6.6.0-rc.1

Table of Contents

6.6.0-alpha.1

Table of Contents

6.5.0

Table of Contents

• Changelog for 6.5.0

Changes in 6.5.0

Summary

• Bugfix - Fixed the ocm email template: #10030
• Bugfix - Fixed activity filter depth: #10031
• Bugfix - Fixed proxy build info: #10039
• Bugfix - Fixed the ocm tocken: #10050
• Bugfix - Fix ocm space sharing: #10060
• Bugfix - Fix the error code for ocm space sharing: #10079
• Bugfix - Added LinkUpdated activity: #10085
• Bugfix - Fix Activities leak: #10092
• Bugfix - Include additional logs in the collaboration service: #10101
• Bugfix - Added ShareUpdate activity: #10104
• Bugfix - Fixed the collaboration service registration: #10107
• Bugfix - CheckFileInfo will return a 404 error if the target file isn't found: #10112
• Bugfix - Forbid Activities for Sharees: #10136
• Bugfix - Always select next gateway client: #10141
• Bugfix - Remove duplicate CSP header from responses: #10146
• Bugfix - Fixed the missing folder variable: #10150
• Bugfix - Fix activity limit: #10165
• Bugfix - Fix email translations: #10171
• Bugfix - Fix Activities translation: #10175
• Enhancement - Allow to maintain the last sign-in timestamp of a user: #9942
• Enhancement - Add an Activity for FileUpdated: #10072
• Enhancement - Remove METADATA_BACKEND: #10113
• Enhancement - Load CSP configuration file if it exists: #10139
• Enhancement - FileDownloaded Activity: #10161
• Enhancement - Add WOPI host URLs to the collaboration service: #10174
• Enhancement - Update web to v10.3.0: #10177
• Enhancement - Bump reva to 2.25.0: #10194

Details

• Bugfix - Fixed the ocm email template: #10030

  The golang conditional construction moved out from the transifex template.

  #10030

• Bugfix - Fixed activity filter depth: #10031

  Fixed activity filter 'depth:-1'

  #9850
  #10031

• Bugfix - Fixed proxy build info: #10039

  The version string for the proxy service has been changed to 'version'.

  #10039

• Bugfix - Fixed the ocm tocken: #10050

  We now pass the JWT secret to the reva runtime.

  #10050

• Bugfix - Fix ocm space sharing: #10060

  We prevent adding the federated users as members of the space.

  #10051
  #10060

• Bugfix - Fix the error code for ocm space sharing: #10079

  We fixed the error code for ocm space sharing

  #10051
  #10079

• Bugfix - Added LinkUpdated activity: #10085

  Added the LinkUpdated activity in the space context

  #10012
  #10085

• Bugfix - Fix Activities leak: #10092

  Fix activities endpoint by preventing unauthorized users to get activities

  #10092

• Bugfix - Include additional logs in the collaboration service: #10101

  More logs have been added in the middlware of the collaboration service to debug
  401 error codes. Any error that happens in that middleware should have its
  corresponding log entry

  #10101

• Bugfix - Added ShareUpdate activity: #10104

  Added the ShareUpdate activity in the space context.

  #10011
  #10104

• Bugfix - Fixed the collaboration service registration: #10107

  Fixed an issue when the collaboration service registers apps also for binary and
  unknown mime types.

  #10086
  #10107

• Bugfix - CheckFileInfo will return a 404 error if the target file isn't found: #10112

  Previously, the request failed with a 500 error code, but it it will fail with a
  404 error code

  #10112

• Bugfix - Forbid Activities for Sharees: #10136

  Sharees may not see item activities. We now bind it to ListGrants permission.

  #10136

• Bugfix - Always select next gateway client: #10141

  We now use the gateway selector to always select the next gateway client. This
  ensures that we can always connect to the gateway during up- and downscaling.

  #10141
  #10133

• Bugfix - Remove duplicate CSP header from responses: #10146

  The web service was adding a CSP on its own, and that one has been removed. The
  proxy service will take care of the CSP header.

  #10146

• Bugfix - Fixed the missing folder variable: #10150

  We fixed the missing folder variable when folder renamed.

  #10148
  #10150

• Bugfix - Fix activity limit: #10165

  When requesting a limit on activities, ocis would limit first, then filter and
  sort. Now it filters and sorts first, then limits.

  #10165

• Bugfix - Fix email translations: #10171

  Email translations would not use custom translation pathes. This is now fixed.

  #10171

• Bugfix - Fix Activities translation: #10175

  Fix the panic for the translation-sync in the activities service.

  #10175

• Enhancement - Allow to maintain the last sign-in timestamp of a user: #9942

  When the LDAP identity backend is configured to have write access to the
  database we're now able to maintain the ocLastSignInTimestamp attribute for the
  users.

  This attribute is return in the 'signinActivity/lastSuccessfulSignInDateTime'
  properity of the user objects. It is also possible to $filter on this attribute.

  Use e.g. '$filter=signinActivity/lastSuccessfulSignInDateTime le
  2023-12-31T00:00:00Z' to search for users that have not signed in since
  2023-12-31. Note: To use this type of filter the underlying LDAP server must
  support the '<=' filter. Which is currently not the case of the built-in LDAP
  server (idm).

  #9942
  #10111

• Enhancement - Add an Activity for FileUpdated: #10072

  Previously FileUpdated has also triggered a FileAdded Activity

  #10072

• Enhancement - Remove METADATA_BACKEND: #10113

  Removes the deprecated XXX_METADATA_BACKEND envvars

  #10113

• Enhancement - Load CSP configuration file if it exists: #10139

  The Content Security Policy (CSP) configuration file is now loaded by default if
  it exists. The configuration file looked for should be located at
  $OCIS_BASE_DATA_PATH/proxy/csp.yaml. If the file does not exist, the default
  CSP configuration is used.

  #10021
  #10139

• Enhancement - FileDownloaded Activity: #10161

  Add an activity when a file gets downloaded via public link

  #10161

• Enhancement - Add WOPI host URLs to the collaboration service: #10174

  We added the WOPI host urls to create a better integration with WOPI clients.
  This allows the WOPI apps to display links to our sharing and versions panel in
  the UI.

  https://github.com/o...

6.5.0-rc.1

Table of Contents

5.0.8

Changes in 5.0.8

Summary

• Bugfix - Update reva to v2.19.8: #10138

Details

• Bugfix - Update reva to v2.19.8: #10138

  We updated reva to v2.19.8

  • Fix cs3org/reva#4761: Quotes in dav Content-Disposition header
  • Fix cs3org/reva#4853: Write upload session info atomically
  • Enh cs3org/reva#4701: Extend service account permissions

  #10138
  #10103

6.4.0

Table of Contents

• Changelog for 6.4.0

Changes in 6.4.0

Summary

• Bugfix - Set capability response disable_self_password_change correctly: #9853
• Bugfix - Activity Translations: #9856
• Bugfix - The user attributes userType and memberOf are readonly: #9867
• Bugfix - Use key to get specific trash item: #9879
• Bugfix - Fix response code when upload a file over locked: #9894
• Bugfix - List OCM permissions as graph drive item permissions: #9905
• Bugfix - Fix listing ocm shares: #9925
• Bugfix - Allow update of ocm shares: #9980
• Change - Remove store service: #9890
• Enhancement - We now set the configured protocol transport for service metadata: #9490
• Enhancement - Microsoft Office365 and Office Online support: #9686
• Enhancement - Unified Roles Management: #9727
• Enhancement - Added a new role space editor without versions: #9880
• Enhancement - Improve revisions purge: #9891
• Enhancement - Allow setting default locale of activitylog: #9892
• Enhancement - Graph translation path: #9902
• Enhancement - Added a new roles viewer/editor with ListGrants: #9943
• Enhancement - Handle OCM invite generated event: #9966
• Enhancement - Update web to v10.2.0: #9988
• Enhancement - Allow blob as connect-src in default CSP: #9993
• Enhancement - Bump reva to v2.24.1: #10028

Details

• Bugfix - Set capability response disable_self_password_change correctly: #9853

  The capability value disable_self_password_change was not being set correctly
  when user.passwordProfile is configured as a read-only attribute.

  owncloud/enterprise#6849
  #9853

• Bugfix - Activity Translations: #9856

  Translations for activities did not show up in transifex

  #9856

• Bugfix - The user attributes userType and memberOf are readonly: #9867

  The graph API now treats the user attributes userType and memberOf as
  read-only. They are not meant be updated directly by the client.

  #9858
  #9867

• Bugfix - Use key to get specific trash item: #9879

  The activitylog and clientlog services now only fetch the specific trash item
  instead of getting all items in trash and filtering them on their side. This
  reduces the load on the storage users service because it no longer has to
  assemble a full trash listing.

  #9879

• Bugfix - Fix response code when upload a file over locked: #9894

  We fixed a bug where the response code was incorrect when uploading a file over
  a locked file.

  #7638
  #9894

• Bugfix - List OCM permissions as graph drive item permissions: #9905

  The libre graph API now returns OCM shares when listing driveItem permissions.

  #9898
  #9905

• Bugfix - Fix listing ocm shares: #9925

  The libre graph API now returns an etag, the role and the creation time for ocm
  shares. It also includes ocm shares in the sharedByMe endpoint.

  #9925
  #9920

• Bugfix - Allow update of ocm shares: #9980

  We fixed a bug that prevented ocm shares to be updated or removed.

  #9926
  #9980

• Change - Remove store service: #9890

  We have removed the unused store service.

  #1357
  #9890

• Enhancement - We now set the configured protocol transport for service metadata: #9490

  This allows configuring services to listan on tcp or unix sockets and
  clients to use the dns, kubernetes or unix protocol URIs instead of
  service names.

  #9490
  cs3org/reva#4744

• Enhancement - Microsoft Office365 and Office Online support: #9686

  Add support for Microsoft Office365 Cloud and Microsoft Office Online on
  premises. You can use the cloud feature either within a Microsoft
  CSP
  partnership or via the ownCloud office365 proxy subscription. Please contact
  [email protected] to get more information about the ownCloud office365 proxy
  subscription.

  #9686

• Enhancement - Unified Roles Management: #9727

  Improved management of unified roles with the introduction of default
  enabled/disabled states and a new command for listing available roles. It is
  important to note that a disabled role does not lose previously assigned
  permissions; it only means that the role is not available for new assignments.

  The following roles are now enabled by default:

  • UnifiedRoleViewerID - UnifiedRoleSpaceViewer - UnifiedRoleEditor -
    UnifiedRoleSpaceEditor - UnifiedRoleFileEditor - UnifiedRoleEditorLite -
    UnifiedRoleManager

  The following roles are now disabled by default:

  • UnifiedRoleSecureViewer

  To enable the UnifiedRoleSecureViewer role, you must provide a list of all
  available roles through one of the following methods:

  • Using the GRAPH_AVAILABLE_ROLES environment variable. - Setting the
    available_roles configuration value.

  To enable a role, include the UID of the role in the list of available roles.

  A new command has been introduced to simplify the process of finding out which
  UID belongs to which role. The command is:

  $ ocis graph list-unified-roles
  

  The output of this command includes the following information for each role:

  • uid: The unique identifier of the role. - Description: A short description of
    the role. - Enabled: Whether the role is enabled or not.

  #9698
  #9727

• Enhancement - Added a new role space editor without versions: #9880

  We add a new role space editor without list and restore version permissions.

  #9699
  #9880

• Enhancement - Improve revisions purge: #9891

  The revisions purge command would time out on big spaces. We have improved
  performance by parallelizing the process.

  #9891

• Enhancement - Allow setting default locale of activitylog: #9892

  Allows setting the default locale via OCIS_DEFAULT_LANGUAGE envvar

  #9892

• Enhancement - Graph translation path: #9902

  Add GRAPH_TRANSLATION_PATH envvar like in other l10n services

  #9902

• Enhancement - Added a new roles viewer/editor with ListGrants: #9943

  We add a new roles space viewer/editor with ListGrants permissions.

  #9701
  #9943

• Enhancement - Handle OCM invite generated event: #9966

  Both the notification and audit services now handle the OCM invite generated
  event.

  • The notification service is responsible for sending an email to the invited
    user. - The audit service is responsible for logging the event.

  #9583
  #9966
  cs3org/reva#4832

• Enhancement - Update web to v10.2.0: #9988

  Tags: web

  We updated ownCloud Web to v10.2.0. Please refer to the changelog (linked) for
  details on the web release.

  • Bugfix owncloud/web#11512: OCM invite generation body format
  • Bugfix owncloud/web#11526: Logout on access token renewal failure
  • Enhancement owncloud/web#11377: Replace custom datepicker with native html element
  • Enhancement [owncloud...

5.0.7

Table of Contents

• Changelog for 5.0.7

Changes in 5.0.7

Summary

• Enhancement - Add virus filter to sessions command: #9041
• Enhancement - Assimilate clean into sessions command: #9828
• Enhancement - Update web to v8.0.5: #9958

Details

• Enhancement - Add virus filter to sessions command: #9041

  Allow filtering upload session by virus status (has-virus=true/false)

  #9041

• Enhancement - Assimilate clean into sessions command: #9828

  We deprecated ocis storage-user uploads clean and added the same logic to
  ocis storage-users uploads session --clean

  #9828

• Enhancement - Update web to v8.0.5: #9958

  Tags: web

  We updated ownCloud Web to v8.0.5. Please refer to the changelog (linked) for
  details on the web release.

  • Bugfix owncloud/web#11395:
    Missing space members for group memberships - Bugfix
    owncloud/web#11263: Show more
    toggle in space members view not reactive - Bugfix
    owncloud/web#11263: Space show
    links from other spaces - Bugfix
    owncloud/web#11303: Uploading
    nested folders

  #9958
  https://github.com/owncloud/web/releases/tag/v8.0.5

5.0.7-rc.1

📝 Changes in 5.0.7-rc.1

Summary

• Enhancement - Add virus filter to sessions command: #9041
• Enhancement - Assimilate clean into sessions command: #9828
• Enhancement - Update web to v8.0.5: #9958

Details

• Enhancement - Add virus filter to sessions command: #9041

  Allow filtering upload session by virus status (has-virus=true/false)

  #9041

• Enhancement - Assimilate clean into sessions command: #9828

  We deprecated ocis storage-user uploads clean and added the same logic to
  ocis storage-users uploads session --clean

  #9828

• Enhancement - Update web to v8.0.5: #9958

  Tags: web

  We updated ownCloud Web to v8.0.5. Please refer to the changelog (linked) for
  details on the web release.

  • Bugfix owncloud/web#11395: Missing space members for group memberships
  • Bugfix owncloud/web#11263: Show more toggle in space members view not reactive
  • Bugfix owncloud/web#11263: Space show links from other spaces
  • Bugfix owncloud/web#11303: Uploading nested folders

5.0.7-alpha.1

Changes in 5.0.7-alpha.1

Summary

• Enhancement - Add virus filter to sessions command: #9041
• Enhancement - Assimilate clean into sessions command: #9828
• Enhancement - Update web to v8.0.5: #9958

Details

• Enhancement - Add virus filter to sessions command: #9041

  Allow filtering upload session by virus status (has-virus=true/false)

  #9041

• Enhancement - Assimilate clean into sessions command: #9828

  We deprecated ocis storage-user uploads clean and added the same logic to
  ocis storage-users uploads session --clean

  #9828

• Enhancement - Update web to v8.0.5: #9958

  Tags: web

  We updated ownCloud Web to v8.0.5. Please refer to the changelog (linked) for
  details on the web release.

  • Bugfix owncloud/web#11395:
    Missing space members for group memberships - Bugfix
    owncloud/web#11263: Show more
    toggle in space members view not reactive - Bugfix
    owncloud/web#11263: Space show
    links from other spaces - Bugfix
    owncloud/web#11303: Uploading
    nested folders

6.3.0

Table of Contents

• Changelog for 6.3.0

Changes in 6.3.0

Summary

• Bugfix - Ignore address for kubernetes registry: #9490
• Bugfix - Use bool type for web embed delegatedAuthentication: #9692
• Bugfix - Repair nats-js-kv registry: #9734
• Bugfix - Use less selectors that watch the registry: #9741
• Bugfix - We fixed the client config generation for the built in IDP: #9770
• Bugfix - Change ocmproviders config defaultpath: #9778
• Bugfix - Web theme color contrasts: #10726
• Enhancement - New WOPI operations added to the collaboration service: #9505
• Enhancement - Allow configuring grpc max connection age: #9657
• Enhancement - Tracing improvements in the collaboration service: #9684
• Enhancement - Local WEB App configuration: #9691
• Enhancement - Bump tusd pkg to v2: #9714
• Enhancement - Gateways should directly talk to themselves: #9714
• Enhancement - Support Skyhigh Security ICAP as an ICAP server: #9720
• Enhancement - Added generic way to translate composite entities: #9722
• Enhancement - Add an API to auth-app service: #9755
• Enhancement - Bump go-micro plugins pkg: #9756
• Enhancement - Allow querying federated user roles for sharing: #9765
• Enhancement - Refactor the connector in the collaboration service: #9771
• Enhancement - Add OCIS_ENABLE_OCM env var: #9784
• Enhancement - OCM related adjustments in graph: #9788
• Enhancement - Update web to v10.1.0: #9832
• Enhancement - Bump reva to 2.23.0: #9852

Details

• Bugfix - Ignore address for kubernetes registry: #9490

  We no longer pass an address to the go micro kubernetes registry implementation.
  This causes the implementation to autodetect the namespace and not hardcode it
  to default.

  #9490

• Bugfix - Use bool type for web embed delegatedAuthentication: #9692

  #9692

• Bugfix - Repair nats-js-kv registry: #9734

  The registry would always send traffic to only one pod. This is now fixed and
  load should be spread evenly. Also implements watcher method so the cache can
  use it. Internally, it can now distinguish services by version and will
  aggregate all nodes of the same version into a single service, as expected by
  the registry cache and watcher.

  #9734
  #9726
  #9656

• Bugfix - Use less selectors that watch the registry: #9741

  The proxy now shares the service selector for all host lookups.

  #9741

• Bugfix - We fixed the client config generation for the built in IDP: #9770

  We now use the OCIS_URL to generate the web client registration configuration.
  It does not make sense use the OCIS_ISSUER_URL if the idp was configured to run
  on a different domain.

  #9770

• Bugfix - Change ocmproviders config defaultpath: #9778

  We moved the default location of the ocmproviders.json config file out of the
  data directory of the ocm service to the ocis config directory.

  #9778

• Bugfix - Web theme color contrasts: #10726

  Web theme colors have been enhanced so they have at least a 4.5:1 contrast ratio
  because of a11y reasons.

  owncloud/web#10726
  owncloud/web#11331
  #9752

• Enhancement - New WOPI operations added to the collaboration service: #9505

  PutRelativeFile, DeleteFile and RenameFile operations have been added to the
  collaboration service. GetFileInfo operation will now report the support of
  these operations to the WOPI app

  #9505

• Enhancement - Allow configuring grpc max connection age: #9657

  We added a GRPC_MAX_CONNECTION_AGE env var that allows limiting the lifespan of
  connections. A closed connection triggers grpc clients to do a new DNS lookup to
  pick up new IPs.

  #9657

• Enhancement - Tracing improvements in the collaboration service: #9684

  Uploads and downloads through the collaboration service will be traced. The
  openInApp request will also be linked properly with other requests in the
  tracing. In addition, the collaboration service will include some additional
  information in the traces. Filtering based on that information might be an
  option.

  #9684

• Enhancement - Local WEB App configuration: #9691

  We've added a new feature which allows configuring applications individually
  instead of using the global apps.yaml file. With that, each application can have
  its own configuration file, which will be loaded by the WEB service.

  The local configuration has the highest priority and will override the global
  configuration. The Following order of precedence is used: local.config >
  global.config > manifest.config.

  Besides the configuration, the application now be disabled by setting the
  disabled field to true in one of the configuration files.

  #9687
  #9691

• Enhancement - Bump tusd pkg to v2: #9714

  Bumps the tusd pkg to v2.4.0

  #9714

• Enhancement - Gateways should directly talk to themselves: #9714

  The CS3 gateway can directly to itself when it wants to talk to the registries
  running in the same reva runtime.

  #9714

• Enhancement - Support Skyhigh Security ICAP as an ICAP server: #9720

  We have upgraded the antivirus ICAP client library, bringing enhanced
  performance and reliability to our antivirus scanning service. With this update,
  the Skyhigh Security ICAP can now be used as an ICAP server, providing robust
  and scalable antivirus solutions.

  #9720
  https://github.com/fschade/icap-client/pull/6

• Enhancement - Added generic way to translate composite entities: #9722

  Added a generic way to translate the necessary fields in composite entities. The
  function takes the entity, translation function and fields to translate that are
  described by the TranslateField function. The function supports nested structs
  and slices of structs.

  #9700
  #9722

• Enhancement - Add an API to auth-app service: #9755

  Adds an API to create, list and delete app tokens. Includes an impersonification
  feature for migration scenarios.

  #9755

• Enhancement - Bump go-micro plugins pkg: #9756

  Bump plugins pkg to include fix for cache delete

  #9756

• Enhancement - Allow querying federated user roles for sharing: #9765

  When listing permissions clients can now fetch the list of available federated
  sharing roles by sending a GET /graph/v1beta1/drives/{driveid}/items/{itemid}/[email protected]/rolePermissions/any(p:contains(p/condition, '@Subject.UserType=="Federated"')) request. Note that this is the only
  supported filter expression. Federated sharing roles will be omitted from
  requests without this filter.

  #9765

• Enhancement - Refactor the connector in the collaboration service: #9771

  This will simplify and homogenize the code around the connector

  #9771

• Enhancement - Add OCIS_ENABLE_OCM env var: #9784

  We added a new OCIS_ENABLE_OCM env var that will enable all ocm flags.

  #9784

• Enhancement - OCM related adjustments in graph: #9788

  The /users enpdoint of the graph service was cha...