2.0.0-rc.2

Changes between 2.0.0-rc.2 and 2.0.0-rc1

Warning
BREAKING Change: In order to make every ocis storage provider ID unique by default, we needed to use a random uuidv4 during ocis init. Existing istallations need to set this value explicitly or ocis will terminate after the upgrade.
To upgrade from 2.0.0-rc.1 to 2.0.0-rc.2 you need to set GATEWAY_STORAGE_USERS_MOUNT_ID and STORAGE_USERS_MOUNT_ID to the same random uuidv4.

You can also add

storage_users:
 mount_id: some-random-uuid
gateway:
 storage_registry:
   storage_users_mount_id: some-random-uuid

to the ocis.yaml file which was created during initialisation

Changing the ID of the storage-users provider will change all

• WebDAV Urls
• FileIDs
• SpaceIDs
• Bookmarks
  and will make all existing shares invalid.
  The Android, Web and iOS clients have continue to work without interruptions. The Desktop Client sync connections need to be deleted and recreated.
  Sorry for the inconveniance 😅
  WORKAROUND - Not Recommended: You can avoid this by setting
  GATEWAY_STORAGE_USERS_MOUNT_ID=1284d238-aa92-42ce-bdc4-0b0000009157 and
  STORAGE_USERS_MOUNT_ID=1284d238-aa92-42ce-bdc4-0b0000009157
  But this will cause problems later when two ocis instances want to federate.

ocis

• Bugfix - Lower IDP token lifespans: #5077
• Bugfix - Do not reindex a space twice at the same time: #5001
• Bugfix - Find spaces by their name: #5044
• Bugfix - Adjust cache related configuration options: #5087
• Bugfix - Fix notifications Web UI url: #4998
• Bugfix - Initial role assingment with external IDM: #5045
• Bugfix - Make storage users mount ids unique by default: #5091
• Bugfix - Update reva: #5092
• Enhancement - Add tracing to search: #5113
• Enhancement - Add the "hidden" state to the search index: #5018
• Enhancement - Remove windows from ci & release makefile: #5026
• Enhancement - Update ownCloud Web to v6.0.0-rc.8: #5120

Reva

• Bugfix cs3org/reva#3436: Allow updating to internal link
• Bugfix cs3org/reva#3473: Decomposedfs fix revision download
• Bugfix cs3org/reva#3482: Decomposedfs propagate sizediff
• Bugfix cs3org/reva#3449: Don't leak space information on update drive
• Bugfix cs3org/reva#3470: Add missing events for managing spaces
• Bugfix cs3org/reva#3472: Fix an oCDAV error message
• Bugfix cs3org/reva#3452: Fix access to spaces shared via public link
• Bugfix cs3org/reva#3440: Set proper names and paths for space roots
• Bugfix cs3org/reva#3437: Refactor delete error handling
• Bugfix cs3org/reva#3432: Remove share jail fix
• Bugfix cs3org/reva#3458: Set the Oc-Fileid header when copying items
• Enhancement cs3org/reva#3441: Cover ocdav with more unit tests
• Enhancement cs3org/reva#3493: Configurable filelock duration factor in decomposedfs
• Enhancement cs3org/reva#3397: Reduce lock contention issues

Web

• Bugfix owncloud/web#7946: Prevent shares from disappearing after sharing with groups
• Bugfix owncloud/web#7936: Editing text files on public pages
• Bugfix owncloud/web#7975: Prevent file upload when folder creation failed
• Bugfix owncloud/web#8007: Missing password form on public drop page
• Bugfix owncloud/web#7985: Prevent retrying uploads with status code 5xx
• Bugfix owncloud/web#7941: Add origin check to Draw.io events
• Bugfix owncloud/web#8006: Public link loading on role change
• Bugfix owncloud/web#7962: Quota check when replacing files
• Bugfix owncloud/web#7960: Display error messages in text editor
• Bugfix owncloud/web#7956: Introduce "upload finalizing"-state in upload overlay
• Bugfix owncloud/web#8011: Prevent unnecessary request when saving a user
• Bugfix owncloud/web#7989: Versions on the "Shared with me"-page
• Change owncloud/web#7935: Remove mediaSource and v-image-source

All Changes in 2.x

• Bugfix - Fix configuration of mimetypes for the app registry: #4411
• Bugfix - Disable default expiration for public links: #4445
• Bugfix - Show help for some commands when unconfigured: #4405
• Bugfix - Translations on login page: #7550
• Bugfix - Autocreate IDP private key also if file exists but is empty: #4394
• Bugfix - Rename extensions to services (leftover occurences): #4407
• Bugfix - Fix DN parsing issues and sizelimit handling in libregraph/idm: #3631
• Bugfix - Lower IDP token lifespans: #5077
• Bugfix - Remove runtime kill and run commands: #3740
• Bugfix - Check permissions when deleting Space: #3709
• Bugfix - Do not reindex a space twice at the same time: #5001
• Bugfix - Disable federation capabilities: #4864
• Bugfix - Decomposedfs increase filelock duration factor: #5130
• Bugfix - Find spaces by their name: #5044
• Bugfix - Logging in on the wrong account when an email address is not unique: #4039
• Bugfix - Allow empty environment variables: #3892
• Bugfix - Remove unused transfer secret from app provider: #3798
• Bugfix - Fix authentication for autoprovisioned users: #4616
• Bugfix - Bring back the settings UI in Web: #4691
• Bugfix - Fix cache stat table config: #4732
• Bugfix - Adjust cache related configuration options: #5087
• Bugfix - Make IDP secrets configurable via environment variables: #3744
• Bugfix - CSP rules for silent token refresh in iframe: #4031
• Bugfix - Enable debug server by default: #3827
• Bugfix - Rework default role provisioning: #3900
• Bugfix - Fix search index getting out of sync: #3851
• Bugfix - Change the default value for PROXY_OIDC_INSECURE to false: #4601
• Bugfix - Fix sharing jsoncs3 driver options: #4593
• Bugfix - Inconsistency env var naming for LDAP filter configuration: #3890
• Bugfix - Fix LDAP insecure options: #3897
• Bugfix - Fix handling of invalid LDAP users and groups: #4274
• Bugfix - Fix logging levels: #4102
• Bugfix - Don't run auth-bearer service by default: #4692
• Bugfix - Fix notifications service settings: #4652
• Bugfix - Fix notifications Web UI url: #4998
• Bugfix - Fix OCIS_RUN_SERVICES: #4133
• Bugfix - Fix the OIDC provider cache: #4600
• Bugfix - Fix permissions in REPORT: #4520
• Bugfix - Set default name for public link via capabilities: #3834
• Bugfix - Remove legacy accounts proxy routes: #3831
• Bugfix - Fix unused config option GRAPH_SPACES_INSECURE: [#55555](https://github.com/owncloud...

2.0.0-rc.1

Changes in 2.0.0-rc.1

The following sections list the changes for 2.0.0-rc.1.

Summary

• Bugfix - Fix configuration of mimetypes for the app registry: #4411
• Bugfix - Disable default expiration for public links: #4445
• Bugfix - Show help for some commands when unconfigured: #4405
• Bugfix - Translations on login page: #7550
• Bugfix - Autocreate IDP private key also if file exists but is empty: #4394
• Bugfix - Rename extensions to services (leftover occurences): #4407
• Bugfix - Fix DN parsing issues and sizelimit handling in libregraph/idm: #3631
• Bugfix - Remove runtime kill and run commands: #3740
• Bugfix - Check permissions when deleting Space: #3709
• Bugfix - Disable federation capabilities: #4864
• Bugfix - Logging in on the wrong account when an email address is not unique: #4039
• Bugfix - Allow empty environment variables: #3892
• Bugfix - Remove unused transfer secret from app provider: #3798
• Bugfix - Fix authentication for autoprovisioned users: #4616
• Bugfix - Bring back the settings UI in Web: #4691
• Bugfix - Fix cache stat table config: #4732
• Bugfix - Make IDP secrets configurable via environment variables: #3744
• Bugfix - CSP rules for silent token refresh in iframe: #4031
• Bugfix - Enable debug server by default: #3827
• Bugfix - Rework default role provisioning: #3900
• Bugfix - Fix search index getting out of sync: #3851
• Bugfix - Change the default value for PROXY_OIDC_INSECURE to false: #4601
• Bugfix - Fix sharing jsoncs3 driver options: #4593
• Bugfix - Inconsistency env var naming for LDAP filter configuration: #3890
• Bugfix - Fix LDAP insecure options: #3897
• Bugfix - Fix handling of invalid LDAP users and groups: #4274
• Bugfix - Fix logging levels: #4102
• Bugfix - Don't run auth-bearer service by default: #4692
• Bugfix - Fix notifications service settings: #4652
• Bugfix - Fix OCIS_RUN_SERVICES: #4133
• Bugfix - Fix the OIDC provider cache: #4600
• Bugfix - Fix permissions in REPORT: #4520
• Bugfix - Set default name for public link via capabilities: #3834
• Bugfix - Remove legacy accounts proxy routes: #3831
• Bugfix - Fix unused config option GRAPH_SPACES_INSECURE: #55555
• Bugfix - Remove unused configuration options: #3973
• Bugfix - Remove static ocs user backend config: #4077
• Bugfix - Remove unused OCS storage configuration: #3955
• Bugfix - Fix the ocis search command: #3796
• Bugfix - Rename search env variable for the grpc server address: #3800
• Bugfix - Fix search in received shares: #4308
• Bugfix - Fix search report: #7557
• Bugfix - Render webdav permissions as string in search report: #4575
• Bugfix - Fix make sensitive config values in the proxy's debug server: #4086
• Bugfix - Fix the idm and settings extensions' admin user id configuration option: #3799
• Bugfix - Mail notifications for group shares: #4714
• Bugfix - Substring search for sharees: #547
• Bugfix - Fix configuration validation for extensions' server commands: #3911
• Bugfix - Fix startup error logging: #4093
• Bugfix - Disable cache for selected static web assets: #4809
• Bugfix - Fix multiple storage-users env variables: #3802
• Bugfix - Thumbnails for /dav/xxx?preview=1 requests: #3567
• Bugfix - Fix unfindable entities from shares/publicshares: #4651
• Bugfix - Fix unrestricted quota on the graphAPI: #4363
• Bugfix - Fix user autoprovisioning: #3893
• Bugfix - Fix version info: #3953
• Bugfix - Fix version number in status page: #3788
• Bugfix - Fix CORS in frontend service: #4948
• Bugfix - Graph service now forwards trace context: #4582
• Bugfix - Fix the webdav URL of drive roots: #3706
• Bugfix - Idp: Check if CA certificate if present: #3623
• Bugfix - Fix graph endpoint: #3925
• Bugfix - Escape DN attribute value: #4117
• Bugfix - Make IDP only wait for certs when using LDAP: #3965
• Bugfix - Make ocdav service behave properly: #3957
• Bugfix - Return proper errors when ocs/cloud/users is using the cs3 backend: #3483
• Bugfix - Polish search: #4094
• Bugfix - Fix the shareroot path in REPORT responses: #4859
• Bugfix - Remove the storage-users event configuration: #4825
• Bugfix - Trigger a rescan of spaces in the search index when items have changed: #4777
• Bugfix - Save Katherine: #3823
• Bugfix - Fix permission check in settings service: #4890
• Bugfix - Fix Thumbnails for IDs without a trailing path: #3791
• Bugfix - Space Creators can hand over spaces: #4244
• Bugfix - Make tokeninfo endpoint unprotected: #4715
• Bugfix - URL encode the webdav url in the graph API: #3597
• Bugfix - Store user passwords hashed in idm: #3778
• Bugfix - Fix wopi access to public shares: #4631
• Change - Update ocis packages and imports to V2: #3678
• Change - Build service frontends with pnpm instead of yarn: #4878
• Change - Load configuration files just from one directory: #3587
• Change - Reduce permissions on docker image predeclared volumes: #3641
• Change - Introduce ocis init and remove all default secrets: #3551
• Change - Rename "uploads purge" command to "uploads clean": #4403
• Change - Enable privatelinks by default: #4599
• Change - The glauth and accounts services are removed: #3685
• Change - Reduce drives in graph /me/drives API: #3629
• Change - Switched default configuration to use libregraph/idm: #3331
• Change - Rename MetadataUserID: #3671
• Change - Use new space ID util functions: #3648
• Change - Prevent access to disabled space: #3779
• Change - Rename serviceUser to systemUser: #3673
• Change - Use the spaceID on the cs3 resource: [#4748](https://github.com/owncloud/ocis/pu...

2.0.0-beta.8

Changes in 2.0.0-beta.8

Summary

• Bugfix - Fix configuration of mimetypes for the app registry: #4411
• Bugfix - Disable default expiration for public links: #4445
• Bugfix - Show help for some commands when unconfigured: #4405
• Bugfix - Translations on login page: #7550
• Bugfix - Autocreate IDP private key also if file exists but is empty: #4394
• Bugfix - Rename extensions to services (leftover occurences): #4407
• Bugfix - Fix DN parsing issues and sizelimit handling in libregraph/idm: #3631
• Bugfix - Remove runtime kill and run commands: #3740
• Bugfix - Check permissions when deleting Space: #3709
• Bugfix - Logging in on the wrong account when an email address is not unique: #4039
• Bugfix - Allow empty environment variables: #3892
• Bugfix - Remove unused transfer secret from app provider: #3798
• Bugfix - Make IDP secrets configurable via environment variables: #3744
• Bugfix - CSP rules for silent token refresh in iframe: #4031
• Bugfix - Enable debug server by default: #3827
• Bugfix - Rework default role provisioning: #3900
• Bugfix - Fix search index getting out of sync: #3851
• Bugfix - Inconsistency env var naming for LDAP filter configuration: #3890
• Bugfix - Fix LDAP insecure options: #3897
• Bugfix - Fix handling of invalid LDAP users and groups: #4274
• Bugfix - Fix logging levels: #4102
• Bugfix - Fix OCIS_RUN_SERVICES: #4133
• Bugfix - Fix permissions in REPORT: #4520
• Bugfix - Set default name for public link via capabilities: #3834
• Bugfix - Remove legacy accounts proxy routes: #3831
• Bugfix - Fix unused config option GRAPH_SPACES_INSECURE: #55555
• Bugfix - Remove unused configuration options: #3973
• Bugfix - Remove static ocs user backend config: #4077
• Bugfix - Remove unused OCS storage configuration: #3955
• Bugfix - Fix the ocis search command: #3796
• Bugfix - Rename search env variable for the grpc server address: #3800
• Bugfix - Fix search in received shares: #4308
• Bugfix - Fix search report: #7557
• Bugfix - Fix make sensitive config values in the proxy's debug server: #4086
• Bugfix - Fix the idm and settings extensions' admin user id configuration option: #3799
• Bugfix - Substring search for sharees: #547
• Bugfix - Fix configuration validation for extensions' server commands: #3911
• Bugfix - Fix startup error logging: #4093
• Bugfix - Fix multiple storage-users env variables: #3802
• Bugfix - Thumbnails for /dav/xxx?preview=1 requests: #3567
• Bugfix - Fix unrestricted quota on the graphAPI: #4363
• Bugfix - Fix user autoprovisioning: #3893
• Bugfix - Fix version info: #3953
• Bugfix - Fix version number in status page: #3788
• Bugfix - Fix the webdav URL of drive roots: #3706
• Bugfix - Idp: Check if CA certificate if present: #3623
• Bugfix - Fix graph endpoint: #3925
• Bugfix - Escape DN attribute value: #4117
• Bugfix - Make IDP only wait for certs when using LDAP: #3965
• Bugfix - Make ocdav service behave properly: #3957
• Bugfix - Return proper errors when ocs/cloud/users is using the cs3 backend: #3483
• Bugfix - Polish search: #4094
• Bugfix - Save Katherine: #3823
• Bugfix - Fix Thumbnails for IDs without a trailing path: #3791
• Bugfix - Space Creators can hand over spaces: #4244
• Bugfix - URL encode the webdav url in the graph API: #3597
• Bugfix - Store user passwords hashed in idm: #3778
• Change - Update ocis packages and imports to V2: #3678
• Change - Load configuration files just from one directory: #3587
• Change - Reduce permissions on docker image predeclared volumes: #3641
• Change - Introduce ocis init and remove all default secrets: #3551
• Change - Rename "uploads purge" command to "uploads clean": #4403
• Change - The glauth and accounts services are removed: #3685
• Change - Reduce drives in graph /me/drives API: #3629
• Change - Switched default configuration to use libregraph/idm: #3331
• Change - Rename MetadataUserID: #3671
• Change - Use new space ID util functions: #3648
• Change - Prevent access to disabled space: #3779
• Change - Rename serviceUser to systemUser: #3673
• Change - Use the spaceID on the cs3 resource: #4748
• Change - Split MachineAuth from SystemUser: #3672
• Enhancement - Add capability for alias links: #3983
• Enhancement - Add drives field to users endpoint: #4072
• Enhancement - Add FRONTEND_ENABLE_RESHARING env variable: #4023
• Enhancement - Add number of total matches to the search result: #4189
• Enhancement - Align service naming: #3606
• Enhancement - Add acting user to the audit log: #3753
• Enhancement - Add audit events for created containers: #3941
• Enhancement - Don't setup demo role assignments on default: #3661
• Enhancement - Introduce "delete-all-spaces" permission: #4196
• Enhancement - Improve validation of OIDC access tokens: #3841
• Enhancement - Add /app/open-with-web endpoint: #4376
• Enhancement - Add previewFileMimeTypes to web default config: #4414
• Enhancement - Added language option to the app provider: #4399
• Enhancement - Improve error log for "could not get user by claim" error: #4227
• Enhancement - Improve login screen design: #4500
• Enhancement - Add configuration options for mail authentication and encryption: #4443
• Enhancement - Introduce service registry cache: #3833
• Enhancement - Reintroduce user autoprovisioning in proxy: #3860
• Enhancement - Added command to reset administrator password: #4084
• Enhancement - Disable the color logging in docker compose examples: #871
• Enhancement - Allow providing list of services NOT to start: #4254
• Enhancement - Introduce insecure flag for smtp email notifications: #4279
• Enhancement - Optional events in graph service: [#55555](https://github.com/owncloud/...

2.0.0-beta.7

Changes in 2.0.0-beta.7

Summary

• Bugfix - Fix configuration of mimetypes for the app registry: #4411
• Bugfix - Show help for some commands when unconfigured: #4405
• Bugfix - Autocreate IDP private key also if file exists but is empty: #4394
• Bugfix - Rename extensions to services (leftover occurences): #4407
• Bugfix - Fix DN parsing issues and sizelimit handling in libregraph/idm: #3631
• Bugfix - Remove runtime kill and run commands: #3740
• Bugfix - Check permissions when deleting Space: #3709
• Bugfix - Logging in on the wrong account when an email address is not unique: #4039
• Bugfix - Allow empty environment variables: #3892
• Bugfix - Remove unused transfer secret from app provider: #3798
• Bugfix - Make IDP secrets configurable via environment variables: #3744
• Bugfix - CSP rules for silent token refresh in iframe: #4031
• Bugfix - Enable debug server by default: #3827
• Bugfix - Rework default role provisioning: #3900
• Bugfix - Fix search index getting out of sync: #3851
• Bugfix - Inconsistency env var naming for LDAP filter configuration: #3890
• Bugfix - Fix LDAP insecure options: #3897
• Bugfix - Fix handling of invalid LDAP users and groups: #4274
• Bugfix - Fix logging levels: #4102
• Bugfix - Fix OCIS_RUN_SERVICES: #4133
• Bugfix - Set default name for public link via capabilities: #3834
• Bugfix - Remove legacy accounts proxy routes: #3831
• Bugfix - Fix unused config option GRAPH_SPACES_INSECURE: #55555
• Bugfix - Remove unused configuration options: #3973
• Bugfix - Remove static ocs user backend config: #4077
• Bugfix - Remove unused OCS storage configuration: #3955
• Bugfix - Fix the ocis search command: #3796
• Bugfix - Rename search env variable for the grpc server address: #3800
• Bugfix - Fix search in received shares: #4308
• Bugfix - Fix make sensitive config values in the proxy's debug server: #4086
• Bugfix - Fix the idm and settings extensions' admin user id configuration option: #3799
• Bugfix - Substring search for sharees: #547
• Bugfix - Fix configuration validation for extensions' server commands: #3911
• Bugfix - Fix startup error logging: #4093
• Bugfix - Fix multiple storage-users env variables: #3802
• Bugfix - Thumbnails for /dav/xxx?preview=1 requests: #3567
• Bugfix - Fix unrestricted quota on the graphAPI: #4363
• Bugfix - Fix user autoprovisioning: #3893
• Bugfix - Fix version info: #3953
• Bugfix - Fix version number in status page: #3788
• Bugfix - Fix the webdav URL of drive roots: #3706
• Bugfix - Idp: Check if CA certificate if present: #3623
• Bugfix - Fix graph endpoint: #3925
• Bugfix - Escape DN attribute value: #4117
• Bugfix - Make IDP only wait for certs when using LDAP: #3965
• Bugfix - Make ocdav service behave properly: #3957
• Bugfix - Return proper errors when ocs/cloud/users is using the cs3 backend: #3483
• Bugfix - Polish search: #4094
• Bugfix - Save Katherine: #3823
• Bugfix - Fix Thumbnails for IDs without a trailing path: #3791
• Bugfix - Space Creators can hand over spaces: #4244
• Bugfix - URL encode the webdav url in the graph API: #3597
• Bugfix - Store user passwords hashed in idm: #3778
• Change - Update ocis packages and imports to V2: #3678
• Change - Load configuration files just from one directory: #3587
• Change - Reduce permissions on docker image predeclared volumes: #3641
• Change - Introduce ocis init and remove all default secrets: #3551
• Change - Rename "uploads purge" command to "uploads clean": #4403
• Change - The glauth and accounts services are removed: #3685
• Change - Reduce drives in graph /me/drives API: #3629
• Change - Switched default configuration to use libregraph/idm: #3331
• Change - Rename MetadataUserID: #3671
• Change - Use new space ID util functions: #3648
• Change - Prevent access to disabled space: #3779
• Change - Rename serviceUser to systemUser: #3673
• Change - Use the spaceID on the cs3 resource: #4748
• Change - Split MachineAuth from SystemUser: #3672
• Enhancement - Add capability for alias links: #3983
• Enhancement - Add drives field to users endpoint: #4072
• Enhancement - Add FRONTEND_ENABLE_RESHARING env variable: #4023
• Enhancement - Add number of total matches to the search result: #4189
• Enhancement - Align service naming: #3606
• Enhancement - Add acting user to the audit log: #3753
• Enhancement - Add audit events for created containers: #3941
• Enhancement - Don't setup demo role assignments on default: #3661
• Enhancement - Improve validation of OIDC access tokens: #3841
• Enhancement - Add /app/open-with-web endpoint: #4376
• Enhancement - Added language option to the app provider: #4399
• Enhancement - Improve error log for "could not get user by claim" error: #4227
• Enhancement - Add configuration options for mail authentication and encryption: #4443
• Enhancement - Introduce service registry cache: #3833
• Enhancement - Reintroduce user autoprovisioning in proxy: #3860
• Enhancement - Added command to reset administrator password: #4084
• Enhancement - Disable the color logging in docker compose examples: #871
• Enhancement - Allow providing list of services NOT to start: #4254
• Enhancement - Introduce insecure flag for smtp email notifications: #4279
• Enhancement - Optional events in graph service: #55555
• Enhancement - Fix behavior for foobar (in present tense): #4346
• Enhancement - Add config option to provide TLS certificate: #3818
• Enhancement - Add descriptions for graph-explorer config: #3759
• Enhancement - Add /me/changePassword endpoint to GraphAPI: #3063
• Enhancement - Generate signing key and encryption secret: #3909
• Enhancement - Update IdP UI: #3493
• Enhancement - Wrap metadata...

2.0.0-beta.6

Changes in 2.0.0-beta.6

Summary

• Bugfix - Fix DN parsing issues and sizelimit handling in libregraph/idm: #3631
• Bugfix - Remove runtime kill and run commands: #3740
• Bugfix - Check permissions when deleting Space: #3709
• Bugfix - Logging in on the wrong account when an email address is not unique: #4039
• Bugfix - Allow empty environment variables: #3892
• Bugfix - Remove unused transfer secret from app provider: #3798
• Bugfix - Make IDP secrets configurable via environment variables: #3744
• Bugfix - CSP rules for silent token refresh in iframe: #4031
• Bugfix - Enable debug server by default: #3827
• Bugfix - Rework default role provisioning: #3900
• Bugfix - Fix search index getting out of sync: #3851
• Bugfix - Inconsistency env var naming for LDAP filter configuration: #3890
• Bugfix - Fix LDAP insecure options: #3897
• Bugfix - Fix handling of invalid LDAP users and groups: #4274
• Bugfix - Fix logging levels: #4102
• Bugfix - Fix OCIS_RUN_SERVICES: #4133
• Bugfix - Set default name for public link via capabilities: #3834
• Bugfix - Remove legacy accounts proxy routes: #3831
• Bugfix - Fix unused config option GRAPH_SPACES_INSECURE: #55555
• Bugfix - Remove unused configuration options: #3973
• Bugfix - Remove static ocs user backend config: #4077
• Bugfix - Remove unused OCS storage configuration: #3955
• Bugfix - Fix the ocis search command: #3796
• Bugfix - Rename search env variable for the grpc server address: #3800
• Bugfix - Fix search in received shares: #4308
• Bugfix - Fix make sensitive config values in the proxy's debug server: #4086
• Bugfix - Fix the idm and settings extensions' admin user id configuration option: #3799
• Bugfix - Substring search for sharees: #547
• Bugfix - Fix configuration validation for extensions' server commands: #3911
• Bugfix - Fix startup error logging: #4093
• Bugfix - Fix multiple storage-users env variables: #3802
• Bugfix - Thumbnails for /dav/xxx?preview=1 requests: #3567
• Bugfix - Fix unrestricted quota on the graphAPI: #4363
• Bugfix - Fix user autoprovisioning: #3893
• Bugfix - Fix version info: #3953
• Bugfix - Fix version number in status page: #3788
• Bugfix - Fix the webdav URL of drive roots: #3706
• Bugfix - Idp: Check if CA certificate if present: #3623
• Bugfix - Fix graph endpoint: #3925
• Bugfix - Escape DN attribute value: #4117
• Bugfix - Make IDP only wait for certs when using LDAP: #3965
• Bugfix - Make ocdav service behave properly: #3957
• Bugfix - Return proper errors when ocs/cloud/users is using the cs3 backend: #3483
• Bugfix - Polish search: #4094
• Bugfix - Save Katherine: #3823
• Bugfix - Fix Thumbnails for IDs without a trailing path: #3791
• Bugfix - Space Creators can hand over spaces: #4244
• Bugfix - URL encode the webdav url in the graph API: #3597
• Bugfix - Store user passwords hashed in idm: #3778
• Change - Update ocis packages and imports to V2: #3678
• Change - Load configuration files just from one directory: #3587
• Change - Reduce permissions on docker image predeclared volumes: #3641
• Change - Introduce ocis init and remove all default secrets: #3551
• Change - The glauth and accounts services are removed: #3685
• Change - Reduce drives in graph /me/drives API: #3629
• Change - Switched default configuration to use libregraph/idm: #3331
• Change - Rename MetadataUserID: #3671
• Change - Use new space ID util functions: #3648
• Change - Prevent access to disabled space: #3779
• Change - Rename serviceUser to systemUser: #3673
• Change - Use the spaceID on the cs3 resource: #4748
• Change - Split MachineAuth from SystemUser: #3672
• Enhancement - Add capability for alias links: #3983
• Enhancement - Add drives field to users endpoint: #4072
• Enhancement - Add FRONTEND_ENABLE_RESHARING env variable: #4023
• Enhancement - Add number of total matches to the search result: #4189
• Enhancement - Align service naming: #3606
• Enhancement - Add acting user to the audit log: #3753
• Enhancement - Add audit events for created containers: #3941
• Enhancement - Don't setup demo role assignments on default: #3661
• Enhancement - Improve validation of OIDC access tokens: #3841
• Enhancement - Improve error log for "could not get user by claim" error: #4227
• Enhancement - Introduce service registry cache: #3833
• Enhancement - Reintroduce user autoprovisioning in proxy: #3860
• Enhancement - Disable the color logging in docker compose examples: #871
• Enhancement - Allow providing list of services NOT to start: #4254
• Enhancement - Introduce insecure flag for smtp email notifications: #4279
• Enhancement - Optional events in graph service: #55555
• Enhancement - Fix behavior for foobar (in present tense): #4346
• Enhancement - Add config option to provide TLS certificate: #3818
• Enhancement - Add descriptions for graph-explorer config: #3759
• Enhancement - Add /me/changePassword endpoint to GraphAPI: #3063
• Enhancement - Generate signing key and encryption secret: #3909
• Enhancement - Update IdP UI: #3493
• Enhancement - Wrap metadata storage with dedicated reva gateway: #3602
• Enhancement - New migrate command for migrating shares and public shares: #3987
• Enhancement - Product field in OCS version: #2918
• Enhancement - Refactor extensions to services: #3980
• Enhancement - Allow resharing: #3904
• Enhancement - Add initial version of the search extensions: #3635
• Enhancement - Add capability for public link single file edit: #6787
• Enhancement - Added share_jail and projects feature flags in spaces capability: #3626
• Enhancement - Use storageID when requesting special items: #4356
• Enhancement - Add description tags to the thumbnails confi...

2.0.0-beta.5

Changes in 2.0.0-beta.5

Summary

• Bugfix - Fix DN parsing issues and sizelimit handling in libregraph/idm: #3631
• Bugfix - Remove runtime kill and run commands: #3740
• Bugfix - Check permissions when deleting Space: #3709
• Bugfix - Logging in on the wrong account when an email address is not unique: #4039
• Bugfix - Allow empty environment variables: #3892
• Bugfix - Remove unused transfer secret from app provider: #3798
• Bugfix - Make IDP secrets configurable via environment variables: #3744
• Bugfix - CSP rules for silent token refresh in iframe: #4031
• Bugfix - Enable debug server by default: #3827
• Bugfix - Rework default role provisioning: #3900
• Bugfix - Fix search index getting out of sync: #3851
• Bugfix - Inconsistency env var naming for LDAP filter configuration: #3890
• Bugfix - Fix LDAP insecure options: #3897
• Bugfix - Fix logging levels: #4102
• Bugfix - Fix OCIS_RUN_SERVICES: #4133
• Bugfix - Set default name for public link via capabilities: #3834
• Bugfix - Remove legacy accounts proxy routes: #3831
• Bugfix - Fix unused config option GRAPH_SPACES_INSECURE: #55555
• Bugfix - Remove unused configuration options: #3973
• Bugfix - Remove static ocs user backend config: #4077
• Bugfix - Remove unused OCS storage configuration: #3955
• Bugfix - Fix the ocis search command: #3796
• Bugfix - Rename search env variable for the grpc server address: #3800
• Bugfix - Fix make sensitive config values in the proxy's debug server: #4086
• Bugfix - Fix the idm and settings extensions' admin user id configuration option: #3799
• Bugfix - Fix configuration validation for extensions' server commands: #3911
• Bugfix - Fix startup error logging: #4093
• Bugfix - Fix multiple storage-users env variables: #3802
• Bugfix - Thumbnails for /dav/xxx?preview=1 requests: #3567
• Bugfix - Fix user autoprovisioning: #3893
• Bugfix - Fix version info: #3953
• Bugfix - Fix version number in status page: #3788
• Bugfix - Fix the webdav URL of drive roots: #3706
• Bugfix - Idp: Check if CA certificate if present: #3623
• Bugfix - Fix graph endpoint: #3925
• Bugfix - Escape DN attribute value: #4117
• Bugfix - Make IDP only wait for certs when using LDAP: #3965
• Bugfix - Make ocdav service behave properly: #3957
• Bugfix - Return proper errors when ocs/cloud/users is using the cs3 backend: #3483
• Bugfix - Polish search: #4094
• Bugfix - Save Katherine: #3823
• Bugfix - Fix Thumbnails for IDs without a trailing path: #3791
• Bugfix - URL encode the webdav url in the graph API: #3597
• Bugfix - Store user passwords hashed in idm: #3778
• Change - Update ocis packages and imports to V2: #3678
• Change - Load configuration files just from one directory: #3587
• Change - Reduce permissions on docker image predeclared volumes: #3641
• Change - Introduce ocis init and remove all default secrets: #3551
• Change - The glauth and accounts services are removed: #3685
• Change - Reduce drives in graph /me/drives API: #3629
• Change - Switched default configuration to use libregraph/idm: #3331
• Change - Rename MetadataUserID: #3671
• Change - Use new space ID util functions: #3648
• Change - Prevent access to disabled space: #3779
• Change - Rename serviceUser to systemUser: #3673
• Change - Use the spaceID on the cs3 resource: #4748
• Change - Split MachineAuth from SystemUser: #3672
• Enhancement - Add capability for alias links: #3983
• Enhancement - Add FRONTEND_ENABLE_RESHARING env variable: #4023
• Enhancement - Add number of total matches to the search result: #4189
• Enhancement - Align service naming: #3606
• Enhancement - Add acting user to the audit log: #3753
• Enhancement - Add audit events for created containers: #3941
• Enhancement - Don't setup demo role assignments on default: #3661
• Enhancement - Introduce service registry cache: #3833
• Enhancement - Reintroduce user autoprovisioning in proxy: #3860
• Enhancement - Disable the color logging in docker compose examples: #871
• Enhancement - Optional events in graph service: #55555
• Enhancement - Add config option to provide TLS certificate: #3818
• Enhancement - Add descriptions for graph-explorer config: #3759
• Enhancement - Add /me/changePassword endpoint to GraphAPI: #3063
• Enhancement - Generate signing key and encryption secret: #3909
• Enhancement - Update IdP UI: #3493
• Enhancement - Wrap metadata storage with dedicated reva gateway: #3602
• Enhancement - New migrate command for migrating shares and public shares: #3987
• Enhancement - Product field in OCS version: #2918
• Enhancement - Refactor extensions to services: #3980
• Enhancement - Allow resharing: #3904
• Enhancement - Add initial version of the search extensions: #3635
• Enhancement - Add capability for public link single file edit: #6787
• Enhancement - Added share_jail and projects feature flags in spaces capability: #3626
• Enhancement - Add description tags to the thumbnails config structs: #3752
• Enhancement - Make thumbnails service log less noisy: #3959
• Enhancement - Update linkshare capabilities: #3579
• Enhancement - Update reva: #3944
• Enhancement - Update reva to version 2.7.2: #4115
• Enhancement - Update reva to version 2.4.1: #3746
• Enhancement - Update reva to version 2.5.1: #3932
• Enhancement - Update reva to v2.3.1: #3552
• Enhancement - Update ownCloud Web to v5.5.0-rc.8: #6854
• Enhancement - Update ownCloud Web to v5.5.0-rc.9: #6854
• Enhancement - Update ownCloud Web to v5.5.0-rc.6: #6854
• Enhancement - Update ownCloud Web to v5.7.0-rc.1: #4005
• Enhancement - Update ownCloud Web to v5.7.0-rc.4: #4140
• Enhancement - Add descriptions to webdav configuration...

2.0.0-beta.4

Changes in 2.0.0-beta.4

Summary

• Bugfix - Remove runtime kill and run commands: #3740
• Bugfix - Check permissions when deleting Space: #3709
• Bugfix - Allow empty environment variables: #3892
• Bugfix - Remove unused transfer secret from app provider: #3798
• Bugfix - Make IDP secrets configurable via environment variables: #3744
• Bugfix - Enable debug server by default: #3827
• Bugfix - Rework default role provisioning: #3900
• Bugfix - Fix search index getting out of sync: #3851
• Bugfix - Inconsistency env var naming for LDAP filter configuration: #3890
• Bugfix - Fix LDAP insecure options: #3897
• Bugfix - Set default name for public link via capabilities: #3834
• Bugfix - Remove legacy accounts proxy routes: #3831
• Bugfix - Remove unused OCS storage configuration: #3955
• Bugfix - Fix the ocis search command: #3796
• Bugfix - Rename search env variable for the grpc server address: #3800
• Bugfix - Fix the idm and settings extensions' admin user id configuration option: #3799
• Bugfix - Fix configuration validation for extensions' server commands: #3911
• Bugfix - Fix multiple storage-users env variables: #3802
• Bugfix - Thumbnails for /dav/xxx?preview=1 requests: #3567
• Bugfix - Fix user autoprovisioning: #3893
• Bugfix - Fix version info: #3953
• Bugfix - Fix version number in status page: #3788
• Bugfix - Fix the webdav URL of drive roots: #3706
• Bugfix - Idp: Check if CA certificate if present: #3623
• Bugfix - Fix graph endpoint: #3925
• Bugfix - Make IDP only wait for certs when using LDAP: #3965
• Bugfix - Make ocdav service behave properly: #3957
• Bugfix - Return proper errors when ocs/cloud/users is using the cs3 backend: #3483
• Bugfix - Save Katherine: #3823
• Bugfix - Fix Thumbnails for IDs without a trailing path: #3791
• Bugfix - URL encode the webdav url in the graph API: #3597
• Change - Update ocis packages and imports to V2: #3678
• Change - Load configuration files just from one directory: #3587
• Change - Reduce permissions on docker image predeclared volumes: #3641
• Change - Introduce ocis init and remove all default secrets: #3551
• Change - The glauth and accounts services are removed: #3685
• Change - Reduce drives in graph /me/drives API: #3629
• Change - Switched default configuration to use libregraph/idm: #3331
• Change - Rename MetadataUserID: #3671
• Change - Use new space ID util functions: #3648
• Change - Prevent access to disabled space: #3779
• Change - Rename serviceUser to systemUser: #3673
• Change - Split MachineAuth from SystemUser: #3672
• Enhancement - Add FRONTEND_ENABLE_RESHARING env variable: #4023
• Enhancement - Align service naming: #3606
• Enhancement - Add acting user to the audit log: #3753
• Enhancement - Add audit events for created containers: #3941
• Enhancement - Don't setup demo role assignments on default: #3661
• Enhancement - Introduce service registry cache: #3833
• Enhancement - Reintroduce user autoprovisioning in proxy: #3860
• Enhancement - Disable the color logging in docker compose examples: #871
• Enhancement - Add config option to provide TLS certificate: #3818
• Enhancement - Add descriptions for graph-explorer config: #3759
• Enhancement - Add /me/changePassword endpoint to GraphAPI: #3063
• Enhancement - Generate signing key and encryption secret: #3909
• Enhancement - Wrap metadata storage with dedicated reva gateway: #3602
• Enhancement - New migrate command for migrating shares and public shares: #3987
• Enhancement - Product field in OCS version: #2918
• Enhancement - Allow resharing: #3904
• Enhancement - Add initial version of the search extensions: #3635
• Enhancement - Add capability for public link single file edit: #6787
• Enhancement - Added share_jail and projects feature flags in spaces capability: #3626
• Enhancement - Add description tags to the thumbnails config structs: #3752
• Enhancement - Make thumbnails service log less noisy: #3959
• Enhancement - Update linkshare capabilities: #3579
• Enhancement - Update reva: #3944
• Enhancement - Update reva: #4025
• Enhancement - Update reva to version 2.4.1: #3746
• Enhancement - Update reva to version 2.5.1: #3932
• Enhancement - Update reva to v2.3.1: #3552
• Enhancement - Update ownCloud Web to v5.5.0-rc.8: #6854
• Enhancement - Update ownCloud Web to v5.5.0-rc.9: #6854
• Enhancement - Update ownCloud Web to v5.5.0-rc.6: #6854
• Enhancement - Update ownCloud Web to v5.7.0-rc.1: #4005
• Enhancement - Add descriptions to webdav configuration: #3755

Details

• Bugfix - Remove runtime kill and run commands: #3740

  We've removed the kill and run commands from the oCIS runtime. If these dynamic capabilities
  are needed, one should switch to a full fledged supervisor and start oCIS as individual
  services.

  If one wants to start a only a subset of services, this is still possible by setting
  OCIS_RUN_EXTENSIONS.

  #3740

• Bugfix - Check permissions when deleting Space: #3709

  Check for manager permissions when deleting spaces. Do not allow deleting spaces via dav
  service

  #3709

• Bugfix - Allow empty environment variables: #3892

  We've fixed the behavior for empty environment variables, that previously would not have
  overwritten default values. Therefore it had the same effect like not setting the environment
  variable. We now check if the environment variable is set at all and if so, we also allow to
  override a default value with an empty value.

  #3892

• Bugfix - Remove unused transfer secret from app provider: #3798

  We've fixed the startup of the app provider by removing the startup dependency on a configured
  transfer secret, which was not used. This only happend if you start the app provider without
  runtime (eg. ocis app-provider server) and didn't have configured all oCIS secrets.

  #3798

• Bugfix - Make IDP secrets configurable via environment variables: #3744

  We've fixed the configuration options of the IDP to make the IDP secrets again configurable via
  environment variables.

  #3744

• Bugfix - Enable debug server by default: [#3827](https://github.com/ownc...

2.0.0-beta.3

Changes in 2.0.0-beta.3

Summary

• Bugfix - Remove runtime kill and run commands: #3740
• Bugfix - Check permissions when deleting Space: #3709
• Bugfix - Allow empty environment variables: #3892
• Bugfix - Remove unused transfer secret from app provider: #3798
• Bugfix - Make IDP secrets configurable via environment variables: #3744
• Bugfix - Enable debug server by default: #3827
• Bugfix - Fix search index getting out of sync: #3851
• Bugfix - Inconsistency env var naming for LDAP filter configuration: #3890
• Bugfix - Fix LDAP insecure options: #3897
• Bugfix - Set default name for public link via capabilities: #3834
• Bugfix - Remove legacy accounts proxy routes: #3831
• Bugfix - Fix the ocis search command: #3796
• Bugfix - Rename search env variable for the grpc server address: #3800
• Bugfix - Fix the idm and settings extensions' admin user id configuration option: #3799
• Bugfix - Fix configuration validation for extensions' server commands: #3911
• Bugfix - Fix multiple storage-users env variables: #3802
• Bugfix - Thumbnails for /dav/xxx?preview=1 requests: #3567
• Bugfix - Fix user autoprovisioning: #3893
• Bugfix - Fix version number in status page: #3788
• Bugfix - Fix the webdav URL of drive roots: #3706
• Bugfix - Idp: Check if CA certificate if present: #3623
• Bugfix - Return proper errors when ocs/cloud/users is using the cs3 backend: #3483
• Bugfix - Save Katherine: #3823
• Bugfix - Fix Thumbnails for IDs without a trailing path: #3791
• Bugfix - URL encode the webdav url in the graph API: #3597
• Change - Update ocis packages and imports to V2: #3678
• Change - Load configuration files just from one directory: #3587
• Change - Reduce permissions on docker image predeclared volumes: #3641
• Change - Introduce ocis init and remove all default secrets: #3551
• Change - The glauth and accounts services are removed: #3685
• Change - Reduce drives in graph /me/drives API: #3629
• Change - Switched default configuration to use libregraph/idm: #3331
• Change - Rename MetadataUserID: #3671
• Change - Use new space ID util functions: #3648
• Change - Prevent access to disabled space: #3779
• Change - Rename serviceUser to systemUser: #3673
• Change - Split MachineAuth from SystemUser: #3672
• Enhancement - Align service naming: #3606
• Enhancement - Introduce service registry cache: #3833
• Enhancement - Reintroduce user autoprovisioning in proxy: #3860
• Enhancement - Add config option to provide TLS certificate: #3818
• Enhancement - Add descriptions for graph-explorer config: #3759
• Enhancement - Add /me/changePassword endpoint to GraphAPI: #3063
• Enhancement - Wrap metadata storage with dedicated reva gateway: #3602
• Enhancement - Product field in OCS version: #2918
• Enhancement - Add initial version of the search extensions: #3635
• Enhancement - Add capability for public link single file edit: #6787
• Enhancement - Added share_jail and projects feature flags in spaces capability: #3626
• Enhancement - Add description tags to the thumbnails config structs: #3752
• Enhancement - Update linkshare capabilities: #3579
• Enhancement - Update reva to version 2.4.1: #3746
• Enhancement - Update reva to version 2.5.1: #3932
• Enhancement - Update reva to v2.3.1: #3552
• Enhancement - Update ownCloud Web to v5.5.0-rc.8: #6854
• Enhancement - Update ownCloud Web to v5.5.0-rc.9: #6854
• Enhancement - Update ownCloud Web to v5.5.0-rc.6: #6854
• Enhancement - Add descriptions to webdav configuration: #3755

Details

• Bugfix - Remove runtime kill and run commands: #3740

  We've removed the kill and run commands from the oCIS runtime. If these dynamic capabilities
  are needed, one should switch to a full fledged supervisor and start oCIS as individual
  services.

  If one wants to start a only a subset of services, this is still possible by setting
  OCIS_RUN_EXTENSIONS.

  #3740

• Bugfix - Check permissions when deleting Space: #3709

  Check for manager permissions when deleting spaces. Do not allow deleting spaces via dav
  service

  #3709

• Bugfix - Allow empty environment variables: #3892

  We've fixed the behavior for empty environment variables, that previously would not have
  overwritten default values. Therefore it had the same effect like not setting the environment
  variable. We now check if the environment variable is set at all and if so, we also allow to
  override a default value with an empty value.

  #3892

• Bugfix - Remove unused transfer secret from app provider: #3798

  We've fixed the startup of the app provider by removing the startup dependency on a configured
  transfer secret, which was not used. This only happend if you start the app provider without
  runtime (eg. ocis app-provider server) and didn't have configured all oCIS secrets.

  #3798

• Bugfix - Make IDP secrets configurable via environment variables: #3744

  We've fixed the configuration options of the IDP to make the IDP secrets again configurable via
  environment variables.

  #3744

• Bugfix - Enable debug server by default: #3827

  We've fixed the behavior for the audit, idm, nats and notifications extensions, that did not
  start their debug server by default.

  #3827

• Bugfix - Fix search index getting out of sync: #3851

  We fixed a problem where the search index got out of sync with child elements of a parent
  containing special characters.

  #3851

• Bugfix - Inconsistency env var naming for LDAP filter configuration: #3890

  There was a naming inconsitency for the enviroment variables used to define LDAP filters for
  user and groups queries. Some services used LDAP_USER_FILTER while others used
  LDAP_USERFILTER. This is now changed to use LDAP_USER_FILTER and LDAP_GROUP_FILTER.

  Note: If your oCIS setup is using an LDAP configuration that has any of the *_LDAP_USERFILTER
  or *_LDAP_GROUPFILTER environment variables set, please update the configuration to use
  the new unified names *_LDAP_USER_FILTER respectively *_LDAP_GROUP_FILTER instead.

  #3890

• Bugfix - Fix LDAP insecure options: #3897

  We've fixed multiple LDAP insecure options:

  • The Graph LDAP insecure option default was set to true and now defaults to false. This is possible after #3888, since the Graph also now uses the LDAP CAcert by default.
  • The Graph LDAP insecure option was configurable by the environment variable OCIS_INSECURE, which was replaced by the dedicated LDAP_INSECURE variable. This variable is also used by all other services using LDAP.
  • The IDP insecure option for the user backend now also picks up configuration from `LD...

2.0.0-beta2

Changes in 2.0.0-beta2

Summary

• Bugfix - Remove runtime kill and run commands: #3740
• Bugfix - Check permissions when deleting Space: #3709
• Bugfix - Remove unused transfer secret from app provider: #3798
• Bugfix - Make IDP secrets configurable via environment variables: #3744
• Bugfix - Enable debug server by default: #3827
• Bugfix - Fix search index getting out of sync: #3851
• Bugfix - Set default name for public link via capabilities: #3834
• Bugfix - Remove legacy accounts proxy routes: #3831
• Bugfix - Fix the ocis search command: #3796
• Bugfix - Rename search env variable for the grpc server address: #3800
• Bugfix - Fix the idm and settings extensions' admin user id configuration option: #3799
• Bugfix - Fix multiple storage-users env variables: #3802
• Bugfix - Thumbnails for /dav/xxx?preview=1 requests: #3567
• Bugfix - Fix version number in status page: #3788
• Bugfix - Idp: Check if CA certificate if present: #3623
• Bugfix - Return proper errors when ocs/cloud/users is using the cs3 backend: #3483
• Bugfix - Save Katherine: #3823
• Bugfix - Fix Thumbnails for IDs without a trailing path: #3791
• Bugfix - URL encode the webdav url in the graph API: #3597
• Change - Update ocis packages and imports to V2: #3678
• Change - Load configuration files just from one directory: #3587
• Change - Reduce permissions on docker image predeclared volumes: #3641
• Change - Introduce ocis init and remove all default secrets: #3551
• Change - The glauth and accounts services are removed: #3685
• Change - Reduce drives in graph /me/drives API: #3629
• Change - Switched default configuration to use libregraph/idm: #3331
• Change - Rename MetadataUserID: #3671
• Change - Use new space ID util functions: #3648
• Change - Prevent access to disabled space: #3779
• Change - Rename serviceUser to systemUser: #3673
• Change - Split MachineAuth from SystemUser: #3672
• Enhancement - Align service naming: #3606
• Enhancement - Introduce service registry cache: #3833
• Enhancement - Reintroduce user autoprovisioning in proxy: #3860
• Enhancement - Add descriptions for graph-explorer config: #3759
• Enhancement - Add /me/changePassword endpoint to GraphAPI: #3063
• Enhancement - Wrap metadata storage with dedicated reva gateway: #3602
• Enhancement - Product field in OCS version: #2918
• Enhancement - Add initial version of the search extensions: #3635
• Enhancement - Add capability for public link single file edit: #6787
• Enhancement - Added share_jail and projects feature flags in spaces capability: #3626
• Enhancement - Add description tags to the thumbnails config structs: #3752
• Enhancement - Update linkshare capabilities: #3579
• Enhancement - Update reva to version 2.4.1: #3746
• Enhancement - Update reva to v2.3.1: #3552
• Enhancement - Update ownCloud Web to v5.5.0-rc.8: #6854
• Enhancement - Update ownCloud Web to v5.5.0-rc.6: #6854
• Enhancement - Add descriptions to webdav configuration: #3755

Details

• Bugfix - Remove runtime kill and run commands: #3740

  We've removed the kill and run commands from the oCIS runtime. If these dynamic capabilities
  are needed, one should switch to a full fledged supervisor and start oCIS as individual
  services.

  If one wants to start a only a subset of services, this is still possible by setting
  OCIS_RUN_EXTENSIONS.

  #3740

• Bugfix - Check permissions when deleting Space: #3709

  Check for manager permissions when deleting spaces. Do not allow deleting spaces via dav
  service

  #3709

• Bugfix - Remove unused transfer secret from app provider: #3798

  We've fixed the startup of the app provider by removing the startup dependency on a configured
  transfer secret, which was not used. This only happend if you start the app provider without
  runtime (eg. ocis app-provider server) and didn't have configured all oCIS secrets.

  #3798

• Bugfix - Make IDP secrets configurable via environment variables: #3744

  We've fixed the configuration options of the IDP to make the IDP secrets again configurable via
  environment variables.

  #3744

• Bugfix - Enable debug server by default: #3827

  We've fixed the behavior for the audit, idm, nats and notifications extensions, that did not
  start their debug server by default.

  #3827

• Bugfix - Fix search index getting out of sync: #3851

  We fixed a problem where the search index got out of sync with child elements of a parent
  containing special characters.

  #3851

• Bugfix - Set default name for public link via capabilities: #3834

  We have now added a default name for public link shares which is communicated via the
  capabilities.

  #1237
  #3834

• Bugfix - Remove legacy accounts proxy routes: #3831

  We've removed the legacy accounts routes from the proxy default config. There were no longer
  used since the switch to IDM as the default user backend. Also accounts is no longer part of the
  oCIS binary and therefore should not be part of the proxy default route config.

  #3831

• Bugfix - Fix the ocis search command: #3796

  We've fixed the behavior for ocis search, which didn't show further help when not all secrets
  have been configured. It also was not possible to start the search service standalone from the
  oCIS binary without configuring all oCIS secrets, even they were not needed by the search
  service.

  #3796

• Bugfix - Rename search env variable for the grpc server address: #3800

  We've fixed the gprc server address configuration environment variable by renaming it from
  ACCOUNTS_GRPC_ADDR to SEARCH_GRPC_ADDR

  #3800

• Bugfix - Fix the idm and settings extensions' admin user id configuration option: #3799

  We've fixed the admin user id configuration of the settings and idm extensions. The have
  previously only been configurable via the oCIS shared configuration and therefore have been
  undocumented for the extensions. This config option is now part of both extensions'
  configuration and can now also be used when the extensions are compiled standalone.

  #3799

• Bugfix - Fix multiple storage-users env variables: #3802

  We've fixed multiple environment variable configuration options for the storage-users
  extension:

  • STORAGE_USERS_GRPC_ADDR was used to configure both the address of the http and grpc server. This resulted in a failing startup of the storage-users extension if this config option is set, because the service tries to double-bind the configured port (one time for each of the http and grpc server). You can now configure the grpc server's address with the environment variable STORAGE_USERS_GRPC_ADDR and the http server's address with the environment variable STORAGE_USERS_HTTP_ADDR
  • `STORAGE_USERS_S3NG_USERS_PROVIDER_...

2.0.0-beta1

Changes in 2.0.0-beta1

Summary

• Bugfix - Remove runtime kill and run commands: #3740
• Bugfix - Check permissions when deleting Space: #3709
• Bugfix - Make IDP secrets configurable via environment variables: #3744
• Bugfix - Thumbnails for /dav/xxx?preview=1 requests: #3567
• Bugfix - Idp: Check if CA certificate if present: #3623
• Bugfix - Return proper errors when ocs/cloud/users is using the cs3 backend: #3483
• Bugfix - URL encode the webdav url in the graph API: #3597
• Change - Update ocis packages and imports to V2: #3678
• Change - Load configuration files just from one directory: #3587
• Change - Reduce permissions on docker image predeclared volumes: #3641
• Change - Introduce ocis init and remove all default secrets: #3551
• Change - Reduce drives in graph /me/drives API: #3629
• Change - Switched default configuration to use libregraph/idm: #3331
• Change - Rename MetadataUserID: #3671
• Change - Use new space ID util functions: #3648
• Change - Rename serviceUser to systemUser: #3673
• Change - Split MachineAuth from SystemUser: #3672
• Enhancement - Align service naming: #3606
• Enhancement - Wrap metadata storage with dedicated reva gateway: #3602
• Enhancement - Product field in OCS version: #2918
• Enhancement - Add initial version of the search extensions: #3635
• Enhancement - Add capability for public link single file edit: #6787
• Enhancement - Added share_jail and projects feature flags in spaces capability: #3626
• Enhancement - Update linkshare capabilities: #3579
• Enhancement - Update reva to v2.3.1: #3552
• Enhancement - Update ownCloud Web to v5.5.0-rc.5: #6854

Details

• Bugfix - Remove runtime kill and run commands: #3740

  We've removed the kill and run commands from the oCIS runtime. If these dynamic capabilities
  are needed, one should switch to a full fledged supervisor and start oCIS as individual
  services.

  If one wants to start a only a subset of services, this is still possible by setting
  OCIS_RUN_EXTENSIONS.

  #3740

• Bugfix - Check permissions when deleting Space: #3709

  Check for manager permissions when deleting spaces. Do not allow deleting spaces via dav
  service

  #3709

• Bugfix - Make IDP secrets configurable via environment variables: #3744

  We've fixed the configuration options of the IDP to make the IDP secrets again configurable via
  environment variables.

  #3744

• Bugfix - Thumbnails for /dav/xxx?preview=1 requests: #3567

  We've added the thumbnail rendering for /dav/xxx?preview=1,
  /remote.php/webdav/{relative path}?preview=1 and /webdav/{relative path}?preview=1 requests, which was previously not supported because of missing routes. It
  now returns the same thumbnails as for /remote.php/dav/xxx?preview=1.

  #3567

• Bugfix - Idp: Check if CA certificate if present: #3623

  Upon first start with the default configurtation the idm service creates a server
  certificate, that might not be finished before the idp service is starting. Add a check to idp
  similar to what the user, group, and auth-providers implement.

  #3623

• Bugfix - Return proper errors when ocs/cloud/users is using the cs3 backend: #3483

  The ocs API was just exiting with a fatal error on any update request, when configured for the cs3
  backend. Now it returns a proper error.

  #3483

• Bugfix - URL encode the webdav url in the graph API: #3597

  Fixed the webdav URL in the drives responses. Without encoding the URL could be broken by files
  with spaces in the file name.

  #3538
  #3597

• Change - Update ocis packages and imports to V2: #3678

  This needs to be done in preparation for the major version bump in ocis.

  #3678

• Change - Load configuration files just from one directory: #3587

  We've changed the configuration file loading behavior and are now only loading configuration
  files from ONE single directory. This directory can be set on compile time or via an environment
  variable on startup (OCIS_CONFIG_DIR).

  We are using following configuration default paths:

  • Docker images: /etc/ocis/ - Binary releases: $HOME/.ocis/config/

  #3587

• Change - Reduce permissions on docker image predeclared volumes: #3641

  We've lowered the permissions on the predeclared volumes of the oCIS docker image from 777 to
  750.

  This change doesn't affect you, unless you use the docker image with the non default uid/guid to
  start oCIS (default is 1000:1000).

  #3641

• Change - Introduce ocis init and remove all default secrets: #3551

  We've removed all default secrets and the hardcoded UUID of the user admin. This means you
  can't start oCIS any longer without setting these via environment variable or configuration
  file.

  In order to make this easy for you, we introduced a new command: ocis init. You can run this
  command before starting oCIS with ocis server and it will bootstrap you a configuration file
  for a secure oCIS instance.

  #3524
  #3551
  #3743

• Change - Reduce drives in graph /me/drives API: #3629

  Reduced the drives in the graph /me/drives API to only the drives the user has access to. The
  endpoint /drives will list all drives when the user has the permission.

  #3629

• Change - Switched default configuration to use libregraph/idm: #3331

  We switched the default configuration of oCIS to use the "idm" service (based on
  libregraph/idm) as the standard source for user and group information. The accounts and
  glauth services are no longer enabled by default and will be removed with an upcoming release.

  #3331
  #3633

• Change - Rename MetadataUserID: #3671

  MetadataUserID is renamed to SystemUserID including yaml tags and env vars

  #3671

• Change - Use new space ID util functions: #3648

  Changed code to use the new space ID util functions so that everything works with the new spaces
  ID format.

  #3648
  #3669

• Change - Rename serviceUser to systemUser: #3673

  We renamed serviceUser to systemUser in all configs and vars including yaml-tags and env vars

  #3673

• Change - Split MachineAuth from SystemUser: #3672

  We now have two different APIKeys: MachineAuth for the machine-auth service and SystemUser
  for the system user used e.g. by settings service

  #3672

• Enhancement - Align service naming: #3606

  We now reflect the configured service names when listing them in the ocis runtime

  #3603
  #3606

• Enhancement - Wrap metadata storage with dedicated reva gateway: #3602

  We wrapped the metadata storage in a minimal reva instance with a dedicated gateway, including
  static storage registry, static auth registry, in memory userprovider, machine
  authprovider and demo permissions service. This allows us to preconfigure the service user
  for the ocis settings service, share and public share providers.

  #3602
  #3647

• Enhancement - Product field in OCS version: [#...