Bot releases are visible (Hide)

ocis - 5.0.1 Latest Release

Published by ownclouders 6 months ago

Changes in 5.0.1

Summary

Bugfix - Update reva to v2.19.4: #8781
Bugfix - Fix restarting of postprocessing: #8782
Bugfix - Fix the create personal space cache: #8799
Bugfix - Make IDP cookies same site strict: #8716

Details

Bugfix - Update reva to v2.19.4: #8781

We updated reva to v2.19.4
- Bugfix cs3org/reva#4612: Use gateway selector in jsoncs3 to scale the service
Https://github.com/owncloud/ocis/pull/8787

We updated reva to v2.19.3
- Bugfixcs3org/reva#4607: Mask user email in output
https://github.com/owncloud/ocis/pull/8781
Bugfix - Fix restarting of postprocessing: #8782

When an upload is not found, the logic to restart postprocessing was bunked.
Additionally we extended the upload sessions command to be able to restart the
uploads without using a second command.

NOTE: This also includes a breaking fix for the deprecated ocis storage-users uploads list command

https://github.com/owncloud/ocis/pull/8782
Bugfix - Fix the create personal space cache: #8799

We fixed a problem with the config for the create personal space cache which
resulted in the cache never being used.

https://github.com/owncloud/ocis/pull/8799
Enhancement - Make IDP cookies same site strict: #8716

To enhance the security of our application and prevent Cross-Site Request
Forgery (CSRF) attacks, we have updated the SameSite attribute of the build in
Identity Provider (IDP) cookies to Strict.

This change restricts the browser from sending these cookies with any cross-site
requests, thereby limiting the exposure of the user's session to potential
threats.

This update does not impact the existing functionality of the application but
provides an additional layer of security where needed.

This only affects cookies set by the built-in IDP. Production systems should not be affected.

https://github.com/owncloud/ocis/pull/8716

ocis - 4.0.7

Published by ownclouders 7 months ago

Changes in 4.0.7

Summary

Bugfix - Update reva to include bugfixes and improvements: #8718
Enhancement - Update to go 1.22: #8597

Details

Bugfix - Update reva to include bugfixes and improvements: #8718

Changelog for reva 2.13.4
- Bugfix cs3org/reva#4398: Fix ceph build
- Bugfix cs3org/reva#4396: Allow an empty credentials chain in the auth middleware
- Bugfix cs3org/reva#4423: Fix disconnected traces
- Bugfix cs3org/reva#4590: Fix uploading via a public link
- Bugfix cs3org/reva#4470: Keep failed processing status
- Enhancement cs3org/reva#4397: Introduce UploadSessionLister interface
https://github.com/owncloud/ocis/pull/8718
Enhancement - Update to go 1.22: #8597

We have updated go to version 1.22.

https://github.com/owncloud/ocis/pull/8597

ocis - 5.0.0

Published by ownclouders 7 months ago

Changes in 5.0.0

Summary

Bugfix - Fix wrong compile date: #6132
Bugfix - Fix the kql-bleve search: #7290
Bugfix - Bring back the USERS_LDAP_USER_SCHEMA_ID variable: #7312
Bugfix - Do not reset state of received shares when rebuilding the jsoncs3 index: #7319
Bugfix - Deprecate redundant encryptions settings for notification service: #7345
Bugfix - Check school number for duplicates before adding a school: #7351
Bugfix - Don't reload web config: #7369
Bugfix - Delete outdated userlog events: #7410
Bugfix - Set the mountpoint on auto accept: #7460
Bugfix - Fix default language fallback: #7465
Bugfix - GetUserByClaim fixed for Active Directory: #7476
Bugfix - Fix preview request 500 error when made too early: #7502
Bugfix - Fix 403 in docs pipeline: #7509
Bugfix - Fix the auth service env variable: #7523
Bugfix - Token storage config fixed: #7528
Bugfix - Set existing mountpoint on auto accept: #7592
Bugfix - Return 423 status code on tag create: #7596
Bugfix - Fix libre-graph status codes: #7678
Bugfix - Fix unlock via space API: #7726
Bugfix - Disable DEPTH infinity in PROPFIND: #7746
Bugfix - Fix the tgz mime type: #7772
Bugfix - Fix natsjs cache: #7790
Bugfix - Fix search service start: #7795
Bugfix - Fix search response: #7815
Bugfix - The race conditions in tests: #7847
Bugfix - Do not purge expired upload sessions that are still postprocessing: #7859
Bugfix - Fix the public link update: #7862
Bugfix - Fix jwt config of policies service: #7893
Bugfix - Updating logo with new theme structure: #7930
Bugfix - Password policy return code was wrong: #7952
Bugfix - Removed outdated and unused dependency from idp package: #7957
Bugfix - Update permission validation: #7963
Bugfix - Renaming a user to a string with capital letters: #7964
Bugfix - Improve OCM support: #7973
Bugfix - Permissions of a role with duplicate ID: #7976
Bugfix - Non durable streams for sse service: #7986
Bugfix - Fix empty trace ids: #8023
Bugfix - Fix search by containing special characters: #8050
Bugfix - Fix the upload postprocessing: #8117
Bugfix - Disallow to delete a file during the processing: #8132
Bugfix - Fix wrong naming in nats-js-kv registry: #8140
Bugfix - IDP CS3 backend sessions now survive a restart: #8142
Bugfix - Fix patching of language: #8182
Bugfix - Fix search service to not log expected cases as errors: #8200
Bugfix - Updating and reset logo failed: #8211
Bugfix - Cleanup graph/pkg/service/v0/driveitems.go: #8228
Bugfix - Cleanup search/pkg/search/search.go: #8230
Bugfix - Graph/sharedWithMe works for shares from project spaces now: #8233
Bugfix - Fix PATCH/DELETE status code for drives that don't support them: #8235
Bugfix - Fix nats authentication: #8236
Bugfix - Fix the resource name: #8246
Bugfix - Apply role constraints when creating shares via the graph API: #8247
Bugfix - Fix concurrent access to a map: #8269
Bugfix - Fix nats registry: #8281
Bugfix - Remove invalid environment variables: #8303
Bugfix - Fix concurrent shares config: #8317
Bugfix - Fix Content-Disposition header for downloads: #8381
Bugfix - Signed url verification: #8385
Bugfix - Fix an error when move: #8396
Bugfix - Fix extended env parser: #8409
Bugfix - Graph/drives/permission Expiration date update: #8413
Bugfix - Fix search error message: #8444
Bugfix - Graph/sharedWithMe align IDs with webdav response: #8467
Bugfix - Fix an error when lock/unlock a public shared file: #8472
Bugfix - Bump reva to pull in changes to fix recursive trashcan purge: #8505
Bugfix - Fix remove/update share permissions: #8529
Bugfix - Fix graph drive invite: #8538
Bugfix - We now always select the next clients when autoaccepting shares: #8570
Bugfix - Correct the default mapping of roles: #8639
Bugfix - Disable Multipart uploads: #8667
Bugfix - Fix last month search: #31145
Change - Auto-Accept Shares: #7097
Change - Change the default TUS chunk size: #7273
Change - Remove privacyURL and imprintURL from the config: #7938
Change - Remove accessDeniedHelpUrl from the config: #7970
Change - Change the default store for presigned keys to nats-js-kv: #8419
Change - Deprecate sharing cs3 backends: #8478
Enhancement - Add the Banned Passwords List: #4197
Enhancement - Introduce service accounts: #6427
Enhancement - SSE for messaging: #6992
Enhancement - Support spec violating AD FS access token issuer: #7140
Enhancement - Add OCIS_LDAP_BIND_PASSWORD as replacement for LDAP_BIND_PASSWORD: #7176
Enhancement - Keyword Query Language (KQL) search syntax: #7212
Enhancement - Introduce clientlog service: #7217
Enhancement - Proxy uses service accounts for provisioning: #7240
Enhancement - The password policies change request: #7264
Enhancement - Introduce natsjs registry: #7272
Enhancement - Add the password policies: #7285
Enhancement - Add login URL config: #7317
Enhancement - Improve SSE format: #7325
Enhancement - New value auto for NOTIFICATIONS_SMTP_AUTHENTICATION: #7356
Enhancement - Make sse service scalable: #7382
Enhancement - Edit wrong named enves: #7406
Enhancement - Thumbnail generation with image processors: #7409
Enhancement - Set default for Async Uploads to true: #7416
Enhancement - The default language added: #7417
Enhancement - Add "Last modified" filter Chip: #7455
Enhancement - Config for disabling Web extensions: #7486
Enhancement - Store and index metadata: #7490
Enhancement - Add support for audio files to the thumbnails service: #7491
Enhancement - Implement sharing roles: #7524
Enhancement - Add new permission to delete public link password: #7538
Enhancement - Add config to enforce passwords on all public links: #7547
Enhancement - Tika content extraction cleanup for search: #7553
Enhancement - Allow configuring storage registry with envvars: #7554
Enhancement - Add search MediaType filter: #7602
Enhancement - Add Sharing NG endpoints: #7633
Enhancement - Configs for Web embed mode: #7670
Enhancement - Support login page background configuration: #7674
Enhancement - Add new permissions: #7700
Enhancement - Add preferred language to user settings: #7720
Enhancement - Add user filter startswith and contains: #7739
Enhancement - Allow configuring additional routes: #7741
Enhancement - Default link permission config: #7783
Enhancement - Add banned password list to the default deployments: #7784
Enhancement - Update to go 1.21: #7794
Enhancement - Add Sharing NG list permissions endpoint: #7805
Enhancement - Add user list requires filter config: #7866
Enhancement - Retry antivirus postprocessing step in case of problems: #7874
Enhancement - Add validation to public share provider: #7877
Enhancement - Graphs endpoint for mounting and unmounting shares: #7885
Enhancement - Store and index metadata: #7886
Enhancement - Allow regular users to list other users: #7887
Enhancement - Add edit public share to sharing NG: #7908
Enhancement - Add cli commands for trash-bin: #7917
Enhancement - Add validation update public share: #7978
Enhancement - Allow inmemory nats-js-kv stores: #7979
Enhancement - Disable the password policy: #7985
Enhancement - Use kv store in natsjs registry: #7987
Enhancement - Allow authentication nats connections: #7989
Enhancement - Add RED metrics to the metrics endpoint: #7994
Enhancement - Add ocm and sciencemesh services: #7998
Enhancement - Make nats-js-kv the default registry: #8011
Enhancement - Service Account roles: #8051
Enhancement - Update antivirus service: #8062
Enhancement - Remove deprecated environment variables: #8149
Enhancement - Disable the password policy: #8152
Enhancement - Allow restarting multiple uploads with one command: #8287
Enhancement - Modify the concurrency default: #8309
Enhancement - Improve ocis single binary start: #8320
Enhancement - Use environment variables in yaml config files: #8339
Enhancement - Increment filenames on upload collisions in secret filedrops: #8340
Enhancement - Allow sending multiple user ids in one sse event: #8379
Enhancement - Allow to skip service listing: #8408
Enhancement - Add a make step to validate the env var annotations: #8436
Enhancement - Drop the unnecessary grants exists check when creating shares: #8502
Enhancement - Update to go 1.22: #8586
Enhancement - Update web to v8.0.0: #8613
Enhancement - Update web to v8.0.1: #8626
Enhancement - Update reva to 2.19.2: #8638

Details

Bugfix - Fix wrong compile date: #6132

We fixed that current date is always printed.

https://github.com/owncloud/ocis/issues/6124
https://github.com/owncloud/ocis/pull/6132
Bugfix - Fix the kql-bleve search: #7290

We fixed the issue when 500 on searches that contain ":". Added the characters
escaping according to https://blevesearch.com/docs/Query-String-Query/

https://github.com/owncloud/ocis/issues/7282
https://github.com/owncloud/ocis/pull/7290
Bugfix - Bring back the USERS_LDAP_USER_SCHEMA_ID variable: #7312

We reintroduced the USERS_LDAP_USER_SCHEMA_ID variable which was accidently
removed from the users service with the 4.0.0 release.

https://github.com/owncloud/ocis/issues/7312
https://github.com/owncloud/ocis-charts/issues/397
Bugfix - Do not reset state of received shares when rebuilding the jsoncs3 index: #7319

We fixed a problem with the "ocis migrate rebuild-jsoncs3-indexes" command which
reset the state of received shares to "pending".

https://github.com/owncloud/ocis/issues/7319
Bugfix - Deprecate redundant encryptions settings for notification service: #7345

The values tls and ssl for the smtp_encryption configuration setting are
duplicates of starttls and ssltls. They have been marked as deprecated. A
warning will be logged when they are still used. Please use starttls instead
for tls and ssltls instead of `ssl.

https://github.com/owncloud/ocis/issues/7345
Bugfix - Check school number for duplicates before adding a school: #7351

We fixed an issue that allowed to create two schools with the same school number

https://github.com/owncloud/enterprise/issues/6051
https://github.com/owncloud/ocis/pull/7351
Bugfix - Don't reload web config: #7369

When requesting config.json file from the server, web service would reload the
file if a path is set. This will remove config entries set via Envvar. Since we
want to have the possiblity to set configuration from both sources we removed
the reading from file. The file will still be loaded on service startup.

https://github.com/owncloud/ocis/pull/7369
Bugfix - Delete outdated userlog events: #7410

Userlog will now delete events when the user has no longer access to the
underlying resource

https://github.com/owncloud/ocis/pull/7410
Bugfix - Set the mountpoint on auto accept: #7460

On shares auto accept set a mountpoint with same logic as ocs handler

https://github.com/owncloud/ocis/pull/7460
Bugfix - Fix default language fallback: #7465

Add the default language for the webui, the settings, userlog and notification
service.

https://github.com/owncloud/ocis/issues/7465
Bugfix - GetUserByClaim fixed for Active Directory: #7476

The reva ldap backend for the users and groups service did not hex escape binary
uuids in LDAP filter correctly this could cause problems in Active Directory
setups for services using the GetUserByClaim CS3 request with claim "userid".

https://github.com/owncloud/ocis/issues/7469
https://github.com/owncloud/ocis/pull/7476
Bugfix - Fix preview request 500 error when made too early: #7502

Fix the status code and message when a thumbnail request is made too early.

https://github.com/owncloud/ocis/issues/7502
https://github.com/owncloud/ocis/pull/7507
Bugfix - Fix 403 in docs pipeline: #7509

Docs pipeline was not routed through our proxies which could lead to requests
being blacklisted

https://github.com/owncloud/ocis/issues/7509
https://github.com/owncloud/ocis/pull/7511
Bugfix - Fix the auth service env variable: #7523

We the auth service env variable to the service specific name. Before it was
configurable via AUTH_MACHINE_JWT_SECRET and now is configurable via
AUTH_SERVICE_JWT_SECRET.

https://github.com/owncloud/ocis/pull/7523
Bugfix - Token storage config fixed: #7528

The token storage config in the config.json for web was missing when it was set
to false.

https://github.com/owncloud/ocis/issues/7462
https://github.com/owncloud/ocis/pull/7528
Bugfix - Set existing mountpoint on auto accept: #7592

When already having a share for a specific resource, auto accept would use
custom mountpoints which lead to other errors. Now auto-accept is using the
existing mountpoint of a share.

https://github.com/owncloud/ocis/pull/7592
Bugfix - Return 423 status code on tag create: #7596

When a file is locked, return 423 status code instead 500 on tag create

https://github.com/owncloud/ocis/pull/7596
Bugfix - Fix libre-graph status codes: #7678

Creating group: https://owncloud.dev/libre-graph-api/#/groups/CreateGroup
changed: 200 -> 201

Creating users: https://owncloud.dev/libre-graph-api/#/users/CreateUser changed:
200 -> 201

Export GDPR: https://owncloud.dev/libre-graph-api/#/user/ExportPersonalData
changed: 201 -> 202

https://github.com/owncloud/ocis/issues/7678
https://github.com/owncloud/ocis/pull/7705
Bugfix - Fix unlock via space API: #7726

We fixed a bug that caused Error 500 when user try to unlock file using fileid
The handleSpaceUnlock has been added

https://github.com/owncloud/ocis/issues/7708
https://github.com/owncloud/ocis/pull/7726
https://github.com/cs3org/reva/pull/4338
Bugfix - Disable DEPTH infinity in PROPFIND: #7746

We fixed the Disabled DEPTH infinity in PROPFIND for: Personal
/remote.php/dav/files/admin Public link share
/remote.php/dav/public-files/ Trashbin
/remote.php/dav/spaces/trash-bin/

https://github.com/owncloud/ocis/issues/7359
https://github.com/owncloud/ocis/pull/7746
https://github.com/cs3org/reva/pull/4278
Bugfix - Fix the tgz mime type: #7772

We have fixed a bug when the tgz mime type was not "application/gzip"

https://github.com/owncloud/ocis/issues/7744
https://github.com/owncloud/ocis/pull/7772
Bugfix - Fix natsjs cache: #7790

The nats-js cache was not working. It paniced and wrote a lot of error logs.
Both is fixed now.

https://github.com/owncloud/ocis/pull/7790
Bugfix - Fix search service start: #7795

The search service would sometimes not start correctly because config values
are overwritten by default configuration.

https://github.com/owncloud/ocis/pull/7795
Bugfix - Fix search response: #7815

We fixed the search response code from 500 to 400 when the request is invalid

https://github.com/owncloud/ocis/issues/7812
https://github.com/owncloud/ocis/pull/7815
Bugfix - The race conditions in tests: #7847

We fixed the race conditions in tests.

https://github.com/owncloud/ocis/issues/7846
https://github.com/owncloud/ocis/pull/7847
Bugfix - Do not purge expired upload sessions that are still postprocessing: #7859

https://github.com/owncloud/ocis/pull/7859
https://github.com/owncloud/ocis/pull/7958
Bugfix - Fix the public link update: #7862

We fixed a bug when normal users can update the public link to delete its
password if permission is not sent in data.

https://github.com/owncloud/ocis/issues/7821
https://github.com/owncloud/ocis/pull/7862
Bugfix - Fix jwt config of policies service: #7893

Removes jwt config of policies service

https://github.com/owncloud/ocis/pull/7893
Bugfix - Updating logo with new theme structure: #7930

Updating and resetting the logo when using the new theme.json structure in Web
has been fixed.

https://github.com/owncloud/ocis/pull/7930
Bugfix - Password policy return code was wrong: #7952

We fixed the status code on SharingNG update permissions for public shares.

https://github.com/owncloud/ocis/pull/7952
Bugfix - Removed outdated and unused dependency from idp package: #7957

We've removed the outdated and apparently unused dependency cldr from the
kpop dependency inside the idp web ui. This resolves a security issue around
an oudated xmldom package version, originating from said kpop library.

https://github.com/owncloud/ocis/issues/7957
https://github.com/owncloud/ocis/pull/7988
Bugfix - Update permission validation: #7963

We fixed a bug where the permission validation was not working correctly.

https://github.com/owncloud/ocis/pull/7963
https://github.com/cs3org/reva/pull/4405
Bugfix - Renaming a user to a string with capital letters: #7964

We fixed the issue that led to correct update but the 404 response code when
renaming an existing user to a string with capital letters.

https://github.com/owncloud/ocis/pull/7964
Bugfix - Improve OCM support: #7973

We improved functionality of the OCM support.

https://github.com/owncloud/ocis/pull/7973
Bugfix - Permissions of a role with duplicate ID: #7976

We remove the redundant permissions of a role with duplicate ID.

https://github.com/owncloud/ocis/issues/7931
https://github.com/owncloud/ocis/pull/7976
Bugfix - Non durable streams for sse service: #7986

Configure sse streams to be non-durable. This functionality is not needed for
the sse service

https://github.com/owncloud/ocis/pull/7986
Bugfix - Fix empty trace ids: #8023

We changed the default tracing to produce non-empty traceids.

https://github.com/owncloud/ocis/pull/8023
https://github.com/owncloud/ocis/pull/8017
Bugfix - Fix search by containing special characters: #8050

As the OData query parser interprets characters like '@' or '-' in a special
way. Search request for users or groups needs to be quoted. We fixed the
libregraph users and groups endpoints to handle quoted search terms correctly.

https://github.com/owncloud/ocis/issues/7990
https://github.com/owncloud/ocis/pull/8050
https://github.com/owncloud/ocis/pull/8035
Bugfix - Fix the upload postprocessing: #8117

We fixed the upload postprocessing when the destination file does not exist
anymore.

https://github.com/owncloud/ocis/issues/7909
https://github.com/owncloud/ocis/pull/8117
Bugfix - Disallow to delete a file during the processing: #8132

We want to disallow deleting a file during the processing to prevent collecting
the orphan uploads.

https://github.com/owncloud/ocis/issues/8127
https://github.com/owncloud/ocis/pull/8132
https://github.com/cs3org/reva/pull/4446
Bugfix - Fix wrong naming in nats-js-kv registry: #8140

Registers the registry under the correct name

https://github.com/owncloud/ocis/pull/8140
Bugfix - IDP CS3 backend sessions now survive a restart: #8142

We now correctly reinitialize the CS3 backend session after the IDP service has
been restarted.

https://github.com/owncloud/ocis/pull/8142
Bugfix - Fix patching of language: #8182

User would not be able to patch their preferred language when the ldap backend
is set to read-only. This makes no sense as language is stored elsewhere.

https://github.com/owncloud/ocis/pull/8182
Bugfix - Fix search service to not log expected cases as errors: #8200

We changed the search service to not log cases where resources that were about
to be indexed can no longer be found. Those are expected cases, e.g. when the
file in question has already been deleted or renamed meanwhile.

https://github.com/owncloud/ocis/pull/8200
Bugfix - Updating and reset logo failed: #8211

We fixed a bug when admin tried to update or reset the logo.

https://github.com/owncloud/ocis/issues/8101
https://github.com/owncloud/ocis/pull/8211
Bugfix - Cleanup graph/pkg/service/v0/driveitems.go: #8228

Main fix is using proto getters to avoid panics. But some other code
improvements were also done

https://github.com/owncloud/ocis/pull/8228
Bugfix - Cleanup search/pkg/search/search.go: #8230

Now uses proto getters to avoid panics.

https://github.com/owncloud/ocis/pull/8230
Bugfix - Graph/sharedWithMe works for shares from project spaces now: #8233

We fixed a bug in the 'graph/v1beta1/me/drive/sharedWithMe' endpoint that caused
an error response when the user received shares from project spaces.
Additionally the endpoint now behaves more graceful in cases where the
displayname of the owner or creator of a share or shared resource couldn't be
resolved.

https://github.com/owncloud/ocis/issues/8027
https://github.com/owncloud/ocis/issues/8215
https://github.com/owncloud/ocis/pull/8233
Bugfix - Fix PATCH/DELETE status code for drives that don't support them: #8235

Updating and Deleting the virtual drives for shares is currently not supported.
Instead of returning a generic 500 status we return a 405 response now.

https://github.com/owncloud/ocis/issues/7881
https://github.com/owncloud/ocis/pull/8235
Bugfix - Fix nats authentication: #8236

Fixes nats authentication for registry/events/stores

https://github.com/owncloud/ocis/pull/8236
Bugfix - Fix the resource name: #8246

We fixed a problem where after renaming resource as sharer the receiver see a
new name.

https://github.com/owncloud/ocis/issues/8242
https://github.com/owncloud/ocis/pull/8246
https://github.com/cs3org/reva/pull/4463
Bugfix - Apply role constraints when creating shares via the graph API: #8247

We fixed a bug in the graph API for creating and updating shares so that
Spaceroot specific roles like 'Manager' and 'Co-owner' can no longer be assigned
for shares on files or directories.

https://github.com/owncloud/ocis/issues/8131
https://github.com/owncloud/ocis/pull/8247
Bugfix - Fix concurrent access to a map: #8269

We fixed the race condition that led to concurrent map access in a publicshare
manager.

https://github.com/owncloud/ocis/issues/8255
https://github.com/owncloud/ocis/pull/8269
https://github.com/cs3org/reva/pull/4472
Bugfix - Fix nats registry: #8281

The nats registry would behave badly when configuring nats-js-kv via envvar.
Reason is the way go-micro initializes. It took 5 developers to find the issue
and the fix so the details cannot be shared here. Just accept that it is working
now

https://github.com/owncloud/ocis/pull/8281
Bugfix - Remove invalid environment variables: #8303

We have removed two spaces related environment variables (whether project spaces
and the share jail are enabled) and hardcoded the only allowed options. Misusing
those variables would have resulted in invalid config.

https://github.com/owncloud/ocis/pull/8303
Bugfix - Fix concurrent shares config: #8317

We fixed setting the config for concurrent web requests, which did not work as
expected before.

https://github.com/owncloud/ocis/pull/8317
Bugfix - Fix Content-Disposition header for downloads: #8381

We have fixed a bug that caused downloads to fail on Chromebased browsers when
the filename contained special characters.

https://github.com/owncloud/ocis/issues/8361
https://github.com/owncloud/ocis/pull/8381
https://github.com/cs3org/reva/pull/4498
Bugfix - Signed url verification: #8385

Signed urls now expire properly

https://github.com/owncloud/ocis/pull/8385
Bugfix - Fix an error when move: #8396

We fixed a bug that caused Internal Server Error when move using destination id

https://github.com/owncloud/ocis/issues/6739
https://github.com/owncloud/ocis/pull/8396
https://github.com/cs3org/reva/pull/4503
Bugfix - Fix extended env parser: #8409

The extended envvar parser would be angry if there are two os.Getenv in the
same line. We fixed this.

https://github.com/owncloud/ocis/pull/8409
Bugfix - Graph/drives/permission Expiration date update: #8413

We fixed a bug in the Update sharing permission the expiration dates can't be
removed from link permissions.

https://github.com/owncloud/ocis/issues/8405
https://github.com/owncloud/ocis/pull/8413
Bugfix - Fix search error message: #8444

We fixed an error message returned when the search request is invalid

https://github.com/owncloud/ocis/issues/8442
https://github.com/owncloud/ocis/pull/8444
Bugfix - Graph/sharedWithMe align IDs with webdav response: #8467

The IDs of the driveItems returned by the 'graph/v1beta1/me/drive/sharedWithMe'
endpoint are now aligned with the IDs returned in the PROPFIND response of the
webdav service.

https://github.com/owncloud/ocis/issues/8420
https://github.com/owncloud/ocis/issues/8080
https://github.com/owncloud/ocis/pull/8467
Bugfix - Fix an error when lock/unlock a public shared file: #8472

We fixed a bug when anonymous user with viewer role in public link of a folder
can lock/unlock a file inside it

https://github.com/owncloud/ocis/issues/7785
https://github.com/owncloud/ocis/pull/8472
Bugfix - Bump reva to pull in changes to fix recursive trashcan purge: #8505

We have fixed a bug in the trashcan purge process that did not delete folder
structures recursively.

https://github.com/owncloud/ocis/issues/8473
https://github.com/owncloud/ocis/pull/8505
https://github.com/cs3org/reva/pull/4533
Bugfix - Fix remove/update share permissions: #8529

This is a workaround that should prevent removing or changing the share
permissions when the file is locked. These limitations have to be removed after
the wopi server will be able to unlock the file properly. These limitations are
not spread on the files inside the shared folder.

https://github.com/owncloud/ocis/issues/8273
https://github.com/owncloud/ocis/pull/8529
https://github.com/cs3org/reva/pull/4534
Bugfix - Fix graph drive invite: #8538

We fixed the issue when sharing of personal drive is allowed via graph

https://github.com/owncloud/ocis/issues/8494
https://github.com/owncloud/ocis/pull/8538
Bugfix - We now always select the next clients when autoaccepting shares: #8570

https://github.com/owncloud/ocis/pull/8570
Bugfix - Correct the default mapping of roles: #8639

The default config for the OIDC role mapping was incorrect. Lightweight users
are now assignable.

https://github.com/owncloud/ocis/pull/8639
Bugfix - Disable Multipart uploads: #8667

Disables multiparts uploads as they lead to high memory consumption

https://github.com/owncloud/ocis/pull/8667
Bugfix - Fix last month search: #31145

We've fixed the last month search edge case when currently is 31-th.

Https://github.com/owncloud/ocis/issues/7629
https://github.com/owncloud/ocis/pull/7742

https://github.com/golang/go/issues/31145
The
issue
is
related
to
the
build-in
package
behavior
Change - Auto-Accept Shares: #7097

Automatically accepts shares. This feature is active by default and can be
deactivated via the environment variable FRONTEND_AUTO_ACCEPT_SHARES.

https://github.com/owncloud/ocis/pull/7097
Change - Change the default TUS chunk size: #7273

We changed the default TUS chunk size from 100MB to 10MB. You can still use the
old value by configuring it in your deployment.

https://github.com/owncloud/ocis/pull/7273
Change - Remove privacyURL and imprintURL from the config: #7938

We've removed the option privacyURL and imprintURL from the config, since other
clients weren't able to consume these. In order to be accessible by other
clients, not just Web, those should be configured via the theme.json file.

https://github.com/owncloud/ocis/pull/7938/
Change - Remove accessDeniedHelpUrl from the config: #7970

We've removed the option accessDeniedHelpUrl from the config, since other
clients weren't able to consume it. In order to be accessible by other clients,
not just Web, it should be configured via the theme.json file.

https://github.com/owncloud/ocis/pull/7970
Change - Change the default store for presigned keys to nats-js-kv: #8419

We wrapped the store service in a micro store implementation and changed the
default to the built-in NATS instance.

https://github.com/owncloud/ocis/pull/8419
Change - Deprecate sharing cs3 backends: #8478

The cs3 user and public sharing drivers have already been replaced by
jsoncs3. We now mark them as deprecated in preparation to kill a lot of unused
code in reva.

https://github.com/owncloud/ocis/pull/8478
Enhancement - Add the Banned Passwords List: #4197

Added an option to enable a password check against a banned passwords list
OCIS-3809

https://github.com/cs3org/reva/pull/4197
https://github.com/owncloud/ocis/pull/7314
Enhancement - Introduce service accounts: #6427

Introduces service accounts to avoid impersonating users in async processes

https://github.com/owncloud/ocis/issues/5550
https://github.com/owncloud/ocis/pull/6427
Enhancement - SSE for messaging: #6992

So far, sse has only been used to exchange messages between the server and the
client. In order to be able to send more content to the client, we have moved
the endpoint to a separate service and are now also using it for other
notifications like:
- notify postprocessing state changes.
- notify file locking and unlocking.
https://github.com/owncloud/ocis/pull/6992
Enhancement - Support spec violating AD FS access token issuer: #7140

AD FS /adfs/.well-known/openid-configuration has an optional
access_token_issuer which, in violation of the OpenID Connect spec, takes
precedence over issuer.

https://github.com/owncloud/ocis/pull/7140
Enhancement - Add OCIS_LDAP_BIND_PASSWORD as replacement for LDAP_BIND_PASSWORD: #7176

The enviroment variable OCIS_LDAP_BIND_PASSWORD was added to be more
consistent with all other global LDAP variables.

LDAP_BIND_PASSWORD is deprecated now and scheduled for removal with the 5.0.0
release.

We also deprecated LDAP_USER_SCHEMA_ID_IS_OCTETSTRING for removal with 5.0.0.
The replacement for it is OCIS_LDAP_USER_SCHEMA_ID_IS_OCTETSTRING.

https://github.com/owncloud/ocis/issues/7176
Enhancement - Keyword Query Language (KQL) search syntax: #7212

We've introduced support for
KQL
as the default oCIS search query language.

Simple queries:
- tag:golden tag:"silver"
- name:file.txt name:"file.docx"
- content:ahab content:"captain aha*"
Date/-range queries
- Mtime:"2023-09-05T08:42:11.23554+02:00"
- Mtime>"2023-09-05T08:42:11.23554+02:00"
- Mtime>="2023-09-05T08:42:11.23554+02:00"
- Mtime<"2023-09-05T08:42:11.23554+02:00"
- Mtime<="2023-09-05T08:42:11.23554+02:00"
- Mtime:today - range: start of today till end of today
- Mtime:yesterday - range: start of yesterday till end of yesterday
- Mtime:"this week" - range: start of this week till end of this week
- Mtime:"this month" - range: start of this month till end of this month
- Mtime:"last month" - range: start of last month till end of last month
- Mtime:"this year" - range: start of this year till end of this year
- Mtime:"last year" - range: start of last year till end of last year
Conjunctive normal form queries:
- tag:golden AND tag:"silver, tag:golden OR tag:"silver, tag:golden NOT tag:"silver
- (tag:book content:ahab*), tag:(book pdf)
Complex queries:
- (name:"moby di*" OR tag:bestseller) AND tag:book NOT tag:read
https://github.com/owncloud/ocis/issues/7042
https://github.com/owncloud/ocis/issues/7179
https://github.com/owncloud/ocis/issues/7114
https://github.com/owncloud/web/issues/9636
https://github.com/owncloud/web/issues/9646
https://github.com/owncloud/ocis/pull/7212
https://github.com/owncloud/ocis/pull/7043
https://github.com/owncloud/ocis/pull/7247
https://github.com/owncloud/ocis/pull/7248
https://github.com/owncloud/ocis/pull/7254
https://github.com/owncloud/ocis/pull/7262
https://github.com/owncloud/web/pull/9653
https://github.com/owncloud/web/pull/9672
Enhancement - Introduce clientlog service: #7217

Add the clientlog service which will send machine readable notifications to
clients

https://github.com/owncloud/ocis/pull/7217
Enhancement - Proxy uses service accounts for provisioning: #7240

The proxy service now uses a service account for provsioning task, like role
assignment and user auto-provisioning. This cleans up some technical debt that
required us to mint reva tokes inside the proxy service.

https://github.com/owncloud/ocis/issues/5550
https://github.com/owncloud/ocis/pull/7240
Enhancement - The password policies change request: #7264

The variables renaming OCIS-3767

https://github.com/owncloud/ocis/pull/7264
Enhancement - Introduce natsjs registry: #7272

Introduce a registry based on the natsjs object store

https://github.com/owncloud/ocis/issues/7272
https://github.com/owncloud/ocis/pull/7487
Enhancement - Add the password policies: #7285

Add the password policies OCIS-3767

https://github.com/owncloud/ocis/pull/7285
https://github.com/owncloud/ocis/pull/7194
https://github.com/cs3org/reva/pull/4147
Enhancement - Add login URL config: #7317

Introduce a config to set the web login URL via WEB_OPTION_LOGIN_URL.

https://github.com/owncloud/ocis/pull/7317
Enhancement - Improve SSE format: #7325

Improve format of sse notifications

https://github.com/owncloud/ocis/pull/7325
Enhancement - New value auto for NOTIFICATIONS_SMTP_AUTHENTICATION: #7356

This cause the notifications service to automatically pick a suitable
authentication method to use with the configured SMTP server. This is also the
new default behavior. The previous default was to not use authentication at all.

https://github.com/owncloud/ocis/issues/7356
Enhancement - Make sse service scalable: #7382

When running multiple sse instances some events would not be reported to the
user. This is fixed.

https://github.com/owncloud/ocis/pull/7382
Enhancement - Edit wrong named enves: #7406

Checked and changed the envvars specified in the task and also removed those
that are no longer used.

https://github.com/owncloud/ocis/pull/7406
Enhancement - Thumbnail generation with image processors: #7409

Thumbnails can now be changed during creation, previously the images were always
scaled to fit the given frame, but it could happen that the images were cut off
because they could not be placed better due to the aspect ratio.

This pr introduces the possibility of specifying how the behavior should be,
following processors are available
- resize
- fit
- fill
- thumbnail
The processor can be applied by adding the processor query param to the request,
e.g. processor=fit, processor=fill, ...

To find out more how the individual processors work please read
https://github.com/disintegration/imaging

If no processor is provided it behaves the same as before (resize for gif's and
thumbnail for all other)

https://github.com/owncloud/enterprise/issues/6057
https://github.com/owncloud/ocis/issues/5179
https://github.com/owncloud/web/issues/7728
https://github.com/owncloud/ocis/pull/7409
Enhancement - Set default for Async Uploads to true: #7416

Async Uploads are meanwhile standard and needed for multiple features. Hence we
default them to true

https://github.com/owncloud/ocis/pull/7416
Enhancement - The default language added: #7417

The ability of configuration the default language has been added to the setting
service.

https://github.com/owncloud/enterprise/issues/5915
https://github.com/owncloud/ocis/pull/7417
Enhancement - Add "Last modified" filter Chip: #7455

Add "Last modified" filter Chip

https://github.com/owncloud/ocis/issues/7431
https://github.com/owncloud/ocis/issues/7551
https://github.com/owncloud/ocis/pull/7455
Enhancement - Config for disabling Web extensions: #7486

A new config for disabling specific Web extensions via their id has been added.

https://github.com/owncloud/web/issues/8524
https://github.com/owncloud/ocis/pull/7486
Enhancement - Store and index metadata: #7490

Audio metadata is now extracted and stored by the search service. It is
available for driveItems in a folder listing using the Graph API.

https://github.com/owncloud/ocis/pull/7490
Enhancement - Add support for audio files to the thumbnails service: #7491

The thumbnails service can now extract artwork from audio files (mp3, ogg, flac)
and render it just like any other image.

https://github.com/owncloud/ocis/pull/7491
Enhancement - Implement sharing roles: #7524

Implement libre graph sharing roles

https://github.com/owncloud/ocis/issues/7418
https://github.com/owncloud/ocis/pull/7524
Enhancement - Add new permission to delete public link password: #7538

Users with this new permission can now delete passwords on read-only public
links. The permission is added to the default roles "Admin" and "Space Admin".

https://github.com/owncloud/ocis/issues/7538
https://github.com/owncloud/ocis/pull/7538
https://github.com/cs3org/reva/pull/4270
Enhancement - Add config to enforce passwords on all public links: #7547

We added the config OCIS_SHARING_PUBLIC_SHARE_MUST_HAVE_PASSWORD to enforce
passwords on all public shares.

https://github.com/owncloud/ocis/issues/7539
https://github.com/owncloud/ocis/pull/7547
Enhancement - Tika content extraction cleanup for search: #7553

So far it has not been possible to determine whether the content for search
should be cleaned up of 'stop words' or not. Stop words are filling words like
"I, you, have, am" etc and defined by the search engine.

The behaviour can now be set with the newly introduced settings option
SEARCH_EXTRACTOR_TIKA_CLEAN_STOP_WORDS=false which is enabled by default.

In addition, the stop word cleanup is no longer as aggressive and now ignores
numbers, urls, basically everything except the defined stop words.

https://github.com/owncloud/ocis/issues/6674
https://github.com/owncloud/ocis/pull/7553
Enhancement - Allow configuring storage registry with envvars: #7554

Introduced new envvars to configure the storage registry in the gateway service

https://github.com/owncloud/ocis/pull/7554
Enhancement - Add search MediaType filter: #7602

Add filter MediaType filter shortcuts to search for specific document types. For
example, a search query mediatype:documents will search for files with the
following mimetypes:

Application/msword
MimeType:application/vnd.openxmlformats-officedocument.wordprocessingml.document
MimeType:application/vnd.oasis.opendocument.text MimeType:text/plain
MimeType:text/markdown MimeType:application/rtf
MimeType:application/vnd.apple.pages

Besides the document shorthand, it also contains following:
- file
- folder
- document
- spreadsheet
- presentation
- pdf
- image
- video
- audio
- archive
File

Folder

Document:

Application/msword
application/vnd.openxmlformats-officedocument.wordprocessingml.document
application/vnd.oasis.opendocument.text text/plain text/markdown application/rtf
application/vnd.apple.pages

Spreadsheet:

Application/vnd.ms-excel application/vnd.oasis.opendocument.spreadsheet text/csv
application/vnd.openxmlformats-officedocument.spreadsheetml.sheet
application/vnd.oasis.opendocument.spreadsheet application/vnd.apple.numbers

Presentations:

Application/vnd.ms-powerpoint
application/vnd.openxmlformats-officedocument.presentationml.presentation
application/vnd.oasis.opendocument.presentation application/vnd.apple.keynote

PDF

Application/pdf

Image:

Image/*

Video:

Video/*

Audio:

Audio/*

Archive (zip ...):

Application/zip application/x-tar application/x-gzip application/x-7z-compressed
application/x-rar-compressed application/x-bzip2 application/x-bzip
application/x-tgz

https://github.com/owncloud/ocis/issues/7432
https://github.com/owncloud/ocis/pull/7602
Enhancement - Add Sharing NG endpoints: #7633

We've added new sharing ng endpoints to the graph beta api. The following
endpoints are added:
- /v1beta1/me/drive/sharedByMe
- /v1beta1/me/drive/sharedWithMe
- /v1beta1/roleManagement/permissions/roleDefinitions
- /v1beta1/roleManagement/permissions/roleDefinitions/{roleID}
- /v1beta1/drives/{drive-id}/items/{item-id}/createLink (create a sharing link)
https://github.com/owncloud/ocis/issues/7436
https://github.com/owncloud/ocis/issues/6993
https://github.com/owncloud/ocis/pull/7633
https://github.com/owncloud/ocis/pull/7686
https://github.com/owncloud/ocis/pull/7684
https://github.com/owncloud/ocis/pull/7683
https://github.com/owncloud/ocis/pull/7239
https://github.com/owncloud/ocis/pull/7687
https://github.com/owncloud/ocis/pull/7751
https://github.com/owncloud/libre-graph-api/pull/112
Enhancement - Configs for Web embed mode: #7670

New configs for the Web embed mode have been added:
- enabled Defines if embed mode is enabled.
- target Defines how Web is being integrated when running in embed mode.
- messagesOrigin Defines a URL under which Web can be integrated via iFrame.
- delegateAuthentication Defines whether Web should require authentication to be done by the parent application.
- delegateAuthenticationOrigin Defines the host to validate the message event origin against when running Web in 'embed' mode.
https://github.com/owncloud/web/issues/9768
https://github.com/owncloud/ocis/pull/7670
Enhancement - Support login page background configuration: #7674

Introduce a new environment variable IDP_LOGIN_BACKGROUND_URL that overrides
the default background image of the IDP login page when present.

https://github.com/owncloud/ocis/issues/7674
https://github.com/owncloud/ocis/pull/7900
Enhancement - Add new permissions: #7700

Adds new permissions to admin/spaceadmin/user roles - Favorites.List allows /
denies the Favorites Listing Request - Favorites.Write is implemented to be
enforced on marking/unmark files as favouritesShare - Shares.Write permission
denies / allows sharing completely for a user on all share CUD requests. (User,
Group)

https://github.com/owncloud/ocis/pull/7700
Enhancement - Add preferred language to user settings: #7720

We have added the preferred language to the libre-graph api & added endpoints
for that to ocis.

https://github.com/owncloud/ocis/issues/5455
https://github.com/owncloud/ocis/pull/7720
https://github.com/owncloud/libre-graph-api/pull/130
Enhancement - Add user filter startswith and contains: #7739

We add two new filters to the user list endpoint. The startswith filter allows
to filter users by the beginning of their name. The contains filter allows to
filter users by a substring of their name.

https://github.com/owncloud/ocis/issues/5486
https://github.com/owncloud/ocis/pull/7739
Enhancement - Allow configuring additional routes: #7741

Allows adding custom routes to the ocis proxy. This enables custom ocis
extensions.

https://github.com/owncloud/ocis/pull/7741
Enhancement - Default link permission config: #7783

A new config for default link permissions that is being announced via
capabilities has been added. It defaults to 1 (= public link with viewer
permissions).

https://github.com/owncloud/web/issues/9919
https://github.com/owncloud/ocis/pull/7783
Enhancement - Add banned password list to the default deployments: #7784

We add banned password list to the default deployments

https://github.com/owncloud/ocis/issues/7724
https://github.com/owncloud/ocis/pull/7784
Enhancement - Update to go 1.21: #7794

We updated to go 1.21.

https://github.com/owncloud/ocis/pull/7794
Enhancement - Add Sharing NG list permissions endpoint: #7805

We've added a new sharing ng endpoint which lists all permissions for a given
item.

https://github.com/owncloud/ocis/issues/6993
https://github.com/owncloud/ocis/pull/7805
Enhancement - Add user list requires filter config: #7866

Introduce a config to require filters in order to list users in Web via
WEB_OPTION_USER_LIST_REQUIRES_FILTER.

https://github.com/owncloud/ocis/pull/7866
Enhancement - Retry antivirus postprocessing step in case of problems: #7874

The antivirus postprocessing step will now be retried for a configurable amount
of times in case it can't get a result from clamav.

https://github.com/owncloud/ocis/pull/7874
Enhancement - Add validation to public share provider: #7877

We changed the implementation of the public share provider in reva to do the
validation on the CS3 Api side. This makes the implementation on the graph side
smaller.

https://github.com/owncloud/ocis/issues/6993
https://github.com/owncloud/ocis/pull/7877
Enhancement - Graphs endpoint for mounting and unmounting shares: #7885

Functionality for mounting (accepting) and unmounting (rejecting) received
shares has been added to the graph API.

https://github.com/owncloud/ocis/pull/7885
Enhancement - Store and index metadata: #7886

Location metadata is now extracted and stored by the search service. It is
available for driveItems in a folder listing using the Graph API.

https://github.com/owncloud/ocis/pull/7886
Enhancement - Allow regular users to list other users: #7887

Regular users can search for other users and groups. The following limitations
apply:
- Only search queries are allowed (using the $search=term query parameter)
- The search term needs to have at least 3 characters
- for user searches the result set only contains the attributes displayName, userType, mail and id
- for group searches the result set only contains the attributes displayName, groupTypes and id
https://github.com/owncloud/ocis/issues/7782
https://github.com/owncloud/ocis/pull/7887
Enhancement - Add edit public share to sharing NG: #7908

We added the ability to edit public shares to the sharing NG endpoints.

https://github.com/owncloud/ocis/issues/6993
https://github.com/owncloud/ocis/pull/7908/
Enhancement - Add cli commands for trash-bin: #7917

We added the list and restore commands to the trash-bin items to the CLI

https://github.com/owncloud/ocis/issues/7845
https://github.com/owncloud/ocis/pull/7917
https://github.com/cs3org/reva/pull/4392
Enhancement - Add validation update public share: #7978

For Sharing NG, we needed validation in the implementing reva service to keep
the client implementation simple.

https://github.com/owncloud/ocis/pull/7978
Enhancement - Allow inmemory nats-js-kv stores: #7979

Adds envvars to keep nats-js-kv stores in memory and not persist them on disc.

https://github.com/owncloud/ocis/pull/7979
Enhancement - Disable the password policy: #7985

We add the environment variable that allow to disable the password policy.

https://github.com/owncloud/ocis/issues/7916
https://github.com/owncloud/ocis/pull/7985
https://github.com/cs3org/reva/pull/4409
Enhancement - Use kv store in natsjs registry: #7987

Replaces the nats object store with the nats kv store in the natsjs registry

https://github.com/owncloud/ocis/pull/7987
Enhancement - Allow authentication nats connections: #7989

Allow events, store and registry implementation to pass username/password to the
nats instance

https://github.com/owncloud/ocis/pull/7989
Enhancement - Add RED metrics to the metrics endpoint: #7994

We added three new metrics to the metrics endpoint to support the RED method for
monitoring microservices.
- Request Rate: The number of requests per second. The total count of requests
  is available under ocis_proxy_requests_total. - Error Rate: The number of
  failed requests per second. The total count of failed requests is available
  under ocis_proxy_errors_total. - Duration: The amount of time each request
  takes. The duration of all requests is available under
  ocis_proxy_request_duration_seconds. This is a histogram metric, so it also
  provides information about the distribution of request durations.
The metrics are available under the following paths: PROXY_DEBUG_ADDR/metrics
in a prometheus compatible format and maybe secured by PROXY_DEBUG_TOKEN.

https://github.com/owncloud/ocis/pull/7994
Enhancement - Add ocm and sciencemesh services: #7998

We added sciencemesh and ocm services to enable federation.

https://github.com/owncloud/ocis/pull/7998
https://github.com/owncloud/ocis/pull/7576
https://github.com/owncloud/ocis/pull/7464
https://github.com/owncloud/ocis/pull/7463
Enhancement - Make nats-js-kv the default registry: #8011

The previously used default mdns is faulty. Deprecated it together with
consul, nats and etcd implementations.

https://github.com/owncloud/ocis/pull/8011
https://github.com/owncloud/ocis/pull/8027
Enhancement - Service Account roles: #8051

Use a hidden role for service accounts. It will not appear in ListRoles calls
but internally handled by settings service

https://github.com/owncloud/ocis/pull/8051
https://github.com/owncloud/ocis/pull/8074
Enhancement - Update antivirus service: #8062

We update the antivirus icap client library and optimize the antivirus scanning
service. ANTIVIRUS_ICAP_TIMEOUT is now deprecated and
ANTIVIRUS_ICAP_SCAN_TIMEOUT should be used instead.

ANTIVIRUS_ICAP_SCAN_TIMEOUT supports human durations like 1s, 1m, 1h and
1d.

https://github.com/owncloud/ocis/issues/6764
https://github.com/owncloud/ocis/pull/8062
Enhancement - Remove deprecated environment variables: #8149

We have removed all deprecated environment variables that have been marked for
removal for 5.0.0

https://github.com/owncloud/ocis/issues/8025
https://github.com/owncloud/ocis/pull/8149
Enhancement - Disable the password policy: #8152

We reworked and moved disabling the password policy logic from the reva to the
ocis.

https://github.com/owncloud/ocis/issues/7916
https://github.com/owncloud/ocis/pull/8152
https://github.com/cs3org/reva/pull/4453
Enhancement - Allow restarting multiple uploads with one command: #8287

Allows to restart all commands in a specific state.

https://github.com/owncloud/ocis/pull/8287
Enhancement - Modify the concurrency default: #8309

We have changed the default MaxConcurrency value from 100 to 5 to prevent too
frequent gc runs on low memory systems. We have also bumped reva to pull in the
related changes from there.

https://github.com/owncloud/ocis/issues/8257
https://github.com/owncloud/ocis/pull/8309
https://github.com/cs3org/reva/pull/4485
Enhancement - Improve ocis single binary start: #8320

Removes waiting times when starting the single binary. Improves ocis single
binary boot time from 8s to 2.5s

https://github.com/owncloud/ocis/pull/8320
Enhancement - Use environment variables in yaml config files: #8339

We added the ability to use environment variables in yaml config files. This
allows to use environment variables in the config files of the ocis services
which will be replaced by the actual value of the environment variable at
runtime.

Example:
```
web:
  http:
    addr: ${SOME_HTTP_ADDR}
```
This makes it possible to use the same config file for different environments
without the need to change the config file itself. This is especially useful
when using docker-compose to run the ocis services. It is a common pattern to
create an .env file which contains the environment variables for the
docker-compose file. Now you can use the same .env file to configure the ocis
services.

https://github.com/owncloud/ocis/pull/8339
Enhancement - Increment filenames on upload collisions in secret filedrops: #8340

We have bumped reva to pull in the changes needed for automatically increment
filenames on upload collisions in secret filedrops.

https://github.com/owncloud/ocis/issues/8291
https://github.com/owncloud/ocis/pull/8340
Enhancement - Allow sending multiple user ids in one sse event: #8379

Sending multiple user ids in one sse event is now possible which reduces the
number of sent events.

https://github.com/owncloud/ocis/pull/8379
https://github.com/cs3org/reva/pull/4501
Enhancement - Allow to skip service listing: #8408

The ocis version cmd listed all services by default. This is not always
intended, so we allow to skip the listing of the services by using the
--skip-services flag.

https://github.com/owncloud/ocis/issues/8070
https://github.com/owncloud/ocis/pull/8408
Enhancement - Add a make step to validate the env var annotations: #8436

We have added a make step make check-env-var-annotations to validate the
environment variable annotations in to the environment variables.

https://github.com/owncloud/ocis/issues/8258
https://github.com/owncloud/ocis/pull/8436
Enhancement - Drop the unnecessary grants exists check when creating shares: #8502

We have bumped reva to drop the unnecessary grants exists check when creating
shares.

https://github.com/owncloud/ocis/pull/8502
Enhancement - Update to go 1.22: #8586

We have updated go to version 1.22.

https://github.com/owncloud/ocis/pull/8586
Enhancement - Update web to v8.0.0: #8613

Tags: web

We updated ownCloud Web to v8.0.0. Please refer to the changelog (linked) for
details on the web release.
- Bugfix owncloud/web#9257: Filter out shares without display name
- Bugfix owncloud/web#9529: Shared with action menu label alignment
- Bugfix owncloud/web#9649: Add project space filter
- Bugfix owncloud/web#9663: Respect the open-in-new-tab-config for external apps
- Bugfix owncloud/web#9694: Special characters in username
- Bugfix owncloud/web#9788: Create .space folder if it does not exist
- Bugfix owncloud/web#9799: Link resolving into default app
- Bugfix owncloud/web#9832: Copy quicklinks for webkit navigator
- Bugfix owncloud/web#9843: Fix display path on resources
- Bugfix owncloud/web#9844: Upload space image
- Bugfix owncloud/web#9861: Duplicated file search request
- Bugfix owncloud/web#9873: Tags are no longer editable for a locked file
- Bugfix owncloud/web#9881: Prevent rendering of old/wrong set of resources in search list
- Bugfix owncloud/web#9915: Keep both folders conflict in same-named folders
- Bugfix owncloud/web#9931: Enabling "invite people" for password-protected folder/file
- Bugfix owncloud/web#10010: Displaying full video in their dimensions
- Bugfix owncloud/web#10031: Icon extension mapping
- Bugfix owncloud/web#10065: Logout page after token expiry
- Bugfix owncloud/web#10083: Disable expiration date for alias link (internal)
- Bugfix owncloud/web#10092: Allow empty search query in "in-here" search
- Bugfix owncloud/web#10096: Remove password buttons on input if disabled
- Bugfix owncloud/web#10118: Tilesview has whitespace
- Bugfix owncloud/web#10149: Spaces files list previews cropped
- Bugfix owncloud/web#10149: Spaces overview tile previews zoomed
- Bugfix owncloud/web#10154: Resolving links without drive alias
- Bugfix owncloud/web#10156: Uploading the same files parallel
- Bugfix owncloud/web#10158: GDPR export polling
- Bugfix owncloud/web#10176: Turned off file extensions not always respected
- Bugfix owncloud/web#10179: Space navigate to trash missing
- Bugfix owncloud/web#10182: Make versions panel readonly in viewers and editors
- Bugfix owncloud/web#10220: Loading indicator during conflict dialog
- Bugfix owncloud/web#10227: Configurable concurrent requests
- Bugfix owncloud/web#10232: Skip searchbar preview fetch on reload
- Bugfix owncloud/web#10318: Scrollable account page
- Bugfix owncloud/web#10321: Private link error messages
- Bugfix owncloud/web#10347: Readonly user attributes have no effect on group memberships
- Bugfix owncloud/web#10424: Restore space
- Bugfix owncloud/web#10473: Public link file download
- Bugfix owncloud/web#10489: Wrong share permissions when resharing off
- Bugfix owncloud/web#10514: Indicate shares that are not manageable due to file locking
- Change owncloud/web#2404: Theme handling
- Change owncloud/web#7338: Remove deprecated code
- Change owncloud/web#9653: Keyword Query Language (KQL) search syntax
- Change owncloud/web#9709: DavProperties without namespace
- Enhancement owncloud/web#7317: Make login url configurable
- Enhancement owncloud/web#7497: Permission checks for shares and favorites
- Enhancement owncloud/web#7600: Scroll to newly created folder
- Enhancement owncloud/web#9302: Application unification
- Enhancement owncloud/web#9423: Show local loading spinner in sharing button
- Enhancement owncloud/web#9441: File versions tooltip with absolute date
- Enhancement owncloud/web#9441: Disabling extensions
- Enhancement owncloud/web#9451: Add SSE to get notifications instantly
- Enhancement owncloud/web#9525: Tags form improved
- Enhancement owncloud/web#9527: Don't display confirmation dialog on file deletion
- Enhancement owncloud/web#9531: Personal shares can be shown and hidden
- Enhancement owncloud/web#9552: Upload preparation time
- Enhancement owncloud/web#9561: Indicate processing state
- Enhancement owncloud/web#9566: Display locking information
- Enhancement owncloud/web#9584: Moving share's "set expiration date" function
- Enhancement owncloud/web#9625: Add keyboard navigation to spaces overview
- Enhancement owncloud/web#9627: Add batch actions to spaces
- Enhancement owncloud/web#9671: OcModal set buttons to same width
- Enhancement owncloud/web#9682: Add password policy compatibility
- Enhancement owncloud/web#9691: Password generator for public links
- Enhancement owncloud/web#9696: Added app banner for mobile devices
- Enhancement owncloud/web#9706: Unify sharing expiration date menu items
- Enhancement owncloud/web#9709: New WebDAV implementation in web-client
- Enhancement owncloud/web#9727: Show error if password is on a banned password list
- Enhancement owncloud/web#9768: Embed mode
- Enhancement owncloud/web#9771: Handle postprocessing state via Server Sent Events
- Enhancement owncloud/web#9794: Registering search providers as extension
- Enhancement owncloud/web#9806: Preview image presentation
- Enhancement owncloud/web#9809: Add editors to the application menu
- Enhancement owncloud/web#9814: Registering nav items as extension
- Enhancement owncloud/web#9815: Add new portal into runtime to include footer
- Enhancement owncloud/web#9831: Last modified filter chips
- Enhancement owncloud/web#9847: Provide vendor neutral file icons
- Enhancement owncloud/web#9854: Search query term linking
- Enhancement owncloud/web#9857: Add permission to delete link passwords when password is enforced
- Enhancement owncloud/web#9858: Remove settings icon from searchbar
- Enhancement owncloud/web#9864: Search tags filter chips style aligned
- Enhancement owncloud/web#9884: Enable dark theme on importer
- Enhancement owncloud/web#9890: Create shortcuts
- Enhancement owncloud/web#9905: Manage tags in details panel
- Enhancement owncloud/web#9906: Reorganize "New" menu
- Enhancement owncloud/web#9912: Add media type filter chip
- Enhancement owncloud/web#9940: Display error message for upload to locked folder
- Enhancement owncloud/web#9966: Support more audio formats with correct icon
- Enhancement owncloud/web#10007: Additional languages
- Enhancement owncloud/web#10013: Shared by filter
- Enhancement owncloud/web#10014: Share search filter
- Enhancement owncloud/web#10024: Duplicate space
- Enhancement owncloud/web#10037: Default link permission
- Enhancement owncloud/web#10047: Add explaining contextual helper to spaces overview
- Enhancement owncloud/web#10057: Folder tree creation during upload
- Enhancement owncloud/web#10062: Show webdav information in details view
- Enhancement owncloud/web#10099: Support mandatory filter while listing users
- Enhancement owncloud/web#10102: Registering quick actions as extension
- Enhancement owncloud/web#10104: Create link modal
- Enhancement owncloud/web#10111: Registering right sidebar panels as extension
- Enhancement owncloud/web#10111: File sidebar in viewer and editor apps
- Enhancement owncloud/web#10224: Harmonize AppSwitcher icon colors
- Enhancement owncloud/web#10356: Preview app add reset button for images
https://github.com/owncloud/ocis/pull/8613
https://github.com/owncloud/web/releases/tag/v8.0.0
Enhancement - Update web to v8.0.1: #8626

Tags: web

We updated ownCloud Web to v8.0.1. Please refer to the changelog (linked) for
details on the web release.
- Bugfix owncloud/web#10573: Add link in right sidebar sharing menu, doesn't copy link to clipboard
- Bugfix owncloud/web#10576: WebDav Url in right sidebar is missing dav in path
- Bugfix owncloud/web#10585: Update translations
https://github.com/owncloud/ocis/pull/8626
https://github.com/owncloud/web/releases/tag/v8.0.1
Enhancement - Update reva to 2.19.2: #8638

We update reva to the version 2.19.2
- Bugfix cs3org/reva#4557: Fix ceph build
- Bugfix cs3org/reva#4570: Fix sharing invite on virtual drive
- Bugfix cs3org/reva#4559: Fix graph drive invite
- Bugfix cs3org/reva#4518: Fix an error when lock/unlock a file
- Bugfix cs3org/reva#4566: Fix public link previews
- Bugfix cs3org/reva#4561: Fix Stat() by Path on re-created resource
- Enhancement cs3org/reva#4556: Allow tracing requests by giving util functions a context
- Enhancement cs3org/reva#4545: Extend service account permissions
- Enhancement cs3org/reva#4564: Send file locked/unlocked events
We update reva to the version 2.19.1
- Bugfix cs3org/reva#4534: Fix remove/update share permissions
- Bugfix cs3org/reva#4539: Fix a typo
We update reva to the version 2.19.0
- Bugfix cs3org/reva#4464: Don't check lock grants
- Bugfix cs3org/reva#4516: The sharemanager can now reject grants with resharing permissions
- Bugfix cs3org/reva#4512: Bump dependencies
- Bugfix cs3org/reva#4481: Distinguish failure and node metadata reversal
- Bugfix cs3org/reva#4456: Do not lose revisions when restoring the first revision
- Bugfix cs3org/reva#4472: Fix concurrent access to a map
- Bugfix cs3org/reva#4457: Fix concurrent map access in sharecache
- Bugfix cs3org/reva#4498: Fix Content-Disposition header in dav
- Bugfix cs3org/reva#4461: CORS handling for WebDAV requests fixed
- Bugfix cs3org/reva#4462: Prevent setting container specific permissions on files
- Bugfix cs3org/reva#4479: Fix creating documents in the app provider
- Bugfix cs3org/reva#4474: Make /dav/meta consistent
- Bugfix cs3org/reva#4446: Disallow to delete a file during the processing
- Bugfix cs3org/reva#4517: Fix duplicated items in the sharejail root
- Bugfix cs3org/reva#4473: Decomposedfs now correctly lists sessions
- Bugfix cs3org/reva#4528: Respect IfNotExist option when uploading in cs3 metadata storage
- Bugfix cs3org/reva#4503: Fix an error when move
- Bugfix cs3org/reva#4466: Fix natsjskv store
- Bugfix cs3org/reva#4533: Fix recursive trashcan purge
- Bugfix cs3org/reva#4492: Fix the resource name
- Bugfix cs3org/reva#4463: Fix the resource name
- Bugfix cs3org/reva#4448: Fix truncating existing files
- Bugfix cs3org/reva#4434: Fix the upload postprocessing
- Bugfix cs3org/reva#4469: Handle interrupted uploads
- Bugfix cs3org/reva#4532: Jsoncs3 cache fixes
- Bugfix cs3org/reva#4449: Keep failed processing status
- Bugfix cs3org/reva#4529: We aligned some OCS return codes with oc10
- Bugfix cs3org/reva#4507: Make tusd CORS headers configurable
- Bugfix cs3org/reva#4452: More efficient share jail
- Bugfix cs3org/reva#4476: No need to unmark postprocessing when it was not started
- Bugfix cs3org/reva#4454: Skip unnecessary share retrieval
- Bugfix cs3org/reva#4527: Unify datagateway method handling
- Bugfix cs3org/reva#4530: Drop unnecessary grant exists check
- Bugfix cs3org/reva#4475: Upload session specific processing flag
- Enhancement cs3org/reva#4501: Allow sending multiple user ids in one sse event
- Enhancement cs3org/reva#4485: Modify the concurrency default
- Enhancement cs3org/reva#4526: Configurable s3 put options
- Enhancement cs3org/reva#4453: Disable the password policy
- Enhancement cs3org/reva#4477: Extend ResumePostprocessing event
- Enhancement cs3org/reva#4491: Add filename incrementor for secret filedrops
- Enhancement cs3org/reva#4490: Lazy initialize public share manager
- Enhancement cs3org/reva#4494: Start implementation of a plain posix storage driver
- Enhancement cs3org/reva#4502: Add spaceindex.AddAll()
Changelog for reva 2.18.0 (2023-12-22)

The following sections list the changes in reva 2.18.0 relevant to reva users.
The changes are ordered by importance.
- Bugfix cs3org/reva#4424: Fixed panic in receivedsharecache pkg
- Bugfix cs3org/reva#4425: Fix overwriting files with empty files
- Bugfix cs3org/reva#4432: Fix /dav/meta endpoint for shares
- Bugfix cs3org/reva#4422: Fix disconnected traces
- Bugfix cs3org/reva#4429: Internal link creation
- Bugfix cs3org/reva#4407: Make ocdav return correct oc:spaceid
- Bugfix cs3org/reva#4410: Improve OCM support
- Bugfix cs3org/reva#4402: Refactor upload session
- Enhancement cs3org/reva#4421: Check permissions before adding, deleting or updating shares
- Enhancement cs3org/reva#4403: Add validation to update public share
- Enhancement cs3org/reva#4409: Disable the password policy
- Enhancement cs3org/reva#4412: Allow authentication for nats connections
- Enhancement cs3org/reva#4411: Add option to configure streams non durable
- Enhancement cs3org/reva#4406: Rework cache configuration
- Enhancement cs3org/reva#4414: Track more upload session metrics
Changelog for reva 2.17.0 (2023-12-12)

The following sections list the changes in reva 2.17.0 relevant to reva users.
The changes are ordered by importance.
- Bugfix cs3org/reva#4278: Disable DEPTH infinity in PROPFIND
- Bugfix cs3org/reva#4318: Do not allow moves between shares
- Bugfix cs3org/reva#4290: Prevent panic when trying to move a non-existent file
- Bugfix cs3org/reva#4241: Allow an empty credentials chain in the auth middleware
- Bugfix cs3org/reva#4216: Fix an error message
- Bugfix cs3org/reva#4324: Fix capabilities decoding
- Bugfix cs3org/reva#4267: Fix concurrency issue
- Bugfix cs3org/reva#4362: Fix concurrent lookup
- Bugfix cs3org/reva#4336: Fix definition of "file-editor" role
- Bugfix cs3org/reva#4302: Fix checking of filename length
- Bugfix cs3org/reva#4366: Fix CS3 status code when looking up non existing share
- Bugfix cs3org/reva#4299: Fix HTTP verb of the generate-invite endpoint
- Bugfix cs3org/reva#4249: GetUserByClaim not working with MSAD for claim "userid"
- Bugfix cs3org/reva#4217: Fix missing case for "hide" in UpdateShares
- Bugfix cs3org/reva#4140: Fix missing etag in shares jail
- Bugfix cs3org/reva#4229: Fix destroying the Personal and Project spaces data
- Bugfix cs3org/reva#4193: Fix overwrite a file with an empty file
- Bugfix cs3org/reva#4365: Fix create public share
- Bugfix cs3org/reva#4380: Fix the public link update
- Bugfix cs3org/reva#4250: Fix race condition
- Bugfix cs3org/reva#4345: Fix conversion of custom ocs permissions to roles
- Bugfix cs3org/reva#4134: Fix share jail
- Bugfix cs3org/reva#4335: Fix public shares cleanup config
- Bugfix cs3org/reva#4338: Fix unlock via space API
- Bugfix cs3org/reva#4341: Fix spaceID in meta endpoint response
- Bugfix cs3org/reva#4351: Fix 500 when open public link
- Bugfix cs3org/reva#4352: Fix the tgz mime type
- Bugfix cs3org/reva#4388: Allow UpdateUserShare() to update just the expiration date
- Bugfix cs3org/reva#4214: Always pass adjusted default nats options
- Bugfix cs3org/reva#4291: Release lock when expired
- Bugfix cs3org/reva#4386: Remove dead enable_home config
- Bugfix cs3org/reva#4292: Return 403 when user is not permitted to lock
- Enhancement cs3org/reva#4389: Add audio and location props
- Enhancement cs3org/reva#4337: Check permissions before creating shares
- Enhancement cs3org/reva#4326: Add search mediatype filter
- Enhancement cs3org/reva#4367: Add GGS mime type
- Enhancement cs3org/reva#4194: Add hide flag to shares
- Enhancement cs3org/reva#4358: Add default permissions capability for links
- Enhancement cs3org/reva#4133: Add more metadata to locks
- Enhancement cs3org/reva#4353: Add support for .docxf files
- Enhancement cs3org/reva#4363: Add nats-js-kv store
- Enhancement cs3org/reva#4197: Add the Banned-Passwords List
- Enhancement cs3org/reva#4190: Add the password policies
- Enhancement cs3org/reva#4384: Add a retry postprocessing outcome and event
- Enhancement cs3org/reva#4271: Add search capability
- Enhancement cs3org/reva#4119: Add sse event
- Enhancement cs3org/reva#4392: Add additional permissions to service accounts
- Enhancement cs3org/reva#4344: Add url extension to mime type list
- Enhancement cs3org/reva#4372: Add validation to the public share provider
- Enhancement cs3org/reva#4244: Allow listing reveived shares by service accounts
- Enhancement cs3org/reva#4129: Auto-Accept Shares through ServiceAccounts
- Enhancement cs3org/reva#4374: Handle trashbin file listings concurrently
- Enhancement cs3org/reva#4325: Enforce Permissions
- Enhancement cs3org/reva#4368: Extract log initialization
- Enhancement cs3org/reva#4375: Introduce UploadSessionLister interface
- Enhancement cs3org/reva#4268: Implement sharing roles
- Enhancement cs3org/reva#4160: Improve utils pkg
- Enhancement cs3org/reva#4335: Add sufficient permissions check function
- Enhancement cs3org/reva#4281: Port OCM changes from master
- Enhancement cs3org/reva#4270: Opt out of public link password enforcement
- Enhancement cs3org/reva#4181: Change the variable names for the password policy
- Enhancement cs3org/reva#4256: Rename hidden share variable name
- Enhancement cs3org/reva#3926: Service Accounts
- Enhancement cs3org/reva#4359: Update go-ldap to v3.4.6
- Enhancement cs3org/reva#4170: Update password policies
- Enhancement cs3org/reva#4232: Improve error handling in utils package
https://github.com/owncloud/ocis/pull/8638
https://github.com/owncloud/ocis/pull/8519
https://github.com/owncloud/ocis/pull/8502
https://github.com/owncloud/ocis/pull/8340
https://github.com/owncloud/ocis/pull/8381
https://github.com/owncloud/ocis/pull/8287
https://github.com/owncloud/ocis/pull/8278
https://github.com/owncloud/ocis/pull/8264
https://github.com/owncloud/ocis/pull/8100
https://github.com/owncloud/ocis/pull/8100
https://github.com/owncloud/ocis/pull/8038
https://github.com/owncloud/ocis/pull/8056
https://github.com/owncloud/ocis/pull/7949
https://github.com/owncloud/ocis/pull/7793
https://github.com/owncloud/ocis/pull/7978
https://github.com/owncloud/ocis/pull/7979
https://github.com/owncloud/ocis/pull/7963
https://github.com/owncloud/ocis/pull/7986
https://github.com/owncloud/ocis/pull/7721
https://github.com/owncloud/ocis/pull/7727
https://github.com/owncloud/ocis/pull/7752

ocis - 5.0.0-rc.6

Published by ownclouders 7 months ago

Incremental changes since 5.0.0-rc.5

oCIS

Bugfix - Fix an error when lock/unlock a public shared file: #8472
Bugfix - Fix remove/update share permissions: #8529
Bugfix - Fix graph drive invite: #8538
Bugfix - We now always select the next clients when autoaccepting shares: #8570
Bugfix - Correct the default mapping of roles: #8639
Change - Change the default store for presigned keys to nats-js-kv: #8419
Enhancement - Graphs endpoint for mounting and unmounting shares: #7885
Enhancement - Update to go 1.22: #8586

Reva

Bugfix cs3org/reva#4557: Fix ceph build
Bugfix cs3org/reva#4570: Fix sharing invite on virtual drive
Bugfix cs3org/reva#4559: Fix graph drive invite
Bugfix cs3org/reva#4518: Fix an error when lock/unlock a file
Bugfix cs3org/reva#4566: Fix public link previews
Bugfix cs3org/reva#4561: Fix Stat() by Path on re-created resource
Bugfix cs3org/reva#4534: Fix remove/update share permissions
Bugfix cs3org/reva#4539: Fix a typo
Enhancement cs3org/reva#4556: Allow tracing requests by giving util functions a context
Enhancement cs3org/reva#4545: Extend service account permissions
Enhancement cs3org/reva#4564: Send file locked/unlocked events

Web

Bugfix owncloud/web#10573: Add link in right sidebar sharing menu, doesn't copy link to clipboard
Bugfix owncloud/web#10576: WebDav Url in right sidebar is missing dav in path
Bugfix owncloud/web#10585: Update translations
Bugfix owncloud/web#10514: Indicate shares that are not manageable due to file locking

All Changes in 5.0.0-rc.6

Summary

Bugfix - Fix wrong compile date: #6132
Bugfix - Fix the kql-bleve search: #7290
Bugfix - Bring back the USERS_LDAP_USER_SCHEMA_ID variable: #7312
Bugfix - Do not reset state of received shares when rebuilding the jsoncs3 index: #7319
Bugfix - Deprecate redundant encryptions settings for notification service: #7345
Bugfix - Check school number for duplicates before adding a school: #7351
Bugfix - Don't reload web config: #7369
Bugfix - Delete outdated userlog events: #7410
Bugfix - Set the mountpoint on auto accept: #7460
Bugfix - Fix default language fallback: #7465
Bugfix - GetUserByClaim fixed for Active Directory: #7476
Bugfix - Fix preview request 500 error when made too early: #7502
Bugfix - Fix 403 in docs pipeline: #7509
Bugfix - Fix the auth service env variable: #7523
Bugfix - Token storage config fixed: #7528
Bugfix - Set existing mountpoint on auto accept: #7592
Bugfix - Return 423 status code on tag create: #7596
Bugfix - Fix libre-graph status codes: #7678
Bugfix - Fix unlock via space API: #7726
Bugfix - Disable DEPTH infinity in PROPFIND: #7746
Bugfix - Fix the tgz mime type: #7772
Bugfix - Fix natsjs cache: #7790
Bugfix - Fix search service start: #7795
Bugfix - Fix search response: #7815
Bugfix - The race conditions in tests: #7847
Bugfix - Do not purge expired upload sessions that are still postprocessing: #7859
Bugfix - Fix the public link update: #7862
Bugfix - Fix jwt config of policies service: #7893
Bugfix - Updating logo with new theme structure: #7930
Bugfix - Password policy return code was wrong: #7952
Bugfix - Removed outdated and unused dependency from idp package: #7957
Bugfix - Update permission validation: #7963
Bugfix - Renaming a user to a string with capital letters: #7964
Bugfix - Improve OCM support: #7973
Bugfix - Permissions of a role with duplicate ID: #7976
Bugfix - Non durable streams for sse service: #7986
Bugfix - Fix empty trace ids: #8023
Bugfix - Fix search by containing special characters: #8050
Bugfix - Fix the upload postprocessing: #8117
Bugfix - Disallow to delete a file during the processing: #8132
Bugfix - Fix wrong naming in nats-js-kv registry: #8140
Bugfix - IDP CS3 backend sessions now survive a restart: #8142
Bugfix - Fix patching of language: #8182
Bugfix - Fix search service to not log expected cases as errors: #8200
Bugfix - Updating and reset logo failed: #8211
Bugfix - Cleanup graph/pkg/service/v0/driveitems.go: #8228
Bugfix - Cleanup search/pkg/search/search.go: #8230
Bugfix - Graph/sharedWithMe works for shares from project spaces now: #8233
Bugfix - Fix PATCH/DELETE status code for drives that don't support them: #8235
Bugfix - Fix nats authentication: #8236
Bugfix - Fix the resource name: #8246
Bugfix - Apply role constraints when creating shares via the graph API: #8247
Bugfix - Fix concurrent access to a map: #8269
Bugfix - Fix nats registry: #8281
Bugfix - Remove invalid environment variables: #8303
Bugfix - Fix concurrent shares config: #8317
Bugfix - Fix Content-Disposition header for downloads: #8381
Bugfix - Signed url verification: #8385
Bugfix - Fix an error when move: #8396
Bugfix - Fix extended env parser: #8409
Bugfix - Graph/drives/permission Expiration date update: #8413
Bugfix - Fix search error message: #8444
Bugfix - Graph/sharedWithMe align IDs with webdav response: #8467
Bugfix - Fix an error when lock/unlock a public shared file: #8472
Bugfix - Bump reva to pull in changes to fix recursive trashcan purge: #8505
Bugfix - Fix remove/update share permissions: #8529
Bugfix - Fix graph drive invite: #8538
Bugfix - We now always select the next clients when autoaccepting shares: #8570
Bugfix - Correct the default mapping of roles: #8639
Bugfix - Fix last month search: #31145
Change - Auto-Accept Shares: #7097
Change - Change the default TUS chunk size: #7273
Change - Remove privacyURL and imprintURL from the config: #7938
Change - Remove accessDeniedHelpUrl from the config: #7970
Change - Change the default store for presigned keys to nats-js-kv: #8419
Change - Deprecate sharing cs3 backends: #8478
Enhancement - Add the Banned Passwords List: #4197
Enhancement - Introduce service accounts: #6427
Enhancement - SSE for messaging: #6992
Enhancement - Support spec violating AD FS access token issuer: #7140
Enhancement - Add OCIS_LDAP_BIND_PASSWORD as replacement for LDAP_BIND_PASSWORD: #7176
Enhancement - Keyword Query Language (KQL) search syntax: #7212
Enhancement - Introduce clientlog service: #7217
Enhancement - Proxy uses service accounts for provisioning: #7240
Enhancement - The password policies change request: #7264
Enhancement - Introduce natsjs registry: #7272
Enhancement - Add the password policies: #7285
Enhancement - Add login URL config: #7317
Enhancement - Improve SSE format: #7325
Enhancement - New value auto for NOTIFICATIONS_SMTP_AUTHENTICATION: #7356
Enhancement - Make sse service scalable: #7382
Enhancement - Edit wrong named enves: #7406
Enhancement - Thumbnail generation with image processors: #7409
Enhancement - Set default for Async Uploads to true: #7416
Enhancement - The default language added: #7417
Enhancement - Add "Last modified" filter Chip: #7455
Enhancement - Config for disabling Web extensions: #7486
Enhancement - Store and index metadata: #7490
Enhancement - Add support for audio files to the thumbnails service: #7491
Enhancement - Implement sharing roles: #7524
Enhancement - Add new permission to delete public link password: #7538
Enhancement - Add config to enforce passwords on all public links: #7547
Enhancement - Tika content extraction cleanup for search: #7553
Enhancement - Allow configuring storage registry with envvars: #7554
Enhancement - Add search MediaType filter: #7602
Enhancement - Add Sharing NG endpoints: #7633
Enhancement - Configs for Web embed mode: #7670
Enhancement - Support login page background configuration: #7674
Enhancement - Add new permissions: #7700
Enhancement - Add preferred language to user settings: #7720
Enhancement - Add user filter startswith and contains: #7739
Enhancement - Allow configuring additional routes: #7741
Enhancement - Default link permission config: #7783
Enhancement - Add banned password list to the default deployments: #7784
Enhancement - Update to go 1.21: #7794
Enhancement - Add Sharing NG list permissions endpoint: #7805
Enhancement - Add user list requires filter config: #7866
Enhancement - Retry antivirus postprocessing step in case of problems: #7874
Enhancement - Add validation to public share provider: #7877
Enhancement - Graphs endpoint for mounting and unmounting shares: #7885
Enhancement - Store and index metadata: #7886
Enhancement - Allow regular users to list other users: #7887
Enhancement - Add edit public share to sharing NG: #7908
Enhancement - Add cli commands for trash-bin: #7917
Enhancement - Add validation update public share: #7978
Enhancement - Allow inmemory nats-js-kv stores: #7979
Enhancement - Disable the password policy: #7985
Enhancement - Use kv store in natsjs registry: #7987
Enhancement - Allow authentication nats connections: #7989
Enhancement - Add RED metrics to the metrics endpoint: #7994
Enhancement - Add ocm and sciencemesh services: #7998
Enhancement - Make nats-js-kv the default registry: #8011
Enhancement - Service Account roles: #8051
Enhancement - Update antivirus service: #8062
Enhancement - Remove deprecated environment variables: #8149
Enhancement - Disable the password policy: #8152
Enhancement - Allow restarting multiple uploads with one command: #8287
Enhancement - Modify the concurrency default: #8309
Enhancement - Improve ocis single binary start: #8320
Enhancement - Use environment variables in yaml config files: #8339
Enhancement - Increment filenames on upload collisions in secret filedrops: #8340
Enhancement - Allow sending multiple user ids in one sse event: #8379
Enhancement - Allow to skip service listing: #8408
Enhancement - Add a make step to validate the env var annotations: #8436
Enhancement - Drop the unnecessary grants exists check when creating shares: #8502
Enhancement - Update to go 1.22: #8586
Enhancement - Update web to v8.0.0: #8613
Enhancement - Update web to v8.0.1: #8626
Enhancement - Update reva to 2.19.2: #8638

Details

Bugfix - Fix wrong compile date: #6132

We fixed that current date is always printed.

https://github.com/owncloud/ocis/issues/6124
https://github.com/owncloud/ocis/pull/6132
Bugfix - Fix the kql-bleve search: #7290

We fixed the issue when 500 on searches that contain ":". Added the characters
escaping according to https://blevesearch.com/docs/Query-String-Query/

https://github.com/owncloud/ocis/issues/7282
https://github.com/owncloud/ocis/pull/7290
Bugfix - Bring back the USERS_LDAP_USER_SCHEMA_ID variable: #7312

We reintroduced the USERS_LDAP_USER_SCHEMA_ID variable which was accidently
removed from the users service with the 4.0.0 release.

https://github.com/owncloud/ocis/issues/7312
https://github.com/owncloud/ocis-charts/issues/397
Bugfix - Do not reset state of received shares when rebuilding the jsoncs3 index: #7319

We fixed a problem with the "ocis migrate rebuild-jsoncs3-indexes" command which
reset the state of received shares to "pending".

https://github.com/owncloud/ocis/issues/7319
Bugfix - Deprecate redundant encryptions settings for notification service: #7345

The values tls and ssl for the smtp_encryption configuration setting are
duplicates of starttls and ssltls. They have been marked as deprecated. A
warning will be logged when they are still used. Please use starttls instead
for tls and ssltls instead of `ssl.

https://github.com/owncloud/ocis/issues/7345
Bugfix - Check school number for duplicates before adding a school: #7351

We fixed an issue that allowed to create two schools with the same school number

https://github.com/owncloud/enterprise/issues/6051
https://github.com/owncloud/ocis/pull/7351
Bugfix - Don't reload web config: #7369

When requesting config.json file from the server, web service would reload the
file if a path is set. This will remove config entries set via Envvar. Since we
want to have the possiblity to set configuration from both sources we removed
the reading from file. The file will still be loaded on service startup.

https://github.com/owncloud/ocis/pull/7369
Bugfix - Delete outdated userlog events: #7410

Userlog will now delete events when the user has no longer access to the
underlying resource

https://github.com/owncloud/ocis/pull/7410
Bugfix - Set the mountpoint on auto accept: #7460

On shares auto accept set a mountpoint with same logic as ocs handler

https://github.com/owncloud/ocis/pull/7460
Bugfix - Fix default language fallback: #7465

Add the default language for the webui, the settings, userlog and notification
service.

https://github.com/owncloud/ocis/issues/7465
Bugfix - GetUserByClaim fixed for Active Directory: #7476

The reva ldap backend for the users and groups service did not hex escape binary
uuids in LDAP filter correctly this could cause problems in Active Directory
setups for services using the GetUserByClaim CS3 request with claim "userid".

https://github.com/owncloud/ocis/issues/7469
https://github.com/owncloud/ocis/pull/7476
Bugfix - Fix preview request 500 error when made too early: #7502

Fix the status code and message when a thumbnail request is made too early.

https://github.com/owncloud/ocis/issues/7502
https://github.com/owncloud/ocis/pull/7507
Bugfix - Fix 403 in docs pipeline: #7509

Docs pipeline was not routed through our proxies which could lead to requests
being blacklisted

https://github.com/owncloud/ocis/issues/7509
https://github.com/owncloud/ocis/pull/7511
Bugfix - Fix the auth service env variable: #7523

We the auth service env variable to the service specific name. Before it was
configurable via AUTH_MACHINE_JWT_SECRET and now is configurable via
AUTH_SERVICE_JWT_SECRET.

https://github.com/owncloud/ocis/pull/7523
Bugfix - Token storage config fixed: #7528

The token storage config in the config.json for web was missing when it was set
to false.

https://github.com/owncloud/ocis/issues/7462
https://github.com/owncloud/ocis/pull/7528
Bugfix - Set existing mountpoint on auto accept: #7592

When already having a share for a specific resource, auto accept would use
custom mountpoints which lead to other errors. Now auto-accept is using the
existing mountpoint of a share.

https://github.com/owncloud/ocis/pull/7592
Bugfix - Return 423 status code on tag create: #7596

When a file is locked, return 423 status code instead 500 on tag create

https://github.com/owncloud/ocis/pull/7596
Bugfix - Fix libre-graph status codes: #7678

Creating group: https://owncloud.dev/libre-graph-api/#/groups/CreateGroup
changed: 200 -> 201

Creating users: https://owncloud.dev/libre-graph-api/#/users/CreateUser changed:
200 -> 201

Export GDPR: https://owncloud.dev/libre-graph-api/#/user/ExportPersonalData
changed: 201 -> 202

https://github.com/owncloud/ocis/issues/7678
https://github.com/owncloud/ocis/pull/7705
Bugfix - Fix unlock via space API: #7726

We fixed a bug that caused Error 500 when user try to unlock file using fileid
The handleSpaceUnlock has been added

https://github.com/owncloud/ocis/issues/7708
https://github.com/owncloud/ocis/pull/7726
https://github.com/cs3org/reva/pull/4338
Bugfix - Disable DEPTH infinity in PROPFIND: #7746

We fixed the Disabled DEPTH infinity in PROPFIND for: Personal
/remote.php/dav/files/admin Public link share
/remote.php/dav/public-files/ Trashbin
/remote.php/dav/spaces/trash-bin/

https://github.com/owncloud/ocis/issues/7359
https://github.com/owncloud/ocis/pull/7746
https://github.com/cs3org/reva/pull/4278
Bugfix - Fix the tgz mime type: #7772

We have fixed a bug when the tgz mime type was not "application/gzip"

https://github.com/owncloud/ocis/issues/7744
https://github.com/owncloud/ocis/pull/7772
Bugfix - Fix natsjs cache: #7790

The nats-js cache was not working. It paniced and wrote a lot of error logs.
Both is fixed now.

https://github.com/owncloud/ocis/pull/7790
Bugfix - Fix search service start: #7795

The search service would sometimes not start correctly because config values
are overwritten by default configuration.

https://github.com/owncloud/ocis/pull/7795
Bugfix - Fix search response: #7815

We fixed the search response code from 500 to 400 when the request is invalid

https://github.com/owncloud/ocis/issues/7812
https://github.com/owncloud/ocis/pull/7815
Bugfix - The race conditions in tests: #7847

We fixed the race conditions in tests.

https://github.com/owncloud/ocis/issues/7846
https://github.com/owncloud/ocis/pull/7847
Bugfix - Do not purge expired upload sessions that are still postprocessing: #7859

https://github.com/owncloud/ocis/pull/7859
https://github.com/owncloud/ocis/pull/7958
Bugfix - Fix the public link update: #7862

We fixed a bug when normal users can update the public link to delete its
password if permission is not sent in data.

https://github.com/owncloud/ocis/issues/7821
https://github.com/owncloud/ocis/pull/7862
Bugfix - Fix jwt config of policies service: #7893

Removes jwt config of policies service

https://github.com/owncloud/ocis/pull/7893
Bugfix - Updating logo with new theme structure: #7930

Updating and resetting the logo when using the new theme.json structure in Web
has been fixed.

https://github.com/owncloud/ocis/pull/7930
Bugfix - Password policy return code was wrong: #7952

We fixed the status code on SharingNG update permissions for public shares.

https://github.com/owncloud/ocis/pull/7952
Bugfix - Removed outdated and unused dependency from idp package: #7957

We've removed the outdated and apparently unused dependency cldr from the
kpop dependency inside the idp web ui. This resolves a security issue around
an oudated xmldom package version, originating from said kpop library.

https://github.com/owncloud/ocis/issues/7957
https://github.com/owncloud/ocis/pull/7988
Bugfix - Update permission validation: #7963

We fixed a bug where the permission validation was not working correctly.

https://github.com/owncloud/ocis/pull/7963
https://github.com/cs3org/reva/pull/4405
Bugfix - Renaming a user to a string with capital letters: #7964

We fixed the issue that led to correct update but the 404 response code when
renaming an existing user to a string with capital letters.

https://github.com/owncloud/ocis/pull/7964
Bugfix - Improve OCM support: #7973

We improved functionality of the OCM support.

https://github.com/owncloud/ocis/pull/7973
Bugfix - Permissions of a role with duplicate ID: #7976

We remove the redundant permissions of a role with duplicate ID.

https://github.com/owncloud/ocis/issues/7931
https://github.com/owncloud/ocis/pull/7976
Bugfix - Non durable streams for sse service: #7986

Configure sse streams to be non-durable. This functionality is not needed for
the sse service

https://github.com/owncloud/ocis/pull/7986
Bugfix - Fix empty trace ids: #8023

We changed the default tracing to produce non-empty traceids.

https://github.com/owncloud/ocis/pull/8023
https://github.com/owncloud/ocis/pull/8017
Bugfix - Fix search by containing special characters: #8050

As the OData query parser interprets characters like '@' or '-' in a special
way. Search request for users or groups needs to be quoted. We fixed the
libregraph users and groups endpoints to handle quoted search terms correctly.

https://github.com/owncloud/ocis/issues/7990
https://github.com/owncloud/ocis/pull/8050
https://github.com/owncloud/ocis/pull/8035
Bugfix - Fix the upload postprocessing: #8117

We fixed the upload postprocessing when the destination file does not exist
anymore.

https://github.com/owncloud/ocis/issues/7909
https://github.com/owncloud/ocis/pull/8117
Bugfix - Disallow to delete a file during the processing: #8132

We want to disallow deleting a file during the processing to prevent collecting
the orphan uploads.

https://github.com/owncloud/ocis/issues/8127
https://github.com/owncloud/ocis/pull/8132
https://github.com/cs3org/reva/pull/4446
Bugfix - Fix wrong naming in nats-js-kv registry: #8140

Registers the registry under the correct name

https://github.com/owncloud/ocis/pull/8140
Bugfix - IDP CS3 backend sessions now survive a restart: #8142

We now correctly reinitialize the CS3 backend session after the IDP service has
been restarted.

https://github.com/owncloud/ocis/pull/8142
Bugfix - Fix patching of language: #8182

User would not be able to patch their preferred language when the ldap backend
is set to read-only. This makes no sense as language is stored elsewhere.

https://github.com/owncloud/ocis/pull/8182
Bugfix - Fix search service to not log expected cases as errors: #8200

We changed the search service to not log cases where resources that were about
to be indexed can no longer be found. Those are expected cases, e.g. when the
file in question has already been deleted or renamed meanwhile.

https://github.com/owncloud/ocis/pull/8200
Bugfix - Updating and reset logo failed: #8211

We fixed a bug when admin tried to update or reset the logo.

https://github.com/owncloud/ocis/issues/8101
https://github.com/owncloud/ocis/pull/8211
Bugfix - Cleanup graph/pkg/service/v0/driveitems.go: #8228

Main fix is using proto getters to avoid panics. But some other code
improvements were also done

https://github.com/owncloud/ocis/pull/8228
Bugfix - Cleanup search/pkg/search/search.go: #8230

Now uses proto getters to avoid panics.

https://github.com/owncloud/ocis/pull/8230
Bugfix - Graph/sharedWithMe works for shares from project spaces now: #8233

We fixed a bug in the 'graph/v1beta1/me/drive/sharedWithMe' endpoint that caused
an error response when the user received shares from project spaces.
Additionally the endpoint now behaves more graceful in cases where the
displayname of the owner or creator of a share or shared resource couldn't be
resolved.

https://github.com/owncloud/ocis/issues/8027
https://github.com/owncloud/ocis/issues/8215
https://github.com/owncloud/ocis/pull/8233
Bugfix - Fix PATCH/DELETE status code for drives that don't support them: #8235

Updating and Deleting the virtual drives for shares is currently not supported.
Instead of returning a generic 500 status we return a 405 response now.

https://github.com/owncloud/ocis/issues/7881
https://github.com/owncloud/ocis/pull/8235
Bugfix - Fix nats authentication: #8236

Fixes nats authentication for registry/events/stores

https://github.com/owncloud/ocis/pull/8236
Bugfix - Fix the resource name: #8246

We fixed a problem where after renaming resource as sharer the receiver see a
new name.

https://github.com/owncloud/ocis/issues/8242
https://github.com/owncloud/ocis/pull/8246
https://github.com/cs3org/reva/pull/4463
Bugfix - Apply role constraints when creating shares via the graph API: #8247

We fixed a bug in the graph API for creating and updating shares so that
Spaceroot specific roles like 'Manager' and 'Co-owner' can no longer be assigned
for shares on files or directories.

https://github.com/owncloud/ocis/issues/8131
https://github.com/owncloud/ocis/pull/8247
Bugfix - Fix concurrent access to a map: #8269

We fixed the race condition that led to concurrent map access in a publicshare
manager.

https://github.com/owncloud/ocis/issues/8255
https://github.com/owncloud/ocis/pull/8269
https://github.com/cs3org/reva/pull/4472
Bugfix - Fix nats registry: #8281

The nats registry would behave badly when configuring nats-js-kv via envvar.
Reason is the way go-micro initializes. It took 5 developers to find the issue
and the fix so the details cannot be shared here. Just accept that it is working
now

https://github.com/owncloud/ocis/pull/8281
Bugfix - Remove invalid environment variables: #8303

We have removed two spaces related environment variables (whether project spaces
and the share jail are enabled) and hardcoded the only allowed options. Misusing
those variables would have resulted in invalid config.

https://github.com/owncloud/ocis/pull/8303
Bugfix - Fix concurrent shares config: #8317

We fixed setting the config for concurrent web requests, which did not work as
expected before.

https://github.com/owncloud/ocis/pull/8317
Bugfix - Fix Content-Disposition header for downloads: #8381

We have fixed a bug that caused downloads to fail on Chromebased browsers when
the filename contained special characters.

https://github.com/owncloud/ocis/issues/8361
https://github.com/owncloud/ocis/pull/8381
https://github.com/cs3org/reva/pull/4498
Bugfix - Signed url verification: #8385

Signed urls now expire properly

https://github.com/owncloud/ocis/pull/8385
Bugfix - Fix an error when move: #8396

We fixed a bug that caused Internal Server Error when move using destination id

https://github.com/owncloud/ocis/issues/6739
https://github.com/owncloud/ocis/pull/8396
https://github.com/cs3org/reva/pull/4503
Bugfix - Fix extended env parser: #8409

The extended envvar parser would be angry if there are two os.Getenv in the
same line. We fixed this.

https://github.com/owncloud/ocis/pull/8409
Bugfix - Graph/drives/permission Expiration date update: #8413

We fixed a bug in the Update sharing permission the expiration dates can't be
removed from link permissions.

https://github.com/owncloud/ocis/issues/8405
https://github.com/owncloud/ocis/pull/8413
Bugfix - Fix search error message: #8444

We fixed an error message returned when the search request is invalid

https://github.com/owncloud/ocis/issues/8442
https://github.com/owncloud/ocis/pull/8444
Bugfix - Graph/sharedWithMe align IDs with webdav response: #8467

The IDs of the driveItems returned by the 'graph/v1beta1/me/drive/sharedWithMe'
endpoint are now aligned with the IDs returned in the PROPFIND response of the
webdav service.

https://github.com/owncloud/ocis/issues/8420
https://github.com/owncloud/ocis/issues/8080
https://github.com/owncloud/ocis/pull/8467
Bugfix - Fix an error when lock/unlock a public shared file: #8472

We fixed a bug when anonymous user with viewer role in public link of a folder
can lock/unlock a file inside it

https://github.com/owncloud/ocis/issues/7785
https://github.com/owncloud/ocis/pull/8472
Bugfix - Bump reva to pull in changes to fix recursive trashcan purge: #8505

We have fixed a bug in the trashcan purge process that did not delete folder
structures recursively.

https://github.com/owncloud/ocis/issues/8473
https://github.com/owncloud/ocis/pull/8505
https://github.com/cs3org/reva/pull/4533
Bugfix - Fix remove/update share permissions: #8529

This is a workaround that should prevent removing or changing the share
permissions when the file is locked. These limitations have to be removed after
the wopi server will be able to unlock the file properly. These limitations are
not spread on the files inside the shared folder.

https://github.com/owncloud/ocis/issues/8273
https://github.com/owncloud/ocis/pull/8529
https://github.com/cs3org/reva/pull/4534
Bugfix - Fix graph drive invite: #8538

We fixed the issue when sharing of personal drive is allowed via graph

https://github.com/owncloud/ocis/issues/8494
https://github.com/owncloud/ocis/pull/8538
Bugfix - We now always select the next clients when autoaccepting shares: #8570

https://github.com/owncloud/ocis/pull/8570
Bugfix - Correct the default mapping of roles: #8639

The default config for the OIDC role mapping was incorrect. Lightweight users
are now assignable.

https://github.com/owncloud/ocis/pull/8639
Bugfix - Fix last month search: #31145

We've fixed the last month search edge case when currently is 31-th.

Https://github.com/owncloud/ocis/issues/7629
https://github.com/owncloud/ocis/pull/7742

https://github.com/golang/go/issues/31145
The
issue
is
related
to
the
build-in
package
behavior
Change - Auto-Accept Shares: #7097

Automatically accepts shares. This feature is active by default and can be
deactivated via the environment variable FRONTEND_AUTO_ACCEPT_SHARES.

https://github.com/owncloud/ocis/pull/7097
Change - Change the default TUS chunk size: #7273

We changed the default TUS chunk size from 100MB to 10MB. You can still use the
old value by configuring it in your deployment.

https://github.com/owncloud/ocis/pull/7273
Change - Remove privacyURL and imprintURL from the config: #7938

We've removed the option privacyURL and imprintURL from the config, since other
clients weren't able to consume these. In order to be accessible by other
clients, not just Web, those should be configured via the theme.json file.

https://github.com/owncloud/ocis/pull/7938/
Change - Remove accessDeniedHelpUrl from the config: #7970

We've removed the option accessDeniedHelpUrl from the config, since other
clients weren't able to consume it. In order to be accessible by other clients,
not just Web, it should be configured via the theme.json file.

https://github.com/owncloud/ocis/pull/7970
Change - Change the default store for presigned keys to nats-js-kv: #8419

We wrapped the store service in a micro store implementation and changed the
default to the built-in NATS instance.

https://github.com/owncloud/ocis/pull/8419
Change - Deprecate sharing cs3 backends: #8478

The cs3 user and public sharing drivers have already been replaced by
jsoncs3. We now mark them as deprecated in preparation to kill a lot of unused
code in reva.

https://github.com/owncloud/ocis/pull/8478
Enhancement - Add the Banned Passwords List: #4197

Added an option to enable a password check against a banned passwords list
OCIS-3809

https://github.com/cs3org/reva/pull/4197
https://github.com/owncloud/ocis/pull/7314
Enhancement - Introduce service accounts: #6427

Introduces service accounts to avoid impersonating users in async processes

https://github.com/owncloud/ocis/issues/5550
https://github.com/owncloud/ocis/pull/6427
Enhancement - SSE for messaging: #6992

So far, sse has only been used to exchange messages between the server and the
client. In order to be able to send more content to the client, we have moved
the endpoint to a separate service and are now also using it for other
notifications like:
- notify postprocessing state changes.
- notify file locking and unlocking.
https://github.com/owncloud/ocis/pull/6992
Enhancement - Support spec violating AD FS access token issuer: #7140

AD FS /adfs/.well-known/openid-configuration has an optional
access_token_issuer which, in violation of the OpenID Connect spec, takes
precedence over issuer.

https://github.com/owncloud/ocis/pull/7140
Enhancement - Add OCIS_LDAP_BIND_PASSWORD as replacement for LDAP_BIND_PASSWORD: #7176

The enviroment variable OCIS_LDAP_BIND_PASSWORD was added to be more
consistent with all other global LDAP variables.

LDAP_BIND_PASSWORD is deprecated now and scheduled for removal with the 5.0.0
release.

We also deprecated LDAP_USER_SCHEMA_ID_IS_OCTETSTRING for removal with 5.0.0.
The replacement for it is OCIS_LDAP_USER_SCHEMA_ID_IS_OCTETSTRING.

https://github.com/owncloud/ocis/issues/7176
Enhancement - Keyword Query Language (KQL) search syntax: #7212

We've introduced support for
KQL
as the default oCIS search query language.

Simple queries:
- tag:golden tag:"silver"
- name:file.txt name:"file.docx"
- content:ahab content:"captain aha*"
Date/-range queries
- Mtime:"2023-09-05T08:42:11.23554+02:00"
- Mtime>"2023-09-05T08:42:11.23554+02:00"
- Mtime>="2023-09-05T08:42:11.23554+02:00"
- Mtime<"2023-09-05T08:42:11.23554+02:00"
- Mtime<="2023-09-05T08:42:11.23554+02:00"
- Mtime:today - range: start of today till end of today
- Mtime:yesterday - range: start of yesterday till end of yesterday
- Mtime:"this week" - range: start of this week till end of this week
- Mtime:"this month" - range: start of this month till end of this month
- Mtime:"last month" - range: start of last month till end of last month
- Mtime:"this year" - range: start of this year till end of this year
- Mtime:"last year" - range: start of last year till end of last year
Conjunctive normal form queries:
- tag:golden AND tag:"silver, tag:golden OR tag:"silver, tag:golden NOT tag:"silver
- (tag:book content:ahab*), tag:(book pdf)
Complex queries:
- (name:"moby di*" OR tag:bestseller) AND tag:book NOT tag:read
https://github.com/owncloud/ocis/issues/7042
https://github.com/owncloud/ocis/issues/7179
https://github.com/owncloud/ocis/issues/7114
https://github.com/owncloud/web/issues/9636
https://github.com/owncloud/web/issues/9646
https://github.com/owncloud/ocis/pull/7212
https://github.com/owncloud/ocis/pull/7043
https://github.com/owncloud/ocis/pull/7247
https://github.com/owncloud/ocis/pull/7248
https://github.com/owncloud/ocis/pull/7254
https://github.com/owncloud/ocis/pull/7262
https://github.com/owncloud/web/pull/9653
https://github.com/owncloud/web/pull/9672
Enhancement - Introduce clientlog service: #7217

Add the clientlog service which will send machine readable notifications to
clients

https://github.com/owncloud/ocis/pull/7217
Enhancement - Proxy uses service accounts for provisioning: #7240

The proxy service now uses a service account for provsioning task, like role
assignment and user auto-provisioning. This cleans up some technical debt that
required us to mint reva tokes inside the proxy service.

https://github.com/owncloud/ocis/issues/5550
https://github.com/owncloud/ocis/pull/7240
Enhancement - The password policies change request: #7264

The variables renaming OCIS-3767

https://github.com/owncloud/ocis/pull/7264
Enhancement - Introduce natsjs registry: #7272

Introduce a registry based on the natsjs object store

https://github.com/owncloud/ocis/issues/7272
https://github.com/owncloud/ocis/pull/7487
Enhancement - Add the password policies: #7285

Add the password policies OCIS-3767

https://github.com/owncloud/ocis/pull/7285
https://github.com/owncloud/ocis/pull/7194
https://github.com/cs3org/reva/pull/4147
Enhancement - Add login URL config: #7317

Introduce a config to set the web login URL via WEB_OPTION_LOGIN_URL.

https://github.com/owncloud/ocis/pull/7317
Enhancement - Improve SSE format: #7325

Improve format of sse notifications

https://github.com/owncloud/ocis/pull/7325
Enhancement - New value auto for NOTIFICATIONS_SMTP_AUTHENTICATION: #7356

This cause the notifications service to automatically pick a suitable
authentication method to use with the configured SMTP server. This is also the
new default behavior. The previous default was to not use authentication at all.

https://github.com/owncloud/ocis/issues/7356
Enhancement - Make sse service scalable: #7382

When running multiple sse instances some events would not be reported to the
user. This is fixed.

https://github.com/owncloud/ocis/pull/7382
Enhancement - Edit wrong named enves: #7406

Checked and changed the envvars specified in the task and also removed those
that are no longer used.

https://github.com/owncloud/ocis/pull/7406
Enhancement - Thumbnail generation with image processors: #7409

Thumbnails can now be changed during creation, previously the images were always
scaled to fit the given frame, but it could happen that the images were cut off
because they could not be placed better due to the aspect ratio.

This pr introduces the possibility of specifying how the behavior should be,
following processors are available
- resize
- fit
- fill
- thumbnail
The processor can be applied by adding the processor query param to the request,
e.g. processor=fit, processor=fill, ...

To find out more how the individual processors work please read
https://github.com/disintegration/imaging

If no processor is provided it behaves the same as before (resize for gif's and
thumbnail for all other)

https://github.com/owncloud/enterprise/issues/6057
https://github.com/owncloud/ocis/issues/5179
https://github.com/owncloud/web/issues/7728
https://github.com/owncloud/ocis/pull/7409
Enhancement - Set default for Async Uploads to true: #7416

Async Uploads are meanwhile standard and needed for multiple features. Hence we
default them to true

https://github.com/owncloud/ocis/pull/7416
Enhancement - The default language added: #7417

The ability of configuration the default language has been added to the setting
service.

https://github.com/owncloud/enterprise/issues/5915
https://github.com/owncloud/ocis/pull/7417
Enhancement - Add "Last modified" filter Chip: #7455

Add "Last modified" filter Chip

https://github.com/owncloud/ocis/issues/7431
https://github.com/owncloud/ocis/issues/7551
https://github.com/owncloud/ocis/pull/7455
Enhancement - Config for disabling Web extensions: #7486

A new config for disabling specific Web extensions via their id has been added.

https://github.com/owncloud/web/issues/8524
https://github.com/owncloud/ocis/pull/7486
Enhancement - Store and index metadata: #7490

Audio metadata is now extracted and stored by the search service. It is
available for driveItems in a folder listing using the Graph API.

https://github.com/owncloud/ocis/pull/7490
Enhancement - Add support for audio files to the thumbnails service: #7491

The thumbnails service can now extract artwork from audio files (mp3, ogg, flac)
and render it just like any other image.

https://github.com/owncloud/ocis/pull/7491
Enhancement - Implement sharing roles: #7524

Implement libre graph sharing roles

https://github.com/owncloud/ocis/issues/7418
https://github.com/owncloud/ocis/pull/7524
Enhancement - Add new permission to delete public link password: #7538

Users with this new permission can now delete passwords on read-only public
links. The permission is added to the default roles "Admin" and "Space Admin".

https://github.com/owncloud/ocis/issues/7538
https://github.com/owncloud/ocis/pull/7538
https://github.com/cs3org/reva/pull/4270
Enhancement - Add config to enforce passwords on all public links: #7547

We added the config OCIS_SHARING_PUBLIC_SHARE_MUST_HAVE_PASSWORD to enforce
passwords on all public shares.

https://github.com/owncloud/ocis/issues/7539
https://github.com/owncloud/ocis/pull/7547
Enhancement - Tika content extraction cleanup for search: #7553

So far it has not been possible to determine whether the content for search
should be cleaned up of 'stop words' or not. Stop words are filling words like
"I, you, have, am" etc and defined by the search engine.

The behaviour can now be set with the newly introduced settings option
SEARCH_EXTRACTOR_TIKA_CLEAN_STOP_WORDS=false which is enabled by default.

In addition, the stop word cleanup is no longer as aggressive and now ignores
numbers, urls, basically everything except the defined stop words.

https://github.com/owncloud/ocis/issues/6674
https://github.com/owncloud/ocis/pull/7553
Enhancement - Allow configuring storage registry with envvars: #7554

Introduced new envvars to configure the storage registry in the gateway service

https://github.com/owncloud/ocis/pull/7554
Enhancement - Add search MediaType filter: #7602

Add filter MediaType filter shortcuts to search for specific document types. For
example, a search query mediatype:documents will search for files with the
following mimetypes:

Application/msword
MimeType:application/vnd.openxmlformats-officedocument.wordprocessingml.document
MimeType:application/vnd.oasis.opendocument.text MimeType:text/plain
MimeType:text/markdown MimeType:application/rtf
MimeType:application/vnd.apple.pages

Besides the document shorthand, it also contains following:
- file
- folder
- document
- spreadsheet
- presentation
- pdf
- image
- video
- audio
- archive
File

Folder

Document:

Application/msword
application/vnd.openxmlformats-officedocument.wordprocessingml.document
application/vnd.oasis.opendocument.text text/plain text/markdown application/rtf
application/vnd.apple.pages

Spreadsheet:

Application/vnd.ms-excel application/vnd.oasis.opendocument.spreadsheet text/csv
application/vnd.openxmlformats-officedocument.spreadsheetml.sheet
application/vnd.oasis.opendocument.spreadsheet application/vnd.apple.numbers

Presentations:

Application/vnd.ms-powerpoint
application/vnd.openxmlformats-officedocument.presentationml.presentation
application/vnd.oasis.opendocument.presentation application/vnd.apple.keynote

PDF

Application/pdf

Image:

Image/*

Video:

Video/*

Audio:

Audio/*

Archive (zip ...):

Application/zip application/x-tar application/x-gzip application/x-7z-compressed
application/x-rar-compressed application/x-bzip2 application/x-bzip
application/x-tgz

https://github.com/owncloud/ocis/issues/7432
https://github.com/owncloud/ocis/pull/7602
Enhancement - Add Sharing NG endpoints: #7633

We've added new sharing ng endpoints to the graph beta api. The following
endpoints are added:
- /v1beta1/me/drive/sharedByMe
- /v1beta1/me/drive/sharedWithMe
- /v1beta1/roleManagement/permissions/roleDefinitions
- /v1beta1/roleManagement/permissions/roleDefinitions/{roleID}
- /v1beta1/drives/{drive-id}/items/{item-id}/createLink (create a sharing link)
https://github.com/owncloud/ocis/issues/7436
https://github.com/owncloud/ocis/issues/6993
https://github.com/owncloud/ocis/pull/7633
https://github.com/owncloud/ocis/pull/7686
https://github.com/owncloud/ocis/pull/7684
https://github.com/owncloud/ocis/pull/7683
https://github.com/owncloud/ocis/pull/7239
https://github.com/owncloud/ocis/pull/7687
https://github.com/owncloud/ocis/pull/7751
https://github.com/owncloud/libre-graph-api/pull/112
Enhancement - Configs for Web embed mode: #7670

New configs for the Web embed mode have been added:
- enabled Defines if embed mode is enabled.
- target Defines how Web is being integrated when running in embed mode.
- messagesOrigin Defines a URL under which Web can be integrated via iFrame.
- delegateAuthentication Defines whether Web should require authentication to be done by the parent application.
- delegateAuthenticationOrigin Defines the host to validate the message event origin against when running Web in 'embed' mode.
https://github.com/owncloud/web/issues/9768
https://github.com/owncloud/ocis/pull/7670
Enhancement - Support login page background configuration: #7674

Introduce a new environment variable IDP_LOGIN_BACKGROUND_URL that overrides
the default background image of the IDP login page when present.

https://github.com/owncloud/ocis/issues/7674
https://github.com/owncloud/ocis/pull/7900
Enhancement - Add new permissions: #7700

Adds new permissions to admin/spaceadmin/user roles - Favorites.List allows /
denies the Favorites Listing Request - Favorites.Write is implemented to be
enforced on marking/unmark files as favouritesShare - Shares.Write permission
denies / allows sharing completely for a user on all share CUD requests. (User,
Group)

https://github.com/owncloud/ocis/pull/7700
Enhancement - Add preferred language to user settings: #7720

We have added the preferred language to the libre-graph api & added endpoints
for that to ocis.

https://github.com/owncloud/ocis/issues/5455
https://github.com/owncloud/ocis/pull/7720
https://github.com/owncloud/libre-graph-api/pull/130
Enhancement - Add user filter startswith and contains: #7739

We add two new filters to the user list endpoint. The startswith filter allows
to filter users by the beginning of their name. The contains filter allows to
filter users by a substring of their name.

https://github.com/owncloud/ocis/issues/5486
https://github.com/owncloud/ocis/pull/7739
Enhancement - Allow configuring additional routes: #7741

Allows adding custom routes to the ocis proxy. This enables custom ocis
extensions.

https://github.com/owncloud/ocis/pull/7741
Enhancement - Default link permission config: #7783

A new config for default link permissions that is being announced via
capabilities has been added. It defaults to 1 (= public link with viewer
permissions).

https://github.com/owncloud/web/issues/9919
https://github.com/owncloud/ocis/pull/7783
Enhancement - Add banned password list to the default deployments: #7784

We add banned password list to the default deployments

https://github.com/owncloud/ocis/issues/7724
https://github.com/owncloud/ocis/pull/7784
Enhancement - Update to go 1.21: #7794

We updated to go 1.21.

https://github.com/owncloud/ocis/pull/7794
Enhancement - Add Sharing NG list permissions endpoint: #7805

We've added a new sharing ng endpoint which lists all permissions for a given
item.

https://github.com/owncloud/ocis/issues/6993
https://github.com/owncloud/ocis/pull/7805
Enhancement - Add user list requires filter config: #7866

Introduce a config to require filters in order to list users in Web via
WEB_OPTION_USER_LIST_REQUIRES_FILTER.

https://github.com/owncloud/ocis/pull/7866
Enhancement - Retry antivirus postprocessing step in case of problems: #7874

The antivirus postprocessing step will now be retried for a configurable amount
of times in case it can't get a result from clamav.

https://github.com/owncloud/ocis/pull/7874
Enhancement - Add validation to public share provider: #7877

We changed the implementation of the public share provider in reva to do the
validation on the CS3 Api side. This makes the implementation on the graph side
smaller.

https://github.com/owncloud/ocis/issues/6993
https://github.com/owncloud/ocis/pull/7877
Enhancement - Graphs endpoint for mounting and unmounting shares: #7885

Functionality for mounting (accepting) and unmounting (rejecting) received
shares has been added to the graph API.

https://github.com/owncloud/ocis/pull/7885
Enhancement - Store and index metadata: #7886

Location metadata is now extracted and stored by the search service. It is
available for driveItems in a folder listing using the Graph API.

https://github.com/owncloud/ocis/pull/7886
Enhancement - Allow regular users to list other users: #7887

Regular users can search for other users and groups. The following limitations
apply:
- Only search queries are allowed (using the $search=term query parameter)
- The search term needs to have at least 3 characters
- for user searches the result set only contains the attributes displayName, userType, mail and id
- for group searches the result set only contains the attributes displayName, groupTypes and id
https://github.com/owncloud/ocis/issues/7782
https://github.com/owncloud/ocis/pull/7887
Enhancement - Add edit public share to sharing NG: #7908

We added the ability to edit public shares to the sharing NG endpoints.

https://github.com/owncloud/ocis/issues/6993
https://github.com/owncloud/ocis/pull/7908/
Enhancement - Add cli commands for trash-bin: #7917

We added the list and restore commands to the trash-bin items to the CLI

https://github.com/owncloud/ocis/issues/7845
https://github.com/owncloud/ocis/pull/7917
https://github.com/cs3org/reva/pull/4392
Enhancement - Add validation update public share: #7978

For Sharing NG, we needed validation in the implementing reva service to keep
the client implementation simple.

https://github.com/owncloud/ocis/pull/7978
Enhancement - Allow inmemory nats-js-kv stores: #7979

Adds envvars to keep nats-js-kv stores in memory and not persist them on disc.

https://github.com/owncloud/ocis/pull/7979
Enhancement - Disable the password policy: #7985

We add the environment variable that allow to disable the password policy.

https://github.com/owncloud/ocis/issues/7916
https://github.com/owncloud/ocis/pull/7985
https://github.com/cs3org/reva/pull/4409
Enhancement - Use kv store in natsjs registry: #7987

Replaces the nats object store with the nats kv store in the natsjs registry

https://github.com/owncloud/ocis/pull/7987
Enhancement - Allow authentication nats connections: #7989

Allow events, store and registry implementation to pass username/password to the
nats instance

https://github.com/owncloud/ocis/pull/7989
Enhancement - Add RED metrics to the metrics endpoint: #7994

We added three new metrics to the metrics endpoint to support the RED method for
monitoring microservices.
- Request Rate: The number of requests per second. The total count of requests
  is available under ocis_proxy_requests_total. - Error Rate: The number of
  failed requests per second. The total count of failed requests is available
  under ocis_proxy_errors_total. - Duration: The amount of time each request
  takes. The duration of all requests is available under
  ocis_proxy_request_duration_seconds. This is a histogram metric, so it also
  provides information about the distribution of request durations.
The metrics are available under the following paths: PROXY_DEBUG_ADDR/metrics
in a prometheus compatible format and maybe secured by PROXY_DEBUG_TOKEN.

https://github.com/owncloud/ocis/pull/7994
Enhancement - Add ocm and sciencemesh services: #7998

We added sciencemesh and ocm services to enable federation.

https://github.com/owncloud/ocis/pull/7998
https://github.com/owncloud/ocis/pull/7576
https://github.com/owncloud/ocis/pull/7464
https://github.com/owncloud/ocis/pull/7463
Enhancement - Make nats-js-kv the default registry: #8011

The previously used default mdns is faulty. Deprecated it together with
consul, nats and etcd implementations.

https://github.com/owncloud/ocis/pull/8011
https://github.com/owncloud/ocis/pull/8027
Enhancement - Service Account roles: #8051

Use a hidden role for service accounts. It will not appear in ListRoles calls
but internally handled by settings service

https://github.com/owncloud/ocis/pull/8051
https://github.com/owncloud/ocis/pull/8074
Enhancement - Update antivirus service: #8062

We update the antivirus icap client library and optimize the antivirus scanning
service. ANTIVIRUS_ICAP_TIMEOUT is now deprecated and
ANTIVIRUS_ICAP_SCAN_TIMEOUT should be used instead.

ANTIVIRUS_ICAP_SCAN_TIMEOUT supports human durations like 1s, 1m, 1h and
1d.

https://github.com/owncloud/ocis/issues/6764
https://github.com/owncloud/ocis/pull/8062
Enhancement - Remove deprecated environment variables: #8149

We have removed all deprecated environment variables that have been marked for
removal for 5.0.0

https://github.com/owncloud/ocis/issues/8025
https://github.com/owncloud/ocis/pull/8149
Enhancement - Disable the password policy: #8152

We reworked and moved disabling the password policy logic from the reva to the
ocis.

https://github.com/owncloud/ocis/issues/7916
https://github.com/owncloud/ocis/pull/8152
https://github.com/cs3org/reva/pull/4453
Enhancement - Allow restarting multiple uploads with one command: #8287

Allows to restart all commands in a specific state.

https://github.com/owncloud/ocis/pull/8287
Enhancement - Modify the concurrency default: #8309

We have changed the default MaxConcurrency value from 100 to 5 to prevent too
frequent gc runs on low memory systems. We have also bumped reva to pull in the
related changes from there.

https://github.com/owncloud/ocis/issues/8257
https://github.com/owncloud/ocis/pull/8309
https://github.com/cs3org/reva/pull/4485
Enhancement - Improve ocis single binary start: #8320

Removes waiting times when starting the single binary. Improves ocis single
binary boot time from 8s to 2.5s

https://github.com/owncloud/ocis/pull/8320
Enhancement - Use environment variables in yaml config files: #8339

We added the ability to use environment variables in yaml config files. This
allows to use environment variables in the config files of the ocis services
which will be replaced by the actual value of the environment variable at
runtime.

Example:
```
web:
  http:
    addr: ${SOME_HTTP_ADDR}
```
This makes it possible to use the same config file for different environments
without the need to change the config file itself. This is especially useful
when using docker-compose to run the ocis services. It is a common pattern to
create an .env file which contains the environment variables for the
docker-compose file. Now you can use the same .env file to configure the ocis
services.

https://github.com/owncloud/ocis/pull/8339
Enhancement - Increment filenames on upload collisions in secret filedrops: #8340

We have bumped reva to pull in the changes needed for automatically increment
filenames on upload collisions in secret filedrops.

https://github.com/owncloud/ocis/issues/8291
https://github.com/owncloud/ocis/pull/8340
Enhancement - Allow sending multiple user ids in one sse event: #8379

Sending multiple user ids in one sse event is now possible which reduces the
number of sent events.

https://github.com/owncloud/ocis/pull/8379
https://github.com/cs3org/reva/pull/4501
Enhancement - Allow to skip service listing: #8408

The ocis version cmd listed all services by default. This is not always
intended, so we allow to skip the listing of the services by using the
--skip-services flag.

https://github.com/owncloud/ocis/issues/8070
https://github.com/owncloud/ocis/pull/8408
Enhancement - Add a make step to validate the env var annotations: #8436

We have added a make step make check-env-var-annotations to validate the
environment variable annotations in to the environment variables.

https://github.com/owncloud/ocis/issues/8258
https://github.com/owncloud/ocis/pull/8436
Enhancement - Drop the unnecessary grants exists check when creating shares: #8502

We have bumped reva to drop the unnecessary grants exists check when creating
shares.

https://github.com/owncloud/ocis/pull/8502
Enhancement - Update to go 1.22: #8586

We have updated go to version 1.22.

https://github.com/owncloud/ocis/pull/8586
Enhancement - Update web to v8.0.0: #8613

Tags: web

We updated ownCloud Web to v8.0.0. Please refer to the changelog (linked) for
details on the web release.
- Bugfix owncloud/web#9257: Filter out shares without display name
- Bugfix owncloud/web#9529: Shared with action menu label alignment
- Bugfix owncloud/web#9649: Add project space filter
- Bugfix owncloud/web#9663: Respect the open-in-new-tab-config for external apps
- Bugfix owncloud/web#9694: Special characters in username
- Bugfix owncloud/web#9788: Create .space folder if it does not exist
- Bugfix owncloud/web#9799: Link resolving into default app
- Bugfix owncloud/web#9832: Copy quicklinks for webkit navigator
- Bugfix owncloud/web#9843: Fix display path on resources
- Bugfix owncloud/web#9844: Upload space image
- Bugfix owncloud/web#9861: Duplicated file search request
- Bugfix owncloud/web#9873: Tags are no longer editable for a locked file
- Bugfix owncloud/web#9881: Prevent rendering of old/wrong set of resources in search list
- Bugfix owncloud/web#9915: Keep both folders conflict in same-named folders
- Bugfix owncloud/web#9931: Enabling "invite people" for password-protected folder/file
- Bugfix owncloud/web#10010: Displaying full video in their dimensions
- Bugfix owncloud/web#10031: Icon extension mapping
- Bugfix owncloud/web#10065: Logout page after token expiry
- Bugfix owncloud/web#10083: Disable expiration date for alias link (internal)
- Bugfix owncloud/web#10092: Allow empty search query in "in-here" search
- Bugfix owncloud/web#10096: Remove password buttons on input if disabled
- Bugfix owncloud/web#10118: Tilesview has whitespace
- Bugfix owncloud/web#10149: Spaces files list previews cropped
- Bugfix owncloud/web#10149: Spaces overview tile previews zoomed
- Bugfix owncloud/web#10154: Resolving links without drive alias
- Bugfix owncloud/web#10156: Uploading the same files parallel
- Bugfix owncloud/web#10158: GDPR export polling
- Bugfix owncloud/web#10176: Turned off file extensions not always respected
- Bugfix owncloud/web#10179: Space navigate to trash missing
- Bugfix owncloud/web#10182: Make versions panel readonly in viewers and editors
- Bugfix owncloud/web#10220: Loading indicator during conflict dialog
- Bugfix owncloud/web#10227: Configurable concurrent requests
- Bugfix owncloud/web#10232: Skip searchbar preview fetch on reload
- Bugfix owncloud/web#10318: Scrollable account page
- Bugfix owncloud/web#10321: Private link error messages
- Bugfix owncloud/web#10347: Readonly user attributes have no effect on group memberships
- Bugfix owncloud/web#10424: Restore space
- Bugfix owncloud/web#10473: Public link file download
- Bugfix owncloud/web#10489: Wrong share permissions when resharing off
- Bugfix owncloud/web#10514: Indicate shares that are not manageable due to file locking
- Change owncloud/web#2404: Theme handling
- Change owncloud/web#7338: Remove deprecated code
- Change owncloud/web#9653: Keyword Query Language (KQL) search syntax
- Change owncloud/web#9709: DavProperties without namespace
- Enhancement owncloud/web#7317: Make login url configurable
- Enhancement owncloud/web#7497: Permission checks for shares and favorites
- Enhancement owncloud/web#7600: Scroll to newly created folder
- Enhancement owncloud/web#9302: Application unification
- Enhancement owncloud/web#9423: Show local loading spinner in sharing button
- Enhancement owncloud/web#9441: File versions tooltip with absolute date
- Enhancement owncloud/web#9441: Disabling extensions
- Enhancement owncloud/web#9451: Add SSE to get notifications instantly
- Enhancement owncloud/web#9525: Tags form improved
- Enhancement owncloud/web#9527: Don't display confirmation dialog on file deletion
- Enhancement owncloud/web#9531: Personal shares can be shown and hidden
- Enhancement owncloud/web#9552: Upload preparation time
- Enhancement owncloud/web#9561: Indicate processing state
- Enhancement owncloud/web#9566: Display locking information
- Enhancement owncloud/web#9584: Moving share's "set expiration date" function
- Enhancement owncloud/web#9625: Add keyboard navigation to spaces overview
- Enhancement owncloud/web#9627: Add batch actions to spaces
- Enhancement owncloud/web#9671: OcModal set buttons to same width
- Enhancement owncloud/web#9682: Add password policy compatibility
- Enhancement owncloud/web#9691: Password generator for public links
- Enhancement owncloud/web#9696: Added app banner for mobile devices
- Enhancement owncloud/web#9706: Unify sharing expiration date menu items
- Enhancement owncloud/web#9709: New WebDAV implementation in web-client
- Enhancement owncloud/web#9727: Show error if password is on a banned password list
- Enhancement owncloud/web#9768: Embed mode
- Enhancement owncloud/web#9771: Handle postprocessing state via Server Sent Events
- Enhancement owncloud/web#9794: Registering search providers as extension
- Enhancement owncloud/web#9806: Preview image presentation
- Enhancement owncloud/web#9809: Add editors to the application menu
- Enhancement owncloud/web#9814: Registering nav items as extension
- Enhancement owncloud/web#9815: Add new portal into runtime to include footer
- Enhancement owncloud/web#9831: Last modified filter chips
- Enhancement owncloud/web#9847: Provide vendor neutral file icons
- Enhancement owncloud/web#9854: Search query term linking
- Enhancement owncloud/web#9857: Add permission to delete link passwords when password is enforced
- Enhancement owncloud/web#9858: Remove settings icon from searchbar
- Enhancement owncloud/web#9864: Search tags filter chips style aligned
- Enhancement owncloud/web#9884: Enable dark theme on importer
- Enhancement owncloud/web#9890: Create shortcuts
- Enhancement owncloud/web#9905: Manage tags in details panel
- Enhancement owncloud/web#9906: Reorganize "New" menu
- Enhancement owncloud/web#9912: Add media type filter chip
- Enhancement owncloud/web#9940: Display error message for upload to locked folder
- Enhancement owncloud/web#9966: Support more audio formats with correct icon
- Enhancement owncloud/web#10007: Additional languages
- Enhancement owncloud/web#10013: Shared by filter
- Enhancement owncloud/web#10014: Share search filter
- Enhancement owncloud/web#10024: Duplicate space
- Enhancement owncloud/web#10037: Default link permission
- Enhancement owncloud/web#10047: Add explaining contextual helper to spaces overview
- Enhancement owncloud/web#10057: Folder tree creation during upload
- Enhancement owncloud/web#10062: Show webdav information in details view
- Enhancement owncloud/web#10099: Support mandatory filter while listing users
- Enhancement owncloud/web#10102: Registering quick actions as extension
- Enhancement owncloud/web#10104: Create link modal
- Enhancement owncloud/web#10111: Registering right sidebar panels as extension
- Enhancement owncloud/web#10111: File sidebar in viewer and editor apps
- Enhancement owncloud/web#10224: Harmonize AppSwitcher icon colors
- Enhancement owncloud/web#10356: Preview app add reset button for images
https://github.com/owncloud/ocis/pull/8613
https://github.com/owncloud/web/releases/tag/v8.0.0
Enhancement - Update web to v8.0.1: #8626

Tags: web

We updated ownCloud Web to v8.0.1. Please refer to the changelog (linked) for
details on the web release.
- Bugfix owncloud/web#10573: Add link in right sidebar sharing menu, doesn't copy link to clipboard
- Bugfix owncloud/web#10576: WebDav Url in right sidebar is missing dav in path
- Bugfix owncloud/web#10585: Update translations
https://github.com/owncloud/ocis/pull/8626
https://github.com/owncloud/web/releases/tag/v8.0.1
Enhancement - Update reva to 2.19.2: #8638

We update reva to the version 2.19.2
- Bugfix cs3org/reva#4557: Fix ceph build
- Bugfix cs3org/reva#4570: Fix sharing invite on virtual drive
- Bugfix cs3org/reva#4559: Fix graph drive invite
- Bugfix cs3org/reva#4518: Fix an error when lock/unlock a file
- Bugfix cs3org/reva#4566: Fix public link previews
- Bugfix cs3org/reva#4561: Fix Stat() by Path on re-created resource
- Enhancement cs3org/reva#4556: Allow tracing requests by giving util functions a context
- Enhancement cs3org/reva#4545: Extend service account permissions
- Enhancement cs3org/reva#4564: Send file locked/unlocked events
We update reva to the version 2.19.1
- Bugfix cs3org/reva#4534: Fix remove/update share permissions
- Bugfix cs3org/reva#4539: Fix a typo
We update reva to the version 2.19.0
- Bugfix cs3org/reva#4464: Don't check lock grants
- Bugfix cs3org/reva#4516: The sharemanager can now reject grants with resharing permissions
- Bugfix cs3org/reva#4512: Bump dependencies
- Bugfix cs3org/reva#4481: Distinguish failure and node metadata reversal
- Bugfix cs3org/reva#4456: Do not lose revisions when restoring the first revision
- Bugfix cs3org/reva#4472: Fix concurrent access to a map
- Bugfix cs3org/reva#4457: Fix concurrent map access in sharecache
- Bugfix cs3org/reva#4498: Fix Content-Disposition header in dav
- Bugfix cs3org/reva#4461: CORS handling for WebDAV requests fixed
- Bugfix cs3org/reva#4462: Prevent setting container specific permissions on files
- Bugfix cs3org/reva#4479: Fix creating documents in the app provider
- Bugfix cs3org/reva#4474: Make /dav/meta consistent
- Bugfix cs3org/reva#4446: Disallow to delete a file during the processing
- Bugfix cs3org/reva#4517: Fix duplicated items in the sharejail root
- Bugfix cs3org/reva#4473: Decomposedfs now correctly lists sessions
- Bugfix cs3org/reva#4528: Respect IfNotExist option when uploading in cs3 metadata storage
- Bugfix cs3org/reva#4503: Fix an error when move
- Bugfix cs3org/reva#4466: Fix natsjskv store
- Bugfix cs3org/reva#4533: Fix recursive trashcan purge
- Bugfix cs3org/reva#4492: Fix the resource name
- Bugfix cs3org/reva#4463: Fix the resource name
- Bugfix cs3org/reva#4448: Fix truncating existing files
- Bugfix cs3org/reva#4434: Fix the upload postprocessing
- Bugfix cs3org/reva#4469: Handle interrupted uploads
- Bugfix cs3org/reva#4532: Jsoncs3 cache fixes
- Bugfix cs3org/reva#4449: Keep failed processing status
- Bugfix cs3org/reva#4529: We aligned some OCS return codes with oc10
- Bugfix cs3org/reva#4507: Make tusd CORS headers configurable
- Bugfix cs3org/reva#4452: More efficient share jail
- Bugfix cs3org/reva#4476: No need to unmark postprocessing when it was not started
- Bugfix cs3org/reva#4454: Skip unnecessary share retrieval
- Bugfix cs3org/reva#4527: Unify datagateway method handling
- Bugfix cs3org/reva#4530: Drop unnecessary grant exists check
- Bugfix cs3org/reva#4475: Upload session specific processing flag
- Enhancement cs3org/reva#4501: Allow sending multiple user ids in one sse event
- Enhancement cs3org/reva#4485: Modify the concurrency default
- Enhancement cs3org/reva#4526: Configurable s3 put options
- Enhancement cs3org/reva#4453: Disable the password policy
- Enhancement cs3org/reva#4477: Extend ResumePostprocessing event
- Enhancement cs3org/reva#4491: Add filename incrementor for secret filedrops
- Enhancement cs3org/reva#4490: Lazy initialize public share manager
- Enhancement cs3org/reva#4494: Start implementation of a plain posix storage driver
- Enhancement cs3org/reva#4502: Add spaceindex.AddAll()
Changelog for reva 2.18.0 (2023-12-22)

The following sections list the changes in reva 2.18.0 relevant to reva users.
The changes are ordered by importance.
- Bugfix cs3org/reva#4424: Fixed panic in receivedsharecache pkg
- Bugfix cs3org/reva#4425: Fix overwriting files with empty files
- Bugfix cs3org/reva#4432: Fix /dav/meta endpoint for shares
- Bugfix cs3org/reva#4422: Fix disconnected traces
- Bugfix cs3org/reva#4429: Internal link creation
- Bugfix cs3org/reva#4407: Make ocdav return correct oc:spaceid
- Bugfix cs3org/reva#4410: Improve OCM support
- Bugfix cs3org/reva#4402: Refactor upload session
- Enhancement cs3org/reva#4421: Check permissions before adding, deleting or updating shares
- Enhancement cs3org/reva#4403: Add validation to update public share
- Enhancement cs3org/reva#4409: Disable the password policy
- Enhancement cs3org/reva#4412: Allow authentication for nats connections
- Enhancement cs3org/reva#4411: Add option to configure streams non durable
- Enhancement cs3org/reva#4406: Rework cache configuration
- Enhancement cs3org/reva#4414: Track more upload session metrics
Changelog for reva 2.17.0 (2023-12-12)

The following sections list the changes in reva 2.17.0 relevant to reva users.
The changes are ordered by importance.
- Bugfix cs3org/reva#4278: Disable DEPTH infinity in PROPFIND
- Bugfix cs3org/reva#4318: Do not allow moves between shares
- Bugfix cs3org/reva#4290: Prevent panic when trying to move a non-existent file
- Bugfix cs3org/reva#4241: Allow an empty credentials chain in the auth middleware
- Bugfix cs3org/reva#4216: Fix an error message
- Bugfix cs3org/reva#4324: Fix capabilities decoding
- Bugfix cs3org/reva#4267: Fix concurrency issue
- Bugfix cs3org/reva#4362: Fix concurrent lookup
- Bugfix cs3org/reva#4336: Fix definition of "file-editor" role
- Bugfix cs3org/reva#4302: Fix checking of filename length
- Bugfix cs3org/reva#4366: Fix CS3 status code when looking up non existing share
- Bugfix cs3org/reva#4299: Fix HTTP verb of the generate-invite endpoint
- Bugfix cs3org/reva#4249: GetUserByClaim not working with MSAD for claim "userid"
- Bugfix cs3org/reva#4217: Fix missing case for "hide" in UpdateShares
- Bugfix cs3org/reva#4140: Fix missing etag in shares jail
- Bugfix cs3org/reva#4229: Fix destroying the Personal and Project spaces data
- Bugfix cs3org/reva#4193: Fix overwrite a file with an empty file
- Bugfix cs3org/reva#4365: Fix create public share
- Bugfix cs3org/reva#4380: Fix the public link update
- Bugfix cs3org/reva#4250: Fix race condition
- Bugfix cs3org/reva#4345: Fix conversion of custom ocs permissions to roles
- Bugfix cs3org/reva#4134: Fix share jail
- Bugfix cs3org/reva#4335: Fix public shares cleanup config
- Bugfix cs3org/reva#4338: Fix unlock via space API
- Bugfix cs3org/reva#4341: Fix spaceID in meta endpoint response
- Bugfix cs3org/reva#4351: Fix 500 when open public link
- Bugfix cs3org/reva#4352: Fix the tgz mime type
- Bugfix cs3org/reva#4388: Allow UpdateUserShare() to update just the expiration date
- Bugfix cs3org/reva#4214: Always pass adjusted default nats options
- Bugfix cs3org/reva#4291: Release lock when expired
- Bugfix cs3org/reva#4386: Remove dead enable_home config
- Bugfix cs3org/reva#4292: Return 403 when user is not permitted to lock
- Enhancement cs3org/reva#4389: Add audio and location props
- Enhancement cs3org/reva#4337: Check permissions before creating shares
- Enhancement cs3org/reva#4326: Add search mediatype filter
- Enhancement cs3org/reva#4367: Add GGS mime type
- Enhancement cs3org/reva#4194: Add hide flag to shares
- Enhancement cs3org/reva#4358: Add default permissions capability for links
- Enhancement cs3org/reva#4133: Add more metadata to locks
- Enhancement cs3org/reva#4353: Add support for .docxf files
- Enhancement cs3org/reva#4363: Add nats-js-kv store
- Enhancement cs3org/reva#4197: Add the Banned-Passwords List
- Enhancement cs3org/reva#4190: Add the password policies
- Enhancement cs3org/reva#4384: Add a retry postprocessing outcome and event
- Enhancement cs3org/reva#4271: Add search capability
- Enhancement cs3org/reva#4119: Add sse event
- Enhancement cs3org/reva#4392: Add additional permissions to service accounts
- Enhancement cs3org/reva#4344: Add url extension to mime type list
- Enhancement cs3org/reva#4372: Add validation to the public share provider
- Enhancement cs3org/reva#4244: Allow listing reveived shares by service accounts
- Enhancement cs3org/reva#4129: Auto-Accept Shares through ServiceAccounts
- Enhancement cs3org/reva#4374: Handle trashbin file listings concurrently
- Enhancement cs3org/reva#4325: Enforce Permissions
- Enhancement cs3org/reva#4368: Extract log initialization
- Enhancement cs3org/reva#4375: Introduce UploadSessionLister interface
- Enhancement cs3org/reva#4268: Implement sharing roles
- Enhancement cs3org/reva#4160: Improve utils pkg
- Enhancement cs3org/reva#4335: Add sufficient permissions check function
- Enhancement cs3org/reva#4281: Port OCM changes from master
- Enhancement cs3org/reva#4270: Opt out of public link password enforcement
- Enhancement cs3org/reva#4181: Change the variable names for the password policy
- Enhancement cs3org/reva#4256: Rename hidden share variable name
- Enhancement cs3org/reva#3926: Service Accounts
- Enhancement cs3org/reva#4359: Update go-ldap to v3.4.6
- Enhancement cs3org/reva#4170: Update password policies
- Enhancement cs3org/reva#4232: Improve error handling in utils package
https://github.com/owncloud/ocis/pull/8638
https://github.com/owncloud/ocis/pull/8519
https://github.com/owncloud/ocis/pull/8502
https://github.com/owncloud/ocis/pull/8340
https://github.com/owncloud/ocis/pull/8381
https://github.com/owncloud/ocis/pull/8287
https://github.com/owncloud/ocis/pull/8278
https://github.com/owncloud/ocis/pull/8264
https://github.com/owncloud/ocis/pull/8100
https://github.com/owncloud/ocis/pull/8100
https://github.com/owncloud/ocis/pull/8038
https://github.com/owncloud/ocis/pull/8056
https://github.com/owncloud/ocis/pull/7949
https://github.com/owncloud/ocis/pull/7793
https://github.com/owncloud/ocis/pull/7978
https://github.com/owncloud/ocis/pull/7979
https://github.com/owncloud/ocis/pull/7963
https://github.com/owncloud/ocis/pull/7986
https://github.com/owncloud/ocis/pull/7721
https://github.com/owncloud/ocis/pull/7727
https://github.com/owncloud/ocis/pull/7752

ocis - 5.0.0-rc.5

Published by ownclouders 8 months ago

Incremental changes since 5.0.0-rc.4

ocis

Bugfix - Fix search response: #7815
Bugfix - Fix Content-Disposition header for downloads: #8381
Bugfix - Fix an error when move: #8396
Bugfix - Fix extended env parser: #8409
Bugfix - Graph/drives/permission Expiration date update: #8413
Bugfix - Fix search error message: #8444
Bugfix - Graph/sharedWithMe align IDs with webdav response: #8467
Bugfix - Bump reva to pull in changes to fix recursive trashcan purge: #8505
Change - Deprecate sharing cs3 backends: #8478
Enhancement - Improve ocis single binary start: #8320
Enhancement - Use environment variables in yaml config files: #8339
Enhancement - Bump reva: #8340
Enhancement - Allow sending multiple user ids in one sse event: #8379
Enhancement - Allow to skip service listing: #8408
Enhancement - Add a make step to validate the env var annotations: #8436

Web

Bugfix owncloud/web#10473: Public link file download
Bugfix owncloud/web#10489: Wrong share permissions when resharing off

Reva

Bugfix cs3org/reva#4464: Don't check lock grants
Bugfix cs3org/reva#4516: The sharemanager can now reject grants with resharing permissions
Bugfix cs3org/reva#4512: Bump dependencies
Bugfix cs3org/reva#4498: Fix Content-Disposition header in dav
Bugfix cs3org/reva#4517: Fix duplicated items in the sharejail root
Bugfix cs3org/reva#4528: Respect IfNotExist option when uploading in cs3 metadata storage
Bugfix cs3org/reva#4503: Fix an error when move
Bugfix cs3org/reva#4533: Fix recursive trashcan purge
Bugfix cs3org/reva#4492: Fix the resource name
Bugfix cs3org/reva#4532: Jsoncs3 cache fixes
Bugfix cs3org/reva#4529: We aligned some OCS return codes with oc10
Bugfix cs3org/reva#4507: Make tusd CORS headers configurable
Bugfix cs3org/reva#4527: Unify datagateway method handling
Bugfix cs3org/reva#4530: Drop unnecessary grant exists check
Enhancement cs3org/reva#4501: Allow sending multiple user ids in one sse event
Enhancement cs3org/reva#4485: Modify the concurrency default
Enhancement cs3org/reva#4526: Configurable s3 put options
Enhancement cs3org/reva#4491: Add filename incrementor for secret filedrops
Enhancement cs3org/reva#4490: Lazy initialize public share manager
Enhancement cs3org/reva#4494: Start implementation of a plain posix storage driver
Enhancement cs3org/reva#4502: Add spaceindex.AddAll()

All changes in v5.0.0-rc.5

Bugfix - Fix wrong compile date: #6132
Bugfix - Fix the kql-bleve search: #7290
Bugfix - Bring back the USERS_LDAP_USER_SCHEMA_ID variable: #7312
Bugfix - Do not reset state of received shares when rebuilding the jsoncs3 index: #7319
Bugfix - Deprecate redundant encryptions settings for notification service: #7345
Bugfix - Check school number for duplicates before adding a school: #7351
Bugfix - Don't reload web config: #7369
Bugfix - Delete outdated userlog events: #7410
Bugfix - Set the mountpoint on auto accept: #7460
Bugfix - Fix default language fallback: #7465
Bugfix - GetUserByClaim fixed for Active Directory: #7476
Bugfix - Fix preview request 500 error when made too early: #7502
Bugfix - Fix 403 in docs pipeline: #7509
Bugfix - Fix the auth service env variable: #7523
Bugfix - Token storage config fixed: #7528
Bugfix - Set existing mountpoint on auto accept: #7592
Bugfix - Return 423 status code on tag create: #7596
Bugfix - Fix libre-graph status codes: #7678
Bugfix - Fix unlock via space API: #7726
Bugfix - Disable DEPTH infinity in PROPFIND: #7746
Bugfix - Fix the tgz mime type: #7772
Bugfix - Fix natsjs cache: #7790
Bugfix - Fix search service start: #7795
Bugfix - Fix search response: #7815
Bugfix - The race conditions in tests: #7847
Bugfix - Do not purge expired upload sessions that are still postprocessing: #7859
Bugfix - Fix the public link update: #7862
Bugfix - Fix jwt config of policies service: #7893
Bugfix - Updating logo with new theme structure: #7930
Bugfix - Password policy return code was wrong: #7952
Bugfix - Removed outdated and unused dependency from idp package: #7957
Bugfix - Update permission validation: #7963
Bugfix - Renaming a user to a string with capital letters: #7964
Bugfix - Improve OCM support: #7973
Bugfix - Permissions of a role with duplicate ID: #7976
Bugfix - Non durable streams for sse service: #7986
Bugfix - Fix empty trace ids: #8023
Bugfix - Fix search by containing special characters: #8050
Bugfix - Fix the upload postprocessing: #8117
Bugfix - Disallow to delete a file during the processing: #8132
Bugfix - Fix wrong naming in nats-js-kv registry: #8140
Bugfix - IDP CS3 backend sessions now survive a restart: #8142
Bugfix - Fix patching of language: #8182
Bugfix - Fix search service to not log expected cases as errors: #8200
Bugfix - Updating and reset logo failed: #8211
Bugfix - Cleanup graph/pkg/service/v0/driveitems.go: #8228
Bugfix - Cleanup search/pkg/search/search.go: #8230
Bugfix - Graph/sharedWithMe works for shares from project spaces now: #8233
Bugfix - Fix PATCH/DELETE status code for drives that don't support them: #8235
Bugfix - Fix nats authentication: #8236
Bugfix - Fix the resource name: #8246
Bugfix - Apply role constraints when creating shares via the graph API: #8247
Bugfix - Fix concurrent access to a map: #8269
Bugfix - Fix nats registry: #8281
Bugfix - Remove invalid environment variables: #8303
Bugfix - Fix concurrent shares config: #8317
Bugfix - Fix Content-Disposition header for downloads: #8381
Bugfix - Signed url verification: #8385
Bugfix - Fix an error when move: #8396
Bugfix - Fix extended env parser: #8409
Bugfix - Graph/drives/permission Expiration date update: #8413
Bugfix - Fix search error message: #8444
Bugfix - Graph/sharedWithMe align IDs with webdav response: #8467
Bugfix - Bump reva to pull in changes to fix recursive trashcan purge: #8505
Bugfix - Fix last month search: #31145
Change - Auto-Accept Shares: #7097
Change - Change the default TUS chunk size: #7273
Change - Remove privacyURL and imprintURL from the config: #7938
Change - Remove accessDeniedHelpUrl from the config: #7970
Change - Deprecate sharing cs3 backends: #8478
Enhancement - Add the Banned Passwords List: #4197
Enhancement - Introduce service accounts: #6427
Enhancement - SSE for messaging: #6992
Enhancement - Support spec violating AD FS access token issuer: #7140
Enhancement - Add OCIS_LDAP_BIND_PASSWORD as replacement for LDAP_BIND_PASSWORD: #7176
Enhancement - Keyword Query Language (KQL) search syntax: #7212
Enhancement - Introduce clientlog service: #7217
Enhancement - Proxy uses service accounts for provisioning: #7240
Enhancement - The password policies change request: #7264
Enhancement - Introduce natsjs registry: #7272
Enhancement - Add the password policies: #7285
Enhancement - Add login URL config: #7317
Enhancement - Improve SSE format: #7325
Enhancement - New value auto for NOTIFICATIONS_SMTP_AUTHENTICATION: #7356
Enhancement - Make sse service scalable: #7382
Enhancement - Edit wrong named enves: #7406
Enhancement - Thumbnail generation with image processors: #7409
Enhancement - Set default for Async Uploads to true: #7416
Enhancement - The default language added: #7417
Enhancement - Add "Last modified" filter Chip: #7455
Enhancement - Config for disabling Web extensions: #7486
Enhancement - Store and index metadata: #7490
Enhancement - Add support for audio files to the thumbnails service: #7491
Enhancement - Implement sharing roles: #7524
Enhancement - Add new permission to delete public link password: #7538
Enhancement - Add config to enforce passwords on all public links: #7547
Enhancement - Tika content extraction cleanup for search: #7553
Enhancement - Allow configuring storage registry with envvars: #7554
Enhancement - Add search MediaType filter: #7602
Enhancement - Add Sharing NG endpoints: #7633
Enhancement - Configs for Web embed mode: #7670
Enhancement - Support login page background configuration: #7674
Enhancement - Add new permissions: #7700
Enhancement - Add preferred language to user settings: #7720
Enhancement - Add user filter startswith and contains: #7739
Enhancement - Allow configuring additional routes: #7741
Enhancement - Default link permission config: #7783
Enhancement - Add banned password list to the default deployments: #7784
Enhancement - Update to go 1.21: #7794
Enhancement - Add Sharing NG list permissions endpoint: #7805
Enhancement - Add user list requires filter config: #7866
Enhancement - Retry antivirus postprocessing step in case of problems: #7874
Enhancement - Add validation to public share provider: #7877
Enhancement - Store and index metadata: #7886
Enhancement - Allow regular users to list other users: #7887
Enhancement - Add edit public share to sharing NG: #7908
Enhancement - Add cli commands for trash-bin: #7917
Enhancement - Add validation update public share: #7978
Enhancement - Allow inmemory nats-js-kv stores: #7979
Enhancement - Disable the password policy: #7985
Enhancement - Use kv store in natsjs registry: #7987
Enhancement - Allow authentication nats connections: #7989
Enhancement - Add RED metrics to the metrics endpoint: #7994
Enhancement - Add ocm and sciencemesh services: #7998
Enhancement - Make nats-js-kv the default registry: #8011
Enhancement - Service Account roles: #8051
Enhancement - Update antivirus service: #8062
Enhancement - Remove deprecated environment variables: #8149
Enhancement - Disable the password policy: #8152
Enhancement - Allow restarting multiple uploads with one command: #8287
Enhancement - Modify the concurrency default: #8309
Enhancement - Improve ocis single binary start: #8320
Enhancement - Use environment variables in yaml config files: #8339
Enhancement - Increment filenames on upload collisions in secret filedrops: #8340
Enhancement - Allow sending multiple user ids in one sse event: #8379
Enhancement - Allow to skip service listing: #8408
Enhancement - Add a make step to validate the env var annotations: #8436
Enhancement - Update web to v8.0.0-rc.5: #8491
Enhancement - Drop the unnecessary grants exists check when creating shares: #8502
Enhancement - Update reva to 2.19.0: #8519

Details

Bugfix - Fix wrong compile date: #6132

We fixed that current date is always printed.

https://github.com/owncloud/ocis/issues/6124
https://github.com/owncloud/ocis/pull/6132
Bugfix - Fix the kql-bleve search: #7290

We fixed the issue when 500 on searches that contain ":". Added the characters
escaping according to https://blevesearch.com/docs/Query-String-Query/

https://github.com/owncloud/ocis/issues/7282
https://github.com/owncloud/ocis/pull/7290
Bugfix - Bring back the USERS_LDAP_USER_SCHEMA_ID variable: #7312

We reintroduced the USERS_LDAP_USER_SCHEMA_ID variable which was accidently
removed from the users service with the 4.0.0 release.

https://github.com/owncloud/ocis/issues/7312
https://github.com/owncloud/ocis-charts/issues/397
Bugfix - Do not reset state of received shares when rebuilding the jsoncs3 index: #7319

We fixed a problem with the "ocis migrate rebuild-jsoncs3-indexes" command which
reset the state of received shares to "pending".

https://github.com/owncloud/ocis/issues/7319
Bugfix - Deprecate redundant encryptions settings for notification service: #7345

The values tls and ssl for the smtp_encryption configuration setting are
duplicates of starttls and ssltls. They have been marked as deprecated. A
warning will be logged when they are still used. Please use starttls instead
for tls and ssltls instead of `ssl.

https://github.com/owncloud/ocis/issues/7345
Bugfix - Check school number for duplicates before adding a school: #7351

We fixed an issue that allowed to create two schools with the same school number

https://github.com/owncloud/enterprise/issues/6051
https://github.com/owncloud/ocis/pull/7351
Bugfix - Don't reload web config: #7369

When requesting config.json file from the server, web service would reload the
file if a path is set. This will remove config entries set via Envvar. Since we
want to have the possiblity to set configuration from both sources we removed
the reading from file. The file will still be loaded on service startup.

https://github.com/owncloud/ocis/pull/7369
Bugfix - Delete outdated userlog events: #7410

Userlog will now delete events when the user has no longer access to the
underlying resource

https://github.com/owncloud/ocis/pull/7410
Bugfix - Set the mountpoint on auto accept: #7460

On shares auto accept set a mountpoint with same logic as ocs handler

https://github.com/owncloud/ocis/pull/7460
Bugfix - Fix default language fallback: #7465

Add the default language for the webui, the settings, userlog and notification
service.

https://github.com/owncloud/ocis/issues/7465
Bugfix - GetUserByClaim fixed for Active Directory: #7476

The reva ldap backend for the users and groups service did not hex escape binary
uuids in LDAP filter correctly this could cause problems in Active Directory
setups for services using the GetUserByClaim CS3 request with claim "userid".

https://github.com/owncloud/ocis/issues/7469
https://github.com/owncloud/ocis/pull/7476
Bugfix - Fix preview request 500 error when made too early: #7502

Fix the status code and message when a thumbnail request is made too early.

https://github.com/owncloud/ocis/issues/7502
https://github.com/owncloud/ocis/pull/7507
Bugfix - Fix 403 in docs pipeline: #7509

Docs pipeline was not routed through our proxies which could lead to requests
being blacklisted

https://github.com/owncloud/ocis/issues/7509
https://github.com/owncloud/ocis/pull/7511
Bugfix - Fix the auth service env variable: #7523

We the auth service env variable to the service specific name. Before it was
configurable via AUTH_MACHINE_JWT_SECRET and now is configurable via
AUTH_SERVICE_JWT_SECRET.

https://github.com/owncloud/ocis/pull/7523
Bugfix - Token storage config fixed: #7528

The token storage config in the config.json for web was missing when it was set
to false.

https://github.com/owncloud/ocis/issues/7462
https://github.com/owncloud/ocis/pull/7528
Bugfix - Set existing mountpoint on auto accept: #7592

When already having a share for a specific resource, auto accept would use
custom mountpoints which lead to other errors. Now auto-accept is using the
existing mountpoint of a share.

https://github.com/owncloud/ocis/pull/7592
Bugfix - Return 423 status code on tag create: #7596

When a file is locked, return 423 status code instead 500 on tag create

https://github.com/owncloud/ocis/pull/7596
Bugfix - Fix libre-graph status codes: #7678

Creating group: https://owncloud.dev/libre-graph-api/#/groups/CreateGroup
changed: 200 -> 201

Creating users: https://owncloud.dev/libre-graph-api/#/users/CreateUser changed:
200 -> 201

Export GDPR: https://owncloud.dev/libre-graph-api/#/user/ExportPersonalData
changed: 201 -> 202

https://github.com/owncloud/ocis/issues/7678
https://github.com/owncloud/ocis/pull/7705
Bugfix - Fix unlock via space API: #7726

We fixed a bug that caused Error 500 when user try to unlock file using fileid
The handleSpaceUnlock has been added

https://github.com/owncloud/ocis/issues/7708
https://github.com/owncloud/ocis/pull/7726
https://github.com/cs3org/reva/pull/4338
Bugfix - Disable DEPTH infinity in PROPFIND: #7746

We fixed the Disabled DEPTH infinity in PROPFIND for: Personal
/remote.php/dav/files/admin Public link share
/remote.php/dav/public-files/ Trashbin
/remote.php/dav/spaces/trash-bin/

https://github.com/owncloud/ocis/issues/7359
https://github.com/owncloud/ocis/pull/7746
https://github.com/cs3org/reva/pull/4278
Bugfix - Fix the tgz mime type: #7772

We have fixed a bug when the tgz mime type was not "application/gzip"

https://github.com/owncloud/ocis/issues/7744
https://github.com/owncloud/ocis/pull/7772
Bugfix - Fix natsjs cache: #7790

The nats-js cache was not working. It paniced and wrote a lot of error logs.
Both is fixed now.

https://github.com/owncloud/ocis/pull/7790
Bugfix - Fix search service start: #7795

The search service would sometimes not start correctly because config values
are overwritten by default configuration.

https://github.com/owncloud/ocis/pull/7795
Bugfix - Fix search response: #7815

We fixed the search response code from 500 to 400 when the request is invalid

https://github.com/owncloud/ocis/issues/7812
https://github.com/owncloud/ocis/pull/7815
Bugfix - The race conditions in tests: #7847

We fixed the race conditions in tests.

https://github.com/owncloud/ocis/issues/7846
https://github.com/owncloud/ocis/pull/7847
Bugfix - Do not purge expired upload sessions that are still postprocessing: #7859

https://github.com/owncloud/ocis/pull/7859
https://github.com/owncloud/ocis/pull/7958
Bugfix - Fix the public link update: #7862

We fixed a bug when normal users can update the public link to delete its
password if permission is not sent in data.

https://github.com/owncloud/ocis/issues/7821
https://github.com/owncloud/ocis/pull/7862
Bugfix - Fix jwt config of policies service: #7893

Removes jwt config of policies service

https://github.com/owncloud/ocis/pull/7893
Bugfix - Updating logo with new theme structure: #7930

Updating and resetting the logo when using the new theme.json structure in Web
has been fixed.

https://github.com/owncloud/ocis/pull/7930
Bugfix - Password policy return code was wrong: #7952

We fixed the status code on SharingNG update permissions for public shares.

https://github.com/owncloud/ocis/pull/7952
Bugfix - Removed outdated and unused dependency from idp package: #7957

We've removed the outdated and apparently unused dependency cldr from the
kpop dependency inside the idp web ui. This resolves a security issue around
an oudated xmldom package version, originating from said kpop library.

https://github.com/owncloud/ocis/issues/7957
https://github.com/owncloud/ocis/pull/7988
Bugfix - Update permission validation: #7963

We fixed a bug where the permission validation was not working correctly.

https://github.com/owncloud/ocis/pull/7963
https://github.com/cs3org/reva/pull/4405
Bugfix - Renaming a user to a string with capital letters: #7964

We fixed the issue that led to correct update but the 404 response code when
renaming an existing user to a string with capital letters.

https://github.com/owncloud/ocis/pull/7964
Bugfix - Improve OCM support: #7973

We improved functionality of the OCM support.

https://github.com/owncloud/ocis/pull/7973
Bugfix - Permissions of a role with duplicate ID: #7976

We remove the redundant permissions of a role with duplicate ID.

https://github.com/owncloud/ocis/issues/7931
https://github.com/owncloud/ocis/pull/7976
Bugfix - Non durable streams for sse service: #7986

Configure sse streams to be non-durable. This functionality is not needed for
the sse service

https://github.com/owncloud/ocis/pull/7986
Bugfix - Fix empty trace ids: #8023

We changed the default tracing to produce non-empty traceids.

https://github.com/owncloud/ocis/pull/8023
https://github.com/owncloud/ocis/pull/8017
Bugfix - Fix search by containing special characters: #8050

As the OData query parser interprets characters like '@' or '-' in a special
way. Search request for users or groups needs to be quoted. We fixed the
libregraph users and groups endpoints to handle quoted search terms correctly.

https://github.com/owncloud/ocis/issues/7990
https://github.com/owncloud/ocis/pull/8050
https://github.com/owncloud/ocis/pull/8035
Bugfix - Fix the upload postprocessing: #8117

We fixed the upload postprocessing when the destination file does not exist
anymore.

https://github.com/owncloud/ocis/issues/7909
https://github.com/owncloud/ocis/pull/8117
Bugfix - Disallow to delete a file during the processing: #8132

We want to disallow deleting a file during the processing to prevent collecting
the orphan uploads.

https://github.com/owncloud/ocis/issues/8127
https://github.com/owncloud/ocis/pull/8132
https://github.com/cs3org/reva/pull/4446
Bugfix - Fix wrong naming in nats-js-kv registry: #8140

Registers the registry under the correct name

https://github.com/owncloud/ocis/pull/8140
Bugfix - IDP CS3 backend sessions now survive a restart: #8142

We now correctly reinitialize the CS3 backend session after the IDP service has
been restarted.

https://github.com/owncloud/ocis/pull/8142
Bugfix - Fix patching of language: #8182

User would not be able to patch their preferred language when the ldap backend
is set to read-only. This makes no sense as language is stored elsewhere.

https://github.com/owncloud/ocis/pull/8182
Bugfix - Fix search service to not log expected cases as errors: #8200

We changed the search service to not log cases where resources that were about
to be indexed can no longer be found. Those are expected cases, e.g. when the
file in question has already been deleted or renamed meanwhile.

https://github.com/owncloud/ocis/pull/8200
Bugfix - Updating and reset logo failed: #8211

We fixed a bug when admin tried to update or reset the logo.

https://github.com/owncloud/ocis/issues/8101
https://github.com/owncloud/ocis/pull/8211
Bugfix - Cleanup graph/pkg/service/v0/driveitems.go: #8228

Main fix is using proto getters to avoid panics. But some other code
improvements were also done

https://github.com/owncloud/ocis/pull/8228
Bugfix - Cleanup search/pkg/search/search.go: #8230

Now uses proto getters to avoid panics.

https://github.com/owncloud/ocis/pull/8230
Bugfix - Graph/sharedWithMe works for shares from project spaces now: #8233

We fixed a bug in the 'graph/v1beta1/me/drive/sharedWithMe' endpoint that caused
an error response when the user received shares from project spaces.
Additionally the endpoint now behaves more graceful in cases where the
displayname of the owner or creator of a share or shared resource couldn't be
resolved.

https://github.com/owncloud/ocis/issues/8027
https://github.com/owncloud/ocis/issues/8215
https://github.com/owncloud/ocis/pull/8233
Bugfix - Fix PATCH/DELETE status code for drives that don't support them: #8235

Updating and Deleting the virtual drives for shares is currently not supported.
Instead of returning a generic 500 status we return a 405 response now.

https://github.com/owncloud/ocis/issues/7881
https://github.com/owncloud/ocis/pull/8235
Bugfix - Fix nats authentication: #8236

Fixes nats authentication for registry/events/stores

https://github.com/owncloud/ocis/pull/8236
Bugfix - Fix the resource name: #8246

We fixed a problem where after renaming resource as sharer the receiver see a
new name.

https://github.com/owncloud/ocis/issues/8242
https://github.com/owncloud/ocis/pull/8246
https://github.com/cs3org/reva/pull/4463
Bugfix - Apply role constraints when creating shares via the graph API: #8247

We fixed a bug in the graph API for creating and updating shares so that
Spaceroot specific roles like 'Manager' and 'Co-owner' can no longer be assigned
for shares on files or directories.

https://github.com/owncloud/ocis/issues/8131
https://github.com/owncloud/ocis/pull/8247
Bugfix - Fix concurrent access to a map: #8269

We fixed the race condition that led to concurrent map access in a publicshare
manager.

https://github.com/owncloud/ocis/issues/8255
https://github.com/owncloud/ocis/pull/8269
https://github.com/cs3org/reva/pull/4472
Bugfix - Fix nats registry: #8281

The nats registry would behave badly when configuring nats-js-kv via envvar.
Reason is the way go-micro initializes. It took 5 developers to find the issue
and the fix so the details cannot be shared here. Just accept that it is working
now

https://github.com/owncloud/ocis/pull/8281
Bugfix - Remove invalid environment variables: #8303

We have removed two spaces related environment variables (whether project spaces
and the share jail are enabled) and hardcoded the only allowed options. Misusing
those variables would have resulted in invalid config.

https://github.com/owncloud/ocis/pull/8303
Bugfix - Fix concurrent shares config: #8317

We fixed setting the config for concurrent web requests, which did not work as
expected before.

https://github.com/owncloud/ocis/pull/8317
Bugfix - Fix Content-Disposition header for downloads: #8381

We have fixed a bug that caused downloads to fail on Chromebased browsers when
the filename contained special characters.

https://github.com/owncloud/ocis/issues/8361
https://github.com/owncloud/ocis/pull/8381
https://github.com/cs3org/reva/pull/4498
Bugfix - Signed url verification: #8385

Signed urls now expire properly

https://github.com/owncloud/ocis/pull/8385
Bugfix - Fix an error when move: #8396

We fixed a bug that caused Internal Server Error when move using destination id

https://github.com/owncloud/ocis/issues/6739
https://github.com/owncloud/ocis/pull/8396
https://github.com/cs3org/reva/pull/4503
Bugfix - Fix extended env parser: #8409

The extended envvar parser would be angry if there are two os.Getenv in the
same line. We fixed this.

https://github.com/owncloud/ocis/pull/8409
Bugfix - Graph/drives/permission Expiration date update: #8413

We fixed a bug in the Update sharing permission the expiration dates can't be
removed from link permissions.

https://github.com/owncloud/ocis/issues/8405
https://github.com/owncloud/ocis/pull/8413
Bugfix - Fix search error message: #8444

We fixed an error message returned when the search request is invalid

https://github.com/owncloud/ocis/issues/8442
https://github.com/owncloud/ocis/pull/8444
Bugfix - Graph/sharedWithMe align IDs with webdav response: #8467

The IDs of the driveItems returned by the 'graph/v1beta1/me/drive/sharedWithMe'
endpoint are now aligned with the IDs returned in the PROPFIND response of the
webdav service.

https://github.com/owncloud/ocis/issues/8420
https://github.com/owncloud/ocis/issues/8080
https://github.com/owncloud/ocis/pull/8467
Bugfix - Bump reva to pull in changes to fix recursive trashcan purge: #8505

We have fixed a bug in the trashcan purge process that did not delete folder
structures recursively.

https://github.com/owncloud/ocis/issues/8473
https://github.com/owncloud/ocis/pull/8505
https://github.com/cs3org/reva/pull/4533
Bugfix - Fix last month search: #31145

We've fixed the last month search edge case when currently is 31-th.

Https://github.com/owncloud/ocis/issues/7629
https://github.com/owncloud/ocis/pull/7742

https://github.com/golang/go/issues/31145
The
issue
is
related
to
the
build-in
package
behavior
Change - Auto-Accept Shares: #7097

Automatically accepts shares. This feature is active by default and can be
deactivated via the environment variable FRONTEND_AUTO_ACCEPT_SHARES.

https://github.com/owncloud/ocis/pull/7097
Change - Change the default TUS chunk size: #7273

We changed the default TUS chunk size from 100MB to 10MB. You can still use the
old value by configuring it in your deployment.

https://github.com/owncloud/ocis/pull/7273
Change - Remove privacyURL and imprintURL from the config: #7938

We've removed the option privacyURL and imprintURL from the config, since other
clients weren't able to consume these. In order to be accessible by other
clients, not just Web, those should be configured via the theme.json file.

https://github.com/owncloud/ocis/pull/7938/
Change - Remove accessDeniedHelpUrl from the config: #7970

We've removed the option accessDeniedHelpUrl from the config, since other
clients weren't able to consume it. In order to be accessible by other clients,
not just Web, it should be configured via the theme.json file.

https://github.com/owncloud/ocis/pull/7970
Change - Deprecate sharing cs3 backends: #8478

The cs3 user and public sharing drivers have already been replaced by
jsoncs3. We now mark them as deprecated in preparation to kill a lot of unused
code in reva.

https://github.com/owncloud/ocis/pull/8478
Enhancement - Add the Banned Passwords List: #4197

Added an option to enable a password check against a banned passwords list
OCIS-3809

https://github.com/cs3org/reva/pull/4197
https://github.com/owncloud/ocis/pull/7314
Enhancement - Introduce service accounts: #6427

Introduces service accounts to avoid impersonating users in async processes

https://github.com/owncloud/ocis/issues/5550
https://github.com/owncloud/ocis/pull/6427
Enhancement - SSE for messaging: #6992

So far, sse has only been used to exchange messages between the server and the
client. In order to be able to send more content to the client, we have moved
the endpoint to a separate service and are now also using it for other
notifications like:
- notify postprocessing state changes.
- notify file locking and unlocking.
https://github.com/owncloud/ocis/pull/6992
Enhancement - Support spec violating AD FS access token issuer: #7140

AD FS /adfs/.well-known/openid-configuration has an optional
access_token_issuer which, in violation of the OpenID Connect spec, takes
precedence over issuer.

https://github.com/owncloud/ocis/pull/7140
Enhancement - Add OCIS_LDAP_BIND_PASSWORD as replacement for LDAP_BIND_PASSWORD: #7176

The enviroment variable OCIS_LDAP_BIND_PASSWORD was added to be more
consistent with all other global LDAP variables.

LDAP_BIND_PASSWORD is deprecated now and scheduled for removal with the 5.0.0
release.

We also deprecated LDAP_USER_SCHEMA_ID_IS_OCTETSTRING for removal with 5.0.0.
The replacement for it is OCIS_LDAP_USER_SCHEMA_ID_IS_OCTETSTRING.

https://github.com/owncloud/ocis/issues/7176
Enhancement - Keyword Query Language (KQL) search syntax: #7212

We've introduced support for
KQL
as the default oCIS search query language.

Simple queries:
- tag:golden tag:"silver"
- name:file.txt name:"file.docx"
- content:ahab content:"captain aha*"
Date/-range queries
- Mtime:"2023-09-05T08:42:11.23554+02:00"
- Mtime>"2023-09-05T08:42:11.23554+02:00"
- Mtime>="2023-09-05T08:42:11.23554+02:00"
- Mtime<"2023-09-05T08:42:11.23554+02:00"
- Mtime<="2023-09-05T08:42:11.23554+02:00"
- Mtime:today - range: start of today till end of today
- Mtime:yesterday - range: start of yesterday till end of yesterday
- Mtime:"this week" - range: start of this week till end of this week
- Mtime:"this month" - range: start of this month till end of this month
- Mtime:"last month" - range: start of last month till end of last month
- Mtime:"this year" - range: start of this year till end of this year
- Mtime:"last year" - range: start of last year till end of last year
Conjunctive normal form queries:
- tag:golden AND tag:"silver, tag:golden OR tag:"silver, tag:golden NOT tag:"silver
- (tag:book content:ahab*), tag:(book pdf)
Complex queries:
- (name:"moby di*" OR tag:bestseller) AND tag:book NOT tag:read
https://github.com/owncloud/ocis/issues/7042
https://github.com/owncloud/ocis/issues/7179
https://github.com/owncloud/ocis/issues/7114
https://github.com/owncloud/web/issues/9636
https://github.com/owncloud/web/issues/9646
https://github.com/owncloud/ocis/pull/7212
https://github.com/owncloud/ocis/pull/7043
https://github.com/owncloud/ocis/pull/7247
https://github.com/owncloud/ocis/pull/7248
https://github.com/owncloud/ocis/pull/7254
https://github.com/owncloud/ocis/pull/7262
https://github.com/owncloud/web/pull/9653
https://github.com/owncloud/web/pull/9672
Enhancement - Introduce clientlog service: #7217

Add the clientlog service which will send machine readable notifications to
clients

https://github.com/owncloud/ocis/pull/7217
Enhancement - Proxy uses service accounts for provisioning: #7240

The proxy service now uses a service account for provsioning task, like role
assignment and user auto-provisioning. This cleans up some technical debt that
required us to mint reva tokes inside the proxy service.

https://github.com/owncloud/ocis/issues/5550
https://github.com/owncloud/ocis/pull/7240
Enhancement - The password policies change request: #7264

The variables renaming OCIS-3767

https://github.com/owncloud/ocis/pull/7264
Enhancement - Introduce natsjs registry: #7272

Introduce a registry based on the natsjs object store

https://github.com/owncloud/ocis/issues/7272
https://github.com/owncloud/ocis/pull/7487
Enhancement - Add the password policies: #7285

Add the password policies OCIS-3767

https://github.com/owncloud/ocis/pull/7285
https://github.com/owncloud/ocis/pull/7194
https://github.com/cs3org/reva/pull/4147
Enhancement - Add login URL config: #7317

Introduce a config to set the web login URL via WEB_OPTION_LOGIN_URL.

https://github.com/owncloud/ocis/pull/7317
Enhancement - Improve SSE format: #7325

Improve format of sse notifications

https://github.com/owncloud/ocis/pull/7325
Enhancement - New value auto for NOTIFICATIONS_SMTP_AUTHENTICATION: #7356

This cause the notifications service to automatically pick a suitable
authentication method to use with the configured SMTP server. This is also the
new default behavior. The previous default was to not use authentication at all.

https://github.com/owncloud/ocis/issues/7356
Enhancement - Make sse service scalable: #7382

When running multiple sse instances some events would not be reported to the
user. This is fixed.

https://github.com/owncloud/ocis/pull/7382
Enhancement - Edit wrong named enves: #7406

Checked and changed the envvars specified in the task and also removed those
that are no longer used.

https://github.com/owncloud/ocis/pull/7406
Enhancement - Thumbnail generation with image processors: #7409

Thumbnails can now be changed during creation, previously the images were always
scaled to fit the given frame, but it could happen that the images were cut off
because they could not be placed better due to the aspect ratio.

This pr introduces the possibility of specifying how the behavior should be,
following processors are available
- resize
- fit
- fill
- thumbnail
The processor can be applied by adding the processor query param to the request,
e.g. processor=fit, processor=fill, ...

To find out more how the individual processors work please read
https://github.com/disintegration/imaging

If no processor is provided it behaves the same as before (resize for gif's and
thumbnail for all other)

https://github.com/owncloud/enterprise/issues/6057
https://github.com/owncloud/ocis/issues/5179
https://github.com/owncloud/web/issues/7728
https://github.com/owncloud/ocis/pull/7409
Enhancement - Set default for Async Uploads to true: #7416

Async Uploads are meanwhile standard and needed for multiple features. Hence we
default them to true

https://github.com/owncloud/ocis/pull/7416
Enhancement - The default language added: #7417

The ability of configuration the default language has been added to the setting
service.

https://github.com/owncloud/enterprise/issues/5915
https://github.com/owncloud/ocis/pull/7417
Enhancement - Add "Last modified" filter Chip: #7455

Add "Last modified" filter Chip

https://github.com/owncloud/ocis/issues/7431
https://github.com/owncloud/ocis/issues/7551
https://github.com/owncloud/ocis/pull/7455
Enhancement - Config for disabling Web extensions: #7486

A new config for disabling specific Web extensions via their id has been added.

https://github.com/owncloud/web/issues/8524
https://github.com/owncloud/ocis/pull/7486
Enhancement - Store and index metadata: #7490

Audio metadata is now extracted and stored by the search service. It is
available for driveItems in a folder listing using the Graph API.

https://github.com/owncloud/ocis/pull/7490
Enhancement - Add support for audio files to the thumbnails service: #7491

The thumbnails service can now extract artwork from audio files (mp3, ogg, flac)
and render it just like any other image.

https://github.com/owncloud/ocis/pull/7491
Enhancement - Implement sharing roles: #7524

Implement libre graph sharing roles

https://github.com/owncloud/ocis/issues/7418
https://github.com/owncloud/ocis/pull/7524
Enhancement - Add new permission to delete public link password: #7538

Users with this new permission can now delete passwords on read-only public
links. The permission is added to the default roles "Admin" and "Space Admin".

https://github.com/owncloud/ocis/issues/7538
https://github.com/owncloud/ocis/pull/7538
https://github.com/cs3org/reva/pull/4270
Enhancement - Add config to enforce passwords on all public links: #7547

We added the config OCIS_SHARING_PUBLIC_SHARE_MUST_HAVE_PASSWORD to enforce
passwords on all public shares.

https://github.com/owncloud/ocis/issues/7539
https://github.com/owncloud/ocis/pull/7547
Enhancement - Tika content extraction cleanup for search: #7553

So far it has not been possible to determine whether the content for search
should be cleaned up of 'stop words' or not. Stop words are filling words like
"I, you, have, am" etc and defined by the search engine.

The behaviour can now be set with the newly introduced settings option
SEARCH_EXTRACTOR_TIKA_CLEAN_STOP_WORDS=false which is enabled by default.

In addition, the stop word cleanup is no longer as aggressive and now ignores
numbers, urls, basically everything except the defined stop words.

https://github.com/owncloud/ocis/issues/6674
https://github.com/owncloud/ocis/pull/7553
Enhancement - Allow configuring storage registry with envvars: #7554

Introduced new envvars to configure the storage registry in the gateway service

https://github.com/owncloud/ocis/pull/7554
Enhancement - Add search MediaType filter: #7602

Add filter MediaType filter shortcuts to search for specific document types. For
example, a search query mediatype:documents will search for files with the
following mimetypes:

Application/msword
MimeType:application/vnd.openxmlformats-officedocument.wordprocessingml.document
MimeType:application/vnd.oasis.opendocument.text MimeType:text/plain
MimeType:text/markdown MimeType:application/rtf
MimeType:application/vnd.apple.pages

Besides the document shorthand, it also contains following:
- file
- folder
- document
- spreadsheet
- presentation
- pdf
- image
- video
- audio
- archive
File

Folder

Document:

Application/msword
application/vnd.openxmlformats-officedocument.wordprocessingml.document
application/vnd.oasis.opendocument.text text/plain text/markdown application/rtf
application/vnd.apple.pages

Spreadsheet:

Application/vnd.ms-excel application/vnd.oasis.opendocument.spreadsheet text/csv
application/vnd.openxmlformats-officedocument.spreadsheetml.sheet
application/vnd.oasis.opendocument.spreadsheet application/vnd.apple.numbers

Presentations:

Application/vnd.ms-powerpoint
application/vnd.openxmlformats-officedocument.presentationml.presentation
application/vnd.oasis.opendocument.presentation application/vnd.apple.keynote

PDF

Application/pdf

Image:

Image/*

Video:

Video/*

Audio:

Audio/*

Archive (zip ...):

Application/zip application/x-tar application/x-gzip application/x-7z-compressed
application/x-rar-compressed application/x-bzip2 application/x-bzip
application/x-tgz

https://github.com/owncloud/ocis/issues/7432
https://github.com/owncloud/ocis/pull/7602
Enhancement - Add Sharing NG endpoints: #7633

We've added new sharing ng endpoints to the graph beta api. The following
endpoints are added:
- /v1beta1/me/drive/sharedByMe
- /v1beta1/me/drive/sharedWithMe
- /v1beta1/roleManagement/permissions/roleDefinitions
- /v1beta1/roleManagement/permissions/roleDefinitions/{roleID}
- /v1beta1/drives/{drive-id}/items/{item-id}/createLink (create a sharing link)
https://github.com/owncloud/ocis/issues/7436
https://github.com/owncloud/ocis/issues/6993
https://github.com/owncloud/ocis/pull/7633
https://github.com/owncloud/ocis/pull/7686
https://github.com/owncloud/ocis/pull/7684
https://github.com/owncloud/ocis/pull/7683
https://github.com/owncloud/ocis/pull/7239
https://github.com/owncloud/ocis/pull/7687
https://github.com/owncloud/ocis/pull/7751
https://github.com/owncloud/libre-graph-api/pull/112
Enhancement - Configs for Web embed mode: #7670

New configs for the Web embed mode have been added:
- enabled Defines if embed mode is enabled.
- target Defines how Web is being integrated when running in embed mode.
- messagesOrigin Defines a URL under which Web can be integrated via iFrame.
- delegateAuthentication Defines whether Web should require authentication to be done by the parent application.
- delegateAuthenticationOrigin Defines the host to validate the message event origin against when running Web in 'embed' mode.
https://github.com/owncloud/web/issues/9768
https://github.com/owncloud/ocis/pull/7670
Enhancement - Support login page background configuration: #7674

Introduce a new environment variable IDP_LOGIN_BACKGROUND_URL that overrides
the default background image of the IDP login page when present.

https://github.com/owncloud/ocis/issues/7674
https://github.com/owncloud/ocis/pull/7900
Enhancement - Add new permissions: #7700

Adds new permissions to admin/spaceadmin/user roles - Favorites.List allows /
denies the Favorites Listing Request - Favorites.Write is implemented to be
enforced on marking/unmark files as favouritesShare - Shares.Write permission
denies / allows sharing completely for a user on all share CUD requests. (User,
Group)

https://github.com/owncloud/ocis/pull/7700
Enhancement - Add preferred language to user settings: #7720

We have added the preferred language to the libre-graph api & added endpoints
for that to ocis.

https://github.com/owncloud/ocis/issues/5455
https://github.com/owncloud/ocis/pull/7720
https://github.com/owncloud/libre-graph-api/pull/130
Enhancement - Add user filter startswith and contains: #7739

We add two new filters to the user list endpoint. The startswith filter allows
to filter users by the beginning of their name. The contains filter allows to
filter users by a substring of their name.

https://github.com/owncloud/ocis/issues/5486
https://github.com/owncloud/ocis/pull/7739
Enhancement - Allow configuring additional routes: #7741

Allows adding custom routes to the ocis proxy. This enables custom ocis
extensions.

https://github.com/owncloud/ocis/pull/7741
Enhancement - Default link permission config: #7783

A new config for default link permissions that is being announced via
capabilities has been added. It defaults to 1 (= public link with viewer
permissions).

https://github.com/owncloud/web/issues/9919
https://github.com/owncloud/ocis/pull/7783
Enhancement - Add banned password list to the default deployments: #7784

We add banned password list to the default deployments

https://github.com/owncloud/ocis/issues/7724
https://github.com/owncloud/ocis/pull/7784
Enhancement - Update to go 1.21: #7794

We updated to go 1.21.

https://github.com/owncloud/ocis/pull/7794
Enhancement - Add Sharing NG list permissions endpoint: #7805

We've added a new sharing ng endpoint which lists all permissions for a given
item.

https://github.com/owncloud/ocis/issues/6993
https://github.com/owncloud/ocis/pull/7805
Enhancement - Add user list requires filter config: #7866

Introduce a config to require filters in order to list users in Web via
WEB_OPTION_USER_LIST_REQUIRES_FILTER.

https://github.com/owncloud/ocis/pull/7866
Enhancement - Retry antivirus postprocessing step in case of problems: #7874

The antivirus postprocessing step will now be retried for a configurable amount
of times in case it can't get a result from clamav.

https://github.com/owncloud/ocis/pull/7874
Enhancement - Add validation to public share provider: #7877

We changed the implementation of the public share provider in reva to do the
validation on the CS3 Api side. This makes the implementation on the graph side
smaller.

https://github.com/owncloud/ocis/issues/6993
https://github.com/owncloud/ocis/pull/7877
Enhancement - Store and index metadata: #7886

Location metadata is now extracted and stored by the search service. It is
available for driveItems in a folder listing using the Graph API.

https://github.com/owncloud/ocis/pull/7886
Enhancement - Allow regular users to list other users: #7887

Regular users can search for other users and groups. The following limitations
apply:
- Only search queries are allowed (using the $search=term query parameter)
- The search term needs to have at least 3 characters
- for user searches the result set only contains the attributes displayName, userType, mail and id
- for group searches the result set only contains the attributes displayName, groupTypes and id
https://github.com/owncloud/ocis/issues/7782
https://github.com/owncloud/ocis/pull/7887
Enhancement - Add edit public share to sharing NG: #7908

We added the ability to edit public shares to the sharing NG endpoints.

https://github.com/owncloud/ocis/issues/6993
https://github.com/owncloud/ocis/pull/7908/
Enhancement - Add cli commands for trash-bin: #7917

We added the list and restore commands to the trash-bin items to the CLI

https://github.com/owncloud/ocis/issues/7845
https://github.com/owncloud/ocis/pull/7917
https://github.com/cs3org/reva/pull/4392
Enhancement - Add validation update public share: #7978

For Sharing NG, we needed validation in the implementing reva service to keep
the client implementation simple.

https://github.com/owncloud/ocis/pull/7978
Enhancement - Allow inmemory nats-js-kv stores: #7979

Adds envvars to keep nats-js-kv stores in memory and not persist them on disc.

https://github.com/owncloud/ocis/pull/7979
Enhancement - Disable the password policy: #7985

We add the environment variable that allow to disable the password policy.

https://github.com/owncloud/ocis/issues/7916
https://github.com/owncloud/ocis/pull/7985
https://github.com/cs3org/reva/pull/4409
Enhancement - Use kv store in natsjs registry: #7987

Replaces the nats object store with the nats kv store in the natsjs registry

https://github.com/owncloud/ocis/pull/7987
Enhancement - Allow authentication nats connections: #7989

Allow events, store and registry implementation to pass username/password to the
nats instance

https://github.com/owncloud/ocis/pull/7989
Enhancement - Add RED metrics to the metrics endpoint: #7994

We added three new metrics to the metrics endpoint to support the RED method for
monitoring microservices.
- Request Rate: The number of requests per second. The total count of requests
  is available under ocis_proxy_requests_total. - Error Rate: The number of
  failed requests per second. The total count of failed requests is available
  under ocis_proxy_errors_total. - Duration: The amount of time each request
  takes. The duration of all requests is available under
  ocis_proxy_request_duration_seconds. This is a histogram metric, so it also
  provides information about the distribution of request durations.
The metrics are available under the following paths: PROXY_DEBUG_ADDR/metrics
in a prometheus compatible format and maybe secured by PROXY_DEBUG_TOKEN.

https://github.com/owncloud/ocis/pull/7994
Enhancement - Add ocm and sciencemesh services: #7998

We added sciencemesh and ocm services to enable federation.

https://github.com/owncloud/ocis/pull/7998
https://github.com/owncloud/ocis/pull/7576
https://github.com/owncloud/ocis/pull/7464
https://github.com/owncloud/ocis/pull/7463
Enhancement - Make nats-js-kv the default registry: #8011

The previously used default mdns is faulty. Deprecated it together with
consul, nats and etcd implementations.

https://github.com/owncloud/ocis/pull/8011
https://github.com/owncloud/ocis/pull/8027
Enhancement - Service Account roles: #8051

Use a hidden role for service accounts. It will not appear in ListRoles calls
but internally handled by settings service

https://github.com/owncloud/ocis/pull/8051
https://github.com/owncloud/ocis/pull/8074
Enhancement - Update antivirus service: #8062

We update the antivirus icap client library and optimize the antivirus scanning
service. ANTIVIRUS_ICAP_TIMEOUT is now deprecated and
ANTIVIRUS_ICAP_SCAN_TIMEOUT should be used instead.

ANTIVIRUS_ICAP_SCAN_TIMEOUT supports human durations like 1s, 1m, 1h and
1d.

https://github.com/owncloud/ocis/issues/6764
https://github.com/owncloud/ocis/pull/8062
Enhancement - Remove deprecated environment variables: #8149

We have removed all deprecated environment variables that have been marked for
removal for 5.0.0

https://github.com/owncloud/ocis/issues/8025
https://github.com/owncloud/ocis/pull/8149
Enhancement - Disable the password policy: #8152

We reworked and moved disabling the password policy logic from the reva to the
ocis.

https://github.com/owncloud/ocis/issues/7916
https://github.com/owncloud/ocis/pull/8152
https://github.com/cs3org/reva/pull/4453
Enhancement - Allow restarting multiple uploads with one command: #8287

Allows to restart all commands in a specific state.

https://github.com/owncloud/ocis/pull/8287
Enhancement - Modify the concurrency default: #8309

We have changed the default MaxConcurrency value from 100 to 5 to prevent too
frequent gc runs on low memory systems. We have also bumped reva to pull in the
related changes from there.

https://github.com/owncloud/ocis/issues/8257
https://github.com/owncloud/ocis/pull/8309
https://github.com/cs3org/reva/pull/4485
Enhancement - Improve ocis single binary start: #8320

Removes waiting times when starting the single binary. Improves ocis single
binary boot time from 8s to 2.5s

https://github.com/owncloud/ocis/pull/8320
Enhancement - Use environment variables in yaml config files: #8339

We added the ability to use environment variables in yaml config files. This
allows to use environment variables in the config files of the ocis services
which will be replaced by the actual value of the environment variable at
runtime.

Example:
```
web:
  http:
    addr: ${SOME_HTTP_ADDR}
```
This makes it possible to use the same config file for different environments
without the need to change the config file itself. This is especially useful
when using docker-compose to run the ocis services. It is a common pattern to
create an .env file which contains the environment variables for the
docker-compose file. Now you can use the same .env file to configure the ocis
services.

https://github.com/owncloud/ocis/pull/8339
Enhancement - Increment filenames on upload collisions in secret filedrops: #8340

We have bumped reva to pull in the changes needed for automatically increment
filenames on upload collisions in secret filedrops.

https://github.com/owncloud/ocis/issues/8291
https://github.com/owncloud/ocis/pull/8340
Enhancement - Allow sending multiple user ids in one sse event: #8379

Sending multiple user ids in one sse event is now possible which reduces the
number of sent events.

https://github.com/owncloud/ocis/pull/8379
https://github.com/cs3org/reva/pull/4501
Enhancement - Allow to skip service listing: #8408

The ocis version cmd listed all services by default. This is not always
intended, so we allow to skip the listing of the services by using the
--skip-services flag.

https://github.com/owncloud/ocis/issues/8070
https://github.com/owncloud/ocis/pull/8408
Enhancement - Add a make step to validate the env var annotations: #8436

We have added a make step make validate-env-var-annotations to validate the
env var annotations in to the environment variables.

https://github.com/owncloud/ocis/issues/8258
https://github.com/owncloud/ocis/pull/8436
Enhancement - Update web to v8.0.0-rc.5: #8491

Tags: web

We updated ownCloud Web to v8.0.0-rc.5. Please refer to the changelog (linked)
for details on the web release.

Summary * Bugfix

owncloud/web#10473: Public link
file download

We updated ownCloud Web to v8.0.0-rc.4. Please refer to the changelog (linked)
for details on the web release.

Summary * Bugfix

owncloud/web#10489: Wrong share
permissions when resharing off

We updated ownCloud Web to v8.0.0-rc.3. Please refer to the changelog (linked)
for details on the web release.

Summary * Bugfix

owncloud/web#10318: Scrollable
account page * Bugfix
owncloud/web#10321: Private link
error messages * Bugfix
owncloud/web#10347: Readonly user
attributes have no effect on group memberships * Bugfix
owncloud/web#10424: Restore space
- Enhancement owncloud/web#10356:
  Preview app add reset button for images
We updated ownCloud Web to v8.0.0-rc.2. Please refer to the changelog (linked)
for details on the web release.

Summary * Bugfix

owncloud/web#10176: Turned off
file extensions not always respected * Bugfix
owncloud/web#10232: Skip searchbar
preview fetch on reload

We updated ownCloud Web to v8.0.0-rc.1. Please refer to the changelog (linked)
for details on the web release.

Summary * Enhancement

owncloud/web#10224: Harmonize
AppSwitcher icon colors * Bugfix
owncloud/web#10230: Configurable
concurrent requests * Bugfix
owncloud/web#10158: GDPR export
polling * Bugfix
owncloud/web#10220: Loading
indicator during conflict dialog * Bugfix
owncloud/web#10156: Uploading
the same files parallel * Bugfix
owncloud/web#10179: Space
navigate to trash missing * Bugfix
owncloud/web#10118: Tilesview
has whitespace * Bugfix
owncloud/web#10182: Make
versions panel readonly in viewers and editors

We updated ownCloud Web to v8.0.0-beta.2. Please refer to the changelog (linked)
for details on the web release.

Summary * Bugfix

owncloud/web#10010: Displaying
full video in their dimensions * Bugfix
owncloud/web#10149: Spaces files
list previews cropped * Bugfix
owncloud/web#10149: Spaces
overview tile previews zoomed * Bugfix
owncloud/web#10154: Resolving
links without drive alias

We updated ownCloud Web to v8.0.0-beta.1. Please refer to the changelog (linked)
for details on the web release.

Summary * Change

owncloud/web#9698: Theme handling *
Enhancement owncloud/web#10111:
Registering right sidebar panels as extension * Enhancement
owncloud/web#10111: File sidebar
in viewer and editor apps

We updated ownCloud Web to v8.0.0-alpha.13. Please refer to the changelog
(linked) for details on the web release.

Summary * Enhancement

owncloud/web#10104: Create link
modal

We updated ownCloud Web to v8.0.0-alpha.12. Please refer to the changelog
(linked) for details on the web release.

Summary * Bugfix

owncloud/web#9257: Filter out
shares without display name * Bugfix
owncloud/web#9483: PDF loading
Safari * Bugfix owncloud/web#9513:
Set or remove expiration date on group share not possible * Bugfix
owncloud/web#9529: Shared with
action menu label alignment * Bugfix
owncloud/web#9587: Internal public
link resolving * Bugfix
owncloud/web#9593: Audio- &
video-loading on Shared with me page * Bugfix
owncloud/web#9649: Add project
space filter * Bugfix
owncloud/web#9663: Respect the
open-in-new-tab-config for external apps * Bugfix
owncloud/web#9670: Tiles view
accessibility * Bugfix
owncloud/web#9694: Special
characters in username * Bugfix
owncloud/web#9788: Create .space
folder if it does not exist * Bugfix
owncloud/web#9799: Link resolving
into default app * Bugfix
owncloud/web#9832: Copy quicklinks
for webkit navigator * Bugfix
owncloud/web#9843: Fix display path
on resources * Bugfix
owncloud/web#9844: Upload space
image * Bugfix owncloud/web#9861:
Duplicated file search request * Bugfix
owncloud/web#9873: Tags are no
longer editable for a locked file * Bugfix
owncloud/web#9881: Prevent
rendering of old/wrong set of resources in search list * Bugfix
owncloud/web#9915: Keep both
folders conflict in same-named folders * Bugfix
owncloud/web#9931: Enabling "invite
people" for password-protected folder/file * Bugfix
owncloud/web#10031: Icon
extension mapping * Bugfix
owncloud/web#10065: Logout page
after token expiry * Bugfix
owncloud/web#10083: Disable
expiration date for alias link (internal) * Bugfix
owncloud/web#10092: Allow empty
search query in "in-here" search * Bugfix
owncloud/web#10096: Remove
password buttons on input if disabled * Change
owncloud/web#7338: Remove
deprecated code * Enhancement
owncloud/web#7317: Make login url
configurable * Enhancement
owncloud/web#7497: Permission
checks for shares and favorites * Enhancement
owncloud/web#7600: Scroll to
newly created folder * Enhancement
owncloud/web#9302: Application
unification * Enhancement
owncloud/web#9423: Show local
loading spinner in sharing button * Enhancement
owncloud/web#9441: File versions
tooltip with absolute date * Enhancement
owncloud/web#9441: Disabling
extensions * Enhancement
owncloud/web#9451: Add SSE to get
notifications instantly * Enhancement
owncloud/web#9525: Tags form
improved * Enhancement
owncloud/web#9527: Don't display
confirmation dialog on file deletion * Enhancement
owncloud/web#9531: Personal
shares can be shown and hidden * Enhancement
owncloud/web#9552: Upload
preparation time * Enhancement
owncloud/web#9561: Indicate
processing state * Enhancement
owncloud/web#9566: Display locking
information * Enhancement
owncloud/web#9584: Moving share's
"set expiration date" function * Enhancement
owncloud/web#9625: Add keyboard
navigation to spaces overview * Enhancement
owncloud/web#9627: Add batch
actions to spaces * Enhancement
owncloud/web#9653: Keyword Query
Language (KQL) search syntax * Enhancement
owncloud/web#9671: OcModal set
buttons to same width * Enhancement
owncloud/web#9682: Add password
policy compatibility * Enhancement
owncloud/web#9691: Password
generator for public links * Enhancement
owncloud/web#9696: Added app banner
for mobile devices * Enhancement
owncloud/web#9706: Unify sharing
expiration date menu items * Enhancement
owncloud/web#9727: Show error if
password is on a banned password list * Enhancement
owncloud/web#9771: Handle
postprocessing state via Server Sent Events * Enhancement
owncloud/web#9806: Preview image
presentation * Enhancement
owncloud/web#9809: Add editors to
the application menu * Enhancement
owncloud/web#9814: Registering nav
items as extension * Enhancement
owncloud/web#9815: Add new portal
into runtime to include footer * Enhancement
owncloud/web#9818: Add mode
config option * Enhancement
owncloud/web#9831: Last modified
filter chips * Enhancement
owncloud/web#9841: Add embed mode
actions * Enhancement
owncloud/web#9847: Provide vendor
neutral file icons * Enhancement
owncloud/web#9853: Show only create
folder button in embed mode * Enhancement
owncloud/web#9854: Search query
term linking * Enhancement
owncloud/web#9857: Add permission
to delete link passwords when password is enforced * Enhancement
owncloud/web#9858: Remove settings
icon from searchbar * Enhancement
owncloud/web#9863: Location picker
in embed mode * Enhancement
owncloud/web#9864: Search tags
filter chips style aligned * Enhancement
owncloud/web#9884: Enable dark
theme on importer * Enhancement
owncloud/web#9890: Create shortcuts
- Enhancement owncloud/web#9905:
  Manage tags in details panel * Enhancement
  owncloud/web#9906: Reorganize "New"
  menu * Enhancement
  owncloud/web#9912: Add media type
  filter chip * Enhancement
  owncloud/web#9940: Display error
  message for upload to locked folder * Enhancement
  owncloud/web#9966: Support more
  audio formats with correct icon * Enhancement
  owncloud/web#10007: Additional
  languages * Enhancement
  owncloud/web#10013: Shared by
  filter * Enhancement
  owncloud/web#10014: Share search
  filter * Enhancement
  owncloud/web#10024: Duplicate
  space * Enhancement
  owncloud/web#10037: Default link
  permission * Enhancement
  owncloud/web#10047: Add explaining
  contextual helper to spaces overview * Enhancement
  owncloud/web#10057: Folder tree
  creation during upload * Enhancement
  owncloud/web#10062: Show webdav
  information in details view * Enhancement
  owncloud/web#10072: Add
  authentication delegation in the Embed mode * Enhancement
  owncloud/web#10099: Support
  mandatory filter while listing users * Enhancement
  owncloud/web#10102: Registering
  quick actions as extension
https://github.com/owncloud/ocis/pull/8491
https://github.com/owncloud/ocis/pull/8468
https://github.com/owncloud/ocis/pull/8342
https://github.com/owncloud/ocis/pull/8154
https://github.com/owncloud/ocis/pull/8154
https://github.com/owncloud/ocis/pull/8055
https://github.com/owncloud/ocis/pull/7930
https://github.com/owncloud/ocis/pull/7952
https://github.com/owncloud/ocis/pull/7918
https://github.com/owncloud/ocis/pull/7883
https://github.com/owncloud/web/releases/tag/v8.0.0-rc.5
https://github.com/owncloud/web/releases/tag/v8.0.0-rc.4
https://github.com/owncloud/web/releases/tag/v8.0.0-rc.3
https://github.com/owncloud/web/releases/tag/v8.0.0-rc.2
https://github.com/owncloud/web/releases/tag/v8.0.0-rc.2
https://github.com/owncloud/web/releases/tag/v8.0.0-rc.1
https://github.com/owncloud/web/releases/tag/v8.0.0-beta.1
https://github.com/owncloud/web/releases/tag/v8.0.0-beta.2
https://github.com/owncloud/web/releases/tag/v8.0.0-alpha.13
https://github.com/owncloud/web/releases/tag/v8.0.0-alpha.12
Enhancement - Drop the unnecessary grants exists check when creating shares: #8502

We have bumped reva to drop the unnecessary grants exists check when creating
shares.

https://github.com/owncloud/ocis/pull/8502
Enhancement - Update reva to 2.19.0: #8519

We update reva to the version 2.19.0
- Bugfix cs3org/reva#4464: Don't check lock grants
- Bugfix cs3org/reva#4516: The sharemanager can now reject grants with resharing permissions
- Bugfix cs3org/reva#4512: Bump dependencies
- Bugfix cs3org/reva#4481: Distinguish failure and node metadata reversal
- Bugfix cs3org/reva#4456: Do not lose revisions when restoring the first revision
- Bugfix cs3org/reva#4472: Fix concurrent access to a map
- Bugfix cs3org/reva#4457: Fix concurrent map access in sharecache
- Bugfix cs3org/reva#4498: Fix Content-Disposition header in dav
- Bugfix cs3org/reva#4461: CORS handling for WebDAV requests fixed
- Bugfix cs3org/reva#4462: Prevent setting container specific permissions on files
- Bugfix cs3org/reva#4479: Fix creating documents in the app provider
- Bugfix cs3org/reva#4474: Make /dav/meta consistent
- Bugfix cs3org/reva#4446: Disallow to delete a file during the processing
- Bugfix cs3org/reva#4517: Fix duplicated items in the sharejail root
- Bugfix cs3org/reva#4473: Decomposedfs now correctly lists sessions
- Bugfix cs3org/reva#4528: Respect IfNotExist option when uploading in cs3 metadata storage
- Bugfix cs3org/reva#4503: Fix an error when move
- Bugfix cs3org/reva#4466: Fix natsjskv store
- Bugfix cs3org/reva#4533: Fix recursive trashcan purge
- Bugfix cs3org/reva#4492: Fix the resource name
- Bugfix cs3org/reva#4463: Fix the resource name
- Bugfix cs3org/reva#4448: Fix truncating existing files
- Bugfix cs3org/reva#4434: Fix the upload postprocessing
- Bugfix cs3org/reva#4469: Handle interrupted uploads
- Bugfix cs3org/reva#4532: Jsoncs3 cache fixes
- Bugfix cs3org/reva#4449: Keep failed processing status
- Bugfix cs3org/reva#4529: We aligned some OCS return codes with oc10
- Bugfix cs3org/reva#4507: Make tusd CORS headers configurable
- Bugfix cs3org/reva#4452: More efficient share jail
- Bugfix cs3org/reva#4476: No need to unmark postprocessing when it was not started
- Bugfix cs3org/reva#4454: Skip unnecessary share retrieval
- Bugfix cs3org/reva#4527: Unify datagateway method handling
- Bugfix cs3org/reva#4530: Drop unnecessary grant exists check
- Bugfix cs3org/reva#4475: Upload session specific processing flag
- Enhancement cs3org/reva#4501: Allow sending multiple user ids in one sse event
- Enhancement cs3org/reva#4485: Modify the concurrency default
- Enhancement cs3org/reva#4526: Configurable s3 put options
- Enhancement cs3org/reva#4453: Disable the password policy
- Enhancement cs3org/reva#4477: Extend ResumePostprocessing event
- Enhancement cs3org/reva#4491: Add filename incrementor for secret filedrops
- Enhancement cs3org/reva#4490: Lazy initialize public share manager
- Enhancement cs3org/reva#4494: Start implementation of a plain posix storage driver
- Enhancement cs3org/reva#4502: Add spaceindex.AddAll()
Changelog for reva 2.18.0 (2023-12-22)

The following sections list the changes in reva 2.18.0 relevant to reva users.
The changes are ordered by importance.
- Bugfix cs3org/reva#4424: Fixed panic in receivedsharecache pkg
- Bugfix cs3org/reva#4425: Fix overwriting files with empty files
- Bugfix cs3org/reva#4432: Fix /dav/meta endpoint for shares
- Bugfix cs3org/reva#4422: Fix disconnected traces
- Bugfix cs3org/reva#4429: Internal link creation
- Bugfix cs3org/reva#4407: Make ocdav return correct oc:spaceid
- Bugfix cs3org/reva#4410: Improve OCM support
- Bugfix cs3org/reva#4402: Refactor upload session
- Enhancement cs3org/reva#4421: Check permissions before adding, deleting or updating shares
- Enhancement cs3org/reva#4403: Add validation to update public share
- Enhancement cs3org/reva#4409: Disable the password policy
- Enhancement cs3org/reva#4412: Allow authentication for nats connections
- Enhancement cs3org/reva#4411: Add option to configure streams non durable
- Enhancement cs3org/reva#4406: Rework cache configuration
- Enhancement cs3org/reva#4414: Track more upload session metrics
Changelog for reva 2.17.0 (2023-12-12)

The following sections list the changes in reva 2.17.0 relevant to reva users.
The changes are ordered by importance.
- Bugfix cs3org/reva#4278: Disable DEPTH infinity in PROPFIND
- Bugfix cs3org/reva#4318: Do not allow moves between shares
- Bugfix cs3org/reva#4290: Prevent panic when trying to move a non-existent file
- Bugfix cs3org/reva#4241: Allow an empty credentials chain in the auth middleware
- Bugfix cs3org/reva#4216: Fix an error message
- Bugfix cs3org/reva#4324: Fix capabilities decoding
- Bugfix cs3org/reva#4267: Fix concurrency issue
- Bugfix cs3org/reva#4362: Fix concurrent lookup
- Bugfix cs3org/reva#4336: Fix definition of "file-editor" role
- Bugfix cs3org/reva#4302: Fix checking of filename length
- Bugfix cs3org/reva#4366: Fix CS3 status code when looking up non existing share
- Bugfix cs3org/reva#4299: Fix HTTP verb of the generate-invite endpoint
- Bugfix cs3org/reva#4249: GetUserByClaim not working with MSAD for claim "userid"
- Bugfix cs3org/reva#4217: Fix missing case for "hide" in UpdateShares
- Bugfix cs3org/reva#4140: Fix missing etag in shares jail
- Bugfix cs3org/reva#4229: Fix destroying the Personal and Project spaces data
- Bugfix cs3org/reva#4193: Fix overwrite a file with an empty file
- Bugfix cs3org/reva#4365: Fix create public share
- Bugfix cs3org/reva#4380: Fix the public link update
- Bugfix cs3org/reva#4250: Fix race condition
- Bugfix cs3org/reva#4345: Fix conversion of custom ocs permissions to roles
- Bugfix cs3org/reva#4134: Fix share jail
- Bugfix cs3org/reva#4335: Fix public shares cleanup config
- Bugfix cs3org/reva#4338: Fix unlock via space API
- Bugfix cs3org/reva#4341: Fix spaceID in meta endpoint response
- Bugfix cs3org/reva#4351: Fix 500 when open public link
- Bugfix cs3org/reva#4352: Fix the tgz mime type
- Bugfix cs3org/reva#4388: Allow UpdateUserShare() to update just the expiration date
- Bugfix cs3org/reva#4214: Always pass adjusted default nats options
- Bugfix cs3org/reva#4291: Release lock when expired
- Bugfix cs3org/reva#4386: Remove dead enable_home config
- Bugfix cs3org/reva#4292: Return 403 when user is not permitted to lock
- Enhancement cs3org/reva#4389: Add audio and location props
- Enhancement cs3org/reva#4337: Check permissions before creating shares
- Enhancement cs3org/reva#4326: Add search mediatype filter
- Enhancement cs3org/reva#4367: Add GGS mime type
- Enhancement cs3org/reva#4194: Add hide flag to shares
- Enhancement cs3org/reva#4358: Add default permissions capability for links
- Enhancement cs3org/reva#4133: Add more metadata to locks
- Enhancement cs3org/reva#4353: Add support for .docxf files
- Enhancement cs3org/reva#4363: Add nats-js-kv store
- Enhancement cs3org/reva#4197: Add the Banned-Passwords List
- Enhancement cs3org/reva#4190: Add the password policies
- Enhancement cs3org/reva#4384: Add a retry postprocessing outcome and event
- Enhancement cs3org/reva#4271: Add search capability
- Enhancement cs3org/reva#4119: Add sse event
- Enhancement cs3org/reva#4392: Add additional permissions to service accounts
- Enhancement cs3org/reva#4344: Add url extension to mime type list
- Enhancement cs3org/reva#4372: Add validation to the public share provider
- Enhancement cs3org/reva#4244: Allow listing reveived shares by service accounts
- Enhancement cs3org/reva#4129: Auto-Accept Shares through ServiceAccounts
- Enhancement cs3org/reva#4374: Handle trashbin file listings concurrently
- Enhancement cs3org/reva#4325: Enforce Permissions
- Enhancement cs3org/reva#4368: Extract log initialization
- Enhancement cs3org/reva#4375: Introduce UploadSessionLister interface
- Enhancement cs3org/reva#4268: Implement sharing roles
- Enhancement cs3org/reva#4160: Improve utils pkg
- Enhancement cs3org/reva#4335: Add sufficient permissions check function
- Enhancement cs3org/reva#4281: Port OCM changes from master
- Enhancement cs3org/reva#4270: Opt out of public link password enforcement
- Enhancement cs3org/reva#4181: Change the variable names for the password policy
- Enhancement cs3org/reva#4256: Rename hidden share variable name
- Enhancement cs3org/reva#3926: Service Accounts
- Enhancement cs3org/reva#4359: Update go-ldap to v3.4.6
- Enhancement cs3org/reva#4170: Update password policies
- Enhancement cs3org/reva#4232: Improve error handling in utils package
https://github.com/owncloud/ocis/pull/8519
https://github.com/owncloud/ocis/pull/8502
https://github.com/owncloud/ocis/pull/8340
https://github.com/owncloud/ocis/pull/8381
https://github.com/owncloud/ocis/pull/8287
https://github.com/owncloud/ocis/pull/8278
https://github.com/owncloud/ocis/pull/8264
https://github.com/owncloud/ocis/pull/8100
https://github.com/owncloud/ocis/pull/8100
https://github.com/owncloud/ocis/pull/8038
https://github.com/owncloud/ocis/pull/8056
https://github.com/owncloud/ocis/pull/7949
https://github.com/owncloud/ocis/pull/7793
https://github.com/owncloud/ocis/pull/7978
https://github.com/owncloud/ocis/pull/7979
https://github.com/owncloud/ocis/pull/7963
https://github.com/owncloud/ocis/pull/7986
https://github.com/owncloud/ocis/pull/7721
https://github.com/owncloud/ocis/pull/7727
https://github.com/owncloud/ocis/pull/7752

ocis - 5.0.0-rc.4

Published by ownclouders 8 months ago

Changes

Incremental Changes since 5.0.0-rc.3

Bugfix - Remove invalid environment variables: #8303
Bugfix - Fix concurrent shares config: #8317
Bugfix - Signed url verification: #8385
Enhancement - Support login page background configuration: #7674
Enhancement - Modify the concurrency default: #8309

Full List of Changes in 5.0.0-rc.4

Summary

Bugfix - Fix wrong compile date: #6132
Bugfix - Fix the kql-bleve search: #7290
Bugfix - Bring back the USERS_LDAP_USER_SCHEMA_ID variable: #7312
Bugfix - Do not reset state of received shares when rebuilding the jsoncs3 index: #7319
Bugfix - Deprecate redundant encryptions settings for notification service: #7345
Bugfix - Check school number for duplicates before adding a school: #7351
Bugfix - Don't reload web config: #7369
Bugfix - Delete outdated userlog events: #7410
Bugfix - Set the mountpoint on auto accept: #7460
Bugfix - Fix default language fallback: #7465
Bugfix - GetUserByClaim fixed for Active Directory: #7476
Bugfix - Fix preview request 500 error when made too early: #7502
Bugfix - Fix 403 in docs pipeline: #7509
Bugfix - Fix the auth service env variable: #7523
Bugfix - Token storage config fixed: #7528
Bugfix - Set existing mountpoint on auto accept: #7592
Bugfix - Return 423 status code on tag create: #7596
Bugfix - Fix libre-graph status codes: #7678
Bugfix - Fix unlock via space API: #7726
Bugfix - Disable DEPTH infinity in PROPFIND: #7746
Bugfix - Fix the tgz mime type: #7772
Bugfix - Fix natsjs cache: #7790
Bugfix - Fix search service start: #7795
Bugfix - The race conditions in tests: #7847
Bugfix - Do not purge expired upload sessions that are still postprocessing: #7859
Bugfix - Fix the public link update: #7862
Bugfix - Fix jwt config of policies service: #7893
Bugfix - Updating logo with new theme structure: #7930
Bugfix - Password policy return code was wrong: #7952
Bugfix - Removed outdated and unused dependency from idp package: #7957
Bugfix - Update permission validation: #7963
Bugfix - Renaming a user to a string with capital letters: #7964
Bugfix - Improve OCM support: #7973
Bugfix - Permissions of a role with duplicate ID: #7976
Bugfix - Non durable streams for sse service: #7986
Bugfix - Fix empty trace ids: #8023
Bugfix - Fix search by containing special characters: #8050
Bugfix - Fix the upload postprocessing: #8117
Bugfix - Disallow to delete a file during the processing: #8132
Bugfix - Fix wrong naming in nats-js-kv registry: #8140
Bugfix - IDP CS3 backend sessions now survire restart: #8142
Bugfix - Fix patching of language: #8182
Bugfix - Fix search service to not log expected cases as errors: #8200
Bugfix - Updating and reset logo failed: #8211
Bugfix - Cleanup graph/pkg/service/v0/driveitems.go: #8228
Bugfix - Cleanup search/pkg/search/search.go: #8230
Bugfix - Graph/sharedWithMe works for shares from project spaces now: #8233
Bugfix - Fix PATCH/DELETE status code for drives that don't support them: #8235
Bugfix - Fix nats authentication: #8236
Bugfix - Fix the resource name: #8246
Bugfix - Apply role constraints when creating shares via the graph API: #8247
Bugfix - Fix concurrent access to a map: #8269
Bugfix - Fix nats registry: #8281
Bugfix - Remove invalid environment variables: #8303
Bugfix - Fix concurrent shares config: #8317
Bugfix - Signed url verification: #8385
Bugfix - Fix last month search: #31145
Change - Auto-Accept Shares: #7097
Change - Change the default TUS chunk size: #7273
Change - Remove privacyURL and imprintURL from the config: #7938
Change - Remove accessDeniedHelpUrl from the config: #7970
Enhancement - Add the Banned Passwords List: #4197
Enhancement - Introduce service accounts: #6427
Enhancement - SSE for messaging: #6992
Enhancement - Support spec violating AD FS access token issuer: #7138
Enhancement - Add OCIS_LDAP_BIND_PASSWORD as replacement for LDAP_BIND_PASSWORD: #7176
Enhancement - Keyword Query Language (KQL) search syntax: #7212
Enhancement - Introduce clientlog service: #7217
Enhancement - Proxy uses service accounts for provisioning: #7240
Enhancement - The password policies change request: #7264
Enhancement - Introduce natsjs registry: #7272
Enhancement - Add the password policies: #7285
Enhancement - Add login URL config: #7317
Enhancement - Improve SSE format: #7325
Enhancement - New value auto for NOTIFICATIONS_SMTP_AUTHENTICATION: #7356
Enhancement - Make sse service scalable: #7382
Enhancement - Edit wrong named enves: #7406
Enhancement - Thumbnail generation with image processors: #7409
Enhancement - Set default for Async Uploads to true: #7416
Enhancement - The default language added: #7417
Enhancement - Add "Last modified" filter Chip: #7455
Enhancement - Config for disabling Web extensions: #7486
Enhancement - Store and index metadata: #7490
Enhancement - Add support for audio files to the thumbnails service: #7491
Enhancement - Implement sharing roles: #7524
Enhancement - Add new permission to delete public link password: #7538
Enhancement - Add config to enforce passwords on all public links: #7547
Enhancement - Tika content extraction cleanup for search: #7553
Enhancement - Allow configuring storage registry with envvars: #7554
Enhancement - Add search MediaType filter: #7602
Enhancement - Add Sharing NG endpoints: #7633
Enhancement - Configs for Web embed mode: #7670
Enhancement - Support login page background configuration: #7674
Enhancement - Add new permissions: #7700
Enhancement - Add preferred language to user settings: #7720
Enhancement - Add user filter startswith and contains: #7739
Enhancement - Allow configuring additional routes: #7740
Enhancement - Default link permission config: #7783
Enhancement - Add banned password list to the default deployments: #7784
Enhancement - Update to go 1.21: #7794
Enhancement - Add Sharing NG list permissions endpoint: #7805
Enhancement - Add user list requires filter config: #7866
Enhancement - Retry antivirus postprocessing step in case of problems: #7874
Enhancement - Add validation to public share provider: #7877
Enhancement - Store and index metadata: #7886
Enhancement - Allow regular users to list other users: #7887
Enhancement - Add edit public share to sharing NG: #7908
Enhancement - Add cli commands for trash-bin: #7917
Enhancement - Add validation update public share: #7978
Enhancement - Allow inmemory nats-js-kv stores: #7979
Enhancement - Disable the password policy: #7985
Enhancement - Use kv store in natsjs registry: #7987
Enhancement - Allow authentication nats connections: #7989
Enhancement - Add RED metrics to the metrics endpoint: #7994
Enhancement - Add ocm and sciencemesh services: #7998
Enhancement - Make nats-js-kv the default registry: #8011
Enhancement - Service Account roles: #8051
Enhancement - Update antivirus service: #8062
Enhancement - Remove deprecated environment variables: #8149
Enhancement - Disable the password policy: #8152
Enhancement - Update reva to latest edge version: #8287
Enhancement - Allow restarting multiple uploads with one command: #8287
Enhancement - Modify the concurrency default: #8309
Enhancement - Update web to v8.0.0-rc.3: #8342

Details

Bugfix - Fix wrong compile date: #6132

We fixed that current date is always printed.

https://github.com/owncloud/ocis/issues/6124
https://github.com/owncloud/ocis/pull/6132
Bugfix - Fix the kql-bleve search: #7290

We fixed the issue when 500 on searches that contain ":". Added the characters
escaping according to https://blevesearch.com/docs/Query-String-Query/

https://github.com/owncloud/ocis/issues/7282
https://github.com/owncloud/ocis/pull/7290
Bugfix - Bring back the USERS_LDAP_USER_SCHEMA_ID variable: #7312

We reintroduced the USERS_LDAP_USER_SCHEMA_ID variable which was accidently
removed from the users service with the 4.0.0 release.

https://github.com/owncloud/ocis/issues/7312
https://github.com/owncloud/ocis-charts/issues/397
Bugfix - Do not reset state of received shares when rebuilding the jsoncs3 index: #7319

We fixed a problem with the "ocis migrate rebuild-jsoncs3-indexes" command which
reset the state of received shares to "pending".

https://github.com/owncloud/ocis/issues/7319
Bugfix - Deprecate redundant encryptions settings for notification service: #7345

The values tls and ssl for the smtp_encryption configuration setting are
duplicates of starttls and ssltls. They have been marked as deprecated. A
warning will be logged when they are still used. Please use starttls instead
for tls and ssltls instead of `ssl.

https://github.com/owncloud/ocis/issues/7345
Bugfix - Check school number for duplicates before adding a school: #7351

We fixed an issue that allowed to create two schools with the same school number

https://github.com/owncloud/enterprise/issues/6051
https://github.com/owncloud/ocis/pull/7351
Bugfix - Don't reload web config: #7369

When requesting config.json file from the server, web service would reload the
file if a path is set. This will remove config entries set via Envvar. Since we
want to have the possiblity to set configuration from both sources we removed
the reading from file. The file will still be loaded on service startup.

https://github.com/owncloud/ocis/pull/7369
Bugfix - Delete outdated userlog events: #7410

Userlog will now delete events when the user has no longer access to the
underlying resource

https://github.com/owncloud/ocis/pull/7410
Bugfix - Set the mountpoint on auto accept: #7460

On shares auto accept set a mountpoint with same logic as ocs handler

https://github.com/owncloud/ocis/pull/7460
Bugfix - Fix default language fallback: #7465

Add the default language for the webui, the settings, userlog and notification
service.

https://github.com/owncloud/ocis/issues/7465
Bugfix - GetUserByClaim fixed for Active Directory: #7476

The reva ldap backend for the users and groups service did not hex escape binary
uuids in LDAP filter correctly this could cause problems in Active Directory
setups for services using the GetUserByClaim CS3 request with claim "userid".

https://github.com/owncloud/ocis/issues/7469
https://github.com/owncloud/ocis/pull/7476
Bugfix - Fix preview request 500 error when made too early: #7502

Fix the status code and message when a thumbnail request is made too early.

https://github.com/owncloud/ocis/issues/7502
https://github.com/owncloud/ocis/pull/7507
Bugfix - Fix 403 in docs pipeline: #7509

Docs pipeline was not routed through our proxies which could lead to requests
being blacklisted

https://github.com/owncloud/ocis/issues/7509
https://github.com/owncloud/ocis/pull/7511
Bugfix - Fix the auth service env variable: #7523

We the auth service env variable to the service specific name. Before it was
configurable via AUTH_MACHINE_JWT_SECRET and now is configurable via
AUTH_SERVICE_JWT_SECRET.

https://github.com/owncloud/ocis/pull/7523
Bugfix - Token storage config fixed: #7528

The token storage config in the config.json for web was missing when it was set
to false.

https://github.com/owncloud/ocis/issues/7462
https://github.com/owncloud/ocis/pull/7528
Bugfix - Set existing mountpoint on auto accept: #7592

When already having a share for a specific resource, auto accept would use
custom mountpoints which lead to other errors. Now auto-accept is using the
existing mountpoint of a share.

https://github.com/owncloud/ocis/pull/7592
Bugfix - Return 423 status code on tag create: #7596

When a file is locked, return 423 status code instead 500 on tag create

https://github.com/owncloud/ocis/pull/7596
Bugfix - Fix libre-graph status codes: #7678

Creating group: https://owncloud.dev/libre-graph-api/#/groups/CreateGroup
changed: 200 -> 201

Creating users: https://owncloud.dev/libre-graph-api/#/users/CreateUser changed:
200 -> 201

Export GDPR: https://owncloud.dev/libre-graph-api/#/user/ExportPersonalData
changed: 201 -> 202

https://github.com/owncloud/ocis/issues/7678
https://github.com/owncloud/ocis/pull/7705
Bugfix - Fix unlock via space API: #7726

We fixed a bug that caused Error 500 when user try to unlock file using fileid
The handleSpaceUnlock has been added

https://github.com/owncloud/ocis/issues/7708
https://github.com/owncloud/ocis/pull/7726
https://github.com/cs3org/reva/pull/4338
Bugfix - Disable DEPTH infinity in PROPFIND: #7746

We fixed the Disabled DEPTH infinity in PROPFIND for: Personal
/remote.php/dav/files/admin Public link share
/remote.php/dav/public-files/ Trashbin
/remote.php/dav/spaces/trash-bin/

https://github.com/owncloud/ocis/issues/7359
https://github.com/owncloud/ocis/pull/7746
https://github.com/cs3org/reva/pull/4278
Bugfix - Fix the tgz mime type: #7772

We have fixed a bug when the tgz mime type was not "application/gzip"

https://github.com/owncloud/ocis/issues/7744
https://github.com/owncloud/ocis/pull/7772
Bugfix - Fix natsjs cache: #7790

The nats-js cache was not working. It paniced and wrote a lot of error logs.
Both is fixed now.

https://github.com/owncloud/ocis/pull/7790
Bugfix - Fix search service start: #7795

The search service would sometimes not start correctly because config values
are overwritten by default configuration.

https://github.com/owncloud/ocis/pull/7795
Bugfix - The race conditions in tests: #7847

We fixed the race conditions in tests.

https://github.com/owncloud/ocis/issues/7846
https://github.com/owncloud/ocis/pull/7847
Bugfix - Do not purge expired upload sessions that are still postprocessing: #7859

https://github.com/owncloud/ocis/pull/7859
https://github.com/owncloud/ocis/pull/7958
Bugfix - Fix the public link update: #7862

We fixed a bug when normal users can update the public link to delete its
password if permission is not sent in data.

https://github.com/owncloud/ocis/issues/7821
https://github.com/owncloud/ocis/pull/7862
Bugfix - Fix jwt config of policies service: #7893

Removes jwt config of policies service

https://github.com/owncloud/ocis/pull/7893
Bugfix - Updating logo with new theme structure: #7930

Updating and resetting the logo when using the new theme.json structure in Web
has been fixed.

https://github.com/owncloud/ocis/pull/7930
Bugfix - Password policy return code was wrong: #7952

We fixed the status code on SharingNG update permissions for public shares.

https://github.com/owncloud/ocis/pull/7952
Bugfix - Removed outdated and unused dependency from idp package: #7957

We've removed the outdated and apparently unused dependency cldr from the
kpop dependency inside the idp web ui. This resolves a security issue around
an oudated xmldom package version, originating from said kpop library.

https://github.com/owncloud/ocis/issues/7957
https://github.com/owncloud/ocis/pull/7988
Bugfix - Update permission validation: #7963

We fixed a bug where the permission validation was not working correctly.

https://github.com/owncloud/ocis/pull/7963
https://github.com/cs3org/reva/pull/4405
Bugfix - Renaming a user to a string with capital letters: #7964

We fixed the issue that led to correct update but the 404 response code when
renaming an existing user to a string with capital letters.

https://github.com/owncloud/ocis/pull/7964
Bugfix - Improve OCM support: #7973

We improved functionality of the OCM support.

https://github.com/owncloud/ocis/pull/7973
Bugfix - Permissions of a role with duplicate ID: #7976

We remove the redundant permissions of a role with duplicate ID.

https://github.com/owncloud/ocis/issues/7931
https://github.com/owncloud/ocis/pull/7976
Bugfix - Non durable streams for sse service: #7986

Configure sse streams to be non-durable. This functionality is not needed for
the sse service

https://github.com/owncloud/ocis/pull/7986
Bugfix - Fix empty trace ids: #8023

We changed the default tracing to produce non-empty traceids.

https://github.com/owncloud/ocis/pull/8023
https://github.com/owncloud/ocis/pull/8017
Bugfix - Fix search by containing special characters: #8050

As the OData query parser interprets characters like '@' or '-' in a special
way. Search request for users or groups needs to be quoted. We fixed the
libregraph users and groups endpoints to handle quoted search terms correctly.

https://github.com/owncloud/ocis/issues/7990
https://github.com/owncloud/ocis/pull/8050
https://github.com/owncloud/ocis/pull/8035
Bugfix - Fix the upload postprocessing: #8117

We fixed the upload postprocessing when the destination file does not exist
anymore.

https://github.com/owncloud/ocis/issues/7909
https://github.com/owncloud/ocis/pull/8117
Bugfix - Disallow to delete a file during the processing: #8132

We want to disallow deleting a file during the processing to prevent collecting
the orphan uploads.

https://github.com/owncloud/ocis/issues/8127
https://github.com/owncloud/ocis/pull/8132
https://github.com/cs3org/reva/pull/4446
Bugfix - Fix wrong naming in nats-js-kv registry: #8140

Registers the registry under the correct name

https://github.com/owncloud/ocis/pull/8140
Bugfix - IDP CS3 backend sessions now survire restart: #8142

We now correctly reinitialize the CS3 backend session after the IDP has been
restarted.

https://github.com/owncloud/ocis/pull/8142
Bugfix - Fix patching of language: #8182

User would not be able to patch their preferred language when the ldap backend
is set to read-only. This makes no sense as language is stored elsewhere.

https://github.com/owncloud/ocis/pull/8182
Bugfix - Fix search service to not log expected cases as errors: #8200

We changed the search service to not log cases where resources that were about
to be indexed can no longer be found. Those are expected cases, e.g. when the
file in question has already been deleted or renamed meanwhile.

https://github.com/owncloud/ocis/pull/8200
Bugfix - Updating and reset logo failed: #8211

We fixed a bug when admin tried to update or reset the logo.

https://github.com/owncloud/ocis/issues/8101
https://github.com/owncloud/ocis/pull/8211
Bugfix - Cleanup graph/pkg/service/v0/driveitems.go: #8228

Main fix is using proto getters to avoid panics. But some other code
improvements were also done

https://github.com/owncloud/ocis/pull/8228
Bugfix - Cleanup search/pkg/search/search.go: #8230

Now uses proto getters to avoid panics.

https://github.com/owncloud/ocis/pull/8230
Bugfix - Graph/sharedWithMe works for shares from project spaces now: #8233

We fixed a bug in the 'graph/v1beta1/me/drive/sharedWithMe' endpoint that caused
an error response when the user received shares from project spaces.
Additionally the endpoint now behaves more graceful in cases where the
displayname of the owner or creator of a share or shared resource couldn't be
resolved.

https://github.com/owncloud/ocis/issues/8027
https://github.com/owncloud/ocis/issues/8215
https://github.com/owncloud/ocis/pull/8233
Bugfix - Fix PATCH/DELETE status code for drives that don't support them: #8235

Updating and Deleting the virtual drives for shares is currently not supported.
Instead of returning a generic 500 status we return a 405 response now.

https://github.com/owncloud/ocis/issues/7881
https://github.com/owncloud/ocis/pull/8235
Bugfix - Fix nats authentication: #8236

Fixes nats authentication for registry/events/stores

https://github.com/owncloud/ocis/pull/8236
Bugfix - Fix the resource name: #8246

We fixed a problem where after renaming resource as sharer the receiver see a
new name.

https://github.com/owncloud/ocis/issues/8242
https://github.com/owncloud/ocis/pull/8246
https://github.com/cs3org/reva/pull/4463
Bugfix - Apply role constraints when creating shares via the graph API: #8247

We fixed a bug in the graph API for creating and updating shares so that
Spaceroot specific roles like 'Manager' and 'Co-owner' can no longer be assigned
for shares on files or directories.

https://github.com/owncloud/ocis/issues/8131
https://github.com/owncloud/ocis/pull/8247
Bugfix - Fix concurrent access to a map: #8269

We fixed the race condition that led to concurrent map access in a publicshare
manager.

https://github.com/owncloud/ocis/issues/8255
https://github.com/owncloud/ocis/pull/8269
https://github.com/cs3org/reva/pull/4472
Bugfix - Fix nats registry: #8281

The nats registry would behave badly when configuring nats-js-kv via envvar.
Reason is the way go-micro initializes. It took 5 developers to find the issue
and the fix so the details cannot be shared here. Just accept that it is working
now

https://github.com/owncloud/ocis/pull/8281
Bugfix - Remove invalid environment variables: #8303

We have removed two spaces related environment variables (whether project spaces
and the share jail are enabled) and hardcoded the only allowed options. Misusing
those variables would have resulted in invalid config.

https://github.com/owncloud/ocis/pull/8303
Bugfix - Fix concurrent shares config: #8317

We fixed setting the config for concurrent web requests, which did not work as
expected before.

https://github.com/owncloud/ocis/pull/8317
Bugfix - Signed url verification: #8385

Signed urls now expire properly

https://github.com/owncloud/ocis/pull/8385
Bugfix - Fix last month search: #31145

We've fixed the last month search edge case when currently is 31-th.

Https://github.com/owncloud/ocis/issues/7629
https://github.com/owncloud/ocis/pull/7742

https://github.com/golang/go/issues/31145
The
issue
is
related
to
the
build-in
package
behavior
Change - Auto-Accept Shares: #7097

Automatically accepts shares. This feature is active by default and can be
deactivated via the environment variable FRONTEND_AUTO_ACCEPT_SHARES.

https://github.com/owncloud/ocis/pull/7097
Change - Change the default TUS chunk size: #7273

We changed the default TUS chunk size from 100MB to 10MB. You can still use the
old value by configuring it in your deployment.

https://github.com/owncloud/ocis/pull/7273
Change - Remove privacyURL and imprintURL from the config: #7938

We've removed the option privacyURL and imprintURL from the config, since other
clients weren't able to consume these. In order to be accessible by other
clients, not just Web, those should be configured via the theme.json file.

https://github.com/owncloud/ocis/pull/7938/
Change - Remove accessDeniedHelpUrl from the config: #7970

We've removed the option accessDeniedHelpUrl from the config, since other
clients weren't able to consume it. In order to be accessible by other clients,
not just Web, it should be configured via the theme.json file.

https://github.com/owncloud/ocis/pull/7970
Enhancement - Add the Banned Passwords List: #4197

Added an option to enable a password check against a banned passwords list
OCIS-3809

https://github.com/cs3org/reva/pull/4197
https://github.com/owncloud/ocis/pull/7314
Enhancement - Introduce service accounts: #6427

Introduces service accounts to avoid impersonating users in async processes

https://github.com/owncloud/ocis/issues/5550
https://github.com/owncloud/ocis/pull/6427
Enhancement - SSE for messaging: #6992

So far, sse has only been used to exchange messages between the server and the
client. In order to be able to send more content to the client, we have moved
the endpoint to a separate service and are now also using it for other
notifications like:
- notify postprocessing state changes.
- notify file locking and unlocking.
- ... @toDo
https://github.com/owncloud/ocis/pull/6992
Enhancement - Support spec violating AD FS access token issuer: #7138

AD FS /adfs/.well-known/openid-configuration has an optional
access_token_issuer which, in violation of the OpenID Connect spec, takes
precedence over issuer.

https://github.com/owncloud/ocis/pull/7138
Enhancement - Add OCIS_LDAP_BIND_PASSWORD as replacement for LDAP_BIND_PASSWORD: #7176

The enviroment variable OCIS_LDAP_BIND_PASSWORD was added to be more
consistent with all other global LDAP variables.

LDAP_BIND_PASSWORD is deprecated now and scheduled for removal with the 5.0.0
release.

We also deprecated LDAP_USER_SCHEMA_ID_IS_OCTETSTRING for removal with 5.0.0.
The replacement for it is OCIS_LDAP_USER_SCHEMA_ID_IS_OCTETSTRING.

https://github.com/owncloud/ocis/issues/7176
Enhancement - Keyword Query Language (KQL) search syntax: #7212

We've introduced support for
KQL
as the default oCIS search query language.

Simple queries:
- tag:golden tag:"silver"
- name:file.txt name:"file.docx"
- content:ahab content:"captain aha*"
Date/-range queries
- Mtime:"2023-09-05T08:42:11.23554+02:00"
- Mtime>"2023-09-05T08:42:11.23554+02:00"
- Mtime>="2023-09-05T08:42:11.23554+02:00"
- Mtime<"2023-09-05T08:42:11.23554+02:00"
- Mtime<="2023-09-05T08:42:11.23554+02:00"
- Mtime:today - range: start of today till end of today
- Mtime:yesterday - range: start of yesterday till end of yesterday
- Mtime:"this week" - range: start of this week till end of this week
- Mtime:"this month" - range: start of this month till end of this month
- Mtime:"last month" - range: start of last month till end of last month
- Mtime:"this year" - range: start of this year till end of this year
- Mtime:"last year" - range: start of last year till end of last year
Conjunctive normal form queries:
- tag:golden AND tag:"silver, tag:golden OR tag:"silver, tag:golden NOT tag:"silver
- (tag:book content:ahab*), tag:(book pdf)
Complex queries:
- (name:"moby di*" OR tag:bestseller) AND tag:book NOT tag:read
https://github.com/owncloud/ocis/issues/7042
https://github.com/owncloud/ocis/issues/7179
https://github.com/owncloud/ocis/issues/7114
https://github.com/owncloud/web/issues/9636
https://github.com/owncloud/web/issues/9646
https://github.com/owncloud/ocis/pull/7212
https://github.com/owncloud/ocis/pull/7043
https://github.com/owncloud/ocis/pull/7247
https://github.com/owncloud/ocis/pull/7248
https://github.com/owncloud/ocis/pull/7254
https://github.com/owncloud/ocis/pull/7262
https://github.com/owncloud/web/pull/9653
https://github.com/owncloud/web/pull/9672
Enhancement - Introduce clientlog service: #7217

Add the clientlog service which will send machine readable notifications to
clients

https://github.com/owncloud/ocis/pull/7217
Enhancement - Proxy uses service accounts for provisioning: #7240

The proxy service now uses a service account for provsioning task, like role
assignment and user auto-provisioning. This cleans up some technical debt that
required us to mint reva tokes inside the proxy service.

https://github.com/owncloud/ocis/issues/5550
https://github.com/owncloud/ocis/pull/7240
Enhancement - The password policies change request: #7264

The variables renaming OCIS-3767

https://github.com/cs3org/reva/pull/7264
Enhancement - Introduce natsjs registry: #7272

Introduce a registry based on the natsjs object store

https://github.com/owncloud/ocis/issues/7272
https://github.com/owncloud/ocis/pull/7487
Enhancement - Add the password policies: #7285

Add the password policies OCIS-3767

https://github.com/owncloud/ocis/pull/7285
https://github.com/owncloud/ocis/pull/7194
https://github.com/cs3org/reva/pull/4147
Enhancement - Add login URL config: #7317

Introduce a config to set the web login URL via WEB_OPTION_LOGIN_URL.

https://github.com/owncloud/ocis/pull/7317
Enhancement - Improve SSE format: #7325

Improve format of sse notifications

https://github.com/owncloud/ocis/pull/7325
Enhancement - New value auto for NOTIFICATIONS_SMTP_AUTHENTICATION: #7356

This cause the notifications service to automatically pick a suitable
authentication method to use with the configured SMTP server. This is also the
new default behavior. The previous default was to not use authentication at all.

https://github.com/owncloud/ocis/issues/7356
Enhancement - Make sse service scalable: #7382

When running multiple sse instances some events would not be reported to the
user. This is fixed.

https://github.com/owncloud/ocis/pull/7382
Enhancement - Edit wrong named enves: #7406

Checked and changed the envvars specified in the task and also removed those
that are no longer used.

https://github.com/owncloud/ocis/pull/7406
Enhancement - Thumbnail generation with image processors: #7409

Thumbnails can now be changed during creation, previously the images were always
scaled to fit the given frame, but it could happen that the images were cut off
because they could not be placed better due to the aspect ratio.

This pr introduces the possibility of specifying how the behavior should be,
following processors are available
- resize
- fit
- fill
- thumbnail
The processor can be applied by adding the processor query param to the request,
e.g. processor=fit, processor=fill, ...

To find out more how the individual processors work please read
https://github.com/disintegration/imaging

If no processor is provided it behaves the same as before (resize for gif's and
thumbnail for all other)

https://github.com/owncloud/enterprise/issues/6057
https://github.com/owncloud/ocis/issues/5179
https://github.com/owncloud/web/issues/7728
https://github.com/owncloud/ocis/pull/7409
Enhancement - Set default for Async Uploads to true: #7416

Async Uploads are meanwhile standard and needed for multiple features. Hence we
default them to true

https://github.com/owncloud/ocis/pull/7416
Enhancement - The default language added: #7417

The ability of configuration the default language has been added to the setting
service.

https://github.com/owncloud/enterprise/issues/5915
https://github.com/owncloud/ocis/pull/7417
Enhancement - Add "Last modified" filter Chip: #7455

Add "Last modified" filter Chip

https://github.com/owncloud/ocis/issues/7431
https://github.com/owncloud/ocis/issues/7551
https://github.com/owncloud/ocis/pull/7455
Enhancement - Config for disabling Web extensions: #7486

A new config for disabling specific Web extensions via their id has been added.

https://github.com/owncloud/web/issues/8524
https://github.com/owncloud/ocis/pull/7486
Enhancement - Store and index metadata: #7490

Audio metadata is now extracted and stored by the search service. It is
available for driveItems in a folder listing using the Graph API.

https://github.com/owncloud/ocis/pull/7490
Enhancement - Add support for audio files to the thumbnails service: #7491

The thumbnails service can now extract artwork from audio files (mp3, ogg, flac)
and render it just like any other image.

https://github.com/owncloud/ocis/pull/7491
Enhancement - Implement sharing roles: #7524

Implement libre graph sharing roles

https://github.com/owncloud/ocis/issues/7418
https://github.com/owncloud/ocis/pull/7524
Enhancement - Add new permission to delete public link password: #7538

Users with this new permission can now delete passwords on read-only public
links. The permission is added to the default roles "Admin" and "Space Admin".

https://github.com/owncloud/ocis/issues/7538
https://github.com/owncloud/ocis/pull/7538
https://github.com/cs3org/reva/pull/4270
Enhancement - Add config to enforce passwords on all public links: #7547

We added the config OCIS_SHARING_PUBLIC_SHARE_MUST_HAVE_PASSWORD to enforce
passwords on all public shares.

https://github.com/owncloud/ocis/issues/7539
https://github.com/owncloud/ocis/pull/7547
Enhancement - Tika content extraction cleanup for search: #7553

So far it has not been possible to determine whether the content for search
should be cleaned up of 'stop words' or not. Stop words are filling words like
"I, you, have, am" etc and defined by the search engine.

The behaviour can now be set with the newly introduced settings option
SEARCH_EXTRACTOR_TIKA_CLEAN_STOP_WORDS=false which is enabled by default.

In addition, the stop word cleanup is no longer as aggressive and now ignores
numbers, urls, basically everything except the defined stop words.

https://github.com/owncloud/ocis/issues/6674
https://github.com/owncloud/ocis/pull/7553
Enhancement - Allow configuring storage registry with envvars: #7554

Introduced new envvars to configure the storage registry in the gateway service

https://github.com/owncloud/ocis/pull/7554
Enhancement - Add search MediaType filter: #7602

Add filter MediaType filter shortcuts to search for specific document types. For
example, a search query mediatype:documents will search for files with the
following mimetypes:

Application/msword
MimeType:application/vnd.openxmlformats-officedocument.wordprocessingml.document
MimeType:application/vnd.oasis.opendocument.text MimeType:text/plain
MimeType:text/markdown MimeType:application/rtf
MimeType:application/vnd.apple.pages

Besides the document shorthand, it also contains following:
- file
- folder
- document
- spreadsheet
- presentation
- pdf
- image
- video
- audio
- archive
File

Folder

Document:

Application/msword
application/vnd.openxmlformats-officedocument.wordprocessingml.document
application/vnd.oasis.opendocument.text text/plain text/markdown application/rtf
application/vnd.apple.pages

Spreadsheet:

Application/vnd.ms-excel application/vnd.oasis.opendocument.spreadsheet text/csv
application/vnd.openxmlformats-officedocument.spreadsheetml.sheet
application/vnd.oasis.opendocument.spreadsheet application/vnd.apple.numbers

Presentations:

Application/vnd.ms-powerpoint
application/vnd.openxmlformats-officedocument.presentationml.presentation
application/vnd.oasis.opendocument.presentation application/vnd.apple.keynote

PDF

Application/pdf

Image:

Image/*

Video:

Video/*

Audio:

Audio/*

Archive (zip ...):

Application/zip application/x-tar application/x-gzip application/x-7z-compressed
application/x-rar-compressed application/x-bzip2 application/x-bzip
application/x-tgz

https://github.com/owncloud/ocis/issues/7432
https://github.com/owncloud/ocis/pull/7602
Enhancement - Add Sharing NG endpoints: #7633

We've added new sharing ng endpoints to the graph beta api. The following
endpoints are added:
- /v1beta1/me/drive/sharedByMe
- /v1beta1/me/drive/sharedWithMe
- /v1beta1/roleManagement/permissions/roleDefinitions
- /v1beta1/roleManagement/permissions/roleDefinitions/{roleID}
- /v1beta1/drives/{drive-id}/items/{item-id}/createLink (create a sharing link)
https://github.com/owncloud/ocis/issues/7436
https://github.com/owncloud/ocis/issues/6993
https://github.com/owncloud/ocis/pull/7633
https://github.com/owncloud/ocis/pull/7686
https://github.com/owncloud/ocis/pull/7684
https://github.com/owncloud/ocis/pull/7683
https://github.com/owncloud/ocis/pull/7239
https://github.com/owncloud/ocis/pull/7687
https://github.com/owncloud/ocis/pull/7751
https://github.com/owncloud/libre-graph-api/pull/112
Enhancement - Configs for Web embed mode: #7670

New configs for the Web embed mode have been added:
- enabled Defines if embed mode is enabled.
- target Defines how Web is being integrated when running in embed mode.
- messagesOrigin Defines a URL under which Web can be integrated via iFrame.
- delegateAuthentication Defines whether Web should require authentication to be done by the parent application.
- delegateAuthenticationOrigin Defines the host to validate the message event origin against when running Web in 'embed' mode.
https://github.com/owncloud/web/issues/9768
https://github.com/owncloud/ocis/pull/7670
Enhancement - Support login page background configuration: #7674

Introduce a new environment variable IDP_LOGIN_BACKGROUND_URL that overrides
the default background image of the IDP login page when present.

https://github.com/owncloud/ocis/issues/7674
https://github.com/owncloud/ocis/pull/7900
Enhancement - Add new permissions: #7700

Adds new permissions to admin/spaceadmin/user roles - Favorites.List allows /
denies the Favorites Listing Request - Favorites.Write is implemented to be
enforced on marking/unmark files as favouritesShare - Shares.Write permission
denies / allows sharing completely for a user on all share CUD requests. (User,
Group)

https://github.com/owncloud/ocis/pull/7700
Enhancement - Add preferred language to user settings: #7720

We have added the preferred language to the libre-graph api & added endpoints
for that to ocis.

https://github.com/owncloud/ocis/issues/5455
https://github.com/owncloud/ocis/pull/7720
https://github.com/owncloud/libre-graph-api/pull/130
Enhancement - Add user filter startswith and contains: #7739

We add two new filters to the user list endpoint. The startswith filter allows
to filter users by the beginning of their name. The contains filter allows to
filter users by a substring of their name.

https://github.com/owncloud/ocis/issues/5486
https://github.com/owncloud/ocis/pull/7739
Enhancement - Allow configuring additional routes: #7740

Allows adding custom routes to the ocis proxy. This enables customs ocis
extensions

https://github.com/owncloud/ocis/pull/7740
Enhancement - Default link permission config: #7783

A new config for default link permissions that is being announced via
capabilities has been added. It defaults to 1 (= public link with viewer
permissions).

https://github.com/owncloud/web/issues/9919
https://github.com/owncloud/ocis/pull/7783
Enhancement - Add banned password list to the default deployments: #7784

We add banned password list to the default deployments

https://github.com/owncloud/ocis/issues/7724
https://github.com/owncloud/ocis/pull/7784
Enhancement - Update to go 1.21: #7794

We updated to go 1.21.

https://github.com/owncloud/ocis/pull/7794
Enhancement - Add Sharing NG list permissions endpoint: #7805

We've added a new sharing ng endpoint which lists all permissions for a given
item.

https://github.com/owncloud/ocis/issues/6993
https://github.com/owncloud/ocis/pull/7805
Enhancement - Add user list requires filter config: #7866

Introduce a config to require filters in order to list users in Web via
WEB_OPTION_USER_LIST_REQUIRES_FILTER.

https://github.com/owncloud/ocis/pull/7866
Enhancement - Retry antivirus postprocessing step in case of problems: #7874

The antivirus postprocessing step will now be retried for a configurable amount
of times in case it can't get a result from clamav.

https://github.com/owncloud/ocis/pull/7874
Enhancement - Add validation to public share provider: #7877

We changed the implementation of the public share provider in reva to do the
validation on the CS3 Api side. This makes the implementation on the graph side
smaller.

https://github.com/owncloud/ocis/issues/6993
https://github.com/owncloud/ocis/pull/7877
Enhancement - Store and index metadata: #7886

Location metadata is now extracted and stored by the search service. It is
available for driveItems in a folder listing using the Graph API.

https://github.com/owncloud/ocis/pull/7886
Enhancement - Allow regular users to list other users: #7887

Regular users can search for other users and groups. The following limitations
apply:
- Only search queries are allowed (using the $search=term query parameter)
- The search term needs to have at least 3 characters
- for user searches the result set only contains the attributes displayName, userType, mail and id
- for group searches the result set only contains the attributes displayName, groupTypes and id
https://github.com/owncloud/ocis/issues/7782
https://github.com/owncloud/ocis/pull/7887
Enhancement - Add edit public share to sharing NG: #7908

We added the ability to edit public shares to the sharing NG endpoints.

https://github.com/owncloud/ocis/issues/6993
https://github.com/owncloud/ocis/pull/7908/
Enhancement - Add cli commands for trash-bin: #7917

We added the list and restore commands to the trash-bin items to the CLI

https://github.com/owncloud/ocis/issues/7845
https://github.com/owncloud/ocis/pull/7917
https://github.com/cs3org/reva/pull/4392
Enhancement - Add validation update public share: #7978

For Sharing NG, we needed validation in the implementing reva service to keep
the client implementation simple.

https://github.com/owncloud/ocis/pull/7978
Enhancement - Allow inmemory nats-js-kv stores: #7979

Adds envvars to keep nats-js-kv stores in memory and not persist them on disc.

https://github.com/owncloud/ocis/pull/7979
Enhancement - Disable the password policy: #7985

We add the environment variable that allow to disable the password policy.

https://github.com/owncloud/ocis/issues/7916
https://github.com/owncloud/ocis/pull/7985
https://github.com/cs3org/reva/pull/4409
Enhancement - Use kv store in natsjs registry: #7987

Replaces the nats object store with the nats kv store in the natsjs registry

https://github.com/owncloud/ocis/pull/7987
Enhancement - Allow authentication nats connections: #7989

Allow events, store and registry implementation to pass username/password to the
nats instance

https://github.com/owncloud/ocis/pull/7989
Enhancement - Add RED metrics to the metrics endpoint: #7994

We added three new metrics to the metrics endpoint to support the RED method for
monitoring microservices.
- Request Rate: The number of requests per second. The total count of requests
  is available under ocis_proxy_requests_total. - Error Rate: The number of
  failed requests per second. The total count of failed requests is available
  under ocis_proxy_errors_total. - Duration: The amount of time each request
  takes. The duration of all requests is available under
  ocis_proxy_request_duration_seconds. This is a histogram metric, so it also
  provides information about the distribution of request durations.
The metrics are available under the following paths: PROXY_DEBUG_ADDR/metrics
in a prometheus compatible format and maybe secured by PROXY_DEBUG_TOKEN.

https://github.com/owncloud/ocis/pull/7994
Enhancement - Add ocm and sciencemesh services: #7998

We added sciencemesh and ocm services to enable federation.

https://github.com/owncloud/ocis/pull/7998
https://github.com/owncloud/ocis/pull/7576
https://github.com/owncloud/ocis/pull/7464
https://github.com/owncloud/ocis/pull/7463
Enhancement - Make nats-js-kv the default registry: #8011

The previously used default mdns is faulty. Deprecated it together with
consul, nats and etcd implementations.

https://github.com/owncloud/ocis/pull/8011
https://github.com/owncloud/ocis/pull/8027
Enhancement - Service Account roles: #8051

Use a hidden role for service accounts. It will not appear in ListRoles calls
but internally handled by settings service

https://github.com/owncloud/ocis/pull/8051
https://github.com/owncloud/ocis/pull/8074
Enhancement - Update antivirus service: #8062

We update the antivirus icap client library and optimize the antivirus scanning
service. ANTIVIRUS_ICAP_TIMEOUT is now deprecated and
ANTIVIRUS_ICAP_SCAN_TIMEOUT should be used instead.

ANTIVIRUS_ICAP_SCAN_TIMEOUT supports human durations like 1s, 1m, 1h and
1d.

https://github.com/owncloud/ocis/issues/6764
https://github.com/owncloud/ocis/pull/8062
Enhancement - Remove deprecated environment variables: #8149

We have removed all deprecated environment variables that have been marked for
removal for 5.0.0

https://github.com/owncloud/ocis/issues/8025
https://github.com/owncloud/ocis/pull/8149
Enhancement - Disable the password policy: #8152

We reworked and moved disabling the password policy logic from the reva to the
ocis.

https://github.com/owncloud/ocis/issues/7916
https://github.com/owncloud/ocis/pull/8152
https://github.com/cs3org/reva/pull/4453
Enhancement - Update reva to latest edge version: #8287

We update reva to the latest edge version to get the latest fixes and features.

Changelog for reva edge
- Bugfix cs3org/reva#4454: Skip unnecessary share retrieval
- Bugfix cs3org/reva#4461: CORS handling for WebDAV requests fixed
- Bugfix cs3org/reva#4462: Prevent setting container specific permissions on files
- Bugfix cs3org/reva#4463: Fix the resource name
- Bugfix cs3org/reva#4466: Fix natsjskv store
- Bugfix cs3org/reva#4469: Handle interrupted uploads
- Bugfix cs3org/reva#4472: Fix concurrent access to a map
- Bugfix cs3org/reva#4473: Decomposedfs now correctly lists sessions
- Bugfix cs3org/reva#4474: Make /dav/meta consistent
- Bugfix cs3org/reva#4475: Upload session specific processing flag
- Bugfix cs3org/reva#4476: No need to unmark postprocessing when it was not started
- Bugfix cs3org/reva#4479: Fix creating documents in the approvider
- Bugfix cs3org/reva#4481: Distinguish failure and node metadata reversal
- Bugfix cs3org/reva#4434: Fix the upload postprocessing
- Bugfix cs3org/reva#4443: Fixed wrong status code when moving a file to a denied path
- Bugfix cs3org/reva#4446: Disallow to delete a file during the processing
- Bugfix cs3org/reva#4448: Fix truncating existing files
- Bugfix cs3org/reva#4449: Keep failed processing status
- Bugfix cs3org/reva#4452: More efficient share jail
- Bugfix cs3org/reva#4456: Do not lose revisions when restoring the first revision
- Bugfix cs3org/reva#4457: Fix concurrent map access in sharecache
- Enhancement cs3org/reva#4453: Disable the password policy
- Enhancement cs3org/reva#4477: Extend ResumePostprocessing event
Changelog for reva 2.18.0 (2023-12-22)

The following sections list the changes in reva 2.18.0 relevant to reva users.
The changes are ordered by importance.
- Bugfix cs3org/reva#4424: Fixed panic in receivedsharecache pkg
- Bugfix cs3org/reva#4425: Fix overwriting files with empty files
- Bugfix cs3org/reva#4432: Fix /dav/meta endpoint for shares
- Bugfix cs3org/reva#4422: Fix disconnected traces
- Bugfix cs3org/reva#4429: Internal link creation
- Bugfix cs3org/reva#4407: Make ocdav return correct oc:spaceid
- Bugfix cs3org/reva#4410: Improve OCM support
- Bugfix cs3org/reva#4402: Refactor upload session
- Enhancement cs3org/reva#4421: Check permissions before adding, deleting or updating shares
- Enhancement cs3org/reva#4403: Add validation to update public share
- Enhancement cs3org/reva#4409: Disable the password policy
- Enhancement cs3org/reva#4412: Allow authentication for nats connections
- Enhancement cs3org/reva#4411: Add option to configure streams non durable
- Enhancement cs3org/reva#4406: Rework cache configuration
- Enhancement cs3org/reva#4414: Track more upload session metrics
Changelog for reva 2.17.0 (2023-12-12)

The following sections list the changes in reva 2.17.0 relevant to reva users.
The changes are ordered by importance.
- Bugfix cs3org/reva#4278: Disable DEPTH infinity in PROPFIND
- Bugfix cs3org/reva#4318: Do not allow moves between shares
- Bugfix cs3org/reva#4290: Prevent panic when trying to move a non-existent file
- Bugfix cs3org/reva#4241: Allow an empty credentials chain in the auth middleware
- Bugfix cs3org/reva#4216: Fix an error message
- Bugfix cs3org/reva#4324: Fix capabilities decoding
- Bugfix cs3org/reva#4267: Fix concurrency issue
- Bugfix cs3org/reva#4362: Fix concurrent lookup
- Bugfix cs3org/reva#4336: Fix definition of "file-editor" role
- Bugfix cs3org/reva#4302: Fix checking of filename length
- Bugfix cs3org/reva#4366: Fix CS3 status code when looking up non existing share
- Bugfix cs3org/reva#4299: Fix HTTP verb of the generate-invite endpoint
- Bugfix cs3org/reva#4249: GetUserByClaim not working with MSAD for claim "userid"
- Bugfix cs3org/reva#4217: Fix missing case for "hide" in UpdateShares
- Bugfix cs3org/reva#4140: Fix missing etag in shares jail
- Bugfix cs3org/reva#4229: Fix destroying the Personal and Project spaces data
- Bugfix cs3org/reva#4193: Fix overwrite a file with an empty file
- Bugfix cs3org/reva#4365: Fix create public share
- Bugfix cs3org/reva#4380: Fix the public link update
- Bugfix cs3org/reva#4250: Fix race condition
- Bugfix cs3org/reva#4345: Fix conversion of custom ocs permissions to roles
- Bugfix cs3org/reva#4134: Fix share jail
- Bugfix cs3org/reva#4335: Fix public shares cleanup config
- Bugfix cs3org/reva#4338: Fix unlock via space API
- Bugfix cs3org/reva#4341: Fix spaceID in meta endpoint response
- Bugfix cs3org/reva#4351: Fix 500 when open public link
- Bugfix cs3org/reva#4352: Fix the tgz mime type
- Bugfix cs3org/reva#4388: Allow UpdateUserShare() to update just the expiration date
- Bugfix cs3org/reva#4214: Always pass adjusted default nats options
- Bugfix cs3org/reva#4291: Release lock when expired
- Bugfix cs3org/reva#4386: Remove dead enable_home config
- Bugfix cs3org/reva#4292: Return 403 when user is not permitted to lock
- Enhancement cs3org/reva#4389: Add audio and location props
- Enhancement cs3org/reva#4337: Check permissions before creating shares
- Enhancement cs3org/reva#4326: Add search mediatype filter
- Enhancement cs3org/reva#4367: Add GGS mime type
- Enhancement cs3org/reva#4194: Add hide flag to shares
- Enhancement cs3org/reva#4358: Add default permissions capability for links
- Enhancement cs3org/reva#4133: Add more metadata to locks
- Enhancement cs3org/reva#4353: Add support for .docxf files
- Enhancement cs3org/reva#4363: Add nats-js-kv store
- Enhancement cs3org/reva#4197: Add the Banned-Passwords List
- Enhancement cs3org/reva#4190: Add the password policies
- Enhancement cs3org/reva#4384: Add a retry postprocessing outcome and event
- Enhancement cs3org/reva#4271: Add search capability
- Enhancement cs3org/reva#4119: Add sse event
- Enhancement cs3org/reva#4392: Add additional permissions to service accounts
- Enhancement cs3org/reva#4344: Add url extension to mime type list
- Enhancement cs3org/reva#4372: Add validation to the public share provider
- Enhancement cs3org/reva#4244: Allow listing reveived shares by service accounts
- Enhancement cs3org/reva#4129: Auto-Accept Shares through ServiceAccounts
- Enhancement cs3org/reva#4374: Handle trashbin file listings concurrently
- Enhancement cs3org/reva#4325: Enforce Permissions
- Enhancement cs3org/reva#4368: Extract log initialization
- Enhancement cs3org/reva#4375: Introduce UploadSessionLister interface
- Enhancement cs3org/reva#4268: Implement sharing roles
- Enhancement cs3org/reva#4160: Improve utils pkg
- Enhancement cs3org/reva#4335: Add sufficient permissions check function
- Enhancement cs3org/reva#4281: Port OCM changes from master
- Enhancement cs3org/reva#4270: Opt out of public link password enforcement
- Enhancement cs3org/reva#4181: Change the variable names for the password policy
- Enhancement cs3org/reva#4256: Rename hidden share variable name
- Enhancement cs3org/reva#3926: Service Accounts
- Enhancement cs3org/reva#4359: Update go-ldap to v3.4.6
- Enhancement cs3org/reva#4170: Update password policies
- Enhancement cs3org/reva#4232: Improve error handling in utils package
https://github.com/owncloud/ocis/pull/8287
https://github.com/owncloud/ocis/pull/8278
https://github.com/owncloud/ocis/pull/8264
https://github.com/owncloud/ocis/pull/8100
https://github.com/owncloud/ocis/pull/8100
https://github.com/owncloud/ocis/pull/8038
https://github.com/owncloud/ocis/pull/8056
https://github.com/owncloud/ocis/pull/7949
https://github.com/owncloud/ocis/pull/7793
https://github.com/owncloud/ocis/pull/7978
https://github.com/owncloud/ocis/pull/7979
https://github.com/owncloud/ocis/pull/7963
https://github.com/owncloud/ocis/pull/7986
https://github.com/owncloud/ocis/pull/7721
https://github.com/owncloud/ocis/pull/7727
https://github.com/owncloud/ocis/pull/7752
Enhancement - Allow restarting multiple uploads with one command: #8287

Allows to restart all commands in a specific state.

https://github.com/owncloud/ocis/pull/8287
Enhancement - Modify the concurrency default: #8309

We have changed the default MaxConcurrency value from 100 to 5 to prevent too
frequent gc runs on low memory systems. We have also bumped reva to pull in the
related changes from there.

https://github.com/owncloud/ocis/issues/8257
https://github.com/owncloud/ocis/pull/8309
https://github.com/cs3org/reva/pull/4485
Enhancement - Update web to v8.0.0-rc.3: #8342

Tags: web

We updated ownCloud Web to v8.0.0-rc.3. Please refer to the changelog (linked)
for details on the web release.

Summary * Bugfix

owncloud/web#10318: Scrollable
account page * Bugfix
owncloud/web#10321: Private link
error messages * Bugfix
owncloud/web#10347: Readonly user
attributes have no effect on group memberships * Bugfix
owncloud/web#10424: Restore space
- Enhancement owncloud/web#10356:
  Preview app add reset button for images
We updated ownCloud Web to v8.0.0-rc.2. Please refer to the changelog (linked)
for details on the web release.

Summary * Bugfix

owncloud/web#10176: Turned off
file extensions not always respected * Bugfix
owncloud/web#10232: Skip searchbar
preview fetch on reload

We updated ownCloud Web to v8.0.0-rc.1. Please refer to the changelog (linked)
for details on the web release.

Summary * Enhancement

owncloud/web#10224: Harmonize
AppSwitcher icon colors * Bugfix
owncloud/web#10230: Configurable
concurrent requests * Bugfix
owncloud/web#10158: GDPR export
polling * Bugfix
owncloud/web#10220: Loading
indicator during conflict dialog * Bugfix
owncloud/web#10156: Uploading
the same files parallel * Bugfix
owncloud/web#10179: Space
navigate to trash missing * Bugfix
owncloud/web#10118: Tilesview
has whitespace * Bugfix
owncloud/web#10182: Make
versions panel readonly in viewers and editors

We updated ownCloud Web to v8.0.0-beta.2. Please refer to the changelog (linked)
for details on the web release.

Summary * Bugfix

owncloud/web#10010: Displaying
full video in their dimensions * Bugfix
owncloud/web#10149: Spaces files
list previews cropped * Bugfix
owncloud/web#10149: Spaces
overview tile previews zoomed * Bugfix
owncloud/web#10154: Resolving
links without drive alias

We updated ownCloud Web to v8.0.0-beta.1. Please refer to the changelog (linked)
for details on the web release.

Summary * Change

owncloud/web#9698: Theme handling *
Enhancement owncloud/web#10111:
Registering right sidebar panels as extension * Enhancement
owncloud/web#10111: File sidebar
in viewer and editor apps

We updated ownCloud Web to v8.0.0-alpha.13. Please refer to the changelog
(linked) for details on the web release.

Summary * Enhancement

owncloud/web#10104: Create link
modal

We updated ownCloud Web to v8.0.0-alpha.12. Please refer to the changelog
(linked) for details on the web release.

Summary * Bugfix

owncloud/web#9257: Filter out
shares without display name * Bugfix
owncloud/web#9483: PDF loading
Safari * Bugfix owncloud/web#9513:
Set or remove expiration date on group share not possible * Bugfix
owncloud/web#9529: Shared with
action menu label alignment * Bugfix
owncloud/web#9587: Internal public
link resolving * Bugfix
owncloud/web#9593: Audio- &
video-loading on Shared with me page * Bugfix
owncloud/web#9649: Add project
space filter * Bugfix
owncloud/web#9663: Respect the
open-in-new-tab-config for external apps * Bugfix
owncloud/web#9670: Tiles view
accessibility * Bugfix
owncloud/web#9694: Special
characters in username * Bugfix
owncloud/web#9788: Create .space
folder if it does not exist * Bugfix
owncloud/web#9799: Link resolving
into default app * Bugfix
owncloud/web#9832: Copy quicklinks
for webkit navigator * Bugfix
owncloud/web#9843: Fix display path
on resources * Bugfix
owncloud/web#9844: Upload space
image * Bugfix owncloud/web#9861:
Duplicated file search request * Bugfix
owncloud/web#9873: Tags are no
longer editable for a locked file * Bugfix
owncloud/web#9881: Prevent
rendering of old/wrong set of resources in search list * Bugfix
owncloud/web#9915: Keep both
folders conflict in same-named folders * Bugfix
owncloud/web#9931: Enabling "invite
people" for password-protected folder/file * Bugfix
owncloud/web#10031: Icon
extension mapping * Bugfix
owncloud/web#10065: Logout page
after token expiry * Bugfix
owncloud/web#10083: Disable
expiration date for alias link (internal) * Bugfix
owncloud/web#10092: Allow empty
search query in "in-here" search * Bugfix
owncloud/web#10096: Remove
password buttons on input if disabled * Change
owncloud/web#7338: Remove
deprecated code * Enhancement
owncloud/web#7317: Make login url
configurable * Enhancement
owncloud/web#7497: Permission
checks for shares and favorites * Enhancement
owncloud/web#7600: Scroll to
newly created folder * Enhancement
owncloud/web#9302: Application
unification * Enhancement
owncloud/web#9423: Show local
loading spinner in sharing button * Enhancement
owncloud/web#9441: File versions
tooltip with absolute date * Enhancement
owncloud/web#9441: Disabling
extensions * Enhancement
owncloud/web#9451: Add SSE to get
notifications instantly * Enhancement
owncloud/web#9525: Tags form
improved * Enhancement
owncloud/web#9527: Don't display
confirmation dialog on file deletion * Enhancement
owncloud/web#9531: Personal
shares can be shown and hidden * Enhancement
owncloud/web#9552: Upload
preparation time * Enhancement
owncloud/web#9561: Indicate
processing state * Enhancement
owncloud/web#9566: Display locking
information * Enhancement
owncloud/web#9584: Moving share's
"set expiration date" function * Enhancement
owncloud/web#9625: Add keyboard
navigation to spaces overview * Enhancement
owncloud/web#9627: Add batch
actions to spaces * Enhancement
owncloud/web#9653: Keyword Query
Language (KQL) search syntax * Enhancement
owncloud/web#9671: OcModal set
buttons to same width * Enhancement
owncloud/web#9682: Add password
policy compatibility * Enhancement
owncloud/web#9691: Password
generator for public links * Enhancement
owncloud/web#9696: Added app banner
for mobile devices * Enhancement
owncloud/web#9706: Unify sharing
expiration date menu items * Enhancement
owncloud/web#9727: Show error if
password is on a banned password list * Enhancement
owncloud/web#9771: Handle
postprocessing state via Server Sent Events * Enhancement
owncloud/web#9806: Preview image
presentation * Enhancement
owncloud/web#9809: Add editors to
the application menu * Enhancement
owncloud/web#9814: Registering nav
items as extension * Enhancement
owncloud/web#9815: Add new portal
into runtime to include footer * Enhancement
owncloud/web#9818: Add mode
config option * Enhancement
owncloud/web#9831: Last modified
filter chips * Enhancement
owncloud/web#9841: Add embed mode
actions * Enhancement
owncloud/web#9847: Provide vendor
neutral file icons * Enhancement
owncloud/web#9853: Show only create
folder button in embed mode * Enhancement
owncloud/web#9854: Search query
term linking * Enhancement
owncloud/web#9857: Add permission
to delete link passwords when password is enforced * Enhancement
owncloud/web#9858: Remove settings
icon from searchbar * Enhancement
owncloud/web#9863: Location picker
in embed mode * Enhancement
owncloud/web#9864: Search tags
filter chips style aligned * Enhancement
owncloud/web#9884: Enable dark
theme on importer * Enhancement
owncloud/web#9890: Create shortcuts
- Enhancement owncloud/web#9905:
  Manage tags in details panel * Enhancement
  owncloud/web#9906: Reorganize "New"
  menu * Enhancement
  owncloud/web#9912: Add media type
  filter chip * Enhancement
  owncloud/web#9940: Display error
  message for upload to locked folder * Enhancement
  owncloud/web#9966: Support more
  audio formats with correct icon * Enhancement
  owncloud/web#10007: Additional
  languages * Enhancement
  owncloud/web#10013: Shared by
  filter * Enhancement
  owncloud/web#10014: Share search
  filter * Enhancement
  owncloud/web#10024: Duplicate
  space * Enhancement
  owncloud/web#10037: Default link
  permission * Enhancement
  owncloud/web#10047: Add explaining
  contextual helper to spaces overview * Enhancement
  owncloud/web#10057: Folder tree
  creation during upload * Enhancement
  owncloud/web#10062: Show webdav
  information in details view * Enhancement
  owncloud/web#10072: Add
  authentication delegation in the Embed mode * Enhancement
  owncloud/web#10099: Support
  mandatory filter while listing users * Enhancement
  owncloud/web#10102: Registering
  quick actions as extension
https://github.com/owncloud/ocis/pull/8342
https://github.com/owncloud/ocis/pull/8154
https://github.com/owncloud/ocis/pull/8154
https://github.com/owncloud/ocis/pull/8055
https://github.com/owncloud/ocis/pull/7930
https://github.com/owncloud/ocis/pull/7952
https://github.com/owncloud/ocis/pull/7918
https://github.com/owncloud/ocis/pull/7883
https://github.com/owncloud/web/releases/tag/v8.0.0-rc.3
https://github.com/owncloud/web/releases/tag/v8.0.0-rc.2
https://github.com/owncloud/web/releases/tag/v8.0.0-rc.2
https://github.com/owncloud/web/releases/tag/v8.0.0-rc.1
https://github.com/owncloud/web/releases/tag/v8.0.0-beta.1
https://github.com/owncloud/web/releases/tag/v8.0.0-beta.2
https://github.com/owncloud/web/releases/tag/v8.0.0-alpha.13
https://github.com/owncloud/web/releases/tag/v8.0.0-alpha.12

ocis - 4.0.6

Published by ownclouders 8 months ago

Changes in 4.0.6

Summary

Bugfix - Fix RED metrics on the metrics endpoint: #7994
Bugfix - Signed url verification: #8385

Details

Bugfix - Fix RED metrics on the metrics endpoint: #7994

We connected some metrics to the metrics endpoint to support the RED method for monitoring
microservices.
- Request Rate: The number of requests per second. The total count of requests is available
  under ocis_proxy_requests_total. - Error Rate: The number of failed requests per second.
  The total count of failed requests is available under ocis_proxy_errors_total. -
  Duration: The amount of time each request takes. The duration of all requests is available
  under ocis_proxy_request_duration_seconds. This is a histogram metric, so it also
  provides information about the distribution of request durations.
The metrics are available under the following paths: PROXY_DEBUG_ADDR/metrics in a
prometheus compatible format and maybe secured by PROXY_DEBUG_TOKEN.

https://github.com/owncloud/ocis/pull/7994
Bugfix - Signed url verification: #8385

Signed urls now expire properly

https://github.com/owncloud/ocis/pull/8385

ocis - 5.0.0-rc.3

Published by ownclouders 9 months ago

Changelog for 5.0.0-rc.3

Changes in 5.0.0-rc.3

Summary

Bugfix - Fix wrong compile date: #6132
Bugfix - Fix the kql-bleve search: #7290
Bugfix - Bring back the USERS_LDAP_USER_SCHEMA_ID variable: #7312
Bugfix - Do not reset state of received shares when rebuilding the jsoncs3 index: #7319
Bugfix - Deprecate redundant encryptions settings for notification service: #7345
Bugfix - Check school number for duplicates before adding a school: #7351
Bugfix - Don't reload web config: #7369
Bugfix - Delete outdated userlog events: #7410
Bugfix - Set the mountpoint on auto accept: #7460
Bugfix - Fix default language fallback: #7465
Bugfix - GetUserByClaim fixed for Active Directory: #7476
Bugfix - Fix preview request 500 error when made too early: #7502
Bugfix - Fix 403 in docs pipeline: #7509
Bugfix - Fix the auth service env variable: #7523
Bugfix - Token storage config fixed: #7528
Bugfix - Set existing mountpoint on auto accept: #7592
Bugfix - Return 423 status code on tag create: #7596
Bugfix - Fix libre-graph status codes: #7678
Bugfix - Fix unlock via space API: #7726
Bugfix - Disable DEPTH infinity in PROPFIND: #7746
Bugfix - Fix the tgz mime type: #7772
Bugfix - Fix natsjs cache: #7790
Bugfix - Fix search service start: #7795
Bugfix - The race conditions in tests: #7847
Bugfix - Do not purge expired upload sessions that are still postprocessing: #7859
Bugfix - Fix the public link update: #7862
Bugfix - Fix jwt config of policies service: #7893
Bugfix - Updating logo with new theme structure: #7930
Bugfix - Password policy return code was wrong: #7952
Bugfix - Removed outdated and unused dependency from idp package: #7957
Bugfix - Update permission validation: #7963
Bugfix - Renaming a user to a string with capital letters: #7964
Bugfix - Improve OCM support: #7973
Bugfix - Permissions of a role with duplicate ID: #7976
Bugfix - Non durable streams for sse service: #7986
Bugfix - Fix empty trace ids: #8023
Bugfix - Fix search by containing special characters: #8050
Bugfix - Fix the upload postprocessing: #8117
Bugfix - Disallow to delete a file during the processing: #8132
Bugfix - Fix wrong naming in nats-js-kv registry: #8140
Bugfix - IDP CS3 backend sessions now survire restart: #8142
Bugfix - Fix patching of language: #8182
Bugfix - Fix search service to not log expected cases as errors: #8200
Bugfix - Updating and reset logo failed: #8211
Bugfix - Cleanup graph/pkg/service/v0/driveitems.go: #8228
Bugfix - Cleanup search/pkg/search/search.go: #8230
Bugfix - Graph/sharedWithMe works for shares from project spaces now: #8233
Bugfix - Fix PATCH/DELETE status code for drives that don't support them: #8235
Bugfix - Fix nats authentication: #8236
Bugfix - Fix the resource name: #8246
Bugfix - Apply role constraints when creating shares via the graph API: #8247
Bugfix - Fix concurrent access to a map: #8269
Bugfix - Fix nats registry: #8281
Bugfix - Fix last month search: #31145
Change - Auto-Accept Shares: #7097
Change - Change the default TUS chunk size: #7273
Change - Remove privacyURL and imprintURL from the config: #7938
Change - Remove accessDeniedHelpUrl from the config: #7970
Enhancement - Add the Banned Passwords List: #4197
Enhancement - Introduce service accounts: #6427
Enhancement - SSE for messaging: #6992
Enhancement - Support spec violating AD FS access token issuer: #7138
Enhancement - Add OCIS_LDAP_BIND_PASSWORD as replacement for LDAP_BIND_PASSWORD: #7176
Enhancement - Keyword Query Language (KQL) search syntax: #7212
Enhancement - Introduce clientlog service: #7217
Enhancement - Proxy uses service accounts for provisioning: #7240
Enhancement - The password policies change request: #7264
Enhancement - Introduce natsjs registry: #7272
Enhancement - Add the password policies: #7285
Enhancement - Add login URL config: #7317
Enhancement - Improve SSE format: #7325
Enhancement - New value auto for NOTIFICATIONS_SMTP_AUTHENTICATION: #7356
Enhancement - Make sse service scalable: #7382
Enhancement - Edit wrong named enves: #7406
Enhancement - Thumbnail generation with image processors: #7409
Enhancement - Set default for Async Uploads to true: #7416
Enhancement - The default language added: #7417
Enhancement - Add "Last modified" filter Chip: #7455
Enhancement - Config for disabling Web extensions: #7486
Enhancement - Store and index metadata: #7490
Enhancement - Add support for audio files to the thumbnails service: #7491
Enhancement - Implement sharing roles: #7524
Enhancement - Add new permission to delete public link password: #7538
Enhancement - Add config to enforce passwords on all public links: #7547
Enhancement - Tika content extraction cleanup for search: #7553
Enhancement - Allow configuring storage registry with envvars: #7554
Enhancement - Add search MediaType filter: #7602
Enhancement - Add Sharing NG endpoints: #7633
Enhancement - Configs for Web embed mode: #7670
Enhancement - Add new permissions: #7700
Enhancement - Add preferred language to user settings: #7720
Enhancement - Add user filter startswith and contains: #7739
Enhancement - Allow configuring additional routes: #7740
Enhancement - Default link permission config: #7783
Enhancement - Add banned password list to the default deployments: #7784
Enhancement - Update to go 1.21: #7794
Enhancement - Add Sharing NG list permissions endpoint: #7805
Enhancement - Add user list requires filter config: #7866
Enhancement - Retry antivirus postprocessing step in case of problems: #7874
Enhancement - Add validation to public share provider: #7877
Enhancement - Store and index metadata: #7886
Enhancement - Allow regular users to list other users: #7887
Enhancement - Add edit public share to sharing NG: #7908
Enhancement - Add cli commands for trash-bin: #7917
Enhancement - Add validation update public share: #7978
Enhancement - Allow inmemory nats-js-kv stores: #7979
Enhancement - Disable the password policy: #7985
Enhancement - Use kv store in natsjs registry: #7987
Enhancement - Allow authentication nats connections: #7989
Enhancement - Add RED metrics to the metrics endpoint: #7994
Enhancement - Add ocm and sciencemesh services: #7998
Enhancement - Make nats-js-kv the default registry: #8011
Enhancement - Service Account roles: #8051
Enhancement - Update antivirus service: #8062
Enhancement - Remove deprecated environment variables: #8149
Enhancement - Disable the password policy: #8152
Enhancement - Update web to v8.0.0-rc.2: #8154
Enhancement - Update reva to latest edge version: #8287
Enhancement - Allow restarting multiple uploads with one command: #8287

Details

Bugfix - Fix wrong compile date: #6132

We fixed that current date is always printed.

https://github.com/owncloud/ocis/issues/6124
https://github.com/owncloud/ocis/pull/6132
Bugfix - Fix the kql-bleve search: #7290

We fixed the issue when 500 on searches that contain ":". Added the characters
escaping according to https://blevesearch.com/docs/Query-String-Query/

https://github.com/owncloud/ocis/issues/7282
https://github.com/owncloud/ocis/pull/7290
Bugfix - Bring back the USERS_LDAP_USER_SCHEMA_ID variable: #7312

We reintroduced the USERS_LDAP_USER_SCHEMA_ID variable which was accidently
removed from the users service with the 4.0.0 release.

https://github.com/owncloud/ocis/issues/7312
https://github.com/owncloud/ocis-charts/issues/397
Bugfix - Do not reset state of received shares when rebuilding the jsoncs3 index: #7319

We fixed a problem with the "ocis migrate rebuild-jsoncs3-indexes" command which
reset the state of received shares to "pending".

https://github.com/owncloud/ocis/issues/7319
Bugfix - Deprecate redundant encryptions settings for notification service: #7345

The values tls and ssl for the smtp_encryption configuration setting are
duplicates of starttls and ssltls. They have been marked as deprecated. A
warning will be logged when they are still used. Please use starttls instead
for tls and ssltls instead of `ssl.

https://github.com/owncloud/ocis/issues/7345
Bugfix - Check school number for duplicates before adding a school: #7351

We fixed an issue that allowed to create two schools with the same school number

https://github.com/owncloud/enterprise/issues/6051
https://github.com/owncloud/ocis/pull/7351
Bugfix - Don't reload web config: #7369

When requesting config.json file from the server, web service would reload the
file if a path is set. This will remove config entries set via Envvar. Since we
want to have the possiblity to set configuration from both sources we removed
the reading from file. The file will still be loaded on service startup.

https://github.com/owncloud/ocis/pull/7369
Bugfix - Delete outdated userlog events: #7410

Userlog will now delete events when the user has no longer access to the
underlying resource

https://github.com/owncloud/ocis/pull/7410
Bugfix - Set the mountpoint on auto accept: #7460

On shares auto accept set a mountpoint with same logic as ocs handler

https://github.com/owncloud/ocis/pull/7460
Bugfix - Fix default language fallback: #7465

Add the default language for the webui, the settings, userlog and notification
service.

https://github.com/owncloud/ocis/issues/7465
Bugfix - GetUserByClaim fixed for Active Directory: #7476

The reva ldap backend for the users and groups service did not hex escape binary
uuids in LDAP filter correctly this could cause problems in Active Directory
setups for services using the GetUserByClaim CS3 request with claim "userid".

https://github.com/owncloud/ocis/issues/7469
https://github.com/owncloud/ocis/pull/7476
Bugfix - Fix preview request 500 error when made too early: #7502

Fix the status code and message when a thumbnail request is made too early.

https://github.com/owncloud/ocis/issues/7502
https://github.com/owncloud/ocis/pull/7507
Bugfix - Fix 403 in docs pipeline: #7509

Docs pipeline was not routed through our proxies which could lead to requests
being blacklisted

https://github.com/owncloud/ocis/issues/7509
https://github.com/owncloud/ocis/pull/7511
Bugfix - Fix the auth service env variable: #7523

We the auth service env variable to the service specific name. Before it was
configurable via AUTH_MACHINE_JWT_SECRET and now is configurable via
AUTH_SERVICE_JWT_SECRET.

https://github.com/owncloud/ocis/pull/7523
Bugfix - Token storage config fixed: #7528

The token storage config in the config.json for web was missing when it was set
to false.

https://github.com/owncloud/ocis/issues/7462
https://github.com/owncloud/ocis/pull/7528
Bugfix - Set existing mountpoint on auto accept: #7592

When already having a share for a specific resource, auto accept would use
custom mountpoints which lead to other errors. Now auto-accept is using the
existing mountpoint of a share.

https://github.com/owncloud/ocis/pull/7592
Bugfix - Return 423 status code on tag create: #7596

When a file is locked, return 423 status code instead 500 on tag create

https://github.com/owncloud/ocis/pull/7596
Bugfix - Fix libre-graph status codes: #7678

Creating group: https://owncloud.dev/libre-graph-api/#/groups/CreateGroup
changed: 200 -> 201

Creating users: https://owncloud.dev/libre-graph-api/#/users/CreateUser changed:
200 -> 201

Export GDPR: https://owncloud.dev/libre-graph-api/#/user/ExportPersonalData
changed: 201 -> 202

https://github.com/owncloud/ocis/issues/7678
https://github.com/owncloud/ocis/pull/7705
Bugfix - Fix unlock via space API: #7726

We fixed a bug that caused Error 500 when user try to unlock file using fileid
The handleSpaceUnlock has been added

https://github.com/owncloud/ocis/issues/7708
https://github.com/owncloud/ocis/pull/7726
https://github.com/cs3org/reva/pull/4338
Bugfix - Disable DEPTH infinity in PROPFIND: #7746

We fixed the Disabled DEPTH infinity in PROPFIND for: Personal
/remote.php/dav/files/admin Public link share
/remote.php/dav/public-files/ Trashbin
/remote.php/dav/spaces/trash-bin/

https://github.com/owncloud/ocis/issues/7359
https://github.com/owncloud/ocis/pull/7746
https://github.com/cs3org/reva/pull/4278
Bugfix - Fix the tgz mime type: #7772

We have fixed a bug when the tgz mime type was not "application/gzip"

https://github.com/owncloud/ocis/issues/7744
https://github.com/owncloud/ocis/pull/7772
Bugfix - Fix natsjs cache: #7790

The nats-js cache was not working. It paniced and wrote a lot of error logs.
Both is fixed now.

https://github.com/owncloud/ocis/pull/7790
Bugfix - Fix search service start: #7795

The search service would sometimes not start correctly because config values
are overwritten by default configuration.

https://github.com/owncloud/ocis/pull/7795
Bugfix - The race conditions in tests: #7847

We fixed the race conditions in tests.

https://github.com/owncloud/ocis/issues/7846
https://github.com/owncloud/ocis/pull/7847
Bugfix - Do not purge expired upload sessions that are still postprocessing: #7859

https://github.com/owncloud/ocis/pull/7859
https://github.com/owncloud/ocis/pull/7958
Bugfix - Fix the public link update: #7862

We fixed a bug when normal users can update the public link to delete its
password if permission is not sent in data.

https://github.com/owncloud/ocis/issues/7821
https://github.com/owncloud/ocis/pull/7862
Bugfix - Fix jwt config of policies service: #7893

Removes jwt config of policies service

https://github.com/owncloud/ocis/pull/7893
Bugfix - Updating logo with new theme structure: #7930

Updating and resetting the logo when using the new theme.json structure in Web
has been fixed.

https://github.com/owncloud/ocis/pull/7930
Bugfix - Password policy return code was wrong: #7952

We fixed the status code on SharingNG update permissions for public shares.

https://github.com/owncloud/ocis/pull/7952
Bugfix - Removed outdated and unused dependency from idp package: #7957

We've removed the outdated and apparently unused dependency cldr from the
kpop dependency inside the idp web ui. This resolves a security issue around
an oudated xmldom package version, originating from said kpop library.

https://github.com/owncloud/ocis/issues/7957
https://github.com/owncloud/ocis/pull/7988
Bugfix - Update permission validation: #7963

We fixed a bug where the permission validation was not working correctly.

https://github.com/owncloud/ocis/pull/7963
https://github.com/cs3org/reva/pull/4405
Bugfix - Renaming a user to a string with capital letters: #7964

We fixed the issue that led to correct update but the 404 response code when
renaming an existing user to a string with capital letters.

https://github.com/owncloud/ocis/pull/7964
Bugfix - Improve OCM support: #7973

We improved functionality of the OCM support.

https://github.com/owncloud/ocis/pull/7973
Bugfix - Permissions of a role with duplicate ID: #7976

We remove the redundant permissions of a role with duplicate ID.

https://github.com/owncloud/ocis/issues/7931
https://github.com/owncloud/ocis/pull/7976
Bugfix - Non durable streams for sse service: #7986

Configure sse streams to be non-durable. This functionality is not needed for
the sse service

https://github.com/owncloud/ocis/pull/7986
Bugfix - Fix empty trace ids: #8023

We changed the default tracing to produce non-empty traceids.

https://github.com/owncloud/ocis/pull/8023
https://github.com/owncloud/ocis/pull/8017
Bugfix - Fix search by containing special characters: #8050

As the OData query parser interprets characters like '@' or '-' in a special
way. Search request for users or groups needs to be quoted. We fixed the
libregraph users and groups endpoints to handle quoted search terms correctly.

https://github.com/owncloud/ocis/issues/7990
https://github.com/owncloud/ocis/pull/8050
https://github.com/owncloud/ocis/pull/8035
Bugfix - Fix the upload postprocessing: #8117

We fixed the upload postprocessing when the destination file does not exist
anymore.

https://github.com/owncloud/ocis/issues/7909
https://github.com/owncloud/ocis/pull/8117
Bugfix - Disallow to delete a file during the processing: #8132

We want to disallow deleting a file during the processing to prevent collecting
the orphan uploads.

https://github.com/owncloud/ocis/issues/8127
https://github.com/owncloud/ocis/pull/8132
https://github.com/cs3org/reva/pull/4446
Bugfix - Fix wrong naming in nats-js-kv registry: #8140

Registers the registry under the correct name

https://github.com/owncloud/ocis/pull/8140
Bugfix - IDP CS3 backend sessions now survire restart: #8142

We now correctly reinitialize the CS3 backend session after the IDP has been
restarted.

https://github.com/owncloud/ocis/pull/8142
Bugfix - Fix patching of language: #8182

User would not be able to patch their preferred language when the ldap backend
is set to read-only. This makes no sense as language is stored elsewhere.

https://github.com/owncloud/ocis/pull/8182
Bugfix - Fix search service to not log expected cases as errors: #8200

We changed the search service to not log cases where resources that were about
to be indexed can no longer be found. Those are expected cases, e.g. when the
file in question has already been deleted or renamed meanwhile.

https://github.com/owncloud/ocis/pull/8200
Bugfix - Updating and reset logo failed: #8211

We fixed a bug when admin tried to update or reset the logo.

https://github.com/owncloud/ocis/issues/8101
https://github.com/owncloud/ocis/pull/8211
Bugfix - Cleanup graph/pkg/service/v0/driveitems.go: #8228

Main fix is using proto getters to avoid panics. But some other code
improvements were also done

https://github.com/owncloud/ocis/pull/8228
Bugfix - Cleanup search/pkg/search/search.go: #8230

Now uses proto getters to avoid panics.

https://github.com/owncloud/ocis/pull/8230
Bugfix - Graph/sharedWithMe works for shares from project spaces now: #8233

We fixed a bug in the 'graph/v1beta1/me/drive/sharedWithMe' endpoint that caused
an error response when the user received shares from project spaces.
Additionally the endpoint now behaves more graceful in cases where the
displayname of the owner or creator of a share or shared resource couldn't be
resolved.

https://github.com/owncloud/ocis/issues/8027
https://github.com/owncloud/ocis/issues/8215
https://github.com/owncloud/ocis/pull/8233
Bugfix - Fix PATCH/DELETE status code for drives that don't support them: #8235

Updating and Deleting the virtual drives for shares is currently not supported.
Instead of returning a generic 500 status we return a 405 response now.

https://github.com/owncloud/ocis/issues/7881
https://github.com/owncloud/ocis/pull/8235
Bugfix - Fix nats authentication: #8236

Fixes nats authentication for registry/events/stores

https://github.com/owncloud/ocis/pull/8236
Bugfix - Fix the resource name: #8246

We fixed a problem where after renaming resource as sharer the receiver see a
new name.

https://github.com/owncloud/ocis/issues/8242
https://github.com/owncloud/ocis/pull/8246
https://github.com/cs3org/reva/pull/4463
Bugfix - Apply role constraints when creating shares via the graph API: #8247

We fixed a bug in the graph API for creating and updating shares so that
Spaceroot specific roles like 'Manager' and 'Co-owner' can no longer be assigned
for shares on files or directories.

https://github.com/owncloud/ocis/issues/8131
https://github.com/owncloud/ocis/pull/8247
Bugfix - Fix concurrent access to a map: #8269

We fixed the race condition that led to concurrent map access in a publicshare
manager.

https://github.com/owncloud/ocis/issues/8255
https://github.com/owncloud/ocis/pull/8269
https://github.com/cs3org/reva/pull/4472
Bugfix - Fix nats registry: #8281

The nats registry would behave badly when configuring nats-js-kv via envvar.
Reason is the way go-micro initializes. It took 5 developers to find the issue
and the fix so the details cannot be shared here. Just accept that it is working
now

https://github.com/owncloud/ocis/pull/8281
Bugfix - Fix last month search: #31145

We've fixed the last month search edge case when currently is 31-th.

Https://github.com/owncloud/ocis/issues/7629
https://github.com/owncloud/ocis/pull/7742

https://github.com/golang/go/issues/31145
The
issue
is
related
to
the
build-in
package
behavior
Change - Auto-Accept Shares: #7097

Automatically accepts shares. This feature is active by default and can be
deactivated via the environment variable FRONTEND_AUTO_ACCEPT_SHARES.

https://github.com/owncloud/ocis/pull/7097
Change - Change the default TUS chunk size: #7273

We changed the default TUS chunk size from 100MB to 10MB. You can still use the
old value by configuring it in your deployment.

https://github.com/owncloud/ocis/pull/7273
Change - Remove privacyURL and imprintURL from the config: #7938

We've removed the option privacyURL and imprintURL from the config, since other
clients weren't able to consume these. In order to be accessible by other
clients, not just Web, those should be configured via the theme.json file.

https://github.com/owncloud/ocis/pull/7938/
Change - Remove accessDeniedHelpUrl from the config: #7970

We've removed the option accessDeniedHelpUrl from the config, since other
clients weren't able to consume it. In order to be accessible by other clients,
not just Web, it should be configured via the theme.json file.

https://github.com/owncloud/ocis/pull/7970
Enhancement - Add the Banned Passwords List: #4197

Added an option to enable a password check against a banned passwords list
OCIS-3809

https://github.com/cs3org/reva/pull/4197
https://github.com/owncloud/ocis/pull/7314
Enhancement - Introduce service accounts: #6427

Introduces service accounts to avoid impersonating users in async processes

https://github.com/owncloud/ocis/issues/5550
https://github.com/owncloud/ocis/pull/6427
Enhancement - SSE for messaging: #6992

So far, sse has only been used to exchange messages between the server and the
client. In order to be able to send more content to the client, we have moved
the endpoint to a separate service and are now also using it for other
notifications like:
- notify postprocessing state changes.
- notify file locking and unlocking.
- ... @toDo
https://github.com/owncloud/ocis/pull/6992
Enhancement - Support spec violating AD FS access token issuer: #7138

AD FS /adfs/.well-known/openid-configuration has an optional
access_token_issuer which, in violation of the OpenID Connect spec, takes
precedence over issuer.

https://github.com/owncloud/ocis/pull/7138
Enhancement - Add OCIS_LDAP_BIND_PASSWORD as replacement for LDAP_BIND_PASSWORD: #7176

The enviroment variable OCIS_LDAP_BIND_PASSWORD was added to be more
consistent with all other global LDAP variables.

LDAP_BIND_PASSWORD is deprecated now and scheduled for removal with the 5.0.0
release.

We also deprecated LDAP_USER_SCHEMA_ID_IS_OCTETSTRING for removal with 5.0.0.
The replacement for it is OCIS_LDAP_USER_SCHEMA_ID_IS_OCTETSTRING.

https://github.com/owncloud/ocis/issues/7176
Enhancement - Keyword Query Language (KQL) search syntax: #7212

We've introduced support for
KQL
as the default oCIS search query language.

Simple queries:
- tag:golden tag:"silver"
- name:file.txt name:"file.docx"
- content:ahab content:"captain aha*"
Date/-range queries
- Mtime:"2023-09-05T08:42:11.23554+02:00"
- Mtime>"2023-09-05T08:42:11.23554+02:00"
- Mtime>="2023-09-05T08:42:11.23554+02:00"
- Mtime<"2023-09-05T08:42:11.23554+02:00"
- Mtime<="2023-09-05T08:42:11.23554+02:00"
- Mtime:today - range: start of today till end of today
- Mtime:yesterday - range: start of yesterday till end of yesterday
- Mtime:"this week" - range: start of this week till end of this week
- Mtime:"this month" - range: start of this month till end of this month
- Mtime:"last month" - range: start of last month till end of last month
- Mtime:"this year" - range: start of this year till end of this year
- Mtime:"last year" - range: start of last year till end of last year
Conjunctive normal form queries:
- tag:golden AND tag:"silver, tag:golden OR tag:"silver, tag:golden NOT tag:"silver
- (tag:book content:ahab*), tag:(book pdf)
Complex queries:
- (name:"moby di*" OR tag:bestseller) AND tag:book NOT tag:read
https://github.com/owncloud/ocis/issues/7042
https://github.com/owncloud/ocis/issues/7179
https://github.com/owncloud/ocis/issues/7114
https://github.com/owncloud/web/issues/9636
https://github.com/owncloud/web/issues/9646
https://github.com/owncloud/ocis/pull/7212
https://github.com/owncloud/ocis/pull/7043
https://github.com/owncloud/ocis/pull/7247
https://github.com/owncloud/ocis/pull/7248
https://github.com/owncloud/ocis/pull/7254
https://github.com/owncloud/ocis/pull/7262
https://github.com/owncloud/web/pull/9653
https://github.com/owncloud/web/pull/9672
Enhancement - Introduce clientlog service: #7217

Add the clientlog service which will send machine readable notifications to
clients

https://github.com/owncloud/ocis/pull/7217
Enhancement - Proxy uses service accounts for provisioning: #7240

The proxy service now uses a service account for provsioning task, like role
assignment and user auto-provisioning. This cleans up some technical debt that
required us to mint reva tokes inside the proxy service.

https://github.com/owncloud/ocis/issues/5550
https://github.com/owncloud/ocis/pull/7240
Enhancement - The password policies change request: #7264

The variables renaming OCIS-3767

https://github.com/cs3org/reva/pull/7264
Enhancement - Introduce natsjs registry: #7272

Introduce a registry based on the natsjs object store

https://github.com/owncloud/ocis/issues/7272
https://github.com/owncloud/ocis/pull/7487
Enhancement - Add the password policies: #7285

Add the password policies OCIS-3767

https://github.com/owncloud/ocis/pull/7285
https://github.com/owncloud/ocis/pull/7194
https://github.com/cs3org/reva/pull/4147
Enhancement - Add login URL config: #7317

Introduce a config to set the web login URL via WEB_OPTION_LOGIN_URL.

https://github.com/owncloud/ocis/pull/7317
Enhancement - Improve SSE format: #7325

Improve format of sse notifications

https://github.com/owncloud/ocis/pull/7325
Enhancement - New value auto for NOTIFICATIONS_SMTP_AUTHENTICATION: #7356

This cause the notifications service to automatically pick a suitable
authentication method to use with the configured SMTP server. This is also the
new default behavior. The previous default was to not use authentication at all.

https://github.com/owncloud/ocis/issues/7356
Enhancement - Make sse service scalable: #7382

When running multiple sse instances some events would not be reported to the
user. This is fixed.

https://github.com/owncloud/ocis/pull/7382
Enhancement - Edit wrong named enves: #7406

Checked and changed the envvars specified in the task and also removed those
that are no longer used.

https://github.com/owncloud/ocis/pull/7406
Enhancement - Thumbnail generation with image processors: #7409

Thumbnails can now be changed during creation, previously the images were always
scaled to fit the given frame, but it could happen that the images were cut off
because they could not be placed better due to the aspect ratio.

This pr introduces the possibility of specifying how the behavior should be,
following processors are available
- resize
- fit
- fill
- thumbnail
The processor can be applied by adding the processor query param to the request,
e.g. processor=fit, processor=fill, ...

To find out more how the individual processors work please read
https://github.com/disintegration/imaging

If no processor is provided it behaves the same as before (resize for gif's and
thumbnail for all other)

https://github.com/owncloud/enterprise/issues/6057
https://github.com/owncloud/ocis/issues/5179
https://github.com/owncloud/web/issues/7728
https://github.com/owncloud/ocis/pull/7409
Enhancement - Set default for Async Uploads to true: #7416

Async Uploads are meanwhile standard and needed for multiple features. Hence we
default them to true

https://github.com/owncloud/ocis/pull/7416
Enhancement - The default language added: #7417

The ability of configuration the default language has been added to the setting
service.

https://github.com/owncloud/enterprise/issues/5915
https://github.com/owncloud/ocis/pull/7417
Enhancement - Add "Last modified" filter Chip: #7455

Add "Last modified" filter Chip

https://github.com/owncloud/ocis/issues/7431
https://github.com/owncloud/ocis/issues/7551
https://github.com/owncloud/ocis/pull/7455
Enhancement - Config for disabling Web extensions: #7486

A new config for disabling specific Web extensions via their id has been added.

https://github.com/owncloud/web/issues/8524
https://github.com/owncloud/ocis/pull/7486
Enhancement - Store and index metadata: #7490

Audio metadata is now extracted and stored by the search service. It is
available for driveItems in a folder listing using the Graph API.

https://github.com/owncloud/ocis/pull/7490
Enhancement - Add support for audio files to the thumbnails service: #7491

The thumbnails service can now extract artwork from audio files (mp3, ogg, flac)
and render it just like any other image.

https://github.com/owncloud/ocis/pull/7491
Enhancement - Implement sharing roles: #7524

Implement libre graph sharing roles

https://github.com/owncloud/ocis/issues/7418
https://github.com/owncloud/ocis/pull/7524
Enhancement - Add new permission to delete public link password: #7538

Users with this new permission can now delete passwords on read-only public
links. The permission is added to the default roles "Admin" and "Space Admin".

https://github.com/owncloud/ocis/issues/7538
https://github.com/owncloud/ocis/pull/7538
https://github.com/cs3org/reva/pull/4270
Enhancement - Add config to enforce passwords on all public links: #7547

We added the config OCIS_SHARING_PUBLIC_SHARE_MUST_HAVE_PASSWORD to enforce
passwords on all public shares.

https://github.com/owncloud/ocis/issues/7539
https://github.com/owncloud/ocis/pull/7547
Enhancement - Tika content extraction cleanup for search: #7553

So far it has not been possible to determine whether the content for search
should be cleaned up of 'stop words' or not. Stop words are filling words like
"I, you, have, am" etc and defined by the search engine.

The behaviour can now be set with the newly introduced settings option
SEARCH_EXTRACTOR_TIKA_CLEAN_STOP_WORDS=false which is enabled by default.

In addition, the stop word cleanup is no longer as aggressive and now ignores
numbers, urls, basically everything except the defined stop words.

https://github.com/owncloud/ocis/issues/6674
https://github.com/owncloud/ocis/pull/7553
Enhancement - Allow configuring storage registry with envvars: #7554

Introduced new envvars to configure the storage registry in the gateway service

https://github.com/owncloud/ocis/pull/7554
Enhancement - Add search MediaType filter: #7602

Add filter MediaType filter shortcuts to search for specific document types. For
example, a search query mediatype:documents will search for files with the
following mimetypes:

Application/msword
MimeType:application/vnd.openxmlformats-officedocument.wordprocessingml.document
MimeType:application/vnd.oasis.opendocument.text MimeType:text/plain
MimeType:text/markdown MimeType:application/rtf
MimeType:application/vnd.apple.pages

Besides the document shorthand, it also contains following:
- file
- folder
- document
- spreadsheet
- presentation
- pdf
- image
- video
- audio
- archive
File

Folder

Document:

Application/msword
application/vnd.openxmlformats-officedocument.wordprocessingml.document
application/vnd.oasis.opendocument.text text/plain text/markdown application/rtf
application/vnd.apple.pages

Spreadsheet:

Application/vnd.ms-excel application/vnd.oasis.opendocument.spreadsheet text/csv
application/vnd.openxmlformats-officedocument.spreadsheetml.sheet
application/vnd.oasis.opendocument.spreadsheet application/vnd.apple.numbers

Presentations:

Application/vnd.ms-powerpoint
application/vnd.openxmlformats-officedocument.presentationml.presentation
application/vnd.oasis.opendocument.presentation application/vnd.apple.keynote

PDF

Application/pdf

Image:

Image/*

Video:

Video/*

Audio:

Audio/*

Archive (zip ...):

Application/zip application/x-tar application/x-gzip application/x-7z-compressed
application/x-rar-compressed application/x-bzip2 application/x-bzip
application/x-tgz

https://github.com/owncloud/ocis/issues/7432
https://github.com/owncloud/ocis/pull/7602
Enhancement - Add Sharing NG endpoints: #7633

We've added new sharing ng endpoints to the graph beta api. The following
endpoints are added:
- /v1beta1/me/drive/sharedByMe
- /v1beta1/me/drive/sharedWithMe
- /v1beta1/roleManagement/permissions/roleDefinitions
- /v1beta1/roleManagement/permissions/roleDefinitions/{roleID}
- /v1beta1/drives/{drive-id}/items/{item-id}/createLink (create a sharing link)
https://github.com/owncloud/ocis/issues/7436
https://github.com/owncloud/ocis/issues/6993
https://github.com/owncloud/ocis/pull/7633
https://github.com/owncloud/ocis/pull/7686
https://github.com/owncloud/ocis/pull/7684
https://github.com/owncloud/ocis/pull/7683
https://github.com/owncloud/ocis/pull/7239
https://github.com/owncloud/ocis/pull/7687
https://github.com/owncloud/ocis/pull/7751
https://github.com/owncloud/libre-graph-api/pull/112
Enhancement - Configs for Web embed mode: #7670

New configs for the Web embed mode have been added:
- enabled Defines if embed mode is enabled.
- target Defines how Web is being integrated when running in embed mode.
- messagesOrigin Defines a URL under which Web can be integrated via iFrame.
- delegateAuthentication Defines whether Web should require authentication to be done by the parent application.
- delegateAuthenticationOrigin Defines the host to validate the message event origin against when running Web in 'embed' mode.
https://github.com/owncloud/web/issues/9768
https://github.com/owncloud/ocis/pull/7670
Enhancement - Add new permissions: #7700

Adds new permissions to admin/spaceadmin/user roles - Favorites.List allows /
denies the Favorites Listing Request - Favorites.Write is implemented to be
enforced on marking/unmark files as favouritesShare - Shares.Write permission
denies / allows sharing completely for a user on all share CUD requests. (User,
Group)

https://github.com/owncloud/ocis/pull/7700
Enhancement - Add preferred language to user settings: #7720

We have added the preferred language to the libre-graph api & added endpoints
for that to ocis.

https://github.com/owncloud/ocis/issues/5455
https://github.com/owncloud/ocis/pull/7720
https://github.com/owncloud/libre-graph-api/pull/130
Enhancement - Add user filter startswith and contains: #7739

We add two new filters to the user list endpoint. The startswith filter allows
to filter users by the beginning of their name. The contains filter allows to
filter users by a substring of their name.

https://github.com/owncloud/ocis/issues/5486
https://github.com/owncloud/ocis/pull/7739
Enhancement - Allow configuring additional routes: #7740

Allows adding custom routes to the ocis proxy. This enables customs ocis
extensions

https://github.com/owncloud/ocis/pull/7740
Enhancement - Default link permission config: #7783

A new config for default link permissions that is being announced via
capabilities has been added. It defaults to 1 (= public link with viewer
permissions).

https://github.com/owncloud/web/issues/9919
https://github.com/owncloud/ocis/pull/7783
Enhancement - Add banned password list to the default deployments: #7784

We add banned password list to the default deployments

https://github.com/owncloud/ocis/issues/7724
https://github.com/owncloud/ocis/pull/7784
Enhancement - Update to go 1.21: #7794

We updated to go 1.21.

https://github.com/owncloud/ocis/pull/7794
Enhancement - Add Sharing NG list permissions endpoint: #7805

We've added a new sharing ng endpoint which lists all permissions for a given
item.

https://github.com/owncloud/ocis/issues/6993
https://github.com/owncloud/ocis/pull/7805
Enhancement - Add user list requires filter config: #7866

Introduce a config to require filters in order to list users in Web via
WEB_OPTION_USER_LIST_REQUIRES_FILTER.

https://github.com/owncloud/ocis/pull/7866
Enhancement - Retry antivirus postprocessing step in case of problems: #7874

The antivirus postprocessing step will now be retried for a configurable amount
of times in case it can't get a result from clamav.

https://github.com/owncloud/ocis/pull/7874
Enhancement - Add validation to public share provider: #7877

We changed the implementation of the public share provider in reva to do the
validation on the CS3 Api side. This makes the implementation on the graph side
smaller.

https://github.com/owncloud/ocis/issues/6993
https://github.com/owncloud/ocis/pull/7877
Enhancement - Store and index metadata: #7886

Location metadata is now extracted and stored by the search service. It is
available for driveItems in a folder listing using the Graph API.

https://github.com/owncloud/ocis/pull/7886
Enhancement - Allow regular users to list other users: #7887

Regular users can search for other users and groups. The following limitations
apply:
- Only search queries are allowed (using the $search=term query parameter)
- The search term needs to have at least 3 characters
- for user searches the result set only contains the attributes displayName, userType, mail and id
- for group searches the result set only contains the attributes displayName, groupTypes and id
https://github.com/owncloud/ocis/issues/7782
https://github.com/owncloud/ocis/pull/7887
Enhancement - Add edit public share to sharing NG: #7908

We added the ability to edit public shares to the sharing NG endpoints.

https://github.com/owncloud/ocis/issues/6993
https://github.com/owncloud/ocis/pull/7908/
Enhancement - Add cli commands for trash-bin: #7917

We added the list and restore commands to the trash-bin items to the CLI

https://github.com/owncloud/ocis/issues/7845
https://github.com/owncloud/ocis/pull/7917
https://github.com/cs3org/reva/pull/4392
Enhancement - Add validation update public share: #7978

For Sharing NG, we needed validation in the implementing reva service to keep
the client implementation simple.

https://github.com/owncloud/ocis/pull/7978
Enhancement - Allow inmemory nats-js-kv stores: #7979

Adds envvars to keep nats-js-kv stores in memory and not persist them on disc.

https://github.com/owncloud/ocis/pull/7979
Enhancement - Disable the password policy: #7985

We add the environment variable that allow to disable the password policy.

https://github.com/owncloud/ocis/issues/7916
https://github.com/owncloud/ocis/pull/7985
https://github.com/cs3org/reva/pull/4409
Enhancement - Use kv store in natsjs registry: #7987

Replaces the nats object store with the nats kv store in the natsjs registry

https://github.com/owncloud/ocis/pull/7987
Enhancement - Allow authentication nats connections: #7989

Allow events, store and registry implementation to pass username/password to the
nats instance

https://github.com/owncloud/ocis/pull/7989
Enhancement - Add RED metrics to the metrics endpoint: #7994

We added three new metrics to the metrics endpoint to support the RED method for
monitoring microservices.
- Request Rate: The number of requests per second. The total count of requests
  is available under ocis_proxy_requests_total. - Error Rate: The number of
  failed requests per second. The total count of failed requests is available
  under ocis_proxy_errors_total. - Duration: The amount of time each request
  takes. The duration of all requests is available under
  ocis_proxy_request_duration_seconds. This is a histogram metric, so it also
  provides information about the distribution of request durations.
The metrics are available under the following paths: PROXY_DEBUG_ADDR/metrics
in a prometheus compatible format and maybe secured by PROXY_DEBUG_TOKEN.

https://github.com/owncloud/ocis/pull/7994
Enhancement - Add ocm and sciencemesh services: #7998

We added sciencemesh and ocm services to enable federation.

https://github.com/owncloud/ocis/pull/7998
https://github.com/owncloud/ocis/pull/7576
https://github.com/owncloud/ocis/pull/7464
https://github.com/owncloud/ocis/pull/7463
Enhancement - Make nats-js-kv the default registry: #8011

The previously used default mdns is faulty. Deprecated it together with
consul, nats and etcd implementations.

https://github.com/owncloud/ocis/pull/8011
https://github.com/owncloud/ocis/pull/8027
Enhancement - Service Account roles: #8051

Use a hidden role for service accounts. It will not appear in ListRoles calls
but internally handled by settings service

https://github.com/owncloud/ocis/pull/8051
https://github.com/owncloud/ocis/pull/8074
Enhancement - Update antivirus service: #8062

We update the antivirus icap client library and optimize the antivirus scanning
service. ANTIVIRUS_ICAP_TIMEOUT is now deprecated and
ANTIVIRUS_ICAP_SCAN_TIMEOUT should be used instead.

ANTIVIRUS_ICAP_SCAN_TIMEOUT supports human durations like 1s, 1m, 1h and
1d.

https://github.com/owncloud/ocis/issues/6764
https://github.com/owncloud/ocis/pull/8062
Enhancement - Remove deprecated environment variables: #8149

We have removed all deprecated environment variables that have been marked for
removal for 5.0.0

https://github.com/owncloud/ocis/issues/8025
https://github.com/owncloud/ocis/pull/8149
Enhancement - Disable the password policy: #8152

We reworked and moved disabling the password policy logic from the reva to the
ocis.

https://github.com/owncloud/ocis/issues/7916
https://github.com/owncloud/ocis/pull/8152
https://github.com/cs3org/reva/pull/4453
Enhancement - Update web to v8.0.0-rc.2: #8154

Tags: web

We updated ownCloud Web to v8.0.0-rc.2. Please refer to the changelog (linked)
for details on the web release.

Summary * Bugfix

owncloud/web#10176: Turned off
file extensions not always respected * Bugfix
owncloud/web#10232: Skip searchbar
preview fetch on reload

We updated ownCloud Web to v8.0.0-rc.1. Please refer to the changelog (linked)
for details on the web release.

Summary * Enhancement

owncloud/web#10224: Harmonize
AppSwitcher icon colors * Bugfix
owncloud/web#10230: Configurable
concurrent requests * Bugfix
owncloud/web#10158: GDPR export
polling * Bugfix
owncloud/web#10220: Loading
indicator during conflict dialog * Bugfix
owncloud/web#10156: Uploading
the same files parallel * Bugfix
owncloud/web#10179: Space
navigate to trash missing * Bugfix
owncloud/web#10118: Tilesview
has whitespace * Bugfix
owncloud/web#10182: Make
versions panel readonly in viewers and editors

We updated ownCloud Web to v8.0.0-beta.2. Please refer to the changelog (linked)
for details on the web release.

Summary * Bugfix

owncloud/web#10010: Displaying
full video in their dimensions * Bugfix
owncloud/web#10149: Spaces files
list previews cropped * Bugfix
owncloud/web#10149: Spaces
overview tile previews zoomed * Bugfix
owncloud/web#10154: Resolving
links without drive alias

We updated ownCloud Web to v8.0.0-beta.1. Please refer to the changelog (linked)
for details on the web release.

Summary * Change

owncloud/web#9698: Theme handling *
Enhancement owncloud/web#10111:
Registering right sidebar panels as extension * Enhancement
owncloud/web#10111: File sidebar
in viewer and editor apps

We updated ownCloud Web to v8.0.0-alpha.13. Please refer to the changelog
(linked) for details on the web release.

Summary * Enhancement

owncloud/web#10104: Create link
modal

We updated ownCloud Web to v8.0.0-alpha.12. Please refer to the changelog
(linked) for details on the web release.

Summary * Bugfix

owncloud/web#9257: Filter out
shares without display name * Bugfix
owncloud/web#9483: PDF loading
Safari * Bugfix owncloud/web#9513:
Set or remove expiration date on group share not possible * Bugfix
owncloud/web#9529: Shared with
action menu label alignment * Bugfix
owncloud/web#9587: Internal public
link resolving * Bugfix
owncloud/web#9593: Audio- &
video-loading on Shared with me page * Bugfix
owncloud/web#9649: Add project
space filter * Bugfix
owncloud/web#9663: Respect the
open-in-new-tab-config for external apps * Bugfix
owncloud/web#9670: Tiles view
accessibility * Bugfix
owncloud/web#9694: Special
characters in username * Bugfix
owncloud/web#9788: Create .space
folder if it does not exist * Bugfix
owncloud/web#9799: Link resolving
into default app * Bugfix
owncloud/web#9832: Copy quicklinks
for webkit navigator * Bugfix
owncloud/web#9843: Fix display path
on resources * Bugfix
owncloud/web#9844: Upload space
image * Bugfix owncloud/web#9861:
Duplicated file search request * Bugfix
owncloud/web#9873: Tags are no
longer editable for a locked file * Bugfix
owncloud/web#9881: Prevent
rendering of old/wrong set of resources in search list * Bugfix
owncloud/web#9915: Keep both
folders conflict in same-named folders * Bugfix
owncloud/web#9931: Enabling "invite
people" for password-protected folder/file * Bugfix
owncloud/web#10031: Icon
extension mapping * Bugfix
owncloud/web#10065: Logout page
after token expiry * Bugfix
owncloud/web#10083: Disable
expiration date for alias link (internal) * Bugfix
owncloud/web#10092: Allow empty
search query in "in-here" search * Bugfix
owncloud/web#10096: Remove
password buttons on input if disabled * Change
owncloud/web#7338: Remove
deprecated code * Enhancement
owncloud/web#7317: Make login url
configurable * Enhancement
owncloud/web#7497: Permission
checks for shares and favorites * Enhancement
owncloud/web#7600: Scroll to
newly created folder * Enhancement
owncloud/web#9302: Application
unification * Enhancement
owncloud/web#9423: Show local
loading spinner in sharing button * Enhancement
owncloud/web#9441: File versions
tooltip with absolute date * Enhancement
owncloud/web#9441: Disabling
extensions * Enhancement
owncloud/web#9451: Add SSE to get
notifications instantly * Enhancement
owncloud/web#9525: Tags form
improved * Enhancement
owncloud/web#9527: Don't display
confirmation dialog on file deletion * Enhancement
owncloud/web#9531: Personal
shares can be shown and hidden * Enhancement
owncloud/web#9552: Upload
preparation time * Enhancement
owncloud/web#9561: Indicate
processing state * Enhancement
owncloud/web#9566: Display locking
information * Enhancement
owncloud/web#9584: Moving share's
"set expiration date" function * Enhancement
owncloud/web#9625: Add keyboard
navigation to spaces overview * Enhancement
owncloud/web#9627: Add batch
actions to spaces * Enhancement
owncloud/web#9653: Keyword Query
Language (KQL) search syntax * Enhancement
owncloud/web#9671: OcModal set
buttons to same width * Enhancement
owncloud/web#9682: Add password
policy compatibility * Enhancement
owncloud/web#9691: Password
generator for public links * Enhancement
owncloud/web#9696: Added app banner
for mobile devices * Enhancement
owncloud/web#9706: Unify sharing
expiration date menu items * Enhancement
owncloud/web#9727: Show error if
password is on a banned password list * Enhancement
owncloud/web#9771: Handle
postprocessing state via Server Sent Events * Enhancement
owncloud/web#9806: Preview image
presentation * Enhancement
owncloud/web#9809: Add editors to
the application menu * Enhancement
owncloud/web#9814: Registering nav
items as extension * Enhancement
owncloud/web#9815: Add new portal
into runtime to include footer * Enhancement
owncloud/web#9818: Add mode
config option * Enhancement
owncloud/web#9831: Last modified
filter chips * Enhancement
owncloud/web#9841: Add embed mode
actions * Enhancement
owncloud/web#9847: Provide vendor
neutral file icons * Enhancement
owncloud/web#9853: Show only create
folder button in embed mode * Enhancement
owncloud/web#9854: Search query
term linking * Enhancement
owncloud/web#9857: Add permission
to delete link passwords when password is enforced * Enhancement
owncloud/web#9858: Remove settings
icon from searchbar * Enhancement
owncloud/web#9863: Location picker
in embed mode * Enhancement
owncloud/web#9864: Search tags
filter chips style aligned * Enhancement
owncloud/web#9884: Enable dark
theme on importer * Enhancement
owncloud/web#9890: Create shortcuts
- Enhancement owncloud/web#9905:
  Manage tags in details panel * Enhancement
  owncloud/web#9906: Reorganize "New"
  menu * Enhancement
  owncloud/web#9912: Add media type
  filter chip * Enhancement
  owncloud/web#9940: Display error
  message for upload to locked folder * Enhancement
  owncloud/web#9966: Support more
  audio formats with correct icon * Enhancement
  owncloud/web#10007: Additional
  languages * Enhancement
  owncloud/web#10013: Shared by
  filter * Enhancement
  owncloud/web#10014: Share search
  filter * Enhancement
  owncloud/web#10024: Duplicate
  space * Enhancement
  owncloud/web#10037: Default link
  permission * Enhancement
  owncloud/web#10047: Add explaining
  contextual helper to spaces overview * Enhancement
  owncloud/web#10057: Folder tree
  creation during upload * Enhancement
  owncloud/web#10062: Show webdav
  information in details view * Enhancement
  owncloud/web#10072: Add
  authentication delegation in the Embed mode * Enhancement
  owncloud/web#10099: Support
  mandatory filter while listing users * Enhancement
  owncloud/web#10102: Registering
  quick actions as extension
https://github.com/owncloud/ocis/pull/8154
https://github.com/owncloud/ocis/pull/8055
https://github.com/owncloud/ocis/pull/7930
https://github.com/owncloud/ocis/pull/7952
https://github.com/owncloud/ocis/pull/7918
https://github.com/owncloud/ocis/pull/7883
https://github.com/owncloud/web/releases/tag/v8.0.0-rc.2
https://github.com/owncloud/web/releases/tag/v8.0.0-rc.1
https://github.com/owncloud/web/releases/tag/v8.0.0-beta.1
https://github.com/owncloud/web/releases/tag/v8.0.0-beta.2
https://github.com/owncloud/web/releases/tag/v8.0.0-alpha.13
https://github.com/owncloud/web/releases/tag/v8.0.0-alpha.12
Enhancement - Update reva to latest edge version: #8287

We update reva to the latest edge version to get the latest fixes and features.

Changelog for reva edge
- Bugfix cs3org/reva#4454: Skip unnecessary share retrieval
- Bugfix cs3org/reva#4461: CORS handling for WebDAV requests fixed
- Bugfix cs3org/reva#4462: Prevent setting container specific permissions on files
- Bugfix cs3org/reva#4463: Fix the resource name
- Bugfix cs3org/reva#4466: Fix natsjskv store
- Bugfix cs3org/reva#4469: Handle interrupted uploads
- Bugfix cs3org/reva#4472: Fix concurrent access to a map
- Bugfix cs3org/reva#4473: Decomposedfs now correctly lists sessions
- Bugfix cs3org/reva#4474: Make /dav/meta consistent
- Bugfix cs3org/reva#4475: Upload session specific processing flag
- Bugfix cs3org/reva#4476: No need to unmark postprocessing when it was not started
- Bugfix cs3org/reva#4479: Fix creating documents in the approvider
- Bugfix cs3org/reva#4481: Distinguish failure and node metadata reversal
- Bugfix cs3org/reva#4434: Fix the upload postprocessing
- Bugfix cs3org/reva#4443: Fixed wrong status code when moving a file to a denied path
- Bugfix cs3org/reva#4446: Disallow to delete a file during the processing
- Bugfix cs3org/reva#4448: Fix truncating existing files
- Bugfix cs3org/reva#4449: Keep failed processing status
- Bugfix cs3org/reva#4452: More efficient share jail
- Bugfix cs3org/reva#4456: Do not lose revisions when restoring the first revision
- Bugfix cs3org/reva#4457: Fix concurrent map access in sharecache
- Enhancement cs3org/reva#4453: Disable the password policy
- Enhancement cs3org/reva#4477: Extend ResumePostprocessing event
Changelog for reva 2.18.0 (2023-12-22)

The following sections list the changes in reva 2.18.0 relevant to reva users.
The changes are ordered by importance.
- Bugfix cs3org/reva#4424: Fixed panic in receivedsharecache pkg
- Bugfix cs3org/reva#4425: Fix overwriting files with empty files
- Bugfix cs3org/reva#4432: Fix /dav/meta endpoint for shares
- Bugfix cs3org/reva#4422: Fix disconnected traces
- Bugfix cs3org/reva#4429: Internal link creation
- Bugfix cs3org/reva#4407: Make ocdav return correct oc:spaceid
- Bugfix cs3org/reva#4410: Improve OCM support
- Bugfix cs3org/reva#4402: Refactor upload session
- Enhancement cs3org/reva#4421: Check permissions before adding, deleting or updating shares
- Enhancement cs3org/reva#4403: Add validation to update public share
- Enhancement cs3org/reva#4409: Disable the password policy
- Enhancement cs3org/reva#4412: Allow authentication for nats connections
- Enhancement cs3org/reva#4411: Add option to configure streams non durable
- Enhancement cs3org/reva#4406: Rework cache configuration
- Enhancement cs3org/reva#4414: Track more upload session metrics
Changelog for reva 2.17.0 (2023-12-12)

The following sections list the changes in reva 2.17.0 relevant to reva users.
The changes are ordered by importance.
- Bugfix cs3org/reva#4278: Disable DEPTH infinity in PROPFIND
- Bugfix cs3org/reva#4318: Do not allow moves between shares
- Bugfix cs3org/reva#4290: Prevent panic when trying to move a non-existent file
- Bugfix cs3org/reva#4241: Allow an empty credentials chain in the auth middleware
- Bugfix cs3org/reva#4216: Fix an error message
- Bugfix cs3org/reva#4324: Fix capabilities decoding
- Bugfix cs3org/reva#4267: Fix concurrency issue
- Bugfix cs3org/reva#4362: Fix concurrent lookup
- Bugfix cs3org/reva#4336: Fix definition of "file-editor" role
- Bugfix cs3org/reva#4302: Fix checking of filename length
- Bugfix cs3org/reva#4366: Fix CS3 status code when looking up non existing share
- Bugfix cs3org/reva#4299: Fix HTTP verb of the generate-invite endpoint
- Bugfix cs3org/reva#4249: GetUserByClaim not working with MSAD for claim "userid"
- Bugfix cs3org/reva#4217: Fix missing case for "hide" in UpdateShares
- Bugfix cs3org/reva#4140: Fix missing etag in shares jail
- Bugfix cs3org/reva#4229: Fix destroying the Personal and Project spaces data
- Bugfix cs3org/reva#4193: Fix overwrite a file with an empty file
- Bugfix cs3org/reva#4365: Fix create public share
- Bugfix cs3org/reva#4380: Fix the public link update
- Bugfix cs3org/reva#4250: Fix race condition
- Bugfix cs3org/reva#4345: Fix conversion of custom ocs permissions to roles
- Bugfix cs3org/reva#4134: Fix share jail
- Bugfix cs3org/reva#4335: Fix public shares cleanup config
- Bugfix cs3org/reva#4338: Fix unlock via space API
- Bugfix cs3org/reva#4341: Fix spaceID in meta endpoint response
- Bugfix cs3org/reva#4351: Fix 500 when open public link
- Bugfix cs3org/reva#4352: Fix the tgz mime type
- Bugfix cs3org/reva#4388: Allow UpdateUserShare() to update just the expiration date
- Bugfix cs3org/reva#4214: Always pass adjusted default nats options
- Bugfix cs3org/reva#4291: Release lock when expired
- Bugfix cs3org/reva#4386: Remove dead enable_home config
- Bugfix cs3org/reva#4292: Return 403 when user is not permitted to lock
- Enhancement cs3org/reva#4389: Add audio and location props
- Enhancement cs3org/reva#4337: Check permissions before creating shares
- Enhancement cs3org/reva#4326: Add search mediatype filter
- Enhancement cs3org/reva#4367: Add GGS mime type
- Enhancement cs3org/reva#4194: Add hide flag to shares
- Enhancement cs3org/reva#4358: Add default permissions capability for links
- Enhancement cs3org/reva#4133: Add more metadata to locks
- Enhancement cs3org/reva#4353: Add support for .docxf files
- Enhancement cs3org/reva#4363: Add nats-js-kv store
- Enhancement cs3org/reva#4197: Add the Banned-Passwords List
- Enhancement cs3org/reva#4190: Add the password policies
- Enhancement cs3org/reva#4384: Add a retry postprocessing outcome and event
- Enhancement cs3org/reva#4271: Add search capability
- Enhancement cs3org/reva#4119: Add sse event
- Enhancement cs3org/reva#4392: Add additional permissions to service accounts
- Enhancement cs3org/reva#4344: Add url extension to mime type list
- Enhancement cs3org/reva#4372: Add validation to the public share provider
- Enhancement cs3org/reva#4244: Allow listing reveived shares by service accounts
- Enhancement cs3org/reva#4129: Auto-Accept Shares through ServiceAccounts
- Enhancement cs3org/reva#4374: Handle trashbin file listings concurrently
- Enhancement cs3org/reva#4325: Enforce Permissions
- Enhancement cs3org/reva#4368: Extract log initialization
- Enhancement cs3org/reva#4375: Introduce UploadSessionLister interface
- Enhancement cs3org/reva#4268: Implement sharing roles
- Enhancement cs3org/reva#4160: Improve utils pkg
- Enhancement cs3org/reva#4335: Add sufficient permissions check function
- Enhancement cs3org/reva#4281: Port OCM changes from master
- Enhancement cs3org/reva#4270: Opt out of public link password enforcement
- Enhancement cs3org/reva#4181: Change the variable names for the password policy
- Enhancement cs3org/reva#4256: Rename hidden share variable name
- Enhancement cs3org/reva#3926: Service Accounts
- Enhancement cs3org/reva#4359: Update go-ldap to v3.4.6
- Enhancement cs3org/reva#4170: Update password policies
- Enhancement cs3org/reva#4232: Improve error handling in utils package
https://github.com/owncloud/ocis/pull/8287
https://github.com/owncloud/ocis/pull/8278
https://github.com/owncloud/ocis/pull/8264
https://github.com/owncloud/ocis/pull/8100
https://github.com/owncloud/ocis/pull/8100
https://github.com/owncloud/ocis/pull/8038
https://github.com/owncloud/ocis/pull/8056
https://github.com/owncloud/ocis/pull/7949
https://github.com/owncloud/ocis/pull/7793
https://github.com/owncloud/ocis/pull/7978
https://github.com/owncloud/ocis/pull/7979
https://github.com/owncloud/ocis/pull/7963
https://github.com/owncloud/ocis/pull/7986
https://github.com/owncloud/ocis/pull/7721
https://github.com/owncloud/ocis/pull/7727
https://github.com/owncloud/ocis/pull/7752
Enhancement - Allow restarting multiple uploads with one command: #8287

Allows to restart all commands in a specific state.

https://github.com/owncloud/ocis/pull/8287

ocis - 5.0.0-rc.2

Published by ownclouders 9 months ago

Changelog for 5.0.0-rc.2

Changes in 5.0.0-rc.2

Summary

Bugfix - Fix wrong compile date: #6132
Bugfix - Fix the kql-bleve search: #7290
Bugfix - Bring back the USERS_LDAP_USER_SCHEMA_ID variable: #7312
Bugfix - Do not reset state of received shares when rebuilding the jsoncs3 index: #7319
Bugfix - Deprecate redundant encryptions settings for notification service: #7345
Bugfix - Check school number for duplicates before adding a school: #7351
Bugfix - Don't reload web config: #7369
Bugfix - Delete outdated userlog events: #7410
Bugfix - Set the mountpoint on auto accept: #7460
Bugfix - Fix default language fallback: #7465
Bugfix - GetUserByClaim fixed for Active Directory: #7476
Bugfix - Fix preview request 500 error when made too early: #7502
Bugfix - Fix 403 in docs pipeline: #7509
Bugfix - Fix the auth service env variable: #7523
Bugfix - Token storage config fixed: #7528
Bugfix - Set existing mountpoint on auto accept: #7592
Bugfix - Return 423 status code on tag create: #7596
Bugfix - Fix libre-graph status codes: #7678
Bugfix - Fix unlock via space API: #7726
Bugfix - Disable DEPTH infinity in PROPFIND: #7746
Bugfix - Fix the tgz mime type: #7772
Bugfix - Fix natsjs cache: #7790
Bugfix - Fix search service start: #7795
Bugfix - The race conditions in tests: #7847
Bugfix - Do not purge expired upload sessions that are still postprocessing: #7859
Bugfix - Fix the public link update: #7862
Bugfix - Updating logo with new theme structure: #7930
Bugfix - Password policy return code was wrong: #7952
Bugfix - Removed outdated and unused dependency from idp package: #7957
Bugfix - Update permission validation: #7963
Bugfix - Renaming a user to a string with capital letters: #7964
Bugfix - Improve OCM support: #7973
Bugfix - Permissions of a role with duplicate ID: #7976
Bugfix - Non durable streams for sse service: #7986
Bugfix - Fix empty trace ids: #8023
Bugfix - Fix search by containing special characters: #8050
Bugfix - Fix the upload postprocessing: #8117
Bugfix - Fix wrong naming in nats-js-kv registry: #8140
Bugfix - IDP CS3 backend sessions now survire restart: #8142
Bugfix - Fix patching of language: #8182
Bugfix - Fix search service to not log expected cases as errors: #8200
Bugfix - Updating and reset logo failed: #8211
Bugfix - Fix last month search: #31145
Change - Auto-Accept Shares: #7097
Change - Change the default TUS chunk size: #7273
Change - Remove privacyURL and imprintURL from the config: #7938
Change - Remove accessDeniedHelpUrl from the config: #7970
Enhancement - Add the Banned Passwords List: #4197
Enhancement - Introduce service accounts: #6427
Enhancement - SSE for messaging: #6992
Enhancement - Support spec violating AD FS access token issuer: #7138
Enhancement - Add OCIS_LDAP_BIND_PASSWORD as replacement for LDAP_BIND_PASSWORD: #7176
Enhancement - Keyword Query Language (KQL) search syntax: #7212
Enhancement - Introduce clientlog service: #7217
Enhancement - Proxy uses service accounts for provisioning: #7240
Enhancement - The password policies change request: #7264
Enhancement - Introduce natsjs registry: #7272
Enhancement - Add the password policies: #7285
Enhancement - Add login URL config: #7317
Enhancement - Improve SSE format: #7325
Enhancement - New value auto for NOTIFICATIONS_SMTP_AUTHENTICATION: #7356
Enhancement - Make sse service scalable: #7382
Enhancement - Edit wrong named enves: #7406
Enhancement - Thumbnail generation with image processors: #7409
Enhancement - Set default for Async Uploads to true: #7416
Enhancement - The default language added: #7417
Enhancement - Add "Last modified" filter Chip: #7455
Enhancement - Config for disabling Web extensions: #7486
Enhancement - Store and index metadata: #7490
Enhancement - Add support for audio files to the thumbnails service: #7491
Enhancement - Implement sharing roles: #7524
Enhancement - Add new permission to delete public link password: #7538
Enhancement - Add config to enforce passwords on all public links: #7547
Enhancement - Tika content extraction cleanup for search: #7553
Enhancement - Allow configuring storage registry with envvars: #7554
Enhancement - Add search MediaType filter: #7602
Enhancement - Add Sharing NG endpoints: #7633
Enhancement - Configs for Web embed mode: #7670
Enhancement - Add new permissions: #7700
Enhancement - Add preferred language to user settings: #7720
Enhancement - Add user filter startswith and contains: #7739
Enhancement - Allow configuring additional routes: #7740
Enhancement - Default link permission config: #7783
Enhancement - Add banned password list to the default deployments: #7784
Enhancement - Update to go 1.21: #7794
Enhancement - Add Sharing NG list permissions endpoint: #7805
Enhancement - Add user list requires filter config: #7866
Enhancement - Retry antivirus postprocessing step in case of problems: #7874
Enhancement - Add validation to public share provider: #7877
Enhancement - Store and index metadata: #7886
Enhancement - Allow regular users to list other users: #7887
Enhancement - Add edit public share to sharing NG: #7908
Enhancement - Add cli commands for trash-bin: #7917
Enhancement - Add validation update public share: #7978
Enhancement - Allow inmemory nats-js-kv stores: #7979
Enhancement - Disable the password policy: #7985
Enhancement - Use kv store in natsjs registry: #7987
Enhancement - Allow authentication nats connections: #7989
Enhancement - Add RED metrics to the metrics endpoint: #7994
Enhancement - Add ocm and sciencemesh services: #7998
Enhancement - Make nats-js-kv the default registry: #8011
Enhancement - Service Account roles: #8051
Enhancement - Update antivirus service: #8062
Enhancement - Update reva to latest edge version: #8100
Enhancement - Update reva to latest edge version: #8100
Enhancement - Remove deprecated environment variables: #8149
Enhancement - Update web to v8.0.0-rc.2: #8154

Details

Bugfix - Fix wrong compile date: #6132

We fixed that current date is always printed.

https://github.com/owncloud/ocis/issues/6124
https://github.com/owncloud/ocis/pull/6132
Bugfix - Fix the kql-bleve search: #7290

We fixed the issue when 500 on searches that contain ":". Added the characters
escaping according to https://blevesearch.com/docs/Query-String-Query/

https://github.com/owncloud/ocis/issues/7282
https://github.com/owncloud/ocis/pull/7290
Bugfix - Bring back the USERS_LDAP_USER_SCHEMA_ID variable: #7312

We reintroduced the USERS_LDAP_USER_SCHEMA_ID variable which was accidently
removed from the users service with the 4.0.0 release.

https://github.com/owncloud/ocis/issues/7312
https://github.com/owncloud/ocis-charts/issues/397
Bugfix - Do not reset state of received shares when rebuilding the jsoncs3 index: #7319

We fixed a problem with the "ocis migrate rebuild-jsoncs3-indexes" command which
reset the state of received shares to "pending".

https://github.com/owncloud/ocis/issues/7319
Bugfix - Deprecate redundant encryptions settings for notification service: #7345

The values tls and ssl for the smtp_encryption configuration setting are
duplicates of starttls and ssltls. They have been marked as deprecated. A
warning will be logged when they are still used. Please use starttls instead
for tls and ssltls instead of `ssl.

https://github.com/owncloud/ocis/issues/7345
Bugfix - Check school number for duplicates before adding a school: #7351

We fixed an issue that allowed to create two schools with the same school number

https://github.com/owncloud/enterprise/issues/6051
https://github.com/owncloud/ocis/pull/7351
Bugfix - Don't reload web config: #7369

When requesting config.json file from the server, web service would reload the
file if a path is set. This will remove config entries set via Envvar. Since we
want to have the possiblity to set configuration from both sources we removed
the reading from file. The file will still be loaded on service startup.

https://github.com/owncloud/ocis/pull/7369
Bugfix - Delete outdated userlog events: #7410

Userlog will now delete events when the user has no longer access to the
underlying resource

https://github.com/owncloud/ocis/pull/7410
Bugfix - Set the mountpoint on auto accept: #7460

On shares auto accept set a mountpoint with same logic as ocs handler

https://github.com/owncloud/ocis/pull/7460
Bugfix - Fix default language fallback: #7465

Add the default language for the webui, the settings, userlog and notification
service.

https://github.com/owncloud/ocis/issues/7465
Bugfix - GetUserByClaim fixed for Active Directory: #7476

The reva ldap backend for the users and groups service did not hex escape binary
uuids in LDAP filter correctly this could cause problems in Active Directory
setups for services using the GetUserByClaim CS3 request with claim "userid".

https://github.com/owncloud/ocis/issues/7469
https://github.com/owncloud/ocis/pull/7476
Bugfix - Fix preview request 500 error when made too early: #7502

Fix the status code and message when a thumbnail request is made too early.

https://github.com/owncloud/ocis/issues/7502
https://github.com/owncloud/ocis/pull/7507
Bugfix - Fix 403 in docs pipeline: #7509

Docs pipeline was not routed through our proxies which could lead to requests
being blacklisted

https://github.com/owncloud/ocis/issues/7509
https://github.com/owncloud/ocis/pull/7511
Bugfix - Fix the auth service env variable: #7523

We the auth service env variable to the service specific name. Before it was
configurable via AUTH_MACHINE_JWT_SECRET and now is configurable via
AUTH_SERVICE_JWT_SECRET.

https://github.com/owncloud/ocis/pull/7523
Bugfix - Token storage config fixed: #7528

The token storage config in the config.json for web was missing when it was set
to false.

https://github.com/owncloud/ocis/issues/7462
https://github.com/owncloud/ocis/pull/7528
Bugfix - Set existing mountpoint on auto accept: #7592

When already having a share for a specific resource, auto accept would use
custom mountpoints which lead to other errors. Now auto-accept is using the
existing mountpoint of a share.

https://github.com/owncloud/ocis/pull/7592
Bugfix - Return 423 status code on tag create: #7596

When a file is locked, return 423 status code instead 500 on tag create

https://github.com/owncloud/ocis/pull/7596
Bugfix - Fix libre-graph status codes: #7678

Creating group: https://owncloud.dev/libre-graph-api/#/groups/CreateGroup
changed: 200 -> 201

Creating users: https://owncloud.dev/libre-graph-api/#/users/CreateUser changed:
200 -> 201

Export GDPR: https://owncloud.dev/libre-graph-api/#/user/ExportPersonalData
changed: 201 -> 202

https://github.com/owncloud/ocis/issues/7678
https://github.com/owncloud/ocis/pull/7705
Bugfix - Fix unlock via space API: #7726

We fixed a bug that caused Error 500 when user try to unlock file using fileid
The handleSpaceUnlock has been added

https://github.com/owncloud/ocis/issues/7708
https://github.com/owncloud/ocis/pull/7726
https://github.com/cs3org/reva/pull/4338
Bugfix - Disable DEPTH infinity in PROPFIND: #7746

We fixed the Disabled DEPTH infinity in PROPFIND for: Personal
/remote.php/dav/files/admin Public link share
/remote.php/dav/public-files/ Trashbin
/remote.php/dav/spaces/trash-bin/

https://github.com/owncloud/ocis/issues/7359
https://github.com/owncloud/ocis/pull/7746
https://github.com/cs3org/reva/pull/4278
Bugfix - Fix the tgz mime type: #7772

We have fixed a bug when the tgz mime type was not "application/gzip"

https://github.com/owncloud/ocis/issues/7744
https://github.com/owncloud/ocis/pull/7772
Bugfix - Fix natsjs cache: #7790

The nats-js cache was not working. It paniced and wrote a lot of error logs.
Both is fixed now.

https://github.com/owncloud/ocis/pull/7790
Bugfix - Fix search service start: #7795

The search service would sometimes not start correctly because config values
are overwritten by default configuration.

https://github.com/owncloud/ocis/pull/7795
Bugfix - The race conditions in tests: #7847

We fixed the race conditions in tests.

https://github.com/owncloud/ocis/issues/7846
https://github.com/owncloud/ocis/pull/7847
Bugfix - Do not purge expired upload sessions that are still postprocessing: #7859

https://github.com/owncloud/ocis/pull/7859
https://github.com/owncloud/ocis/pull/7958
Bugfix - Fix the public link update: #7862

We fixed a bug when normal users can update the public link to delete its
password if permission is not sent in data.

https://github.com/owncloud/ocis/issues/7821
https://github.com/owncloud/ocis/pull/7862
Bugfix - Updating logo with new theme structure: #7930

Updating and resetting the logo when using the new theme.json structure in Web
has been fixed.

https://github.com/owncloud/ocis/pull/7930
Bugfix - Password policy return code was wrong: #7952

We fixed the status code on SharingNG update permissions for public shares.

https://github.com/owncloud/ocis/pull/7952
Bugfix - Removed outdated and unused dependency from idp package: #7957

We've removed the outdated and apparently unused dependency cldr from the
kpop dependency inside the idp web ui. This resolves a security issue around
an oudated xmldom package version, originating from said kpop library.

https://github.com/owncloud/ocis/issues/7957
https://github.com/owncloud/ocis/pull/7988
Bugfix - Update permission validation: #7963

We fixed a bug where the permission validation was not working correctly.

https://github.com/owncloud/ocis/pull/7963
https://github.com/cs3org/reva/pull/4405
Bugfix - Renaming a user to a string with capital letters: #7964

We fixed the issue that led to correct update but the 404 response code when
renaming an existing user to a string with capital letters.

https://github.com/owncloud/ocis/pull/7964
Bugfix - Improve OCM support: #7973

We improved functionality of the OCM support.

https://github.com/owncloud/ocis/pull/7973
Bugfix - Permissions of a role with duplicate ID: #7976

We remove the redundant permissions of a role with duplicate ID.

https://github.com/owncloud/ocis/issues/7931
https://github.com/owncloud/ocis/pull/7976
Bugfix - Non durable streams for sse service: #7986

Configure sse streams to be non-durable. This functionality is not needed for
the sse service

https://github.com/owncloud/ocis/pull/7986
Bugfix - Fix empty trace ids: #8023

We changed the default tracing to produce non-empty traceids.

https://github.com/owncloud/ocis/pull/8023
https://github.com/owncloud/ocis/pull/8017
Bugfix - Fix search by containing special characters: #8050

As the OData query parser interprets characters like '@' or '-' in a special
way. Search request for users or groups needs to be quoted. We fixed the
libregraph users and groups endpoints to handle quoted search terms correctly.

https://github.com/owncloud/ocis/issues/7990
https://github.com/owncloud/ocis/pull/8050
https://github.com/owncloud/ocis/pull/8035
Bugfix - Fix the upload postprocessing: #8117

We fixed the upload postprocessing when the destination file does not exist
anymore.

https://github.com/owncloud/ocis/issues/7909
https://github.com/owncloud/ocis/pull/8117
Bugfix - Fix wrong naming in nats-js-kv registry: #8140

Registers the registry under the correct name

https://github.com/owncloud/ocis/pull/8140
Bugfix - IDP CS3 backend sessions now survire restart: #8142

We now correctly reinitialize the CS3 backend session after the IDP has been
restarted.

https://github.com/owncloud/ocis/pull/8142
Bugfix - Fix patching of language: #8182

User would not be able to patch their preferred language when the ldap backend
is set to read-only. This makes no sense as language is stored elsewhere.

https://github.com/owncloud/ocis/pull/8182
Bugfix - Fix search service to not log expected cases as errors: #8200

We changed the search service to not log cases where resources that were about
to be indexed can no longer be found. Those are expected cases, e.g. when the
file in question has already been deleted or renamed meanwhile.

https://github.com/owncloud/ocis/pull/8200
Bugfix - Updating and reset logo failed: #8211

We fixed a bug when admin tried to update or reset the logo.

https://github.com/owncloud/ocis/issues/8101
https://github.com/owncloud/ocis/pull/8211
Bugfix - Fix last month search: #31145

We've fixed the last month search edge case when currently is 31-th.

Https://github.com/owncloud/ocis/issues/7629
https://github.com/owncloud/ocis/pull/7742

https://github.com/golang/go/issues/31145
The
issue
is
related
to
the
build-in
package
behavior
Change - Auto-Accept Shares: #7097

Automatically accepts shares. This feature is active by default and can be
deactivated via the environment variable FRONTEND_AUTO_ACCEPT_SHARES.

https://github.com/owncloud/ocis/pull/7097
Change - Change the default TUS chunk size: #7273

We changed the default TUS chunk size from 100MB to 10MB. You can still use the
old value by configuring it in your deployment.

https://github.com/owncloud/ocis/pull/7273
Change - Remove privacyURL and imprintURL from the config: #7938

We've removed the option privacyURL and imprintURL from the config, since other
clients weren't able to consume these. In order to be accessible by other
clients, not just Web, those should be configured via the theme.json file.

https://github.com/owncloud/ocis/pull/7938/
Change - Remove accessDeniedHelpUrl from the config: #7970

We've removed the option accessDeniedHelpUrl from the config, since other
clients weren't able to consume it. In order to be accessible by other clients,
not just Web, it should be configured via the theme.json file.

https://github.com/owncloud/ocis/pull/7970
Enhancement - Add the Banned Passwords List: #4197

Added an option to enable a password check against a banned passwords list
OCIS-3809

https://github.com/cs3org/reva/pull/4197
https://github.com/owncloud/ocis/pull/7314
Enhancement - Introduce service accounts: #6427

Introduces service accounts to avoid impersonating users in async processes

https://github.com/owncloud/ocis/issues/5550
https://github.com/owncloud/ocis/pull/6427
Enhancement - SSE for messaging: #6992

So far, sse has only been used to exchange messages between the server and the
client. In order to be able to send more content to the client, we have moved
the endpoint to a separate service and are now also using it for other
notifications like:
- notify postprocessing state changes.
- notify file locking and unlocking.
- ... @toDo
https://github.com/owncloud/ocis/pull/6992
Enhancement - Support spec violating AD FS access token issuer: #7138

AD FS /adfs/.well-known/openid-configuration has an optional
access_token_issuer which, in violation of the OpenID Connect spec, takes
precedence over issuer.

https://github.com/owncloud/ocis/pull/7138
Enhancement - Add OCIS_LDAP_BIND_PASSWORD as replacement for LDAP_BIND_PASSWORD: #7176

The enviroment variable OCIS_LDAP_BIND_PASSWORD was added to be more
consistent with all other global LDAP variables.

LDAP_BIND_PASSWORD is deprecated now and scheduled for removal with the 5.0.0
release.

We also deprecated LDAP_USER_SCHEMA_ID_IS_OCTETSTRING for removal with 5.0.0.
The replacement for it is OCIS_LDAP_USER_SCHEMA_ID_IS_OCTETSTRING.

https://github.com/owncloud/ocis/issues/7176
Enhancement - Keyword Query Language (KQL) search syntax: #7212

We've introduced support for
KQL
as the default oCIS search query language.

Simple queries:
- tag:golden tag:"silver"
- name:file.txt name:"file.docx"
- content:ahab content:"captain aha*"
Date/-range queries
- Mtime:"2023-09-05T08:42:11.23554+02:00"
- Mtime>"2023-09-05T08:42:11.23554+02:00"
- Mtime>="2023-09-05T08:42:11.23554+02:00"
- Mtime<"2023-09-05T08:42:11.23554+02:00"
- Mtime<="2023-09-05T08:42:11.23554+02:00"
- Mtime:today - range: start of today till end of today
- Mtime:yesterday - range: start of yesterday till end of yesterday
- Mtime:"this week" - range: start of this week till end of this week
- Mtime:"this month" - range: start of this month till end of this month
- Mtime:"last month" - range: start of last month till end of last month
- Mtime:"this year" - range: start of this year till end of this year
- Mtime:"last year" - range: start of last year till end of last year
Conjunctive normal form queries:
- tag:golden AND tag:"silver, tag:golden OR tag:"silver, tag:golden NOT tag:"silver
- (tag:book content:ahab*), tag:(book pdf)
Complex queries:
- (name:"moby di*" OR tag:bestseller) AND tag:book NOT tag:read
https://github.com/owncloud/ocis/issues/7042
https://github.com/owncloud/ocis/issues/7179
https://github.com/owncloud/ocis/issues/7114
https://github.com/owncloud/web/issues/9636
https://github.com/owncloud/web/issues/9646
https://github.com/owncloud/ocis/pull/7212
https://github.com/owncloud/ocis/pull/7043
https://github.com/owncloud/ocis/pull/7247
https://github.com/owncloud/ocis/pull/7248
https://github.com/owncloud/ocis/pull/7254
https://github.com/owncloud/ocis/pull/7262
https://github.com/owncloud/web/pull/9653
https://github.com/owncloud/web/pull/9672
Enhancement - Introduce clientlog service: #7217

Add the clientlog service which will send machine readable notifications to
clients

https://github.com/owncloud/ocis/pull/7217
Enhancement - Proxy uses service accounts for provisioning: #7240

The proxy service now uses a service account for provsioning task, like role
assignment and user auto-provisioning. This cleans up some technical debt that
required us to mint reva tokes inside the proxy service.

https://github.com/owncloud/ocis/issues/5550
https://github.com/owncloud/ocis/pull/7240
Enhancement - The password policies change request: #7264

The variables renaming OCIS-3767

https://github.com/cs3org/reva/pull/7264
Enhancement - Introduce natsjs registry: #7272

Introduce a registry based on the natsjs object store

https://github.com/owncloud/ocis/issues/7272
https://github.com/owncloud/ocis/pull/7487
Enhancement - Add the password policies: #7285

Add the password policies OCIS-3767

https://github.com/owncloud/ocis/pull/7285
https://github.com/owncloud/ocis/pull/7194
https://github.com/cs3org/reva/pull/4147
Enhancement - Add login URL config: #7317

Introduce a config to set the web login URL via WEB_OPTION_LOGIN_URL.

https://github.com/owncloud/ocis/pull/7317
Enhancement - Improve SSE format: #7325

Improve format of sse notifications

https://github.com/owncloud/ocis/pull/7325
Enhancement - New value auto for NOTIFICATIONS_SMTP_AUTHENTICATION: #7356

This cause the notifications service to automatically pick a suitable
authentication method to use with the configured SMTP server. This is also the
new default behavior. The previous default was to not use authentication at all.

https://github.com/owncloud/ocis/issues/7356
Enhancement - Make sse service scalable: #7382

When running multiple sse instances some events would not be reported to the
user. This is fixed.

https://github.com/owncloud/ocis/pull/7382
Enhancement - Edit wrong named enves: #7406

Checked and changed the envvars specified in the task and also removed those
that are no longer used.

https://github.com/owncloud/ocis/pull/7406
Enhancement - Thumbnail generation with image processors: #7409

Thumbnails can now be changed during creation, previously the images were always
scaled to fit the given frame, but it could happen that the images were cut off
because they could not be placed better due to the aspect ratio.

This pr introduces the possibility of specifying how the behavior should be,
following processors are available
- resize
- fit
- fill
- thumbnail
The processor can be applied by adding the processor query param to the request,
e.g. processor=fit, processor=fill, ...

To find out more how the individual processors work please read
https://github.com/disintegration/imaging

If no processor is provided it behaves the same as before (resize for gif's and
thumbnail for all other)

https://github.com/owncloud/enterprise/issues/6057
https://github.com/owncloud/ocis/issues/5179
https://github.com/owncloud/web/issues/7728
https://github.com/owncloud/ocis/pull/7409
Enhancement - Set default for Async Uploads to true: #7416

Async Uploads are meanwhile standard and needed for multiple features. Hence we
default them to true

https://github.com/owncloud/ocis/pull/7416
Enhancement - The default language added: #7417

The ability of configuration the default language has been added to the setting
service.

https://github.com/owncloud/enterprise/issues/5915
https://github.com/owncloud/ocis/pull/7417
Enhancement - Add "Last modified" filter Chip: #7455

Add "Last modified" filter Chip

https://github.com/owncloud/ocis/issues/7431
https://github.com/owncloud/ocis/issues/7551
https://github.com/owncloud/ocis/pull/7455
Enhancement - Config for disabling Web extensions: #7486

A new config for disabling specific Web extensions via their id has been added.

https://github.com/owncloud/web/issues/8524
https://github.com/owncloud/ocis/pull/7486
Enhancement - Store and index metadata: #7490

Audio metadata is now extracted and stored by the search service. It is
available for driveItems in a folder listing using the Graph API.

https://github.com/owncloud/ocis/pull/7490
Enhancement - Add support for audio files to the thumbnails service: #7491

The thumbnails service can now extract artwork from audio files (mp3, ogg, flac)
and render it just like any other image.

https://github.com/owncloud/ocis/pull/7491
Enhancement - Implement sharing roles: #7524

Implement libre graph sharing roles

https://github.com/owncloud/ocis/issues/7418
https://github.com/owncloud/ocis/pull/7524
Enhancement - Add new permission to delete public link password: #7538

Users with this new permission can now delete passwords on read-only public
links. The permission is added to the default roles "Admin" and "Space Admin".

https://github.com/owncloud/ocis/issues/7538
https://github.com/owncloud/ocis/pull/7538
https://github.com/cs3org/reva/pull/4270
Enhancement - Add config to enforce passwords on all public links: #7547

We added the config OCIS_SHARING_PUBLIC_SHARE_MUST_HAVE_PASSWORD to enforce
passwords on all public shares.

https://github.com/owncloud/ocis/issues/7539
https://github.com/owncloud/ocis/pull/7547
Enhancement - Tika content extraction cleanup for search: #7553

So far it has not been possible to determine whether the content for search
should be cleaned up of 'stop words' or not. Stop words are filling words like
"I, you, have, am" etc and defined by the search engine.

The behaviour can now be set with the newly introduced settings option
SEARCH_EXTRACTOR_TIKA_CLEAN_STOP_WORDS=false which is enabled by default.

In addition, the stop word cleanup is no longer as aggressive and now ignores
numbers, urls, basically everything except the defined stop words.

https://github.com/owncloud/ocis/issues/6674
https://github.com/owncloud/ocis/pull/7553
Enhancement - Allow configuring storage registry with envvars: #7554

Introduced new envvars to configure the storage registry in the gateway service

https://github.com/owncloud/ocis/pull/7554
Enhancement - Add search MediaType filter: #7602

Add filter MediaType filter shortcuts to search for specific document types. For
example, a search query mediatype:documents will search for files with the
following mimetypes:

Application/msword
MimeType:application/vnd.openxmlformats-officedocument.wordprocessingml.document
MimeType:application/vnd.oasis.opendocument.text MimeType:text/plain
MimeType:text/markdown MimeType:application/rtf
MimeType:application/vnd.apple.pages

Besides the document shorthand, it also contains following:
- file
- folder
- document
- spreadsheet
- presentation
- pdf
- image
- video
- audio
- archive
File

Folder

Document:

Application/msword
application/vnd.openxmlformats-officedocument.wordprocessingml.document
application/vnd.oasis.opendocument.text text/plain text/markdown application/rtf
application/vnd.apple.pages

Spreadsheet:

Application/vnd.ms-excel application/vnd.oasis.opendocument.spreadsheet text/csv
application/vnd.openxmlformats-officedocument.spreadsheetml.sheet
application/vnd.oasis.opendocument.spreadsheet application/vnd.apple.numbers

Presentations:

Application/vnd.ms-powerpoint
application/vnd.openxmlformats-officedocument.presentationml.presentation
application/vnd.oasis.opendocument.presentation application/vnd.apple.keynote

PDF

Application/pdf

Image:

Image/*

Video:

Video/*

Audio:

Audio/*

Archive (zip ...):

Application/zip application/x-tar application/x-gzip application/x-7z-compressed
application/x-rar-compressed application/x-bzip2 application/x-bzip
application/x-tgz

https://github.com/owncloud/ocis/issues/7432
https://github.com/owncloud/ocis/pull/7602
Enhancement - Add Sharing NG endpoints: #7633

We've added new sharing ng endpoints to the graph beta api. The following
endpoints are added:
- /v1beta1/me/drive/sharedByMe
- /v1beta1/me/drive/sharedWithMe
- /v1beta1/roleManagement/permissions/roleDefinitions
- /v1beta1/roleManagement/permissions/roleDefinitions/{roleID}
- /v1beta1/drives/{drive-id}/items/{item-id}/createLink (create a sharing link)
https://github.com/owncloud/ocis/issues/7436
https://github.com/owncloud/ocis/issues/6993
https://github.com/owncloud/ocis/pull/7633
https://github.com/owncloud/ocis/pull/7686
https://github.com/owncloud/ocis/pull/7684
https://github.com/owncloud/ocis/pull/7683
https://github.com/owncloud/ocis/pull/7239
https://github.com/owncloud/ocis/pull/7687
https://github.com/owncloud/ocis/pull/7751
https://github.com/owncloud/libre-graph-api/pull/112
Enhancement - Configs for Web embed mode: #7670

New configs for the Web embed mode have been added:
- enabled Defines if embed mode is enabled.
- target Defines how Web is being integrated when running in embed mode.
- messagesOrigin Defines a URL under which Web can be integrated via iFrame.
- delegateAuthentication Defines whether Web should require authentication to be done by the parent application.
- delegateAuthenticationOrigin Defines the host to validate the message event origin against when running Web in 'embed' mode.
https://github.com/owncloud/web/issues/9768
https://github.com/owncloud/ocis/pull/7670
Enhancement - Add new permissions: #7700

Adds new permissions to admin/spaceadmin/user roles - Favorites.List allows /
denies the Favorites Listing Request - Favorites.Write is implemented to be
enforced on marking/unmark files as favouritesShare - Shares.Write permission
denies / allows sharing completely for a user on all share CUD requests. (User,
Group)

https://github.com/owncloud/ocis/pull/7700
Enhancement - Add preferred language to user settings: #7720

We have added the preferred language to the libre-graph api & added endpoints
for that to ocis.

https://github.com/owncloud/ocis/issues/5455
https://github.com/owncloud/ocis/pull/7720
https://github.com/owncloud/libre-graph-api/pull/130
Enhancement - Add user filter startswith and contains: #7739

We add two new filters to the user list endpoint. The startswith filter allows
to filter users by the beginning of their name. The contains filter allows to
filter users by a substring of their name.

https://github.com/owncloud/ocis/issues/5486
https://github.com/owncloud/ocis/pull/7739
Enhancement - Allow configuring additional routes: #7740

Allows adding custom routes to the ocis proxy. This enables customs ocis
extensions

https://github.com/owncloud/ocis/pull/7740
Enhancement - Default link permission config: #7783

A new config for default link permissions that is being announced via
capabilities has been added. It defaults to 1 (= public link with viewer
permissions).

https://github.com/owncloud/web/issues/9919
https://github.com/owncloud/ocis/pull/7783
Enhancement - Add banned password list to the default deployments: #7784

We add banned password list to the default deployments

https://github.com/owncloud/ocis/issues/7724
https://github.com/owncloud/ocis/pull/7784
Enhancement - Update to go 1.21: #7794

We updated to go 1.21.

https://github.com/owncloud/ocis/pull/7794
Enhancement - Add Sharing NG list permissions endpoint: #7805

We've added a new sharing ng endpoint which lists all permissions for a given
item.

https://github.com/owncloud/ocis/issues/6993
https://github.com/owncloud/ocis/pull/7805
Enhancement - Add user list requires filter config: #7866

Introduce a config to require filters in order to list users in Web via
WEB_OPTION_USER_LIST_REQUIRES_FILTER.

https://github.com/owncloud/ocis/pull/7866
Enhancement - Retry antivirus postprocessing step in case of problems: #7874

The antivirus postprocessing step will now be retried for a configurable amount
of times in case it can't get a result from clamav.

https://github.com/owncloud/ocis/pull/7874
Enhancement - Add validation to public share provider: #7877

We changed the implementation of the public share provider in reva to do the
validation on the CS3 Api side. This makes the implementation on the graph side
smaller.

https://github.com/owncloud/ocis/issues/6993
https://github.com/owncloud/ocis/pull/7877
Enhancement - Store and index metadata: #7886

Location metadata is now extracted and stored by the search service. It is
available for driveItems in a folder listing using the Graph API.

https://github.com/owncloud/ocis/pull/7886
Enhancement - Allow regular users to list other users: #7887

Regular users can search for other users and groups. The following limitations
apply:
- Only search queries are allowed (using the $search=term query parameter)
- The search term needs to have at least 3 characters
- for user searches the result set only contains the attributes displayName, userType, mail and id
- for group searches the result set only contains the attributes displayName, groupTypes and id
https://github.com/owncloud/ocis/issues/7782
https://github.com/owncloud/ocis/pull/7887
Enhancement - Add edit public share to sharing NG: #7908

We added the ability to edit public shares to the sharing NG endpoints.

https://github.com/owncloud/ocis/issues/6993
https://github.com/owncloud/ocis/pull/7908/
Enhancement - Add cli commands for trash-bin: #7917

We added the list and restore commands to the trash-bin items to the CLI

https://github.com/owncloud/ocis/issues/7845
https://github.com/owncloud/ocis/pull/7917
https://github.com/cs3org/reva/pull/4392
Enhancement - Add validation update public share: #7978

For Sharing NG, we needed validation in the implementing reva service to keep
the client implementation simple.

https://github.com/owncloud/ocis/pull/7978
Enhancement - Allow inmemory nats-js-kv stores: #7979

Adds envvars to keep nats-js-kv stores in memory and not persist them on disc.

https://github.com/owncloud/ocis/pull/7979
Enhancement - Disable the password policy: #7985

We add the environment variable that allow to disable the password policy.

https://github.com/owncloud/ocis/issues/7916
https://github.com/owncloud/ocis/pull/7985
https://github.com/cs3org/reva/pull/4409
Enhancement - Use kv store in natsjs registry: #7987

Replaces the nats object store with the nats kv store in the natsjs registry

https://github.com/owncloud/ocis/pull/7987
Enhancement - Allow authentication nats connections: #7989

Allow events, store and registry implementation to pass username/password to the
nats instance

https://github.com/owncloud/ocis/pull/7989
Enhancement - Add RED metrics to the metrics endpoint: #7994

We added three new metrics to the metrics endpoint to support the RED method for
monitoring microservices.
- Request Rate: The number of requests per second. The total count of requests
  is available under ocis_proxy_requests_total. - Error Rate: The number of
  failed requests per second. The total count of failed requests is available
  under ocis_proxy_errors_total. - Duration: The amount of time each request
  takes. The duration of all requests is available under
  ocis_proxy_request_duration_seconds. This is a histogram metric, so it also
  provides information about the distribution of request durations.
The metrics are available under the following paths: PROXY_DEBUG_ADDR/metrics
in a prometheus compatible format and maybe secured by PROXY_DEBUG_TOKEN.

https://github.com/owncloud/ocis/pull/7994
Enhancement - Add ocm and sciencemesh services: #7998

We added sciencemesh and ocm services to enable federation.

https://github.com/owncloud/ocis/pull/7998
https://github.com/owncloud/ocis/pull/7576
https://github.com/owncloud/ocis/pull/7464
https://github.com/owncloud/ocis/pull/7463
Enhancement - Make nats-js-kv the default registry: #8011

The previously used default mdns is faulty. Deprecated it together with
consul, nats and etcd implementations.

https://github.com/owncloud/ocis/pull/8011
https://github.com/owncloud/ocis/pull/8027
Enhancement - Service Account roles: #8051

Use a hidden role for service accounts. It will not appear in ListRoles calls
but internally handled by settings service

https://github.com/owncloud/ocis/pull/8051
https://github.com/owncloud/ocis/pull/8074
Enhancement - Update antivirus service: #8062

We update the antivirus icap client library and optimize the antivirus scanning
service. ANTIVIRUS_ICAP_TIMEOUT is now deprecated and
ANTIVIRUS_ICAP_SCAN_TIMEOUT should be used instead.

ANTIVIRUS_ICAP_SCAN_TIMEOUT supports human durations like 1s, 1m, 1h and
1d.

https://github.com/owncloud/ocis/issues/6764
https://github.com/owncloud/ocis/pull/8062
Enhancement - Update reva to latest edge version: #8100

We update reva to the latest edge version to get the latest fixes and features.

https://github.com/owncloud/ocis/pull/8100
Enhancement - Update reva to latest edge version: #8100

We update reva to the latest edge version to get the latest fixes and features.

Changelog for reva edge
- Bugfix cs3org/reva#4434: Fix the upload postprocessing
- Bugfix cs3org/reva#4443: Fixed wrong status code when moving a file to a denied path
- Bugfix cs3org/reva#4446: Disallow to delete a file during the processing
- Bugfix cs3org/reva#4448: Fix truncating existing files
- Bugfix cs3org/reva#4449: Keep failed processing status
- Bugfix cs3org/reva#4452: More efficient share jail
- Bugfix cs3org/reva#4456: Do not lose revisions when restoring the first revision
- Bugfix cs3org/reva#4457: Fix concurrent map access in sharecache
Changelog for reva 2.18.0 (2023-12-22)

The following sections list the changes in reva 2.18.0 relevant to reva users.
The changes are ordered by importance.
- Bugfix cs3org/reva#4424: Fixed panic in receivedsharecache pkg
- Bugfix cs3org/reva#4425: Fix overwriting files with empty files
- Bugfix cs3org/reva#4432: Fix /dav/meta endpoint for shares
- Bugfix cs3org/reva#4422: Fix disconnected traces
- Bugfix cs3org/reva#4429: Internal link creation
- Bugfix cs3org/reva#4407: Make ocdav return correct oc:spaceid
- Bugfix cs3org/reva#4410: Improve OCM support
- Bugfix cs3org/reva#4402: Refactor upload session
- Enhancement cs3org/reva#4421: Check permissions before adding, deleting or updating shares
- Enhancement cs3org/reva#4403: Add validation to update public share
- Enhancement cs3org/reva#4409: Disable the password policy
- Enhancement cs3org/reva#4412: Allow authentication for nats connections
- Enhancement cs3org/reva#4411: Add option to configure streams non durable
- Enhancement cs3org/reva#4406: Rework cache configuration
- Enhancement cs3org/reva#4414: Track more upload session metrics
Changelog for reva 2.17.0 (2023-12-12)

The following sections list the changes in reva 2.17.0 relevant to reva users.
The changes are ordered by importance.
- Bugfix cs3org/reva#4278: Disable DEPTH infinity in PROPFIND
- Bugfix cs3org/reva#4318: Do not allow moves between shares
- Bugfix cs3org/reva#4290: Prevent panic when trying to move a non-existent file
- Bugfix cs3org/reva#4241: Allow an empty credentials chain in the auth middleware
- Bugfix cs3org/reva#4216: Fix an error message
- Bugfix cs3org/reva#4324: Fix capabilities decoding
- Bugfix cs3org/reva#4267: Fix concurrency issue
- Bugfix cs3org/reva#4362: Fix concurrent lookup
- Bugfix cs3org/reva#4336: Fix definition of "file-editor" role
- Bugfix cs3org/reva#4302: Fix checking of filename length
- Bugfix cs3org/reva#4366: Fix CS3 status code when looking up non existing share
- Bugfix cs3org/reva#4299: Fix HTTP verb of the generate-invite endpoint
- Bugfix cs3org/reva#4249: GetUserByClaim not working with MSAD for claim "userid"
- Bugfix cs3org/reva#4217: Fix missing case for "hide" in UpdateShares
- Bugfix cs3org/reva#4140: Fix missing etag in shares jail
- Bugfix cs3org/reva#4229: Fix destroying the Personal and Project spaces data
- Bugfix cs3org/reva#4193: Fix overwrite a file with an empty file
- Bugfix cs3org/reva#4365: Fix create public share
- Bugfix cs3org/reva#4380: Fix the public link update
- Bugfix cs3org/reva#4250: Fix race condition
- Bugfix cs3org/reva#4345: Fix conversion of custom ocs permissions to roles
- Bugfix cs3org/reva#4134: Fix share jail
- Bugfix cs3org/reva#4335: Fix public shares cleanup config
- Bugfix cs3org/reva#4338: Fix unlock via space API
- Bugfix cs3org/reva#4341: Fix spaceID in meta endpoint response
- Bugfix cs3org/reva#4351: Fix 500 when open public link
- Bugfix cs3org/reva#4352: Fix the tgz mime type
- Bugfix cs3org/reva#4388: Allow UpdateUserShare() to update just the expiration date
- Bugfix cs3org/reva#4214: Always pass adjusted default nats options
- Bugfix cs3org/reva#4291: Release lock when expired
- Bugfix cs3org/reva#4386: Remove dead enable_home config
- Bugfix cs3org/reva#4292: Return 403 when user is not permitted to lock
- Enhancement cs3org/reva#4389: Add audio and location props
- Enhancement cs3org/reva#4337: Check permissions before creating shares
- Enhancement cs3org/reva#4326: Add search mediatype filter
- Enhancement cs3org/reva#4367: Add GGS mime type
- Enhancement cs3org/reva#4194: Add hide flag to shares
- Enhancement cs3org/reva#4358: Add default permissions capability for links
- Enhancement cs3org/reva#4133: Add more metadata to locks
- Enhancement cs3org/reva#4353: Add support for .docxf files
- Enhancement cs3org/reva#4363: Add nats-js-kv store
- Enhancement cs3org/reva#4197: Add the Banned-Passwords List
- Enhancement cs3org/reva#4190: Add the password policies
- Enhancement cs3org/reva#4384: Add a retry postprocessing outcome and event
- Enhancement cs3org/reva#4271: Add search capability
- Enhancement cs3org/reva#4119: Add sse event
- Enhancement cs3org/reva#4392: Add additional permissions to service accounts
- Enhancement cs3org/reva#4344: Add url extension to mime type list
- Enhancement cs3org/reva#4372: Add validation to the public share provider
- Enhancement cs3org/reva#4244: Allow listing reveived shares by service accounts
- Enhancement cs3org/reva#4129: Auto-Accept Shares through ServiceAccounts
- Enhancement cs3org/reva#4374: Handle trashbin file listings concurrently
- Enhancement cs3org/reva#4325: Enforce Permissions
- Enhancement cs3org/reva#4368: Extract log initialization
- Enhancement cs3org/reva#4375: Introduce UploadSessionLister interface
- Enhancement cs3org/reva#4268: Implement sharing roles
- Enhancement cs3org/reva#4160: Improve utils pkg
- Enhancement cs3org/reva#4335: Add sufficient permissions check function
- Enhancement cs3org/reva#4281: Port OCM changes from master
- Enhancement cs3org/reva#4270: Opt out of public link password enforcement
- Enhancement cs3org/reva#4181: Change the variable names for the password policy
- Enhancement cs3org/reva#4256: Rename hidden share variable name
- Enhancement cs3org/reva#3926: Service Accounts
- Enhancement cs3org/reva#4359: Update go-ldap to v3.4.6
- Enhancement cs3org/reva#4170: Update password policies
- Enhancement cs3org/reva#4232: Improve error handling in utils package
https://github.com/owncloud/ocis/pull/8100
https://github.com/owncloud/ocis/pull/8038
https://github.com/owncloud/ocis/pull/8056
https://github.com/owncloud/ocis/pull/7949
https://github.com/owncloud/ocis/pull/7793
https://github.com/owncloud/ocis/pull/7978
https://github.com/owncloud/ocis/pull/7979
https://github.com/owncloud/ocis/pull/7963
https://github.com/owncloud/ocis/pull/7986
https://github.com/owncloud/ocis/pull/7721
https://github.com/owncloud/ocis/pull/7727
https://github.com/owncloud/ocis/pull/7752
Enhancement - Remove deprecated environment variables: #8149

We have removed all deprecated environment variables that have been marked for
removal for 5.0.0

https://github.com/owncloud/ocis/issues/8025
https://github.com/owncloud/ocis/pull/8149
Enhancement - Update web to v8.0.0-rc.2: #8154

Tags: web

We updated ownCloud Web to v8.0.0-rc.2. Please refer to the changelog (linked)
for details on the web release.

Summary * Bugfix

owncloud/web#10176: Turned off
file extensions not always respected * Bugfix
owncloud/web#10232: Skip searchbar
preview fetch on reload

We updated ownCloud Web to v8.0.0-rc.1. Please refer to the changelog (linked)
for details on the web release.

Summary * Enhancement

owncloud/web#10224: Harmonize
AppSwitcher icon colors * Bugfix
owncloud/web#10230: Configurable
concurrent requests * Bugfix
owncloud/web#10158: GDPR export
polling * Bugfix
owncloud/web#10220: Loading
indicator during conflict dialog * Bugfix
owncloud/web#10156: Uploading
the same files parallel * Bugfix
owncloud/web#10179: Space
navigate to trash missing * Bugfix
owncloud/web#10118: Tilesview
has whitespace * Bugfix
owncloud/web#10182: Make
versions panel readonly in viewers and editors

We updated ownCloud Web to v8.0.0-beta.2. Please refer to the changelog (linked)
for details on the web release.

Summary * Bugfix

owncloud/web#10010: Displaying
full video in their dimensions * Bugfix
owncloud/web#10149: Spaces files
list previews cropped * Bugfix
owncloud/web#10149: Spaces
overview tile previews zoomed * Bugfix
owncloud/web#10154: Resolving
links without drive alias

We updated ownCloud Web to v8.0.0-beta.1. Please refer to the changelog (linked)
for details on the web release.

Summary * Change

owncloud/web#9698: Theme handling *
Enhancement owncloud/web#10111:
Registering right sidebar panels as extension * Enhancement
owncloud/web#10111: File sidebar
in viewer and editor apps

We updated ownCloud Web to v8.0.0-alpha.13. Please refer to the changelog
(linked) for details on the web release.

Summary * Enhancement

owncloud/web#10104: Create link
modal

We updated ownCloud Web to v8.0.0-alpha.12. Please refer to the changelog
(linked) for details on the web release.

Summary * Bugfix

owncloud/web#9257: Filter out
shares without display name * Bugfix
owncloud/web#9483: PDF loading
Safari * Bugfix owncloud/web#9513:
Set or remove expiration date on group share not possible * Bugfix
owncloud/web#9529: Shared with
action menu label alignment * Bugfix
owncloud/web#9587: Internal public
link resolving * Bugfix
owncloud/web#9593: Audio- &
video-loading on Shared with me page * Bugfix
owncloud/web#9649: Add project
space filter * Bugfix
owncloud/web#9663: Respect the
open-in-new-tab-config for external apps * Bugfix
owncloud/web#9670: Tiles view
accessibility * Bugfix
owncloud/web#9694: Special
characters in username * Bugfix
owncloud/web#9788: Create .space
folder if it does not exist * Bugfix
owncloud/web#9799: Link resolving
into default app * Bugfix
owncloud/web#9832: Copy quicklinks
for webkit navigator * Bugfix
owncloud/web#9843: Fix display path
on resources * Bugfix
owncloud/web#9844: Upload space
image * Bugfix owncloud/web#9861:
Duplicated file search request * Bugfix
owncloud/web#9873: Tags are no
longer editable for a locked file * Bugfix
owncloud/web#9881: Prevent
rendering of old/wrong set of resources in search list * Bugfix
owncloud/web#9915: Keep both
folders conflict in same-named folders * Bugfix
owncloud/web#9931: Enabling "invite
people" for password-protected folder/file * Bugfix
owncloud/web#10031: Icon
extension mapping * Bugfix
owncloud/web#10065: Logout page
after token expiry * Bugfix
owncloud/web#10083: Disable
expiration date for alias link (internal) * Bugfix
owncloud/web#10092: Allow empty
search query in "in-here" search * Bugfix
owncloud/web#10096: Remove
password buttons on input if disabled * Change
owncloud/web#7338: Remove
deprecated code * Enhancement
owncloud/web#7317: Make login url
configurable * Enhancement
owncloud/web#7497: Permission
checks for shares and favorites * Enhancement
owncloud/web#7600: Scroll to
newly created folder * Enhancement
owncloud/web#9302: Application
unification * Enhancement
owncloud/web#9423: Show local
loading spinner in sharing button * Enhancement
owncloud/web#9441: File versions
tooltip with absolute date * Enhancement
owncloud/web#9441: Disabling
extensions * Enhancement
owncloud/web#9451: Add SSE to get
notifications instantly * Enhancement
owncloud/web#9525: Tags form
improved * Enhancement
owncloud/web#9527: Don't display
confirmation dialog on file deletion * Enhancement
owncloud/web#9531: Personal
shares can be shown and hidden * Enhancement
owncloud/web#9552: Upload
preparation time * Enhancement
owncloud/web#9561: Indicate
processing state * Enhancement
owncloud/web#9566: Display locking
information * Enhancement
owncloud/web#9584: Moving share's
"set expiration date" function * Enhancement
owncloud/web#9625: Add keyboard
navigation to spaces overview * Enhancement
owncloud/web#9627: Add batch
actions to spaces * Enhancement
owncloud/web#9653: Keyword Query
Language (KQL) search syntax * Enhancement
owncloud/web#9671: OcModal set
buttons to same width * Enhancement
owncloud/web#9682: Add password
policy compatibility * Enhancement
owncloud/web#9691: Password
generator for public links * Enhancement
owncloud/web#9696: Added app banner
for mobile devices * Enhancement
owncloud/web#9706: Unify sharing
expiration date menu items * Enhancement
owncloud/web#9727: Show error if
password is on a banned password list * Enhancement
owncloud/web#9771: Handle
postprocessing state via Server Sent Events * Enhancement
owncloud/web#9806: Preview image
presentation * Enhancement
owncloud/web#9809: Add editors to
the application menu * Enhancement
owncloud/web#9814: Registering nav
items as extension * Enhancement
owncloud/web#9815: Add new portal
into runtime to include footer * Enhancement
owncloud/web#9818: Add mode
config option * Enhancement
owncloud/web#9831: Last modified
filter chips * Enhancement
owncloud/web#9841: Add embed mode
actions * Enhancement
owncloud/web#9847: Provide vendor
neutral file icons * Enhancement
owncloud/web#9853: Show only create
folder button in embed mode * Enhancement
owncloud/web#9854: Search query
term linking * Enhancement
owncloud/web#9857: Add permission
to delete link passwords when password is enforced * Enhancement
owncloud/web#9858: Remove settings
icon from searchbar * Enhancement
owncloud/web#9863: Location picker
in embed mode * Enhancement
owncloud/web#9864: Search tags
filter chips style aligned * Enhancement
owncloud/web#9884: Enable dark
theme on importer * Enhancement
owncloud/web#9890: Create shortcuts
- Enhancement owncloud/web#9905:
  Manage tags in details panel * Enhancement
  owncloud/web#9906: Reorganize "New"
  menu * Enhancement
  owncloud/web#9912: Add media type
  filter chip * Enhancement
  owncloud/web#9940: Display error
  message for upload to locked folder * Enhancement
  owncloud/web#9966: Support more
  audio formats with correct icon * Enhancement
  owncloud/web#10007: Additional
  languages * Enhancement
  owncloud/web#10013: Shared by
  filter * Enhancement
  owncloud/web#10014: Share search
  filter * Enhancement
  owncloud/web#10024: Duplicate
  space * Enhancement
  owncloud/web#10037: Default link
  permission * Enhancement
  owncloud/web#10047: Add explaining
  contextual helper to spaces overview * Enhancement
  owncloud/web#10057: Folder tree
  creation during upload * Enhancement
  owncloud/web#10062: Show webdav
  information in details view * Enhancement
  owncloud/web#10072: Add
  authentication delegation in the Embed mode * Enhancement
  owncloud/web#10099: Support
  mandatory filter while listing users * Enhancement
  owncloud/web#10102: Registering
  quick actions as extension
https://github.com/owncloud/ocis/pull/8154
https://github.com/owncloud/ocis/pull/8055
https://github.com/owncloud/ocis/pull/7930
https://github.com/owncloud/ocis/pull/7952
https://github.com/owncloud/ocis/pull/7918
https://github.com/owncloud/ocis/pull/7883
https://github.com/owncloud/web/releases/tag/v8.0.0-rc.2
https://github.com/owncloud/web/releases/tag/v8.0.0-rc.1
https://github.com/owncloud/web/releases/tag/v8.0.0-beta.1
https://github.com/owncloud/web/releases/tag/v8.0.0-beta.2
https://github.com/owncloud/web/releases/tag/v8.0.0-alpha.13
https://github.com/owncloud/web/releases/tag/v8.0.0-alpha.12

ocis - 5.0.0-rc.1

Published by ownclouders 10 months ago

Changelog for 5.0.0-rc.1

Changes in 5.0.0-rc.1

Summary

Bugfix - Fix wrong compile date: #6132
Bugfix - Fix the kql-bleve search: #7290
Bugfix - Bring back the USERS_LDAP_USER_SCHEMA_ID variable: #7312
Bugfix - Do not reset state of received shares when rebuilding the jsoncs3 index: #7319
Bugfix - Deprecate redundant encryptions settings for notification service: #7345
Bugfix - Check school number for duplicates before adding a school: #7351
Bugfix - Don't reload web config: #7369
Bugfix - Delete outdated userlog events: #7410
Bugfix - Set the mountpoint on auto accept: #7460
Bugfix - Fix default language fallback: #7465
Bugfix - GetUserByClaim fixed for Active Directory: #7476
Bugfix - Fix preview request 500 error when made too early: #7502
Bugfix - Fix 403 in docs pipeline: #7509
Bugfix - Fix the auth service env variable: #7523
Bugfix - Token storage config fixed: #7528
Bugfix - Set existing mountpoint on auto accept: #7592
Bugfix - Return 423 status code on tag create: #7596
Bugfix - Fix libre-graph status codes: #7678
Bugfix - Fix unlock via space API: #7726
Bugfix - Disable DEPTH infinity in PROPFIND: #7746
Bugfix - Fix the tgz mime type: #7772
Bugfix - Fix natsjs cache: #7790
Bugfix - Fix search service start: #7795
Bugfix - Do not purge expired upload sessions that are still postprocessing: #7859
Bugfix - Fix the public link update: #7862
Bugfix - Updating logo with new theme structure: #7930
Bugfix - Password policy return code was wrong: #7952
Bugfix - Removed outdated and unused dependency from idp package: #7957
Bugfix - Update permission validation: #7963
Bugfix - Renaming a user to a string with capital letters: #7964
Bugfix - Improve OCM support: #7973
Bugfix - Permissions of a role with duplicate ID: #7976
Bugfix - Non durable streams for sse service: #7986
Bugfix - Fix empty trace ids: #8023
Bugfix - Fix search by containing special characters: #8050
Bugfix - Fix last month search: #31145
Change - Auto-Accept Shares: #7097
Change - Change the default TUS chunk size: #7273
Change - Remove privacyURL and imprintURL from the config: #7938
Change - Remove accessDeniedHelpUrl from the config: #7970
Enhancement - Add the Banned Passwords List: #4197
Enhancement - Introduce service accounts: #6427
Enhancement - SSE for messaging: #6992
Enhancement - Support spec violating AD FS access token issuer: #7138
Enhancement - Add OCIS_LDAP_BIND_PASSWORD as replacement for LDAP_BIND_PASSWORD: #7176
Enhancement - Keyword Query Language (KQL) search syntax: #7212
Enhancement - Introduce clientlog service: #7217
Enhancement - Proxy uses service accounts for provisioning: #7240
Enhancement - The password policies change request: #7264
Enhancement - Introduce natsjs registry: #7272
Enhancement - Add the password policies: #7285
Enhancement - Add login URL config: #7317
Enhancement - Improve SSE format: #7325
Enhancement - New value auto for NOTIFICATIONS_SMTP_AUTHENTICATION: #7356
Enhancement - Make sse service scalable: #7382
Enhancement - Edit wrong named enves: #7406
Enhancement - Thumbnail generation with image processors: #7409
Enhancement - Set default for Async Uploads to true: #7416
Enhancement - The default language added: #7417
Enhancement - Add "Last modified" filter Chip: #7455
Enhancement - Config for disabling Web extensions: #7486
Enhancement - Store and index metadata: #7490
Enhancement - Add support for audio files to the thumbnails service: #7491
Enhancement - Implement sharing roles: #7524
Enhancement - Add new permission to delete public link password: #7538
Enhancement - Add config to enforce passwords on all public links: #7547
Enhancement - Tika content extraction cleanup for search: #7553
Enhancement - Allow configuring storage registry with envvars: #7554
Enhancement - Add search MediaType filter: #7602
Enhancement - Add Sharing NG endpoints: #7633
Enhancement - Configs for Web embed mode: #7670
Enhancement - Add new permissions: #7700
Enhancement - Add preferred language to user settings: #7720
Enhancement - Add user filter startswith and contains: #7739
Enhancement - Allow configuring additional routes: #7740
Enhancement - Default link permission config: #7783
Enhancement - Add banned password list to the default deployments: #7784
Enhancement - Update to go 1.21: #7794
Enhancement - Add Sharing NG list permissions endpoint: #7805
Enhancement - Add user list requires filter config: #7866
Enhancement - Retry antivirus postprocessing step in case of problems: #7874
Enhancement - Add validation to public share provider: #7877
Enhancement - Store and index metadata: #7886
Enhancement - Allow regular users to list other users: #7887
Enhancement - Add edit public share to sharing NG: #7908
Enhancement - Add cli commands for trash-bin: #7917
Enhancement - Add validation update public share: #7978
Enhancement - Allow inmemory nats-js-kv stores: #7979
Enhancement - Use kv store in natsjs registry: #7987
Enhancement - Allow authentication nats connections: #7989
Enhancement - Add RED metrics to the metrics endpoint: #7994
Enhancement - Add ocm and sciencemesh services: #7998
Enhancement - Make nats-js-kv the default registry: #8011
Enhancement - Update Reva to version 2.18.0: #8038
Enhancement - Service Account roles: #8051
Enhancement - Update web to v8.0.0-rc.1: #8055

Details

Bugfix - Fix wrong compile date: #6132

We fixed that current date is always printed.

https://github.com/owncloud/ocis/issues/6124
https://github.com/owncloud/ocis/pull/6132
Bugfix - Fix the kql-bleve search: #7290

We fixed the issue when 500 on searches that contain ":". Added the characters
escaping according to https://blevesearch.com/docs/Query-String-Query/

https://github.com/owncloud/ocis/issues/7282
https://github.com/owncloud/ocis/pull/7290
Bugfix - Bring back the USERS_LDAP_USER_SCHEMA_ID variable: #7312

We reintroduced the USERS_LDAP_USER_SCHEMA_ID variable which was accidently
removed from the users service with the 4.0.0 release.

https://github.com/owncloud/ocis/issues/7312
https://github.com/owncloud/ocis-charts/issues/397
Bugfix - Do not reset state of received shares when rebuilding the jsoncs3 index: #7319

We fixed a problem with the "ocis migrate rebuild-jsoncs3-indexes" command which
reset the state of received shares to "pending".

https://github.com/owncloud/ocis/issues/7319
Bugfix - Deprecate redundant encryptions settings for notification service: #7345

The values tls and ssl for the smtp_encryption configuration setting are
duplicates of starttls and ssltls. They have been marked as deprecated. A
warning will be logged when they are still used. Please use starttls instead
for tls and ssltls instead of `ssl.

https://github.com/owncloud/ocis/issues/7345
Bugfix - Check school number for duplicates before adding a school: #7351

We fixed an issue that allowed to create two schools with the same school number

https://github.com/owncloud/enterprise/issues/6051
https://github.com/owncloud/ocis/pull/7351
Bugfix - Don't reload web config: #7369

When requesting config.json file from the server, web service would reload the
file if a path is set. This will remove config entries set via Envvar. Since we
want to have the possiblity to set configuration from both sources we removed
the reading from file. The file will still be loaded on service startup.

https://github.com/owncloud/ocis/pull/7369
Bugfix - Delete outdated userlog events: #7410

Userlog will now delete events when the user has no longer access to the
underlying resource

https://github.com/owncloud/ocis/pull/7410
Bugfix - Set the mountpoint on auto accept: #7460

On shares auto accept set a mountpoint with same logic as ocs handler

https://github.com/owncloud/ocis/pull/7460
Bugfix - Fix default language fallback: #7465

Add the default language for the webui, the settings, userlog and notification
service.

https://github.com/owncloud/ocis/issues/7465
Bugfix - GetUserByClaim fixed for Active Directory: #7476

The reva ldap backend for the users and groups service did not hex escape binary
uuids in LDAP filter correctly this could cause problems in Active Directory
setups for services using the GetUserByClaim CS3 request with claim "userid".

https://github.com/owncloud/ocis/issues/7469
https://github.com/owncloud/ocis/pull/7476
Bugfix - Fix preview request 500 error when made too early: #7502

Fix the status code and message when a thumbnail request is made too early.

https://github.com/owncloud/ocis/issues/7502
https://github.com/owncloud/ocis/pull/7507
Bugfix - Fix 403 in docs pipeline: #7509

Docs pipeline was not routed through our proxies which could lead to requests
being blacklisted

https://github.com/owncloud/ocis/issues/7509
https://github.com/owncloud/ocis/pull/7511
Bugfix - Fix the auth service env variable: #7523

We the auth service env variable to the service specific name. Before it was
configurable via AUTH_MACHINE_JWT_SECRET and now is configurable via
AUTH_SERVICE_JWT_SECRET.

https://github.com/owncloud/ocis/pull/7523
Bugfix - Token storage config fixed: #7528

The token storage config in the config.json for web was missing when it was set
to false.

https://github.com/owncloud/ocis/issues/7462
https://github.com/owncloud/ocis/pull/7528
Bugfix - Set existing mountpoint on auto accept: #7592

When already having a share for a specific resource, auto accept would use
custom mountpoints which lead to other errors. Now auto-accept is using the
existing mountpoint of a share.

https://github.com/owncloud/ocis/pull/7592
Bugfix - Return 423 status code on tag create: #7596

When a file is locked, return 423 status code instead 500 on tag create

https://github.com/owncloud/ocis/pull/7596
Bugfix - Fix libre-graph status codes: #7678

Creating group: https://owncloud.dev/libre-graph-api/#/groups/CreateGroup
changed: 200 -> 201

Creating users: https://owncloud.dev/libre-graph-api/#/users/CreateUser changed:
200 -> 201

Export GDPR: https://owncloud.dev/libre-graph-api/#/user/ExportPersonalData
changed: 201 -> 202

https://github.com/owncloud/ocis/issues/7678
https://github.com/owncloud/ocis/pull/7705
Bugfix - Fix unlock via space API: #7726

We fixed a bug that caused Error 500 when user try to unlock file using fileid
The handleSpaceUnlock has been added

https://github.com/owncloud/ocis/issues/7708
https://github.com/owncloud/ocis/pull/7726
https://github.com/cs3org/reva/pull/4338
Bugfix - Disable DEPTH infinity in PROPFIND: #7746

We fixed the Disabled DEPTH infinity in PROPFIND for: Personal
/remote.php/dav/files/admin Public link share
/remote.php/dav/public-files/ Trashbin
/remote.php/dav/spaces/trash-bin/

https://github.com/owncloud/ocis/issues/7359
https://github.com/owncloud/ocis/pull/7746
https://github.com/cs3org/reva/pull/4278
Bugfix - Fix the tgz mime type: #7772

We have fixed a bug when the tgz mime type was not "application/gzip"

https://github.com/owncloud/ocis/issues/7744
https://github.com/owncloud/ocis/pull/7772
Bugfix - Fix natsjs cache: #7790

The nats-js cache was not working. It paniced and wrote a lot of error logs.
Both is fixed now.

https://github.com/owncloud/ocis/pull/7790
Bugfix - Fix search service start: #7795

The search service would sometimes not start correctly because config values
are overwritten by default configuration.

https://github.com/owncloud/ocis/pull/7795
Bugfix - Do not purge expired upload sessions that are still postprocessing: #7859

https://github.com/owncloud/ocis/pull/7859
https://github.com/owncloud/ocis/pull/7958
Bugfix - Fix the public link update: #7862

We fixed a bug when normal users can update the public link to delete its
password if permission is not sent in data.

https://github.com/owncloud/ocis/issues/7821
https://github.com/owncloud/ocis/pull/7862
Bugfix - Updating logo with new theme structure: #7930

Updating and resetting the logo when using the new theme.json structure in Web
has been fixed.

https://github.com/owncloud/ocis/pull/7930
Bugfix - Password policy return code was wrong: #7952

We fixed the status code on SharingNG update permissions for public shares.

https://github.com/owncloud/ocis/pull/7952
Bugfix - Removed outdated and unused dependency from idp package: #7957

We've removed the outdated and apparently unused dependency cldr from the
kpop dependency inside the idp web ui. This resolves a security issue around
an oudated xmldom package version, originating from said kpop library.

https://github.com/owncloud/ocis/issues/7957
https://github.com/owncloud/ocis/pull/7988
Bugfix - Update permission validation: #7963

We fixed a bug where the permission validation was not working correctly.

https://github.com/owncloud/ocis/pull/7963
https://github.com/cs3org/reva/pull/4405
Bugfix - Renaming a user to a string with capital letters: #7964

We fixed the issue that led to correct update but the 404 response code when
renaming an existing user to a string with capital letters.

https://github.com/owncloud/ocis/pull/7964
Bugfix - Improve OCM support: #7973

We improved functionality of the OCM support.

https://github.com/owncloud/ocis/pull/7973
Bugfix - Permissions of a role with duplicate ID: #7976

We remove the redundant permissions of a role with duplicate ID.

https://github.com/owncloud/ocis/issues/7931
https://github.com/owncloud/ocis/pull/7976
Bugfix - Non durable streams for sse service: #7986

Configure sse streams to be non-durable. This functionality is not needed for
the sse service

https://github.com/owncloud/ocis/pull/7986
Bugfix - Fix empty trace ids: #8023

We changed the default tracing to produce non-empty traceids.

https://github.com/owncloud/ocis/pull/8023
https://github.com/owncloud/ocis/pull/8017
Bugfix - Fix search by containing special characters: #8050

As the OData query parser interprets characters like '@' or '-' in a special
way. Search request for users or groups needs to be quoted. We fixed the
libregraph users and groups endpoints to handle quoted search terms correctly.

https://github.com/owncloud/ocis/issues/7990
https://github.com/owncloud/ocis/pull/8050
https://github.com/owncloud/ocis/pull/8035
Bugfix - Fix last month search: #31145

We've fixed the last month search edge case when currently is 31-th.

Https://github.com/owncloud/ocis/issues/7629
https://github.com/owncloud/ocis/pull/7742

https://github.com/golang/go/issues/31145
The
issue
is
related
to
the
build-in
package
behavior
Change - Auto-Accept Shares: #7097

Automatically accepts shares. This feature is active by default and can be
deactivated via the environment variable FRONTEND_AUTO_ACCEPT_SHARES.

https://github.com/owncloud/ocis/pull/7097
Change - Change the default TUS chunk size: #7273

We changed the default TUS chunk size from 100MB to 10MB. You can still use the
old value by configuring it in your deployment.

https://github.com/owncloud/ocis/pull/7273
Change - Remove privacyURL and imprintURL from the config: #7938

We've removed the option privacyURL and imprintURL from the config, since other
clients weren't able to consume these. In order to be accessible by other
clients, not just Web, those should be configured via the theme.json file.

https://github.com/owncloud/ocis/pull/7938/
Change - Remove accessDeniedHelpUrl from the config: #7970

We've removed the option accessDeniedHelpUrl from the config, since other
clients weren't able to consume it. In order to be accessible by other clients,
not just Web, it should be configured via the theme.json file.

https://github.com/owncloud/ocis/pull/7970
Enhancement - Add the Banned Passwords List: #4197

Added an option to enable a password check against a banned passwords list
OCIS-3809

https://github.com/cs3org/reva/pull/4197
https://github.com/owncloud/ocis/pull/7314
Enhancement - Introduce service accounts: #6427

Introduces service accounts to avoid impersonating users in async processes

https://github.com/owncloud/ocis/issues/5550
https://github.com/owncloud/ocis/pull/6427
Enhancement - SSE for messaging: #6992

So far, sse has only been used to exchange messages between the server and the
client. In order to be able to send more content to the client, we have moved
the endpoint to a separate service and are now also using it for other
notifications like:
- notify postprocessing state changes.
- notify file locking and unlocking.
- ... @toDo
https://github.com/owncloud/ocis/pull/6992
Enhancement - Support spec violating AD FS access token issuer: #7138

AD FS /adfs/.well-known/openid-configuration has an optional
access_token_issuer which, in violation of the OpenID Connect spec, takes
precedence over issuer.

https://github.com/owncloud/ocis/pull/7138
Enhancement - Add OCIS_LDAP_BIND_PASSWORD as replacement for LDAP_BIND_PASSWORD: #7176

The enviroment variable OCIS_LDAP_BIND_PASSWORD was added to be more
consistent with all other global LDAP variables.

LDAP_BIND_PASSWORD is deprecated now and scheduled for removal with the 5.0.0
release.

We also deprecated LDAP_USER_SCHEMA_ID_IS_OCTETSTRING for removal with 5.0.0.
The replacement for it is OCIS_LDAP_USER_SCHEMA_ID_IS_OCTETSTRING.

https://github.com/owncloud/ocis/issues/7176
Enhancement - Keyword Query Language (KQL) search syntax: #7212

We've introduced support for
KQL
as the default oCIS search query language.

Simple queries:
- tag:golden tag:"silver"
- name:file.txt name:"file.docx"
- content:ahab content:"captain aha*"
Date/-range queries
- Mtime:"2023-09-05T08:42:11.23554+02:00"
- Mtime>"2023-09-05T08:42:11.23554+02:00"
- Mtime>="2023-09-05T08:42:11.23554+02:00"
- Mtime<"2023-09-05T08:42:11.23554+02:00"
- Mtime<="2023-09-05T08:42:11.23554+02:00"
- Mtime:today - range: start of today till end of today
- Mtime:yesterday - range: start of yesterday till end of yesterday
- Mtime:"this week" - range: start of this week till end of this week
- Mtime:"this month" - range: start of this month till end of this month
- Mtime:"last month" - range: start of last month till end of last month
- Mtime:"this year" - range: start of this year till end of this year
- Mtime:"last year" - range: start of last year till end of last year
Conjunctive normal form queries:
- tag:golden AND tag:"silver, tag:golden OR tag:"silver, tag:golden NOT tag:"silver
- (tag:book content:ahab*), tag:(book pdf)
Complex queries:
- (name:"moby di*" OR tag:bestseller) AND tag:book NOT tag:read
https://github.com/owncloud/ocis/issues/7042
https://github.com/owncloud/ocis/issues/7179
https://github.com/owncloud/ocis/issues/7114
https://github.com/owncloud/web/issues/9636
https://github.com/owncloud/web/issues/9646
https://github.com/owncloud/ocis/pull/7212
https://github.com/owncloud/ocis/pull/7043
https://github.com/owncloud/ocis/pull/7247
https://github.com/owncloud/ocis/pull/7248
https://github.com/owncloud/ocis/pull/7254
https://github.com/owncloud/ocis/pull/7262
https://github.com/owncloud/web/pull/9653
https://github.com/owncloud/web/pull/9672
Enhancement - Introduce clientlog service: #7217

Add the clientlog service which will send machine readable notifications to
clients

https://github.com/owncloud/ocis/pull/7217
Enhancement - Proxy uses service accounts for provisioning: #7240

The proxy service now uses a service account for provsioning task, like role
assignment and user auto-provisioning. This cleans up some technical debt that
required us to mint reva tokes inside the proxy service.

https://github.com/owncloud/ocis/issues/5550
https://github.com/owncloud/ocis/pull/7240
Enhancement - The password policies change request: #7264

The variables renaming OCIS-3767

https://github.com/cs3org/reva/pull/7264
Enhancement - Introduce natsjs registry: #7272

Introduce a registry based on the natsjs object store

https://github.com/owncloud/ocis/issues/7272
https://github.com/owncloud/ocis/pull/7487
Enhancement - Add the password policies: #7285

Add the password policies OCIS-3767

https://github.com/owncloud/ocis/pull/7285
https://github.com/owncloud/ocis/pull/7194
https://github.com/cs3org/reva/pull/4147
Enhancement - Add login URL config: #7317

Introduce a config to set the web login URL via WEB_OPTION_LOGIN_URL.

https://github.com/owncloud/ocis/pull/7317
Enhancement - Improve SSE format: #7325

Improve format of sse notifications

https://github.com/owncloud/ocis/pull/7325
Enhancement - New value auto for NOTIFICATIONS_SMTP_AUTHENTICATION: #7356

This cause the notifications service to automatically pick a suitable
authentication method to use with the configured SMTP server. This is also the
new default behavior. The previous default was to not use authentication at all.

https://github.com/owncloud/ocis/issues/7356
Enhancement - Make sse service scalable: #7382

When running multiple sse instances some events would not be reported to the
user. This is fixed.

https://github.com/owncloud/ocis/pull/7382
Enhancement - Edit wrong named enves: #7406

Checked and changed the envvars specified in the task and also removed those
that are no longer used.

https://github.com/owncloud/ocis/pull/7406
Enhancement - Thumbnail generation with image processors: #7409

Thumbnails can now be changed during creation, previously the images were always
scaled to fit the given frame, but it could happen that the images were cut off
because they could not be placed better due to the aspect ratio.

This pr introduces the possibility of specifying how the behavior should be,
following processors are available
- resize
- fit
- fill
- thumbnail
The processor can be applied by adding the processor query param to the request,
e.g. processor=fit, processor=fill, ...

To find out more how the individual processors work please read
https://github.com/disintegration/imaging

If no processor is provided it behaves the same as before (resize for gif's and
thumbnail for all other)

https://github.com/owncloud/enterprise/issues/6057
https://github.com/owncloud/ocis/issues/5179
https://github.com/owncloud/web/issues/7728
https://github.com/owncloud/ocis/pull/7409
Enhancement - Set default for Async Uploads to true: #7416

Async Uploads are meanwhile standard and needed for multiple features. Hence we
default them to true

https://github.com/owncloud/ocis/pull/7416
Enhancement - The default language added: #7417

The ability of configuration the default language has been added to the setting
service.

https://github.com/owncloud/enterprise/issues/5915
https://github.com/owncloud/ocis/pull/7417
Enhancement - Add "Last modified" filter Chip: #7455

Add "Last modified" filter Chip

https://github.com/owncloud/ocis/issues/7431
https://github.com/owncloud/ocis/issues/7551
https://github.com/owncloud/ocis/pull/7455
Enhancement - Config for disabling Web extensions: #7486

A new config for disabling specific Web extensions via their id has been added.

https://github.com/owncloud/web/issues/8524
https://github.com/owncloud/ocis/pull/7486
Enhancement - Store and index metadata: #7490

Audio metadata is now extracted and stored by the search service. It is
available for driveItems in a folder listing using the Graph API.

https://github.com/owncloud/ocis/pull/7490
Enhancement - Add support for audio files to the thumbnails service: #7491

The thumbnails service can now extract artwork from audio files (mp3, ogg, flac)
and render it just like any other image.

https://github.com/owncloud/ocis/pull/7491
Enhancement - Implement sharing roles: #7524

Implement libre graph sharing roles

https://github.com/owncloud/ocis/issues/7418
https://github.com/owncloud/ocis/pull/7524
Enhancement - Add new permission to delete public link password: #7538

Users with this new permission can now delete passwords on read-only public
links. The permission is added to the default roles "Admin" and "Space Admin".

https://github.com/owncloud/ocis/issues/7538
https://github.com/owncloud/ocis/pull/7538
https://github.com/cs3org/reva/pull/4270
Enhancement - Add config to enforce passwords on all public links: #7547

We added the config OCIS_SHARING_PUBLIC_SHARE_MUST_HAVE_PASSWORD to enforce
passwords on all public shares.

https://github.com/owncloud/ocis/issues/7539
https://github.com/owncloud/ocis/pull/7547
Enhancement - Tika content extraction cleanup for search: #7553

So far it has not been possible to determine whether the content for search
should be cleaned up of 'stop words' or not. Stop words are filling words like
"I, you, have, am" etc and defined by the search engine.

The behaviour can now be set with the newly introduced settings option
SEARCH_EXTRACTOR_TIKA_CLEAN_STOP_WORDS=false which is enabled by default.

In addition, the stop word cleanup is no longer as aggressive and now ignores
numbers, urls, basically everything except the defined stop words.

https://github.com/owncloud/ocis/issues/6674
https://github.com/owncloud/ocis/pull/7553
Enhancement - Allow configuring storage registry with envvars: #7554

Introduced new envvars to configure the storage registry in the gateway service

https://github.com/owncloud/ocis/pull/7554
Enhancement - Add search MediaType filter: #7602

Add filter MediaType filter shortcuts to search for specific document types. For
example, a search query mediatype:documents will search for files with the
following mimetypes:

Application/msword
MimeType:application/vnd.openxmlformats-officedocument.wordprocessingml.document
MimeType:application/vnd.oasis.opendocument.text MimeType:text/plain
MimeType:text/markdown MimeType:application/rtf
MimeType:application/vnd.apple.pages

Besides the document shorthand, it also contains following:
- file
- folder
- document
- spreadsheet
- presentation
- pdf
- image
- video
- audio
- archive
File

Folder

Document:

Application/msword
application/vnd.openxmlformats-officedocument.wordprocessingml.document
application/vnd.oasis.opendocument.text text/plain text/markdown application/rtf
application/vnd.apple.pages

Spreadsheet:

Application/vnd.ms-excel application/vnd.oasis.opendocument.spreadsheet text/csv
application/vnd.openxmlformats-officedocument.spreadsheetml.sheet
application/vnd.oasis.opendocument.spreadsheet application/vnd.apple.numbers

Presentations:

Application/vnd.ms-powerpoint
application/vnd.openxmlformats-officedocument.presentationml.presentation
application/vnd.oasis.opendocument.presentation application/vnd.apple.keynote

PDF

Application/pdf

Image:

Image/*

Video:

Video/*

Audio:

Audio/*

Archive (zip ...):

Application/zip application/x-tar application/x-gzip application/x-7z-compressed
application/x-rar-compressed application/x-bzip2 application/x-bzip
application/x-tgz

https://github.com/owncloud/ocis/issues/7432
https://github.com/owncloud/ocis/pull/7602
Enhancement - Add Sharing NG endpoints: #7633

We've added new sharing ng endpoints to the graph beta api. The following
endpoints are added:
- /v1beta1/me/drive/sharedByMe
- /v1beta1/me/drive/sharedWithMe
- /v1beta1/roleManagement/permissions/roleDefinitions
- /v1beta1/roleManagement/permissions/roleDefinitions/{roleID}
- /v1beta1/drives/{drive-id}/items/{item-id}/createLink (create a sharing link)
https://github.com/owncloud/ocis/issues/7436
https://github.com/owncloud/ocis/issues/6993
https://github.com/owncloud/ocis/pull/7633
https://github.com/owncloud/ocis/pull/7686
https://github.com/owncloud/ocis/pull/7684
https://github.com/owncloud/ocis/pull/7683
https://github.com/owncloud/ocis/pull/7239
https://github.com/owncloud/ocis/pull/7687
https://github.com/owncloud/ocis/pull/7751
https://github.com/owncloud/libre-graph-api/pull/112
Enhancement - Configs for Web embed mode: #7670

New configs for the Web embed mode have been added:
- enabled Defines if embed mode is enabled.
- target Defines how Web is being integrated when running in embed mode.
- messagesOrigin Defines a URL under which Web can be integrated via iFrame.
- delegateAuthentication Defines whether Web should require authentication to be done by the parent application.
- delegateAuthenticationOrigin Defines the host to validate the message event origin against when running Web in 'embed' mode.
https://github.com/owncloud/web/issues/9768
https://github.com/owncloud/ocis/pull/7670
Enhancement - Add new permissions: #7700

Adds new permissions to admin/spaceadmin/user roles - Favorites.List allows /
denies the Favorites Listing Request - Favorites.Write is implemented to be
enforced on marking/unmark files as favouritesShare - Shares.Write permission
denies / allows sharing completely for a user on all share CUD requests. (User,
Group)

https://github.com/owncloud/ocis/pull/7700
Enhancement - Add preferred language to user settings: #7720

We have added the preferred language to the libre-graph api & added endpoints
for that to ocis.

https://github.com/owncloud/ocis/issues/5455
https://github.com/owncloud/ocis/pull/7720
https://github.com/owncloud/libre-graph-api/pull/130
Enhancement - Add user filter startswith and contains: #7739

We add two new filters to the user list endpoint. The startswith filter allows
to filter users by the beginning of their name. The contains filter allows to
filter users by a substring of their name.

https://github.com/owncloud/ocis/issues/5486
https://github.com/owncloud/ocis/pull/7739
Enhancement - Allow configuring additional routes: #7740

Allows adding custom routes to the ocis proxy. This enables customs ocis
extensions

https://github.com/owncloud/ocis/pull/7740
Enhancement - Default link permission config: #7783

A new config for default link permissions that is being announced via
capabilities has been added. It defaults to 1 (= public link with viewer
permissions).

https://github.com/owncloud/web/issues/9919
https://github.com/owncloud/ocis/pull/7783
Enhancement - Add banned password list to the default deployments: #7784

We add banned password list to the default deployments

https://github.com/owncloud/ocis/issues/7724
https://github.com/owncloud/ocis/pull/7784
Enhancement - Update to go 1.21: #7794

We updated to go 1.21.

https://github.com/owncloud/ocis/pull/7794
Enhancement - Add Sharing NG list permissions endpoint: #7805

We've added a new sharing ng endpoint which lists all permissions for a given
item.

https://github.com/owncloud/ocis/issues/6993
https://github.com/owncloud/ocis/pull/7805
Enhancement - Add user list requires filter config: #7866

Introduce a config to require filters in order to list users in Web via
WEB_OPTION_USER_LIST_REQUIRES_FILTER.

https://github.com/owncloud/ocis/pull/7866
Enhancement - Retry antivirus postprocessing step in case of problems: #7874

The antivirus postprocessing step will now be retried for a configurable amount
of times in case it can't get a result from clamav.

https://github.com/owncloud/ocis/pull/7874
Enhancement - Add validation to public share provider: #7877

We changed the implementation of the public share provider in reva to do the
validation on the CS3 Api side. This makes the implementation on the graph side
smaller.

https://github.com/owncloud/ocis/issues/6993
https://github.com/owncloud/ocis/pull/7877
Enhancement - Store and index metadata: #7886

Location metadata is now extracted and stored by the search service. It is
available for driveItems in a folder listing using the Graph API.

https://github.com/owncloud/ocis/pull/7886
Enhancement - Allow regular users to list other users: #7887

Regular users can search for other users and groups. The following limitations
apply:
- Only search queries are allowed (using the $search=term query parameter)
- The search term needs to have at least 3 characters
- for user searches the result set only contains the attributes displayName, userType, mail and id
- for group searches the result set only contains the attributes displayName, groupTypes and id
https://github.com/owncloud/ocis/issues/7782
https://github.com/owncloud/ocis/pull/7887
Enhancement - Add edit public share to sharing NG: #7908

We added the ability to edit public shares to the sharing NG endpoints.

https://github.com/owncloud/ocis/issues/6993
https://github.com/owncloud/ocis/pull/7908/
Enhancement - Add cli commands for trash-bin: #7917

We added the list and restore commands to the trash-bin items to the CLI

https://github.com/owncloud/ocis/issues/7845
https://github.com/owncloud/ocis/pull/7917
https://github.com/cs3org/reva/pull/4392
Enhancement - Add validation update public share: #7978

For Sharing NG, we needed validation in the implementing reva service to keep
the client implementation simple.

https://github.com/owncloud/ocis/pull/7978
Enhancement - Allow inmemory nats-js-kv stores: #7979

Adds envvars to keep nats-js-kv stores in memory and not persist them on disc.

https://github.com/owncloud/ocis/pull/7979
Enhancement - Use kv store in natsjs registry: #7987

Replaces the nats object store with the nats kv store in the natsjs registry

https://github.com/owncloud/ocis/pull/7987
Enhancement - Allow authentication nats connections: #7989

Allow events, store and registry implementation to pass username/password to the
nats instance

https://github.com/owncloud/ocis/pull/7989
Enhancement - Add RED metrics to the metrics endpoint: #7994

We added three new metrics to the metrics endpoint to support the RED method for
monitoring microservices.
- Request Rate: The number of requests per second. The total count of requests
  is available under ocis_proxy_requests_total. - Error Rate: The number of
  failed requests per second. The total count of failed requests is available
  under ocis_proxy_errors_total. - Duration: The amount of time each request
  takes. The duration of all requests is available under
  ocis_proxy_request_duration_seconds. This is a histogram metric, so it also
  provides information about the distribution of request durations.
The metrics are available under the following paths: PROXY_DEBUG_ADDR/metrics
in a prometheus compatible format and maybe secured by PROXY_DEBUG_TOKEN.

https://github.com/owncloud/ocis/pull/7994
Enhancement - Add ocm and sciencemesh services: #7998

We added sciencemesh and ocm services to enable federation.

https://github.com/owncloud/ocis/pull/7998
https://github.com/owncloud/ocis/pull/7576
https://github.com/owncloud/ocis/pull/7464
https://github.com/owncloud/ocis/pull/7463
Enhancement - Make nats-js-kv the default registry: #8011

The previously used default mdns is faulty. Deprecated it together with
consul, nats and etcd implementations.

https://github.com/owncloud/ocis/pull/8011
https://github.com/owncloud/ocis/pull/8027
Enhancement - Update Reva to version 2.18.0: #8038

Changelog for reva 2.18.0 (2023-12-22)

The following sections list the changes in reva 2.18.0 relevant to reva users.
The changes are ordered by importance.
- Bugfix cs3org/reva#4424: Fixed panic in receivedsharecache pkg
- Bugfix cs3org/reva#4425: Fix overwriting files with empty files
- Bugfix cs3org/reva#4432: Fix /dav/meta endpoint for shares
- Bugfix cs3org/reva#4422: Fix disconnected traces
- Bugfix cs3org/reva#4429: Internal link creation
- Bugfix cs3org/reva#4407: Make ocdav return correct oc:spaceid
- Bugfix cs3org/reva#4410: Improve OCM support
- Bugfix cs3org/reva#4402: Refactor upload session
- Enhancement cs3org/reva#4421: Check permissions before adding, deleting or updating shares
- Enhancement cs3org/reva#4403: Add validation to update public share
- Enhancement cs3org/reva#4409: Disable the password policy
- Enhancement cs3org/reva#4412: Allow authentication for nats connections
- Enhancement cs3org/reva#4411: Add option to configure streams non durable
- Enhancement cs3org/reva#4406: Rework cache configuration
- Enhancement cs3org/reva#4414: Track more upload session metrics
Changelog for reva 2.17.0 (2023-12-12)

The following sections list the changes in reva 2.17.0 relevant to reva users.
The changes are ordered by importance.
- Bugfix cs3org/reva#4278: Disable DEPTH infinity in PROPFIND
- Bugfix cs3org/reva#4318: Do not allow moves between shares
- Bugfix cs3org/reva#4290: Prevent panic when trying to move a non-existent file
- Bugfix cs3org/reva#4241: Allow an empty credentials chain in the auth middleware
- Bugfix cs3org/reva#4216: Fix an error message
- Bugfix cs3org/reva#4324: Fix capabilities decoding
- Bugfix cs3org/reva#4267: Fix concurrency issue
- Bugfix cs3org/reva#4362: Fix concurrent lookup
- Bugfix cs3org/reva#4336: Fix definition of "file-editor" role
- Bugfix cs3org/reva#4302: Fix checking of filename length
- Bugfix cs3org/reva#4366: Fix CS3 status code when looking up non existing share
- Bugfix cs3org/reva#4299: Fix HTTP verb of the generate-invite endpoint
- Bugfix cs3org/reva#4249: GetUserByClaim not working with MSAD for claim "userid"
- Bugfix cs3org/reva#4217: Fix missing case for "hide" in UpdateShares
- Bugfix cs3org/reva#4140: Fix missing etag in shares jail
- Bugfix cs3org/reva#4229: Fix destroying the Personal and Project spaces data
- Bugfix cs3org/reva#4193: Fix overwrite a file with an empty file
- Bugfix cs3org/reva#4365: Fix create public share
- Bugfix cs3org/reva#4380: Fix the public link update
- Bugfix cs3org/reva#4250: Fix race condition
- Bugfix cs3org/reva#4345: Fix conversion of custom ocs permissions to roles
- Bugfix cs3org/reva#4134: Fix share jail
- Bugfix cs3org/reva#4335: Fix public shares cleanup config
- Bugfix cs3org/reva#4338: Fix unlock via space API
- Bugfix cs3org/reva#4341: Fix spaceID in meta endpoint response
- Bugfix cs3org/reva#4351: Fix 500 when open public link
- Bugfix cs3org/reva#4352: Fix the tgz mime type
- Bugfix cs3org/reva#4388: Allow UpdateUserShare() to update just the expiration date
- Bugfix cs3org/reva#4214: Always pass adjusted default nats options
- Bugfix cs3org/reva#4291: Release lock when expired
- Bugfix cs3org/reva#4386: Remove dead enable_home config
- Bugfix cs3org/reva#4292: Return 403 when user is not permitted to lock
- Enhancement cs3org/reva#4389: Add audio and location props
- Enhancement cs3org/reva#4337: Check permissions before creating shares
- Enhancement cs3org/reva#4326: Add search mediatype filter
- Enhancement cs3org/reva#4367: Add GGS mime type
- Enhancement cs3org/reva#4194: Add hide flag to shares
- Enhancement cs3org/reva#4358: Add default permissions capability for links
- Enhancement cs3org/reva#4133: Add more metadata to locks
- Enhancement cs3org/reva#4353: Add support for .docxf files
- Enhancement cs3org/reva#4363: Add nats-js-kv store
- Enhancement cs3org/reva#4197: Add the Banned-Passwords List
- Enhancement cs3org/reva#4190: Add the password policies
- Enhancement cs3org/reva#4384: Add a retry postprocessing outcome and event
- Enhancement cs3org/reva#4271: Add search capability
- Enhancement cs3org/reva#4119: Add sse event
- Enhancement cs3org/reva#4392: Add additional permissions to service accounts
- Enhancement cs3org/reva#4344: Add url extension to mime type list
- Enhancement cs3org/reva#4372: Add validation to the public share provider
- Enhancement cs3org/reva#4244: Allow listing reveived shares by service accounts
- Enhancement cs3org/reva#4129: Auto-Accept Shares through ServiceAccounts
- Enhancement cs3org/reva#4374: Handle trashbin file listings concurrently
- Enhancement cs3org/reva#4325: Enforce Permissions
- Enhancement cs3org/reva#4368: Extract log initialization
- Enhancement cs3org/reva#4375: Introduce UploadSessionLister interface
- Enhancement cs3org/reva#4268: Implement sharing roles
- Enhancement cs3org/reva#4160: Improve utils pkg
- Enhancement cs3org/reva#4335: Add sufficient permissions check function
- Enhancement cs3org/reva#4281: Port OCM changes from master
- Enhancement cs3org/reva#4270: Opt out of public link password enforcement
- Enhancement cs3org/reva#4181: Change the variable names for the password policy
- Enhancement cs3org/reva#4256: Rename hidden share variable name
- Enhancement cs3org/reva#3926: Service Accounts
- Enhancement cs3org/reva#4359: Update go-ldap to v3.4.6
- Enhancement cs3org/reva#4170: Update password policies
- Enhancement cs3org/reva#4232: Improve error handling in utils package
https://github.com/owncloud/ocis/pull/8038
https://github.com/owncloud/ocis/pull/8056
https://github.com/owncloud/ocis/pull/7949
https://github.com/owncloud/ocis/pull/7793
https://github.com/owncloud/ocis/pull/7978
https://github.com/owncloud/ocis/pull/7979
https://github.com/owncloud/ocis/pull/7963
https://github.com/owncloud/ocis/pull/7986
https://github.com/owncloud/ocis/pull/7721
https://github.com/owncloud/ocis/pull/7727
https://github.com/owncloud/ocis/pull/7752
Enhancement - Service Account roles: #8051

Use a hidden role for service accounts. It will not appear in ListRoles calls
but internally handled by settings service

https://github.com/owncloud/ocis/pull/8051
Enhancement - Update web to v8.0.0-rc.1: #8055

Tags: web

We updated ownCloud Web to v8.0.0-rc.1. Please refer to the changelog (linked)
for details on the web release.

Summary * Enhancement

owncloud/web#10224: Harmonize
AppSwitcher icon colors * Bugfix
owncloud/web#10230: Configurable
concurrent requests * Bugfix
owncloud/web#10158: GDPR export
polling * Bugfix
owncloud/web#10220: Loading
indicator during conflict dialog * Bugfix
owncloud/web#10156: Uploading
the same files parallel * Bugfix
owncloud/web#10179: Space
navigate to trash missing * Bugfix
owncloud/web#10118: Tilesview
has whitespace * Bugfix
owncloud/web#10182: Make
versions panel readonly in viewers and editors

We updated ownCloud Web to v8.0.0-beta.2. Please refer to the changelog (linked)
for details on the web release.

Summary * Bugfix

owncloud/web#10010: Displaying
full video in their dimensions * Bugfix
owncloud/web#10149: Spaces files
list previews cropped * Bugfix
owncloud/web#10149: Spaces
overview tile previews zoomed * Bugfix
owncloud/web#10154: Resolving
links without drive alias

We updated ownCloud Web to v8.0.0-beta.1. Please refer to the changelog (linked)
for details on the web release.

Summary * Change

owncloud/web#9698: Theme handling *
Enhancement owncloud/web#10111:
Registering right sidebar panels as extension * Enhancement
owncloud/web#10111: File sidebar
in viewer and editor apps

We updated ownCloud Web to v8.0.0-alpha.13. Please refer to the changelog
(linked) for details on the web release.

Summary * Enhancement

owncloud/web#10104: Create link
modal

We updated ownCloud Web to v8.0.0-alpha.12. Please refer to the changelog
(linked) for details on the web release.

Summary * Bugfix

owncloud/web#9257: Filter out
shares without display name * Bugfix
owncloud/web#9483: PDF loading
Safari * Bugfix owncloud/web#9513:
Set or remove expiration date on group share not possible * Bugfix
owncloud/web#9529: Shared with
action menu label alignment * Bugfix
owncloud/web#9587: Internal public
link resolving * Bugfix
owncloud/web#9593: Audio- &
video-loading on Shared with me page * Bugfix
owncloud/web#9649: Add project
space filter * Bugfix
owncloud/web#9663: Respect the
open-in-new-tab-config for external apps * Bugfix
owncloud/web#9670: Tiles view
accessibility * Bugfix
owncloud/web#9694: Special
characters in username * Bugfix
owncloud/web#9788: Create .space
folder if it does not exist * Bugfix
owncloud/web#9799: Link resolving
into default app * Bugfix
owncloud/web#9832: Copy quicklinks
for webkit navigator * Bugfix
owncloud/web#9843: Fix display path
on resources * Bugfix
owncloud/web#9844: Upload space
image * Bugfix owncloud/web#9861:
Duplicated file search request * Bugfix
owncloud/web#9873: Tags are no
longer editable for a locked file * Bugfix
owncloud/web#9881: Prevent
rendering of old/wrong set of resources in search list * Bugfix
owncloud/web#9915: Keep both
folders conflict in same-named folders * Bugfix
owncloud/web#9931: Enabling "invite
people" for password-protected folder/file * Bugfix
owncloud/web#10031: Icon
extension mapping * Bugfix
owncloud/web#10065: Logout page
after token expiry * Bugfix
owncloud/web#10083: Disable
expiration date for alias link (internal) * Bugfix
owncloud/web#10092: Allow empty
search query in "in-here" search * Bugfix
owncloud/web#10096: Remove
password buttons on input if disabled * Change
owncloud/web#7338: Remove
deprecated code * Enhancement
owncloud/web#7317: Make login url
configurable * Enhancement
owncloud/web#7497: Permission
checks for shares and favorites * Enhancement
owncloud/web#7600: Scroll to
newly created folder * Enhancement
owncloud/web#9302: Application
unification * Enhancement
owncloud/web#9423: Show local
loading spinner in sharing button * Enhancement
owncloud/web#9441: File versions
tooltip with absolute date * Enhancement
owncloud/web#9441: Disabling
extensions * Enhancement
owncloud/web#9451: Add SSE to get
notifications instantly * Enhancement
owncloud/web#9525: Tags form
improved * Enhancement
owncloud/web#9527: Don't display
confirmation dialog on file deletion * Enhancement
owncloud/web#9531: Personal
shares can be shown and hidden * Enhancement
owncloud/web#9552: Upload
preparation time * Enhancement
owncloud/web#9561: Indicate
processing state * Enhancement
owncloud/web#9566: Display locking
information * Enhancement
owncloud/web#9584: Moving share's
"set expiration date" function * Enhancement
owncloud/web#9625: Add keyboard
navigation to spaces overview * Enhancement
owncloud/web#9627: Add batch
actions to spaces * Enhancement
owncloud/web#9653: Keyword Query
Language (KQL) search syntax * Enhancement
owncloud/web#9671: OcModal set
buttons to same width * Enhancement
owncloud/web#9682: Add password
policy compatibility * Enhancement
owncloud/web#9691: Password
generator for public links * Enhancement
owncloud/web#9696: Added app banner
for mobile devices * Enhancement
owncloud/web#9706: Unify sharing
expiration date menu items * Enhancement
owncloud/web#9727: Show error if
password is on a banned password list * Enhancement
owncloud/web#9771: Handle
postprocessing state via Server Sent Events * Enhancement
owncloud/web#9806: Preview image
presentation * Enhancement
owncloud/web#9809: Add editors to
the application menu * Enhancement
owncloud/web#9814: Registering nav
items as extension * Enhancement
owncloud/web#9815: Add new portal
into runtime to include footer * Enhancement
owncloud/web#9818: Add mode
config option * Enhancement
owncloud/web#9831: Last modified
filter chips * Enhancement
owncloud/web#9841: Add embed mode
actions * Enhancement
owncloud/web#9847: Provide vendor
neutral file icons * Enhancement
owncloud/web#9853: Show only create
folder button in embed mode * Enhancement
owncloud/web#9854: Search query
term linking * Enhancement
owncloud/web#9857: Add permission
to delete link passwords when password is enforced * Enhancement
owncloud/web#9858: Remove settings
icon from searchbar * Enhancement
owncloud/web#9863: Location picker
in embed mode * Enhancement
owncloud/web#9864: Search tags
filter chips style aligned * Enhancement
owncloud/web#9884: Enable dark
theme on importer * Enhancement
owncloud/web#9890: Create shortcuts
- Enhancement owncloud/web#9905:
  Manage tags in details panel * Enhancement
  owncloud/web#9906: Reorganize "New"
  menu * Enhancement
  owncloud/web#9912: Add media type
  filter chip * Enhancement
  owncloud/web#9940: Display error
  message for upload to locked folder * Enhancement
  owncloud/web#9966: Support more
  audio formats with correct icon * Enhancement
  owncloud/web#10007: Additional
  languages * Enhancement
  owncloud/web#10013: Shared by
  filter * Enhancement
  owncloud/web#10014: Share search
  filter * Enhancement
  owncloud/web#10024: Duplicate
  space * Enhancement
  owncloud/web#10037: Default link
  permission * Enhancement
  owncloud/web#10047: Add explaining
  contextual helper to spaces overview * Enhancement
  owncloud/web#10057: Folder tree
  creation during upload * Enhancement
  owncloud/web#10062: Show webdav
  information in details view * Enhancement
  owncloud/web#10072: Add
  authentication delegation in the Embed mode * Enhancement
  owncloud/web#10099: Support
  mandatory filter while listing users * Enhancement
  owncloud/web#10102: Registering
  quick actions as extension
https://github.com/owncloud/ocis/pull/8055
https://github.com/owncloud/ocis/pull/7930
https://github.com/owncloud/ocis/pull/7952
https://github.com/owncloud/ocis/pull/7918
https://github.com/owncloud/ocis/pull/7883
https://github.com/owncloud/web/releases/tag/v8.0.0-rc.1
https://github.com/owncloud/web/releases/tag/v8.0.0-beta.1
https://github.com/owncloud/web/releases/tag/v8.0.0-beta.2
https://github.com/owncloud/web/releases/tag/v8.0.0-alpha.13
https://github.com/owncloud/web/releases/tag/v8.0.0-alpha.12

ocis - 4.0.5

Published by ownclouders 10 months ago

Changes in 4.0.5

Summary

Bugfix - Fix reva config of frontend service to avoid misleading error logs: #7934
Bugfix - Fix trace ids: #8026
Bugfix - Do not purge expired upload sessions that are still postprocessing: #7941
Enhancement - Add cli commands for trash-binq: #7936

Details

Bugfix - Fix reva config of frontend service to avoid misleading error logs: #7934

We set an empty Credentials chain for the frontend service now. In ocis all non-reva token
authentication is handled by the proxy. This avoids irritating error messages about the
missing 'auth-bearer' service.

https://github.com/owncloud/ocis/issues/6692
https://github.com/owncloud/ocis/pull/7934
https://github.com/owncloud/ocis/pull/7453
https://github.com/cs3org/reva/pull/4396
https://github.com/cs3org/reva/pull/4241
Bugfix - Fix trace ids: #8026

We changed the default tracing to produce non-empty traceids and fixed a problem where traces
got disconnected further down the stack.

https://github.com/owncloud/ocis/pull/8026
Bugfix - Do not purge expired upload sessions that are still postprocessing: #7941

https://github.com/owncloud/ocis/pull/7941
https://github.com/owncloud/ocis/pull/7859
https://github.com/owncloud/ocis/pull/7958
Enhancement - Add cli commands for trash-binq: #7936

We added the list and restore commands to the trash-bin items to the CLI

https://github.com/owncloud/ocis/issues/7845
https://github.com/owncloud/ocis/pull/7936

ocis - 5.0.0-beta.2

Published by ownclouders 10 months ago

Changelog for 5.0.0-beta.2

Changes in 5.0.0-beta.2

Summary

Bugfix - Fix natsjs cache: #7790
Bugfix - Do not purge expired upload sessions that are still postprocessing: #7859
Bugfix - Updating logo with new theme structure: #7930
Bugfix - Password policy return code was wrong: #7952
Bugfix - Update permission validation: #7963
Bugfix - Renaming a user to a string with capital letters: #7964
Bugfix - Improve OCM support: #7973
Bugfix - Permissions of a role with duplicate ID: #7976
Bugfix - Non durable streams for sse service: #7986
Bugfix - Fix empty trace ids: #8023
Change - Remove privacyURL and imprintURL from the config: #7938
Change - Remove accessDeniedHelpUrl from the config: #7970
Enhancement - Retry antivirus postprocessing step in case of problems: #7874
Enhancement - Add edit public share to sharing NG: #7908
Enhancement - Add cli commands for trash-bin: #7917
Enhancement - Update web to v8.0.0-beta.2: #7930
Enhancement - Update reva to latest edge: #7949
Enhancement - Add validation update public share: #7978
Enhancement - Allow inmemory nats-js-kv stores: #7979
Enhancement - Use kv store in natsjs registry: #7987
Enhancement - Allow authentication nats connections: #7989
Enhancement - Add ocm and sciencemesh services: #7998
Enhancement - Make nats-js-kv the default registry: #8011

Details

Bugfix - Fix natsjs cache: #7790

The nats-js cache was not working. It paniced and wrote a lot of error logs.
Both is fixed now.

https://github.com/owncloud/ocis/pull/7790
Bugfix - Do not purge expired upload sessions that are still postprocessing: #7859

https://github.com/owncloud/ocis/pull/7859
https://github.com/owncloud/ocis/pull/7958
Bugfix - Updating logo with new theme structure: #7930

Updating and resetting the logo when using the new theme.json structure in Web
has been fixed.

https://github.com/owncloud/ocis/pull/7930
Bugfix - Password policy return code was wrong: #7952

We fixed the status code on SharingNG update permissions for public shares.

https://github.com/owncloud/ocis/pull/7952
Bugfix - Update permission validation: #7963

We fixed a bug where the permission validation was not working correctly.

https://github.com/owncloud/ocis/pull/7963
https://github.com/cs3org/reva/pull/4405
Bugfix - Renaming a user to a string with capital letters: #7964

We fixed the issue that led to correct update but the 404 response code when
renaming an existing user to a string with capital letters.

https://github.com/owncloud/ocis/pull/7964
Bugfix - Improve OCM support: #7973

We improved functionality of the OCM support.

https://github.com/owncloud/ocis/pull/7973
Bugfix - Permissions of a role with duplicate ID: #7976

We remove the redundant permissions of a role with duplicate ID.

https://github.com/owncloud/ocis/issues/7931
https://github.com/owncloud/ocis/pull/7976
Bugfix - Non durable streams for sse service: #7986

Configure sse streams to be non-durable. This functionality is not needed for
the sse service

https://github.com/owncloud/ocis/pull/7986
Bugfix - Fix empty trace ids: #8023

We changed the default tracing to produce non-empty traceids.

https://github.com/owncloud/ocis/pull/8023
https://github.com/owncloud/ocis/pull/8017
Change - Remove privacyURL and imprintURL from the config: #7938

We've removed the option privacyURL and imprintURL from the config, since other
clients weren't able to consume these. In order to be accessible by other
clients, not just Web, those should be configured via the theme.json file.

https://github.com/owncloud/ocis/pull/7938/
Change - Remove accessDeniedHelpUrl from the config: #7970

We've removed the option accessDeniedHelpUrl from the config, since other
clients weren't able to consume it. In order to be accessible by other clients,
not just Web, it should be configured via the theme.json file.

https://github.com/owncloud/ocis/pull/7970
Enhancement - Retry antivirus postprocessing step in case of problems: #7874

The antivirus postprocessing step will now be retried for a configurable amount
of times in case it can't get a result from clamav.

https://github.com/owncloud/ocis/pull/7874
Enhancement - Add edit public share to sharing NG: #7908

We added the ability to edit public shares to the sharing NG endpoints.

https://github.com/owncloud/ocis/issues/6993
https://github.com/owncloud/ocis/pull/7908/
Enhancement - Add cli commands for trash-bin: #7917

We added the list and restore commands to the trash-bin items to the CLI

https://github.com/owncloud/ocis/issues/7845
https://github.com/owncloud/ocis/pull/7917
https://github.com/cs3org/reva/pull/4392
Enhancement - Update web to v8.0.0-beta.2: #7930

Tags: web

We updated ownCloud Web to v8.0.0-beta.2. Please refer to the changelog (linked)
for details on the web release.

Summary * Bugfix

owncloud/web#10010: Displaying
full video in their dimensions * Bugfix
owncloud/web#10149: Spaces files
list previews cropped * Bugfix
owncloud/web#10149: Spaces
overview tile previews zoomed * Bugfix
owncloud/web#10154: Resolving
links without drive alias

We updated ownCloud Web to v8.0.0-beta.1. Please refer to the changelog (linked)
for details on the web release.

Summary * Change

owncloud/web#9698: Theme handling *
Enhancement owncloud/web#10111:
Registering right sidebar panels as extension * Enhancement
owncloud/web#10111: File sidebar
in viewer and editor apps

https://github.com/owncloud/ocis/pull/7930
https://github.com/owncloud/ocis/pull/7952
https://github.com/owncloud/web/releases/tag/v8.0.0-beta.1
https://github.com/owncloud/web/releases/tag/v8.0.0-beta.2
Enhancement - Update reva to latest edge: #7949

Changelog for reva unreleased =============================
- Bugfix cs3org/reva#4407: Make ocdav return correct oc:spaceid
- Bugfix cs3org/reva#4410: Improve OCM support
- Bugfix cs3org/reva#4422: Fix disconnected traces
- Bugfix cs3org/reva#4424: Fixed panic in receivedsharecache pkg
- Enhancement cs3org/reva#4403: Add validation to update public share
- Enhancement cs3org/reva#4405: Check permissions before updating shares
- Enhancement cs3org/reva#4406: Rework cache configuration
- Enhancement cs3org/reva#4409: Disable the password policy
- Enhancement cs3org/reva#4411: Add option to configure streams non durable
- Enhancement cs3org/reva#4412: Allow authentication for nats connections
- Enhancement cs3org/reva#4414: Track more upload session metrics
Changelog for reva 2.17.0 (2023-12-12) =======================================

The following sections list the changes in reva 2.17.0 relevant to reva users.
The changes are ordered by importance.
- Bugfix cs3org/reva#4278: Disable DEPTH infinity in PROPFIND
- Bugfix cs3org/reva#4318: Do not allow moves between shares
- Bugfix cs3org/reva#4290: Prevent panic when trying to move a non-existent file
- Bugfix cs3org/reva#4241: Allow an empty credentials chain in the auth middleware
- Bugfix cs3org/reva#4216: Fix an error message
- Bugfix cs3org/reva#4324: Fix capabilities decoding
- Bugfix cs3org/reva#4267: Fix concurrency issue
- Bugfix cs3org/reva#4362: Fix concurrent lookup
- Bugfix cs3org/reva#4336: Fix definition of "file-editor" role
- Bugfix cs3org/reva#4302: Fix checking of filename length
- Bugfix cs3org/reva#4366: Fix CS3 status code when looking up non existing share
- Bugfix cs3org/reva#4299: Fix HTTP verb of the generate-invite endpoint
- Bugfix cs3org/reva#4249: GetUserByClaim not working with MSAD for claim "userid"
- Bugfix cs3org/reva#4217: Fix missing case for "hide" in UpdateShares
- Bugfix cs3org/reva#4140: Fix missing etag in shares jail
- Bugfix cs3org/reva#4229: Fix destroying the Personal and Project spaces data
- Bugfix cs3org/reva#4193: Fix overwrite a file with an empty file
- Bugfix cs3org/reva#4365: Fix create public share
- Bugfix cs3org/reva#4380: Fix the public link update
- Bugfix cs3org/reva#4250: Fix race condition
- Bugfix cs3org/reva#4345: Fix conversion of custom ocs permissions to roles
- Bugfix cs3org/reva#4134: Fix share jail
- Bugfix cs3org/reva#4335: Fix public shares cleanup config
- Bugfix cs3org/reva#4338: Fix unlock via space API
- Bugfix cs3org/reva#4341: Fix spaceID in meta endpoint response
- Bugfix cs3org/reva#4351: Fix 500 when open public link
- Bugfix cs3org/reva#4352: Fix the tgz mime type
- Bugfix cs3org/reva#4388: Allow UpdateUserShare() to update just the expiration date
- Bugfix cs3org/reva#4214: Always pass adjusted default nats options
- Bugfix cs3org/reva#4291: Release lock when expired
- Bugfix cs3org/reva#4386: Remove dead enable_home config
- Bugfix cs3org/reva#4292: Return 403 when user is not permitted to lock
- Enhancement cs3org/reva#4389: Add audio and location props
- Enhancement cs3org/reva#4337: Check permissions before creating shares
- Enhancement cs3org/reva#4326: Add search mediatype filter
- Enhancement cs3org/reva#4367: Add GGS mime type
- Enhancement cs3org/reva#4194: Add hide flag to shares
- Enhancement cs3org/reva#4358: Add default permissions capability for links
- Enhancement cs3org/reva#4133: Add more metadata to locks
- Enhancement cs3org/reva#4353: Add support for .docxf files
- Enhancement cs3org/reva#4363: Add nats-js-kv store
- Enhancement cs3org/reva#4197: Add the Banned-Passwords List
- Enhancement cs3org/reva#4190: Add the password policies
- Enhancement cs3org/reva#4384: Add a retry postprocessing outcome and event
- Enhancement cs3org/reva#4271: Add search capability
- Enhancement cs3org/reva#4119: Add sse event
- Enhancement cs3org/reva#4392: Add additional permissions to service accounts
- Enhancement cs3org/reva#4344: Add url extension to mime type list
- Enhancement cs3org/reva#4372: Add validation to the public share provider
- Enhancement cs3org/reva#4244: Allow listing reveived shares by service accounts
- Enhancement cs3org/reva#4129: Auto-Accept Shares through ServiceAccounts
- Enhancement cs3org/reva#4374: Handle trashbin file listings concurrently
- Enhancement cs3org/reva#4325: Enforce Permissions
- Enhancement cs3org/reva#4368: Extract log initialization
- Enhancement cs3org/reva#4375: Introduce UploadSessionLister interface
- Enhancement cs3org/reva#4268: Implement sharing roles
- Enhancement cs3org/reva#4160: Improve utils pkg
- Enhancement cs3org/reva#4335: Add sufficient permissions check function
- Enhancement cs3org/reva#4281: Port OCM changes from master
- Enhancement cs3org/reva#4270: Opt out of public link password enforcement
- Enhancement cs3org/reva#4181: Change the variable names for the password policy
- Enhancement cs3org/reva#4256: Rename hidden share variable name
- Enhancement cs3org/reva#3926: Service Accounts
- Enhancement cs3org/reva#4359: Update go-ldap to v3.4.6
- Enhancement cs3org/reva#4170: Update password policies
- Enhancement cs3org/reva#4232: Improve error handling in utils package
https://github.com/owncloud/ocis/pull/7949
https://github.com/owncloud/ocis/pull/7793
https://github.com/owncloud/ocis/pull/7978
https://github.com/owncloud/ocis/pull/7979
https://github.com/owncloud/ocis/pull/7963
https://github.com/owncloud/ocis/pull/7986
Enhancement - Add validation update public share: #7978

For Sharing NG, we needed validation in the implementing reva service to keep
the client implementation simple.

https://github.com/owncloud/ocis/pull/7978
Enhancement - Allow inmemory nats-js-kv stores: #7979

Adds envvars to keep nats-js-kv stores in memory and not persist them on disc.

https://github.com/owncloud/ocis/pull/7979
Enhancement - Use kv store in natsjs registry: #7987

Replaces the nats object store with the nats kv store in the natsjs registry

https://github.com/owncloud/ocis/pull/7987
Enhancement - Allow authentication nats connections: #7989

Allow events, store and registry implementation to pass username/password to the
nats instance

https://github.com/owncloud/ocis/pull/7989
Enhancement - Add ocm and sciencemesh services: #7998

We added sciencemesh and ocm services to enable federation.

https://github.com/owncloud/ocis/pull/7998
https://github.com/owncloud/ocis/pull/7576
https://github.com/owncloud/ocis/pull/7464
https://github.com/owncloud/ocis/pull/7463
Enhancement - Make nats-js-kv the default registry: #8011

The previously used default mdns is faulty. Deprecated it together with
consul, nats and etcd implementations.

https://github.com/owncloud/ocis/pull/8011
https://github.com/owncloud/ocis/pull/8027

ocis - 5.0.0-beta.1

Published by ownclouders 10 months ago

Changelog for 5.0.0-beta.1

Changes in 5.0.0-beta.1

Summary

Bugfix - Updating logo with new theme structure: #7930
Change - Remove PrivacyURL and ImprintURL from the config: #7938
Enhancement - Retry antivirus postprocessing step in case of problems: #7874
Enhancement - Add edit public share to sharing NG: #7908
Enhancement - Update web to v8.0.0-beta.1: #7930
Enhancement - Update reva to v2.17.0: #7949

Details

Bugfix - Updating logo with new theme structure: #7930

Updating and resetting the logo when using the new theme.json structure in Web
has been fixed.

https://github.com/owncloud/ocis/pull/7930
Change - Remove PrivacyURL and ImprintURL from the config: #7938

We've removed the option PrivacyURL and ImprintURL from the config, since other
clients weren't able to consume these. In order to be accessible by other
clients, not just Web, those should be configured via the theme.json file.

https://github.com/owncloud/ocis/pull/7938/
Enhancement - Retry antivirus postprocessing step in case of problems: #7874

The antivirus postprocessing step will now be retried for a configurable amount
of times in case it can't get a result from clamav.

https://github.com/owncloud/ocis/pull/7874
Enhancement - Add edit public share to sharing NG: #7908

We added the ability to edit public shares to the sharing NG endpoints.

https://github.com/owncloud/ocis/issues/6993
https://github.com/owncloud/ocis/pull/7908/
Enhancement - Update web to v8.0.0-beta.1: #7930

Tags: web

We updated ownCloud Web to v8.0.0-beta.1. Please refer to the changelog (linked)
for details on the web release.

Summary * Change

owncloud/web#9698: Theme handling *
Enhancement owncloud/web#10111:
Registering right sidebar panels as extension * Enhancement
owncloud/web#10111: File sidebar
in viewer and editor apps

https://github.com/owncloud/ocis/pull/7930
https://github.com/owncloud/web/releases/tag/v8.0.0-beta.1
Enhancement - Update reva to v2.17.0: #7949

Changelog for reva 2.17.0 (2023-12-12) =======================================

The following sections list the changes in reva 2.17.0 relevant to reva users.
The changes are ordered by importance.
- Bugfix cs3org/reva#4278: Disable DEPTH infinity in PROPFIND
- Bugfix cs3org/reva#4318: Do not allow moves between shares
- Bugfix cs3org/reva#4290: Prevent panic when trying to move a non-existent file
- Bugfix cs3org/reva#4241: Allow an empty credentials chain in the auth middleware
- Bugfix cs3org/reva#4216: Fix an error message
- Bugfix cs3org/reva#4324: Fix capabilities decoding
- Bugfix cs3org/reva#4267: Fix concurrency issue
- Bugfix cs3org/reva#4362: Fix concurrent lookup
- Bugfix cs3org/reva#4336: Fix definition of "file-editor" role
- Bugfix cs3org/reva#4302: Fix checking of filename length
- Bugfix cs3org/reva#4366: Fix CS3 status code when looking up non existing share
- Bugfix cs3org/reva#4299: Fix HTTP verb of the generate-invite endpoint
- Bugfix cs3org/reva#4249: GetUserByClaim not working with MSAD for claim "userid"
- Bugfix cs3org/reva#4217: Fix missing case for "hide" in UpdateShares
- Bugfix cs3org/reva#4140: Fix missing etag in shares jail
- Bugfix cs3org/reva#4229: Fix destroying the Personal and Project spaces data
- Bugfix cs3org/reva#4193: Fix overwrite a file with an empty file
- Bugfix cs3org/reva#4365: Fix create public share
- Bugfix cs3org/reva#4380: Fix the public link update
- Bugfix cs3org/reva#4250: Fix race condition
- Bugfix cs3org/reva#4345: Fix conversion of custom ocs permissions to roles
- Bugfix cs3org/reva#4134: Fix share jail
- Bugfix cs3org/reva#4335: Fix public shares cleanup config
- Bugfix cs3org/reva#4338: Fix unlock via space API
- Bugfix cs3org/reva#4341: Fix spaceID in meta endpoint response
- Bugfix cs3org/reva#4351: Fix 500 when open public link
- Bugfix cs3org/reva#4352: Fix the tgz mime type
- Bugfix cs3org/reva#4388: Allow UpdateUserShare() to update just the expiration date
- Bugfix cs3org/reva#4214: Always pass adjusted default nats options
- Bugfix cs3org/reva#4291: Release lock when expired
- Bugfix cs3org/reva#4386: Remove dead enable_home config
- Bugfix cs3org/reva#4292: Return 403 when user is not permitted to lock
- Enhancement cs3org/reva#4389: Add audio and location props
- Enhancement cs3org/reva#4337: Check permissions before creating shares
- Enhancement cs3org/reva#4326: Add search mediatype filter
- Enhancement cs3org/reva#4367: Add GGS mime type
- Enhancement cs3org/reva#4194: Add hide flag to shares
- Enhancement cs3org/reva#4358: Add default permissions capability for links
- Enhancement cs3org/reva#4133: Add more metadata to locks
- Enhancement cs3org/reva#4353: Add support for .docxf files
- Enhancement cs3org/reva#4363: Add nats-js-kv store
- Enhancement cs3org/reva#4197: Add the Banned-Passwords List
- Enhancement cs3org/reva#4190: Add the password policies
- Enhancement cs3org/reva#4384: Add a retry postprocessing outcome and event
- Enhancement cs3org/reva#4271: Add search capability
- Enhancement cs3org/reva#4119: Add sse event
- Enhancement cs3org/reva#4392: Add additional permissions to service accounts
- Enhancement cs3org/reva#4344: Add url extension to mime type list
- Enhancement cs3org/reva#4372: Add validation to the public share provider
- Enhancement cs3org/reva#4244: Allow listing reveived shares by service accounts
- Enhancement cs3org/reva#4129: Auto-Accept Shares through ServiceAccounts
- Enhancement cs3org/reva#4374: Handle trashbin file listings concurrently
- Enhancement cs3org/reva#4325: Enforce Permissions
- Enhancement cs3org/reva#4368: Extract log initialization
- Enhancement cs3org/reva#4375: Introduce UploadSessionLister interface
- Enhancement cs3org/reva#4268: Implement sharing roles
- Enhancement cs3org/reva#4160: Improve utils pkg
- Enhancement cs3org/reva#4335: Add sufficient permissions check function
- Enhancement cs3org/reva#4281: Port OCM changes from master
- Enhancement cs3org/reva#4270: Opt out of public link password enforcement
- Enhancement cs3org/reva#4181: Change the variable names for the password policy
- Enhancement cs3org/reva#4256: Rename hidden share variable name
- Enhancement cs3org/reva#3926: Service Accounts
- Enhancement cs3org/reva#4359: Update go-ldap to v3.4.6
- Enhancement cs3org/reva#4170: Update password policies
- Enhancement cs3org/reva#4232: Improve error handling in utils package
https://github.com/owncloud/ocis/pull/7949

ocis - 5.0.0-alpha.6

Published by JammingBen 11 months ago

Changelog for 5.0.0-alpha.6

Changes in 5.0.0-alpha.6

Summary

Bugfix - Fix the public link update: #7862
Enhancement - Add validation to public share provider: #7877
Enhancement - Store and index metadata: #7886
Enhancement - Allow regular users to list other users: #7887
Enhancement - Update web to v8.0.0-alpha.13: #7918

Details

Bugfix - Fix the public link update: #7862

We fixed a bug when normal users can update the public link to delete its
password if permission is not sent in data.

https://github.com/owncloud/ocis/issues/7821
https://github.com/owncloud/ocis/pull/7862
Enhancement - Add validation to public share provider: #7877

We changed the implementation of the public share provider in reva to do the
validation on the CS3 Api side. This makes the implementation on the graph side
smaller.

https://github.com/owncloud/ocis/issues/6993
https://github.com/owncloud/ocis/pull/7877
Enhancement - Store and index metadata: #7886

Location metadata is now extracted and stored by the search service. It is
available for driveItems in a folder listing using the Graph API.

https://github.com/owncloud/ocis/pull/7886
Enhancement - Allow regular users to list other users: #7887

Regular users can search for other users and groups. The following limitations
apply:
- Only search queries are allowed (using the $search=term query parameter)
- The search term needs to have at least 3 characters
- for user searches the result set only contains the attributes displayName, userType, mail and id
- for group searches the result set only contains the attributes displayName, groupTypes and id
https://github.com/owncloud/ocis/issues/7782
https://github.com/owncloud/ocis/pull/7887
Enhancement - Update web to v8.0.0-alpha.13: #7918

Tags: web

We updated ownCloud Web to v8.0.0-alpha.13. Please refer to the changelog
(linked) for details on the web release.

Summary * Enhancement

owncloud/web#10104: Create link
modal

https://github.com/owncloud/ocis/pull/7918
https://github.com/owncloud/web/releases/tag/v8.0.0-alpha.13

ocis - 4.0.4

Published by ownclouders 11 months ago

Changes in 4.0.4

Summary

Enhancement - Update reva to improve trashbin listing: #7858

Details

Enhancement - Update reva to improve trashbin listing: #7858

Changelog for reva 2.13.3
- Enhancement cs3org/reva#4377: Handle trashbin file listings concurrently
https://github.com/owncloud/ocis/pull/7858

ocis - 5.0.0-alpha.5

Published by kulmann 11 months ago

Changelog for 5.0.0

Changes in 5.0.0

Summary

Bugfix - Return 423 status code on tag create: #7596
Bugfix - Delete outdated userlog events: #7410
Bugfix - Don't reload web config: #7369
Bugfix - Fix the auth service env variable: #7523
Bugfix - Fix the kql-bleve search: #7290
Bugfix - Fix wrong compile date: #6132
Bugfix - Fix default language fallback: #7465
Bugfix - Disable DEPTH infinity in PROPFIND: #7746
Bugfix - Fix 403 in docs pipeline: #7509
Bugfix - Fix libre-graph status codes: #7678
Bugfix - Check school number for duplicates before adding a school: #7351
Bugfix - Do not reset state of received shares when rebuilding the jsoncs3 index: #7319
Bugfix - Fix last month search: #31145
Bugfix - Set existing mountpoint on auto accept: #7592
Bugfix - Deprecate redundant encryptions settings for notification service: #7345
Bugfix - Fix search service start: #7795
Bugfix - Fix unlock via space API: #7726
Bugfix - Fix the tgz mime type: #7772
Bugfix - Token storage config fixed: #7528
Bugfix - Fix preview request 500 error when made too early: #7502
Bugfix - GetUserByClaim fixed for Active Directory: #7476
Bugfix - Bring back the USERS_LDAP_USER_SCHEMA_ID variable: #7312
Bugfix - Set the mountpoint on auto accept: #7460
Change - Auto-Accept Shares: #7097
Change - Change the default TUS chunk size: #7273
Enhancement - Support spec violating AD FS access token issuer: #7138
Enhancement - Add banned password list to the default deployments: #7784
Enhancement - Default link permission config: #7783
Enhancement - Add search MediaType filter: #7602
Enhancement - Add "Last modified" filter Chip: #7455
Enhancement - Add the Banned Passwords List: #4197
Enhancement - Add the password policies: #7285
Enhancement - Add user filter startswith and contains: #7739
Enhancement - Allow configuring additional routes: #7740
Enhancement - Update to go 1.21: #7794
Enhancement - Bump reva: #7721
Enhancement - Edit wrong named enves: #7406
Enhancement - Introduce clientlog service: #7217
Enhancement - Set default for Async Uploads to true: #7416
Enhancement - The default language added: #7417
Enhancement - Config for disabling Web extensions: #7486
Enhancement - Add login URL config: #7317
Enhancement - Add support for audio files to the thumbnails service: #7491
Enhancement - Add user list requires filter config: #7866
Enhancement - New value auto for NOTIFICATIONS_SMTP_AUTHENTICATION: #7356
Enhancement - Tika content extraction cleanup for search: #7553
Enhancement - Add Sharing NG list permissions endpoint: #7805
Enhancement - Add Sharing NG endpoints: #7633
Enhancement - SSE for messaging: #6992
Enhancement - Store and index metadata: #7490
Enhancement - Implement sharing roles: #7524
Enhancement - Improve SSE format: #7325
Enhancement - Keyword Query Language (KQL) search syntax: #7212
Enhancement - Add OCIS_LDAP_BIND_PASSWORD as replacement for LDAP_BIND_PASSWORD: #7176
Enhancement - Introduce natsjs registry: #7272
Enhancement - Add new permissions: #7700
Enhancement - Add new permission to delete public link password: #7538
Enhancement - The password policies change request: #7264
Enhancement - Add preferred language to user settings: #7720
Enhancement - Proxy uses service accounts for provisioning: #7240
Enhancement - Add config to enforce passwords on all public links: #7547
Enhancement - Introduce service accounts: #6427
Enhancement - Make sse service scalable: #7382
Enhancement - Allow configuring storage registry with envvars: #7554
Enhancement - Thumbnail generation with image processors: #7409
Enhancement - Update web to v8.0.0-alpha.12: #7883
Enhancement - Configs for Web embed mode: #7670

Details

Bugfix - Return 423 status code on tag create: #7596

When a file is locked, return 423 status code instead 500 on tag create

https://github.com/owncloud/ocis/pull/7596
Bugfix - Delete outdated userlog events: #7410

Userlog will now delete events when the user has no longer access to the underlying resource

https://github.com/owncloud/ocis/pull/7410
Bugfix - Don't reload web config: #7369

When requesting config.json file from the server, web service would reload the file if a path
is set. This will remove config entries set via Envvar. Since we want to have the possiblity to
set configuration from both sources we removed the reading from file. The file will still be
loaded on service startup.

https://github.com/owncloud/ocis/pull/7369
Bugfix - Fix the auth service env variable: #7523

We the auth service env variable to the service specific name. Before it was configurable via
AUTH_MACHINE_JWT_SECRET and now is configurable via AUTH_SERVICE_JWT_SECRET.

https://github.com/owncloud/ocis/pull/7523
Bugfix - Fix the kql-bleve search: #7290

We fixed the issue when 500 on searches that contain ":". Added the characters escaping
according to https://blevesearch.com/docs/Query-String-Query/

https://github.com/owncloud/ocis/issues/7282
https://github.com/owncloud/ocis/pull/7290
Bugfix - Fix wrong compile date: #6132

We fixed that current date is always printed.

https://github.com/owncloud/ocis/issues/6124
https://github.com/owncloud/ocis/pull/6132
Bugfix - Fix default language fallback: #7465

Add the default language for the webui, the settings, userlog and notification service.

https://github.com/owncloud/ocis/issues/7465
Bugfix - Disable DEPTH infinity in PROPFIND: #7746

We fixed the Disabled DEPTH infinity in PROPFIND for: Personal /remote.php/dav/files/admin
Public link share /remote.php/dav/public-files/ Trashbin
/remote.php/dav/spaces/trash-bin/

https://github.com/owncloud/ocis/issues/7359
https://github.com/owncloud/ocis/pull/7746
https://github.com/cs3org/reva/pull/4278
Bugfix - Fix 403 in docs pipeline: #7509

Docs pipeline was not routed through our proxies which could lead to requests being
blacklisted

https://github.com/owncloud/ocis/issues/7509
https://github.com/owncloud/ocis/pull/7511
Bugfix - Fix libre-graph status codes: #7678

Creating group: https://owncloud.dev/libre-graph-api/#/groups/CreateGroup changed:
200 -> 201

Creating users: https://owncloud.dev/libre-graph-api/#/users/CreateUser changed: 200
-> 201

Export GDPR: https://owncloud.dev/libre-graph-api/#/user/ExportPersonalData
changed: 201 -> 202

https://github.com/owncloud/ocis/issues/7678
https://github.com/owncloud/ocis/pull/7705
Bugfix - Check school number for duplicates before adding a school: #7351

We fixed an issue that allowed to create two schools with the same school number

https://github.com/owncloud/enterprise/issues/6051
https://github.com/owncloud/ocis/pull/7351
Bugfix - Do not reset state of received shares when rebuilding the jsoncs3 index: #7319

We fixed a problem with the "ocis migrate rebuild-jsoncs3-indexes" command which reset the
state of received shares to "pending".

https://github.com/owncloud/ocis/issues/7319
Bugfix - Fix last month search: #31145

We've fixed the last month search edge case when currently is 31-th.

Https://github.com/owncloud/ocis/issues/7629
https://github.com/owncloud/ocis/pull/7742

https://github.com/golang/go/issues/31145
The
issue
is
related
to
the
build-in
package
behavior
Bugfix - Set existing mountpoint on auto accept: #7592

When already having a share for a specific resource, auto accept would use custom mountpoints
which lead to other errors. Now auto-accept is using the existing mountpoint of a share.

https://github.com/owncloud/ocis/pull/7592
Bugfix - Deprecate redundant encryptions settings for notification service: #7345

The values tls and ssl for the smtp_encryption configuration setting are duplicates of
starttls and ssltls. They have been marked as deprecated. A warning will be logged when
they are still used. Please use starttls instead for tls and ssltls instead of `ssl.

https://github.com/owncloud/ocis/issues/7345
Bugfix - Fix search service start: #7795

The search service would sometimes not start correctly because config values are
overwritten by default configuration.

https://github.com/owncloud/ocis/pull/7795
Bugfix - Fix unlock via space API: #7726

We fixed a bug that caused Error 500 when user try to unlock file using fileid The
handleSpaceUnlock has been added

https://github.com/owncloud/ocis/issues/7708
https://github.com/owncloud/ocis/pull/7726
https://github.com/cs3org/reva/pull/4338
Bugfix - Fix the tgz mime type: #7772

We have fixed a bug when the tgz mime type was not "application/gzip"

https://github.com/owncloud/ocis/issues/7744
https://github.com/owncloud/ocis/pull/7772
Bugfix - Token storage config fixed: #7528

The token storage config in the config.json for web was missing when it was set to false.

https://github.com/owncloud/ocis/issues/7462
https://github.com/owncloud/ocis/pull/7528
Bugfix - Fix preview request 500 error when made too early: #7502

Fix the status code and message when a thumbnail request is made too early.

https://github.com/owncloud/ocis/issues/7502
https://github.com/owncloud/ocis/pull/7507
Bugfix - GetUserByClaim fixed for Active Directory: #7476

The reva ldap backend for the users and groups service did not hex escape binary uuids in LDAP
filter correctly this could cause problems in Active Directory setups for services using the
GetUserByClaim CS3 request with claim "userid".

https://github.com/owncloud/ocis/issues/7469
https://github.com/owncloud/ocis/pull/7476
Bugfix - Bring back the USERS_LDAP_USER_SCHEMA_ID variable: #7312

We reintroduced the USERS_LDAP_USER_SCHEMA_ID variable which was accidently removed from
the users service with the 4.0.0 release.

https://github.com/owncloud/ocis/issues/7312
https://github.com/owncloud/ocis-charts/issues/397
Bugfix - Set the mountpoint on auto accept: #7460

On shares auto accept set a mountpoint with same logic as ocs handler

https://github.com/owncloud/ocis/pull/7460
Change - Auto-Accept Shares: #7097

Automatically accepts shares. This feature is active by default and can be deactivated via the
environment variable FRONTEND_AUTO_ACCEPT_SHARES.

https://github.com/owncloud/ocis/pull/7097
Change - Change the default TUS chunk size: #7273

We changed the default TUS chunk size from 100MB to 10MB. You can still use the old value by
configuring it in your deployment.

https://github.com/owncloud/ocis/pull/7273
Enhancement - Support spec violating AD FS access token issuer: #7138

AD FS /adfs/.well-known/openid-configuration has an optional access_token_issuer
which, in violation of the OpenID Connect spec, takes precedence over issuer.

https://github.com/owncloud/ocis/pull/7138
Enhancement - Add banned password list to the default deployments: #7784

We add banned password list to the default deployments

https://github.com/owncloud/ocis/issues/7724
https://github.com/owncloud/ocis/pull/7784
Enhancement - Default link permission config: #7783

A new config for default link permissions that is being announced via capabilities has been
added. It defaults to 1 (= public link with viewer permissions).

https://github.com/owncloud/web/issues/9919
https://github.com/owncloud/ocis/pull/7783
Enhancement - Add search MediaType filter: #7602

Add filter MediaType filter shortcuts to search for specific document types. For example, a
search query mediatype:documents will search for files with the following mimetypes:

Application/msword
MimeType:application/vnd.openxmlformats-officedocument.wordprocessingml.document
MimeType:application/vnd.oasis.opendocument.text MimeType:text/plain
MimeType:text/markdown MimeType:application/rtf
MimeType:application/vnd.apple.pages

Besides the document shorthand, it also contains following:
- file
- folder
- document
- spreadsheet
- presentation
- pdf
- image
- video
- audio
- archive
File

Folder

Document:

Application/msword
application/vnd.openxmlformats-officedocument.wordprocessingml.document
application/vnd.oasis.opendocument.text text/plain text/markdown application/rtf
application/vnd.apple.pages

Spreadsheet:

Application/vnd.ms-excel application/vnd.oasis.opendocument.spreadsheet text/csv
application/vnd.openxmlformats-officedocument.spreadsheetml.sheet
application/vnd.oasis.opendocument.spreadsheet application/vnd.apple.numbers

Presentations:

Application/vnd.ms-powerpoint
application/vnd.openxmlformats-officedocument.presentationml.presentation
application/vnd.oasis.opendocument.presentation application/vnd.apple.keynote

PDF

Application/pdf

Image:

Image/*

Video:

Video/*

Audio:

Audio/*

Archive (zip ...):

Application/zip application/x-tar application/x-gzip application/x-7z-compressed
application/x-rar-compressed application/x-bzip2 application/x-bzip
application/x-tgz

https://github.com/owncloud/ocis/issues/7432
https://github.com/owncloud/ocis/pull/7602
Enhancement - Add "Last modified" filter Chip: #7455

Add "Last modified" filter Chip

https://github.com/owncloud/ocis/issues/7431
https://github.com/owncloud/ocis/issues/7551
https://github.com/owncloud/ocis/pull/7455
Enhancement - Add the Banned Passwords List: #4197

Added an option to enable a password check against a banned passwords list OCIS-3809

https://github.com/cs3org/reva/pull/4197
https://github.com/owncloud/ocis/pull/7314
Enhancement - Add the password policies: #7285

Add the password policies OCIS-3767

https://github.com/owncloud/ocis/pull/7285
https://github.com/owncloud/ocis/pull/7194
https://github.com/cs3org/reva/pull/4147
Enhancement - Add user filter startswith and contains: #7739

We add two new filters to the user list endpoint. The startswith filter allows to filter users
by the beginning of their name. The contains filter allows to filter users by a substring of
their name.

https://github.com/owncloud/ocis/issues/5486
https://github.com/owncloud/ocis/pull/7739
Enhancement - Allow configuring additional routes: #7740

Allows adding custom routes to the ocis proxy. This enables customs ocis extensions

https://github.com/owncloud/ocis/pull/7740
Enhancement - Update to go 1.21: #7794

We updated to go 1.21.

https://github.com/owncloud/ocis/pull/7794
Enhancement - Bump reva: #7721

Bumps reva version

https://github.com/owncloud/ocis/pull/7721
https://github.com/owncloud/ocis/pull/7727
https://github.com/owncloud/ocis/pull/7752
Enhancement - Edit wrong named enves: #7406

Checked and changed the envvars specified in the task and also removed those that are no longer
used.

https://github.com/owncloud/ocis/pull/7406
Enhancement - Introduce clientlog service: #7217

Add the clientlog service which will send machine readable notifications to clients

https://github.com/owncloud/ocis/pull/7217
Enhancement - Set default for Async Uploads to true: #7416

Async Uploads are meanwhile standard and needed for multiple features. Hence we default them
to true

https://github.com/owncloud/ocis/pull/7416
Enhancement - The default language added: #7417

The ability of configuration the default language has been added to the setting service.

https://github.com/owncloud/enterprise/issues/5915
https://github.com/owncloud/ocis/pull/7417
Enhancement - Config for disabling Web extensions: #7486

A new config for disabling specific Web extensions via their id has been added.

https://github.com/owncloud/web/issues/8524
https://github.com/owncloud/ocis/pull/7486
Enhancement - Add login URL config: #7317

Introduce a config to set the web login URL via WEB_OPTION_LOGIN_URL.

https://github.com/owncloud/ocis/pull/7317
Enhancement - Add support for audio files to the thumbnails service: #7491

The thumbnails service can now extract artwork from audio files (mp3, ogg, flac) and render it
just like any other image.

https://github.com/owncloud/ocis/pull/7491
Enhancement - Add user list requires filter config: #7866

Introduce a config to require filters in order to list users in Web via
WEB_OPTION_USER_LIST_REQUIRES_FILTER.

https://github.com/owncloud/ocis/pull/7866
Enhancement - New value auto for NOTIFICATIONS_SMTP_AUTHENTICATION: #7356

This cause the notifications service to automatically pick a suitable authentication method
to use with the configured SMTP server. This is also the new default behavior. The previous
default was to not use authentication at all.

https://github.com/owncloud/ocis/issues/7356
Enhancement - Tika content extraction cleanup for search: #7553

So far it has not been possible to determine whether the content for search should be cleaned up
of 'stop words' or not. Stop words are filling words like "I, you, have, am" etc and defined by the
search engine.

The behaviour can now be set with the newly introduced settings option
SEARCH_EXTRACTOR_TIKA_CLEAN_STOP_WORDS=false which is enabled by default.

In addition, the stop word cleanup is no longer as aggressive and now ignores numbers, urls,
basically everything except the defined stop words.

https://github.com/owncloud/ocis/issues/6674
https://github.com/owncloud/ocis/pull/7553
Enhancement - Add Sharing NG list permissions endpoint: #7805

We've added a new sharing ng endpoint which lists all permissions for a given item.

https://github.com/owncloud/ocis/issues/6993
https://github.com/owncloud/ocis/pull/7805
Enhancement - Add Sharing NG endpoints: #7633

We've added new sharing ng endpoints to the graph beta api. The following endpoints are added:
- /v1beta1/me/drive/sharedByMe
- /v1beta1/me/drive/sharedWithMe
- /v1beta1/roleManagement/permissions/roleDefinitions
- /v1beta1/roleManagement/permissions/roleDefinitions/{roleID}
- /v1beta1/drives/{drive-id}/items/{item-id}/createLink (create a sharing link)
https://github.com/owncloud/ocis/issues/7436
https://github.com/owncloud/ocis/issues/6993
https://github.com/owncloud/ocis/pull/7633
https://github.com/owncloud/ocis/pull/7686
https://github.com/owncloud/ocis/pull/7684
https://github.com/owncloud/ocis/pull/7683
https://github.com/owncloud/ocis/pull/7239
https://github.com/owncloud/ocis/pull/7687
https://github.com/owncloud/ocis/pull/7751
https://github.com/owncloud/libre-graph-api/pull/112
Enhancement - SSE for messaging: #6992

So far, sse has only been used to exchange messages between the server and the client. In order to
be able to send more content to the client, we have moved the endpoint to a separate service and
are now also using it for other notifications like:
- notify postprocessing state changes.
- notify file locking and unlocking.
- ... @toDo
https://github.com/owncloud/ocis/pull/6992
Enhancement - Store and index metadata: #7490

Audio metadata is now extracted and stored by the search service. It is available for
driveItems in a folder listing using the Graph API.

https://github.com/owncloud/ocis/pull/7490
Enhancement - Implement sharing roles: #7524

Implement libre graph sharing roles

https://github.com/owncloud/ocis/issues/7418
https://github.com/owncloud/ocis/pull/7524
Enhancement - Improve SSE format: #7325

Improve format of sse notifications

https://github.com/owncloud/ocis/pull/7325
Enhancement - Keyword Query Language (KQL) search syntax: #7212

We've introduced support for
KQL
as the default oCIS search query language.

Simple queries:
- tag:golden tag:"silver"
- name:file.txt name:"file.docx"
- content:ahab content:"captain aha*"
Date/-range queries
- Mtime:"2023-09-05T08:42:11.23554+02:00"
- Mtime>"2023-09-05T08:42:11.23554+02:00"
- Mtime>="2023-09-05T08:42:11.23554+02:00"
- Mtime<"2023-09-05T08:42:11.23554+02:00"
- Mtime<="2023-09-05T08:42:11.23554+02:00"
- Mtime:today - range: start of today till end of today
- Mtime:yesterday - range: start of yesterday till end of yesterday
- Mtime:"this week" - range: start of this week till end of this week
- Mtime:"this month" - range: start of this month till end of this month
- Mtime:"last month" - range: start of last month till end of last month
- Mtime:"this year" - range: start of this year till end of this year
- Mtime:"last year" - range: start of last year till end of last year
Conjunctive normal form queries:
- tag:golden AND tag:"silver, tag:golden OR tag:"silver, tag:golden NOT tag:"silver
- (tag:book content:ahab*), tag:(book pdf)
Complex queries:
- (name:"moby di*" OR tag:bestseller) AND tag:book NOT tag:read
https://github.com/owncloud/ocis/issues/7042
https://github.com/owncloud/ocis/issues/7179
https://github.com/owncloud/ocis/issues/7114
https://github.com/owncloud/web/issues/9636
https://github.com/owncloud/web/issues/9646
https://github.com/owncloud/ocis/pull/7212
https://github.com/owncloud/ocis/pull/7043
https://github.com/owncloud/ocis/pull/7247
https://github.com/owncloud/ocis/pull/7248
https://github.com/owncloud/ocis/pull/7254
https://github.com/owncloud/ocis/pull/7262
https://github.com/owncloud/web/pull/9653
https://github.com/owncloud/web/pull/9672
Enhancement - Add OCIS_LDAP_BIND_PASSWORD as replacement for LDAP_BIND_PASSWORD: #7176

The enviroment variable OCIS_LDAP_BIND_PASSWORD was added to be more consistent with all
other global LDAP variables.

LDAP_BIND_PASSWORD is deprecated now and scheduled for removal with the 5.0.0 release.

We also deprecated LDAP_USER_SCHEMA_ID_IS_OCTETSTRING for removal with 5.0.0. The
replacement for it is OCIS_LDAP_USER_SCHEMA_ID_IS_OCTETSTRING.

https://github.com/owncloud/ocis/issues/7176
Enhancement - Introduce natsjs registry: #7272

Introduce a registry based on the natsjs object store

https://github.com/owncloud/ocis/issues/7272
https://github.com/owncloud/ocis/pull/7487
Enhancement - Add new permissions: #7700

Adds new permissions to admin/spaceadmin/user roles - Favorites.List allows / denies the
Favorites Listing Request - Favorites.Write is implemented to be enforced on marking/unmark
files as favouritesShare - Shares.Write permission denies / allows sharing completely for a
user on all share CUD requests. (User, Group)

https://github.com/owncloud/ocis/pull/7700
Enhancement - Add new permission to delete public link password: #7538

Users with this new permission can now delete passwords on read-only public links. The
permission is added to the default roles "Admin" and "Space Admin".

https://github.com/owncloud/ocis/issues/7538
https://github.com/owncloud/ocis/pull/7538
https://github.com/cs3org/reva/pull/4270
Enhancement - The password policies change request: #7264

The variables renaming OCIS-3767

https://github.com/cs3org/reva/pull/7264
Enhancement - Add preferred language to user settings: #7720

We have added the preferred language to the libre-graph api & added endpoints for that to ocis.

https://github.com/owncloud/ocis/issues/5455
https://github.com/owncloud/ocis/pull/7720
https://github.com/owncloud/libre-graph-api/pull/130
Enhancement - Proxy uses service accounts for provisioning: #7240

The proxy service now uses a service account for provsioning task, like role assignment and
user auto-provisioning. This cleans up some technical debt that required us to mint reva tokes
inside the proxy service.

https://github.com/owncloud/ocis/issues/5550
https://github.com/owncloud/ocis/pull/7240
Enhancement - Add config to enforce passwords on all public links: #7547

We added the config OCIS_SHARING_PUBLIC_SHARE_MUST_HAVE_PASSWORD to enforce passwords
on all public shares.

https://github.com/owncloud/ocis/issues/7539
https://github.com/owncloud/ocis/pull/7547
Enhancement - Introduce service accounts: #6427

Introduces service accounts to avoid impersonating users in async processes

https://github.com/owncloud/ocis/issues/5550
https://github.com/owncloud/ocis/pull/6427
Enhancement - Make sse service scalable: #7382

When running multiple sse instances some events would not be reported to the user. This is
fixed.

https://github.com/owncloud/ocis/pull/7382
Enhancement - Allow configuring storage registry with envvars: #7554

Introduced new envvars to configure the storage registry in the gateway service

https://github.com/owncloud/ocis/pull/7554
Enhancement - Thumbnail generation with image processors: #7409

Thumbnails can now be changed during creation, previously the images were always scaled to fit
the given frame, but it could happen that the images were cut off because they could not be placed
better due to the aspect ratio.

This pr introduces the possibility of specifying how the behavior should be, following
processors are available
- resize
- fit
- fill
- thumbnail
The processor can be applied by adding the processor query param to the request, e.g.
processor=fit, processor=fill, ...

To find out more how the individual processors work please read
https://github.com/disintegration/imaging

If no processor is provided it behaves the same as before (resize for gif's and thumbnail for all
other)

https://github.com/owncloud/enterprise/issues/6057
https://github.com/owncloud/ocis/issues/5179
https://github.com/owncloud/web/issues/7728
https://github.com/owncloud/ocis/pull/7409
Enhancement - Update web to v8.0.0-alpha.12: #7883

Tags: web

We updated ownCloud Web to v8.0.0-alpha.12. Please refer to the changelog (linked) for
details on the web release.

Summary * Bugfix

owncloud/web#9257: Filter out shares
without display name * Bugfix
owncloud/web#9483: PDF loading
Safari * Bugfix owncloud/web#9513: Set
or remove expiration date on group share not possible * Bugfix
owncloud/web#9529: Shared with action
menu label alignment * Bugfix
owncloud/web#9587: Internal public
link resolving * Bugfix
owncloud/web#9593: Audio- &
video-loading on Shared with me page * Bugfix
owncloud/web#9649: Add project space
filter * Bugfix owncloud/web#9663:
Respect the open-in-new-tab-config for external apps * Bugfix
owncloud/web#9670: Tiles view
accessibility * Bugfix
owncloud/web#9694: Special
characters in username * Bugfix
owncloud/web#9788: Create .space
folder if it does not exist * Bugfix
owncloud/web#9799: Link resolving
into default app * Bugfix
owncloud/web#9832: Copy quicklinks for
webkit navigator * Bugfix
owncloud/web#9843: Fix display path on
resources * Bugfix owncloud/web#9844:
Upload space image * Bugfix
owncloud/web#9861: Duplicated file
search request * Bugfix
owncloud/web#9873: Tags are no longer
editable for a locked file * Bugfix
owncloud/web#9881: Prevent rendering
of old/wrong set of resources in search list * Bugfix
owncloud/web#9915: Keep both folders
conflict in same-named folders * Bugfix
owncloud/web#9931: Enabling "invite
people" for password-protected folder/file * Bugfix
owncloud/web#10031: Icon extension
mapping * Bugfix owncloud/web#10065:
Logout page after token expiry * Bugfix
owncloud/web#10083: Disable
expiration date for alias link (internal) * Bugfix
owncloud/web#10092: Allow empty
search query in "in-here" search * Bugfix
owncloud/web#10096: Remove password
buttons on input if disabled * Change
owncloud/web#7338: Remove
deprecated code * Enhancement
owncloud/web#7317: Make login url
configurable * Enhancement
owncloud/web#7497: Permission
checks for shares and favorites * Enhancement
owncloud/web#7600: Scroll to newly
created folder * Enhancement
owncloud/web#9302: Application
unification * Enhancement
owncloud/web#9423: Show local loading
spinner in sharing button * Enhancement
owncloud/web#9441: File versions
tooltip with absolute date * Enhancement
owncloud/web#9441: Disabling
extensions * Enhancement
owncloud/web#9451: Add SSE to get
notifications instantly * Enhancement
owncloud/web#9525: Tags form improved *
Enhancement owncloud/web#9527: Don't
display confirmation dialog on file deletion * Enhancement
owncloud/web#9531: Personal shares
can be shown and hidden * Enhancement
owncloud/web#9552: Upload preparation
time * Enhancement owncloud/web#9561:
Indicate processing state * Enhancement
owncloud/web#9566: Display locking
information * Enhancement
owncloud/web#9584: Moving share's "set
expiration date" function * Enhancement
owncloud/web#9625: Add keyboard
navigation to spaces overview * Enhancement
owncloud/web#9627: Add batch actions to
spaces * Enhancement
owncloud/web#9653: Keyword Query
Language (KQL) search syntax * Enhancement
owncloud/web#9671: OcModal set buttons
to same width * Enhancement
owncloud/web#9682: Add password policy
compatibility * Enhancement
owncloud/web#9691: Password generator
for public links * Enhancement
owncloud/web#9696: Added app banner for
mobile devices * Enhancement
owncloud/web#9706: Unify sharing
expiration date menu items * Enhancement
owncloud/web#9727: Show error if
password is on a banned password list * Enhancement
owncloud/web#9771: Handle
postprocessing state via Server Sent Events * Enhancement
owncloud/web#9806: Preview image
presentation * Enhancement
owncloud/web#9809: Add editors to the
application menu * Enhancement
owncloud/web#9814: Registering nav
items as extension * Enhancement
owncloud/web#9815: Add new portal into
runtime to include footer * Enhancement
owncloud/web#9818: Add mode config
option * Enhancement
owncloud/web#9831: Last modified
filter chips * Enhancement
owncloud/web#9841: Add embed mode
actions * Enhancement
owncloud/web#9847: Provide vendor
neutral file icons * Enhancement
owncloud/web#9853: Show only create
folder button in embed mode * Enhancement
owncloud/web#9854: Search query term
linking * Enhancement
owncloud/web#9857: Add permission to
delete link passwords when password is enforced * Enhancement
owncloud/web#9858: Remove settings
icon from searchbar * Enhancement
owncloud/web#9863: Location picker in
embed mode * Enhancement
owncloud/web#9864: Search tags filter
chips style aligned * Enhancement
owncloud/web#9884: Enable dark theme on
importer * Enhancement
owncloud/web#9890: Create shortcuts *
Enhancement owncloud/web#9905: Manage
tags in details panel * Enhancement
owncloud/web#9906: Reorganize "New"
menu * Enhancement owncloud/web#9912:
Add media type filter chip * Enhancement
owncloud/web#9940: Display error
message for upload to locked folder * Enhancement
owncloud/web#9966: Support more
audio formats with correct icon * Enhancement
owncloud/web#10007: Additional
languages * Enhancement
owncloud/web#10013: Shared by
filter * Enhancement
owncloud/web#10014: Share search
filter * Enhancement
owncloud/web#10024: Duplicate space *
Enhancement owncloud/web#10037:
Default link permission * Enhancement
owncloud/web#10047: Add explaining
contextual helper to spaces overview * Enhancement
owncloud/web#10057: Folder tree
creation during upload * Enhancement
owncloud/web#10062: Show webdav
information in details view * Enhancement
owncloud/web#10072: Add
authentication delegation in the Embed mode * Enhancement
owncloud/web#10099: Support
mandatory filter while listing users * Enhancement
owncloud/web#10102: Registering
quick actions as extension

https://github.com/owncloud/ocis/pull/7883
https://github.com/owncloud/web/releases/tag/v8.0.0-alpha.12
Enhancement - Configs for Web embed mode: #7670

New configs for the Web embed mode have been added:
- enabled Defines if embed mode is enabled.
- target Defines how Web is being integrated when running in embed mode.
- messagesOrigin Defines a URL under which Web can be integrated via iFrame.
- delegateAuthentication Defines whether Web should require authentication to be done by the parent application.
- delegateAuthenticationOrigin Defines the host to validate the message event origin against when running Web in 'embed' mode.
https://github.com/owncloud/web/issues/9768
https://github.com/owncloud/ocis/pull/7670

ocis - 5.0.0-alpha.4

Published by kulmann 11 months ago

Changelog for 5.0.0

Changes in 5.0.0

Summary

Bugfix - Return 423 status code on tag create: #7596
Bugfix - Delete outdated userlog events: #7410
Bugfix - Don't reload web config: #7369
Bugfix - Fix the auth service env variable: #7523
Bugfix - Fix the kql-bleve search: #7290
Bugfix - Fix wrong compile date: #6132
Bugfix - Fix default language fallback: #7465
Bugfix - Disable DEPTH infinity in PROPFIND: #7746
Bugfix - Fix 403 in docs pipeline: #7509
Bugfix - Fix libre-graph status codes: #7678
Bugfix - Check school number for duplicates before adding a school: #7351
Bugfix - Do not reset state of received shares when rebuilding the jsoncs3 index: #7319
Bugfix - Fix last month search: #31145
Bugfix - Set existing mountpoint on auto accept: #7592
Bugfix - Deprecate redundant encryptions settings for notification service: #7345
Bugfix - Fix search service start: #7795
Bugfix - Fix unlock via space API: #7726
Bugfix - Fix the tgz mime type: #7772
Bugfix - Token storage config fixed: #7528
Bugfix - Fix preview request 500 error when made too early: #7502
Bugfix - GetUserByClaim fixed for Active Directory: #7476
Bugfix - Bring back the USERS_LDAP_USER_SCHEMA_ID variable: #7312
Bugfix - Set the mountpoint on auto accept: #7460
Change - Auto-Accept Shares: #7097
Change - Change the default TUS chunk size: #7273
Enhancement - Support spec violating AD FS access token issuer: #7138
Enhancement - Add banned password list to the default deployments: #7784
Enhancement - Default link permission config: #7783
Enhancement - Add search MediaType filter: #7602
Enhancement - Add "Last modified" filter Chip: #7455
Enhancement - Add the Banned Passwords List: #4197
Enhancement - Add the password policies: #7285
Enhancement - Add user filter startswith and contains: #7739
Enhancement - Allow configuring additional routes: #7740
Enhancement - Update to go 1.21: #7794
Enhancement - Bump reva: #7721
Enhancement - Edit wrong named enves: #7406
Enhancement - Introduce clientlog service: #7217
Enhancement - Set default for Async Uploads to true: #7416
Enhancement - The default language added: #7417
Enhancement - Config for disabling Web extensions: #7486
Enhancement - Add login URL config: #7317
Enhancement - Add support for audio files to the thumbnails service: #7491
Enhancement - New value auto for NOTIFICATIONS_SMTP_AUTHENTICATION: #7356
Enhancement - Tika content extraction cleanup for search: #7553
Enhancement - Add Sharing NG list permissions endpoint: #7805
Enhancement - Add Sharing NG endpoints: #7633
Enhancement - SSE for messaging: #6992
Enhancement - Store and index metadata: #7490
Enhancement - Implement sharing roles: #7524
Enhancement - Improve SSE format: #7325
Enhancement - Keyword Query Language (KQL) search syntax: #7212
Enhancement - Add OCIS_LDAP_BIND_PASSWORD as replacement for LDAP_BIND_PASSWORD: #7176
Enhancement - Introduce natsjs registry: #7272
Enhancement - Add new permissions: #7700
Enhancement - Add new permission to delete public link password: #7538
Enhancement - The password policies change request: #7264
Enhancement - Add preferred language to user settings: #7720
Enhancement - Proxy uses service accounts for provisioning: #7240
Enhancement - Add config to enforce passwords on all public links: #7547
Enhancement - Introduce service accounts: #6427
Enhancement - Make sse service scalable: #7382
Enhancement - Allow configuring storage registry with envvars: #7554
Enhancement - Thumbnail generation with image processors: #7409
Enhancement - Update web to v8.0.0: #7852
Enhancement - Configs for Web embed mode: #7670

Details

Bugfix - Return 423 status code on tag create: #7596

When a file is locked, return 423 status code instead 500 on tag create

https://github.com/owncloud/ocis/pull/7596
Bugfix - Delete outdated userlog events: #7410

Userlog will now delete events when the user has no longer access to the underlying resource

https://github.com/owncloud/ocis/pull/7410
Bugfix - Don't reload web config: #7369

When requesting config.json file from the server, web service would reload the file if a path
is set. This will remove config entries set via Envvar. Since we want to have the possiblity to
set configuration from both sources we removed the reading from file. The file will still be
loaded on service startup.

https://github.com/owncloud/ocis/pull/7369
Bugfix - Fix the auth service env variable: #7523

We the auth service env variable to the service specific name. Before it was configurable via
AUTH_MACHINE_JWT_SECRET and now is configurable via AUTH_SERVICE_JWT_SECRET.

https://github.com/owncloud/ocis/pull/7523
Bugfix - Fix the kql-bleve search: #7290

We fixed the issue when 500 on searches that contain ":". Added the characters escaping
according to https://blevesearch.com/docs/Query-String-Query/

https://github.com/owncloud/ocis/issues/7282
https://github.com/owncloud/ocis/pull/7290
Bugfix - Fix wrong compile date: #6132

We fixed that current date is always printed.

https://github.com/owncloud/ocis/issues/6124
https://github.com/owncloud/ocis/pull/6132
Bugfix - Fix default language fallback: #7465

Add the default language for the webui, the settings, userlog and notification service.

https://github.com/owncloud/ocis/issues/7465
Bugfix - Disable DEPTH infinity in PROPFIND: #7746

We fixed the Disabled DEPTH infinity in PROPFIND for: Personal /remote.php/dav/files/admin
Public link share /remote.php/dav/public-files/ Trashbin
/remote.php/dav/spaces/trash-bin/

https://github.com/owncloud/ocis/issues/7359
https://github.com/owncloud/ocis/pull/7746
https://github.com/cs3org/reva/pull/4278
Bugfix - Fix 403 in docs pipeline: #7509

Docs pipeline was not routed through our proxies which could lead to requests being
blacklisted

https://github.com/owncloud/ocis/issues/7509
https://github.com/owncloud/ocis/pull/7511
Bugfix - Fix libre-graph status codes: #7678

Creating group: https://owncloud.dev/libre-graph-api/#/groups/CreateGroup changed:
200 -> 201

Creating users: https://owncloud.dev/libre-graph-api/#/users/CreateUser changed: 200
-> 201

Export GDPR: https://owncloud.dev/libre-graph-api/#/user/ExportPersonalData
changed: 201 -> 202

https://github.com/owncloud/ocis/issues/7678
https://github.com/owncloud/ocis/pull/7705
Bugfix - Check school number for duplicates before adding a school: #7351

We fixed an issue that allowed to create two schools with the same school number

https://github.com/owncloud/enterprise/issues/6051
https://github.com/owncloud/ocis/pull/7351
Bugfix - Do not reset state of received shares when rebuilding the jsoncs3 index: #7319

We fixed a problem with the "ocis migrate rebuild-jsoncs3-indexes" command which reset the
state of received shares to "pending".

https://github.com/owncloud/ocis/issues/7319
Bugfix - Fix last month search: #31145

We've fixed the last month search edge case when currently is 31-th.

Https://github.com/owncloud/ocis/issues/7629
https://github.com/owncloud/ocis/pull/7742

https://github.com/golang/go/issues/31145
The
issue
is
related
to
the
build-in
package
behavior
Bugfix - Set existing mountpoint on auto accept: #7592

When already having a share for a specific resource, auto accept would use custom mountpoints
which lead to other errors. Now auto-accept is using the existing mountpoint of a share.

https://github.com/owncloud/ocis/pull/7592
Bugfix - Deprecate redundant encryptions settings for notification service: #7345

The values tls and ssl for the smtp_encryption configuration setting are duplicates of
starttls and ssltls. They have been marked as deprecated. A warning will be logged when
they are still used. Please use starttls instead for tls and ssltls instead of `ssl.

https://github.com/owncloud/ocis/issues/7345
Bugfix - Fix search service start: #7795

The search service would sometimes not start correctly because config values are
overwritten by default configuration.

https://github.com/owncloud/ocis/pull/7795
Bugfix - Fix unlock via space API: #7726

We fixed a bug that caused Error 500 when user try to unlock file using fileid The
handleSpaceUnlock has been added

https://github.com/owncloud/ocis/issues/7708
https://github.com/owncloud/ocis/pull/7726
https://github.com/cs3org/reva/pull/4338
Bugfix - Fix the tgz mime type: #7772

We have fixed a bug when the tgz mime type was not "application/gzip"

https://github.com/owncloud/ocis/issues/7744
https://github.com/owncloud/ocis/pull/7772
Bugfix - Token storage config fixed: #7528

The token storage config in the config.json for web was missing when it was set to false.

https://github.com/owncloud/ocis/issues/7462
https://github.com/owncloud/ocis/pull/7528
Bugfix - Fix preview request 500 error when made too early: #7502

Fix the status code and message when a thumbnail request is made too early.

https://github.com/owncloud/ocis/issues/7502
https://github.com/owncloud/ocis/pull/7507
Bugfix - GetUserByClaim fixed for Active Directory: #7476

The reva ldap backend for the users and groups service did not hex escape binary uuids in LDAP
filter correctly this could cause problems in Active Directory setups for services using the
GetUserByClaim CS3 request with claim "userid".

https://github.com/owncloud/ocis/issues/7469
https://github.com/owncloud/ocis/pull/7476
Bugfix - Bring back the USERS_LDAP_USER_SCHEMA_ID variable: #7312

We reintroduced the USERS_LDAP_USER_SCHEMA_ID variable which was accidently removed from
the users service with the 4.0.0 release.

https://github.com/owncloud/ocis/issues/7312
https://github.com/owncloud/ocis-charts/issues/397
Bugfix - Set the mountpoint on auto accept: #7460

On shares auto accept set a mountpoint with same logic as ocs handler

https://github.com/owncloud/ocis/pull/7460
Change - Auto-Accept Shares: #7097

Automatically accepts shares. This feature is active by default and can be deactivated via the
environment variable FRONTEND_AUTO_ACCEPT_SHARES.

https://github.com/owncloud/ocis/pull/7097
Change - Change the default TUS chunk size: #7273

We changed the default TUS chunk size from 100MB to 10MB. You can still use the old value by
configuring it in your deployment.

https://github.com/owncloud/ocis/pull/7273
Enhancement - Support spec violating AD FS access token issuer: #7138

AD FS /adfs/.well-known/openid-configuration has an optional access_token_issuer
which, in violation of the OpenID Connect spec, takes precedence over issuer.

https://github.com/owncloud/ocis/pull/7138
Enhancement - Add banned password list to the default deployments: #7784

We add banned password list to the default deployments

https://github.com/owncloud/ocis/issues/7724
https://github.com/owncloud/ocis/pull/7784
Enhancement - Default link permission config: #7783

A new config for default link permissions that is being announced via capabilities has been
added. It defaults to 1 (= public link with viewer permissions).

https://github.com/owncloud/web/issues/9919
https://github.com/owncloud/ocis/pull/7783
Enhancement - Add search MediaType filter: #7602

Add filter MediaType filter shortcuts to search for specific document types. For example, a
search query mediatype:documents will search for files with the following mimetypes:

Application/msword
MimeType:application/vnd.openxmlformats-officedocument.wordprocessingml.document
MimeType:application/vnd.oasis.opendocument.text MimeType:text/plain
MimeType:text/markdown MimeType:application/rtf
MimeType:application/vnd.apple.pages

Besides the document shorthand, it also contains following:
- file
- folder
- document
- spreadsheet
- presentation
- pdf
- image
- video
- audio
- archive
File

Folder

Document:

Application/msword
application/vnd.openxmlformats-officedocument.wordprocessingml.document
application/vnd.oasis.opendocument.text text/plain text/markdown application/rtf
application/vnd.apple.pages

Spreadsheet:

Application/vnd.ms-excel application/vnd.oasis.opendocument.spreadsheet text/csv
application/vnd.openxmlformats-officedocument.spreadsheetml.sheet
application/vnd.oasis.opendocument.spreadsheet application/vnd.apple.numbers

Presentations:

Application/vnd.ms-powerpoint
application/vnd.openxmlformats-officedocument.presentationml.presentation
application/vnd.oasis.opendocument.presentation application/vnd.apple.keynote

PDF

Application/pdf

Image:

Image/*

Video:

Video/*

Audio:

Audio/*

Archive (zip ...):

Application/zip application/x-tar application/x-gzip application/x-7z-compressed
application/x-rar-compressed application/x-bzip2 application/x-bzip
application/x-tgz

https://github.com/owncloud/ocis/issues/7432
https://github.com/owncloud/ocis/pull/7602
Enhancement - Add "Last modified" filter Chip: #7455

Add "Last modified" filter Chip

https://github.com/owncloud/ocis/issues/7431
https://github.com/owncloud/ocis/issues/7551
https://github.com/owncloud/ocis/pull/7455
Enhancement - Add the Banned Passwords List: #4197

Added an option to enable a password check against a banned passwords list OCIS-3809

https://github.com/cs3org/reva/pull/4197
https://github.com/owncloud/ocis/pull/7314
Enhancement - Add the password policies: #7285

Add the password policies OCIS-3767

https://github.com/owncloud/ocis/pull/7285
https://github.com/owncloud/ocis/pull/7194
https://github.com/cs3org/reva/pull/4147
Enhancement - Add user filter startswith and contains: #7739

We add two new filters to the user list endpoint. The startswith filter allows to filter users
by the beginning of their name. The contains filter allows to filter users by a substring of
their name.

https://github.com/owncloud/ocis/issues/5486
https://github.com/owncloud/ocis/pull/7739
Enhancement - Allow configuring additional routes: #7740

Allows adding custom routes to the ocis proxy. This enables customs ocis extensions

https://github.com/owncloud/ocis/pull/7740
Enhancement - Update to go 1.21: #7794

We updated to go 1.21.

https://github.com/owncloud/ocis/pull/7794
Enhancement - Bump reva: #7721

Bumps reva version

https://github.com/owncloud/ocis/pull/7721
https://github.com/owncloud/ocis/pull/7727
https://github.com/owncloud/ocis/pull/7752
Enhancement - Edit wrong named enves: #7406

Checked and changed the envvars specified in the task and also removed those that are no longer
used.

https://github.com/owncloud/ocis/pull/7406
Enhancement - Introduce clientlog service: #7217

Add the clientlog service which will send machine readable notifications to clients

https://github.com/owncloud/ocis/pull/7217
Enhancement - Set default for Async Uploads to true: #7416

Async Uploads are meanwhile standard and needed for multiple features. Hence we default them
to true

https://github.com/owncloud/ocis/pull/7416
Enhancement - The default language added: #7417

The ability of configuration the default language has been added to the setting service.

https://github.com/owncloud/enterprise/issues/5915
https://github.com/owncloud/ocis/pull/7417
Enhancement - Config for disabling Web extensions: #7486

A new config for disabling specific Web extensions via their id has been added.

https://github.com/owncloud/web/issues/8524
https://github.com/owncloud/ocis/pull/7486
Enhancement - Add login URL config: #7317

Introduce a config to set the web login URL via WEB_OPTION_LOGIN_URL.

https://github.com/owncloud/ocis/pull/7317
Enhancement - Add support for audio files to the thumbnails service: #7491

The thumbnails service can now extract artwork from audio files (mp3, ogg, flac) and render it
just like any other image.

https://github.com/owncloud/ocis/pull/7491
Enhancement - New value auto for NOTIFICATIONS_SMTP_AUTHENTICATION: #7356

This cause the notifications service to automatically pick a suitable authentication method
to use with the configured SMTP server. This is also the new default behavior. The previous
default was to not use authentication at all.

https://github.com/owncloud/ocis/issues/7356
Enhancement - Tika content extraction cleanup for search: #7553

So far it has not been possible to determine whether the content for search should be cleaned up
of 'stop words' or not. Stop words are filling words like "I, you, have, am" etc and defined by the
search engine.

The behaviour can now be set with the newly introduced settings option
SEARCH_EXTRACTOR_TIKA_CLEAN_STOP_WORDS=false which is enabled by default.

In addition, the stop word cleanup is no longer as aggressive and now ignores numbers, urls,
basically everything except the defined stop words.

https://github.com/owncloud/ocis/issues/6674
https://github.com/owncloud/ocis/pull/7553
Enhancement - Add Sharing NG list permissions endpoint: #7805

We've added a new sharing ng endpoint which lists all permissions for a given item.

https://github.com/owncloud/ocis/issues/6993
https://github.com/owncloud/ocis/pull/7805
Enhancement - Add Sharing NG endpoints: #7633

We've added new sharing ng endpoints to the graph beta api. The following endpoints are added:
- /v1beta1/me/drive/sharedByMe
- /v1beta1/me/drive/sharedWithMe
- /v1beta1/roleManagement/permissions/roleDefinitions
- /v1beta1/roleManagement/permissions/roleDefinitions/{roleID}
- /v1beta1/drives/{drive-id}/items/{item-id}/createLink (create a sharing link)
https://github.com/owncloud/ocis/issues/7436
https://github.com/owncloud/ocis/issues/6993
https://github.com/owncloud/ocis/pull/7633
https://github.com/owncloud/ocis/pull/7686
https://github.com/owncloud/ocis/pull/7684
https://github.com/owncloud/ocis/pull/7683
https://github.com/owncloud/ocis/pull/7239
https://github.com/owncloud/ocis/pull/7687
https://github.com/owncloud/ocis/pull/7751
https://github.com/owncloud/libre-graph-api/pull/112
Enhancement - SSE for messaging: #6992

So far, sse has only been used to exchange messages between the server and the client. In order to
be able to send more content to the client, we have moved the endpoint to a separate service and
are now also using it for other notifications like:
- notify postprocessing state changes.
- notify file locking and unlocking.
- ... @toDo
https://github.com/owncloud/ocis/pull/6992
Enhancement - Store and index metadata: #7490

Audio metadata is now extracted and stored by the search service. It is available for
driveItems in a folder listing using the Graph API.

https://github.com/owncloud/ocis/pull/7490
Enhancement - Implement sharing roles: #7524

Implement libre graph sharing roles

https://github.com/owncloud/ocis/issues/7418
https://github.com/owncloud/ocis/pull/7524
Enhancement - Improve SSE format: #7325

Improve format of sse notifications

https://github.com/owncloud/ocis/pull/7325
Enhancement - Keyword Query Language (KQL) search syntax: #7212

We've introduced support for
KQL
as the default oCIS search query language.

Simple queries:
- tag:golden tag:"silver"
- name:file.txt name:"file.docx"
- content:ahab content:"captain aha*"
Date/-range queries
- Mtime:"2023-09-05T08:42:11.23554+02:00"
- Mtime>"2023-09-05T08:42:11.23554+02:00"
- Mtime>="2023-09-05T08:42:11.23554+02:00"
- Mtime<"2023-09-05T08:42:11.23554+02:00"
- Mtime<="2023-09-05T08:42:11.23554+02:00"
- Mtime:today - range: start of today till end of today
- Mtime:yesterday - range: start of yesterday till end of yesterday
- Mtime:"this week" - range: start of this week till end of this week
- Mtime:"this month" - range: start of this month till end of this month
- Mtime:"last month" - range: start of last month till end of last month
- Mtime:"this year" - range: start of this year till end of this year
- Mtime:"last year" - range: start of last year till end of last year
Conjunctive normal form queries:
- tag:golden AND tag:"silver, tag:golden OR tag:"silver, tag:golden NOT tag:"silver
- (tag:book content:ahab*), tag:(book pdf)
Complex queries:
- (name:"moby di*" OR tag:bestseller) AND tag:book NOT tag:read
https://github.com/owncloud/ocis/issues/7042
https://github.com/owncloud/ocis/issues/7179
https://github.com/owncloud/ocis/issues/7114
https://github.com/owncloud/web/issues/9636
https://github.com/owncloud/web/issues/9646
https://github.com/owncloud/ocis/pull/7212
https://github.com/owncloud/ocis/pull/7043
https://github.com/owncloud/ocis/pull/7247
https://github.com/owncloud/ocis/pull/7248
https://github.com/owncloud/ocis/pull/7254
https://github.com/owncloud/ocis/pull/7262
https://github.com/owncloud/web/pull/9653
https://github.com/owncloud/web/pull/9672
Enhancement - Add OCIS_LDAP_BIND_PASSWORD as replacement for LDAP_BIND_PASSWORD: #7176

The enviroment variable OCIS_LDAP_BIND_PASSWORD was added to be more consistent with all
other global LDAP variables.

LDAP_BIND_PASSWORD is deprecated now and scheduled for removal with the 5.0.0 release.

We also deprecated LDAP_USER_SCHEMA_ID_IS_OCTETSTRING for removal with 5.0.0. The
replacement for it is OCIS_LDAP_USER_SCHEMA_ID_IS_OCTETSTRING.

https://github.com/owncloud/ocis/issues/7176
Enhancement - Introduce natsjs registry: #7272

Introduce a registry based on the natsjs object store

https://github.com/owncloud/ocis/issues/7272
https://github.com/owncloud/ocis/pull/7487
Enhancement - Add new permissions: #7700

Adds new permissions to admin/spaceadmin/user roles - Favorites.List allows / denies the
Favorites Listing Request - Favorites.Write is implemented to be enforced on marking/unmark
files as favouritesShare - Shares.Write permission denies / allows sharing completely for a
user on all share CUD requests. (User, Group)

https://github.com/owncloud/ocis/pull/7700
Enhancement - Add new permission to delete public link password: #7538

Users with this new permission can now delete passwords on read-only public links. The
permission is added to the default roles "Admin" and "Space Admin".

https://github.com/owncloud/ocis/issues/7538
https://github.com/owncloud/ocis/pull/7538
https://github.com/cs3org/reva/pull/4270
Enhancement - The password policies change request: #7264

The variables renaming OCIS-3767

https://github.com/cs3org/reva/pull/7264
Enhancement - Add preferred language to user settings: #7720

We have added the preferred language to the libre-graph api & added endpoints for that to ocis.

https://github.com/owncloud/ocis/issues/5455
https://github.com/owncloud/ocis/pull/7720
https://github.com/owncloud/libre-graph-api/pull/130
Enhancement - Proxy uses service accounts for provisioning: #7240

The proxy service now uses a service account for provsioning task, like role assignment and
user auto-provisioning. This cleans up some technical debt that required us to mint reva tokes
inside the proxy service.

https://github.com/owncloud/ocis/issues/5550
https://github.com/owncloud/ocis/pull/7240
Enhancement - Add config to enforce passwords on all public links: #7547

We added the config OCIS_SHARING_PUBLIC_SHARE_MUST_HAVE_PASSWORD to enforce passwords
on all public shares.

https://github.com/owncloud/ocis/issues/7539
https://github.com/owncloud/ocis/pull/7547
Enhancement - Introduce service accounts: #6427

Introduces service accounts to avoid impersonating users in async processes

https://github.com/owncloud/ocis/issues/5550
https://github.com/owncloud/ocis/pull/6427
Enhancement - Make sse service scalable: #7382

When running multiple sse instances some events would not be reported to the user. This is
fixed.

https://github.com/owncloud/ocis/pull/7382
Enhancement - Allow configuring storage registry with envvars: #7554

Introduced new envvars to configure the storage registry in the gateway service

https://github.com/owncloud/ocis/pull/7554
Enhancement - Thumbnail generation with image processors: #7409

Thumbnails can now be changed during creation, previously the images were always scaled to fit
the given frame, but it could happen that the images were cut off because they could not be placed
better due to the aspect ratio.

This pr introduces the possibility of specifying how the behavior should be, following
processors are available
- resize
- fit
- fill
- thumbnail
The processor can be applied by adding the processor query param to the request, e.g.
processor=fit, processor=fill, ...

To find out more how the individual processors work please read
https://github.com/disintegration/imaging

If no processor is provided it behaves the same as before (resize for gif's and thumbnail for all
other)

https://github.com/owncloud/enterprise/issues/6057
https://github.com/owncloud/ocis/issues/5179
https://github.com/owncloud/web/issues/7728
https://github.com/owncloud/ocis/pull/7409
Enhancement - Update web to v8.0.0: #7852

Tags: web

We updated ownCloud Web to v8.0.0. Please refer to the changelog (linked) for details on the web
release.

Summary * Bugfix

owncloud/web#9257: Filter out shares
without display name * Bugfix
owncloud/web#9483: PDF loading
Safari * Bugfix owncloud/web#9513: Set
or remove expiration date on group share not possible * Bugfix
owncloud/web#9529: Shared with action
menu label alignment * Bugfix
owncloud/web#9587: Internal public
link resolving * Bugfix
owncloud/web#9593: Audio- &
video-loading on Shared with me page * Bugfix
owncloud/web#9649: Add project space
filter * Bugfix owncloud/web#9663:
Respect the open-in-new-tab-config for external apps * Bugfix
owncloud/web#9670: Tiles view
accessibility * Bugfix
owncloud/web#9694: Special
characters in username * Bugfix
owncloud/web#9788: Create .space
folder if it does not exist * Bugfix
owncloud/web#9799: Link resolving
into default app * Bugfix
owncloud/web#9832: Copy quicklinks for
webkit navigator * Bugfix
owncloud/web#9843: Fix display path on
resources * Bugfix owncloud/web#9844:
Upload space image * Bugfix
owncloud/web#9861: Duplicated file
search request * Bugfix
owncloud/web#9873: Tags are no longer
editable for a locked file * Bugfix
owncloud/web#9881: Prevent rendering
of old/wrong set of resources in search list * Bugfix
owncloud/web#9915: Keep both folders
conflict in same-named folders * Bugfix
owncloud/web#9931: Enabling "invite
people" for password-protected folder/file * Bugfix
owncloud/web#10031: Icon extension
mapping * Bugfix owncloud/web#10065:
Logout page after token expiry * Bugfix
owncloud/web#10083: Disable
expiration date for alias link (internal) * Change
owncloud/web#7338: Remove
deprecated code * Enhancement
owncloud/web#7317: Make login url
configurable * Enhancement
owncloud/web#7497: Permission
checks for shares and favorites * Enhancement
owncloud/web#7600: Scroll to newly
created folder * Enhancement
owncloud/web#9302: Application
unification * Enhancement
owncloud/web#9423: Show local loading
spinner in sharing button * Enhancement
owncloud/web#9441: File versions
tooltip with absolute date * Enhancement
owncloud/web#9441: Disabling
extensions * Enhancement
owncloud/web#9451: Add SSE to get
notifications instantly * Enhancement
owncloud/web#9525: Tags form improved *
Enhancement owncloud/web#9527: Don't
display confirmation dialog on file deletion * Enhancement
owncloud/web#9531: Personal shares
can be shown and hidden * Enhancement
owncloud/web#9552: Upload preparation
time * Enhancement owncloud/web#9561:
Indicate processing state * Enhancement
owncloud/web#9566: Display locking
information * Enhancement
owncloud/web#9584: Moving share's "set
expiration date" function * Enhancement
owncloud/web#9625: Add keyboard
navigation to spaces overview * Enhancement
owncloud/web#9627: Add batch actions to
spaces * Enhancement
owncloud/web#9653: Keyword Query
Language (KQL) search syntax * Enhancement
owncloud/web#9671: OcModal set buttons
to same width * Enhancement
owncloud/web#9682: Add password policy
compatibility * Enhancement
owncloud/web#9691: Password generator
for public links * Enhancement
owncloud/web#9696: Added app banner for
mobile devices * Enhancement
owncloud/web#9706: Unify sharing
expiration date menu items * Enhancement
owncloud/web#9727: Show error if
password is on a banned password list * Enhancement
owncloud/web#9771: Handle
postprocessing state via Server Sent Events * Enhancement
owncloud/web#9806: Preview image
presentation * Enhancement
owncloud/web#9809: Add editors to the
application menu * Enhancement
owncloud/web#9814: Registering nav
items as extension * Enhancement
owncloud/web#9815: Add new portal into
runtime to include footer * Enhancement
owncloud/web#9818: Add mode config
option * Enhancement
owncloud/web#9831: Last modified
filter chips * Enhancement
owncloud/web#9841: Add embed mode
actions * Enhancement
owncloud/web#9847: Provide vendor
neutral file icons * Enhancement
owncloud/web#9853: Show only create
folder button in embed mode * Enhancement
owncloud/web#9854: Search query term
linking * Enhancement
owncloud/web#9857: Add permission to
delete link passwords when password is enforced * Enhancement
owncloud/web#9858: Remove settings
icon from searchbar * Enhancement
owncloud/web#9863: Location picker in
embed mode * Enhancement
owncloud/web#9864: Search tags filter
chips style aligned * Enhancement
owncloud/web#9884: Enable dark theme on
importer * Enhancement
owncloud/web#9890: Create shortcuts *
Enhancement owncloud/web#9905: Manage
tags in details panel * Enhancement
owncloud/web#9906: Reorganize "New"
menu * Enhancement owncloud/web#9912:
Add media type filter chip * Enhancement
owncloud/web#9940: Display error
message for upload to locked folder * Enhancement
owncloud/web#9966: Support more
audio formats with correct icon * Enhancement
owncloud/web#10007: Additional
languages * Enhancement
owncloud/web#10013: Shared by
filter * Enhancement
owncloud/web#10014: Share search
filter * Enhancement
owncloud/web#10024: Duplicate space *
Enhancement owncloud/web#10037:
Default link permission * Enhancement
owncloud/web#10047: Add explaining
contextual helper to spaces overview * Enhancement
owncloud/web#10057: Folder tree
creation during upload * Enhancement
owncloud/web#10062: Show webdav
information in details view * Enhancement
owncloud/web#10082: Add
authentication delegation in the Embed mode

https://github.com/owncloud/ocis/pull/7852
https://github.com/owncloud/web/releases/tag/v8.0.0-alpha.11
Enhancement - Configs for Web embed mode: #7670

New configs for the Web embed mode have been added:
- enabled Defines if embed mode is enabled.
- target Defines how Web is being integrated when running in embed mode.
- messagesOrigin Defines a URL under which Web can be integrated via iFrame.
- delegateAuthentication Defines whether Web should require authentication to be done by the parent application.
- delegateAuthenticationOrigin Defines the host to validate the message event origin against when running Web in 'embed' mode.
https://github.com/owncloud/web/issues/9768
https://github.com/owncloud/ocis/pull/7670

ocis - 4.0.3

Published by kulmann 11 months ago

Changes in 4.0.3

Summary

Bugfix - Bump reva to 2.16.2: #7512
Bugfix - Token storage config fixed: #7546
Enhancement - Support spec violating AD FS access token issuer: #7138
Enhancement - Update web to v7.1.2: #7798

Details

Bugfix - Bump reva to 2.16.2: #7512
- Bugfix cs3org/reva#4251: ldap: fix GetUserByClaim for binary encoded UUIDs
https://github.com/owncloud/ocis/issues/7469
https://github.com/owncloud/ocis/pull/7512
Bugfix - Token storage config fixed: #7546

The token storage config in the config.json for web was missing when it was set to false.

https://github.com/owncloud/ocis/issues/7462
https://github.com/owncloud/ocis/pull/7546
Enhancement - Support spec violating AD FS access token issuer: #7138

AD FS /adfs/.well-known/openid-configuration has an optional access_token_issuer
which, in violation of the OpenID Connect spec, takes precedence over issuer.

https://github.com/owncloud/ocis/pull/7138
Enhancement - Update web to v7.1.2: #7798

Tags: web

We updated ownCloud Web to v7.1.2. Please refer to the changelog (linked) for details on the web
release.

Summary * Bugfix owncloud/web#9833:

Resolving external URLs * Bugfix
owncloud/web#9868: Respect
"details"-query on private links * Bugfix
owncloud/web#9913: Private link
resolving via share jail ID

https://github.com/owncloud/ocis/pull/7798
https://github.com/owncloud/web/releases/tag/v7.1.2

ocis - 5.0.0-alpha.3

Published by kulmann 11 months ago

Changelog for 5.0.0

Changes in 5.0.0

Summary

Bugfix - Return 423 status code on tag create: #7596
Bugfix - Delete outdated userlog events: #7410
Bugfix - Don't reload web config: #7369
Bugfix - Fix the auth service env variable: #7523
Bugfix - Fix the kql-bleve search: #7290
Bugfix - Fix default language fallback: #7465
Bugfix - Fix 403 in docs pipeline: #7509
Bugfix - Fix libre-graph status codes: #7678
Bugfix - Check school number for duplicates before adding a school: #7351
Bugfix - Do not reset state of received shares when rebuilding the jsoncs3 index: #7319
Bugfix - Fix last month search: #31145
Bugfix - Set existing mountpoint on auto accept: #7592
Bugfix - Deprecate redundant encryptions settings for notification service: #7345
Bugfix - Fix unlock via space API: #7726
Bugfix - Fix the tgz mime type: #7772
Bugfix - Token storage config fixed: #7528
Bugfix - Fix preview request 500 error when made too early: #7502
Bugfix - GetUserByClaim fixed for Active Directory: #7476
Bugfix - Bring back the USERS_LDAP_USER_SCHEMA_ID variable: #7312
Bugfix - Set the mountpoint on auto accept: #7460
Change - Auto-Accept Shares: #7097
Change - Change the default TUS chunk size: #7273
Enhancement - Support spec violating AD FS access token issuer: #7138
Enhancement - Add search MediaType filter: #7602
Enhancement - Add "Last modified" filter Chip: #7455
Enhancement - Add the Banned Passwords List: #4197
Enhancement - Add the password policies: #7285
Enhancement - Allow configuring additional routes: #7740
Enhancement - Bump reva: #7721
Enhancement - Edit wrong named enves: #7406
Enhancement - Introduce clientlog service: #7217
Enhancement - Set default for Async Uploads to true: #7416
Enhancement - The default language added: #7417
Enhancement - Config for disabling Web extensions: #7486
Enhancement - Add login URL config: #7317
Enhancement - Add support for audio files to the thumbnails service: #7491
Enhancement - New value auto for NOTIFICATIONS_SMTP_AUTHENTICATION: #7356
Enhancement - Tika content extraction cleanup for search: #7553
Enhancement - Add Sharing NG endpoints: #7633
Enhancement - SSE for messaging: #6992
Enhancement - Store and index metadata: #7490
Enhancement - Implement sharing roles: #7524
Enhancement - Improve SSE format: #7325
Enhancement - Keyword Query Language (KQL) search syntax: #7212
Enhancement - Add OCIS_LDAP_BIND_PASSWORD as replacement for LDAP_BIND_PASSWORD: #7176
Enhancement - Introduce natsjs registry: #7272
Enhancement - Add new permissions: #7700
Enhancement - Add new permission to delete public link password: #7538
Enhancement - The password policies change request: #7264
Enhancement - Add preferred language to user settings: #7720
Enhancement - Proxy uses service accounts for provisioning: #7240
Enhancement - Add config to enforce passwords on all public links: #7547
Enhancement - Introduce service accounts: #6427
Enhancement - Make sse service scalable: #7382
Enhancement - Allow configuring storage registry with envvars: #7554
Enhancement - Thumbnail generation with image processors: #7409
Enhancement - Update web to v8.0.0: #7773
Enhancement - Configs for Web embed mode: #7670

Details

Bugfix - Return 423 status code on tag create: #7596

When a file is locked, return 423 status code instead 500 on tag create

https://github.com/owncloud/ocis/pull/7596
Bugfix - Delete outdated userlog events: #7410

Userlog will now delete events when the user has no longer access to the underlying resource

https://github.com/owncloud/ocis/pull/7410
Bugfix - Don't reload web config: #7369

When requesting config.json file from the server, web service would reload the file if a path
is set. This will remove config entries set via Envvar. Since we want to have the possiblity to
set configuration from both sources we removed the reading from file. The file will still be
loaded on service startup.

https://github.com/owncloud/ocis/pull/7369
Bugfix - Fix the auth service env variable: #7523

We the auth service env variable to the service specific name. Before it was configurable via
AUTH_MACHINE_JWT_SECRET and now is configurable via AUTH_SERVICE_JWT_SECRET.

https://github.com/owncloud/ocis/pull/7523
Bugfix - Fix the kql-bleve search: #7290

We fixed the issue when 500 on searches that contain ":". Added the characters escaping
according to https://blevesearch.com/docs/Query-String-Query/

https://github.com/owncloud/ocis/issues/7282
https://github.com/owncloud/ocis/pull/7290
Bugfix - Fix default language fallback: #7465

Add the default language for the webui, the settings, userlog and notification service.

https://github.com/owncloud/ocis/issues/7465
Bugfix - Fix 403 in docs pipeline: #7509

Docs pipeline was not routed through our proxies which could lead to requests being
blacklisted

https://github.com/owncloud/ocis/issues/7509
https://github.com/owncloud/ocis/pull/7511
Bugfix - Fix libre-graph status codes: #7678

Creating group: https://owncloud.dev/libre-graph-api/#/groups/CreateGroup changed:
200 -> 201

Creating users: https://owncloud.dev/libre-graph-api/#/users/CreateUser changed: 200
-> 201

Export GDPR: https://owncloud.dev/libre-graph-api/#/user/ExportPersonalData
changed: 201 -> 202

https://github.com/owncloud/ocis/issues/7678
https://github.com/owncloud/ocis/pull/7705
Bugfix - Check school number for duplicates before adding a school: #7351

We fixed an issue that allowed to create two schools with the same school number

https://github.com/owncloud/enterprise/issues/6051
https://github.com/owncloud/ocis/pull/7351
Bugfix - Do not reset state of received shares when rebuilding the jsoncs3 index: #7319

We fixed a problem with the "ocis migrate rebuild-jsoncs3-indexes" command which reset the
state of received shares to "pending".

https://github.com/owncloud/ocis/issues/7319
Bugfix - Fix last month search: #31145

We've fixed the last month search edge case when currently is 31-th.

Https://github.com/owncloud/ocis/issues/7629
https://github.com/owncloud/ocis/pull/7742

https://github.com/golang/go/issues/31145
The
issue
is
related
to
the
build-in
package
behavior
Bugfix - Set existing mountpoint on auto accept: #7592

When already having a share for a specific resource, auto accept would use custom mountpoints
which lead to other errors. Now auto-accept is using the existing mountpoint of a share.

https://github.com/owncloud/ocis/pull/7592
Bugfix - Deprecate redundant encryptions settings for notification service: #7345

The values tls and ssl for the smtp_encryption configuration setting are duplicates of
starttls and ssltls. They have been marked as deprecated. A warning will be logged when
they are still used. Please use starttls instead for tls and ssltls instead of `ssl.

https://github.com/owncloud/ocis/issues/7345
Bugfix - Fix unlock via space API: #7726

We fixed a bug that caused Error 500 when user try to unlock file using fileid The
handleSpaceUnlock has been added

https://github.com/owncloud/ocis/issues/7708
https://github.com/owncloud/ocis/pull/7726
https://github.com/cs3org/reva/pull/4338
Bugfix - Fix the tgz mime type: #7772

We have fixed a bug when the tgz mime type was not "application/gzip"

https://github.com/owncloud/ocis/issues/7744
https://github.com/owncloud/ocis/pull/7772
Bugfix - Token storage config fixed: #7528

The token storage config in the config.json for web was missing when it was set to false.

https://github.com/owncloud/ocis/issues/7462
https://github.com/owncloud/ocis/pull/7528
Bugfix - Fix preview request 500 error when made too early: #7502

Fix the status code and message when a thumbnail request is made too early.

https://github.com/owncloud/ocis/issues/7502
https://github.com/owncloud/ocis/pull/7507
Bugfix - GetUserByClaim fixed for Active Directory: #7476

The reva ldap backend for the users and groups service did not hex escape binary uuids in LDAP
filter correctly this could cause problems in Active Directory setups for services using the
GetUserByClaim CS3 request with claim "userid".

https://github.com/owncloud/ocis/issues/7469
https://github.com/owncloud/ocis/pull/7476
Bugfix - Bring back the USERS_LDAP_USER_SCHEMA_ID variable: #7312

We reintroduced the USERS_LDAP_USER_SCHEMA_ID variable which was accidently removed from
the users service with the 4.0.0 release.

https://github.com/owncloud/ocis/issues/7312
https://github.com/owncloud/ocis-charts/issues/397
Bugfix - Set the mountpoint on auto accept: #7460

On shares auto accept set a mountpoint with same logic as ocs handler

https://github.com/owncloud/ocis/pull/7460
Change - Auto-Accept Shares: #7097

Automatically accepts shares. This feature is active by default and can be deactivated via the
environment variable FRONTEND_AUTO_ACCEPT_SHARES.

https://github.com/owncloud/ocis/pull/7097
Change - Change the default TUS chunk size: #7273

We changed the default TUS chunk size from 100MB to 10MB. You can still use the old value by
configuring it in your deployment.

https://github.com/owncloud/ocis/pull/7273
Enhancement - Support spec violating AD FS access token issuer: #7138

AD FS /adfs/.well-known/openid-configuration has an optional access_token_issuer
which, in violation of the OpenID Connect spec, takes precedence over issuer.

https://github.com/owncloud/ocis/pull/7138
Enhancement - Add search MediaType filter: #7602

Add filter MediaType filter shortcuts to search for specific document types. For example, a
search query mediatype:documents will search for files with the following mimetypes:

Application/msword
MimeType:application/vnd.openxmlformats-officedocument.wordprocessingml.document
MimeType:application/vnd.oasis.opendocument.text MimeType:text/plain
MimeType:text/markdown MimeType:application/rtf
MimeType:application/vnd.apple.pages

Besides the document shorthand, it also contains following:
- file
- folder
- document
- spreadsheet
- presentation
- pdf
- image
- video
- audio
- archive
File

Folder

Document:

Application/msword
application/vnd.openxmlformats-officedocument.wordprocessingml.document
application/vnd.oasis.opendocument.text text/plain text/markdown application/rtf
application/vnd.apple.pages

Spreadsheet:

Application/vnd.ms-excel application/vnd.oasis.opendocument.spreadsheet text/csv
application/vnd.openxmlformats-officedocument.spreadsheetml.sheet
application/vnd.oasis.opendocument.spreadsheet application/vnd.apple.numbers

Presentations:

Application/vnd.ms-powerpoint
application/vnd.openxmlformats-officedocument.presentationml.presentation
application/vnd.oasis.opendocument.presentation application/vnd.apple.keynote

PDF

Application/pdf

Image:

Image/*

Video:

Video/*

Audio:

Audio/*

Archive (zip ...):

Application/zip application/x-tar application/x-gzip application/x-7z-compressed
application/x-rar-compressed application/x-bzip2 application/x-bzip
application/x-tgz

https://github.com/owncloud/ocis/issues/7432
https://github.com/owncloud/ocis/pull/7602
Enhancement - Add "Last modified" filter Chip: #7455

Add "Last modified" filter Chip

https://github.com/owncloud/ocis/issues/7431
https://github.com/owncloud/ocis/issues/7551
https://github.com/owncloud/ocis/pull/7455
Enhancement - Add the Banned Passwords List: #4197

Added an option to enable a password check against a banned passwords list OCIS-3809

https://github.com/cs3org/reva/pull/4197
https://github.com/owncloud/ocis/pull/7314
Enhancement - Add the password policies: #7285

Add the password policies OCIS-3767

https://github.com/owncloud/ocis/pull/7285
https://github.com/owncloud/ocis/pull/7194
https://github.com/cs3org/reva/pull/4147
Enhancement - Allow configuring additional routes: #7740

Allows adding custom routes to the ocis proxy. This enables customs ocis extensions

https://github.com/owncloud/ocis/pull/7740
Enhancement - Bump reva: #7721

Bumps reva version

https://github.com/owncloud/ocis/pull/7721
https://github.com/owncloud/ocis/pull/7727
https://github.com/owncloud/ocis/pull/7752
Enhancement - Edit wrong named enves: #7406

Checked and changed the envvars specified in the task and also removed those that are no longer
used.

https://github.com/owncloud/ocis/pull/7406
Enhancement - Introduce clientlog service: #7217

Add the clientlog service which will send machine readable notifications to clients

https://github.com/owncloud/ocis/pull/7217
Enhancement - Set default for Async Uploads to true: #7416

Async Uploads are meanwhile standard and needed for multiple features. Hence we default them
to true

https://github.com/owncloud/ocis/pull/7416
Enhancement - The default language added: #7417

The ability of configuration the default language has been added to the setting service.

https://github.com/owncloud/enterprise/issues/5915
https://github.com/owncloud/ocis/pull/7417
Enhancement - Config for disabling Web extensions: #7486

A new config for disabling specific Web extensions via their id has been added.

https://github.com/owncloud/web/issues/8524
https://github.com/owncloud/ocis/pull/7486
Enhancement - Add login URL config: #7317

Introduce a config to set the web login URL via WEB_OPTION_LOGIN_URL.

https://github.com/owncloud/ocis/pull/7317
Enhancement - Add support for audio files to the thumbnails service: #7491

The thumbnails service can now extract artwork from audio files (mp3, ogg, flac) and render it
just like any other image.

https://github.com/owncloud/ocis/pull/7491
Enhancement - New value auto for NOTIFICATIONS_SMTP_AUTHENTICATION: #7356

This cause the notifications service to automatically pick a suitable authentication method
to use with the configured SMTP server. This is also the new default behavior. The previous
default was to not use authentication at all.

https://github.com/owncloud/ocis/issues/7356
Enhancement - Tika content extraction cleanup for search: #7553

So far it has not been possible to determine whether the content for search should be cleaned up
of 'stop words' or not. Stop words are filling words like "I, you, have, am" etc and defined by the
search engine.

The behaviour can now be set with the newly introduced settings option
SEARCH_EXTRACTOR_TIKA_CLEAN_STOP_WORDS=false which is enabled by default.

In addition, the stop word cleanup is no longer as aggressive and now ignores numbers, urls,
basically everything except the defined stop words.

https://github.com/owncloud/ocis/issues/6674
https://github.com/owncloud/ocis/pull/7553
Enhancement - Add Sharing NG endpoints: #7633

We've added new sharing ng endpoints to the graph beta api. The following endpoints are added:
- /v1beta1/me/drive/sharedByMe
- /v1beta1/me/drive/sharedWithMe
- /v1beta1/roleManagement/permissions/roleDefinitions
- /v1beta1/roleManagement/permissions/roleDefinitions/{roleID}
- /v1beta1/drives/{drive-id}/items/{item-id}/createLink (create a sharing link)
https://github.com/owncloud/ocis/issues/7436
https://github.com/owncloud/ocis/issues/6993
https://github.com/owncloud/ocis/pull/7633
https://github.com/owncloud/ocis/pull/7686
https://github.com/owncloud/ocis/pull/7684
https://github.com/owncloud/ocis/pull/7683
https://github.com/owncloud/ocis/pull/7239
https://github.com/owncloud/ocis/pull/7687
https://github.com/owncloud/libre-graph-api/pull/112
Enhancement - SSE for messaging: #6992

So far, sse has only been used to exchange messages between the server and the client. In order to
be able to send more content to the client, we have moved the endpoint to a separate service and
are now also using it for other notifications like:
- notify postprocessing state changes.
- notify file locking and unlocking.
- ... @toDo
https://github.com/owncloud/ocis/pull/6992
Enhancement - Store and index metadata: #7490

Audio metadata is now extracted and stored by the search service. It is available for
driveItems in a folder listing using the Graph API.

https://github.com/owncloud/ocis/pull/7490
Enhancement - Implement sharing roles: #7524

Implement libre graph sharing roles

https://github.com/owncloud/ocis/issues/7418
https://github.com/owncloud/ocis/pull/7524
Enhancement - Improve SSE format: #7325

Improve format of sse notifications

https://github.com/owncloud/ocis/pull/7325
Enhancement - Keyword Query Language (KQL) search syntax: #7212

We've introduced support for
KQL
as the default oCIS search query language.

Simple queries:
- tag:golden tag:"silver"
- name:file.txt name:"file.docx"
- content:ahab content:"captain aha*"
Date/-range queries
- Mtime:"2023-09-05T08:42:11.23554+02:00"
- Mtime>"2023-09-05T08:42:11.23554+02:00"
- Mtime>="2023-09-05T08:42:11.23554+02:00"
- Mtime<"2023-09-05T08:42:11.23554+02:00"
- Mtime<="2023-09-05T08:42:11.23554+02:00"
- Mtime:today - range: start of today till end of today
- Mtime:yesterday - range: start of yesterday till end of yesterday
- Mtime:"this week" - range: start of this week till end of this week
- Mtime:"this month" - range: start of this month till end of this month
- Mtime:"last month" - range: start of last month till end of last month
- Mtime:"this year" - range: start of this year till end of this year
- Mtime:"last year" - range: start of last year till end of last year
Conjunctive normal form queries:
- tag:golden AND tag:"silver, tag:golden OR tag:"silver, tag:golden NOT tag:"silver
- (tag:book content:ahab*), tag:(book pdf)
Complex queries:
- (name:"moby di*" OR tag:bestseller) AND tag:book NOT tag:read
https://github.com/owncloud/ocis/issues/7042
https://github.com/owncloud/ocis/issues/7179
https://github.com/owncloud/ocis/issues/7114
https://github.com/owncloud/web/issues/9636
https://github.com/owncloud/web/issues/9646
https://github.com/owncloud/ocis/pull/7212
https://github.com/owncloud/ocis/pull/7043
https://github.com/owncloud/ocis/pull/7247
https://github.com/owncloud/ocis/pull/7248
https://github.com/owncloud/ocis/pull/7254
https://github.com/owncloud/ocis/pull/7262
https://github.com/owncloud/web/pull/9653
https://github.com/owncloud/web/pull/9672
Enhancement - Add OCIS_LDAP_BIND_PASSWORD as replacement for LDAP_BIND_PASSWORD: #7176

The enviroment variable OCIS_LDAP_BIND_PASSWORD was added to be more consistent with all
other global LDAP variables.

LDAP_BIND_PASSWORD is deprecated now and scheduled for removal with the 5.0.0 release.

We also deprecated LDAP_USER_SCHEMA_ID_IS_OCTETSTRING for removal with 5.0.0. The
replacement for it is OCIS_LDAP_USER_SCHEMA_ID_IS_OCTETSTRING.

https://github.com/owncloud/ocis/issues/7176
Enhancement - Introduce natsjs registry: #7272

Introduce a registry based on the natsjs object store

https://github.com/owncloud/ocis/issues/7272
https://github.com/owncloud/ocis/pull/7487
Enhancement - Add new permissions: #7700

Adds new permissions to admin/spaceadmin/user roles - Favorites.List allows / denies the
Favorites Listing Request - Favorites.Write is implemented to be enforced on marking/unmark
files as favouritesShare - Shares.Write permission denies / allows sharing completely for a
user on all share CUD requests. (User, Group)

https://github.com/owncloud/ocis/pull/7700
Enhancement - Add new permission to delete public link password: #7538

Users with this new permission can now delete passwords on read-only public links. The
permission is added to the default roles "Admin" and "Space Admin".

https://github.com/owncloud/ocis/issues/7538
https://github.com/owncloud/ocis/pull/7538
https://github.com/cs3org/reva/pull/4270
Enhancement - The password policies change request: #7264

The variables renaming OCIS-3767

https://github.com/cs3org/reva/pull/7264
Enhancement - Add preferred language to user settings: #7720

We have added the preferred language to the libre-graph api & added endpoints for that to ocis.

https://github.com/owncloud/ocis/issues/5455
https://github.com/owncloud/ocis/pull/7720
https://github.com/owncloud/libre-graph-api/pull/130
Enhancement - Proxy uses service accounts for provisioning: #7240

The proxy service now uses a service account for provsioning task, like role assignment and
user auto-provisioning. This cleans up some technical debt that required us to mint reva tokes
inside the proxy service.

https://github.com/owncloud/ocis/issues/5550
https://github.com/owncloud/ocis/pull/7240
Enhancement - Add config to enforce passwords on all public links: #7547

We added the config OCIS_SHARING_PUBLIC_SHARE_MUST_HAVE_PASSWORD to enforce passwords
on all public shares.

https://github.com/owncloud/ocis/issues/7539
https://github.com/owncloud/ocis/pull/7547
Enhancement - Introduce service accounts: #6427

Introduces service accounts to avoid impersonating users in async processes

https://github.com/owncloud/ocis/issues/5550
https://github.com/owncloud/ocis/pull/6427
Enhancement - Make sse service scalable: #7382

When running multiple sse instances some events would not be reported to the user. This is
fixed.

https://github.com/owncloud/ocis/pull/7382
Enhancement - Allow configuring storage registry with envvars: #7554

Introduced new envvars to configure the storage registry in the gateway service

https://github.com/owncloud/ocis/pull/7554
Enhancement - Thumbnail generation with image processors: #7409

Thumbnails can now be changed during creation, previously the images were always scaled to fit
the given frame, but it could happen that the images were cut off because they could not be placed
better due to the aspect ratio.

This pr introduces the possibility of specifying how the behavior should be, following
processors are available
- resize
- fit
- fill
- thumbnail
The processor can be applied by adding the processor query param to the request, e.g.
processor=fit, processor=fill, ...

To find out more how the individual processors work please read
https://github.com/disintegration/imaging

If no processor is provided it behaves the same as before (resize for gif's and thumbnail for all
other)

https://github.com/owncloud/enterprise/issues/6057
https://github.com/owncloud/ocis/issues/5179
https://github.com/owncloud/web/issues/7728
https://github.com/owncloud/ocis/pull/7409
Enhancement - Update web to v8.0.0: #7773

Tags: web

We updated ownCloud Web to v8.0.0. Please refer to the changelog (linked) for details on the web
release.

Summary * Bugfix owncloud/web#9257
- Filter out shares without display name * Bugfix
  owncloud/web#9483 - PDF loading
  Safari * Bugfix owncloud/web#9513 - Set
  or remove expiration date on group share not possible * Bugfix
  owncloud/web#9529 - Shared with action
  menu label alignment * Bugfix
  owncloud/web#9587 - Internal public
  link resolving * Bugfix
  owncloud/web#9593 - Audio- &
  video-loading on Shared with me page * Bugfix
  owncloud/web#9649 - Add project space
  filter * Bugfix owncloud/web#9663 -
  Respect the open-in-new-tab-config for external apps * Bugfix
  owncloud/web#9670 - Tiles view
  accessibility * Bugfix
  owncloud/web#9694 - Special
  characters in username * Bugfix
  owncloud/web#9788 - Create .space
  folder if it does not exist * Bugfix
  owncloud/web#9799 - Link resolving
  into default app * Bugfix
  owncloud/web#9832 - Copy quicklinks for
  webkit navigator * Bugfix
  owncloud/web#9843 - Fix display path on
  resources * Bugfix owncloud/web#9844 -
  Upload space image * Bugfix
  owncloud/web#9861 - Duplicated file
  search request * Bugfix
  owncloud/web#9873 - Tags are no longer
  editable for a locked file * Bugfix
  owncloud/web#9881 - Prevent rendering
  of old/wrong set of resources in search list * Bugfix
  owncloud/web#9913 - Private link
  resolving via share jail ID * Bugfix
  owncloud/web#9915 - Keep both folders
  conflict in same-named folders * Enhancement
  owncloud/web#7317 - Make login url
  configurable * Enhancement
  owncloud/web#7497 - Permission
  checks for shares and favorites * Enhancement
  owncloud/web#7600 - Scroll to newly
  created folder * Enhancement
  owncloud/web#9302 - Application
  unification * Enhancement
  owncloud/web#9423 - Show local loading
  spinner in sharing button * Enhancement
  owncloud/web#9441 - File versions
  tooltip with absolute date * Enhancement
  owncloud/web#9441 - Disabling
  extensions * Enhancement
  owncloud/web#9451 - Add SSE to get
  notifications instantly * Enhancement
  owncloud/web#9525 - Tags form improved *
  Enhancement owncloud/web#9527 - Don't
  display confirmation dialog on file deletion * Enhancement
  owncloud/web#9531 - Personal shares
  can be shown and hidden * Enhancement
  owncloud/web#9561 - Indicate
  processing state * Enhancement
  owncloud/web#9566 - Display locking
  information * Enhancement
  owncloud/web#9584 - Moving share's "set
  expiration date" function * Enhancement
  owncloud/web#9625 - Add keyboard
  navigation to spaces overview * Enhancement
  owncloud/web#9627 - Add batch actions to
  spaces * Enhancement owncloud/web#9653
- Keyword Query Language (KQL) search syntax * Enhancement
  owncloud/web#9671 - OcModal set buttons
  to same width * Enhancement
  owncloud/web#9682 - Add password policy
  compatibility * Enhancement
  owncloud/web#9691 - Password generator
  for public links * Enhancement
  owncloud/web#9696 - Added app banner for
  mobile devices * Enhancement
  owncloud/web#9706 - Unify sharing
  expiration date menu items * Enhancement
  owncloud/web#9727 - Show error if
  password is on a banned password list * Enhancement
  owncloud/web#9771 - Handle
  postprocessing state via Server Sent Events * Enhancement
  owncloud/web#9806 - Preview image
  presentation * Enhancement
  owncloud/web#9809 - Add editors to the
  application menu * Enhancement
  owncloud/web#9814 - Registering nav
  items as extension * Enhancement
  owncloud/web#9815 - Add new portal into
  runtime to include footer * Enhancement
  owncloud/web#9818 - Add mode config
  option * Enhancement owncloud/web#9831
- Last modified filter chips * Enhancement
  owncloud/web#9841 - Add embed mode
  actions * Enhancement
  owncloud/web#9853 - Show only create
  folder button in embed mode * Enhancement
  owncloud/web#9854 - Search query term
  linking * Enhancement
  owncloud/web#9857 - Add permission to
  delete link passwords when password is enforced * Enhancement
  owncloud/web#9858 - Remove settings
  icon from searchbar * Enhancement
  owncloud/web#9863 - Location picker in
  embed mode * Enhancement
  owncloud/web#9864 - Search tags filter
  chips style aligned * Enhancement
  owncloud/web#9884 - Enable dark theme on
  importer * Enhancement
  owncloud/web#9890 - Create shortcuts *
  Enhancement owncloud/web#9905 - Manage
  tags in details panel * Enhancement
  owncloud/web#9906 - Reorganize "New"
  menu * Enhancement owncloud/web#9911 -
  Provide vendor neutral file icons * Enhancement
  owncloud/web#9912 - Add media type
  filter chip
https://github.com/owncloud/ocis/pull/7773
https://github.com/owncloud/web/releases/tag/v8.0.0-alpha.10
Enhancement - Configs for Web embed mode: #7670

New configs for the Web embed mode have been added:
- enabled Defines if embed mode is enabled.
- target Defines how Web is being integrated when running in embed mode.
- messagesOrigin Defines a URL under which Web can be integrated via iFrame.
https://github.com/owncloud/web/issues/9768
https://github.com/owncloud/ocis/pull/7670

ocis - 5.0.0-alpha.2

Published by ownclouders 12 months ago

Changes in 5.0.0

Summary

Bugfix - Return 423 status code on tag create: #7596
Bugfix - Delete outdated userlog events: #7410
Bugfix - Don't reload web config: #7369
Bugfix - Fix the auth service env variable: #7523
Bugfix - Fix the kql-bleve search: #7290
Bugfix - Fix default language fallback: #7465
Bugfix - Fix 403 in docs pipeline: #7509
Bugfix - Check school number for duplicates before adding a school: #7351
Bugfix - Do not reset state of received shares when rebuilding the jsoncs3 index: #7319
Bugfix - Set existing mountpoint on auto accept: #7592
Bugfix - Deprecate redundant encryptions settings for notification service: #7345
Bugfix - Token storage config fixed: #7528
Bugfix - Fix preview request 500 error when made too early: #7502
Bugfix - GetUserByClaim fixed for Active Directory: #7476
Bugfix - Bring back the USERS_LDAP_USER_SCHEMA_ID variable: #7312
Bugfix - Set the mountpoint on auto accept: #7460
Change - Auto-Accept Shares: #7097
Change - Change the default TUS chunk size: #7273
Enhancement - Support spec violating AD FS access token issuer: #7138
Enhancement - Add "Last modified" filter Chip: #7455
Enhancement - Add the Banned Passwords List: #4197
Enhancement - Add the password policies: #7285
Enhancement - Bump reva: #7629
Enhancement - Edit wrong named enves: #7406
Enhancement - Introduce clientlog service: #7217
Enhancement - Set default for Async Uploads to true: #7416
Enhancement - The default language added: #7417
Enhancement - Config for disabling Web extensions: #7486
Enhancement - Add login URL config: #7317
Enhancement - Add support for audio files to the thumbnails service: #7491
Enhancement - New value auto for NOTIFICATIONS_SMTP_AUTHENTICATION: #7356
Enhancement - Tika content extraction cleanup for search: #7553
Enhancement - SSE for messaging: #6992
Enhancement - Store and index metadata: #7490
Enhancement - Implement sharing roles: #7524
Enhancement - Improve SSE format: #7325
Enhancement - Keyword Query Language (KQL) search syntax: #7212
Enhancement - Add OCIS_LDAP_BIND_PASSWORD as replacement for LDAP_BIND_PASSWORD: #7176
Enhancement - Introduce natsjs registry: #7272
Enhancement - Add new permission to delete public link password: #7538
Enhancement - The password policies change request: #7264
Enhancement - Proxy uses service accounts for provisioning: #7240
Enhancement - Add config to enforce passwords on all public links: #7547
Enhancement - Introduce service accounts: #6427
Enhancement - Make sse service scalable: #7382
Enhancement - Allow configuring storage registry with envvars: #7554
Enhancement - Thumbnail generation with image processors: #7409
Enhancement - Update web to v8.0.0: #7673
Enhancement - Configs for Web embed mode: #7670

Details

Bugfix - Return 423 status code on tag create: #7596

When a file is locked, return 423 status code instead 500 on tag create

https://github.com/owncloud/ocis/pull/7596
Bugfix - Delete outdated userlog events: #7410

Userlog will now delete events when the user has no longer access to the underlying resource

https://github.com/owncloud/ocis/pull/7410
Bugfix - Don't reload web config: #7369

When requesting config.json file from the server, web service would reload the file if a path
is set. This will remove config entries set via Envvar. Since we want to have the possiblity to
set configuration from both sources we removed the reading from file. The file will still be
loaded on service startup.

https://github.com/owncloud/ocis/pull/7369
Bugfix - Fix the auth service env variable: #7523

We the auth service env variable to the service specific name. Before it was configurable via
AUTH_MACHINE_JWT_SECRET and now is configurable via AUTH_SERVICE_JWT_SECRET.

https://github.com/owncloud/ocis/pull/7523
Bugfix - Fix the kql-bleve search: #7290

We fixed the issue when 500 on searches that contain ":". Added the characters escaping
according to https://blevesearch.com/docs/Query-String-Query/

https://github.com/owncloud/ocis/issues/7282
https://github.com/owncloud/ocis/pull/7290
Bugfix - Fix default language fallback: #7465

Add the default language for the webui, the settings, userlog and notification service.

https://github.com/owncloud/ocis/issues/7465
Bugfix - Fix 403 in docs pipeline: #7509

Docs pipeline was not routed through our proxies which could lead to requests being
blacklisted

https://github.com/owncloud/ocis/issues/7509
https://github.com/owncloud/ocis/pull/7511
Bugfix - Check school number for duplicates before adding a school: #7351

We fixed an issue that allowed to create two schools with the same school number

https://github.com/owncloud/enterprise/issues/6051
https://github.com/owncloud/ocis/pull/7351
Bugfix - Do not reset state of received shares when rebuilding the jsoncs3 index: #7319

We fixed a problem with the "ocis migrate rebuild-jsoncs3-indexes" command which reset the
state of received shares to "pending".

https://github.com/owncloud/ocis/issues/7319
Bugfix - Set existing mountpoint on auto accept: #7592

When already having a share for a specific resource, auto accept would use custom mountpoints
which lead to other errors. Now auto-accept is using the existing mountpoint of a share.

https://github.com/owncloud/ocis/pull/7592
Bugfix - Deprecate redundant encryptions settings for notification service: #7345

The values tls and ssl for the smtp_encryption configuration setting are duplicates of
starttls and ssltls. They have been marked as deprecated. A warning will be logged when
they are still used. Please use starttls instead for tls and ssltls instead of `ssl.

https://github.com/owncloud/ocis/issues/7345
Bugfix - Token storage config fixed: #7528

The token storage config in the config.json for web was missing when it was set to false.

https://github.com/owncloud/ocis/issues/7462
https://github.com/owncloud/ocis/pull/7528
Bugfix - Fix preview request 500 error when made too early: #7502

Fix the status code and message when a thumbnail request is made too early.

https://github.com/owncloud/ocis/issues/7502
https://github.com/owncloud/ocis/pull/7507
Bugfix - GetUserByClaim fixed for Active Directory: #7476

The reva ldap backend for the users and groups service did not hex escape binary uuids in LDAP
filter correctly this could cause problems in Active Directory setups for services using the
GetUserByClaim CS3 request with claim "userid".

https://github.com/owncloud/ocis/issues/7469
https://github.com/owncloud/ocis/pull/7476
Bugfix - Bring back the USERS_LDAP_USER_SCHEMA_ID variable: #7312

We reintroduced the USERS_LDAP_USER_SCHEMA_ID variable which was accidently removed from
the users service with the 4.0.0 release.

https://github.com/owncloud/ocis/issues/7312
https://github.com/owncloud/ocis-charts/issues/397
Bugfix - Set the mountpoint on auto accept: #7460

On shares auto accept set a mountpoint with same logic as ocs handler

https://github.com/owncloud/ocis/pull/7460
Change - Auto-Accept Shares: #7097

Automatically accepts shares. This feature is active by default and can be deactivated via the
environment variable FRONTEND_AUTO_ACCEPT_SHARES.

https://github.com/owncloud/ocis/pull/7097
Change - Change the default TUS chunk size: #7273

We changed the default TUS chunk size from 100MB to 10MB. You can still use the old value by
configuring it in your deployment.

https://github.com/owncloud/ocis/pull/7273
Enhancement - Support spec violating AD FS access token issuer: #7138

AD FS /adfs/.well-known/openid-configuration has an optional access_token_issuer
which, in violation of the OpenID Connect spec, takes precedence over issuer.

https://github.com/owncloud/ocis/pull/7138
Enhancement - Add "Last modified" filter Chip: #7455

Add "Last modified" filter Chip

https://github.com/owncloud/ocis/issues/7431
https://github.com/owncloud/ocis/issues/7551
https://github.com/owncloud/ocis/pull/7455
Enhancement - Add the Banned Passwords List: #4197

Added an option to enable a password check against a banned passwords list OCIS-3809

https://github.com/cs3org/reva/pull/4197
https://github.com/owncloud/ocis/pull/7314
Enhancement - Add the password policies: #7285

Add the password policies OCIS-3767

https://github.com/owncloud/ocis/pull/7285
https://github.com/owncloud/ocis/pull/7194
https://github.com/cs3org/reva/pull/4147
Enhancement - Bump reva: #7629

Bumps reva version

https://github.com/owncloud/ocis/pull/7629
https://github.com/owncloud/ocis/pull/7611
https://github.com/owncloud/ocis/pull/7540
https://github.com/owncloud/ocis/pull/7526
https://github.com/owncloud/ocis/pull/7138
https://github.com/owncloud/ocis/pull/6427
https://github.com/owncloud/ocis/pull/7178
https://github.com/owncloud/ocis/pull/7217
https://github.com/owncloud/ocis/pull/7410
https://github.com/owncloud/ocis/pull/7476
https://github.com/owncloud/ocis/pull/7551
https://github.com/owncloud/ocis/pull/7581
Enhancement - Edit wrong named enves: #7406

Checked and changed the envvars specified in the task and also removed those that are no longer
used.

https://github.com/owncloud/ocis/pull/7406
Enhancement - Introduce clientlog service: #7217

Add the clientlog service which will send machine readable notifications to clients

https://github.com/owncloud/ocis/pull/7217
Enhancement - Set default for Async Uploads to true: #7416

Async Uploads are meanwhile standard and needed for multiple features. Hence we default them
to true

https://github.com/owncloud/ocis/pull/7416
Enhancement - The default language added: #7417

The ability of configuration the default language has been added to the setting service.

https://github.com/owncloud/enterprise/issues/5915
https://github.com/owncloud/ocis/pull/7417
Enhancement - Config for disabling Web extensions: #7486

A new config for disabling specific Web extensions via their id has been added.

https://github.com/owncloud/web/issues/8524
https://github.com/owncloud/ocis/pull/7486
Enhancement - Add login URL config: #7317

Introduce a config to set the web login URL via WEB_OPTION_LOGIN_URL.

https://github.com/owncloud/ocis/pull/7317
Enhancement - Add support for audio files to the thumbnails service: #7491

The thumbnails service can now extract artwork from audio files (mp3, ogg, flac) and render it
just like any other image.

https://github.com/owncloud/ocis/pull/7491
Enhancement - New value auto for NOTIFICATIONS_SMTP_AUTHENTICATION: #7356

This cause the notifications service to automatically pick a suitable authentication method
to use with the configured SMTP server. This is also the new default behavior. The previous
default was to not use authentication at all.

https://github.com/owncloud/ocis/issues/7356
Enhancement - Tika content extraction cleanup for search: #7553

So far it has not been possible to determine whether the content for search should be cleaned up
of 'stop words' or not. Stop words are filling words like "I, you, have, am" etc and defined by the
search engine.

The behaviour can now be set with the newly introduced settings option
SEARCH_EXTRACTOR_TIKA_CLEAN_STOP_WORDS=false which is enabled by default.

In addition, the stop word cleanup is no longer as aggressive and now ignores numbers, urls,
basically everything except the defined stop words.

https://github.com/owncloud/ocis/issues/6674
https://github.com/owncloud/ocis/pull/7553
Enhancement - SSE for messaging: #6992

So far, sse has only been used to exchange messages between the server and the client. In order to
be able to send more content to the client, we have moved the endpoint to a separate service and
are now also using it for other notifications like:
- notify postprocessing state changes.
- notify file locking and unlocking.
- ... @toDo
https://github.com/owncloud/ocis/pull/6992
Enhancement - Store and index metadata: #7490

Audio metadata is now extracted and stored by the search service. It is available for
driveItems in a folder listing using the Graph API.

https://github.com/owncloud/ocis/pull/7490
Enhancement - Implement sharing roles: #7524

Implement libre graph sharing roles

https://github.com/owncloud/ocis/issues/7418
https://github.com/owncloud/ocis/pull/7524
Enhancement - Improve SSE format: #7325

Improve format of sse notifications

https://github.com/owncloud/ocis/pull/7325
Enhancement - Keyword Query Language (KQL) search syntax: #7212

We've introduced support for
KQL
as the default oCIS search query language.

Simple queries:
- tag:golden tag:"silver"
- name:file.txt name:"file.docx"
- content:ahab content:"captain aha*"
Date/-range queries
- Mtime:"2023-09-05T08:42:11.23554+02:00"
- Mtime>"2023-09-05T08:42:11.23554+02:00"
- Mtime>="2023-09-05T08:42:11.23554+02:00"
- Mtime<"2023-09-05T08:42:11.23554+02:00"
- Mtime<="2023-09-05T08:42:11.23554+02:00"
- Mtime:today - range: start of today till end of today
- Mtime:yesterday - range: start of yesterday till end of yesterday
- Mtime:"this week" - range: start of this week till end of this week
- Mtime:"this month" - range: start of this month till end of this month
- Mtime:"last month" - range: start of last month till end of last month
- Mtime:"this year" - range: start of this year till end of this year
- Mtime:"last year" - range: start of last year till end of last year
Conjunctive normal form queries:
- tag:golden AND tag:"silver, tag:golden OR tag:"silver, tag:golden NOT tag:"silver
- (tag:book content:ahab*), tag:(book pdf)
Complex queries:
- (name:"moby di*" OR tag:bestseller) AND tag:book NOT tag:read
https://github.com/owncloud/ocis/issues/7042
https://github.com/owncloud/ocis/issues/7179
https://github.com/owncloud/ocis/issues/7114
https://github.com/owncloud/web/issues/9636
https://github.com/owncloud/web/issues/9646
https://github.com/owncloud/ocis/pull/7212
https://github.com/owncloud/ocis/pull/7043
https://github.com/owncloud/ocis/pull/7247
https://github.com/owncloud/ocis/pull/7248
https://github.com/owncloud/ocis/pull/7254
https://github.com/owncloud/ocis/pull/7262
https://github.com/owncloud/web/pull/9653
https://github.com/owncloud/web/pull/9672
Enhancement - Add OCIS_LDAP_BIND_PASSWORD as replacement for LDAP_BIND_PASSWORD: #7176

The enviroment variable OCIS_LDAP_BIND_PASSWORD was added to be more consistent with all
other global LDAP variables.

LDAP_BIND_PASSWORD is deprecated now and scheduled for removal with the 5.0.0 release.

We also deprecated LDAP_USER_SCHEMA_ID_IS_OCTETSTRING for removal with 5.0.0. The
replacement for it is OCIS_LDAP_USER_SCHEMA_ID_IS_OCTETSTRING.

https://github.com/owncloud/ocis/issues/7176
Enhancement - Introduce natsjs registry: #7272

Introduce a registry based on the natsjs object store

https://github.com/owncloud/ocis/issues/7272
https://github.com/owncloud/ocis/pull/7487
Enhancement - Add new permission to delete public link password: #7538

Users with this new permission can now delete passwords on read-only public links. The
permission is added to the default roles "Admin" and "Space Admin".

https://github.com/owncloud/ocis/issues/7538
https://github.com/owncloud/ocis/pull/7538
https://github.com/cs3org/reva/pull/4270
Enhancement - The password policies change request: #7264

The variables renaming OCIS-3767

https://github.com/cs3org/reva/pull/7264
Enhancement - Proxy uses service accounts for provisioning: #7240

The proxy service now uses a service account for provsioning task, like role assignment and
user auto-provisioning. This cleans up some technical debt that required us to mint reva tokes
inside the proxy service.

https://github.com/owncloud/ocis/issues/5550
https://github.com/owncloud/ocis/pull/7240
Enhancement - Add config to enforce passwords on all public links: #7547

We added the config OCIS_SHARING_PUBLIC_SHARE_MUST_HAVE_PASSWORD to enforce passwords
on all public shares.

https://github.com/owncloud/ocis/issues/7539
https://github.com/owncloud/ocis/pull/7547
Enhancement - Introduce service accounts: #6427

Introduces service accounts to avoid impersonating users in async processes

https://github.com/owncloud/ocis/issues/5550
https://github.com/owncloud/ocis/pull/6427
Enhancement - Make sse service scalable: #7382

When running multiple sse instances some events would not be reported to the user. This is
fixed.

https://github.com/owncloud/ocis/pull/7382
Enhancement - Allow configuring storage registry with envvars: #7554

Introduced new envvars to configure the storage registry in the gateway service

https://github.com/owncloud/ocis/pull/7554
Enhancement - Thumbnail generation with image processors: #7409

Thumbnails can now be changed during creation, previously the images were always scaled to fit
the given frame, but it could happen that the images were cut off because they could not be placed
better due to the aspect ratio.

This pr introduces the possibility of specifying how the behavior should be, following
processors are available
- resize
- fit
- fill
- thumbnail
The processor can be applied by adding the processor query param to the request, e.g.
processor=fit, processor=fill, ...

To find out more how the individual processors work please read
https://github.com/disintegration/imaging

If no processor is provided it behaves the same as before (resize for gif's and thumbnail for all
other)

https://github.com/owncloud/enterprise/issues/6057
https://github.com/owncloud/ocis/issues/5179
https://github.com/owncloud/web/issues/7728
https://github.com/owncloud/ocis/pull/7409
Enhancement - Update web to v8.0.0: #7673

Tags: web

We updated ownCloud Web to v8.0.0. Please refer to the changelog (linked) for details on the web
release.

Summary * Bugfix owncloud/web#9257
- Filter out shares without display name * Bugfix
  owncloud/web#9483 - PDF loading
  Safari * Bugfix owncloud/web#9513 - Set
  or remove expiration date on group share not possible * Bugfix
  owncloud/web#9529 - Shared with action
  menu label alignment * Bugfix
  owncloud/web#9587 - Internal public
  link resolving * Bugfix
  owncloud/web#9593 - Audio- &
  video-loading on Shared with me page * Bugfix
  owncloud/web#9649 - Add project space
  filter * Bugfix owncloud/web#9663 -
  Respect the open-in-new-tab-config for external apps * Bugfix
  owncloud/web#9670 - Tiles view
  accessibility * Bugfix
  owncloud/web#9694 - Special
  characters in username * Bugfix
  owncloud/web#9788 - Create .space
  folder if it does not exist * Bugfix
  owncloud/web#9799 - Link resolving
  into default app * Bugfix
  owncloud/web#9832 - Copy quicklinks for
  webkit navigator * Bugfix
  owncloud/web#9843 - Fix display path on
  resources * Bugfix owncloud/web#9844 -
  Upload space image * Bugfix
  owncloud/web#9861 - Duplicated file
  search request * Bugfix
  owncloud/web#9873 - Tags are no longer
  editable for a locked file * Bugfix
  owncloud/web#9881 - Prevent rendering
  of old/wrong set of resources in search list * Enhancement
  owncloud/web#7317 - Make login url
  configurable * Enhancement
  owncloud/web#7600 - Scroll to newly
  created folder * Enhancement
  owncloud/web#9302 - Application
  unification * Enhancement
  owncloud/web#9423 - Show local loading
  spinner in sharing button * Enhancement
  owncloud/web#9441 - File versions
  tooltip with absolute date * Enhancement
  owncloud/web#9441 - Disabling
  extensions * Enhancement
  owncloud/web#9451 - Add SSE to get
  notifications instantly * Enhancement
  owncloud/web#9525 - Tags form improved *
  Enhancement owncloud/web#9527 - Don't
  display confirmation dialog on file deletion * Enhancement
  owncloud/web#9531 - Personal shares
  can be shown and hidden * Enhancement
  owncloud/web#9561 - Indicate
  processing state * Enhancement
  owncloud/web#9566 - Display locking
  information * Enhancement
  owncloud/web#9584 - Moving share's "set
  expiration date" function * Enhancement
  owncloud/web#9625 - Add keyboard
  navigation to spaces overview * Enhancement
  owncloud/web#9627 - Add batch actions to
  spaces * Enhancement owncloud/web#9653
- Keyword Query Language (KQL) search syntax * Enhancement
  owncloud/web#9671 - OcModal set buttons
  to same width * Enhancement
  owncloud/web#9682 - Add password policy
  compatibility * Enhancement
  owncloud/web#9691 - Password generator
  for public links * Enhancement
  owncloud/web#9696 - Added app banner for
  mobile devices * Enhancement
  owncloud/web#9706 - Unify sharing
  expiration date menu items * Enhancement
  owncloud/web#9727 - Show error if
  password is on a banned password list * Enhancement
  owncloud/web#9771 - Handle
  postprocessing state via Server Sent Events * Enhancement
  owncloud/web#9806 - Preview image
  presentation * Enhancement
  owncloud/web#9809 - Add editors to the
  application menu * Enhancement
  owncloud/web#9814 - Registering nav
  items as extension * Enhancement
  owncloud/web#9815 - Add new portal into
  runtime to include footer * Enhancement
  owncloud/web#9818 - Add mode config
  option * Enhancement owncloud/web#9831
- Last modified filter chips * Enhancement
  owncloud/web#9841 - Add embed mode
  actions * Enhancement
  owncloud/web#9853 - Show only create
  folder button in embed mode * Enhancement
  owncloud/web#9854 - Search query term
  linking * Enhancement
  owncloud/web#9857 - Add permission to
  delete link passwords when password is enforced * Enhancement
  owncloud/web#9858 - Remove settings
  icon from searchbar * Enhancement
  owncloud/web#9863 - Location picker in
  embed mode * Enhancement
  owncloud/web#9864 - Search tags filter
  chips style aligned * Enhancement
  owncloud/web#9884 - Enable dark theme on
  importer * Enhancement
  owncloud/web#9906 - Reorganize "New"
  menu * Enhancement owncloud/web#9911 -
  Provide vendor neutral file icons
https://github.com/owncloud/ocis/pull/7673
https://github.com/owncloud/web/releases/tag/v8.0.0-alpha.7
Enhancement - Configs for Web embed mode: #7670

Two new configs for the Web embed mode have been added:
- mode Defines the mode in which Web will be running.
- embedTarget Defines how Web is being integrated when running in embed mode.
https://github.com/owncloud/web/issues/9768
https://github.com/owncloud/ocis/pull/7670

Package Rankings

Top 2.11% on Proxy.golang.org

Badges

Extracted from project README

Related Projects

go-cloud

The Go Cloud Development Kit (Go CDK): A library and tools for open cloud development in Go.

21 Mar 2018 9,537

go-api-boilerplate

Go Server/API boilerplate using best practices DDD CQRS ES gRPC

14 Oct 2017 888

build-harness

Collection of Makefiles to facilitate building Golang projects, Dockerfiles, Helm charts, and more

20 Jan 2017 352

customeros

CustomerOS is an open source platform that enables you to bring your customer back to the center ...

13 Sep 2022 80

authelia

The Single Sign-On Multi-Factor portal for web apps

07 Dec 2016 21,292

devops-resources

DevOps resources - Linux, Jenkins, AWS, SRE, Prometheus, Docker, Python, Ansible, Git, Kubernetes...

07 Jan 2019 8,538

dyrectorio

dyrector.io is a self-hosted continuous delivery & deployment platform with version management.

27 Jun 2022 1,122

ocis

Changes in 5.0.1

Summary

Details

Changes in 4.0.7

Summary

Details

Changelog for reva 2.13.4

Changes in 5.0.0

Summary

Details

File

Folder

Document:

Spreadsheet:

Presentations:

PDF

Image:

Video:

Audio:

Archive (zip ...):

Changelog for reva 2.18.0 (2023-12-22)

Changelog for reva 2.17.0 (2023-12-12)

Incremental changes since 5.0.0-rc.5

oCIS

Reva

Web

All Changes in 5.0.0-rc.6

Summary

Details

File

Folder

Document:

Spreadsheet:

Presentations:

PDF

Image:

Video:

Audio:

Archive (zip ...):

Changelog for reva 2.18.0 (2023-12-22)

Changelog for reva 2.17.0 (2023-12-12)

Incremental changes since 5.0.0-rc.4

ocis

Web

Reva

All changes in v5.0.0-rc.5

Details

File

Folder

Document:

Spreadsheet:

Presentations:

PDF

Image:

Video:

Audio:

Archive (zip ...):

Summary * Bugfix

Summary * Bugfix

Summary * Bugfix

Summary * Bugfix

Summary * Enhancement

Summary * Bugfix

Summary * Change

Summary * Enhancement

Summary * Bugfix

Changelog for reva 2.18.0 (2023-12-22)

Changelog for reva 2.17.0 (2023-12-12)

Changes

Incremental Changes since 5.0.0-rc.3

Full List of Changes in 5.0.0-rc.4

Summary

Details

File

Folder

Document:

Spreadsheet:

Presentations:

PDF