Changes in 2.0.0
Summary of all Changes between 1.20.0 and 2.0.0
Warning
BREAKING CHANGE in ocis deployments
In order to make every ocis storage provider ID unique by default, we needed to use a random uuidv4 during ocis init. Existing installations need to set this value explicitly or ocis will terminate after the upgrade.
To upgrade from 2.0.0-rc.1 to 2.0.0-rc.2, 2.0.0 or later you need to setGATEWAY_STORAGE_USERS_MOUNT_ID
andSTORAGE_USERS_MOUNT_ID
to the same random uuidv4.You can also add
storage_users: mount_id: some-random-uuid gateway: storage_registry: storage_users_mount_id: some-random-uuid
to the ocis.yaml file which was created during initialisation
Changing the ID of the storage-users provider will change all
- WebDAV Urls
- FileIDs
- SpaceIDs
- Bookmarks
- and will make all existing shares invalid.
The Android, Web and iOS clients will continue to work without interruptions. The Desktop Client sync connections need to be deleted and recreated.
Sorry for the inconvenience 😅WORKAROUND - Not Recommended: You can avoid this by setting
GATEWAY_STORAGE_USERS_MOUNT_ID=1284d238-aa92-42ce-bdc4-0b0000009157
and
STORAGE_USERS_MOUNT_ID=1284d238-aa92-42ce-bdc4-0b0000009157
But this will cause problems later when two ocis instances want to federate.BREAKING CHANGE for users in owncloud web
owncloud/web#6648: breaks existing bookmarks - they won't resolve anymore.
BREAKING CHANGE for developers in owncloud web
owncloud/web#6648: the appDefaults composables from web-pkg now work with drive aliases, concatenated with relative item paths, instead of webdav paths. If you use the appDefaults composables in your application it's likely that your code needs to be adapted.
Changelog
- Bugfix - Fix configuration of mimetypes for the app registry: #4411
- Bugfix - Disable default expiration for public links: #4445
- Bugfix - Show help for some commands when unconfigured: #4405
- Bugfix - Translations on login page: #7550
- Bugfix - Autocreate IDP private key also if file exists but is empty: #4394
- Bugfix - Rename extensions to services (leftover occurences): #4407
- Bugfix - Fix DN parsing issues and sizelimit handling in libregraph/idm: #3631
- Bugfix - Lower IDP token lifespans: #5077
- Bugfix - Remove runtime kill and run commands: #3740
- Bugfix - Check permissions when deleting Space: #3709
- Bugfix - Do not reindex a space twice at the same time: #5001
- Bugfix - Disable federation capabilities: #4864
- Bugfix - Decomposedfs increase filelock duration factor: #5130
- Bugfix - Find spaces by their name: #5044
- Bugfix - Logging in on the wrong account when an email address is not unique: #4039
- Bugfix - Allow empty environment variables: #3892
- Bugfix - Remove unused transfer secret from app provider: #3798
- Bugfix - Fix authentication for autoprovisioned users: #4616
- Bugfix - Bring back the settings UI in Web: #4691
- Bugfix - Fix cache stat table config: #4732
- Bugfix - Adjust cache related configuration options: #5087
- Bugfix - Make IDP secrets configurable via environment variables: #3744
- Bugfix - CSP rules for silent token refresh in iframe: #4031
- Bugfix - Enable debug server by default: #3827
- Bugfix - Rework default role provisioning: #3900
- Bugfix - Fix search index getting out of sync: #3851
- Bugfix - Change the default value for PROXY_OIDC_INSECURE to false: #4601
- Bugfix - Fix sharing jsoncs3 driver options: #4593
- Bugfix - Inconsistency env var naming for LDAP filter configuration: #3890
- Bugfix - Fix LDAP insecure options: #3897
- Bugfix - Fix handling of invalid LDAP users and groups: #4274
- Bugfix - Fix logging levels: #4102
- Bugfix - Don't run auth-bearer service by default: #4692
- Bugfix - Fix notifications service settings: #4652
- Bugfix - Fix notifications Web UI url: #4998
- Bugfix - Fix
OCIS_RUN_SERVICES
: #4133 - Bugfix - Fix the OIDC provider cache: #4600
- Bugfix - Fix permissions in REPORT: #4520
- Bugfix - Set default name for public link via capabilities: #3834
- Bugfix - Remove legacy accounts proxy routes: #3831
- Bugfix - Fix unused config option
GRAPH_SPACES_INSECURE
: #55555 - Bugfix - Remove unused configuration options: #3973
- Bugfix - Remove static ocs user backend config: #4077
- Bugfix - Remove unused OCS storage configuration: #3955
- Bugfix - Fix the
ocis search
command: #3796 - Bugfix - Rename search env variable for the grpc server address: #3800
- Bugfix - Fix search in received shares: #4308
- Bugfix - Fix search report: #7557
- Bugfix - Render webdav permissions as string in search report: #4575
- Bugfix - Fix make sensitive config values in the proxy's debug server: #4086
- Bugfix - Fix the idm and settings extensions' admin user id configuration option: #3799
- Bugfix - Mail notifications for group shares: #4714
- Bugfix - Substring search for sharees: #547
- Bugfix - Fix configuration validation for extensions' server commands: #3911
- Bugfix - Fix startup error logging: #4093
- Bugfix - Disable cache for selected static web assets: #4809
- Bugfix - Fix multiple storage-users env variables: #3802
- Bugfix - Thumbnails for
/dav/xxx?preview=1
requests: #3567 - Bugfix - Fix unfindable entities from shares/publicshares: #4651
- Bugfix - Fix unrestricted quota on the graphAPI: #4363
- Bugfix - Fix user autoprovisioning: #3893
- Bugfix - Fix version info: #3953
- Bugfix - Fix version number in status page: #3788
- Bugfix - Fix CORS in frontend service: #4948
- Bugfix - Graph service now forwards trace context: #4582
- Bugfix - Fix the webdav URL of drive roots: #3706
- Bugfix - Idp: Check if CA certificate if present: #3623
- Bugfix - Fix graph endpoint: #3925
- Bugfix - Initial role assingment with external IDM: #5045
- Bugfix - Escape DN attribute value: #4117
- Bugfix - Make IDP only wait for certs when using LDAP: #3965
- Bugfix - Make ocdav service behave properly: #3957
- Bugfix - Make storage users mount ids unique by default: #5091
- Bugfix - Return proper errors when ocs/cloud/users is using the cs3 backend: #3483
- Bugfix - Polish search: #4094
- Bugfix - Fix the shareroot path in REPORT responses: #4859
- Bugfix - Remove the storage-users event configuration: #4825
- Bugfix - Trigger a rescan of spaces in the search index when items have changed: #4777
- Bugfix - Save Katherine: #3823
- Bugfix - Fix permission check in settings service: #4890
- Bugfix - Fix Thumbnails for IDs without a trailing path: #3791
- Bugfix - Space Creators can hand over spaces: #4244
- Bugfix - Make tokeninfo endpoint unprotected: #4715
- Bugfix - Update reva to version 2.12.0: #5092
- Bugfix - URL encode the webdav url in the graph API: #3597
- Bugfix - Store user passwords hashed in idm: #3778
- Bugfix - Fix wopi access to public shares: #4631
- Change - Update ocis packages and imports to V2: #3678
- Change - Build service frontends with pnpm instead of yarn: #4878
- Change - Load configuration files just from one directory: #3587
- Change - Reduce permissions on docker image predeclared volumes: #3641
- Change - Introduce
ocis init
and remove all default secrets: #3551 - Change - Rename "uploads purge" command to "uploads clean": #4403
- Change - Enable privatelinks by default: #4599
- Change - The
glauth
andaccounts
services are removed: #3685 - Change - Reduce drives in graph /me/drives API: #3629
- Change - Switched default configuration to use libregraph/idm: #3331
- Change - Rename MetadataUserID: #3671
- Change - Use new space ID util functions: #3648
- Change - Prevent access to disabled space: #3779
- Change - Rename serviceUser to systemUser: #3673
- Change - Use the spaceID on the cs3 resource: #4748
- Change - Split MachineAuth from SystemUser: #3672
- Enhancement - Add capability for alias links: #3983
- Enhancement - Add curl to the oCIS OCI image: #4751
- Enhancement - Add deprecation annotation: #3917
- Enhancement - Add drives field to users endpoint: #4072
- Enhancement - Add Email templating: #4564
- Enhancement - Add FRONTEND_ENABLE_RESHARING env variable: #4023
- Enhancement - We added e-mail subject templating: #4799
- Enhancement - Add number of total matches to the search result: #4189
- Enhancement - Add tracing to search: #5113
- Enhancement - Add webURL to space root: #4588
- Enhancement - Align service naming: #3606
- Enhancement - Add acting user to the audit log: #3753
- Enhancement - Configurable max lock cycles: #4965
- Enhancement - Allow to configuring the reva cache store: #4627
- Enhancement - Add audit events for created containers: #3941
- Enhancement - Add support for REPORT requests to /dav/spaces URLs: #4661
- Enhancement - Don't setup demo role assignments on default: #3661
- Enhancement - Introduce "delete-all-spaces" permission: #4196
- Enhancement - Deny access to resources: #4903
- Enhancement - Improve validation of OIDC access tokens: #3841
- Enhancement - Add /app/open-with-web endpoint: #4376
- Enhancement - Add previewFileMimeTypes to web default config: #4414
- Enhancement - Added language option to the app provider: #4399
- Enhancement - Improve error log for "could not get user by claim" error: #4227
- Enhancement - Improve login screen design: #4500
- Enhancement - Add configuration options for mail authentication and encryption: #4443
- Enhancement - Introduce service registry cache: #3833
- Enhancement - Reintroduce user autoprovisioning in proxy: #3860
- Enhancement - Allow to configure applications in Web: #4578
- Enhancement - Added command to reset administrator password: #4084
- Enhancement - Disable the color logging in docker compose examples: #871
- Enhancement - Allow providing list of services NOT to start: #4254
- Enhancement - Introduce insecure flag for smtp email notifications: #4279
- Enhancement - Optional events in graph service: #55555
- Enhancement - Fix behavior for foobar (in present tense): #4346
- Enhancement - Add the "hidden" state to the search index: #5018
- Enhancement - Restrict admins from self-removal: #3713
- Enhancement - OCS get share now also handle received shares: #4322
- Enhancement - Add config option to provide TLS certificate: #3818
- Enhancement - Add descriptions for graph-explorer config: #3759
- Enhancement - Add /me/changePassword endpoint to GraphAPI: #3063
- Enhancement - Allow to setup TLS for grpc services: #4798
- Enhancement - Generate signing key and encryption secret: #3909
- Enhancement - Update IdP UI: #3493
- Enhancement - Logging improvements: #4815
- Enhancement - Wrap metadata storage with dedicated reva gateway: #3602
- Enhancement - New migrate command for migrating shares and public shares: #3987
- Enhancement - Default to tls 1.2: #4969
- Enhancement - Add missing unprotected paths: #4454
- Enhancement - Secure the nats connection with TLS: #4781
- Enhancement - Product field in OCS version: #2918
- Enhancement - Automatically orientate photos when generating thumbnails: #4477
- Enhancement - Refactor extensions to services: #3980
- Enhancement - Refactor the proxy service: #4401
- Enhancement - Remove windows from ci & release makefile: #5026
- Enhancement - Rename AUTH_BASIC_AUTH_PROVIDER envvar: #4966
- Enhancement - Report parent id: #4757
- Enhancement - Allow resharing: #3904
- Enhancement - Rewrite of the request authentication middleware: #4374
- Enhancement - Add initial version of the search extensions: #3635
- Enhancement - Prohibit users from setting or listing other user's values: #4897
- Enhancement - Add capability for public link single file edit: #6787
- Enhancement - Added
share_jail
andprojects
feature flags in spaces capability: #3626 - Enhancement - Use storageID when requesting special items: #4356
- Enhancement - Add description tags to the thumbnails config structs: #3752
- Enhancement - Make thumbnails service log less noisy: #3959
- Enhancement - Add thumbnails support for tiff and bmp files: #4634
- Enhancement - Update linkshare capabilities: #3579
- Enhancement - Update reva: #3944
- Enhancement - Update reva to version 2.7.2: #4115
- Enhancement - Update reva to v2.7.4: #4294
- Enhancement - Update reva to v2.8.0: #4444
- Enhancement - Update reva to version 2.4.1: #3746
- Enhancement - Update reva to version 2.5.1: #3932
- Enhancement - Update Reva to version 2.10.0: #4522
- Enhancement - Update reva to version 2.11.0: #4588
- Enhancement - Update reva to v2.3.1: #3552
- Enhancement - Update ownCloud Web to v5.5.0-rc.8: #6854
- Enhancement - Update ownCloud Web to v5.5.0-rc.9: #6854
- Enhancement - Update ownCloud Web to v5.5.0-rc.6: #6854
- Enhancement - Update ownCloud Web to v5.7.0-rc.1: #4005
- Enhancement - Update ownCloud Web to v6.0.0: #5153
- Enhancement - Update ownCloud Web to v5.7.0-rc.4: #4140
- Enhancement - Update ownCloud Web to v5.7.0-rc.8: #4314
- Enhancement - Update ownCloud Web to v5.7.0-rc.10: #4439
- Enhancement - Update ownCloud Web to v5.7.0: #4508
- Enhancement - Expand personal drive on the graph user: #4357
- Enhancement - Validate space names: #4955
- Enhancement - Add descriptions to webdav configuration: #3755
- Enhancement - Search service at the old webdav endpoint: #4118
- Enhancement - Make it possible to configure a WOPI folderurl: #4716