - Update reva to version 2.5.1: #3932

Changelog for reva 2.5.1 (2022-06-08) =======================================

The following sections list the changes in reva 2.5.1 relevant to reva users. The changes are
ordered by importance.

Summary -------
- Bugfix cs3org/reva#2931: Allow listing share jail space
- Bugfix cs3org/reva#2918: Fix propfinds with depth 0
Changelog for reva 2.5.0 (2022-06-07) =======================================

The following sections list the changes in reva 2.5.0 relevant to reva users. The changes are
ordered by importance.

Summary -------
- Bugfix cs3org/reva#2909: The decomposedfs now checks the GetPath permission
- Bugfix cs3org/reva#2899: Empty meta requests should return body
- Bugfix cs3org/reva#2928: Fix mkcol response code
- Bugfix cs3org/reva#2907: Correct share jail child aggregation
- Bugfix cs3org/reva#2895: Fix unlimited quota in spaces
- Bugfix cs3org/reva#2905: Check user permissions before updating/removing public shares
- Bugfix cs3org/reva#2904: Share jail now works properly when accessed as a space
- Bugfix cs3org/reva#2903: User owncloudsql now uses the correct userid
- Change cs3org/reva#2920: Clean up the propfind code
- Change cs3org/reva#2913: Rename ocs parameter "space_ref"
- Enhancement cs3org/reva#2919: EOS Spaces implementation
- Enhancement cs3org/reva#2888: Introduce spaces field mask
- Enhancement cs3org/reva#2922: Refactor webdav error handling
https://github.com/owncloud/ocis/pull/3932
https://github.com/owncloud/ocis/pull/3928
https://github.com/owncloud/ocis/pull/3922
Enhancement - Update reva to v2.3.1: #3552

Updated reva to version 2.3.1. This update includes
- Bugfix cs3org/reva#2827: Check permissions when deleting spaces
- Bugfix cs3org/reva#2830: Correctly render response when accepting merged shares
- Bugfix cs3org/reva#2831: Fix uploads to owncloudsql storage when no mtime is provided
- Enhancement cs3org/reva#2833: Make status.php values configurable
- Enhancement cs3org/reva#2832: Add version option for ocdav go-micro service
Updated reva to version 2.3.0. This update includes:
- Bugfix cs3org/reva#2693: Support editnew actions from MS Office
- Bugfix cs3org/reva#2588: Dockerfile.revad-ceph to use the right base image
- Bugfix cs3org/reva#2499: Removed check DenyGrant in resource permission
- Bugfix cs3org/reva#2285: Accept new userid idp format
- Bugfix cs3org/reva#2802: Bugfix the resource id handling for space shares
- Bugfix cs3org/reva#2800: Bugfix spaceid parsing in spaces trashbin API
- Bugfix cs3org/reva#2608: Respect the tracing_service_name config variable
- Bugfix cs3org/reva#2742: Use exact match in login filter
- Bugfix cs3org/reva#2759: Made uid, gid claims parsing more robust in OIDC auth provider
- Bugfix cs3org/reva#2788: Return the correct file IDs on public link resources
- Bugfix cs3org/reva#2322: Use RFC3339 for parsing dates
- Bugfix cs3org/reva#2784: Disable storageprovider cache for the share jail
- Bugfix cs3org/reva#2555: Bugfix site accounts endpoints
- Bugfix cs3org/reva#2675: Updates Makefile according to latest go standards
- Bugfix cs3org/reva#2572: Wait for nats server on middleware start
- Change cs3org/reva#2735: Avoid user enumeration
- Change cs3org/reva#2737: Bump go-cs3api
- Change cs3org/reva#2763: Change the oCIS and S3NG storage driver blob store layout
- Change cs3org/reva#2596: Remove hash from public link urls
- Change cs3org/reva#2785: Implement workaround for chi.RegisterMethod
- Change cs3org/reva#2559: Do not encode webDAV ids to base64
- Change cs3org/reva#2740: Rename oc10 share manager driver
- Change cs3org/reva#2561: Merge oidcmapping auth manager into oidc
- Enhancement cs3org/reva#2698: Make capabilities endpoint public, authenticate users is present
- Enhancement cs3org/reva#2515: Enabling tracing by default if not explicitly disabled
- Enhancement cs3org/reva#2686: Features for favorites xattrs in EOS, cache for scope expansion
- Enhancement cs3org/reva#2494: Use sys ACLs for file permissions
- Enhancement cs3org/reva#2522: Introduce events
- Enhancement cs3org/reva#2811: Add event for created directories
- Enhancement cs3org/reva#2798: Add additional fields to events to enable search
- Enhancement cs3org/reva#2790: Fake providerids so API stays stable after beta
- Enhancement cs3org/reva#2685: Enable federated account access
- Enhancement cs3org/reva#1787: Add support for HTTP TPC
- Enhancement cs3org/reva#2799: Add flag to enable unrestriced listing of spaces
- Enhancement cs3org/reva#2560: Mentix PromSD extensions
- Enhancement cs3org/reva#2741: Meta path for user
- Enhancement cs3org/reva#2613: Externalize custom mime types configuration for storage providers
- Enhancement cs3org/reva#2163: Nextcloud-based share manager for pkg/ocm/share
- Enhancement cs3org/reva#2696: Preferences driver refactor and cbox sql implementation
- Enhancement cs3org/reva#2052: New CS3API datatx methods
- Enhancement cs3org/reva#2743: Add capability for public link single file edit
- Enhancement cs3org/reva#2738: Site accounts site-global settings
- Enhancement cs3org/reva#2672: Further Site Accounts improvements
- Enhancement cs3org/reva#2549: Site accounts improvements
- Enhancement cs3org/reva#2795: Add feature flags "projects" and "share_jail" to spaces capability
- Enhancement cs3org/reva#2514: Reuse ocs role objects in other drivers
- Enhancement cs3org/reva#2781: In memory user provider
- Enhancement cs3org/reva#2752: Refactor the rest user and group provider drivers
https://github.com/owncloud/ocis/issues/3621
https://github.com/owncloud/ocis/pull/3552
https://github.com/owncloud/ocis/pull/3570
https://github.com/owncloud/ocis/pull/3601
https://github.com/owncloud/ocis/pull/3602
https://github.com/owncloud/ocis/pull/3605
https://github.com/owncloud/ocis/pull/3611
https://github.com/owncloud/ocis/pull/3637
https://github.com/owncloud/ocis/pull/3652
https://github.com/owncloud/ocis/pull/3681
Enhancement - Update ownCloud Web to v5.5.0-rc.8: #6854

Tags: web

We updated ownCloud Web to v5.5.0-rc.8. Please refer to the changelog (linked) for details on
the web release.

https://github.com/owncloud/web/pull/6854
https://github.com/owncloud/ocis/pull/3844
https://github.com/owncloud/ocis/pull/3862
https://github.com/owncloud/web/releases/tag/v5.5.0-rc.8
Enhancement - Update ownCloud Web to v5.5.0-rc.9: #6854

Tags: web

We updated ownCloud Web to v5.5.0-rc.9. Please refer to the changelog (linked) for details on
the web release.

Summary -------
- Bugfix owncloud/web#6939: Not logged out if backend is ownCloud 10
- Bugfix owncloud/web#7061: Prevent rename button from getting covered
- Bugfix owncloud/web#7032: Show message when upload size exceeds quota
- Bugfix owncloud/web#7036: Drag and drop upload when a file is selected
- Enhancement owncloud/web#7022: Add config option for hoverable quick actions
- Enhancement owncloud/web#6555: Consistent dropdown menus
- Enhancement owncloud/web#6994: Copy/Move conflict dialog
- Enhancement owncloud/web#6750: Make contexthelpers opt-out
- Enhancement owncloud/web#7038: Rendering of share-indicators in ResourceTable
- Enhancement owncloud/web#6776: Prevent the resource name in the sidebar from being truncated
- Enhancement owncloud/web#7067: Upload progress & overlay improvements
https://github.com/owncloud/web/pull/6854
https://github.com/owncloud/ocis/pull/3927
https://github.com/owncloud/web/releases/tag/v5.5.0-rc.9
Enhancement - Update ownCloud Web to v5.5.0-rc.6: #6854

Tags: web

We updated ownCloud Web to v5.5.0-rc.6. Please refer to the changelog (linked) for details on
the web release.

https://github.com/owncloud/web/pull/6854
https://github.com/owncloud/ocis/pull/3664
https://github.com/owncloud/ocis/pull/3680
https://github.com/owncloud/ocis/pull/3727
https://github.com/owncloud/ocis/pull/3747
https://github.com/owncloud/ocis/pull/3797
https://github.com/owncloud/web/releases/tag/v5.5.0-rc.6
Enhancement - Update ownCloud Web to v5.7.0-rc.1: #4005

Tags: web

We updated ownCloud Web to v5.7.0-rc.1. Please refer to the changelog (linked) for details on
the web release.
- Enhancement owncloud/web#7119: Copy/Move conflict dialog
- Enhancement owncloud/web#7122: Enable Drag&Drop and keyboard shortcuts for all views
- Enhancement owncloud/web#7053: Personal space id in URL
- Enhancement owncloud/web#6933: Customize additional mimeTypes for preview app
- Enhancement owncloud/web#7078: Add Hotkeys to ResourceTable
- Enhancement owncloud/web#7120: Use tus chunksize from backend
- Enhancement owncloud/web#6749: Update ODS to v13.2.0-rc.1
- Enhancement owncloud/web#7111: Upload data during creation
- Enhancement owncloud/web#7109: Clickable folder links in upload overlay
- Enhancement owncloud/web#7123: Indeterminate progress bar in upload overlay
- Enhancement owncloud/web#7088: Upload time estimation
- Enhancement owncloud/web#7125: Wording improvements
- Enhancement owncloud/web#7140: Separate direct and indirect link shares in sidebar
- Bugfix owncloud/web#7156: Folder link targets
- Bugfix owncloud/web#7108: Reload of an updated space-image and/or -readme
- Bugfix owncloud/web#6846: Upload meta data serialization
- Bugfix owncloud/web#7100: Complete-state of the upload overlay
- Bugfix owncloud/web#7104: Parent folder name on public links
- Bugfix owncloud/web#7173: Re-introduce dynamic app name in document title
- Bugfix owncloud/web#7166: External apps fixes
https://github.com/owncloud/ocis/pull/4005
https://github.com/owncloud/web/pull/7158
https://github.com/owncloud/ocis/pull/3990
https://github.com/owncloud/web/pull/6854
https://github.com/owncloud/web/releases/tag/v5.7.0-rc.1
Enhancement - Add descriptions to webdav configuration: #3755

Added descriptions to webdav config structs to include them in the config documentation.

https://github.com/owncloud/ocis/pull/3755

ocis - 2.0.0-beta.3

Published by kulmann over 2 years ago

Changes in 2.0.0-beta.3

Summary

Bugfix - Remove runtime kill and run commands: #3740
Bugfix - Check permissions when deleting Space: #3709
Bugfix - Allow empty environment variables: #3892
Bugfix - Remove unused transfer secret from app provider: #3798
Bugfix - Make IDP secrets configurable via environment variables: #3744
Bugfix - Enable debug server by default: #3827
Bugfix - Fix search index getting out of sync: #3851
Bugfix - Inconsistency env var naming for LDAP filter configuration: #3890
Bugfix - Fix LDAP insecure options: #3897
Bugfix - Set default name for public link via capabilities: #3834
Bugfix - Remove legacy accounts proxy routes: #3831
Bugfix - Fix the ocis search command: #3796
Bugfix - Rename search env variable for the grpc server address: #3800
Bugfix - Fix the idm and settings extensions' admin user id configuration option: #3799
Bugfix - Fix configuration validation for extensions' server commands: #3911
Bugfix - Fix multiple storage-users env variables: #3802
Bugfix - Thumbnails for /dav/xxx?preview=1 requests: #3567
Bugfix - Fix user autoprovisioning: #3893
Bugfix - Fix version number in status page: #3788
Bugfix - Fix the webdav URL of drive roots: #3706
Bugfix - Idp: Check if CA certificate if present: #3623
Bugfix - Return proper errors when ocs/cloud/users is using the cs3 backend: #3483
Bugfix - Save Katherine: #3823
Bugfix - Fix Thumbnails for IDs without a trailing path: #3791
Bugfix - URL encode the webdav url in the graph API: #3597
Change - Update ocis packages and imports to V2: #3678
Change - Load configuration files just from one directory: #3587
Change - Reduce permissions on docker image predeclared volumes: #3641
Change - Introduce ocis init and remove all default secrets: #3551
Change - The glauth and accounts services are removed: #3685
Change - Reduce drives in graph /me/drives API: #3629
Change - Switched default configuration to use libregraph/idm: #3331
Change - Rename MetadataUserID: #3671
Change - Use new space ID util functions: #3648
Change - Prevent access to disabled space: #3779
Change - Rename serviceUser to systemUser: #3673
Change - Split MachineAuth from SystemUser: #3672
Enhancement - Align service naming: #3606
Enhancement - Introduce service registry cache: #3833
Enhancement - Reintroduce user autoprovisioning in proxy: #3860
Enhancement - Add config option to provide TLS certificate: #3818
Enhancement - Add descriptions for graph-explorer config: #3759
Enhancement - Add /me/changePassword endpoint to GraphAPI: #3063
Enhancement - Wrap metadata storage with dedicated reva gateway: #3602
Enhancement - Product field in OCS version: #2918
Enhancement - Add initial version of the search extensions: #3635
Enhancement - Add capability for public link single file edit: #6787
Enhancement - Added share_jail and projects feature flags in spaces capability: #3626
Enhancement - Add description tags to the thumbnails config structs: #3752
Enhancement - Update linkshare capabilities: #3579
Enhancement - Update reva to version 2.4.1: #3746
Enhancement - Update reva to version 2.5.1: #3932
Enhancement - Update reva to v2.3.1: #3552
Enhancement - Update ownCloud Web to v5.5.0-rc.8: #6854
Enhancement - Update ownCloud Web to v5.5.0-rc.9: #6854
Enhancement - Update ownCloud Web to v5.5.0-rc.6: #6854
Enhancement - Add descriptions to webdav configuration: #3755

Details

Bugfix - Remove runtime kill and run commands: #3740

We've removed the kill and run commands from the oCIS runtime. If these dynamic capabilities
are needed, one should switch to a full fledged supervisor and start oCIS as individual
services.

If one wants to start a only a subset of services, this is still possible by setting
OCIS_RUN_EXTENSIONS.

https://github.com/owncloud/ocis/pull/3740
Bugfix - Check permissions when deleting Space: #3709

Check for manager permissions when deleting spaces. Do not allow deleting spaces via dav
service

https://github.com/owncloud/ocis/pull/3709
Bugfix - Allow empty environment variables: #3892

We've fixed the behavior for empty environment variables, that previously would not have
overwritten default values. Therefore it had the same effect like not setting the environment
variable. We now check if the environment variable is set at all and if so, we also allow to
override a default value with an empty value.

https://github.com/owncloud/ocis/pull/3892
Bugfix - Remove unused transfer secret from app provider: #3798

We've fixed the startup of the app provider by removing the startup dependency on a configured
transfer secret, which was not used. This only happend if you start the app provider without
runtime (eg. ocis app-provider server) and didn't have configured all oCIS secrets.

https://github.com/owncloud/ocis/pull/3798
Bugfix - Make IDP secrets configurable via environment variables: #3744

We've fixed the configuration options of the IDP to make the IDP secrets again configurable via
environment variables.

https://github.com/owncloud/ocis/pull/3744
Bugfix - Enable debug server by default: #3827

We've fixed the behavior for the audit, idm, nats and notifications extensions, that did not
start their debug server by default.

https://github.com/owncloud/ocis/pull/3827
Bugfix - Fix search index getting out of sync: #3851

We fixed a problem where the search index got out of sync with child elements of a parent
containing special characters.

https://github.com/owncloud/ocis/pull/3851
Bugfix - Inconsistency env var naming for LDAP filter configuration: #3890

There was a naming inconsitency for the enviroment variables used to define LDAP filters for
user and groups queries. Some services used LDAP_USER_FILTER while others used
LDAP_USERFILTER. This is now changed to use LDAP_USER_FILTER and LDAP_GROUP_FILTER.

Note: If your oCIS setup is using an LDAP configuration that has any of the *_LDAP_USERFILTER
or *_LDAP_GROUPFILTER environment variables set, please update the configuration to use
the new unified names *_LDAP_USER_FILTER respectively *_LDAP_GROUP_FILTER instead.

https://github.com/owncloud/ocis/issues/3890
Bugfix - Fix LDAP insecure options: #3897

We've fixed multiple LDAP insecure options:
- The Graph LDAP insecure option default was set to true and now defaults to false. This is possible after #3888, since the Graph also now uses the LDAP CAcert by default.
- The Graph LDAP insecure option was configurable by the environment variable OCIS_INSECURE, which was replaced by the dedicated LDAP_INSECURE variable. This variable is also used by all other services using LDAP.
- The IDP insecure option for the user backend now also picks up configuration from LDAP_INSECURE.
https://github.com/owncloud/ocis/pull/3897
Bugfix - Set default name for public link via capabilities: #3834

We have now added a default name for public link shares which is communicated via the
capabilities.

https://github.com/owncloud/ocis/issues/1237
https://github.com/owncloud/ocis/pull/3834
Bugfix - Remove legacy accounts proxy routes: #3831

We've removed the legacy accounts routes from the proxy default config. There were no longer
used since the switch to IDM as the default user backend. Also accounts is no longer part of the
oCIS binary and therefore should not be part of the proxy default route config.

https://github.com/owncloud/ocis/pull/3831
Bugfix - Fix the ocis search command: #3796

We've fixed the behavior for ocis search, which didn't show further help when not all secrets
have been configured. It also was not possible to start the search service standalone from the
oCIS binary without configuring all oCIS secrets, even they were not needed by the search
service.

https://github.com/owncloud/ocis/pull/3796
Bugfix - Rename search env variable for the grpc server address: #3800

We've fixed the gprc server address configuration environment variable by renaming it from
ACCOUNTS_GRPC_ADDR to SEARCH_GRPC_ADDR

https://github.com/owncloud/ocis/pull/3800
Bugfix - Fix the idm and settings extensions' admin user id configuration option: #3799

We've fixed the admin user id configuration of the settings and idm extensions. The have
previously only been configurable via the oCIS shared configuration and therefore have been
undocumented for the extensions. This config option is now part of both extensions'
configuration and can now also be used when the extensions are compiled standalone.

https://github.com/owncloud/ocis/pull/3799
Bugfix - Fix configuration validation for extensions' server commands: #3911

We've fixed the configuration validation for the extensions' server commands. Before that
fix error messages have occurred when trying to start individual services without certain
oCIS fullstack configuration values.

We now no longer do the common oCIS configuration validation for extensions' server commands
and now rely only on the extensions' validation function.

https://github.com/owncloud/ocis/pull/3911
Bugfix - Fix multiple storage-users env variables: #3802

We've fixed multiple environment variable configuration options for the storage-users
extension:
- STORAGE_USERS_GRPC_ADDR was used to configure both the address of the http and grpc server. This resulted in a failing startup of the storage-users extension if this config option is set, because the service tries to double-bind the configured port (one time for each of the http and grpc server). You can now configure the grpc server's address with the environment variable STORAGE_USERS_GRPC_ADDR and the http server's address with the environment variable STORAGE_USERS_HTTP_ADDR
- STORAGE_USERS_S3NG_USERS_PROVIDER_ENDPOINT was used to configure the permissions service endpoint for the S3NG driver and was therefore renamed to STORAGE_USERS_S3NG_PERMISSIONS_ENDPOINT
- It's now possible to configure the permissions service endpoint for all storage drivers with the environment variable STORAGE_USERS_PERMISSION_ENDPOINT, which was previously only used by the S3NG driver.
https://github.com/owncloud/ocis/pull/3802
Bugfix - Thumbnails for /dav/xxx?preview=1 requests: #3567

We've added the thumbnail rendering for /dav/xxx?preview=1,
/remote.php/webdav/{relative path}?preview=1 and /webdav/{relative path}?preview=1 requests, which was previously not supported because of missing routes. It
now returns the same thumbnails as for /remote.php/dav/xxx?preview=1.

https://github.com/owncloud/ocis/pull/3567
Bugfix - Fix user autoprovisioning: #3893

We've fixed the autoprovsioning feature that was introduced in beta2. Due to a bug the role
assignment of the privileged user that is used to create accounts wasn't propagated correctly
to the graph service.

https://github.com/owncloud/ocis/issues/3893
Bugfix - Fix version number in status page: #3788

We needed to undo the version number changes on the status page to keep compatibility for legacy
clients. We added a new field productversion for the actual version of the product.

https://github.com/owncloud/ocis/issues/3788
https://github.com/owncloud/ocis/pull/3805
Bugfix - Fix the webdav URL of drive roots: #3706

Fixed the webdav URL of drive roots in the graph API.

https://github.com/owncloud/ocis/issues/3706
https://github.com/owncloud/ocis/pull/3916
Bugfix - Idp: Check if CA certificate if present: #3623

Upon first start with the default configurtation the idm service creates a server
certificate, that might not be finished before the idp service is starting. Add a check to idp
similar to what the user, group, and auth-providers implement.

https://github.com/owncloud/ocis/issues/3623
Bugfix - Return proper errors when ocs/cloud/users is using the cs3 backend: #3483

The ocs API was just exiting with a fatal error on any update request, when configured for the cs3
backend. Now it returns a proper error.

https://github.com/owncloud/ocis/issues/3483
Bugfix - Save Katherine: #3823

SpaceManager user katherine was removed with the demo user switch. Now she comes back

https://github.com/owncloud/ocis/issues/3823
https://github.com/owncloud/ocis/pull/3824
Bugfix - Fix Thumbnails for IDs without a trailing path: #3791

The routes in the chi router were not matching thumbnail requests without a trailing path.

https://github.com/owncloud/ocis/pull/3791
Bugfix - URL encode the webdav url in the graph API: #3597

Fixed the webdav URL in the drives responses. Without encoding the URL could be broken by files
with spaces in the file name.

https://github.com/owncloud/ocis/issues/3538
https://github.com/owncloud/ocis/pull/3597
Change - Update ocis packages and imports to V2: #3678

This needs to be done in preparation for the major version bump in ocis.

https://github.com/owncloud/ocis/pull/3678
Change - Load configuration files just from one directory: #3587

We've changed the configuration file loading behavior and are now only loading configuration
files from ONE single directory. This directory can be set on compile time or via an environment
variable on startup (OCIS_CONFIG_DIR).

We are using following configuration default paths:
- Docker images: /etc/ocis/ - Binary releases: $HOME/.ocis/config/
https://github.com/owncloud/ocis/pull/3587
Change - Reduce permissions on docker image predeclared volumes: #3641

We've lowered the permissions on the predeclared volumes of the oCIS docker image from 777 to
750.

This change doesn't affect you, unless you use the docker image with the non default uid/guid to
start oCIS (default is 1000:1000).

https://github.com/owncloud/ocis/pull/3641
Change - Introduce ocis init and remove all default secrets: #3551

We've removed all default secrets and the hardcoded UUID of the user admin. This means you
can't start oCIS any longer without setting these via environment variable or configuration
file.

In order to make this easy for you, we introduced a new command: ocis init. You can run this
command before starting oCIS with ocis server and it will bootstrap you a configuration file
for a secure oCIS instance.

https://github.com/owncloud/ocis/issues/3524
https://github.com/owncloud/ocis/pull/3551
https://github.com/owncloud/ocis/pull/3743
Change - The glauth and accounts services are removed: #3685

After switching the default configuration to libregraph/idm we could remove the glauth and
accounts services from the source code (they were already disabled by default with the
previous release)

https://github.com/owncloud/ocis/pull/3685
Change - Reduce drives in graph /me/drives API: #3629

Reduced the drives in the graph /me/drives API to only the drives the user has access to. The
endpoint /drives will list all drives when the user has the permission.

https://github.com/owncloud/ocis/pull/3629
Change - Switched default configuration to use libregraph/idm: #3331

We switched the default configuration of oCIS to use the "idm" service (based on
libregraph/idm) as the standard source for user and group information. The accounts and
glauth services are no longer enabled by default and will be removed with an upcoming release.

https://github.com/owncloud/ocis/pull/3331
https://github.com/owncloud/ocis/pull/3633
Change - Rename MetadataUserID: #3671

MetadataUserID is renamed to SystemUserID including yaml tags and env vars

https://github.com/owncloud/ocis/pull/3671
Change - Use new space ID util functions: #3648

Changed code to use the new space ID util functions so that everything works with the new spaces
ID format.

https://github.com/owncloud/ocis/pull/3648
https://github.com/owncloud/ocis/pull/3669
Change - Prevent access to disabled space: #3779

Previously managers where allowed to edit the space even when it is disabled This is no longer
possible

https://github.com/owncloud/ocis/pull/3779
Change - Rename serviceUser to systemUser: #3673

We renamed serviceUser to systemUser in all configs and vars including yaml-tags and env vars

https://github.com/owncloud/ocis/pull/3673
Change - Split MachineAuth from SystemUser: #3672

We now have two different APIKeys: MachineAuth for the machine-auth service and SystemUser
for the system user used e.g. by settings service

https://github.com/owncloud/ocis/pull/3672
Enhancement - Align service naming: #3606

We now reflect the configured service names when listing them in the ocis runtime

https://github.com/owncloud/ocis/issues/3603
https://github.com/owncloud/ocis/pull/3606
Enhancement - Introduce service registry cache: #3833

We've improved the service registry / service discovery by setting up registry caching (TTL
20s), so that not every requests has to do a lookup on the registry.

https://github.com/owncloud/ocis/pull/3833
Enhancement - Reintroduce user autoprovisioning in proxy: #3860

With the removal of the accounts service autoprovisioning of users upon first login was no
longer possible. We added this feature back for the cs3 user backend in the proxy. Leveraging
the libregraph users API for creating the users.

https://github.com/owncloud/ocis/pull/3860
Enhancement - Add config option to provide TLS certificate: #3818

Added a config option to the graph service to provide a TLS certificate to be used to verify the
LDAP server certificate.

https://github.com/owncloud/ocis/issues/3818
https://github.com/owncloud/ocis/pull/3888
Enhancement - Add descriptions for graph-explorer config: #3759

Added descriptions tags to the graph-explorer config tags so that they will be included in the
documentation.

https://github.com/owncloud/ocis/pull/3759
Enhancement - Add /me/changePassword endpoint to GraphAPI: #3063

When using the builtin user management, allow users to update their own password via the
graph/v1.0/me/changePassword endpoint.

https://github.com/owncloud/ocis/issues/3063
https://github.com/owncloud/ocis/pull/3705
Enhancement - Wrap metadata storage with dedicated reva gateway: #3602

We wrapped the metadata storage in a minimal reva instance with a dedicated gateway, including
static storage registry, static auth registry, in memory userprovider, machine
authprovider and demo permissions service. This allows us to preconfigure the service user
for the ocis settings service, share and public share providers.

https://github.com/owncloud/ocis/pull/3602
https://github.com/owncloud/ocis/pull/3647
Enhancement - Product field in OCS version: #2918

We've added a new field to the OCS Version, which is supposed to announce the product name. The
web ui as a client will make use of it to make the backend product and version available (e.g. for
easier bug reports).

https://github.com/owncloud/ocis/pull/2918
Enhancement - Add initial version of the search extensions: #3635

It is now possible to search for files and directories by their name using the web UI. Therefor
new search extension indexes files in a persistent local index.

https://github.com/owncloud/ocis/pull/3635
Enhancement - Add capability for public link single file edit: #6787

It is now possible to share a single file by link with edit permissions. Therefore we need a
public share capability to enable that feature in the clients. At the same time, we improved the
WebDAV permissions for public links.

https://github.com/owncloud/web/pull/6787
https://github.com/owncloud/ocis/pull/3538
Enhancement - Added share_jail and projects feature flags in spaces capability: #3626

We've added feature flags to the spaces capability to indicate to clients which features are
supposed to be shown to users.

https://github.com/owncloud/ocis/pull/3626
Enhancement - Add description tags to the thumbnails config structs: #3752

Added description tags to the config structs in the thumbnails service so they will be included
in the config documentation.

Important If you ran ocis init with the v2.0.0-alpha* version then you have to manually add the transfer_secret to the ocis.yaml.

Just open the ocis.yaml config file and look for the thumbnails section. Then add a random
transfer_secret so that it looks like this:

yaml thumbnails: thumbnail: transfer_secret: <put random value here>

https://github.com/owncloud/ocis/pull/3752
Enhancement - Update linkshare capabilities: #3579

We have updated the capabilities regarding password enforcement and expiration dates of
public links. They were previously hardcoded in a way that didn't reflect the actual backend
functionality anymore.

https://github.com/owncloud/ocis/pull/3579
Enhancement - Update reva to version 2.4.1: #3746

Changelog for reva 2.4.1 (2022-05-24) =======================================

The following sections list the changes in reva 2.4.1 relevant to reva users. The changes are
ordered by importance.

Summary -------
- Bugfix cs3org/reva#2891: Add missing http status code
Changelog for reva 2.4.0 (2022-05-24) =======================================

The following sections list the changes in reva 2.4.0 relevant to reva users. The changes are
ordered by importance.

Summary -------
- Bugfix cs3org/reva#2854: Handle non uuid space and nodeid in decomposedfs
- Bugfix cs3org/reva#2853: Filter CS3 share manager listing
- Bugfix cs3org/reva#2868: Actually remove blobs when purging
- Bugfix cs3org/reva#2882: Fix FileUploaded event being emitted too early
- Bugfix cs3org/reva#2848: Fix storage id in the references in the ItemTrashed events
- Bugfix cs3org/reva#2852: Fix rcbox dependency on reva 1.18
- Bugfix cs3org/reva#3505: Fix creating a new file with wopi
- Bugfix cs3org/reva#2885: Move stat out of usershareprovider
- Bugfix cs3org/reva#2883: Fix role consideration when updating a share
- Bugfix cs3org/reva#2864: Fix Grant Space IDs
- Bugfix cs3org/reva#2870: Update quota calculation
- Bugfix cs3org/reva#2876: Fix version number in status page
- Bugfix cs3org/reva#2829: Don't include versions in quota
- Change cs3org/reva#2856: Do not allow to edit disabled spaces
- Enhancement cs3org/reva#3741: Add download endpoint to ocdav versions API
- Enhancement cs3org/reva#2884: Show mounted shares in virtual share jail root
- Enhancement cs3org/reva#2792: Use storageproviderid for spaces routing
https://github.com/owncloud/ocis/pull/3746
https://github.com/owncloud/ocis/pull/3771
https://github.com/owncloud/ocis/pull/3778
https://github.com/owncloud/ocis/pull/3842
https://github.com/owncloud/ocis/pull/3854
https://github.com/owncloud/ocis/pull/3858
https://github.com/owncloud/ocis/pull/3867
Enhancement - Update reva to version 2.5.1: #3932

Changelog for reva 2.5.1 (2022-06-08) =======================================

The following sections list the changes in reva 2.5.1 relevant to reva users. The changes are
ordered by importance.

Summary -------
- Bugfix cs3org/reva#2931: Allow listing share jail space
- Bugfix cs3org/reva#2918: Fix propfinds with depth 0
Changelog for reva 2.5.0 (2022-06-07) =======================================

The following sections list the changes in reva 2.5.0 relevant to reva users. The changes are
ordered by importance.

Summary -------
- Bugfix cs3org/reva#2909: The decomposedfs now checks the GetPath permission
- Bugfix cs3org/reva#2899: Empty meta requests should return body
- Bugfix cs3org/reva#2928: Fix mkcol response code
- Bugfix cs3org/reva#2907: Correct share jail child aggregation
- Bugfix cs3org/reva#2895: Fix unlimited quota in spaces
- Bugfix cs3org/reva#2905: Check user permissions before updating/removing public shares
- Bugfix cs3org/reva#2904: Share jail now works properly when accessed as a space
- Bugfix cs3org/reva#2903: User owncloudsql now uses the correct userid
- Change cs3org/reva#2920: Clean up the propfind code
- Change cs3org/reva#2913: Rename ocs parameter "space_ref"
- Enhancement cs3org/reva#2919: EOS Spaces implementation
- Enhancement cs3org/reva#2888: Introduce spaces field mask
- Enhancement cs3org/reva#2922: Refactor webdav error handling
https://github.com/owncloud/ocis/pull/3932
https://github.com/owncloud/ocis/pull/3928
https://github.com/owncloud/ocis/pull/3922
Enhancement - Update reva to v2.3.1: #3552

Updated reva to version 2.3.1. This update includes
- Bugfix cs3org/reva#2827: Check permissions when deleting spaces
- Bugfix cs3org/reva#2830: Correctly render response when accepting merged shares
- Bugfix cs3org/reva#2831: Fix uploads to owncloudsql storage when no mtime is provided
- Enhancement cs3org/reva#2833: Make status.php values configurable
- Enhancement cs3org/reva#2832: Add version option for ocdav go-micro service
Updated reva to version 2.3.0. This update includes:
- Bugfix cs3org/reva#2693: Support editnew actions from MS Office
- Bugfix cs3org/reva#2588: Dockerfile.revad-ceph to use the right base image
- Bugfix cs3org/reva#2499: Removed check DenyGrant in resource permission
- Bugfix cs3org/reva#2285: Accept new userid idp format
- Bugfix cs3org/reva#2802: Bugfix the resource id handling for space shares
- Bugfix cs3org/reva#2800: Bugfix spaceid parsing in spaces trashbin API
- Bugfix cs3org/reva#2608: Respect the tracing_service_name config variable
- Bugfix cs3org/reva#2742: Use exact match in login filter
- Bugfix cs3org/reva#2759: Made uid, gid claims parsing more robust in OIDC auth provider
- Bugfix cs3org/reva#2788: Return the correct file IDs on public link resources
- Bugfix cs3org/reva#2322: Use RFC3339 for parsing dates
- Bugfix cs3org/reva#2784: Disable storageprovider cache for the share jail
- Bugfix cs3org/reva#2555: Bugfix site accounts endpoints
- Bugfix cs3org/reva#2675: Updates Makefile according to latest go standards
- Bugfix cs3org/reva#2572: Wait for nats server on middleware start
- Change cs3org/reva#2735: Avoid user enumeration
- Change cs3org/reva#2737: Bump go-cs3api
- Change cs3org/reva#2763: Change the oCIS and S3NG storage driver blob store layout
- Change cs3org/reva#2596: Remove hash from public link urls
- Change cs3org/reva#2785: Implement workaround for chi.RegisterMethod
- Change cs3org/reva#2559: Do not encode webDAV ids to base64
- Change cs3org/reva#2740: Rename oc10 share manager driver
- Change cs3org/reva#2561: Merge oidcmapping auth manager into oidc
- Enhancement cs3org/reva#2698: Make capabilities endpoint public, authenticate users is present
- Enhancement cs3org/reva#2515: Enabling tracing by default if not explicitly disabled
- Enhancement cs3org/reva#2686: Features for favorites xattrs in EOS, cache for scope expansion
- Enhancement cs3org/reva#2494: Use sys ACLs for file permissions
- Enhancement cs3org/reva#2522: Introduce events
- Enhancement cs3org/reva#2811: Add event for created directories
- Enhancement cs3org/reva#2798: Add additional fields to events to enable search
- Enhancement cs3org/reva#2790: Fake providerids so API stays stable after beta
- Enhancement cs3org/reva#2685: Enable federated account access
- Enhancement cs3org/reva#1787: Add support for HTTP TPC
- Enhancement cs3org/reva#2799: Add flag to enable unrestriced listing of spaces
- Enhancement cs3org/reva#2560: Mentix PromSD extensions
- Enhancement cs3org/reva#2741: Meta path for user
- Enhancement cs3org/reva#2613: Externalize custom mime types configuration for storage providers
- Enhancement cs3org/reva#2163: Nextcloud-based share manager for pkg/ocm/share
- Enhancement cs3org/reva#2696: Preferences driver refactor and cbox sql implementation
- Enhancement cs3org/reva#2052: New CS3API datatx methods
- Enhancement cs3org/reva#2743: Add capability for public link single file edit
- Enhancement cs3org/reva#2738: Site accounts site-global settings
- Enhancement cs3org/reva#2672: Further Site Accounts improvements
- Enhancement cs3org/reva#2549: Site accounts improvements
- Enhancement cs3org/reva#2795: Add feature flags "projects" and "share_jail" to spaces capability
- Enhancement cs3org/reva#2514: Reuse ocs role objects in other drivers
- Enhancement cs3org/reva#2781: In memory user provider
- Enhancement cs3org/reva#2752: Refactor the rest user and group provider drivers
https://github.com/owncloud/ocis/issues/3621
https://github.com/owncloud/ocis/pull/3552
https://github.com/owncloud/ocis/pull/3570
https://github.com/owncloud/ocis/pull/3601
https://github.com/owncloud/ocis/pull/3602
https://github.com/owncloud/ocis/pull/3605
https://github.com/owncloud/ocis/pull/3611
https://github.com/owncloud/ocis/pull/3637
https://github.com/owncloud/ocis/pull/3652
https://github.com/owncloud/ocis/pull/3681
Enhancement - Update ownCloud Web to v5.5.0-rc.8: #6854

Tags: web

We updated ownCloud Web to v5.5.0-rc.8. Please refer to the changelog (linked) for details on
the web release.

https://github.com/owncloud/web/pull/6854
https://github.com/owncloud/ocis/pull/3844
https://github.com/owncloud/ocis/pull/3862
https://github.com/owncloud/web/releases/tag/v5.5.0-rc.8
Enhancement - Update ownCloud Web to v5.5.0-rc.9: #6854

Tags: web

We updated ownCloud Web to v5.5.0-rc.9. Please refer to the changelog (linked) for details on
the web release.

Summary -------
- Bugfix owncloud/web#6939: Not logged out if backend is ownCloud 10
- Bugfix owncloud/web#7061: Prevent rename button from getting covered
- Bugfix owncloud/web#7032: Show message when upload size exceeds quota
- Bugfix owncloud/web#7036: Drag and drop upload when a file is selected
- Enhancement owncloud/web#7022: Add config option for hoverable quick actions
- Enhancement owncloud/web#6555: Consistent dropdown menus
- Enhancement owncloud/web#6994: Copy/Move conflict dialog
- Enhancement owncloud/web#6750: Make contexthelpers opt-out
- Enhancement owncloud/web#7038: Rendering of share-indicators in ResourceTable
- Enhancement owncloud/web#6776: Prevent the resource name in the sidebar from being truncated
- Enhancement owncloud/web#7067: Upload progress & overlay improvements
https://github.com/owncloud/web/pull/6854
https://github.com/owncloud/ocis/pull/3927
https://github.com/owncloud/web/releases/tag/v5.5.0-rc.9
Enhancement - Update ownCloud Web to v5.5.0-rc.6: #6854

Tags: web

We updated ownCloud Web to v5.5.0-rc.6. Please refer to the changelog (linked) for details on
the web release.

https://github.com/owncloud/web/pull/6854
https://github.com/owncloud/ocis/pull/3664
https://github.com/owncloud/ocis/pull/3680
https://github.com/owncloud/ocis/pull/3727
https://github.com/owncloud/ocis/pull/3747
https://github.com/owncloud/ocis/pull/3797
https://github.com/owncloud/web/releases/tag/v5.5.0-rc.6
Enhancement - Add descriptions to webdav configuration: #3755

Added descriptions to webdav config structs to include them in the config documentation.

https://github.com/owncloud/ocis/pull/3755

ocis - 2.0.0-beta2

Published by ownclouders over 2 years ago

Changes in 2.0.0-beta2

Summary

Bugfix - Remove runtime kill and run commands: #3740
Bugfix - Check permissions when deleting Space: #3709
Bugfix - Remove unused transfer secret from app provider: #3798
Bugfix - Make IDP secrets configurable via environment variables: #3744
Bugfix - Enable debug server by default: #3827
Bugfix - Fix search index getting out of sync: #3851
Bugfix - Set default name for public link via capabilities: #3834
Bugfix - Remove legacy accounts proxy routes: #3831
Bugfix - Fix the ocis search command: #3796
Bugfix - Rename search env variable for the grpc server address: #3800
Bugfix - Fix the idm and settings extensions' admin user id configuration option: #3799
Bugfix - Fix multiple storage-users env variables: #3802
Bugfix - Thumbnails for /dav/xxx?preview=1 requests: #3567
Bugfix - Fix version number in status page: #3788
Bugfix - Idp: Check if CA certificate if present: #3623
Bugfix - Return proper errors when ocs/cloud/users is using the cs3 backend: #3483
Bugfix - Save Katherine: #3823
Bugfix - Fix Thumbnails for IDs without a trailing path: #3791
Bugfix - URL encode the webdav url in the graph API: #3597
Change - Update ocis packages and imports to V2: #3678
Change - Load configuration files just from one directory: #3587
Change - Reduce permissions on docker image predeclared volumes: #3641
Change - Introduce ocis init and remove all default secrets: #3551
Change - The glauth and accounts services are removed: #3685
Change - Reduce drives in graph /me/drives API: #3629
Change - Switched default configuration to use libregraph/idm: #3331
Change - Rename MetadataUserID: #3671
Change - Use new space ID util functions: #3648
Change - Prevent access to disabled space: #3779
Change - Rename serviceUser to systemUser: #3673
Change - Split MachineAuth from SystemUser: #3672
Enhancement - Align service naming: #3606
Enhancement - Introduce service registry cache: #3833
Enhancement - Reintroduce user autoprovisioning in proxy: #3860
Enhancement - Add descriptions for graph-explorer config: #3759
Enhancement - Add /me/changePassword endpoint to GraphAPI: #3063
Enhancement - Wrap metadata storage with dedicated reva gateway: #3602
Enhancement - Product field in OCS version: #2918
Enhancement - Add initial version of the search extensions: #3635
Enhancement - Add capability for public link single file edit: #6787
Enhancement - Added share_jail and projects feature flags in spaces capability: #3626
Enhancement - Add description tags to the thumbnails config structs: #3752
Enhancement - Update linkshare capabilities: #3579
Enhancement - Update reva to version 2.4.1: #3746
Enhancement - Update reva to v2.3.1: #3552
Enhancement - Update ownCloud Web to v5.5.0-rc.8: #6854
Enhancement - Update ownCloud Web to v5.5.0-rc.6: #6854
Enhancement - Add descriptions to webdav configuration: #3755

Details

Bugfix - Remove runtime kill and run commands: #3740

We've removed the kill and run commands from the oCIS runtime. If these dynamic capabilities
are needed, one should switch to a full fledged supervisor and start oCIS as individual
services.

If one wants to start a only a subset of services, this is still possible by setting
OCIS_RUN_EXTENSIONS.

https://github.com/owncloud/ocis/pull/3740
Bugfix - Check permissions when deleting Space: #3709

Check for manager permissions when deleting spaces. Do not allow deleting spaces via dav
service

https://github.com/owncloud/ocis/pull/3709
Bugfix - Remove unused transfer secret from app provider: #3798

We've fixed the startup of the app provider by removing the startup dependency on a configured
transfer secret, which was not used. This only happend if you start the app provider without
runtime (eg. ocis app-provider server) and didn't have configured all oCIS secrets.

https://github.com/owncloud/ocis/pull/3798
Bugfix - Make IDP secrets configurable via environment variables: #3744

We've fixed the configuration options of the IDP to make the IDP secrets again configurable via
environment variables.

https://github.com/owncloud/ocis/pull/3744
Bugfix - Enable debug server by default: #3827

We've fixed the behavior for the audit, idm, nats and notifications extensions, that did not
start their debug server by default.

https://github.com/owncloud/ocis/pull/3827
Bugfix - Fix search index getting out of sync: #3851

We fixed a problem where the search index got out of sync with child elements of a parent
containing special characters.

https://github.com/owncloud/ocis/pull/3851
Bugfix - Set default name for public link via capabilities: #3834

We have now added a default name for public link shares which is communicated via the
capabilities.

https://github.com/owncloud/ocis/issues/1237
https://github.com/owncloud/ocis/pull/3834
Bugfix - Remove legacy accounts proxy routes: #3831

We've removed the legacy accounts routes from the proxy default config. There were no longer
used since the switch to IDM as the default user backend. Also accounts is no longer part of the
oCIS binary and therefore should not be part of the proxy default route config.

https://github.com/owncloud/ocis/pull/3831
Bugfix - Fix the ocis search command: #3796

We've fixed the behavior for ocis search, which didn't show further help when not all secrets
have been configured. It also was not possible to start the search service standalone from the
oCIS binary without configuring all oCIS secrets, even they were not needed by the search
service.

https://github.com/owncloud/ocis/pull/3796
Bugfix - Rename search env variable for the grpc server address: #3800

We've fixed the gprc server address configuration environment variable by renaming it from
ACCOUNTS_GRPC_ADDR to SEARCH_GRPC_ADDR

https://github.com/owncloud/ocis/pull/3800
Bugfix - Fix the idm and settings extensions' admin user id configuration option: #3799

We've fixed the admin user id configuration of the settings and idm extensions. The have
previously only been configurable via the oCIS shared configuration and therefore have been
undocumented for the extensions. This config option is now part of both extensions'
configuration and can now also be used when the extensions are compiled standalone.

https://github.com/owncloud/ocis/pull/3799
Bugfix - Fix multiple storage-users env variables: #3802

We've fixed multiple environment variable configuration options for the storage-users
extension:
- STORAGE_USERS_GRPC_ADDR was used to configure both the address of the http and grpc server. This resulted in a failing startup of the storage-users extension if this config option is set, because the service tries to double-bind the configured port (one time for each of the http and grpc server). You can now configure the grpc server's address with the environment variable STORAGE_USERS_GRPC_ADDR and the http server's address with the environment variable STORAGE_USERS_HTTP_ADDR
- STORAGE_USERS_S3NG_USERS_PROVIDER_ENDPOINT was used to configure the permissions service endpoint for the S3NG driver and was therefore renamed to STORAGE_USERS_S3NG_PERMISSIONS_ENDPOINT
- It's now possible to configure the permissions service endpoint for all storage drivers with the environment variable STORAGE_USERS_PERMISSION_ENDPOINT, which was previously only used by the S3NG driver.
https://github.com/owncloud/ocis/pull/3802
Bugfix - Thumbnails for /dav/xxx?preview=1 requests: #3567

We've added the thumbnail rendering for /dav/xxx?preview=1,
/remote.php/webdav/{relative path}?preview=1 and /webdav/{relative path}?preview=1 requests, which was previously not supported because of missing routes. It
now returns the same thumbnails as for /remote.php/dav/xxx?preview=1.

https://github.com/owncloud/ocis/pull/3567
Bugfix - Fix version number in status page: #3788

We needed to undo the version number changes on the status page to keep compatibility for legacy
clients. We added a new field productversion for the actual version of the product.

https://github.com/owncloud/ocis/issues/3788
https://github.com/owncloud/ocis/pull/3805
Bugfix - Idp: Check if CA certificate if present: #3623

Upon first start with the default configurtation the idm service creates a server
certificate, that might not be finished before the idp service is starting. Add a check to idp
similar to what the user, group, and auth-providers implement.

https://github.com/owncloud/ocis/issues/3623
Bugfix - Return proper errors when ocs/cloud/users is using the cs3 backend: #3483

The ocs API was just exiting with a fatal error on any update request, when configured for the cs3
backend. Now it returns a proper error.

https://github.com/owncloud/ocis/issues/3483
Bugfix - Save Katherine: #3823

SpaceManager user katherine was removed with the demo user switch. Now she comes back

https://github.com/owncloud/ocis/issues/3823
https://github.com/owncloud/ocis/pull/3824
Bugfix - Fix Thumbnails for IDs without a trailing path: #3791

The routes in the chi router were not matching thumbnail requests without a trailing path.

https://github.com/owncloud/ocis/pull/3791
Bugfix - URL encode the webdav url in the graph API: #3597

Fixed the webdav URL in the drives responses. Without encoding the URL could be broken by files
with spaces in the file name.

https://github.com/owncloud/ocis/issues/3538
https://github.com/owncloud/ocis/pull/3597
Change - Update ocis packages and imports to V2: #3678

This needs to be done in preparation for the major version bump in ocis.

https://github.com/owncloud/ocis/pull/3678
Change - Load configuration files just from one directory: #3587

We've changed the configuration file loading behavior and are now only loading configuration
files from ONE single directory. This directory can be set on compile time or via an environment
variable on startup (OCIS_CONFIG_DIR).

We are using following configuration default paths:
- Docker images: /etc/ocis/ - Binary releases: $HOME/.ocis/config/
https://github.com/owncloud/ocis/pull/3587
Change - Reduce permissions on docker image predeclared volumes: #3641

We've lowered the permissions on the predeclared volumes of the oCIS docker image from 777 to
750.

This change doesn't affect you, unless you use the docker image with the non default uid/guid to
start oCIS (default is 1000:1000).

https://github.com/owncloud/ocis/pull/3641
Change - Introduce ocis init and remove all default secrets: #3551

We've removed all default secrets and the hardcoded UUID of the user admin. This means you
can't start oCIS any longer without setting these via environment variable or configuration
file.

In order to make this easy for you, we introduced a new command: ocis init. You can run this
command before starting oCIS with ocis server and it will bootstrap you a configuration file
for a secure oCIS instance.

https://github.com/owncloud/ocis/issues/3524
https://github.com/owncloud/ocis/pull/3551
https://github.com/owncloud/ocis/pull/3743
Change - The glauth and accounts services are removed: #3685

After switching the default configuration to libregraph/idm we could remove the glauth and
accounts services from the source code (they were already disabled by default with the
previous release)

https://github.com/owncloud/ocis/pull/3685
Change - Reduce drives in graph /me/drives API: #3629

Reduced the drives in the graph /me/drives API to only the drives the user has access to. The
endpoint /drives will list all drives when the user has the permission.

https://github.com/owncloud/ocis/pull/3629
Change - Switched default configuration to use libregraph/idm: #3331

We switched the default configuration of oCIS to use the "idm" service (based on
libregraph/idm) as the standard source for user and group information. The accounts and
glauth services are no longer enabled by default and will be removed with an upcoming release.

https://github.com/owncloud/ocis/pull/3331
https://github.com/owncloud/ocis/pull/3633
Change - Rename MetadataUserID: #3671

MetadataUserID is renamed to SystemUserID including yaml tags and env vars

https://github.com/owncloud/ocis/pull/3671
Change - Use new space ID util functions: #3648

Changed code to use the new space ID util functions so that everything works with the new spaces
ID format.

https://github.com/owncloud/ocis/pull/3648
https://github.com/owncloud/ocis/pull/3669
Change - Prevent access to disabled space: #3779

Previously managers where allowed to edit the space even when it is disabled This is no longer
possible

https://github.com/owncloud/ocis/pull/3779
Change - Rename serviceUser to systemUser: #3673

We renamed serviceUser to systemUser in all configs and vars including yaml-tags and env vars

https://github.com/owncloud/ocis/pull/3673
Change - Split MachineAuth from SystemUser: #3672

We now have two different APIKeys: MachineAuth for the machine-auth service and SystemUser
for the system user used e.g. by settings service

https://github.com/owncloud/ocis/pull/3672
Enhancement - Align service naming: #3606

We now reflect the configured service names when listing them in the ocis runtime

https://github.com/owncloud/ocis/issues/3603
https://github.com/owncloud/ocis/pull/3606
Enhancement - Introduce service registry cache: #3833

We've improved the service registry / service discovery by setting up registry caching (TTL
20s), so that not every requests has to do a lookup on the registry.

https://github.com/owncloud/ocis/pull/3833
Enhancement - Reintroduce user autoprovisioning in proxy: #3860

With the removal of the accounts service autoprovisioning of users upon first login was no
longer possible. We added this feature back for the cs3 user backend in the proxy. Leveraging
the libregraph users API for creating the users.

https://github.com/owncloud/ocis/pull/3860
Enhancement - Add descriptions for graph-explorer config: #3759

Added descriptions tags to the graph-explorer config tags so that they will be included in the
documentation.

https://github.com/owncloud/ocis/pull/3759
Enhancement - Add /me/changePassword endpoint to GraphAPI: #3063

When using the builtin user management, allow users to update their own password via the
graph/v1.0/me/changePassword endpoint.

https://github.com/owncloud/ocis/issues/3063
https://github.com/owncloud/ocis/pull/3705
Enhancement - Wrap metadata storage with dedicated reva gateway: #3602

We wrapped the metadata storage in a minimal reva instance with a dedicated gateway, including
static storage registry, static auth registry, in memory userprovider, machine
authprovider and demo permissions service. This allows us to preconfigure the service user
for the ocis settings service, share and public share providers.

https://github.com/owncloud/ocis/pull/3602
https://github.com/owncloud/ocis/pull/3647
Enhancement - Product field in OCS version: #2918

We've added a new field to the OCS Version, which is supposed to announce the product name. The
web ui as a client will make use of it to make the backend product and version available (e.g. for
easier bug reports).

https://github.com/owncloud/ocis/pull/2918
Enhancement - Add initial version of the search extensions: #3635

It is now possible to search for files and directories by their name using the web UI. Therefor
new search extension indexes files in a persistent local index.

https://github.com/owncloud/ocis/pull/3635
Enhancement - Add capability for public link single file edit: #6787

It is now possible to share a single file by link with edit permissions. Therefore we need a
public share capability to enable that feature in the clients. At the same time, we improved the
WebDAV permissions for public links.

https://github.com/owncloud/web/pull/6787
https://github.com/owncloud/ocis/pull/3538
Enhancement - Added share_jail and projects feature flags in spaces capability: #3626

We've added feature flags to the spaces capability to indicate to clients which features are
supposed to be shown to users.

https://github.com/owncloud/ocis/pull/3626
Enhancement - Add description tags to the thumbnails config structs: #3752

Added description tags to the config structs in the thumbnails service so they will be included
in the config documentation.

Important If you ran ocis init with the v2.0.0-alpha* version then you have to manually add the transfer_secret to the ocis.yaml.

Just open the ocis.yaml config file and look for the thumbnails section. Then add a random
transfer_secret so that it looks like this:

yaml thumbnails: thumbnail: transfer_secret: <put random value here>

https://github.com/owncloud/ocis/pull/3752
Enhancement - Update linkshare capabilities: #3579

We have updated the capabilities regarding password enforcement and expiration dates of
public links. They were previously hardcoded in a way that didn't reflect the actual backend
functionality anymore.

https://github.com/owncloud/ocis/pull/3579
Enhancement - Update reva to version 2.4.1: #3746

Changelog for reva 2.4.1 (2022-05-24) =======================================

The following sections list the changes in reva 2.4.1 relevant to reva users. The changes are
ordered by importance.

Summary -------
- Bugfix cs3org/reva#2891: Add missing http status code
Changelog for reva 2.4.0 (2022-05-24) =======================================

The following sections list the changes in reva 2.4.0 relevant to reva users. The changes are
ordered by importance.

Summary -------
- Bugfix cs3org/reva#2854: Handle non uuid space and nodeid in decomposedfs
- Bugfix cs3org/reva#2853: Filter CS3 share manager listing
- Bugfix cs3org/reva#2868: Actually remove blobs when purging
- Bugfix cs3org/reva#2882: Fix FileUploaded event being emitted too early
- Bugfix cs3org/reva#2848: Fix storage id in the references in the ItemTrashed events
- Bugfix cs3org/reva#2852: Fix rcbox dependency on reva 1.18
- Bugfix cs3org/reva#3505: Fix creating a new file with wopi
- Bugfix cs3org/reva#2885: Move stat out of usershareprovider
- Bugfix cs3org/reva#2883: Fix role consideration when updating a share
- Bugfix cs3org/reva#2864: Fix Grant Space IDs
- Bugfix cs3org/reva#2870: Update quota calculation
- Bugfix cs3org/reva#2876: Fix version number in status page
- Bugfix cs3org/reva#2829: Don't include versions in quota
- Change cs3org/reva#2856: Do not allow to edit disabled spaces
- Enhancement cs3org/reva#3741: Add download endpoint to ocdav versions API
- Enhancement cs3org/reva#2884: Show mounted shares in virtual share jail root
- Enhancement cs3org/reva#2792: Use storageproviderid for spaces routing
https://github.com/owncloud/ocis/pull/3746
https://github.com/owncloud/ocis/pull/3771
https://github.com/owncloud/ocis/pull/3778
https://github.com/owncloud/ocis/pull/3842
https://github.com/owncloud/ocis/pull/3854
https://github.com/owncloud/ocis/pull/3858
https://github.com/owncloud/ocis/pull/3867
Enhancement - Update reva to v2.3.1: #3552

Updated reva to version 2.3.1. This update includes
- Bugfix cs3org/reva#2827: Check permissions when deleting spaces
- Bugfix cs3org/reva#2830: Correctly render response when accepting merged shares
- Bugfix cs3org/reva#2831: Fix uploads to owncloudsql storage when no mtime is provided
- Enhancement cs3org/reva#2833: Make status.php values configurable
- Enhancement cs3org/reva#2832: Add version option for ocdav go-micro service
Updated reva to version 2.3.0. This update includes:
- Bugfix cs3org/reva#2693: Support editnew actions from MS Office
- Bugfix cs3org/reva#2588: Dockerfile.revad-ceph to use the right base image
- Bugfix cs3org/reva#2499: Removed check DenyGrant in resource permission
- Bugfix cs3org/reva#2285: Accept new userid idp format
- Bugfix cs3org/reva#2802: Bugfix the resource id handling for space shares
- Bugfix cs3org/reva#2800: Bugfix spaceid parsing in spaces trashbin API
- Bugfix cs3org/reva#2608: Respect the tracing_service_name config variable
- Bugfix cs3org/reva#2742: Use exact match in login filter
- Bugfix cs3org/reva#2759: Made uid, gid claims parsing more robust in OIDC auth provider
- Bugfix cs3org/reva#2788: Return the correct file IDs on public link resources
- Bugfix cs3org/reva#2322: Use RFC3339 for parsing dates
- Bugfix cs3org/reva#2784: Disable storageprovider cache for the share jail
- Bugfix cs3org/reva#2555: Bugfix site accounts endpoints
- Bugfix cs3org/reva#2675: Updates Makefile according to latest go standards
- Bugfix cs3org/reva#2572: Wait for nats server on middleware start
- Change cs3org/reva#2735: Avoid user enumeration
- Change cs3org/reva#2737: Bump go-cs3api
- Change cs3org/reva#2763: Change the oCIS and S3NG storage driver blob store layout
- Change cs3org/reva#2596: Remove hash from public link urls
- Change cs3org/reva#2785: Implement workaround for chi.RegisterMethod
- Change cs3org/reva#2559: Do not encode webDAV ids to base64
- Change cs3org/reva#2740: Rename oc10 share manager driver
- Change cs3org/reva#2561: Merge oidcmapping auth manager into oidc
- Enhancement cs3org/reva#2698: Make capabilities endpoint public, authenticate users is present
- Enhancement cs3org/reva#2515: Enabling tracing by default if not explicitly disabled
- Enhancement cs3org/reva#2686: Features for favorites xattrs in EOS, cache for scope expansion
- Enhancement cs3org/reva#2494: Use sys ACLs for file permissions
- Enhancement cs3org/reva#2522: Introduce events
- Enhancement cs3org/reva#2811: Add event for created directories
- Enhancement cs3org/reva#2798: Add additional fields to events to enable search
- Enhancement cs3org/reva#2790: Fake providerids so API stays stable after beta
- Enhancement cs3org/reva#2685: Enable federated account access
- Enhancement cs3org/reva#1787: Add support for HTTP TPC
- Enhancement cs3org/reva#2799: Add flag to enable unrestriced listing of spaces
- Enhancement cs3org/reva#2560: Mentix PromSD extensions
- Enhancement cs3org/reva#2741: Meta path for user
- Enhancement cs3org/reva#2613: Externalize custom mime types configuration for storage providers
- Enhancement cs3org/reva#2163: Nextcloud-based share manager for pkg/ocm/share
- Enhancement cs3org/reva#2696: Preferences driver refactor and cbox sql implementation
- Enhancement cs3org/reva#2052: New CS3API datatx methods
- Enhancement cs3org/reva#2743: Add capability for public link single file edit
- Enhancement cs3org/reva#2738: Site accounts site-global settings
- Enhancement cs3org/reva#2672: Further Site Accounts improvements
- Enhancement cs3org/reva#2549: Site accounts improvements
- Enhancement cs3org/reva#2795: Add feature flags "projects" and "share_jail" to spaces capability
- Enhancement cs3org/reva#2514: Reuse ocs role objects in other drivers
- Enhancement cs3org/reva#2781: In memory user provider
- Enhancement cs3org/reva#2752: Refactor the rest user and group provider drivers
https://github.com/owncloud/ocis/issues/3621
https://github.com/owncloud/ocis/pull/3552
https://github.com/owncloud/ocis/pull/3570
https://github.com/owncloud/ocis/pull/3601
https://github.com/owncloud/ocis/pull/3602
https://github.com/owncloud/ocis/pull/3605
https://github.com/owncloud/ocis/pull/3611
https://github.com/owncloud/ocis/pull/3637
https://github.com/owncloud/ocis/pull/3652
https://github.com/owncloud/ocis/pull/3681
Enhancement - Update ownCloud Web to v5.5.0-rc.8: #6854

Tags: web

We updated ownCloud Web to v5.5.0-rc.8. Please refer to the changelog (linked) for details on
the web release.

https://github.com/owncloud/web/pull/6854
https://github.com/owncloud/ocis/pull/3844
https://github.com/owncloud/ocis/pull/3862
https://github.com/owncloud/web/releases/tag/v5.5.0-rc.8
Enhancement - Update ownCloud Web to v5.5.0-rc.6: #6854

Tags: web

We updated ownCloud Web to v5.5.0-rc.6. Please refer to the changelog (linked) for details on
the web release.

https://github.com/owncloud/web/pull/6854
https://github.com/owncloud/ocis/pull/3664
https://github.com/owncloud/ocis/pull/3680
https://github.com/owncloud/ocis/pull/3727
https://github.com/owncloud/ocis/pull/3747
https://github.com/owncloud/ocis/pull/3797
https://github.com/owncloud/web/releases/tag/v5.5.0-rc.6
Enhancement - Add descriptions to webdav configuration: #3755

Added descriptions to webdav config structs to include them in the config documentation.

https://github.com/owncloud/ocis/pull/3755

ocis - 2.0.0-beta1

Published by ownclouders over 2 years ago

Changes in 2.0.0-beta1

Summary

Bugfix - Remove runtime kill and run commands: #3740
Bugfix - Check permissions when deleting Space: #3709
Bugfix - Make IDP secrets configurable via environment variables: #3744
Bugfix - Thumbnails for /dav/xxx?preview=1 requests: #3567
Bugfix - Idp: Check if CA certificate if present: #3623
Bugfix - Return proper errors when ocs/cloud/users is using the cs3 backend: #3483
Bugfix - URL encode the webdav url in the graph API: #3597
Change - Update ocis packages and imports to V2: #3678
Change - Load configuration files just from one directory: #3587
Change - Reduce permissions on docker image predeclared volumes: #3641
Change - Introduce ocis init and remove all default secrets: #3551
Change - Reduce drives in graph /me/drives API: #3629
Change - Switched default configuration to use libregraph/idm: #3331
Change - Rename MetadataUserID: #3671
Change - Use new space ID util functions: #3648
Change - Rename serviceUser to systemUser: #3673
Change - Split MachineAuth from SystemUser: #3672
Enhancement - Align service naming: #3606
Enhancement - Wrap metadata storage with dedicated reva gateway: #3602
Enhancement - Product field in OCS version: #2918
Enhancement - Add initial version of the search extensions: #3635
Enhancement - Add capability for public link single file edit: #6787
Enhancement - Added share_jail and projects feature flags in spaces capability: #3626
Enhancement - Update linkshare capabilities: #3579
Enhancement - Update reva to v2.3.1: #3552
Enhancement - Update ownCloud Web to v5.5.0-rc.5: #6854

Details

Bugfix - Remove runtime kill and run commands: #3740

We've removed the kill and run commands from the oCIS runtime. If these dynamic capabilities
are needed, one should switch to a full fledged supervisor and start oCIS as individual
services.

If one wants to start a only a subset of services, this is still possible by setting
OCIS_RUN_EXTENSIONS.

https://github.com/owncloud/ocis/pull/3740
Bugfix - Check permissions when deleting Space: #3709

Check for manager permissions when deleting spaces. Do not allow deleting spaces via dav
service

https://github.com/owncloud/ocis/pull/3709
Bugfix - Make IDP secrets configurable via environment variables: #3744

We've fixed the configuration options of the IDP to make the IDP secrets again configurable via
environment variables.

https://github.com/owncloud/ocis/pull/3744
Bugfix - Thumbnails for /dav/xxx?preview=1 requests: #3567

We've added the thumbnail rendering for /dav/xxx?preview=1,
/remote.php/webdav/{relative path}?preview=1 and /webdav/{relative path}?preview=1 requests, which was previously not supported because of missing routes. It
now returns the same thumbnails as for /remote.php/dav/xxx?preview=1.

https://github.com/owncloud/ocis/pull/3567
Bugfix - Idp: Check if CA certificate if present: #3623

Upon first start with the default configurtation the idm service creates a server
certificate, that might not be finished before the idp service is starting. Add a check to idp
similar to what the user, group, and auth-providers implement.

https://github.com/owncloud/ocis/issues/3623
Bugfix - Return proper errors when ocs/cloud/users is using the cs3 backend: #3483

The ocs API was just exiting with a fatal error on any update request, when configured for the cs3
backend. Now it returns a proper error.

https://github.com/owncloud/ocis/issues/3483
Bugfix - URL encode the webdav url in the graph API: #3597

Fixed the webdav URL in the drives responses. Without encoding the URL could be broken by files
with spaces in the file name.

https://github.com/owncloud/ocis/issues/3538
https://github.com/owncloud/ocis/pull/3597
Change - Update ocis packages and imports to V2: #3678

This needs to be done in preparation for the major version bump in ocis.

https://github.com/owncloud/ocis/pull/3678
Change - Load configuration files just from one directory: #3587

We've changed the configuration file loading behavior and are now only loading configuration
files from ONE single directory. This directory can be set on compile time or via an environment
variable on startup (OCIS_CONFIG_DIR).

We are using following configuration default paths:
- Docker images: /etc/ocis/ - Binary releases: $HOME/.ocis/config/
https://github.com/owncloud/ocis/pull/3587
Change - Reduce permissions on docker image predeclared volumes: #3641

We've lowered the permissions on the predeclared volumes of the oCIS docker image from 777 to
750.

This change doesn't affect you, unless you use the docker image with the non default uid/guid to
start oCIS (default is 1000:1000).

https://github.com/owncloud/ocis/pull/3641
Change - Introduce ocis init and remove all default secrets: #3551

We've removed all default secrets and the hardcoded UUID of the user admin. This means you
can't start oCIS any longer without setting these via environment variable or configuration
file.

In order to make this easy for you, we introduced a new command: ocis init. You can run this
command before starting oCIS with ocis server and it will bootstrap you a configuration file
for a secure oCIS instance.

https://github.com/owncloud/ocis/issues/3524
https://github.com/owncloud/ocis/pull/3551
https://github.com/owncloud/ocis/pull/3743
Change - Reduce drives in graph /me/drives API: #3629

Reduced the drives in the graph /me/drives API to only the drives the user has access to. The
endpoint /drives will list all drives when the user has the permission.

https://github.com/owncloud/ocis/pull/3629
Change - Switched default configuration to use libregraph/idm: #3331

We switched the default configuration of oCIS to use the "idm" service (based on
libregraph/idm) as the standard source for user and group information. The accounts and
glauth services are no longer enabled by default and will be removed with an upcoming release.

https://github.com/owncloud/ocis/pull/3331
https://github.com/owncloud/ocis/pull/3633
Change - Rename MetadataUserID: #3671

MetadataUserID is renamed to SystemUserID including yaml tags and env vars

https://github.com/owncloud/ocis/pull/3671
Change - Use new space ID util functions: #3648

Changed code to use the new space ID util functions so that everything works with the new spaces
ID format.

https://github.com/owncloud/ocis/pull/3648
https://github.com/owncloud/ocis/pull/3669
Change - Rename serviceUser to systemUser: #3673

We renamed serviceUser to systemUser in all configs and vars including yaml-tags and env vars

https://github.com/owncloud/ocis/pull/3673
Change - Split MachineAuth from SystemUser: #3672

We now have two different APIKeys: MachineAuth for the machine-auth service and SystemUser
for the system user used e.g. by settings service

https://github.com/owncloud/ocis/pull/3672
Enhancement - Align service naming: #3606

We now reflect the configured service names when listing them in the ocis runtime

https://github.com/owncloud/ocis/issues/3603
https://github.com/owncloud/ocis/pull/3606
Enhancement - Wrap metadata storage with dedicated reva gateway: #3602

We wrapped the metadata storage in a minimal reva instance with a dedicated gateway, including
static storage registry, static auth registry, in memory userprovider, machine
authprovider and demo permissions service. This allows us to preconfigure the service user
for the ocis settings service, share and public share providers.

https://github.com/owncloud/ocis/pull/3602
https://github.com/owncloud/ocis/pull/3647
Enhancement - Product field in OCS version: #2918

We've added a new field to the OCS Version, which is supposed to announce the product name. The
web ui as a client will make use of it to make the backend product and version available (e.g. for
easier bug reports).

https://github.com/owncloud/ocis/pull/2918
Enhancement - Add initial version of the search extensions: #3635

It is now possible to search for files and directories by their name using the web UI. Therefor
new search extension indexes files in a persistent local index.

https://github.com/owncloud/ocis/pull/3635
Enhancement - Add capability for public link single file edit: #6787

It is now possible to share a single file by link with edit permissions. Therefore we need a
public share capability to enable that feature in the clients. At the same time, we improved the
WebDAV permissions for public links.

https://github.com/owncloud/web/pull/6787
https://github.com/owncloud/ocis/pull/3538
Enhancement - Added share_jail and projects feature flags in spaces capability: #3626

We've added feature flags to the spaces capability to indicate to clients which features are
supposed to be shown to users.

https://github.com/owncloud/ocis/pull/3626
Enhancement - Update linkshare capabilities: #3579

We have updated the capabilities regarding password enforcement and expiration dates of
public links. They were previously hardcoded in a way that didn't reflect the actual backend
functionality anymore.

https://github.com/owncloud/ocis/pull/3579
Enhancement - Update reva to v2.3.1: #3552

Updated reva to version 2.3.1. This update includes
- Bugfix cs3org/reva#2827: Check permissions when deleting spaces
- Bugfix cs3org/reva#2830: Correctly render response when accepting merged shares
- Bugfix cs3org/reva#2831: Fix uploads to owncloudsql storage when no mtime is provided
- Enhancement cs3org/reva#2833: Make status.php values configurable
- Enhancement cs3org/reva#2832: Add version option for ocdav go-micro service
Updated reva to version 2.3.0. This update includes:
- Bugfix cs3org/reva#2693: Support editnew actions from MS Office
- Bugfix cs3org/reva#2588: Dockerfile.revad-ceph to use the right base image
- Bugfix cs3org/reva#2499: Removed check DenyGrant in resource permission
- Bugfix cs3org/reva#2285: Accept new userid idp format
- Bugfix cs3org/reva#2802: Bugfix the resource id handling for space shares
- Bugfix cs3org/reva#2800: Bugfix spaceid parsing in spaces trashbin API
- Bugfix cs3org/reva#2608: Respect the tracing_service_name config variable
- Bugfix cs3org/reva#2742: Use exact match in login filter
- Bugfix cs3org/reva#2759: Made uid, gid claims parsing more robust in OIDC auth provider
- Bugfix cs3org/reva#2788: Return the correct file IDs on public link resources
- Bugfix cs3org/reva#2322: Use RFC3339 for parsing dates
- Bugfix cs3org/reva#2784: Disable storageprovider cache for the share jail
- Bugfix cs3org/reva#2555: Bugfix site accounts endpoints
- Bugfix cs3org/reva#2675: Updates Makefile according to latest go standards
- Bugfix cs3org/reva#2572: Wait for nats server on middleware start
- Change cs3org/reva#2735: Avoid user enumeration
- Change cs3org/reva#2737: Bump go-cs3api
- Change cs3org/reva#2763: Change the oCIS and S3NG storage driver blob store layout
- Change cs3org/reva#2596: Remove hash from public link urls
- Change cs3org/reva#2785: Implement workaround for chi.RegisterMethod
- Change cs3org/reva#2559: Do not encode webDAV ids to base64
- Change cs3org/reva#2740: Rename oc10 share manager driver
- Change cs3org/reva#2561: Merge oidcmapping auth manager into oidc
- Enhancement cs3org/reva#2698: Make capabilities endpoint public, authenticate users is present
- Enhancement cs3org/reva#2515: Enabling tracing by default if not explicitly disabled
- Enhancement cs3org/reva#2686: Features for favorites xattrs in EOS, cache for scope expansion
- Enhancement cs3org/reva#2494: Use sys ACLs for file permissions
- Enhancement cs3org/reva#2522: Introduce events
- Enhancement cs3org/reva#2811: Add event for created directories
- Enhancement cs3org/reva#2798: Add additional fields to events to enable search
- Enhancement cs3org/reva#2790: Fake providerids so API stays stable after beta
- Enhancement cs3org/reva#2685: Enable federated account access
- Enhancement cs3org/reva#1787: Add support for HTTP TPC
- Enhancement cs3org/reva#2799: Add flag to enable unrestriced listing of spaces
- Enhancement cs3org/reva#2560: Mentix PromSD extensions
- Enhancement cs3org/reva#2741: Meta path for user
- Enhancement cs3org/reva#2613: Externalize custom mime types configuration for storage providers
- Enhancement cs3org/reva#2163: Nextcloud-based share manager for pkg/ocm/share
- Enhancement cs3org/reva#2696: Preferences driver refactor and cbox sql implementation
- Enhancement cs3org/reva#2052: New CS3API datatx methods
- Enhancement cs3org/reva#2743: Add capability for public link single file edit
- Enhancement cs3org/reva#2738: Site accounts site-global settings
- Enhancement cs3org/reva#2672: Further Site Accounts improvements
- Enhancement cs3org/reva#2549: Site accounts improvements
- Enhancement cs3org/reva#2795: Add feature flags "projects" and "share_jail" to spaces capability
- Enhancement cs3org/reva#2514: Reuse ocs role objects in other drivers
- Enhancement cs3org/reva#2781: In memory user provider
- Enhancement cs3org/reva#2752: Refactor the rest user and group provider drivers
https://github.com/owncloud/ocis/issues/3621
https://github.com/owncloud/ocis/pull/3552
https://github.com/owncloud/ocis/pull/3570
https://github.com/owncloud/ocis/pull/3601
https://github.com/owncloud/ocis/pull/3602
https://github.com/owncloud/ocis/pull/3605
https://github.com/owncloud/ocis/pull/3611
https://github.com/owncloud/ocis/pull/3637
https://github.com/owncloud/ocis/pull/3652
https://github.com/owncloud/ocis/pull/3681
Enhancement - Update ownCloud Web to v5.5.0-rc.5: #6854

Tags: web

We updated ownCloud Web to v5.5.0-rc.5. Please refer to the changelog (linked) for details on
the web release.

https://github.com/owncloud/web/pull/6854
https://github.com/owncloud/ocis/pull/3664
https://github.com/owncloud/ocis/pull/3680
https://github.com/owncloud/ocis/pull/3727
https://github.com/owncloud/ocis/pull/3747
https://github.com/owncloud/web/releases/tag/v5.5.0-rc.5

ocis - 2.0.0-alpha2

Published by ownclouders over 2 years ago

Changes in 2.0.0-alpha2

Summary

Bugfix - Remove runtime kill and run commands: #3740
Bugfix - Check permissions when deleting Space: #3709
Bugfix - Make IDP secrets configurable via environment variables: #3744
Bugfix - Thumbnails for /dav/xxx?preview=1 requests: #3567
Bugfix - Idp: Check if CA certificate if present: #3623
Bugfix - Return proper errors when ocs/cloud/users is using the cs3 backend: #3483
Bugfix - URL encode the webdav url in the graph API: #3597
Change - Update ocis packages and imports to V2: #3678
Change - Load configuration files just from one directory: #3587
Change - Reduce permissions on docker image predeclared volumes: #3641
Change - Introduce ocis init and remove all default secrets: #3551
Change - Reduce drives in graph /me/drives API: #3629
Change - Switched default configuration to use libregraph/idm: #3331
Change - Rename MetadataUserID: #3671
Change - Use new space ID util functions: #3648
Change - Rename serviceUser to systemUser: #3673
Change - Split MachineAuth from SystemUser: #3672
Enhancement - Align service naming: #3606
Enhancement - Wrap metadata storage with dedicated reva gateway: #3602
Enhancement - Product field in OCS version: #2918
Enhancement - Add initial version of the search extensions: #3635
Enhancement - Add capability for public link single file edit: #6787
Enhancement - Added share_jail and projects feature flags in spaces capability: #3626
Enhancement - Update linkshare capabilities: #3579
Enhancement - Update reva to v2.3.1: #3552
Enhancement - Update ownCloud Web to v5.5.0-rc.5: #6854

Details

Bugfix - Remove runtime kill and run commands: #3740

We've removed the kill and run commands from the oCIS runtime. If these dynamic capabilities
are needed, one should switch to a full fledged supervisor and start oCIS as individual
services.

If one wants to start a only a subset of services, this is still possible by setting
OCIS_RUN_EXTENSIONS.

https://github.com/owncloud/ocis/pull/3740
Bugfix - Check permissions when deleting Space: #3709

Check for manager permissions when deleting spaces. Do not allow deleting spaces via dav
service

https://github.com/owncloud/ocis/pull/3709
Bugfix - Make IDP secrets configurable via environment variables: #3744

We've fixed the configuration options of the IDP to make the IDP secrets again configurable via
environment variables.

https://github.com/owncloud/ocis/pull/3744
Bugfix - Thumbnails for /dav/xxx?preview=1 requests: #3567

We've added the thumbnail rendering for /dav/xxx?preview=1,
/remote.php/webdav/{relative path}?preview=1 and /webdav/{relative path}?preview=1 requests, which was previously not supported because of missing routes. It
now returns the same thumbnails as for /remote.php/dav/xxx?preview=1.

https://github.com/owncloud/ocis/pull/3567
Bugfix - Idp: Check if CA certificate if present: #3623

Upon first start with the default configurtation the idm service creates a server
certificate, that might not be finished before the idp service is starting. Add a check to idp
similar to what the user, group, and auth-providers implement.

https://github.com/owncloud/ocis/issues/3623
Bugfix - Return proper errors when ocs/cloud/users is using the cs3 backend: #3483

The ocs API was just exiting with a fatal error on any update request, when configured for the cs3
backend. Now it returns a proper error.

https://github.com/owncloud/ocis/issues/3483
Bugfix - URL encode the webdav url in the graph API: #3597

Fixed the webdav URL in the drives responses. Without encoding the URL could be broken by files
with spaces in the file name.

https://github.com/owncloud/ocis/issues/3538
https://github.com/owncloud/ocis/pull/3597
Change - Update ocis packages and imports to V2: #3678

This needs to be done in preparation for the major version bump in ocis.

https://github.com/owncloud/ocis/pull/3678
Change - Load configuration files just from one directory: #3587

We've changed the configuration file loading behavior and are now only loading configuration
files from ONE single directory. This directory can be set on compile time or via an environment
variable on startup (OCIS_CONFIG_DIR).

We are using following configuration default paths:
- Docker images: /etc/ocis/ - Binary releases: $HOME/.ocis/config/
https://github.com/owncloud/ocis/pull/3587
Change - Reduce permissions on docker image predeclared volumes: #3641

We've lowered the permissions on the predeclared volumes of the oCIS docker image from 777 to
750.

This change doesn't affect you, unless you use the docker image with the non default uid/guid to
start oCIS (default is 1000:1000).

https://github.com/owncloud/ocis/pull/3641
Change - Introduce ocis init and remove all default secrets: #3551

We've removed all default secrets and the hardcoded UUID of the user admin. This means you
can't start oCIS any longer without setting these via environment variable or configuration
file.

In order to make this easy for you, we introduced a new command: ocis init. You can run this
command before starting oCIS with ocis server and it will bootstrap you a configuration file
for a secure oCIS instance.

https://github.com/owncloud/ocis/issues/3524
https://github.com/owncloud/ocis/pull/3551
https://github.com/owncloud/ocis/pull/3743
Change - Reduce drives in graph /me/drives API: #3629

Reduced the drives in the graph /me/drives API to only the drives the user has access to. The
endpoint /drives will list all drives when the user has the permission.

https://github.com/owncloud/ocis/pull/3629
Change - Switched default configuration to use libregraph/idm: #3331

We switched the default configuration of oCIS to use the "idm" service (based on
libregraph/idm) as the standard source for user and group information. The accounts and
glauth services are no longer enabled by default and will be removed with an upcoming release.

https://github.com/owncloud/ocis/pull/3331
https://github.com/owncloud/ocis/pull/3633
Change - Rename MetadataUserID: #3671

MetadataUserID is renamed to SystemUserID including yaml tags and env vars

https://github.com/owncloud/ocis/pull/3671
Change - Use new space ID util functions: #3648

Changed code to use the new space ID util functions so that everything works with the new spaces
ID format.

https://github.com/owncloud/ocis/pull/3648
https://github.com/owncloud/ocis/pull/3669
Change - Rename serviceUser to systemUser: #3673

We renamed serviceUser to systemUser in all configs and vars including yaml-tags and env vars

https://github.com/owncloud/ocis/pull/3673
Change - Split MachineAuth from SystemUser: #3672

We now have two different APIKeys: MachineAuth for the machine-auth service and SystemUser
for the system user used e.g. by settings service

https://github.com/owncloud/ocis/pull/3672
Enhancement - Align service naming: #3606

We now reflect the configured service names when listing them in the ocis runtime

https://github.com/owncloud/ocis/issues/3603
https://github.com/owncloud/ocis/pull/3606
Enhancement - Wrap metadata storage with dedicated reva gateway: #3602

We wrapped the metadata storage in a minimal reva instance with a dedicated gateway, including
static storage registry, static auth registry, in memory userprovider, machine
authprovider and demo permissions service. This allows us to preconfigure the service user
for the ocis settings service, share and public share providers.

https://github.com/owncloud/ocis/pull/3602
https://github.com/owncloud/ocis/pull/3647
Enhancement - Product field in OCS version: #2918

We've added a new field to the OCS Version, which is supposed to announce the product name. The
web ui as a client will make use of it to make the backend product and version available (e.g. for
easier bug reports).

https://github.com/owncloud/ocis/pull/2918
Enhancement - Add initial version of the search extensions: #3635

It is now possible to search for files and directories by their name using the web UI. Therefor
new search extension indexes files in a persistent local index.

https://github.com/owncloud/ocis/pull/3635
Enhancement - Add capability for public link single file edit: #6787

It is now possible to share a single file by link with edit permissions. Therefore we need a
public share capability to enable that feature in the clients. At the same time, we improved the
WebDAV permissions for public links.

https://github.com/owncloud/web/pull/6787
https://github.com/owncloud/ocis/pull/3538
Enhancement - Added share_jail and projects feature flags in spaces capability: #3626

We've added feature flags to the spaces capability to indicate to clients which features are
supposed to be shown to users.

https://github.com/owncloud/ocis/pull/3626
Enhancement - Update linkshare capabilities: #3579

We have updated the capabilities regarding password enforcement and expiration dates of
public links. They were previously hardcoded in a way that didn't reflect the actual backend
functionality anymore.

https://github.com/owncloud/ocis/pull/3579
Enhancement - Update reva to v2.3.1: #3552

Updated reva to version 2.3.1. This update includes
- Bugfix cs3org/reva#2827: Check permissions when deleting spaces
- Bugfix cs3org/reva#2830: Correctly render response when accepting merged shares
- Bugfix cs3org/reva#2831: Fix uploads to owncloudsql storage when no mtime is provided
- Enhancement cs3org/reva#2833: Make status.php values configurable
- Enhancement cs3org/reva#2832: Add version option for ocdav go-micro service
Updated reva to version 2.3.0. This update includes:
- Bugfix cs3org/reva#2693: Support editnew actions from MS Office
- Bugfix cs3org/reva#2588: Dockerfile.revad-ceph to use the right base image
- Bugfix cs3org/reva#2499: Removed check DenyGrant in resource permission
- Bugfix cs3org/reva#2285: Accept new userid idp format
- Bugfix cs3org/reva#2802: Bugfix the resource id handling for space shares
- Bugfix cs3org/reva#2800: Bugfix spaceid parsing in spaces trashbin API
- Bugfix cs3org/reva#2608: Respect the tracing_service_name config variable
- Bugfix cs3org/reva#2742: Use exact match in login filter
- Bugfix cs3org/reva#2759: Made uid, gid claims parsing more robust in OIDC auth provider
- Bugfix cs3org/reva#2788: Return the correct file IDs on public link resources
- Bugfix cs3org/reva#2322: Use RFC3339 for parsing dates
- Bugfix cs3org/reva#2784: Disable storageprovider cache for the share jail
- Bugfix cs3org/reva#2555: Bugfix site accounts endpoints
- Bugfix cs3org/reva#2675: Updates Makefile according to latest go standards
- Bugfix cs3org/reva#2572: Wait for nats server on middleware start
- Change cs3org/reva#2735: Avoid user enumeration
- Change cs3org/reva#2737: Bump go-cs3api
- Change cs3org/reva#2763: Change the oCIS and S3NG storage driver blob store layout
- Change cs3org/reva#2596: Remove hash from public link urls
- Change cs3org/reva#2785: Implement workaround for chi.RegisterMethod
- Change cs3org/reva#2559: Do not encode webDAV ids to base64
- Change cs3org/reva#2740: Rename oc10 share manager driver
- Change cs3org/reva#2561: Merge oidcmapping auth manager into oidc
- Enhancement cs3org/reva#2698: Make capabilities endpoint public, authenticate users is present
- Enhancement cs3org/reva#2515: Enabling tracing by default if not explicitly disabled
- Enhancement cs3org/reva#2686: Features for favorites xattrs in EOS, cache for scope expansion
- Enhancement cs3org/reva#2494: Use sys ACLs for file permissions
- Enhancement cs3org/reva#2522: Introduce events
- Enhancement cs3org/reva#2811: Add event for created directories
- Enhancement cs3org/reva#2798: Add additional fields to events to enable search
- Enhancement cs3org/reva#2790: Fake providerids so API stays stable after beta
- Enhancement cs3org/reva#2685: Enable federated account access
- Enhancement cs3org/reva#1787: Add support for HTTP TPC
- Enhancement cs3org/reva#2799: Add flag to enable unrestriced listing of spaces
- Enhancement cs3org/reva#2560: Mentix PromSD extensions
- Enhancement cs3org/reva#2741: Meta path for user
- Enhancement cs3org/reva#2613: Externalize custom mime types configuration for storage providers
- Enhancement cs3org/reva#2163: Nextcloud-based share manager for pkg/ocm/share
- Enhancement cs3org/reva#2696: Preferences driver refactor and cbox sql implementation
- Enhancement cs3org/reva#2052: New CS3API datatx methods
- Enhancement cs3org/reva#2743: Add capability for public link single file edit
- Enhancement cs3org/reva#2738: Site accounts site-global settings
- Enhancement cs3org/reva#2672: Further Site Accounts improvements
- Enhancement cs3org/reva#2549: Site accounts improvements
- Enhancement cs3org/reva#2795: Add feature flags "projects" and "share_jail" to spaces capability
- Enhancement cs3org/reva#2514: Reuse ocs role objects in other drivers
- Enhancement cs3org/reva#2781: In memory user provider
- Enhancement cs3org/reva#2752: Refactor the rest user and group provider drivers
https://github.com/owncloud/ocis/issues/3621
https://github.com/owncloud/ocis/pull/3552
https://github.com/owncloud/ocis/pull/3570
https://github.com/owncloud/ocis/pull/3601
https://github.com/owncloud/ocis/pull/3602
https://github.com/owncloud/ocis/pull/3605
https://github.com/owncloud/ocis/pull/3611
https://github.com/owncloud/ocis/pull/3637
https://github.com/owncloud/ocis/pull/3652
https://github.com/owncloud/ocis/pull/3681
Enhancement - Update ownCloud Web to v5.5.0-rc.5: #6854

Tags: web

We updated ownCloud Web to v5.5.0-rc.5. Please refer to the changelog (linked) for details on
the web release.

https://github.com/owncloud/web/pull/6854
https://github.com/owncloud/ocis/pull/3664
https://github.com/owncloud/ocis/pull/3680
https://github.com/owncloud/ocis/pull/3727
https://github.com/owncloud/ocis/pull/3747
https://github.com/owncloud/web/releases/tag/v5.5.0-rc.5

ocis - 2.0.0-alpha1

Published by ownclouders over 2 years ago

ocis - 1.20.0 Tech Preview

Published by ownclouders over 2 years ago

Changes in 1.20.0

Summary

Bugfix - Add owncloudsql driver to authprovider config: #3435
Bugfix - Corrected documentation: #3439
Bugfix - Ensure the same data on /ocs/v?.php/config like oC10: #3113
Bugfix - Use the default server download protocol if spaces are not supported: #3386
Change - Fix keys with underscores in the config files: #3412
Change - Don't create demo users by default: #3474
Enhancement - Alias links: #3454
Enhancement - Replace deprecated String.prototype.substr(): #3448
Enhancement - Add sorting to GraphAPI users and groups: #3360
Enhancement - Unify LDAP config settings accross services: #3476
Enhancement - Make config dir configurable: #3440
Enhancement - Use embeddable ocdav go micro service: #3397
Enhancement - Update reva to v2.2.0: #3397
Enhancement - Update ownCloud Web to v5.4.0: #6709
Enhancement - Implement audit events for user and groups: #3467

Details

Bugfix - Add owncloudsql driver to authprovider config: #3435

https://github.com/owncloud/ocis/pull/3435
Bugfix - Corrected documentation: #3439
- ocis-pkg log File Option
https://github.com/owncloud/ocis/pull/3439
Bugfix - Ensure the same data on /ocs/v?.php/config like oC10: #3113

We've fixed the returned values on the /ocs/v?.php/config endpoints, so that they now return
the same values as an oC10 would do.

https://github.com/owncloud/ocis/pull/3113
Bugfix - Use the default server download protocol if spaces are not supported: #3386

https://github.com/owncloud/ocis/pull/3386
Change - Fix keys with underscores in the config files: #3412

We've fixed some config keys in configuration files that previously didn't contain
underscores but should.

Please check the documentation on https://owncloud.dev for latest configuration
documentation.

https://github.com/owncloud/ocis/pull/3412
Change - Don't create demo users by default: #3474

As we are coming closer to the first beta, we need to disable the creation of the demo users by
default.

https://github.com/owncloud/ocis/issues/3181
https://github.com/owncloud/ocis/pull/3474
Enhancement - Alias links: #3454

Bumps reva and configures ocs token endpoint to be unprotected

https://github.com/owncloud/ocis/pull/3454
Enhancement - Replace deprecated String.prototype.substr(): #3448

We've replaced all occurrences of the deprecated String.prototype.substr() function with
String.prototype.slice() which works similarly but isn't deprecated.

https://github.com/owncloud/ocis/pull/3448
Enhancement - Add sorting to GraphAPI users and groups: #3360

The GraphAPI endpoints for users and groups support ordering now. User can be ordered by
displayName, onPremisesSamAccountName and mail. Groups can be ordered by displayName.

Example: https://localhost:9200/graph/v1.0/groups?$orderby=displayName asc

https://github.com/owncloud/ocis/issues/3360
Enhancement - Unify LDAP config settings accross services: #3476

The storage services where updated to adapt for the recent changes of the LDAP settings in reva.

Also we allow now to use a new set of top-level LDAP environment variables that are shared
between all LDAP-using services in ocis (graph, idp, storage-auth-basic,
storage-userprovider, storage-groupprovider, idm). This should simplify the most LDAP
based configurations considerably.

Here is a list of the new environment variables: LDAP_URI LDAP_INSECURE LDAP_CACERT
LDAP_BIND_DN LDAP_BIND_PASSWORD LDAP_LOGIN_ATTRIBUTES LDAP_USER_BASE_DN
LDAP_USER_SCOPE LDAP_USER_FILTER LDAP_USER_OBJECTCLASS LDAP_USER_SCHEMA_MAIL
LDAP_USER_SCHEMA_DISPLAY_NAME LDAP_USER_SCHEMA_USERNAME LDAP_USER_SCHEMA_ID
LDAP_USER_SCHEMA_ID_IS_OCTETSTRING LDAP_GROUP_BASE_DN LDAP_GROUP_SCOPE
LDAP_GROUP_FILTER LDAP_GROUP_OBJECTCLASS LDAP_GROUP_SCHEMA_GROUPNAME
LDAP_GROUP_SCHEMA_ID LDAP_GROUP_SCHEMA_ID_IS_OCTETSTRING

Where need these can be overwritten by service specific variables. E.g. it is possible to use
STORAGE_LDAP_URI to overide the top-level LDAP_URI variable.

https://github.com/owncloud/ocis/issues/3150
https://github.com/owncloud/ocis/pull/3476
Enhancement - Make config dir configurable: #3440

We have added an OCIS_CONFIG_DIR environment variable the will take precedence over the
default /etc/ocis, ~/.ocis and .config locations. When it is set the default locations
will be ignored and only the configuration files in that directory will be read.

https://github.com/owncloud/ocis/pull/3440
Enhancement - Use embeddable ocdav go micro service: #3397

We now use the reva pgk/micro/ocdav package that implements a go micro compatible version of
the ocdav service.

https://github.com/owncloud/ocis/pull/3397
Enhancement - Update reva to v2.2.0: #3397

Updated reva to version 2.2.0. This update includes:
- Bugfix cs3org/reva#3373: Fix the permissions attribute in propfind responses
- Bugfix cs3org/reva#2721: Fix locking and public link scope checker to make the WOPI server work
- Bugfix cs3org/reva#2668: Minor cleanup
- Bugfix cs3org/reva#2692: Ensure that the host in the ocs config endpoint has no protocol
- Bugfix cs3org/reva#2709: Decomposed FS: return precondition failed if already locked
- Change cs3org/reva#2687: Allow link with no or edit permission
- Change cs3org/reva#2658: Small clean up of the ocdav code
- Change cs3org/reva#2691: Decomposed FS: return a reference to the parent
- Enhancement cs3org/reva#2708: Rework LDAP configuration of user and group providers
- Enhancement cs3org/reva#2665: Add embeddable ocdav go micro service
- Enhancement cs3org/reva#2715: Introduced quicklinks
- Enhancement cs3org/reva#3370: Enable all spaces members to list public shares
- Enhancement cs3org/reva#3370: Enable space members to list shares inside the space
- Enhancement cs3org/reva#2717: Add definitions for user and group events
https://github.com/owncloud/ocis/pull/3397
https://github.com/owncloud/ocis/pull/3430
https://github.com/owncloud/ocis/pull/3476
https://github.com/owncloud/ocis/pull/3482
https://github.com/owncloud/ocis/pull/3497
https://github.com/owncloud/ocis/pull/3513
https://github.com/owncloud/ocis/pull/3514
Enhancement - Update ownCloud Web to v5.4.0: #6709

Tags: web

We updated ownCloud Web to v5.4.0. Please refer to the changelog (linked) for details on the web
release.

https://github.com/owncloud/web/pull/6709
https://github.com/owncloud/ocis/pull/3437
https://github.com/owncloud/ocis/pull/3487
https://github.com/owncloud/ocis/pull/3509
https://github.com/owncloud/web/releases/tag/v5.4.0
Enhancement - Implement audit events for user and groups: #3467

Added audit events for users and groups. This will log: * User creation * User deletion * User
property change (currently only email) * Group creation * Group deletion * Group member add *
Group member remove

https://github.com/owncloud/ocis/pull/3467

ocis - 1.20.0-rc1

Published by ownclouders over 2 years ago

Changes in 1.20.0

Summary

Bugfix - Add owncloudsql driver to authprovider config: #3435
Bugfix - Corrected documentation: #3439
Bugfix - Ensure the same data on /ocs/v?.php/config like oC10: #3113
Bugfix - Use the default server download protocol if spaces are not supported: #3386
Change - Fix keys with underscores in the config files: #3412
Change - Don't create demo users by default: #3474
Enhancement - Alias links: #3454
Enhancement - Replace deprecated String.prototype.substr(): #3448
Enhancement - Add sorting to GraphAPI users and groups: #3360
Enhancement - Unify LDAP config settings accross services: #3476
Enhancement - Make config dir configurable: #3440
Enhancement - Use embeddable ocdav go micro service: #3397
Enhancement - Update reva to v2.2.0: #3397
Enhancement - Update ownCloud Web to v5.4.0: #6709
Enhancement - Implement audit events for user and groups: #3467

Details

Bugfix - Add owncloudsql driver to authprovider config: #3435

https://github.com/owncloud/ocis/pull/3435
Bugfix - Corrected documentation: #3439
- ocis-pkg log File Option
https://github.com/owncloud/ocis/pull/3439
Bugfix - Ensure the same data on /ocs/v?.php/config like oC10: #3113

We've fixed the returned values on the /ocs/v?.php/config endpoints, so that they now return
the same values as an oC10 would do.

https://github.com/owncloud/ocis/pull/3113
Bugfix - Use the default server download protocol if spaces are not supported: #3386

https://github.com/owncloud/ocis/pull/3386
Change - Fix keys with underscores in the config files: #3412

We've fixed some config keys in configuration files that previously didn't contain
underscores but should.

Please check the documentation on https://owncloud.dev for latest configuration
documentation.

https://github.com/owncloud/ocis/pull/3412
Change - Don't create demo users by default: #3474

As we are coming closer to the first beta, we need to disable the creation of the demo users by
default.

https://github.com/owncloud/ocis/issues/3181
https://github.com/owncloud/ocis/pull/3474
Enhancement - Alias links: #3454

Bumps reva and configures ocs token endpoint to be unprotected

https://github.com/owncloud/ocis/pull/3454
Enhancement - Replace deprecated String.prototype.substr(): #3448

We've replaced all occurrences of the deprecated String.prototype.substr() function with
String.prototype.slice() which works similarly but isn't deprecated.

https://github.com/owncloud/ocis/pull/3448
Enhancement - Add sorting to GraphAPI users and groups: #3360

The GraphAPI endpoints for users and groups support ordering now. User can be ordered by
displayName, onPremisesSamAccountName and mail. Groups can be ordered by displayName.

Example: https://localhost:9200/graph/v1.0/groups?$orderby=displayName asc

https://github.com/owncloud/ocis/issues/3360
Enhancement - Unify LDAP config settings accross services: #3476

The storage services where updated to adapt for the recent changes of the LDAP settings in reva.

Also we allow now to use a new set of top-level LDAP environment variables that are shared
between all LDAP-using services in ocis (graph, idp, storage-auth-basic,
storage-userprovider, storage-groupprovider, idm). This should simplify the most LDAP
based configurations considerably.

Here is a list of the new environment variables: LDAP_URI LDAP_INSECURE LDAP_CACERT
LDAP_BIND_DN LDAP_BIND_PASSWORD LDAP_LOGIN_ATTRIBUTES LDAP_USER_BASE_DN
LDAP_USER_SCOPE LDAP_USER_FILTER LDAP_USER_OBJECTCLASS LDAP_USER_SCHEMA_MAIL
LDAP_USER_SCHEMA_DISPLAY_NAME LDAP_USER_SCHEMA_USERNAME LDAP_USER_SCHEMA_ID
LDAP_USER_SCHEMA_ID_IS_OCTETSTRING LDAP_GROUP_BASE_DN LDAP_GROUP_SCOPE
LDAP_GROUP_FILTER LDAP_GROUP_OBJECTCLASS LDAP_GROUP_SCHEMA_GROUPNAME
LDAP_GROUP_SCHEMA_ID LDAP_GROUP_SCHEMA_ID_IS_OCTETSTRING

Where need these can be overwritten by service specific variables. E.g. it is possible to use
STORAGE_LDAP_URI to overide the top-level LDAP_URI variable.

https://github.com/owncloud/ocis/issues/3150
https://github.com/owncloud/ocis/pull/3476
Enhancement - Make config dir configurable: #3440

We have added an OCIS_CONFIG_DIR environment variable the will take precedence over the
default /etc/ocis, ~/.ocis and .config locations. When it is set the default locations
will be ignored and only the configuration files in that directory will be read.

https://github.com/owncloud/ocis/pull/3440
Enhancement - Use embeddable ocdav go micro service: #3397

We now use the reva pgk/micro/ocdav package that implements a go micro compatible version of
the ocdav service.

https://github.com/owncloud/ocis/pull/3397
Enhancement - Update reva to v2.2.0: #3397

Updated reva to version 2.2.0. This update includes:
- Bugfix cs3org/reva#3373: Fix the permissions attribute in propfind responses
- Bugfix cs3org/reva#2721: Fix locking and public link scope checker to make the WOPI server work
- Bugfix cs3org/reva#2668: Minor cleanup
- Bugfix cs3org/reva#2692: Ensure that the host in the ocs config endpoint has no protocol
- Bugfix cs3org/reva#2709: Decomposed FS: return precondition failed if already locked
- Change cs3org/reva#2687: Allow link with no or edit permission
- Change cs3org/reva#2658: Small clean up of the ocdav code
- Change cs3org/reva#2691: Decomposed FS: return a reference to the parent
- Enhancement cs3org/reva#2708: Rework LDAP configuration of user and group providers
- Enhancement cs3org/reva#2665: Add embeddable ocdav go micro service
- Enhancement cs3org/reva#2715: Introduced quicklinks
- Enhancement cs3org/reva#3370: Enable all spaces members to list public shares
- Enhancement cs3org/reva#3370: Enable space members to list shares inside the space
- Enhancement cs3org/reva#2717: Add definitions for user and group events
https://github.com/owncloud/ocis/pull/3397
https://github.com/owncloud/ocis/pull/3430
https://github.com/owncloud/ocis/pull/3476
https://github.com/owncloud/ocis/pull/3482
https://github.com/owncloud/ocis/pull/3497
https://github.com/owncloud/ocis/pull/3513
https://github.com/owncloud/ocis/pull/3514
Enhancement - Update ownCloud Web to v5.4.0: #6709

Tags: web

We updated ownCloud Web to v5.4.0. Please refer to the changelog (linked) for details on the web
release.

https://github.com/owncloud/web/pull/6709
https://github.com/owncloud/ocis/pull/3437
https://github.com/owncloud/ocis/pull/3487
https://github.com/owncloud/ocis/pull/3509
https://github.com/owncloud/web/releases/tag/v5.4.0
Enhancement - Implement audit events for user and groups: #3467

Added audit events for users and groups. This will log: * User creation * User deletion * User
property change (currently only email) * Group creation * Group deletion * Group member add *
Group member remove

https://github.com/owncloud/ocis/pull/3467

ocis - 1.19.1 Tech Preview

Published by ownclouders over 2 years ago

Changes in 1.19.1

Summary

Bugfix - Return correct special item urls: #3419

Details

Bugfix - Return correct special item urls: #3419

URLs for Special items (space image, readme) were broken.

https://github.com/owncloud/ocis/pull/3419

ocis - 1.19.0 Tech Preview

Published by ownclouders over 2 years ago

Changes in 1.19.0

Summary

Bugfix - Network configuration in individiual_services example: #3238
Bugfix - Improve gif thumbnails: #3305
Bugfix - Fix error handling in GraphAPI GetUsers call: #3357
Bugfix - Fix request validation on GraphAPI User updates: #3167
Bugfix - Replace public mountpoint fileid with grant fileid: #3349
Change - Add remote item to mountpoint and fix spaceID: #3365
Change - Switch NATS backend: #3192
Change - Drop json config file support: #3366
Change - Settings service now stores its data via metadata service: #3232
Enhancement - Audit logger will now log file events: #3332
Enhancement - Add password reset link to login page: #3329
Enhancement - Log sharing events in audit service: #3301
Enhancement - Add space aliases: #3283
Enhancement - Include etags in drives listing: #3267
Enhancement - Improve thumbnails API: #3272
Enhancement - Update reva to v2.1.0: #3330
Enhancement - Update ownCloud Web to v5.3.0: #6561

Details

Bugfix - Network configuration in individiual_services example: #3238

Tidy up the deployments/examples/ocis_individual_services example so that the
instructions work.

https://github.com/owncloud/ocis/pull/3238
Bugfix - Improve gif thumbnails: #3305

Improved the gif thumbnail generation for gifs with different disposal strategies.

https://github.com/owncloud/ocis/pull/3305
Bugfix - Fix error handling in GraphAPI GetUsers call: #3357

A missing return statement caused GetUsers to return misleading results when the identity
backend returned an error.

https://github.com/owncloud/ocis/pull/3357
Bugfix - Fix request validation on GraphAPI User updates: #3167

Fix PATCH on graph/v1.0/users when no 'mail' attribute is present in the request body

https://github.com/owncloud/ocis/issues/3167
Bugfix - Replace public mountpoint fileid with grant fileid: #3349

We now show the same resoucre id for resources when accessing them via a public links as when
using a logged in user. This allows the web ui to start a WOPI session with the correct resource
id.

https://github.com/owncloud/ocis/pull/3349
Change - Add remote item to mountpoint and fix spaceID: #3365

A mountpoint represents the mounted share on the share receivers side. The original resource
is located where the grant has been set. This item is now shown as libregraph remoteItem on the
mountpoint. While adding this, we fixed the spaceID for mountpoints.

https://github.com/owncloud/ocis/pull/3365
Change - Switch NATS backend: #3192

We've switched the NATS backend from Streaming to JetStream, since NATS Streaming is
depreciated.

https://github.com/owncloud/ocis/pull/3192
https://github.com/cs3org/reva/pull/2574
Change - Drop json config file support: #3366

We've remove the support to configure oCIS and it's service with a json file. From now on we only
support yaml configuration files, since they have the possibility to add comments.

https://github.com/owncloud/ocis/pull/3366
Change - Settings service now stores its data via metadata service: #3232

Instead of writing files to disk it will use metadata service to do so

https://github.com/owncloud/ocis/pull/3232
Enhancement - Audit logger will now log file events: #3332

See full list of supported events in audit/pkg/types/types.go

https://github.com/owncloud/ocis/pull/3332
Enhancement - Add password reset link to login page: #3329

Added a configurable passwort reset link to the login page. It can be set via
IDP_PASSWORD_RESET_URI. If the option is not set the link will not be shown.

https://github.com/owncloud/ocis/pull/3329
Enhancement - Log sharing events in audit service: #3301

Contains sharing related events. See full list in audit/pkg/types/events.go

https://github.com/owncloud/ocis/pull/3301
Enhancement - Add space aliases: #3283

Space aliases can be used to resolve spaceIDs in a client.

https://github.com/owncloud/ocis/pull/3283
Enhancement - Include etags in drives listing: #3267

Added etags in the response of list drives.

https://github.com/owncloud/ocis/pull/3267
Enhancement - Improve thumbnails API: #3272

Changed the thumbnails API to no longer transfer images via GRPC. GRPC has a limited message
size and isn't very efficient with large binary data. The new API transports the images over
HTTP.

https://github.com/owncloud/ocis/pull/3272
Enhancement - Update reva to v2.1.0: #3330

Updated reva to version 2.1.0. This update includes:
- Fix cs3org/reva#2636: Delay reconnect log for events
- Fix cs3org/reva#2645: Avoid warning about missing .flock files
- Fix cs3org/reva#2625: Fix locking on publik links and the decomposed filesystem
- Fix cs3org/reva#2643: Emit linkaccessfailed event when share is nil
- Fix cs3org/reva#2646: Replace public mountpoint fileid with grant fileid in ocdav
- Fix cs3org/reva#2612: Adjust the scope handling to support the spaces architecture
- Fix cs3org/reva#2621: Send events only if response code is OK
- Chg cs3org/reva#2574: Switch NATS backend
- Chg cs3org/reva#2667: Allow LDAP groups to have no gidNumber
- Chg cs3org/reva#3233: Improve quota handling
- Chg cs3org/reva#2600: Use the cs3 share api to manage spaces
- Enh cs3org/reva#2644: Add new public share manager
- Enh cs3org/reva#2626: Add new share manager
- Enh cs3org/reva#2624: Add etags to virtual spaces
- Enh cs3org/reva#2639: File Events
- Enh cs3org/reva#2627: Add events for sharing action
- Enh cs3org/reva#2664: Add grantID to mountpoint
- Enh cs3org/reva#2622: Allow listing shares in spaces via the OCS API
- Enh cs3org/reva#2623: Add space aliases
- Enh cs3org/reva#2647: Add space specific events
- Enh cs3org/reva#3345: Add the spaceid to propfind responses
- Enh cs3org/reva#2616: Add etag to spaces response
- Enh cs3org/reva#2628: Add spaces aware trash-bin API
https://github.com/owncloud/ocis/pull/3330
https://github.com/owncloud/ocis/pull/3405
https://github.com/owncloud/ocis/pull/3416
Enhancement - Update ownCloud Web to v5.3.0: #6561

Tags: web

We updated ownCloud Web to v5.3.0. Please refer to the changelog (linked) for details on the web
release.

https://github.com/owncloud/web/pull/6561
https://github.com/owncloud/ocis/pull/3291
https://github.com/owncloud/ocis/pull/3375
https://github.com/owncloud/web/releases/tag/v5.3.0

ocis - 1.19.0-rc1

Published by ownclouders over 2 years ago

Changes in 1.19.0

Summary

Bugfix - Network configuration in individiual_services example: #3238
Bugfix - Improve gif thumbnails: #3305
Bugfix - Fix error handling in GraphAPI GetUsers call: #3357
Bugfix - Fix request validation on GraphAPI User updates: #3167
Bugfix - Replace public mountpoint fileid with grant fileid: #3349
Change - Add remote item to mountpoint and fix spaceID: #3365
Change - Switch NATS backend: #3192
Change - Drop json config file support: #3366
Change - Settings service now stores its data via metadata service: #3232
Enhancement - Audit logger will now log file events: #3332
Enhancement - Add password reset link to login page: #3329
Enhancement - Log sharing events in audit service: #3301
Enhancement - Add space aliases: #3283
Enhancement - Include etags in drives listing: #3267
Enhancement - Improve thumbnails API: #3272
Enhancement - Update reva to v2.1.0: #3330
Enhancement - Update ownCloud Web to v5.3.0: #6561

Details

Bugfix - Network configuration in individiual_services example: #3238

Tidy up the deployments/examples/ocis_individual_services example so that the
instructions work.

https://github.com/owncloud/ocis/pull/3238
Bugfix - Improve gif thumbnails: #3305

Improved the gif thumbnail generation for gifs with different disposal strategies.

https://github.com/owncloud/ocis/pull/3305
Bugfix - Fix error handling in GraphAPI GetUsers call: #3357

A missing return statement caused GetUsers to return misleading results when the identity
backend returned an error.

https://github.com/owncloud/ocis/pull/3357
Bugfix - Fix request validation on GraphAPI User updates: #3167

Fix PATCH on graph/v1.0/users when no 'mail' attribute is present in the request body

https://github.com/owncloud/ocis/issues/3167
Bugfix - Replace public mountpoint fileid with grant fileid: #3349

We now show the same resoucre id for resources when accessing them via a public links as when
using a logged in user. This allows the web ui to start a WOPI session with the correct resource
id.

https://github.com/owncloud/ocis/pull/3349
Change - Add remote item to mountpoint and fix spaceID: #3365

A mountpoint represents the mounted share on the share receivers side. The original resource
is located where the grant has been set. This item is now shown as libregraph remoteItem on the
mountpoint. While adding this, we fixed the spaceID for mountpoints.

https://github.com/owncloud/ocis/pull/3365
Change - Switch NATS backend: #3192

We've switched the NATS backend from Streaming to JetStream, since NATS Streaming is
depreciated.

https://github.com/owncloud/ocis/pull/3192
https://github.com/cs3org/reva/pull/2574
Change - Drop json config file support: #3366

We've remove the support to configure oCIS and it's service with a json file. From now on we only
support yaml configuration files, since they have the possibility to add comments.

https://github.com/owncloud/ocis/pull/3366
Change - Settings service now stores its data via metadata service: #3232

Instead of writing files to disk it will use metadata service to do so

https://github.com/owncloud/ocis/pull/3232
Enhancement - Audit logger will now log file events: #3332

See full list of supported events in audit/pkg/types/types.go

https://github.com/owncloud/ocis/pull/3332
Enhancement - Add password reset link to login page: #3329

Added a configurable passwort reset link to the login page. It can be set via
IDP_PASSWORD_RESET_URI. If the option is not set the link will not be shown.

https://github.com/owncloud/ocis/pull/3329
Enhancement - Log sharing events in audit service: #3301

Contains sharing related events. See full list in audit/pkg/types/events.go

https://github.com/owncloud/ocis/pull/3301
Enhancement - Add space aliases: #3283

Space aliases can be used to resolve spaceIDs in a client.

https://github.com/owncloud/ocis/pull/3283
Enhancement - Include etags in drives listing: #3267

Added etags in the response of list drives.

https://github.com/owncloud/ocis/pull/3267
Enhancement - Improve thumbnails API: #3272

Changed the thumbnails API to no longer transfer images via GRPC. GRPC has a limited message
size and isn't very efficient with large binary data. The new API transports the images over
HTTP.

https://github.com/owncloud/ocis/pull/3272
Enhancement - Update reva to v2.1.0: #3330

Updated reva to version 2.1.0. This update includes:
- Fix cs3org/reva#2636: Delay reconnect log for events
- Fix cs3org/reva#2645: Avoid warning about missing .flock files
- Fix cs3org/reva#2625: Fix locking on publik links and the decomposed filesystem
- Fix cs3org/reva#2643: Emit linkaccessfailed event when share is nil
- Fix cs3org/reva#2646: Replace public mountpoint fileid with grant fileid in ocdav
- Fix cs3org/reva#2612: Adjust the scope handling to support the spaces architecture
- Fix cs3org/reva#2621: Send events only if response code is OK
- Chg cs3org/reva#2574: Switch NATS backend
- Chg cs3org/reva#2667: Allow LDAP groups to have no gidNumber
- Chg cs3org/reva#3233: Improve quota handling
- Chg cs3org/reva#2600: Use the cs3 share api to manage spaces
- Enh cs3org/reva#2644: Add new public share manager
- Enh cs3org/reva#2626: Add new share manager
- Enh cs3org/reva#2624: Add etags to virtual spaces
- Enh cs3org/reva#2639: File Events
- Enh cs3org/reva#2627: Add events for sharing action
- Enh cs3org/reva#2664: Add grantID to mountpoint
- Enh cs3org/reva#2622: Allow listing shares in spaces via the OCS API
- Enh cs3org/reva#2623: Add space aliases
- Enh cs3org/reva#2647: Add space specific events
- Enh cs3org/reva#3345: Add the spaceid to propfind responses
- Enh cs3org/reva#2616: Add etag to spaces response
- Enh cs3org/reva#2628: Add spaces aware trash-bin API
https://github.com/owncloud/ocis/pull/3330
https://github.com/owncloud/ocis/pull/3405
https://github.com/owncloud/ocis/pull/3416
Enhancement - Update ownCloud Web to v5.3.0: #6561

Tags: web

We updated ownCloud Web to v5.3.0. Please refer to the changelog (linked) for details on the web
release.

https://github.com/owncloud/web/pull/6561
https://github.com/owncloud/ocis/pull/3291
https://github.com/owncloud/ocis/pull/3375
https://github.com/owncloud/web/releases/tag/v5.3.0

ocis - 1.18.0 Tech Preview

Published by ownclouders over 2 years ago

Changes in 1.18.0

Summary

Bugfix - Capabilities for password protected public links: #3229
Bugfix - Make events settings configurable: #3214
Bugfix - Align storage metadata GPRC bind port with other variable names: #3169
Change - Unify file IDs: #3185
Enhancement - Add sorting to list Spaces: #3200
Enhancement - Change NATS port: #3210
Enhancement - Re-Enabling web cache control: #3109
Enhancement - Add SPA conform fileserver for web: #3109
Enhancement - Implement notifications service: #3217
Enhancement - Thumbnails in spaces: #3219
Enhancement - Update reva to v2.0.0: #3231
Enhancement - Update ownCloud Web to v5.2.0: #6506

Details

Bugfix - Capabilities for password protected public links: #3229

Allow password protected public links to request capabilities.

https://github.com/owncloud/web/issues/5863
https://github.com/owncloud/ocis/pull/3229
https://github.com/owncloud/web/pull/6471
Bugfix - Make events settings configurable: #3214

We've fixed the hardcoded events settings to be configurable.

https://github.com/owncloud/ocis/pull/3214
Bugfix - Align storage metadata GPRC bind port with other variable names: #3169

Changed STORAGE_METADATA_GRPC_PROVIDER_ADDR to STORAGE_METADATA_GRPC_ADDR so it aligns
with standard environment variable naming conventions used in oCIS.

https://github.com/owncloud/ocis/pull/3169
Change - Unify file IDs: #3185

We changed the file IDs to be consistent across all our APIs (WebDAV, LibreGraph, OCS). We
removed the base64 encoding. Now they are formatted like !. They are
using a reserved character ! as a URL safe separator.

https://github.com/owncloud/ocis/pull/3185
Enhancement - Add sorting to list Spaces: #3200

We added the OData query param "orderBy" for listing spaces. We can now order by Space Name and
LastModifiedDateTime.

Example 1:
https://localhost:9200/graph/v1.0/me/drives/?$orderby=lastModifiedDateTime desc
Example 2: https://localhost:9200/graph/v1.0/me/drives/?$orderby=name asc

https://github.com/owncloud/ocis/issues/3200
https://github.com/owncloud/ocis/pull/3201
https://github.com/owncloud/ocis/pull/3218
Enhancement - Change NATS port: #3210

Currently only a certain range of ports is allowed for ocis application. Use a supported port
for nats server

https://github.com/owncloud/ocis/pull/3210
Enhancement - Re-Enabling web cache control: #3109

We've re-enable browser caching headers (Expires and Last-Modified) for the web
service, this was disabled due to a problem in the fileserver used before. Since we're now using
our own fileserver implementation this works again and is enabled by default.

https://github.com/owncloud/ocis/pull/3109
Enhancement - Add SPA conform fileserver for web: #3109

We've added an SPA conform fileserver to the web service. It enables web to use vue's history
mode and behaves like nginx try_files.

https://github.com/owncloud/ocis/pull/3109
Enhancement - Implement notifications service: #3217

Implemented the minimal version of the notifications service to be able to notify a user when
they received a share.

https://github.com/owncloud/ocis/pull/3217
Enhancement - Thumbnails in spaces: #3219

Added support for thumbnails in spaces.

https://github.com/owncloud/ocis/pull/3219
https://github.com/owncloud/ocis/pull/3235
Enhancement - Update reva to v2.0.0: #3231

We updated reva to the version 2.0.0.
- Fix cs3org/reva#2457 : Do not swallow error
- Fix cs3org/reva#2422 : Handle non existing spaces correctly
- Fix cs3org/reva#2327 : Enable changelog on edge branch
- Fix cs3org/reva#2370 : Fixes for apps in public shares, project spaces for EOS driver
- Fix cs3org/reva#2464 : Pass spacegrants when adding member to space
- Fix cs3org/reva#2430 : Fix aggregated child folder id
- Fix cs3org/reva#2348 : Make archiver handle spaces protocol
- Fix cs3org/reva#2452 : Fix create space error message
- Fix cs3org/reva#2445 : Don't handle ids containing "/" in decomposedfs
- Fix cs3org/reva#2285 : Accept new userid idp format
- Fix cs3org/reva#2503 : Remove the protection from /v?.php/config endpoints
- Fix cs3org/reva#2462 : Public shares path needs to be set
- Fix cs3org/reva#2427 : Fix registry caching
- Fix cs3org/reva#2298 : Remove share refs from trashbin
- Fix cs3org/reva#2433 : Fix shares provider filter
- Fix cs3org/reva#2351 : Fix Statcache removing
- Fix cs3org/reva#2374 : Fix webdav copy of zero byte files
- Fix cs3org/reva#2336 : Handle sending all permissions when creating public links
- Fix cs3org/reva#2440 : Add ArbitraryMetadataKeys to statcache key
- Fix cs3org/reva#2582 : Keep lock structs in a local map protected by a mutex
- Fix cs3org/reva#2372 : Make owncloudsql work with the spaces registry
- Fix cs3org/reva#2416 : The registry now returns complete space structs
- Fix cs3org/reva#3066 : Fix propfind listing for files
- Fix cs3org/reva#2428 : Remove unused home provider from config
- Fix cs3org/reva#2334 : Revert fix decomposedfs upload
- Fix cs3org/reva#2415 : Services should never return transport level errors
- Fix cs3org/reva#2419 : List project spaces for share recipients
- Fix cs3org/reva#2501 : Fix spaces stat
- Fix cs3org/reva#2432 : Use space reference when listing containers
- Fix cs3org/reva#2572 : Wait for nats server on middleware start
- Fix cs3org/reva#2454 : Fix webdav paths in PROPFINDS
- Chg cs3org/reva#2329 : Activate the statcache
- Chg cs3org/reva#2596 : Remove hash from public link urls
- Chg cs3org/reva#2495 : Remove the ownCloud storage driver
- Chg cs3org/reva#2527 : Store space attributes in decomposedFS
- Chg cs3org/reva#2581 : Update hard-coded status values
- Chg cs3org/reva#2524 : Use description during space creation
- Chg cs3org/reva#2554 : Shard nodes per space in decomposedfs
- Chg cs3org/reva#2576 : Harden xattrs errors
- Chg cs3org/reva#2436 : Replace template in GroupFilter for UserProvider with a simple string
- Chg cs3org/reva#2429 : Make archiver id based
- Chg cs3org/reva#2340 : Allow multiple space configurations per provider
- Chg cs3org/reva#2396 : The ocdav handler is now spaces aware
- Chg cs3org/reva#2349 : Require ListRecycle when listing trashbin
- Chg cs3org/reva#2353 : Reduce log output
- Chg cs3org/reva#2542 : Do not encode webDAV ids to base64
- Chg cs3org/reva#2519 : Remove the auto creation of the .space folder
- Chg cs3org/reva#2394 : Remove logic from gateway
- Chg cs3org/reva#2023 : Add a sharestorageprovider
- Chg cs3org/reva#2234 : Add a spaces registry
- Chg cs3org/reva#2339 : Fix static registry regressions
- Chg cs3org/reva#2370 : Fix static registry regressions
- Chg cs3org/reva#2354 : Return not found when updating non existent space
- Chg cs3org/reva#2589 : Remove deprecated linter modules
- Chg cs3org/reva#2016 : Move wrapping and unwrapping of paths to the storage gateway
- Enh cs3org/reva#2591 : Set up App Locks with basic locks
- Enh cs3org/reva#1209 : Reva CephFS module v0.2.1
- Enh cs3org/reva#2511 : Error handling cleanup in decomposed FS
- Enh cs3org/reva#2516 : Cleaned up some code
- Enh cs3org/reva#2512 : Consolidate xattr setter and getter
- Enh cs3org/reva#2341 : Use CS3 permissions API
- Enh cs3org/reva#2343 : Allow multiple space type fileters on decomposedfs
- Enh cs3org/reva#2460 : Add locking support to decomposedfs
- Enh cs3org/reva#2540 : Refactored the xattrs package in the decomposedfs
- Enh cs3org/reva#2463 : Do not log whole nodes
- Enh cs3org/reva#2350 : Add file locking methods to the storage and filesystem interfaces
- Enh cs3org/reva#2379 : Add new file url of the app provider to the ocs capabilities
- Enh cs3org/reva#2369 : Implement TouchFile from the CS3apis
- Enh cs3org/reva#2385 : Allow to create new files with the app provider on public links
- Enh cs3org/reva#2397 : Product field in OCS version
- Enh cs3org/reva#2393 : Update tus/tusd to version 1.8.0
- Enh cs3org/reva#2522 : Introduce events
- Enh cs3org/reva#2528 : Use an exclcusive write lock when writing multiple attributes
- Enh cs3org/reva#2595 : Add integration test for the groupprovider
- Enh cs3org/reva#2439 : Ignore handled errors when creating spaces
- Enh cs3org/reva#2500 : Invalidate listproviders cache
- Enh cs3org/reva#2345 : Don't assume that the LDAP groupid in reva matches the name
- Enh cs3org/reva#2525 : Allow using AD UUID as userId values
- Enh cs3org/reva#2584 : Allow running userprovider integration tests for the LDAP driver
- Enh cs3org/reva#2585 : Add metadata storage layer and indexer
- Enh cs3org/reva#2163 : Nextcloud-based share manager for pkg/ocm/share
- Enh cs3org/reva#2278 : OIDC driver changes for lightweight users
- Enh cs3org/reva#2315 : Add new attributes to public link propfinds
- Enh cs3org/reva#2431 : Delete shares when purging spaces
- Enh cs3org/reva#2434 : Refactor ocdav into smaller chunks
- Enh cs3org/reva#2524 : Add checks when removing space members
- Enh cs3org/reva#2457 : Restore spaces that were previously deleted
- Enh cs3org/reva#2498 : Include grants in list storage spaces response
- Enh cs3org/reva#2344 : Allow listing all storage spaces
- Enh cs3org/reva#2547 : Add an if-match check to the storage provider
- Enh cs3org/reva#2486 : Update cs3apis to include lock api changes
- Enh cs3org/reva#2526 : Upgrade ginkgo to v2
https://github.com/owncloud/ocis/pull/3231
https://github.com/owncloud/ocis/pull/3258
Enhancement - Update ownCloud Web to v5.2.0: #6506

Tags: web

We updated ownCloud Web to v5.2.0. Please refer to the changelog (linked) for details on the web
release.

https://github.com/owncloud/web/pull/6506
https://github.com/owncloud/ocis/pull/3202
https://github.com/owncloud/web/releases/tag/v5.2.0

ocis - 1.18.0-rc1

Published by ownclouders over 2 years ago

Changes in 1.18.0

Summary

Bugfix - Capabilities for password protected public links: #3229
Bugfix - Make events settings configurable: #3214
Bugfix - Align storage metadata GPRC bind port with other variable names: #3169
Change - Unify file IDs: #3185
Enhancement - Add sorting to list Spaces: #3200
Enhancement - Change NATS port: #3210
Enhancement - Re-Enabling web cache control: #3109
Enhancement - Add SPA conform fileserver for web: #3109
Enhancement - Implement notifications service: #3217
Enhancement - Thumbnails in spaces: #3219
Enhancement - Update reva to v2.0.0: #3231
Enhancement - Update ownCloud Web to v5.2.0: #6506

Details

Bugfix - Capabilities for password protected public links: #3229

Allow password protected public links to request capabilities.

https://github.com/owncloud/web/issues/5863
https://github.com/owncloud/ocis/pull/3229
https://github.com/owncloud/web/pull/6471
Bugfix - Make events settings configurable: #3214

We've fixed the hardcoded events settings to be configurable.

https://github.com/owncloud/ocis/pull/3214
Bugfix - Align storage metadata GPRC bind port with other variable names: #3169

Changed STORAGE_METADATA_GRPC_PROVIDER_ADDR to STORAGE_METADATA_GRPC_ADDR so it aligns
with standard environment variable naming conventions used in oCIS.

https://github.com/owncloud/ocis/pull/3169
Change - Unify file IDs: #3185

We changed the file IDs to be consistent across all our APIs (WebDAV, LibreGraph, OCS). We
removed the base64 encoding. Now they are formatted like !. They are
using a reserved character ! as a URL safe separator.

https://github.com/owncloud/ocis/pull/3185
Enhancement - Add sorting to list Spaces: #3200

We added the OData query param "orderBy" for listing spaces. We can now order by Space Name and
LastModifiedDateTime.

Example 1:
https://localhost:9200/graph/v1.0/me/drives/?$orderby=lastModifiedDateTime desc
Example 2: https://localhost:9200/graph/v1.0/me/drives/?$orderby=name asc

https://github.com/owncloud/ocis/issues/3200
https://github.com/owncloud/ocis/pull/3201
https://github.com/owncloud/ocis/pull/3218
Enhancement - Change NATS port: #3210

Currently only a certain range of ports is allowed for ocis application. Use a supported port
for nats server

https://github.com/owncloud/ocis/pull/3210
Enhancement - Re-Enabling web cache control: #3109

We've re-enable browser caching headers (Expires and Last-Modified) for the web
service, this was disabled due to a problem in the fileserver used before. Since we're now using
our own fileserver implementation this works again and is enabled by default.

https://github.com/owncloud/ocis/pull/3109
Enhancement - Add SPA conform fileserver for web: #3109

We've added an SPA conform fileserver to the web service. It enables web to use vue's history
mode and behaves like nginx try_files.

https://github.com/owncloud/ocis/pull/3109
Enhancement - Implement notifications service: #3217

Implemented the minimal version of the notifications service to be able to notify a user when
they received a share.

https://github.com/owncloud/ocis/pull/3217
Enhancement - Thumbnails in spaces: #3219

Added support for thumbnails in spaces.

https://github.com/owncloud/ocis/pull/3219
https://github.com/owncloud/ocis/pull/3235
Enhancement - Update reva to v2.0.0: #3231

We updated reva to the version 2.0.0.
- Fix cs3org/reva#2457 : Do not swallow error
- Fix cs3org/reva#2422 : Handle non existing spaces correctly
- Fix cs3org/reva#2327 : Enable changelog on edge branch
- Fix cs3org/reva#2370 : Fixes for apps in public shares, project spaces for EOS driver
- Fix cs3org/reva#2464 : Pass spacegrants when adding member to space
- Fix cs3org/reva#2430 : Fix aggregated child folder id
- Fix cs3org/reva#2348 : Make archiver handle spaces protocol
- Fix cs3org/reva#2452 : Fix create space error message
- Fix cs3org/reva#2445 : Don't handle ids containing "/" in decomposedfs
- Fix cs3org/reva#2285 : Accept new userid idp format
- Fix cs3org/reva#2503 : Remove the protection from /v?.php/config endpoints
- Fix cs3org/reva#2462 : Public shares path needs to be set
- Fix cs3org/reva#2427 : Fix registry caching
- Fix cs3org/reva#2298 : Remove share refs from trashbin
- Fix cs3org/reva#2433 : Fix shares provider filter
- Fix cs3org/reva#2351 : Fix Statcache removing
- Fix cs3org/reva#2374 : Fix webdav copy of zero byte files
- Fix cs3org/reva#2336 : Handle sending all permissions when creating public links
- Fix cs3org/reva#2440 : Add ArbitraryMetadataKeys to statcache key
- Fix cs3org/reva#2582 : Keep lock structs in a local map protected by a mutex
- Fix cs3org/reva#2372 : Make owncloudsql work with the spaces registry
- Fix cs3org/reva#2416 : The registry now returns complete space structs
- Fix cs3org/reva#3066 : Fix propfind listing for files
- Fix cs3org/reva#2428 : Remove unused home provider from config
- Fix cs3org/reva#2334 : Revert fix decomposedfs upload
- Fix cs3org/reva#2415 : Services should never return transport level errors
- Fix cs3org/reva#2419 : List project spaces for share recipients
- Fix cs3org/reva#2501 : Fix spaces stat
- Fix cs3org/reva#2432 : Use space reference when listing containers
- Fix cs3org/reva#2572 : Wait for nats server on middleware start
- Fix cs3org/reva#2454 : Fix webdav paths in PROPFINDS
- Chg cs3org/reva#2329 : Activate the statcache
- Chg cs3org/reva#2596 : Remove hash from public link urls
- Chg cs3org/reva#2495 : Remove the ownCloud storage driver
- Chg cs3org/reva#2527 : Store space attributes in decomposedFS
- Chg cs3org/reva#2581 : Update hard-coded status values
- Chg cs3org/reva#2524 : Use description during space creation
- Chg cs3org/reva#2554 : Shard nodes per space in decomposedfs
- Chg cs3org/reva#2576 : Harden xattrs errors
- Chg cs3org/reva#2436 : Replace template in GroupFilter for UserProvider with a simple string
- Chg cs3org/reva#2429 : Make archiver id based
- Chg cs3org/reva#2340 : Allow multiple space configurations per provider
- Chg cs3org/reva#2396 : The ocdav handler is now spaces aware
- Chg cs3org/reva#2349 : Require ListRecycle when listing trashbin
- Chg cs3org/reva#2353 : Reduce log output
- Chg cs3org/reva#2542 : Do not encode webDAV ids to base64
- Chg cs3org/reva#2519 : Remove the auto creation of the .space folder
- Chg cs3org/reva#2394 : Remove logic from gateway
- Chg cs3org/reva#2023 : Add a sharestorageprovider
- Chg cs3org/reva#2234 : Add a spaces registry
- Chg cs3org/reva#2339 : Fix static registry regressions
- Chg cs3org/reva#2370 : Fix static registry regressions
- Chg cs3org/reva#2354 : Return not found when updating non existent space
- Chg cs3org/reva#2589 : Remove deprecated linter modules
- Chg cs3org/reva#2016 : Move wrapping and unwrapping of paths to the storage gateway
- Enh cs3org/reva#2591 : Set up App Locks with basic locks
- Enh cs3org/reva#1209 : Reva CephFS module v0.2.1
- Enh cs3org/reva#2511 : Error handling cleanup in decomposed FS
- Enh cs3org/reva#2516 : Cleaned up some code
- Enh cs3org/reva#2512 : Consolidate xattr setter and getter
- Enh cs3org/reva#2341 : Use CS3 permissions API
- Enh cs3org/reva#2343 : Allow multiple space type fileters on decomposedfs
- Enh cs3org/reva#2460 : Add locking support to decomposedfs
- Enh cs3org/reva#2540 : Refactored the xattrs package in the decomposedfs
- Enh cs3org/reva#2463 : Do not log whole nodes
- Enh cs3org/reva#2350 : Add file locking methods to the storage and filesystem interfaces
- Enh cs3org/reva#2379 : Add new file url of the app provider to the ocs capabilities
- Enh cs3org/reva#2369 : Implement TouchFile from the CS3apis
- Enh cs3org/reva#2385 : Allow to create new files with the app provider on public links
- Enh cs3org/reva#2397 : Product field in OCS version
- Enh cs3org/reva#2393 : Update tus/tusd to version 1.8.0
- Enh cs3org/reva#2522 : Introduce events
- Enh cs3org/reva#2528 : Use an exclcusive write lock when writing multiple attributes
- Enh cs3org/reva#2595 : Add integration test for the groupprovider
- Enh cs3org/reva#2439 : Ignore handled errors when creating spaces
- Enh cs3org/reva#2500 : Invalidate listproviders cache
- Enh cs3org/reva#2345 : Don't assume that the LDAP groupid in reva matches the name
- Enh cs3org/reva#2525 : Allow using AD UUID as userId values
- Enh cs3org/reva#2584 : Allow running userprovider integration tests for the LDAP driver
- Enh cs3org/reva#2585 : Add metadata storage layer and indexer
- Enh cs3org/reva#2163 : Nextcloud-based share manager for pkg/ocm/share
- Enh cs3org/reva#2278 : OIDC driver changes for lightweight users
- Enh cs3org/reva#2315 : Add new attributes to public link propfinds
- Enh cs3org/reva#2431 : Delete shares when purging spaces
- Enh cs3org/reva#2434 : Refactor ocdav into smaller chunks
- Enh cs3org/reva#2524 : Add checks when removing space members
- Enh cs3org/reva#2457 : Restore spaces that were previously deleted
- Enh cs3org/reva#2498 : Include grants in list storage spaces response
- Enh cs3org/reva#2344 : Allow listing all storage spaces
- Enh cs3org/reva#2547 : Add an if-match check to the storage provider
- Enh cs3org/reva#2486 : Update cs3apis to include lock api changes
- Enh cs3org/reva#2526 : Upgrade ginkgo to v2
https://github.com/owncloud/ocis/pull/3231
https://github.com/owncloud/ocis/pull/3231
Enhancement - Update ownCloud Web to v5.2.0: #6506

Tags: web

We updated ownCloud Web to v5.2.0. Please refer to the changelog (linked) for details on the web
release.

https://github.com/owncloud/web/pull/6506
https://github.com/owncloud/ocis/pull/3202
https://github.com/owncloud/web/releases/tag/v5.2.0