Changelog for ownCloud Core unreleased (UNRELEASED)
The following sections list the changes in ownCloud core unreleased relevant to ownCloud admins and users.
- Bugfix - Fix links in setupchecks.js: #36315
- Bugfix - Inform the admin if they enable an enterprise app without valid key: #36351
- Bugfix - Set 599 HTTP code on error: #36413
- Bugfix - Fix "files:transfer-ownership" in S3 multibucket setups: #36464
- Bugfix - Fix Trash-bin api access: #36378
- Bugfix - Files shared with user cause purge of the trashbin content: #36494
- Bugfix - Enhance validation for sender e-mail address for e-mail notifications: #36505
- Bugfix - Suppress warning when resetting user password with masterkey encryption: #36523
- Bugfix - Receive multiple users for user sync command: #36576
- Bugfix - Fix null for empty path on Oracle: #36610
- Bugfix - Do not dispatch DeclineShare event for non-existing shares: #36759
- Bugfix - Remove part files when upload is cancelled for all public links: #36761
- Bugfix - Return correct file size in the public files webdav API: #36741
- Bugfix - Optimize memory consumption of occ files:checksums:verify command: #31133
- Bugfix - Fix one-time password (OTP) verify button width: #36807
- Bugfix - Sharing with a user and group of the same name on the webUI: #36813
- Change - Validate reshare permissions and attributes based on supershare: #36265
- Change - Drop PHP 7.0 support across the platform: #36290
- Change - Don't report locking support in public.php and public-files endpoints: #36402
- Change - Update handlebars library to 4.5.3: #36439
- Change - Update Symfony polyfill components to 1.13.0: #36485
- Change - Update sabre/http (5.0.2 => 5.0.5): #36490
- Change - Update doctrine/cache (1.9.1 => 1.10.0): #36503
- Change - Update Symfony components to 3.4.36: #36503
- Change - Update punic/punic (3.4.0 => 3.5.0): #36508
- Change - Update patchwork/utf8 (1.3.1 => 1.3.2): #36552
- Change - Update league/flysystem (1.0.57 => 1.0.61): #36553
- Change - Update pear/archive_tar (1.4.8 => 1.4.9): #36554
- Change - Protect public preview with password: #36571
- Change - Consolidate user/group share actions into single dropdown: #36587
- Change - Update pear/pear_exception (v1.0.0 => v1.0.1): #36599
- Change - Update myclabs/deep-copy (1.9.3 => 1.9.4): #36599
- Change - Update phpspec/prophecy (1.9.0 => 1.10.0): #36603
- Change - Update sabre/vobject (4.2.0 => 4.2.1): #36614
- Change - Update league/flysystem (1.0.61 => 1.0.62): #36659
- Change - Update zendframework/zend-validator (2.12.2 => 2.13.0): #36660
- Change - Update egulias/email-validator (2.1.11 => 2.1.13): #36661
- Change - Update phpdocumentor/reflection-docblock (4.3.2 => 4.3.4): #36661
- Change - Update phpspec/prophecy (1.10.0 => 1.10.1): #36661
- Change - Zendframework dependency to laminas: #36677
- Change - Update league/flysystem (1.0.62 => 1.0.63): #36709
- Change - Switch to new id3parser: #36717
- Change - Update deepdiver1975/tarstreamer (0.1.1 => 2.0.0): #36722
- Change - Update egulias/email-validator (2.1.13 => 2.1.14): #36726
- Change - Update laminas dependencies: #36726
- Change - Update sabre/dav (4.0.2 => 4.0.3): #36742
- Change - Update showdown library to 1.9.1: #36752
- Change - Update composer/semver (1.5.0 => 1.5.1): #36753
- Change - Update sabre/vobject (4.2.1 => 4.2.2): #36757
- Change - Validate OCS API Request Header in OCSController: #36762
- Change - Adjust wording displayed for empty additional settings panel: #36776
- Change - Update laminas/laminas-validator (2.13.0 => 2.13.1): #36780
- Change - Update myclabs/deep-copy (1.9.4 => 1.9.5): #36780
- Change - Update egulias/email-validator (2.1.14 => 2.1.15): #36789
- Change - Update phpspec/prophecy (1.10.1 => v1.10.2): #36789
- Change - Update symfony (3.4.36 => 3.4.37): #36796
- Enhancement - MariaDb 10.3 support: #29483
- Enhancement - PostgreSQL 10 support: #33187
- Enhancement - Regex version for blacklisted_files and excluded_directories: #36360
- Enhancement - Add an option to provide a mount in read only mode: #36397
- Enhancement - Add user-sync OCS API: #36428
- Enhancement - Support Oracle connection strings: #36489
- Enhancement - Add enabled and disabled filter options to occ app:list command: #36520
- Enhancement - Share indicator on webUI: #36572
- Enhancement - Expiration date for user and group shares: #36573
- Enhancement - Allow plus sign in username: #36613
- Enhancement - Enable DAV endpoints for trashbin and for public shares: #36815
-
Bugfix - Fix links in setupchecks.js: #36315
Security tips at Settings -> Admin -> General had two broken links to the owncloud docs in the messages performing HTTPS and HSTS checks
-
Bugfix - Inform the admin if they enable an enterprise app without valid key: #36351
Previously no message was displayed but the app was not enabled.
Now, when the admin tries to enable an enterprise app when the enterprise key is invalid, the message "cannot be enabled because of invalid enterprise key" is displayed.
-
Bugfix - Set 599 HTTP code on error: #36413
Previously, a hard crash, such as DB being down, was being reported with a stacktrace and a 200 HTTP code. In order to homogenize the behaviour with all the endpoints, we've changed the behaviour to return a 599 HTTP code and an empty content.
In addition, we've included a new option in the config.php, "crashdirectory", which defaults to the "datadirectory" set, where the crash logs will be created. Note that normal errors will still be reported normally and will log into the owncloud.log file.
-
Bugfix - Fix "files:transfer-ownership" in S3 multibucket setups: #36464
There were problems using the files:transfer-ownership in setups using files_primary_s3 against S3 storage with multibucket configuration, when some of the transferred files were shared with other people. This PR fixes that problem with the shares while transferring the files, allowing the files:transfer-ownership to finish correctly
-
Bugfix - Fix Trash-bin api access: #36378
Trash-bin API had allowed users to see the trash-bin content of other users.
-
Bugfix - Files shared with user cause purge of the trashbin content: #36494
Files_trashbin app counted incoming shares on calculation of the occupied space. It caused purge of the trashbin content when trashbin_retention_obligation is auto, user has quota set and incoming shares exceed 50% of this quota.
-
Bugfix - Enhance validation for sender e-mail address for e-mail notifications: #36505
If a user wanted to use the e-mail notification mechanism in order to notify other users when creating public links as well as internal shares, an error was triggered if the e-mail address for this user was not set. The behavior has now been fixed.
-
Bugfix - Suppress warning when resetting user password with masterkey encryption: #36523
When an admin wanted to reset user's password over the Users management page with masterkey encryption in place, a warning was displayed about data recovery not being available. The behavior has now been fixed.
-
Bugfix - Receive multiple users for user sync command: #36576
Recieve multiple users for user sync command. Previously when multiple users were returned, an exception was thrown and the command was aborted. In this fix we allow multiple users to be returned, and we check for the uid provided by the admin matches with the returned users. And if we find matches of more than one users with same uid, then we throw the exception that was thrown previously. The messages are kept intact.
-
Bugfix - Fix null for empty path on Oracle: #36610
An empty path was fetched as null and not as an empty string. Due to the strict comparison it caused the list of mounts for the existing fileId to be empty. So the higher level code relaying on the mounts list got an empty list and did nothing.
-
Bugfix - Do not dispatch DeclineShare event for non-existing shares: #36759
DeclineShare event was dispatched even when the share had been not found in oc_share_external table. It caused sending unshare notification to the empty hostname.
-
Bugfix - Remove part files when upload is cancelled for all public links: #36761
Remove part files when the upload is cancelled for the public links. Prior to this change, it was noticed that for
Upload Only
andDownload / View / Upload
the part files were not cleaned up. With this change it does clean up. -
Bugfix - Return correct file size in the public files webdav API: #36741
-
Bugfix - Optimize memory consumption of occ files:checksums:verify command: #31133
Memory consumption reduced by clearing memory usages of processed files and folders. Also, information messages of the command improved by showing the current processed user and the command run result.
-
Bugfix - Fix one-time password (OTP) verify button width: #36807
The one-time password (OTP) verify button width has been extended.
-
Bugfix - Sharing with a user and group of the same name on the webUI: #36813
When sharing with both a user and a group that have the same name it was not possible to adjust the sharing permissions of the 2nd share on the webUI. This problem has been corrected.
-
Change - Validate reshare permissions and attributes based on supershare: #36265
This change provides a uniform way that reshare permissions and attributes are internally checked and enforced. There is no change to external behaviour.
-
Change - Drop PHP 7.0 support across the platform: #36290
Support for security fixes for PHP 7.0 ended 1 Jan 2019 ownCloud core no longer supports PHP 7.0. Ensure that you are using PHP 7.1 or later.
-
Change - Don't report locking support in public.php and public-files endpoints: #36402
Public endpoints were reporting locking support even though the backend were rejecting those requests. This was causing a problem accessing a publicly shared document using libreoffice opening the file through webdav (libreoffice was complaining about a Forbidden error trying to lock the file)
With these changes, libreoffice will show a warning while opening the remote file (from a public link) if the file is already locked, letting the user choose what to do. If there is no lock, the file will be opened normally, but it won't be locked.
Following changes are expected: * LOCK and UNLOCK methods won't be reported as allowed * Lock information (d:lockdiscovery) and support (d:supportedlock) will be shown in the propfind if requested (lock support is needed for libreoffice to try to lock the file) * Trying to lock the file through public link will either throw a Locked exception if there is a lock in place, or MethodNotAllowed if there are no locks (the Locked exception is needed for libreoffice to show a popup warning the user that the file is locked)
-
Change - Update handlebars library to 4.5.3: #36439
The @bower_components/handlebars library has been updated from 4.1.2 to 4.5.3.
-
Change - Update Symfony polyfill components to 1.13.0: #36485
The following Symfony polyfill components have been updated to version 1.13.0: - polyfill-iconv - polyfill-php72 - polyfill-mbstring - polyfill-intl-idn - polyfill-util - polyfill-php56 - polyfill-ctype
owncloud#36485 https://github.com/symfony/polyfill/releases/tag/v1.13.0
-
Change - Update sabre/http (5.0.2 => 5.0.5): #36490
Includes functionality to significantly improve file download speed by enabling mmap based stream_copy_to_stream.
-
Change - Update doctrine/cache (1.9.1 => 1.10.0): #36503
-
Change - Update Symfony components to 3.4.36: #36503
The following Symfony components have been updated to version 3.4.36: - console - debug - event-dispatcher - polyfill-mbstring - process - translation - routing
The following Symfony polyfill components have been updated to 1.31.1: - polyfill-util - polyfill-php56 - polyfill-iconv - polyfill-php72 - polyfill-intl-idn - polyfill-ctype
owncloud#36503 https://symfony.com/blog/symfony-3-4-36-released
-
Change - Update punic/punic (3.4.0 => 3.5.0): #36508
-
Change - Update patchwork/utf8 (1.3.1 => 1.3.2): #36552
-
Change - Update league/flysystem (1.0.57 => 1.0.61): #36553
-
Change - Update pear/archive_tar (1.4.8 => 1.4.9): #36554
-
Change - Protect public preview with password: #36571
The preview route for password protected shares was accessible without the password.
-
Change - Consolidate user/group share actions into single dropdown: #36587
User and group share actions are grouped inside a dropdown which can be toggled via the cogwheel. This dropdown holds all related additional info and actions such as permissions, expiration, etc.
-
Change - Update pear/pear_exception (v1.0.0 => v1.0.1): #36599
-
Change - Update myclabs/deep-copy (1.9.3 => 1.9.4): #36599
-
Change - Update phpspec/prophecy (1.9.0 => 1.10.0): #36603
-
Change - Update sabre/vobject (4.2.0 => 4.2.1): #36614
-
Change - Update league/flysystem (1.0.61 => 1.0.62): #36659
-
Change - Update zendframework/zend-validator (2.12.2 => 2.13.0): #36660
-
Change - Update egulias/email-validator (2.1.11 => 2.1.13): #36661
-
Change - Update phpdocumentor/reflection-docblock (4.3.2 => 4.3.4): #36661
-
Change - Update phpspec/prophecy (1.10.0 => 1.10.1): #36661
-
Change - Zendframework dependency to laminas: #36677
Zend framework changed to be known as laminas. The dependencies are updated.
-
Change - Update league/flysystem (1.0.62 => 1.0.63): #36709
-
Change - Switch to new id3parser: #36717
The previous lukasreschke/id3parser library was archived. Use the new one published as christophwurst/id3parser
-
Change - Update deepdiver1975/tarstreamer (0.1.1 => 2.0.0): #36722
-
Change - Update egulias/email-validator (2.1.13 => 2.1.14): #36726
-
Change - Update laminas dependencies: #36726
Update laminas/laminas-zendframework-bridge (1.0.0 => 1.0.1) Update laminas/laminas-filter (2.9.2 => 2.9.3)
-
Change - Update sabre/dav (4.0.2 => 4.0.3): #36742
-
Change - Update showdown library to 1.9.1: #36752
The @bower_components/showdown library has been updated from 1.9.0 to 1.9.1.
-
Change - Update composer/semver (1.5.0 => 1.5.1): #36753
-
Change - Update sabre/vobject (4.2.1 => 4.2.2): #36757
-
Change - Validate OCS API Request Header in OCSController: #36762
Any OCS request has to send the header OCS-APIREQUEST to comply to the specification. This is now properly validated on OCSController based implementations.
-
Change - Adjust wording displayed for empty additional settings panel: #36776
The wording displayed when the admin personal settings panel is empty has been adjusted so that it no longer looks like there is an error.
-
Change - Update laminas/laminas-validator (2.13.0 => 2.13.1): #36780
-
Change - Update myclabs/deep-copy (1.9.4 => 1.9.5): #36780
-
Change - Update egulias/email-validator (2.1.14 => 2.1.15): #36789
-
Change - Update phpspec/prophecy (1.10.1 => v1.10.2): #36789
-
Change - Update symfony (3.4.36 => 3.4.37): #36796
The following symfony components have been updated tro version 3.4.37:
Symfony/debug symfony/console symfony/event-dispatcher symfony/routing symfony/process symfony/translation
-
Enhancement - MariaDb 10.3 support: #29483
MariaDb 10.3 is now supported
-
Enhancement - PostgreSQL 10 support: #33187
PostgreSQL 10 is now supported
-
Enhancement - Regex version for blacklisted_files and excluded_directories: #36360
Adds two config options blacklisted_files_regex and excluded_directories_regex to enable more flexible pattern matches. With this you can, for example, disable the upload of Microsoft Outlook .pst files or the creation of directories containing _backup.
-
Enhancement - Add an option to provide a mount in read only mode: #36397
Adds a new option in the mount settings to provide a mount in read only mode. This enables users or admins to provide a write protected mount independent of any backend settings. The sync client automatically respects this mount setting without any additional intervention.
-
Enhancement - Add user-sync OCS API: #36428
We added a new user sync ocs api to provide an http api for external user provisioning systems to trigger a user-sync for a specific user.
Authorization: The http API can only be executed by a user with admin privileges. Suggestion is to create a technical user who is in the admin group.
Route:
curl -X POST http://your.domain/ocs/v2.php/cloud/user-sync/admin -v -u admin
Response: 200 - if sync was executed, 404 - given userId is unknown, 409 - multiple users have been found for the given user id - not unique user criteria
-
Enhancement - Support Oracle connection strings: #36489
To be able to use Oracle specific configuration settings like fail over support for Oracle connection strings has been added. https://docs.oracle.com/database/121/HABPT/config_fcf.htm#HABPT4967
-
Enhancement - Add enabled and disabled filter options to occ app:list command: #36520
The occ app:list command now supports the --enabled and --disabled options
Occ app:list --enabled Displays just the enabled apps.
Occ app:list --disabled Displays just the disabled apps.
If a disabled app was enabled in the past, then the previously-enabled version of the app is now displayed in the disabled apps list.
-
Enhancement - Share indicator on webUI: #36572
The file list in the webUI now shows a share indicator on files and folders that reside inside a shared folder. The sidebar sharing tab reveals a detailed view of the share-tree including share-recipients and the parent folder that has been shared.
-
Enhancement - Expiration date for user and group shares: #36573
Shares with users and/or groups can now be given an expiration date. If the default expiration date is enabled then the default expiration is 7 days in the future. The default expiration date can be modified by the administrator. The default expiration date can be enforced as the maximum expiration date of a share. In that case the user can select a shorter expiration, but not longer.
The settings are disabled by default, preserving the existing behavior. They can be enabled on the admin sharing settings page. They can be set independently for user and group shares.
-
Enhancement - Allow plus sign in username: #36613
The plus sign is now allowed in a username, e.g. John+Smith
-
Enhancement - Enable DAV endpoints for trashbin and for public shares: #36815
DAV endpoint for trashbin and DAV endpoint for public shares were released in ownCloud 10.3.0. The endpoints were disabled by default and had to be enabled by setting dav.enable.tech_preview in config.php.
These endpoints are now always enabled. There is no longer any need to set dav.enable.tech_preview in config.php.
Changelog for ownCloud Core 10.3.2 (2019-12-04)
The following sections list the changes in ownCloud core 10.3.2 relevant to ownCloud admins and users.
- Bugfix - Fix share transfer in files:transfer-ownership command: #36222
- Bugfix - Respect accounts.enable_medial_search setting for remote search: #36225
- Bugfix - Fix SMB access denied error while listing the contents of the folder: #36242
- Bugfix - Avoid unnecessary "Avatar not found" logs: #36281
- Bugfix - Prevent Forbidden errors in the logs during file scan: #36288
- Bugfix - LargeFileHelper::getFileSizeViaCurl is broken with newer libcurl: #36319
- Bugfix - Do not try to set null parent Id in the file cache: #36305
- Bugfix - Follow single-bucket initialization for multi-bucket setup: #36329
- Bugfix - Disallow sharing share_folder or it's parents: #36241
- Bugfix - Fix sharing behavior to distinguish user and group having the same name: #35488
- Bugfix - Do not create error log about user home in user creation: #30853
- Bugfix - Allow sharing with guests when group restriction is active: #36384
- Bugfix - Allow re-sharer to send an e-mail for public link: #36386
- Bugfix - Handling null properly in dav files endpoint: #36401
- Bugfix - Fix a php error for occ command files_external:list --output: #36420
- Bugfix - Fix user search problem happening after user deletion: #36431
- Bugfix - The authentication header can also hold an empty string: #36465
- Bugfix - Remove query and/or anchor part in remote url: #36487
- Bugfix - Occ system:cron only shows progess bar if option is set: #36298
- Change - Update Symfony components to 3.4.32: #36244
- Change - Update phpspec/prophecy (1.8.1 => 1.9.0): #36253
- Change - Update zendframework/zend-validator (2.12.0 => 2.12.1): #36274
- Change - Update league/flysystem (1.0.55 => 1.0.57): #36285
- Change - Update sabre/dav from version 4.0.1 to 4.0.2: #36299
- Change - Update pear/archive_tar (1.4.7 => 1.4.8): #36310
- Change - Update jQuery-File-Upload from 9.18 to 9.34: #3508
- Change - Update twbs/bootstrap (3.3.7 => 3.4.1): #36344
- Change - Update nikic/php-parser (4.2.4 => 4.2.5): #36345
- Change - Update psr/log (1.1.0 => 1.1.1): #36348
- Change - Update Symfony components to 3.4.33 and other dependencies: #36358
- Change - Update Symfony components to 3.4.34: #36405
- Change - Update nikic/php-parser (4.2.5 => 4.3.0): #36410
- Change - Update swiftmailer/swiftmailer (v6.2.1 => v6.2.3): #36417
- Change - Update Symfony components to 3.4.35: #36426
- Change - Update pear/pear-core-minimal (v1.10.9 => v1.10.10): #36448
- Change - Update pear/console_getopt (v1.4.2 => v1.4.3): #36454
- Change - Update webmozart/assert (1.5.0 => 1.6.0): #36465
- Enhancement - New option in occ command files_external:list --mount-options: #36420
-
Bugfix - Fix share transfer in files:transfer-ownership command: #36222
Even when the path argument was given, files:transfer-ownership command was trying to transfer all shares of sourceUser. This situation caused random errors. We fixed this unintended behavior.
-
Bugfix - Respect accounts.enable_medial_search setting for remote search: #36225
Users taken from a federated instance were always searched with medial search in the share autocomplete box. Config option accounts.enable_medial_search was not taken into account.
-
Bugfix - Fix SMB access denied error while listing the contents of the folder: #36242
This happened in a DFS Replication (DFSr) folder, where such folder was visible even though the user didn't have permissions to read the folder. Using SMB2, windows threw an access denied error when a normal user was accessing that file.
-
Bugfix - Avoid unnecessary "Avatar not found" logs: #36281
ViewOnlyPlugin was producing too many warning logs for users who do not have an avatar. This problem has been resolved by registering ViewOnlyPlugin only for files.
-
Bugfix - Prevent Forbidden errors in the logs during file scan: #36288
When running files:scan exceptions were logged for guest users. This has been corrected.
-
Bugfix - LargeFileHelper::getFileSizeViaCurl is broken with newer libcurl: #36319
GetFileSizeViaCurl is a workaround for 32 bit platforms. Path separator was encoded when encoding the path but newer libcurl doesn't support that.
-
Bugfix - Do not try to set null parent Id in the file cache: #36305
In some cases when the parent Id of a resource was null, it was still being stored. That was causing database constraint errors. The issue has been fixed.
-
Bugfix - Follow single-bucket initialization for multi-bucket setup: #36329
In multi-bucket object store configurations, store version information in the object storage the same as for single-bucket configurations.
-
Bugfix - Disallow sharing share_folder or it's parents: #36241
Share_folder had share permission so it was possible for the user to share it along with some received shares. It caused weird behavior. So sharing share_folder (or any of it's parent folders) was prohibited. Deleting share_folder was already prohibited, but, the server did not return the correct node permissions. This situation led to dysfunctionality in client sides. This problem has been fixed.
-
Bugfix - Fix sharing behavior to distinguish user and group having the same name: #35488
Sharing a node with user and group having the same name was impossible. This bug was resolved by adding a share type check for share creation controls.
-
Bugfix - Do not create error log about user home in user creation: #30853
The server was producing an error log in every user creation and every first sync of a user account. This problem has been fixed.
-
Bugfix - Allow sharing with guests when group restriction is active: #36384
It was not possible to share with guest users when 'Restrict users to only share with users in their groups' is enabled.
-
Bugfix - Allow re-sharer to send an e-mail for public link: #36386
Sending an e-mail when creating public links from received shares was impossible. This problem fixed.
-
Bugfix - Handling null properly in dav files endpoint: #36401
Only if the files system is properly setup FileHome can properly be initialized
-
Bugfix - Fix a php error for occ command files_external:list --output: #36420
Fix a php error of occ command files_external:list --output=json respectively --output=json_pretty, when using in conjunction with option --all
-
Bugfix - Fix user search problem happening after user deletion: #36431
After a user search in user management web-UI, if the search result has a single user entry and afterward the user was deleted from the interface, the search was no longer work until refreshing the page. This bug has been fixed.
-
Bugfix - The authentication header can also hold an empty string: #36465
In some setups a not set authentication header can not only hold null but also an empty string
-
Bugfix - Remove query and/or anchor part in remote url: #36487
Remote server URL may potentially contain query or anchor part. This pull request strips these parts for proper server name detection.
-
Bugfix - Occ system:cron only shows progess bar if option is set: #36298
Occ system:cron will only output the progess bar if the newly introduced option --progress is set. When being executed from crontab occ system::cron shall only print out in case of error.
-
Change - Update Symfony components to 3.4.32: #36244
The following Symfony components have been updated to version 3.4.32: - console - event-dispatcher - process - translation - routing
owncloud#36244 owncloud#36245 owncloud#36246 owncloud#36247 owncloud#36248 https://symfony.com/blog/symfony-3-4-32-released
-
Change - Update phpspec/prophecy (1.8.1 => 1.9.0): #36253
-
Change - Update zendframework/zend-validator (2.12.0 => 2.12.1): #36274
-
Change - Update league/flysystem (1.0.55 => 1.0.57): #36285
-
Change - Update sabre/dav from version 4.0.1 to 4.0.2: #36299
Sabre/http 4.0.2 was released. It fixes a server error when syncing carddav/caldav.
owncloud#36299 owncloud#36300 https://github.com/sabre-io/dav/releases/tag/4.0.2
-
Change - Update pear/archive_tar (1.4.7 => 1.4.8): #36310
-
Change - Update jQuery-File-Upload from 9.18 to 9.34: #3508
Updated jQuery-File-Upload component to the v9.34 which fixed Edge garbage collection for huge files
-
Change - Update twbs/bootstrap (3.3.7 => 3.4.1): #36344
-
Change - Update nikic/php-parser (4.2.4 => 4.2.5): #36345
-
Change - Update psr/log (1.1.0 => 1.1.1): #36348
-
Change - Update Symfony components to 3.4.33 and other dependencies: #36358
The following Symfony components have been updated to version 3.4.33: - debug - console - event-dispatcher - process - routing - translation
The following other dependencies have been updated: - psr/log (1.1.1 => 1.1.2) - guzzlehttp/guzzle (5.3.3 => 5.3.4) - zendframework/zend-validator (2.12.1 => 2.12.2) - mikey179/vfsstream (v1.6.7 => v1.6.8)
owncloud#36358 https://symfony.com/blog/symfony-3-4-33-released
-
Change - Update Symfony components to 3.4.34: #36405
The following Symfony components have been updated to version 3.4.34: - console - event-dispatcher - process - translation - routing
owncloud#36405 owncloud#36406 owncloud#36407 owncloud#36408 owncloud#36409 https://symfony.com/blog/symfony-3-4-34-released
-
Change - Update nikic/php-parser (4.2.5 => 4.3.0): #36410
-
Change - Update swiftmailer/swiftmailer (v6.2.1 => v6.2.3): #36417
Swiftmailer/swiftmailer v6.2.3 was released. It provides changes for PHP 7.4 compatibility.
owncloud#36417 https://github.com/swiftmailer/swiftmailer/releases/tag/v6.2.3
-
Change - Update Symfony components to 3.4.35: #36426
The following Symfony components have been updated to version 3.4.35: - console - debug - event-dispatcher - process - routing - translation
owncloud#36426 https://symfony.com/blog/symfony-3-4-35-released
-
Change - Update pear/pear-core-minimal (v1.10.9 => v1.10.10): #36448
-
Change - Update pear/console_getopt (v1.4.2 => v1.4.3): #36454
-
Change - Update webmozart/assert (1.5.0 => 1.6.0): #36465
-
Enhancement - New option in occ command files_external:list --mount-options: #36420
Using --mount-options shows all mount options independent if they are set to their default value or not.
10.3.1 - 2019-11-05
- Use userFolder instead of rootFolder - #36368
10.3.0 - 2019-10-15
- Support for php 7.3 #34559 #35775 #35752
- Support for redirecting private links to ownCloud phoenix frontend #35819
encryption:fixencryptedversion
command to address issues related to encrypted versions #115- Tech preview DAV endpoint for public shares #35932 #36057 #36021 #36059 #36066 #36080 #36061 #36119 #36049 #36068
- Tech preview DAV endpoint for trashbin #35716 #35879 #36053 #36073
- Disable Tech preview trashbin and public DAV APIs by default - #36124
- OCS Roles API and ability to set permissions via share attributes - #36024 #36086
- OCS API for public link share email notification - #36063
- JS API v2 for share attributes - #35836
- Url
/cron
in addition to/cron.php
to execute cronjobs via webcron #34932 system:cron
occ command for executing background tasks via system cron #34932previews_path
config option to configure thumbnail storage path #35131- Show activity when share receiver unshares a received share #35193
- Document phoenix.baseUrl in config.sample.php - #36007
- Add getReshareAttributes method to shareitemmodel with fix for parsing - #36186
- Add new migrations to dav app to prevent invalid dav properties - #36084
- Allow two-factor providers to display custom challenge message #34848
- Handling of unauthenticated ajax requests to prevent browser issues #36003
- Improved share permission handling #35884
- Improve the JS attributes handling during reshare #36214
- Refined user administration setting button #35877
- Improved mobile device experience #35919 #35813 #35347
- Reference the new iOS app in the list of available applications #35918
- Improved sharing autocomplete dropdown layout #35397
- Improved theming capabilities by allowing html for Name and LogoClaim #35273
- Improved private link UX for large resolutions #34998
- Improved wording for several user/administrator encryption related interactions #21 #117
- Handling of composer autoloader for
apps/files_external
#35755 - Renamed share icon to be adblock friendly #35199
- Bump @bower_components/handlebars from v4.1.1 to v4.1.2 #35025
- Bump @bower_components/jsTimezoneDetect from 1.0.5 to v1.0.6 #33776
- Bump doctrine/lexer from v1.0.1 to 1.0.2 #35625
- Bump egulias/email-validator from 2.1.7 to 2.1.11 #35341 #35625 #35934 #36026 #36026
- Bump icewind/smb from 3.1.1 to 3.1.2 #36017
- Bump icewind/smb from 3.1.1 to 3.1.2 in /apps/files_external/3rdparty - #36017
- Bump league/flysystem from 1.0.51 to 1.0.55 #35275 #35644 #36099
- Bump nikic/php-parser from 4.2.1 to 4.2.4 #35337 #36015 #36015 #36132
- Bump phan to 1.3.5 and enable on PHP 7.2 7.3 - #35818
- Bump phpseclib/phpseclib from 2.0.15 to 2.0.23 #35336 #35565 #35643 #35827 #36196 #36200
- Bump sabre/dav from 3.2 to 4.0.1 #34559 #36094
- Bump sabre/xml 2.1.2 from to 2.1.3 #36036 #36036
- Bump sabre/uri from 2.1.2 to 2.1.3 #36189
- Bump sabre/http from 5.0.0 to 5.0.2 #36192
- Bump swiftmailer/swiftmailer from 6.2.0 to 6.2.1 #35075
- Bump symfony from v3.4.26 to v3.4.31 #35146 #35348 #35625 #35934 #36098 #36097 #35989 - Bump symfony/process from 3.4.30 to 3.4.31 - #36095 #36096 #36093
- Bump theseer/tokenizer from 1.1.2 to 1.1.3 #35625
- Updating webmozart/assert (1.4.0 => 1.5.0) - #36103
- Updating zendframework/zend-filter (2.9.1 => 2.9.2) - #36102
- Updating zendframework/zend-inputfilter (2.10.0 => 2.10.1) - #36112
- Update the minimum required Node engine version to 8.15.0 - #36033
- Deprecated
update
script fromfiles
app #35781 - Dropped
APC
andXCache
support #35782 - Old table repair step will drop deprecated
contacts_cards_properties
table #35721 - Removed support for swift as primary / external storage #35951
- Moved S3 external integration into separate app (files_external_s3) #34986
- Moved ownCloud default encryption app into separate repository #35949
- Fix potential issue when a user tries to delete the share_folder entry - #36170
- Clean up code of sharing blacklist feature - #36038
- Obey to config in share mail notifications APIs - #36161
- Don't invalidate the auth token if there isn't a user session active - #36153
- Fix typos in 'phoenix.baseUrl' documentation - #36152
- Don't check the CSRF token on public link email API - #36158
- Remove hardcoded http response codes - #36127
- Fix permission handling for share owner of a reshare - #36193
- Improve logging when a remote host went down suddenly - #36180
- Use bit operators when checking share file permission - #36111
- Only share owner should be able to update or delete share - #36120
- Fix various issues with session handling in relation to redis - #35888
- Fix issue where IE did not redirect to login page when user is not logged in - #36079
- Check that all user mount points has unique names - #36029
- Fix loading of app.php when using a separate apps folder - #36054
- Respect default app config within the TwoFactorChallengeController - #36031
- Don't send WWW-Authenticate headers with schema Basic for ajax requests - #36003
- Fix issue when share folder and shares go missing when storage becomes unavailable - #35998
- Handling of OCM sharing when receiving server did not include a protocol (i.e.
https
) #35711 - Performance improvements when loading groups of users #35822
- Relative path handling for
files:checksums:verify
occ command #35694 - Failed rename operation leading to unavailable external storage #35598
- Comment creation event missing ID field #35799
- Improved handling of share expire input fields to avoid user error #35779
- Maintain dav properties when files are moved to trashbin #35954
- Usage of domain when authenticate with SMB/WND shares #35892
- Triggering dav events on the public webdav endpoint #35820
- Prevent deletion of configured
share_folder
#35998 - Issues with improper displayed languages #35973
- Respect
user.min_search_length
with federated sharing #35977 - Avoid password manager autocomplete on user administration #35931
- Changing config settings produced duplicate emitted events #35875
- Properly return StorageNotAvailable on network failures with external storages #35707
- Improved error message when trying to share with a non-existing federated user #35542
- Allow selection of UI errors during web-installation #35681
- Added missing events for webdav copy operations on new endpoint #35604
- Double-appearing address book entries when shared with groups #35603
- Issues with federation when proxy requires credentials #35868
- Respect
share_folder
with federated shares #35396 - Issues with sqlite to mysql migration with
db:convert-type
#35390 - Upload issues with mismatching checksums #35294
- Improved memory handling for trashbin expiry background job #35708
- Proper handling of objecstorage S3 issues on object upload for
files_primary_s3
core#35389 files_primary_s3#212 - Respect default application configuration when using TwoFactor Authentication #36031
- Improved mobile view for file drop links #34803
- Ignore case of userid in occ
files:scan
command #35324 - Properly handle errors from remote server when declining a non-existing federated share #35321
- UI issues on setup page when mobile devices where used #35347
- Direct access to sharing tab for long file listings #35306
- Improved OCM compliance on providerId and remoteId fields #35122
- Issue with adding multiple Google Drive external storages #34987
- Issues with recreating masterkeys when HSM is used #128
10.2.1- 2019-07-03
- Error when user was removed from a group - #35289 #35570
- Incorrect avatar storage location - #35311 #35531
- Incorrect rendering of password changed notification email - #35255 #35491
- Performance issue with sharing on masterkey encryption - #35492
- Permission change handling for share receivers on internal shares - #35510 #35633
- Permission handling of public link shares based upon internal shares #35600
- Automatically set expiration date on newly created shares #35550 #35593
- Incorrectly sent password reset tokens #32889 #35607
- Issue with loading javascript files from additional app folders #35640 #35709
- Added
-y
option toencryption:encrypt-all
occ command encryption#33 #35606 - Updated application revocation list - #35506
10.2.0 - 2019-05-16
- Add new capability to advertise the availability of the detail parameter for private links - #35104
- Add background:queue:execute occ command for running cron jobs manually - #34995
- Adding background:queue commands: status and delete - #34783 #35228
- Added new permissions option for public link - #34983 #35082#35159#35197#35238
- Support for extra share key-value attributes - #34951
- Internal permission to prevent file download when set in share attribute, for "secure view" feature - #34951 #35095
- Support for automatically accepting incoming federated shares from trusted servers - #34206 #35135
- User option for automatically accepting incoming shares - #34647 #34842 #34934
- User option for automatically accepting incoming federated shares - #34706
- User option to opt-out autocomplete in share dialog - #34942
- Add before-after share link auth events - #34399
- Log broken smb config params for easier debugging - #34056
- Add support for detecting library mime types - #34082
- Extend repair command to be able to list repair steps and run them individually - #34499
- Added CORS headers for many existing API calls, required for Phoenix - #34476
- Encryption now supports working with a Hardware Security Module - #34527
- Command for first run wizard to reset for all users - firstrunwizard/#83
- Inform admin about the need to login again after changing the master encryption key - #34596
- Added checkboxes to hide quota and password - #34479
- By default the "apps-external" directory is included in config.php during installation - #34656 #34902
- Added files:scan --group and --groups options - #34754
- Allow admins to enable medial search on group and user - #34779
- Add composer cleaner - #34784
- Add events for user preference changes - #34820
- Add occ command to poll incoming federated shares for updates - #34933 #34959 #34993 #35073
- Bump @bower_components/bowser from 1.6.0 to 1.9.4 in /build - #34844
- Bump @bower_components/backbone from 1.2.3 to 1.4.0 in /build - #34288 #34621
- Bump @bower_components/base64 from 0.3.0 to 1.0.2 in /build - #34542
- Bump @bower_components/clipboard from 1.5.12 to v2.0.4 in /build - #34620
- Bump @bower_components/bootstrap from 3.3.6 to 3.3.7 in /build - #34843
- Bump @bower_components/handlebars from v4.0.12 to v4.1.1 in /build - #34454 #34802
- Bump @bower_components/moment from 2.22.0 to 2.24.0 in /build - #34459
- Bump @bower_components/strengthify from 0.5.2 to 0.5.6 in /build - #34451
- Bump @bower_components/underscore from 1.8.3 to 1.9.1 in /build - #34457
- Bump composer/semver from 1.4.2 to 1.5.0 - #34882
- Bump extend from 3.0.1 to 3.0.2 in /build - #34411
- Bump handlebars from 4.0.12 to 4.1.1 in /build - #34456#34801
- Bump karma from 3.1.3 to 4.0.1 in /build - #34458 #34675
- Bump icewind/smb from 3.0.0 to 3.1.1 in /apps/files_external/3rdparty - #34670
- Bump icewind/streams from 0.5.2 to 0.7.1 in /apps/files_external/3rdparty - #34537
- Bump icewind/streams from 0.5.2 to 0.7.1 - #34617
- Bump league flysystem 1.0.51 - #34417 #34946
- Bump react promise v2.7.1 - #34416
- Zendframework bumps 20190208 - #34413
- Bump paragonie/random_compat v2.0.17 => v2.0.18 - #34043
- Bump pear/archive_tar from 1.4.6 to 1.4.7 - #34990
- Bump phpseclib/phpseclib from 2.0.13 to 2.0.15 - #34285 #34741
- Bump pimple/pimple from 3.0.2 to 3.2.3 - #31753
- Bump sinon from 7.1.1 to 7.3.1 in /build - #34881 #34943
- Bump symfony and modules to 3.4.26 - #35062
- Bump symfony/polyfill components from v1.10.0 to v1.11.0 - #34882
- Bump deepdiver1975/tarstreamer from 0.1.0 to 0.1.1 - #34615
- Bump zendframework/zend-servicemanager from 3.3.2 to 3.4.0 - #33971
- Bump zendframework/zend-inputfilter from 2.9.0 to 2.9.1 - #34145
- Bump dependencies after PHP 5.6 deprecation, swiftmailer 6.2 - #34755
- Bump README.md doc links to 10.1 - #34403
- Updating phpunit/phpunit (5.7.27 => 6.5.14) - #34866
- Updating bamarni/composer-bin-plugin (v1.2.0 => v1.3.0) - #34920
- Increase size of login_name from 64 to 255 - #34280
- Warn when .htaccess file is not writable - #34486 #34461
- Add password confirmation field when resetting password - #34492 #34834
- Add email footer with motto in email for changing password - #34498
- Change the styling of the active settings navigation menu item - #34561
- Added delay in search field - #34613
- Tidy up code for notification by email - #34786 #35137
- Some code now made PHP 7 specific - #34925
- cron.php calls the new occ system:cron command as a fallback - #36221
- Update the CA bundle - #36219
- Drop PHP 5.6 support across the platform - #34698
- Removed bundled documentation, help links now point to the online documentation - #34612 #34649
- Remove incompatible script for generating DB changeset - #34722
- Remove classes that were deprecated since OC 8.0.0: OCP\Config, OCP\PERMISSION_XXX, OCP\Template - #34927
- Wrong translation file referenced for accept & decline share - #35063
- Respect 'writable' appdir flag on update - #35097
- Aborted uploads in web UI are now properly cleared - #35134
- Fix regression with missing progress bar in files drop view - #35059
- Log exception when background job class not found - #34723
- Prevent concurrent updates in group shares to avoid duplicate entries - #34769
- Calender invitation now uses actual sender name - #34901
- Fix public link share default expiration behavior - #34971
- Improve files error handling on download - #34886
- Directly honour robots.txt if htaccess.RewriteBase is set - #34949
- Reduce sharing query size by properly reusing the query builder - #34915
- Tar download support for file names longer than 99 chars - #34615
- Fix Webdav error page, include CSP and message - #34817
- Handle accept decline with invalid share id - #34786 #35221
- Normalize path when moving chunks to final destination - #34777
- Better support for international email addresses after swiftmailer update - #34759
- Fix first time login handling - #34758
- Server container interface should inherit from icontainer,… - #34756
- Don't expose hashed password in OCS api - #34691
- Fixes UID issue with birthday calendar events - #34701
- Improve avatar performance by having many avatar related calls bypass the file cache - #34592
- Improve speed of apps list settings page by caching integrity check results - #34584
- Fix chunking infinite loop in some environment related issues - #34558
- Fixes issue file picker choose button disabled for directory selection - #34426
- Use sabre/vobject ^4.2 to fix issues in ITip messages - #34553
- Filter static tags when searching files by tag - #34557
- Fix collaborative tags PHP API for get and create operations - #34610
- Improve performance of account sync service - #34546
- Improve code occ files_external:list --short - #34549
- Fix preview expiration issues with trashbin/versions - #34533
- Use the displayname in lost password emails where possible - #34512
- Store quota overrides in preferences table - #34467
- Prevent password removal in share dialog if enforced - #34497
- Encryption now skips shared files when adding recovery key - #34506
- Fix encryption to use API instead of config access - #34504
- Properly handle StorageNotAvailableException in Webdav endpoint - #34485
- Properly hide share fields in "Shared with You" section when permissions are restricted - #34473
- Repair subshares earlier to avoid errors - #34462
- Only parse info.xml once to improve performance for every request - #34482
- Catch errors when info.xml is malformed - #34427
- Send OCM requests as JSON - #34424
- Remove composer that is now in vendor bin - #34418
- Use recipient language when sending notification email - #34255
- Fix shares not accessible for guest users when using "share_folder" config option - #34395
- Fix reset confirmation mail from occ - #34154
- Correctly write Login failed entry in log when 2FA is enforced - #34055
- Center the logo and login fields - #34057
- Fix Apache warnings by setting headers to "always" in htaccess - #34089 #35118
- Fix external storage advanced checkbox state issue - #34168
- Set permissions on log file creation instead of every write - #34061
- Images are again properly rotated now based on EXIF rotation - #34356
- Fix query parts for federated shares to be less expensive - #34401
- Fix cancel upload and hide 'uploading' message for files_drop shared folders - #34097
- Set the correct value when upgrading app patch version in DB - #34878
10.1.0 - 2019-02-06
- Added Symfony event for federation to provide apps with federated share receiver id - #34152
- Added mime types for sharedlib and executable - #33893
- Allow loading JSON files in setups with pretty URLs - #32835
- Support global CORS domains for public pages - #33139
- New tag scope "static tags", editable but not assignable - #33420 #33864 #34098
- Added "getBucket" method to HomeObjectStore to fix S3 issue - #33513
- Pass an additional parameter on the core update - #33641
- Added short list argument to occ files_external:list - #33684
- Public JS utility function for email validation - #33699
- Introduce persistent and explicit locking of file and folders (Webdav locks) - #33266 #33785 #33843 #33957 #33957 #34270 #34267 #34227 #34208 #34203 #34355 #34350
- Add minimal frontend in files app for persistent locks (Webdav locks) - #33951
- Federated sharing new spec OCM 1.0-proposal1 - #33027 #34113 #34252
- Add sharing scope to enable addressbook sharing with custom groups - #33849
- Add X-Request-ID to header Access-Control-Allow-Headers - #33926
- Now also logging wrapped exceptions - #34475
- Switch to shorten hostname in status.php - #34469
- Use new DAV endpoint in web UI file list and upload - #33544
- Bypass apps max-version check for daily/git release channels - #33861
- Changed default link share name to be "Public link" - #33879 #33955
- Set shipped apps max version to 10 in preparation for Semver switch - #33496
- If only the patch level of an app's version changes no migrations will run - #33218 #34138
- User/group deletion in users page now has a confirmation dialog - #33626
- Disable browser autocomplete for password fields - #32590
- Minor and patch updates of dependencies as at 20181126 - #33683
- Bump @bower_components/browser-update from 2.0.1 to v2.0.2 in /build - #34290
- Bump composer/xdebug-handler to 1.3.0 - #32977
- Bump cryptiles from 3.1.2 to 3.1.4 in /build - #33935
- Bump friendsofphp/php-cs-fixer (v2.13.0 => v2.14.0) - #33290 #34012 #34040
- Bump handlebars from 4.0.11 to 4.0.12 in /build - #32661 #34071
- Bump hoek from 4.2.0 to 4.2.1 in /build - #33574
- Bump jakub-onderka/php-console-highlighter from 0.3.2 to 0.4 - #32944
- Bump karma from 3.0.0 to 3.1.3 in /build - #33256 #33343 #33737
- Bump league/flysystem from 1.0.46 to 1.0.48 - #33199
- Bump lodash from 4.17.4 to 4.17.11 in /build - #33754
- Bump pear/archive_tar from 1.4.3 to 1.4.6 - #34080 #34448
- Bump phan 0.12.11 - #34022
- Bump phpseclib/phpseclib from 2.0.11 to 2.0.13 - #33433 #33922
- Bump punic 3.1.0 => 3.2.0 - #33462
- Bump sabre/dav from 3.2.2 to 3.2.3 - #33276
- Bump sinon from 6.2.0 to 7.1.1 - #32825 #33073 #33306 #33373
- Bump marked from 0.3.7 to 0.3.19 in /build - #33576
- Bump sabre xml 1.5.1 - #34102
- Bump squizlabs/php_codesniffer 3.3.2=>3.4.0 - #33940
- Bump sshpk from 1.13.1 to 1.16.0 in /build - #33966
- Bump stringstream from 0.0.5 to 0.0.6 in /build - #33755
- Bump symfony 3.4.15 to 3.4.20 - #33001 #33460 #33667 #33821
- Bump symfony/polyfill components v1.9.0 => v1.10.0 - #33377
- Bump symfony/translation from 3.4.17 to 3.4.18 - #33429
- Bump webmozart/assert (1.3.0 => 1.4.0) - #34015
- Bump zendframework/zend-inputfilter from 2.8.2 to 2.9.0 - #33920
- Patch bumps punic pear-core-minimal xdebug-handler - #33830
- Update moment JS to 2.22.2 - #33650
- Deprecate Sharing 1.0 APIs which will be removed in ownCloud 11 - #33220
- Remove core/l10n from release build - #33960
- Fix missing translations in the user settings module - #34234 #34261
- Skip preview expiry when owner cannot be determined - #34207
- Allow the testing app to not be in the default apps folder - #34196
- Integrity check now detects renamed files properly - #34085
- Fix up grammar mistake in console output - #33947
- Expand occ user reset password email validation - #33945
- Return 403 instead of 500 status when uploading into share without write permissions - #33640
- Fix performance issue when fetching versions: do not iterate over all storages when only first is needed - #33859
- Config sample fixes - #33870 #33954 #34020
- Correction to default apps folder in config.sample.php - #33912
- Fix system tags object mapper for Oracle - #33772
- Adjust last login time when using auth modules - #33752
- Disable share autocomplete endpoint for members of groups excluded from sharing - #33736
- Fix issues with expiration date validation in public link dialog - #33735
- List compatible apps instead of missing ones in occ upgrade process - #33730
- Add background job to clean up orphaned DAV properties - #33722
- Fix paginated iteration when syncing users - #33698
- Cannot set 0 as value for config through OCC command - #33643
- Fix for some upgrade path that led to DAV tables missing bigint conversion - #33603
- Fix checksum verify command verbose mode and path argument handling - #33610
- Fix form to enter initial password to properly display error message - #33453
- File cache corruption check now only reports storage id once - #33539
- Fix escaping of public share names - #33419
- Update config.sample.php to fix a broken link - #33518
- Add "uid" argument to Symfony login events for consistency - #33470
- Prevent deletion of calendar group shares during cleanup - #33394
- Fix upload avatar for LDAP users - #33369
- Fix double escaping in email subject - #33342
- Add missing type hints in code - #33314
- Increase versions list performance by ignoring shared storages - #33291
- Fix PROPFIND with Depth infinity requests through Sabre update - #28341
- Adjust "has never logged in" text in occ command - #33275
- Don't remove temporary file on failure when creating office file preview - #33234
- Warning log about oc_readonly storage wrapper is now logged in debug level - #33212
- Fix occ encrypt-all command to not attempt re-encrypting already encrypted files - #33206
- Register areCredentialsValid as a sensitive logging method - #32713
- Deletion of user now also updates storages applicable fields - #32906
- Blacklist the method "setPassword" in stack traces - #33176
- Fix wording in occ command help - #33179
- Fix preLogin hook parameter inconsistencies - #33185
- Store user name in oc_preferences when provided by backend, use in external storage save in session mode #32587
- Support JSON format for settings passed to occ system:config:set - #32524
- occ decrypt-all command can now read password from an environment variable - #32252 #32677
- Roave Security Advisories as a development dependency - #31818
- Store timestamp when ownCloud was first installed - #32000
- Symfony events for login action with token or Apache - #31985
- Search API for files using Webdav REPORT and underlying search provider - #31946 #32328 #32603
- Add information whether user can share to capabilities API - #31824
- Reload the filelist view when accepting or rejecting a share - #31798
- Allow different language in public link share email - #31767
- Command files:scan now outputs items per second - #32093
- New option to prevent users to share with specific system groups - #31740 #32533 #32501 #32707
- Hook "loadAdditionalScripts" now also available for public link page - #31944
- Add url parameter to files app which opens a specific sidebar tab - #32202
- Retry chunks in web UI on stalled or timed out uploads - #32170 #32335
- Add log entry for each migration that is run - #32461
- Ability to create users and send them an email for password creation - #32466
- Command for resetting password now supports sending reset email and outputting link - #32500
- Added Phan static code analyzer to improve code quality - #32492
- Added method in PHP share API to set password hashes directly - #32572
- Experimental support for asynchronous MOVE operations - #32414
- Config report now contains list of all migrations that have run, for easier debugging of update issues - configreport/#68
- Update CA bundle - 2018-06-20 - #32688
- Minimum desktop client version is 2.3.3 - #32657
- Handle SSL certificate verifications for others than Let's Encrypt - #31858
- Insufficient storage exception now logged with "debug" log level - #31978
- Skip filecache repair step for version greater than 10.0.4 - #31803
- Bump sinon from 2.4.1 to 6.2.0 in /build - #32319 #32662
- Bump karma from 2.0.2 to 3.0.0 in /build - #31892 #32197 #32317
- Bump behat/behat from 3.4.3 to 3.5.0 - #32318
- Bump paragonie/random_compat v2.0.15 to v2.0.17 - #32107
- Bump symfony/event-dispatcher from 3.4.12 to 3.4.13 - #32199
- Bump symfony/console from 3.4.12 to 3.4.13 - #32140
- Bump symfony/routing from 3.4.12 to 3.4.13 - #32137
- Bump symfony/process from 3.4.12 to 3.4.13 - #32135
- Bump symfony/translation from 3.4.12 to 3.4.13 - #32198
- Bump symfony polyfill 1.8.0 to 1.9.0 - #32255
- Bump swiftmailer/swiftmailer from 5.4.9 to 5.4.10 - #32200
- Minor dependency bumps 2018-08-26 - #32439
- Bump symfony 3.4.11 to 3.4.12 - #31912
- Bump symfony 3.4.15 and zend-stdlib 3.2.1 - #32499
- Allow slashes in generated resource routes in app framework - #31939
- Email field is now default in user management page, users receive an email with token to set initial password - #32466 #32648 #32636 #32672 #32672 #32685 #32690
- Split of config.sample.php into two files for core and apps - #32554 #32634
- Fix PHP 7.2 issue with ini_set - #32538
- Prevent logging LDAP password in case of failure - #32592
- Prevent passwords to be set to empty strings - #32581
- Fix update issue related to oc_jobs when automatically enabling market app to assist for update in OC 10 - #32573
- Trigger missing migrations in files_sharing app, adds indices and can speed up some instances - #32562
- Fix issue with spam filters when sending public link emails - #32542
- Fix version previews to fall back to icon when no preview provider is available - #32474
- Fix master key recreation - #32504
- Return correct status when IMip email delivery fails - #32489
- Fix typos in config.sample.php - #32496
- Don't check for avatar folder if not enabled - #32490
- Add missing ILogger declaration in MigrationService - #32473 #32475
- Fix JS tests for future Sinon JS update - #32488
- Command to verify checksums is now more robust - #32360
- Fix not allowed to share message - #32429
- Update php doc to reflect proper return type - #32427
- Catch more errors in SMB storage - #32416
- Don't crash on filescan where folder has symlink - #32408
- Fix issue with some special characters in queries - #32412
- Use the core exception logger functionality in cron.php - #32404
- Compare UIDs instead of objects when changing displayname - #32409
- Compare UIDs instead of objects when changing email address - #32391
- Improve performance when propagating size updates in file cache - #32304
- Prevent current chunk assembly failing by setting the exclusive file lock earlier - #32334
- Don't strip linebreaks in personal note of public link share - #32331
- Let files be overwritten by rename operations on local storage instead of pre-deleting - #32273
- Continue with upgrade even if the market app cannot be disabled - #32324
- Versions app now works also when comments app is disabled - #32208
- Fix two factor challenge page for when password has expired - #32058
- Scanner now properly resets checksum whenever a file has changed remotely - #32284
- Fix checksums not being updated on modifying shared file for objectstore - #32364
- Accept email addresses with subdomains with hyphens for public link emails - #32281
- Properly set installed_version flag when enabling app via provisioning api - #32214
- Fix API response of pending shares when the state did not change - #32156
- Read mtime from both JS properties in web UI upload for browser compatibility - #32013
- Fix warning in logs while moving FutureFile after chunk assembly - #32166
- Allow null in "Origin" header for third party clients that send it with WebDAV - #32189
- Fix calendar or reminder insertion error via CalDAV on MacOS - #32024
- Properly log failed message when token based authentication is enforced - #31948
- Prevent share access to birthday calendar - #31882
- Added space in display names of shared calendar/contact - #31877
- Deleting a user now also properly deletes their external storages and storage assignations - #32069
- Improve text about logging in config.sample.php - #32049
- Use OC_DEFAULT_MODULE constant for encryption in core - #31838
- Unset encrypted flag in file cache when running decrypt-all command - #32027
- Fix decrypt of single user in decrypt-all command - #32168
- Fix login exception in decrypt-all command - #31986
- Properly clean up encryption keys after file deletion - #31959
- Remove sensitive shared_secret data from occ config:list output - #31997
- Fix file cache update function to properly handle empty string and nulls with Oracle - #31996
- Fix bogus etag update when propagating etag for federated shares - #31992
- Display all failed recipients when sending link share email - #31935 #32633
- Lock public link share dialog while processing - #31928
- AppManager text typo and PHPdoc return tags - #31918
- Optimize file uploads with PUT method, with custom mtime, use storage instead of view - #31891
- Optimize file uploads with PUT, don't fetch and update checksum again, reuse the one from part file - #31768
- Do not throw an error when the same theme is enabled twice - #31783
- Fix repair step that removes duplicate sub shares - #31146
- Adjust code to follow coding standard - #32116
- Fix overriding for gif images in themes for CLI scripts - #32131
- Fix wording on password change page - #32146
- Fixed mount config in frontend to only load once to avoid side effects - #32095
- Don't urlencode group id to make it work with "/" and "%" - #31109
- Added account module middleware to be able to plug in logic after authentication - #31883 #31933
- occ user:list now takes a list of attributes to display - #31115
- Added Symfony events for user preference changes - #31266
- Added Symfony events for public links shared by email - #31632
- Added Symfony events for accept and reject for local shares - #31702
- Added support for Imprint and Privacy Policy URLs in web UI and email footers - #31666 #31699 #31730 #31766
- Added HTML template for lost password email - #31144
- Received local shares can now trigger a notification to accept or reject them, also visible in "Shared with you" section - #31613 #31886
- Rejected shares can now be accepted again in the "Shared with you" section - #31613
- Provide original exception via logging events - #31623
- Share autocomplete now displays useful tooltip when typing less characters - #31729
- Added public Webdav API for versions using a new "meta" DAV endpoint - #31729 #29637 #31805 #31801
- Added support for retrieving file previews using Webdav endpoint - #29319 #30192 #31748 #31788 #31862 #31865
- Added versioning support for primary object store - #29607 #31285 #31595
- Updated ca-bundle.crt - #31734
- Bump symfony to 3.4.8 and other pending minor bumps - #31221
- Bump karma from 2.0.0 to 2.0.2 in /build - #31253
- Bump karma-jasmine from 1.1.1 to 1.1.2 in /build - #31378
- Bump karma-coverage from 1.1.1 to 1.1.2 in /build - #31380
- Bump zendframework/zend-inputfilter from 2.8.1 to 2.8.2 - #31431
- Bump icewind/smb from 1.1.0 to 3.0.0 in /apps/files_external/3rdparty - #31521
- Bump symfony 3.4.9 to 3.4.11 - #31571
- Update jsdoc requirement to ~3.5.5 - #30036
- Removed example theme which now lives in the theme-example repository - #31447
- A user who is a member of multiple groups is now excluded from sharing if at least one of their group is configured for exclusion - #31737 #31822
- Changed back default minimum search characters to 2 for share autocomplete due to confusion - #31729
- Files app UI now uses new versions API through the "meta" DAV endpoint - #29607
- Removed old private ajax API for previews, deprecated by DAV endpoint support - #30254
- Bookmarks certificate was removed - #31878
- Adjustments for the notifications messages of the sharing apps - #31947
- Disable jquery globalEval - #31972
- Work around Edge browser memory leak in web UI chunked upload - #31884
- Don't fail if ISqlMigration doesn't return anything - #31779
- Fixed restoring of versions for single file shares - #31681
- Group admins are not able to create groups any more using provisioning API - #31738
- Fix Oracle for queries using ILIKE operator - #31466
- Improve user-sync command help description - #31691
- Fix deletion and restoration of files in trashbin in some partial selection scenarios - #31700
- Do not load the code of disabled theme apps - #31478
- Fix encrypt-all and decrypt-all commands to keep shares when encrypting - #31600 #31590
- Proceed with encrypt-all command by enabling user-keys if no mode is selected by user - #31612
- Validate maximum length of a username - #31664
- Save timezone as given during login - #31493
- Fix checksum computation to not apply on read-write streams to avoid potential mismatch results - #31619
- Exclude uploads directory from read-only cache mask, fixes guest app chunked uploads - #31596
- Properly normalize paths for event, no &$magic needed - #31689
- Use the correct user id in login related Symfony events - #31605
- Fix public link dialog issue when collaborative tags app is disabled - #31581
- Fix updating public link share in transfer ownership command - #31176 #31953
- Do not set the password again if it hasn't changed - #31370
- Use correct l10n to translate 'password was changed' email - #31553
- Improve text in settings/personal App Password - #31539
- Fix default language code example - #31448
- Fix double slash in versioning file copy events - #31452
- Split public password enforced capabilities based on a config - #31499
- Fix bogus exceptions related to missing DAV nodes after deletion - #31479
- Fix enabling of users by group admins in the web UI - #31489
- Fix AccountMapper to return an object or throw an exception - #31445
- Proper handling of exceptions in UserManager - #31446
- Properly cache non-existing user in UserManager - #31446
- Update verify checksums console output to flow more naturally - #31449
- Subadmin shouldn't be able to add users to their groups via API - #31337
- Catch duplicate inserts in token table - #31460 #31794 #32041
- Fix overflowing public share names in the share panel - #31369
- Fix occ user:sync to sync quota from preferences after upgrade if backend provided no quota - #31360
- Fix for Redis dev editions - #31282
- Fix mail debug message recipient field - #31227
- Prevent infinite loop in case of error in "log" event handler - #31247
- Fix HTTP status code when uploading virus-infected files - #31260
- Add back robots.txt in the release - #31248
- Added option for user:sync to reenable formerly disabled users - #31124
- Ability to log extra JSON fields - #31121
- Trigger event when logging - #31121
- Added command to verify and fix checksums - #31008
- Introduce seen and single user sync command line features - #31025 #31032
- Added config setting to specify minimum characters for sharing autocomplete - #30994 #31067 #31160
- Added personal note field for link share email - #30486 #30571 #30813 #31057 #31201 #31212
- Add conditional Logging target logfile for shared_secret and users - #30443
- Add option to disable link share password enforcement for write-only shares - #30408 #30774 #30787
- Add Webdav-Location header in private link redirect - #30387 #30595
- Make syslog output configurable, introduce new default that includes the request id - #30346
- Added "uid" parameter to "validatePassword" events - #30334
- Added new API event for zip file download - #30067
- Added new API event for public link creation - #30067
- Added log entry when the "data-fingerprint" command was run - #30281
- Added "heic" and "heif" as image mime types for thumbnails - #30108
- Added new API events for commenting actions - #30142
- Added "register notifier" event for use with the notification emails feature - #30613
- Added group option to files:scan command - #30615
- Added warning if no files to process in occ files:transfer-ownership command - #30612
- Added user:modify command to core - #30652
- Added config switch to enable fallback to http scheme when creating fed shares - #30646 #31196
- Added repair step for orphaned sub-shares - #30695
- Added repair step to fix orphaned reshares - #31004
- Added Symfony events for configuration changes (config.php and appconfig) - #30788 #30937 #31107
- Added Symfony event to let apps resolve private links - #30911
- Added Symfony events for delete and create share - #31026
- Added Symfony events for updating share attributes (expiration, password, name) - #31120
- Added Symfony events for group membership events - #31003
- Added Symfony events for feature change in group admin - #31132
- Added config.php option to select apps to ignore missing signature file (mostly for themes) - #30891 #31066
- Added ability for full-page frontend-only apps in info.xml - #30918
- More user-friendly email address input and handling in link share dialog - #30945 #31142
- Set minimum php version to 5.6 in composer.json - #31100
- Bump PHP to 5.6.33 in composer - #30403
- Bump phpseclib/phpseclib from 2.0.3 to 2.0.10 - #30052 #30537
- Bump phpunit and symfony/translation to match master - #30410
- Bump guzzlehttp/guzzle from 5.3.1 to 5.3.2 - #30217
- Bump lukasreschke/id3parser from 0.0.1 to 0.0.3 - #30085
- Bump symfony to 3.4.5 - #30689
- Bump symfony/translation from 3.2.4 to 3.3.16 - #30380
- Bump latest symfony and sabre/vobject point versions - #30266
- Bump karma from 1.5.0 to 2.0.0 in /build - #30050
- Bump punic/punic from 1.6.5 to 3.1.0 - #30550
- Bump symfony to 3.4.6 and Sabre vobject to 4.1.5 - #30768
- Bump sabre/http from 4.2.3 to v4.2.4 - #30599
- Bump jakub-onderka/php-parallel-lint from 0.9.2 to 1.0.0 - #30626
- Bump behat/mink-extension from 2.3.0 to 2.3.1 - #30706
- Bump league/flysystem from 1.0.42 to 1.0.43 - #30704
- Update composer in stable10 with versions as at 2018-02-07 - #30390
- Renamed SMB logging config.php settings from "wnd" to "smb" - #30244
- Improved error messages in user:delete command - #30164
- Validate email address in mail settings section - #30315
- Only decrypt users who have already logged in with decrypt-all occ command - #30640
- Replace usage of "create_function" in PHP - #30714
- Provisioning API can now properly set default or zero quota - #30755
- User quota setting can be queried through provisioning API - #30850
- Removed private oc_current_user Javascript variable - #30486 #30556
- Remove app store config values from config.sample.php - #30422
- Remove documentation of the theme option in config.sample.php - #30350
- Remove unused config.sample.php parameters - #30933 #30812
- Remove "Unlimited" word from quota report in personal page - #31041
- Prevent background scan to scan homes of users who never logged in - #31189
- Properly align three button dialogs - #31147
- Many documentation improvements in config.sample.php - #31114 #31127 #31128 #31068 #31173 #31182
- Fix some documentation paths in config.sample.php - #30431
- Fix App Framework ApiContoller initialization to fix thumbnail access - #31104 #31183
- Check apache auth on login form - #31074
- Check basic auth credentials periodically after a timeout instead of … - #31076
- Email autocomplete in link share dialog will not return local/federated users any more, only contacts - #30998
- Fix settings page where elements are inline when they shouldn't - #30988
- Do not log errors when uploading forbidden file format - #30991
- Fix upload issue by replacing emittingCall with separate before and after events - #30986
- Fix Symfony event emittingCall by adding return - #31045
- Properly trigger file-related Symfony events when chunking - #31087
- Remove unsupported "enable for groups" field for theme apps - #30948
- Added OneNote 2016 user agent string to make it work with Webdav - #30965
- Refactored metadata sync code to unify behavior across all login methods - #30638
- Mask "marketplace.key" in config list as it is sensitive - #30917
- Polish totp middleware a little - #30849
- Set empty authtoken names to 'none' as empty is not allowed any more - #30908
- Fix CORS OPTIONS request for unauthenticated requests - #30912
- Treat any unknown app version as 0.0.1 - #30890
- Ignore multiple slashes in http path - #30854
- Initialize root folder service later to fix user backend registration order issue - #30810
- Remove implicit login in base.php to remove bogus "Login failed" logs - #30814
- Use storage specific move operation for object store - #30817
- Fix webUI display of group containing numeric username - #30811
- Fix calendar changes limit - #30816
- Properly use error exit code for unsupported PHP version - #30780
- Unbrand Personal security sessions message - #30754
- Propagate move exception messages to the frontend - #30791
- Fix chunk size comparison for big values on 32-bit systems - #30772
- Make error origin more distinguishable in some filesystem code paths - #30682
- Don't send emails when importing calendar/events - #30666
- Adding a system configuration for global CORS domains - #30906
- Better label for CORS in settings section - #30663
- Allow regular users to change their CORS domains - #30649
- Catch session unavailable exception - #30347 #30623
- Proper HTTP status code on login exception - #30639
- Fix file mtime issue on 32-bit systems - #30546
- Fixing logout for app password scenario - #30591
- Fix wording if you are not a member of any groups - #30558
- Fix for error when querying non present log_secret - #30470
- Properly create a session for a pure token based request, fixed oauth2 issues - #30542
- Free resources in preview providers - #30533
- Continue in case of rare error in files:scan repair command - #30494 #30618 #30959
- Make theming work when theme app is outside the ownCloud root - #30477
- Don't try decrypting federated shares in decrypt-all command - #30155
- Keep null in getMetaData in Checksum storage wrapper, fixes some files:scan scenarios - #30302
- Modals dialogs can now scroll, improves link share dialog UX - #30424
- Adjust link share wording and fix translations - #31036
- Fix failure of shares which are already moved with transfer ownership - #30161
- Return 403 instead of 503 to resume syncing of desktop client - #30353
- Guide users to also check spelling for typos in federated share id - #30355
- Fixed issue with number of hidden files not updating on renaming a file - #30359
- Fix deleted items auto expiration for users with no quota - #30163
- Fix validation for new encryption storage key location - #30357
- Fix some CSRF issues on Webdav endpoint by only checking for POST method - #30358
- Prevent share icon from shrinking with long texts - #31163
- Fixed regression where a user could not set own email address in the settings page - #30319
- Fix caldav and carddav syncing when dealing with lots of data - #30252
- Don't restrain width of icon-logo - #30282
- Check trashbin permissions before moving to trash, fixes deletion as guest user - #30240
- Handle no read access to skeleton - #30241
- Fix file name escaping in error messages in web UI related to file operations - #30193
- Proper error message when trying to add user to a group they are already member of in web UI - #30194
- Show new basename and extension while waiting for rename operation to finish in web UI - #30040
- Fix app author parsing in apps page - #30043
- Validate system path data used in findBinaryPath - #30061
- Fix deletion of group with special characters in web UI - #30111
- Fix missing preview in file upload conflict window - #30125
- Fix files endpoint bug when downloading vCard - #30149
- Properly filter link share email parameters - #30165
- Filter sender display name in mail notification handler - #31056
- Filter file name when sending internal mail - #31046
- Convert null to empty string for Oracle in file cache accessor - #30224
- Use LargeFileHelper to calculate log file size - fixes #30227 - #30234
- Fix various issues about null user errors - #30450
- Solve OAuth token expiry issue - #30481
- Fixed issues related to app passwords and account lock-outs - #30363
- Fix missing build dependency for L18N - #30265
- Add php-intl as hard requirement - #29539
- Optionally show server hostname in status.php - #29471
- Add link for logfiles docs in exception page and simplify text - #29674
- Link to trusted domains docs in error message - #29730
- Add indices on share table - #29883 #29592
- Add dispatcher event for "unshare from self" action - #29851
- Technology preview for PHP 7.2 support - #29878
- Added public hooks for file operations using Symfony Event Dispatcher - #29939
- Expose getAppPath() and getAppWebPath() on the AppManager service #30041 #30150
- Add warning in settings page when running in debug mode - #29936
- Switch Webdav URL in field in navigation panel to the new endpoint - #29766
- Require a minimum of 1 character for the application password name - #29831
- Only allow a single active theme app with no magic fallbacks to inactive app themes - #29854
- Config report now hides email address from email config - #29949
- Change "remote" to "federated" suffix in sharing autocomplete dialog. - #30046 #30171
- Removed old Dropbox storage backend, people should use the files_external_dropbox app instead - #29135
- Revoke tasks.crt - #29882
- Remove unused composer dependency on natxet/CssMin - #29930
- Fix Dropbox / GDrive oauth handshake handling - #30071
- Redisplay login page on CSRF error - #30035
- Do not reset display name to uid on sso login - #30038
- Do not automatically disable apps of certain types - #29870
- Fix provisioning API when dealing with group name "0" - #30004
- Tweak occ command help output - #29959
- Now using upsert instead of insertIfNotExists for file cache updates, fixes concurrency issues - #29934
- Only set CORS headers on Webdav endpoint when Origin header is specified - #29874
- Ignore broken/dead symlinks on filescan - #28959
- Improve performance by caching non-existing accounts - #29866
- Fix template location order by searching the enabled theme app first - #29867
- Actually log message instead of {$message} - #29844
- Improved performance on new DAV endpoint by skipping querying parent nodes - #29834
- Adjust error message about PHP compatibility to say PHP X.X like previous line. - #29828
- Raise more useful message when constructor are not resolvable - #29760
- Fix wording for versions expiration occ command - #29671
- Handle invalid or missing external storage backend to keep mount point visible - #29562
- Fix integrity check when owncloud is not installed - #29692
- Fix issues about unsharing with some scenarios after moving the share - #29716
- Allow group 0 to be created by provisioning API - #29734
- Do not reset quota if it was not provided - #29673
- Improve quota value validation - check size only if size key is set - #29743
- Code cleanup - #29799
- Added support for eml mimetype - #29204
- Added "occ dav:cleanup-chunks" command to clean up expired uploads - #29180
- Added "occ files:scan" repair mode to repair mismatch filecache paths - #29074 #29232
- Added occ command to change/recreate master-key - #29260 #29735
- Detailed mode for "occ security:routes" - #29095
- Webdav property to retrieve a private link to files or folders - #29041
- CORS support for public API routes - #28852 #29741 #29749
- More "files_sharing" capabilities entries - #29040
- Display server name in admin page, don't show in status.php - #28938
- Validate public link mail on the client side - #29042
- Expose XHR response in share dialog autocomplete callback for extensions - #29231
- Let apps provide icons for settings sections - #29358
- Added cancellable prehooks for logout operation - #29352
- Markdown support for app descriptions in apps settings panel - #29333
- Add option to allow user to share only with the groups they belong to - #29391
- Cacheable storage adapter for use by Flysystem based external storage backends - #29414
- Add user additional info field for share autocomplete - #29457
- Add dispatcher event for remote fed shares - #29482
- Adding mode of operations - either single-instance or clus… - #29492
- Added support for MariaDB 10.2.7+ - #29240
- Admins can now exclude files from integrity check in config.php - #29460
- Use X-Request-ID header as request id if provided by client, useful for logging - #29434
- Added authentication headers verification to validate the session - #29525
- Added IServiceLoader on server container to load app service classes from XML tags in info.xml - #29525
- Trigger events for federated shares - #29566
- Exclude mimetypelist.js from integrity check - #29048 #29316
- Refactor set and reset of capabilities - #29200
- All amazon locations support v4 now - v3 deprecated - #29153
- Modified time value of files is now 64 bits long - #28961
- User names must now be at least 3 characters long - #29237
- AccountMapper get by email is now case insensitive - #29341
- Remove deprecated federated share API warning as it needlessly pollutes logs - #29364
- Improve UI for public link sharing permissions for folders - #29413
- Replace notify user for local shares with button - #29463
- Log out current user after submitting form in password reset page - #29464
- Update minimum supported browser versions - #29507
- Admins can now change display name even when its modification is disallowed for regular users - #29442
- Remove AvatarPermissions repair step - #29202
- Remove unused FTP code - #29186
- Remove app store related code obsoleted by market app - #29249
- Remove a route to removed script - #29553
- Corrected namespace for OC\Memcache\ArrayCache which caused errors on some environments - #29219
- External storage Javascript code from apps is now loaded correctly (fixes Dropbox app and others) - #29225
- Use product name from theme - #29251
- Make sure the external storage folder name is editable when returning from OAuth authorization - #29253
- Fix duplicate external storage config that appear sometimes when returning from OAuth authorization - #29254
- Log exceptions in decrypt-all command - #29248
- SFTP key pair mode now works again - #29156
- Use correct class namespace for ownCloud ext storage - #28935
- Fix generated zip file to avoid errors with some zip tools - #29149
- Fix position of dialog boxes - #29133 #29467
- Move 64bit mtime migration from dav to core - #29121
- Allow 0 byte quota to be entered on UI - #29113
- Don't display warning about limited commands when running maintenance:install - #28968
- Handle no user session in isSharingDisabledForUser() - #28915
- Fix icon format for federated cloud sharing - #28972
- Fix for decrypting user specific keys - #29189
- Remove alternate keys storage during user delete - #29155
- Fix error logs due to deletion of keys - #28934
- Fix encryption panel to properly detect current mode after upgrade to ownCloud 10 - #29049
- Fix quota check when uploading to federated shares - #29325 #29424
- Fix issue when mounting another encrypted ownCloud - #29360
- AccountMapper get by email is now case insensitive - #29341
- Fix order of apps to be deterministic during install process - #29267
- Only initiate connection to federated share when necessary - #29314
- Allow group named "0" to be deleted - #29323
- Do not translate CORS header in settings page - #29313
- Disable background scan for home storage/cache - #29306
- Fixed double escaping in full page error messages - #29304
- Updated davclient.js which fixes issue whenever an app extends Array prototype - #29305
- Fix OCS apps API to correctly include attributes into generated XML - #29303
- Make enum type mapping work with migrations - #29268
- Handle invalid storage when getting storage root id - #29278
- Fix storing/retrieval for dav properties of non files - #29273
- Remove double quotes from boolean values in status.php output - #29271
- Tidy code in DAV related classes - #29272
- Fix the missing argument to DecryptAll - #29371
- Skip copying skeleton files if skeleton dir is not accessible - #29379
- Use chunked DB query when preloading directory content for DAV properties - #29416
- Fix failure when checking integrity signature for non-existing files - #29433
- Prevent uploading of part files through WebDav - #29432
- Only trigger "changeUser" event if account object really changed - #29429
- Only load app type once in app manager classes - #29428
- Use efficient startsWith implementation in server container - #29427
- Fix race condition in browser when uploading folder tree - #29435
- Disable nginx buffering for file downloads to avoid huge memory usage in some scenarios - #29403
- Fix many issues related to session removal - #28879
- Fix SMB to better detect when overwriting through rename - #29564
- Fix files scan repair in bulk warning - #29631
- Fix federated share import from public link - #29677
- Fix status.php to properly display product name - #29728
- Sort allowed storages checkbox list - #29746
10.0.3 - 2017-09-15
- It is now possible to upgrade from 8.2.11 directly to 10 - #28655 #28673
- Added extra check in case of missing home storage - #28504
- Added Shield and Workflow icons - #28588
- Enable chunking for big files in web UI when logged in - #28547
- Added emitting of hook "post_unshareFromSelf" to Share 2.0 - #28413
- Added occ user:inactive command to list inactive users - #28294
- Added internal setting for the periodic credentials validity check - #28298
- Added jquery events for external storage settings UI when using OAuth - #28210
- Added public IThemeService which allows apps like the template editor to interact with the current theme - #28647 #28926
- Added "passwordEnabled" field to hook data of link shares - #28827
- Add new option to disable sharing in every user-mounted external storages - #28706
- Added default user and group share permissions - #28903
- Added occ command to list routes - #28907
- Added mime types for m3u, m3u8, pls mappings to audio streams - #28885
- Transfer ownership now works with master key encryption - #28537 #28845
- Reenable medial search by default - #28064
- The LoginController now emits "failedLogin" hook signal after a failed login - #28631
- All columns that use the fileid have been changed to bigint (64-bits) - #28581
- Added search pattern for the occ app:list command - #28653
- Allow phpredis develop branch - #28717
- Default minimum desktop version in config.php is now 2.2.4 - #28540
- Reallow negative mtimes by default in storage implementations - #28697
- Removed "themes" folder - #28617 #28999
- Removed unused Windows checks - #28612
- Removed "appstoreenabled" from config.php - #28714
- Slash in filename when renaming is not allowed any more in the frontend (unintended "feature") - #28490
- Using old chunking protocol on new DAV endpoint is now disallowed - #28637
- Fix issue with folder sizes on 32-bit systems - #28654
- Fix null error in ActivityManager on some setups - #28420
- Load app code before running app specific migrations - #28391
- Prevent certificate manager to access FS too early, fixes 8.2 to 10 migration issue - #28668
- Clustering: Better support of read only config file and apps folder - #28594 #28601
- Only use IndexIgnore in htaccess if mod_autoindex.c is enabled/loaded - #28591
- Fix app enable of not existing app - #28317
- Keep redirect information when logging in with wrong password - #28511
- Use SwiftMailer antiflood plugin to reconnect after multiple emails sent - #28180
- Theme is now properly loaded when displaying full page error messages - #28622
- Adjusted warning for PHP 5.5 EOL - #28765
- Don't enable market app on upgrade from OC < 10 if "appstoreenabled" was false in config.php - #28757
- Use different CSS comment style for IE11 support - #28752
- Adjust default slogan - #28724
- Catch filecache inconsistencies instead of logging warnings - #28710
- Check for null when traversing app passwords table rows - #28894
- Improve market upgrade messages + new switch - #28871
- Make occ upgrade verbose by default - #28876
- Add more information to updatechecker config doc - #28867
- All columns that use the fileid have been changed to bigint (64-bits) - #28581
- Fix length of account search term column which broke installs on some DB setups - #28576
- Fix column lengths on migrations table to fix index - #28254
- Fixed some repeated duplicate key errors relate to oc_preferences table - #28486
- Add migration step to fix birthday calendars - #28338
- Added cache for new card uri-id mapping to fix db cluster execution - #28308
- Optimize upload - don't fetch info of non-existing file - #28704
- Optimize upload - don't check if file exists if already known - #28704
- Optimize upload - do not fetch metadata for part file during checksuming - #28633
- Optimize shares retrieval logic with complex scenarios - #28524
- Optimize query logger - #28220
- Remove initial scanning overhead to speed up federated shares with lots of entries - #28604
- Improve contact search performance - #28042
- Improved search performance for federated instance users - #28209
- Add database index on "oc_share.share_with" column - #28856
- Don't trigger hooks for every new dav chunk, only for final file - #28817
- Prevent creating file cache inconsistencies when moving a subtree in or out of a share - #28219
- Add check for empty result in storage memcache - #28548
- Fix error message when accessing of non-existing file on external storage - #28613
- Fixed OAuth frontend logic when connecting to external storage - #28496 #28400
- Fix quota handling on new Webdav endpoint (affects desktop client 2.2+) - #28261
- Fix mounting Webdav as drive in Windows 10 - #28243
- Fix rare error that happens when mounting invalid shares - #28342
- Handle BSD case for 32 bit filemtime and install warning - #28790
- Properly check target rename path in new dav endpoint - #28737
- Increment required only when encryption is enabled - #28880
- Make sure passed upload mtime is always an int - #28186
- Fix directory mime type in trashbin list - #28803
- Properly highlight files when opening private link - #28681
- Fix overlapping selectively in default fileslist - #28906
- Better timeout detection in web UI uploads + chunked uploads - #28896
- Fix getting drop target when dragging from file manager - #28882
- Improve file upload progress bar - #28861
- Creating link shares now doesn't forget "Allow editing" permission any more - #28065
- Fix "notify user" checkbox in share panel - #28237
- Proper message shown when accessing unreachable private links - #28600
- Fix exact search term match for LDAP in share autocomplete - #28851
- Add tooltip to public shares panel - #28781
- Validate share link password even if unchanged when updating share - #28713
- Fix DiscoveryManager error during upgrade by untangling federated share app dependencies - #28858
- Don't set email if invalid in user:add command - #28577
- Group admins can now properly edit members' email addresses - #28366
- Fixed "settings_ajax_changegroupname" typo in route name - #28746
- Use IProvidesEMailBackend to fix syncing with LDAP backend - #28736
- Make Backbone PROPPATCH work with options.wait mode - #28791 #28837
- Detect PROPPATCH failure by parsing multistatus in Backbone Webdav adapter - #28628
- Error messages from the server on upload are now displayed in the web UI instead of generic messages - #28635
- Properly set the status text in OCS API v2 calls - #28595
- Data was not properly set in case of OCS Result object - #28198
- Only reload file list when switching navigation sections - #28843
- Make new text file tooltip messages update properly - #28151
- Fix trashbin preview icons - #28158
- Allow user "0" as in comments - #28422
- Better description for occ files:scan command - #28839
- Better description for occ files:cleanup command - #28841
- Reworded upgrade message for admin with big instance - #28828
- Make lost password errors distinguishable - #28756
- Add height to menutoggler - #28723
- Remove apostrophe from full page file read error text - #28702
- Added missing "fatal" log level to occ log:manage level command - #28683
10.0.2 - 2017-06-30
- [major] Fix issue with database.xml migration being triggered twice on market app install - #27982
- [major] Apps formerly marked as shipped can now be uninstalled - #27985
- [major] Market now properly updates app version when using multiple apps paths - #28002
10.0.1 - 2017-06-23
- [major] Clear cached app info before installing app - #27953
- [major] Fix to allow admin login when using home object store mode - #27963
- [major] Skeleton files correct copied for shibboleth - #27935
- [major] Automatically enable market app when upgrading from OC < 10 - #27930
- [major] Fix issue where market would run app migrations twice in some scenarios - market/#76
- [major] Fetch search terms from user backend (ex: LDAP) for more extended user search ability - #27906
- [major] Added support for upload-only link shares - #27548
- [major] When enabling default encryption module the admin must now explicitly choose encryption type (master key vs user key) - #27512
- [major] Fix missing "publicuri" field when upgrading from 9.1.5 - #27754
- [major] Add options to the user:sync command to handle missing accounts - #27798
- [major] Maintenance mode now properly blocks syncing on new DAV endpoint - #27821
- [major] Copy button for multiple link share now copies the correct link - #27863
- [major] Fix upload issues with IE11 - #27875
- [major] Allow apps to register multiple settings panels - #27885
- [major] Account table doesn't sync from user backends that have no listing support - #27862
- [major] Add events for password validation - #27883
- [major] Add JS event after external storage mount config is loaded, for UI extensions - #27740
- [major] Fix theming of setup page by autoloading default_enable theme apps - #27819
- [major] Allow apps to register custom settings page sections in info.xml - #27634
- [major] Add admin sharing option to restrict autocomplete to membership groups but still allow typing full name if known - #27869
- [minor] Market app update now doesn't overwrite local git checkouts - #27973
- [minor] Delete "appstoreenabled" config value when enabling market - #27956
- [minor] Do not verify email address when entered by an admin on their personal page - #27921
- [minor] Fix default share permission issue in public API #27927
- [minor] Properly rethrow exception when error occurred when enabling an app - #27970
- [minor] Remove own shares from "Shared with you" section - #27972
- [minor] Fix updating to daily from 10.0.0 with web updater - updater/#422
- [minor] Fix updating to 10.0.1 with web updater - #27965
- [minor] Removed unused and non-working auto-login after setup - #27971
- [minor] Fix SMB storage to return false if stat failed - #27859
- [minor] Update swiftmailer - #27897
- [minor] Escape filter in search - #27900
- [minor] Fix file name output in error pages - #27808
- [minor] Support for alternative login buttons through config.php - #27607
- [minor] Example theme app renamed to "theme-example" by convention - #27632
- [minor] Fix missing translation of built-in section names - #27645
- [minor] Add ability to disable password reset form in config - #27676
- [minor] Add support for themed radio buttons - #27681
- [minor] Fix customjs extension handling for external storage apps - #27683
- [minor] Fix upgrade error with mod_fcgid and PHP 7 - #27553
- [minor] Remove sharing subtab when link sharing is disallowed - #27708
- [minor] Add privacy warning in link shares panel - #27844
- [minor] Fix files app name in navigation menu - #27843
- [minor] Fix mimetype table code to ignore folder extensions - #27668
- [minor] Automatically focus the password field in password reset page - #27889
- [minor] Trashbin restore warnings due to missing entries now logged as debug - #27826
- [minor] Remove obsolete repair step RemoveOldShares - #27737
- [minor] "local link" was renamed to "private link" - #27594
- [minor] Fix column sorting in public file list page - #27308
- Allows users to add the app to the Android homescreen: #25438
- Compatible with PHP 7.1: #25436
- MySQL 4-byte UTF8 support: (utf8mb4 for e.g. Emoticons) #17978
- Admin, personal pages and app management are now merged together into a single "Settings" entry: #26449
- Admin page displays the output of the server's status.php: #27238
- Also allow using email address for password recovery: #27168
- Ability to disable password reset: #27440
- Support Redis Cluster: #26407
- ownCloud log entry reorder: #27562
- ownCloud log file rules to split into separate files: #27443
- occ scanner optimized memory usage for large scans by using autocommits: owncloud/core/27527
- Third party apps are not disabled anymore when upgrading
- Ability to exclude folders from being processed, like snapshot folders: #19235
- Checksum is computed on the fly and verified (File integrity checking): #26655 / Technical Documentation
- Share Link can be copied to the clipboard #25418
- Display version sizes in versions panel #26511
- Transfer ownership now works for individual folders #27343
- Favorite star indicator now visible in the file lists related to sharing (ex: "Shared with you") #19753
- Ability to disable users in the users page (enable column first under cog icon) #27333
- When changing personal email, an email confirmation is now sent #7326
- When password is changed through any means, the user will now receive an email #27498
- Change user preferences through OCC #24770
- "Local" storage type can now be disabled by sysadmin in config.php #26653
- External storage backends must use core external storage API to work without "files_external" #18160
- FTP external storage moved to a separate app files_external_ftp
- CalDAV calendar public sharing #25351
- Support for multiple link shares: #27337
- When a recipient moves a file or folder out of a received share, the owner now receives a backup in their trashbin: #27042
- User avatars now visible in sharing autocomplete dropdown: #25976
- Users from all user backends are now stored in a central account table, improves performance by reducing recurring backend traffic: #23558
- Added event whenever a user is enabled or disabled: #23970
- Added first login event: #26206
- Added postLogout hook: #27048
- New column in oc_jobs table to store last duration: #27144
- Ability to specify offset and limit when doing a REPORT query on a files endpoint: #26507
- Avatar API via WebDAV owncloud#26872
- Improve return value support for two factor auth providers API - #26593
- Apps can now register Sabre plugins in info.xml: #26195
- REPORT method for files endpoint now allows searching for favorites: #26099
- Group backends can now return group display names (partial support, only used by sharing autocomplete): #26750