6.1.0

Table of Contents

• Changelog for 6.1.0

Changes in 6.1.0

Summary

• Bugfix - Fix sharing-ng permission listings for personal and virtual drive items: #9438
• Bugfix - Add inotify-tools and bash packages to docker files: #9440
• Bugfix - Allow all uploads to restart: #9465
• Bugfix - Fix the email notification service: #9467
• Bugfix - Fix Password Reset: #9479
• Bugfix - Fixed the email template: #9484
• Bugfix - Polish secure view: #9532
• Enhancement - Rudimentary OCM support in graph: #8909
• Enhancement - Activitylog API: #9361
• Enhancement - Add the backchannel logout event: #9447
• Enhancement - Add fail flag to consistency check: #9447
• Enhancement - Configurable OCM timeouts: #9450
• Enhancement - Deprecate gateway environment variables: #9451
• Enhancement - Allow reindexing all spaces: #9456
• Enhancement - Autoprovision group memberships: #9458
• Enhancement - Allow disable versioning: #9473
• Enhancement - Empty trash directories: #9483
• Enhancement - Various fixes for the activitylog service: #9485
• Enhancement - Add cli to purge revisions: #9497
• Enhancement - Update web to v9.1.0: #9547
• Enhancement - Bump reva to v2.21.0: #9556

Details

• Bugfix - Fix sharing-ng permission listings for personal and virtual drive items: #9438

  Fixes an issue where the sharing-ng service was not able to list permissions for
  personal and virtual drive items.

  #8922
  #9438

• Bugfix - Add inotify-tools and bash packages to docker files: #9440

  We need both packages to make posixfs work. Later, once the golang package is
  fixed to not depend on bash any more, bash can be removed again.

  #9440

• Bugfix - Allow all uploads to restart: #9465

  On postprocessing-restart, allow all uploads to restart even if one fails.

  #9465

• Bugfix - Fix the email notification service: #9467

  We fixed an error in the notification service that caused the email notification
  to fail when the user's display name contained special characters.

  #9402
  #9467

• Bugfix - Fix Password Reset: #9479

  The ocis idm resetpassword always used the hardcoded admin name for the
  user. Now user name can be specified via the --user-name (-u) flag.

  #9479

• Bugfix - Fixed the email template: #9484

  Fixed the email template when the description was marked as a link.

  #8424
  #9484

• Bugfix - Polish secure view: #9532

  We fixed a bug where viewing pdf files in secure view mode was not possible.
  Secure view access on space roots was dropped because of unwanted side effects.

  #9532

• Enhancement - Rudimentary OCM support in graph: #8909

  We now allow creating and accepting OCM shares.

  #8909

• Enhancement - Activitylog API: #9361

  Adds an api to the activitylog service which allows retrieving data by clients
  to show item activities

  #9361

• Enhancement - Add the backchannel logout event: #9447

  We've added the backchannel logout event

  #9355
  #9447

• Enhancement - Add fail flag to consistency check: #9447

  We added a --fail flag to the ocis backup consistency command. If set to
  true, the command will return a non-zero exit code if any inconsistencies are
  found. This allows you to use the command in scripts and CI/CD pipelines to
  ensure that backups are consistent.

  #9447

• Enhancement - Configurable OCM timeouts: #9450

  We added OCM_OCM_INVITE_MANAGER_TOKEN_EXPIRATION and
  OCM_OCM_INVITE_MANAGER_TIMEOUT to allow changing the default invite token
  duration as well as the request timeout for requests made to other instances.

  #9450

• Enhancement - Deprecate gateway environment variables: #9451

  Deprecate service specific _GATEWAY_NAME env vars. It makes no sense to point
  one specific service to a different gateway.

  #9451

• Enhancement - Allow reindexing all spaces: #9456

  Adds a --all-spaces flag to the ocis search index command to allow
  reindexing all spaces at once.

  #9456

• Enhancement - Autoprovision group memberships: #9458

  When PROXY_AUTOPROVISION_ACCOUNTS is enabled it is now possible to automatically
  maintain the group memberships of users via a configurable OIDC claim.

  #5538
  #9458

• Enhancement - Allow disable versioning: #9473

  Adds new configuration options to disable versioning for the storage providers

  #9473

• Enhancement - Empty trash directories: #9483

  We have added a cli-command that allows cleaning up empty directories in the
  trashbins folder structure in decomposedFS.

  #9393
  #9271
  #9483

• Enhancement - Various fixes for the activitylog service: #9485

  First round of fixes to make the activitylog service more robust and reliable.

  #9485
  #9467

• Enhancement - Add cli to purge revisions: #9497

  Adds a cli that allows removing all revisions for a storage-provider.

  #9497

• Enhancement - Update web to v9.1.0: #9547

  Tags: web

  We updated ownCloud Web to v9.1.0. Please refer to the changelog (linked) for
  details on the web release.

  • Bugfix owncloud/web#11058: Resetting user after logout
  • Bugfix owncloud/web#11059: Admin settings UI update after save
  • Bugfix owncloud/web#11068: Editor save after token renewal
  • Bugfix owncloud/web#11132: Trash bin breaking on navigation
  • Bugfix owncloud/web#11135: Tooltips in trashbin covered
  • Bugfix owncloud/web#11137: Duplicated elements on public link page
  • Bugfix owncloud/web#11139: Secure view default action
  • Enhancement owncloud/web#5387: Accessibility improvements
  • Enhancement owncloud/web#10996: Activities sidebar app panel
  • Enhancement owncloud/web#11054: Consistent initial loading spinner
  • Enhancement owncloud/web#11057: Add action drop down to app top bar
  • Enhancement owncloud/web#11060: Decrease text editor loading times
  • Enhancement owncloud/web#11077: Reduce network load on token renewal
  • Enhancement owncloud/web#11085: Open file directly from app
  • Enhancement owncloud/web#11093: Enable default autosave in editors

  #9547
  https://github.com/owncloud/web/releases/tag/v9.1.0

• Enhancement - Bump reva to v2.21.0: #9556

  • Bugfix cs3org/reva#4740: Disallow reserved filenames
  • Bugfix [cs3org/reva#4748](https://github.com/cs3...

6.1.0-alpha.2

Table of Contents

6.1.0-alpha.1

Table of Contents

6.0.0

Changes in 6.0.0

Important

This is a Rolling Release
Please check the documentation about the scope of this release.

Summary

• Bugfix - Fix an error when lock/unlock a public shared file: #8472
• Bugfix - Fix the docker-compose wopi: #8483
• Bugfix - Fix remove/update share permissions: #8529
• Bugfix - Correct the default mapping of roles: #8534
• Bugfix - Fix graph drive invite: #8538
• Bugfix - Fix the mount points naming: #8543
• Bugfix - We now always select the next clients when autoaccepting shares: #8570
• Bugfix - Always select next before making calls: #8578
• Bugfix - Fix sharing invite on virtual drive: #8609
• Bugfix - Prevent copying a file to a parent folder: #8649
• Bugfix - Disable Multipart uploads: #8666
• Bugfix - Internal links shouldn't have a password: #8668
• Bugfix - Fix uploading via a public link: #8702
• Bugfix - Mask user email in output: #8726
• Bugfix - Fix restarting of postprocessing: #8782
• Bugfix - Fix the create personal space cache: #8799
• Bugfix - Fix removing groups from space: #8803
• Bugfix - Validate conditions for sharing roles by resource type: #8815
• Bugfix - Fix creating the drive item: #8817
• Bugfix - Fix unmount item from share: #8827
• Bugfix - Fix creating new WOPI documents on public shares: #8828
• Bugfix - Nats reconnects: #8880
• Bugfix - Update the admin user role assignment to enforce the config: #8897
• Bugfix - Fix affected users on sses: #8928
• Bugfix - Fix well-known rewrite endpoint: #8946
• Bugfix - Crash when processing crafted TIFF files: #8981
• Bugfix - Fix collaboration registry setting: #9105
• Bugfix - Service startup of WOPI example: #9127
• Bugfix - Fix the status code for multiple mount and unmount share: #9193
• Bugfix - Don't show thumbnails for secureview shares: #9299
• Bugfix - Fix share update: #9301
• Bugfix - Fix the error translation from utils: #9331
• Bugfix - Fix the settings metedata tests: #9341
• Bugfix - The hidden shares have been excluded from a search result: #9371
• Bugfix - Encode Registry Keys: #9385
• Change - Change the default store for presigned keys to nats-js-kv: #8419
• Change - Disable resharing by default for deprecation: #8653
• Change - The filesystem backend for the settings service has been removed: #9138
• Change - Define maximum input image dimensions and size when generating previews: #9360
• Enhancement - Introduce staticroutes package & remove well-known OIDC middleware: #6095
• Enhancement - Graphs endpoint for mounting and unmounting shares: #7885
• Enhancement - Add epub reader to web default apps: #8410
• Enhancement - Change Cors default settings: #8518
• Enhancement - Custom WEB App Loading: #8523
• Enhancement - Update to go 1.22: #8586
• Enhancement - Send more sse events: #8587
• Enhancement - Send SSE when file is locked/unlocked: #8602
• Enhancement - Add the spaceID to sse: #8614
• Enhancement - The graph endpoints for listing permission works for spaces now: #8642
• Enhancement - Bump keycloak: #8687
• Enhancement - Make IDP cookies same site strict: #8716
• Enhancement - Make server side space templates production ready: #8723
• Enhancement - Sharing NG role names and descriptions: #8743
• Enhancement - Ability to Change Share Item Visibility in Graph API: #8750
• Enhancement - Enable web extension drawio by default: #8760
• Enhancement - Remove resharing: #8762
• Enhancement - Add CSP and other security related headers to oCIS: #8777
• Enhancement - Add FileTouched SSE Event: #8778
• Enhancement - Prepare runners to start the services: #8802
• Enhancement - Sharing SSEs: #8854
• Enhancement - Secure viewer share role: #8907
• Enhancement - Add Link SSEs: #8908
• Enhancement - ShareeIDs in SSEs: #8915
• Enhancement - Allow to resolve public shares without the ocs tokeninfo endpoint: #8926
• Enhancement - Initiator-IDs: #8936
• Enhancement - Add endpoint for getting drive items: #8939
• Enhancement - Improve infected file handling: #8947
• Enhancement - Configurable claims for auto-provisioning user accounts: #8952
• Enhancement - Bump nats-js-kv pkg: #8953
• Enhancement - Graph permission created date time: #8954
• Enhancement - Add virus filter to sessions command: #9041
• Enhancement - Assimilate clean into sessions command: #9041
• Enhancement - Add remote item id to WebDAV report responses: #9094
• Enhancement - Theme Processing and Logo Customization: #9133
• Enhancement - Add watermark text: #9144
• Enhancement - Update selected attributes of autoprovisioned users: #9166
• Enhancement - Limit concurrent thumbnail requests: #9199
• Enhancement - The storage-users doc updated: #9228
• Enhancement - Docker compose example for ClamAV: #9229
• Enhancement - Add command to check ocis backup consistency: #9238
• Enhancement - Web server compression: #9287
• Enhancement - Add secureview flag when listing apps via http: #9289
• Enhancement - Activitylog Service: #9327
• Enhancement - Update web to v9.0.0-alpha.7: #9395
• Enhancement - Bump Reva to v2.20.0: #9415

Details

• Bugfix - Fix an error when lock/unlock a public shared file: #8472

  We fixed a bug when anonymous user with viewer role in public link of a folder
  can lock/unlock a file inside it

  #7785
  #8472

• Bugfix - Fix the docker-compose wopi: #8483

  We fixed an issue when Collabora is not available time by time after running the
  docker-compose wopi deployment

  #8474
  #8483

• Bugfix - Fix remove/update share permissions: #8529

  This is a workaround that should prevent removing or changing the share
  permissions when the file is locked. These limitations have to be rem...

6.0.0-alpha.2

Table of Contents

6.0.0-alpha.1

Table of Contents

5.0.5

Table of Contents

• Changelog for 5.0.5

Changes in 5.0.5

Summary

• Enhancement - Update web to v8.0.2: #9153

Details

• Enhancement - Update web to v8.0.2: #9153

  Tags: web

  We updated ownCloud Web to v8.0.2. Please refer to the changelog (linked) for
  details on the web release.

  • Bugfix owncloud/web#10515: Folder replace
  • Bugfix owncloud/web#10598: Hidden right sidebar on small screens
  • Bugfix owncloud/web#10634: Scope loss when showing search results
  • Bugfix owncloud/web#10657: Theme loading without matching theme
  • Bugfix owncloud/web#10763: Flickering loading indicator
  • Bugfix owncloud/web#10810: Download files with special chars in name
  • Bugfix owncloud/web#10881: IDP logout issues

  #9153
  https://github.com/owncloud/web/releases/tag/v8.0.2

5.0.4

Table of Contents

• Changelog for 5.0.4

Changes in 5.0.4

Summary

• Bugfix - Update reva to v2.19.7: #9011
• Bugfix - Service startup of WOPI example: #9127
• Bugfix - Nats reconnects: #9139

Details

• Bugfix - Update reva to v2.19.7: #9011

  We updated reva to v2.19.7

  • Enhancement cs3org/reva#4673: Add virus filter to list uploads sessions

  #9011

• Bugfix - Service startup of WOPI example: #9127

  We fixed a bug in the service startup of the appprovider-onlyoffice in the
  ocis_wopi deployment example.

  #9127

• Bugfix - Nats reconnects: #9139

  We fixed the reconnect handling of the natjs kv registry.

  #9139
  #8880

5.0.4-rc.1

Changes in 5.0.4

Summary

• Bugfix - Update reva to v2.19.7: #9011
• Bugfix - Service startup of WOPI example: #9127
• Bugfix - Nats reconnects: #9139

Details

• Bugfix - Update reva to v2.19.7: #9011

  We updated reva to v2.19.7

  • Enhancement cs3org/reva#4673: Add virus filter to list uploads sessions

  #9011

• Bugfix - Service startup of WOPI example: #9127

  We fixed a bug in the service startup of the appprovider-onlyoffice in the
  ocis_wopi deployment example.

  #9127

• Bugfix - Nats reconnects: #9139

  We fixed the reconnect handling of the natjs kv registry.

  #9139
  #8880

5.0.3

Changes in 5.0.3

Summary

• Bugfix - Update the admin user role assignment to enforce the config: #8918
• Bugfix - Crash when processing crafted TIFF files: #8981
• Bugfix - Update reva to v2.19.5: #9011
• Bugfix - Fix infected file handling: #9011

Details

• Bugfix - Update the admin user role assignment to enforce the config: #8918

  The admin user role assigment was not updated after the first assignment. We now
  read the assigned role during init and update the admin user ID accordingly if
  the role is not assigned. This is especially needed when the OCIS_ADMIN_USER_ID
  is set after the autoprovisioning of the admin user when it originates from an
  external Identity Provider.

  #8918
  #8897

• Bugfix - Crash when processing crafted TIFF files: #8981

  Fix for a vulnerability with low severity in disintegration/imaging.

  #8981
  GHSA-q7pp-wcgr-pffx

• Bugfix - Update reva to v2.19.5: #9011

  We updated reva to v2.19.5

  • Bugfix cs3org/reva#4654: Write blob based on session id
  • Bugfix cs3org/reva#4666: Fix uploading via a public link
  • Bugfix cs3org/reva#4665: Fix creating documents in nested folders of public shares
  • Enhancement cs3org/reva#4655: Bump mockery to v2.40.2
  • Enhancement cs3org/reva#4664: Add ScanData to Uploadsession

  #9011

• Bugfix - Fix infected file handling: #9011

  Reworks virus handling. Shows scandate and outcome on ocis storage-users uploads
  sessions. Avoids retrying infected files on ocis postprocessing restart.

  #9011