Changelog:
Changes
Dont polute the log on DAV emaillogin (server#8045)
Don't perform CSRF check on OCS routes with Bearer auth (server#8099)
Use S3Client::upload instead of splitting single/multipart upload ourselves (server#8102)
Remove old perl script to update l10n files (server#8145)
Scss hardening (server#8156)
Do not try to get the jailed path if we can't find the id (server#8177)
Handle SSL certificate verifications for others than Let's Encrypt (server#8183)
Use a phan version instead of master (server#8195)
Repair step to clear frontend related caches (server#8197)
Keep previous exception when transforming to dav exception (server#8228)
Actually return stream from swift (server#8250)
Remove invalid link to documentation (server#8253)
Fix deleting folders when using s3 external storage (server#8261)
Link to NC13 dev manual (server#8264)
Better result handling of email search (server#8267)
Update CRL to revoke files_rightclick (server#8271)
Fix styling issues of guest pages #8155 (server#8286)
Remove jquery ui background image (server#8287)
Show open graph preview in WhatsApp (server#8309)
Make acceptance tests for comments more consistent with the others (server#8395)
Fix edit tag textbox size (server#8407)
Use TTF fonts for avatar generation (server#8440)
Use mb_* string methods to extract first character for generated avatars (server#8470)
Show hint in OCS API for user creation (server#8515)
Fix hiding and event propagation issues with the user management popover (server#8517)
Add some whitespace around change.svg icon (server#8518)
Avoid fruitless login attempts (server#8532)
Fix retrieval of group members with numerical uids from LDAP (server#8536)
Theming: handle not being in the serverroot (server#8554)
Ext storage error warning (server#8561)
Set autocomplete=new-password for mail share password (server#8577)
Fix upload button visible on read-only folders (server#8595)
Fixed app navigation for IE11 (server#8609)
Fix breadcrumbs width calculation (server#8610)
Fix comments (and systemtags) when involving users with numerical ids (server#8615)
Update commentstabview.js (server#8621)
Properly encapsulate require_once for app.php (server#8631)
AppData hardening (server#8636)
Use hash algo that's robust against collisions (server#8654)
Fixed date/time picker on IE11 (server#8663)
Use a more widely available method to test s3 settings (server#8667)
Use proper lanugage in langauge code (server#8668)
Display the proper language strings in setttings (server#8669)
Do not create empty userid when attribute does not have allowed chars (server#8673)
Remove too restrict check for background image/color (server#8675)
Fix example regex for user agent matching (server#8676)
Generate different UIDs for Birthday, Anniversary and Death event (server#8678)
Don't use double quotes in MySQL queries (server#8680)
Log exceptions that happen when writing the app store reply to storage (server#8683)
Set the correct active navigation entry (server#8685)
Fix activities for end2end encryption (server#8686)
Filter out the current user when searching for emails too (server#8687)
Fix check if theming defaults instance is available (server#8688)
Fix undefined index problem (server#8693)
Disable part files for object stores (server#8725)
Better handling of invisible elements in acceptance tests (server#8738)
Remove base url from global cache prefix (server#8745)
Check if the cached js file exists (server#8746)
Sharee email matches not limited (server#8749)
Fix integer overflow in ChunkingPlugin (server#8752)
Revert wording back to updates (server#8755)
Add acceptance tests for permissions on public shared folders (server#8758)
Also send file emails in ASAP mode (activity#249)
Ensure userids are strings (activity#252)
Null coalescing operator is PHP7+ (activity#254)
Update PDF.js to 1.9.426 (files_pdfviewer#55)
Enable full screen mode for PDF files (files_pdfviewer#59)
Fix ACE module files failing to load (files_texteditor#83)
Do not keep FileInfoModels returned by "getModelForFile" (files_texteditor#89)
Fix share drop down in gallery not properly shown (gallery#394)
Fix gallery button hidden in folders without create permission (gallery#402)
Fix controls position in gallery layout (gallery#405)
Removed old code already present thanks to the files app (gallery#406)
Create "file app" public share links if the slideshow is opened from ... (gallery#407)
Allow to check against haveibeenpwned.com password list (password_policy#61)
Changelog:
Changes
Over 1100 changes were merged in the server, with many hundreds more in existing or new apps. The main improvements include:
Collaboration features
Nextcloud Talk, a private videoconference software integrated with Nextcloud
real-time and asynchronous communication with push notifications, calls and chat web and mobile devices
Integration in business workflow with calendar invitations and calls directly from Nextcloud Files
Screen and note sharing with participant moderation capabilities
100% secure peer-to-peer, end-to-end encrypted calls, mediated by self-hosted server
auto-completion of user names in comments and notification to the mentioned user
support free/busy scheduling in native calendar applications like Thunderbird Lightning
show meeting invites in the calendar
End-to-End Encryption
can encrypt data on a per-folder level rather than all-or-nothing approach
does not require users to remember or exchange passwords
does not require re-uploading data upon sharing
features an optional off-line administrator recovery key
allows full audit logging
can be combined with our File Access Control feature so administrator can enforce aspects of End-to-end Encryption
protects from identity theft with our Cryptographic Identity Protection feature
This feature is in Tech Preview for Nextcloud 13 and does not yet implement sharing.
User Interface
new way of selecting files
easy way to quickly copy or move to a location
High DPI support
admin menu integrated in one list
no limitation to file uploads via the web interface
user quota in the side bar
social sharing (Twitter, G+, Facebook, Diaspora) now features a preview
improved theming
Performance
decreased page load times with up to 50% and faster search
80% faster LDAP and up to 10x faster external storage
Server-side Encryption performance largely improved
Other
Support for PHP 7.2
Support for PostgreSQL 10
Changelog:
Server
Over 50 fixes were merged in the server.
Improve text: 'you have now' -> 'you now have (server#6464)
Fix initializing paged search under some circumstances (server#6502)
LDAP: simplify returning the homePath (server#6509)
Fix sharer name overlap with filename (server#6524)
Allow to close sidebar for text files (server#6525)
Fix quota new endpoint 12 (server#6527)
Pass new value to triggerChange (server#6528)
Throw 101 when an empty group string is provided (server#6547)
Contacts menu privacy (server#6554)
Add color-border variable (server#6649)
Do not stop on scss compilation failure (server#6661)
Don't pass User object when uid string is expected (server#6674)
Navigate to the root directory when showing the main filelist (server#6689)
Fix LDAP User deletion (cleanup) (server#6699)
Update aws sdk + s3 improvements (server#6737)
Dont run invalid path repair step when upgrading from 11.0.5.2 and
later (server#6743)
Fix language when trying to change password (server#6751)
Fix postgresql tests (server#6792)
Also use configured 'cache_path' for new chunking (server#6814)
Set s3 part size to 500mb (server#6815)
Fix contacts menu for IE11 (server#6823)
Still trigger conflict resolution for existing entries when
the curre (server#6847)
Propagate multipart upload exception when aborting upload (server#6855)
Allow to migrate from 10.0.3.3 (server#6878)
Timespan check (server#6896)
Do not log WebDAV maintenance mode exception (server#6908)
Don't reset quota (server#6910)
Backport of translation string fixes (server#6935)
Fix class name in exception logger plugin (server#6942)
Allow quota of 0 again (server#6943)
Fix uninitialized variable $this->params (server#6944)
Don't add a LIKE condition when it's not needed (server#6945)
Fix undefined offset warning when using '/' as external storage
root (server#6946)
Fix page title not changed (server#6987)
Better readability for text on log in page which is directly on
backgrounds (server#7028)
Translate Grant Access (server#7040)
Use fopen directly when reading objects from s3 (server#7079)
Improve mimetype detection for object storages (server#7081)
Fix seeking on object storage (server#7082)
Hide spinner for initial install (server#7095)
Ensure uid for calendar objects is unique (server#7096)
Revert "Only allow colons in db host for IPv6 addresses (server#7102)
Theme flow redirection page (server#7114)
Fix icon for security settings (server#7116)
If for some reason the json can't be decoded it is not cached (server#7118)
Improve performance of UserMountCache with external storage
folders (server#7120)
{J,CS}SResourceLocator: account for symlinks in app path server#7170)
Fix s3 download and touch (server#7186)
Touch opertation on object storage, don't create the file cache entry
to early (server#7207)
Allow migration from upcoming 10.0.4 ownCloud release (server#7245)
CSSResourceLocator: handle SCSS in apps outside root (server#7257)
only replace permission popupmenu (server#7259)
Fix accesslist when a user has an ID only containting 0-9 (server#7262)
Update CRL due to files_frommail (server#7277)
Only in case of $currentAccess the array uses the id as index (server#7328)
Other
Add aws sdk (3rdparty#69)
Don't send emails to disabled users (activity#202)
Add an option to disable emails completly (activity#206)
Make sure the mountPoint property is public before using it
(files_accesscontrol#79)
Allow to playback m4v files (files_videoplayer#43)
Fix notifications order (notifications#93)
Changelog:
Nextcloud 12.0.3 delivers a lot of enhancements in various areas including:
A number of improvements to email notification templates
2FA enhancements
Smarter LDAP password handling
File Drop and upload-in-general updates
A performance improvement handling large files
Changelog:
Changes
Server
Over 100 fixes were merged in the server.
Update broken on PGSQL
Add brackets around concat statements so comparing the result works a…
Can't close PDF preview
Add a repair step to drop the account_terms table on oc migration
[stable12] Fix show password button for password change
[stable12] Enable postgres on drone again
fix overlay on show password
[stable12] Add new bundle
[stable12] proper logo height in emails for Outlook
scan.nextcloud.com causing exception in theming?
Long running php processes: LDAP timeout
X-XSS-Protection header invalid (NextCloud 12.0.0.29)
[stable12] Fix for mb strlen
[stable12] Fix error message on untrusted domain error page
[12] Fix renaming of non-renamble mounts
[12] Also repair storage id's when repairing invalid entries
[12] still remove the federated share even if we cant notify the remote
[stable12] Show warning if PHP 7.2 is used
[stable12] fix preview for public links
[stable12] Fix config.sample.php documentation
[stable12] Add recovery key on public upload
[stable12] Backport translation fixes
[stable12] Enable acceptance tests again on Drone 0.7
[stable12] Backport allow to theme emails
[stable 12] Add ellipsis for app titles in the app menu popover
[stable12] Fix emitting of legacy hook post_unshare
[stable12] Allow overwriting of IOS theming values
Update 3rdparty for "Fix infinite propfinds reporting files as direct…
[12] Fix invalid path repair step not getting all invalid entries
[stable12] Add test to check if new files are added to the root of the repository
[12] null users dont exist
[12] Fix scan permissions with nested permissions masks
[12] fix moving folders out of a cache jail
Moving shared folders doesn't work as expected
Write cert bundle to tmp file first
[12] properly block file upload to non-active filelist
nc beta 4 internal server error due to totp backup codes
[12] Fix propagating changes within jail wrapper
[12] dont die if we try to access the shared cache while setting up the shared storage
hint should not be clickable
Check if Circles is still here
[stable12] Allow dir-listing also when one child is blocked by access control
[stable12] Fix unselecting items on multi select dropdowns
[stable12] Fix remote share activity emails
[stable12] fix alignment of radio button and its label in encryption settings
Remote share emails doesn't show what's shared.
[stable12] Ldap password renewal fixes for NC12
[stable12] Use PNG icons for activity emails and ios client
[stable12] Use the share_folder config for remote shares
[stable12] Don't load navigation entries of restricted apps
[stable12] Don't try to generate logs for chunking paths
[stable12] Don't log passwords on dav exceptions
Use translated Hint instead of english error on password policy
[stable12] Add info text about updates
[stable12] Use base url for cache prefix and SCSS caching
[stable12] Enhance the logging if the part file can not be renamed
[stable12] Improved logging for object storage and trashbin
[stable12] Fix more icon in apps menu on bright backgrounds
[stable12] Use realpath to obtain the webroot
[stable12] Don't create activities for email and password change before login
[stable12] Allow to force a language and set it via the ocs api
[stable12] Create users in non default backends first
Progress bar message completely wrong with multi-GB file upload
[stable12] Fix example theme
[stable12] Don't try to save the setting when its not an admin
Update layout.user.php
Fix upload remaining time and uploadrate value
[stable12] App menu fixes
[stable12] Allow to find local users by their email address
[stable12] Treat PHP Errors on User session regenerate
[stable12] Ldap attempt reconnect stable12
[stable12] allow users to send PropPatch request when calendar is group-shared with them
[stable12] urldecode group principals in Cal- and CardDAV backend
[stable12] Use the guest.css for the maintenance page as well
[stable12] Fixed a crash caused by Local::copyFromStorage() not conforming to Co…
[stable12] Make file name input tooltip error text change
Translate OAuth2 in stable12
[stable12] Localize contacts menu search input placeholder
[stable12] Prevent sending second WWW-Authenticate header
[stable12] don't try to encrypt/decrypt the certificate bundle
[stable12] allow PropPatch requests to contact_birthdays
[stable12] Fix username and avatar for external users
[stable12] Fix tag label removed when share view is opened
[stable12] Fix unknown share token error message
[stable12] no themed icon when dragging folder
[stable12] Add quota to the files view
"Unspecified share exception" instead of proper 404 page on unknown public share tokens
[stable12] fix "add to your nextcloud" input field
[stable12] Revert "allow admin to disable groups on personal page"
Bearer auth backend causes problems with several dav clients
[stable12] filter missing groups in share provider
[stable12] use the email address configured in Nextcloud as sender instead of the users email address
[stable12] execute eval in global scope, addresses #5314
[stable12] l10n improvements from transifex
[stable12] Treat PHP Errors on User session regenerate
[stable12] Ldap attempt reconnect stable12
[stable12] allow users to send PropPatch request when calendar is group-shared with them
[stable12] urldecode group principals in Cal- and CardDAV backend
[stable12] Use the guest.css for the maintenance page as well
[stable12] Fixed a crash caused by Local::copyFromStorage() not conforming to Co…
[stable12] Make file name input tooltip error text change
Translate OAuth2 in stable12
[stable12] Localize contacts menu search input placeholder
[stable12] Prevent sending second WWW-Authenticate header
[stable12] don't try to encrypt/decrypt the certificate bundle
[stable12] allow PropPatch requests to contact_birthdays
[stable12] Fix username and avatar for external users
[stable12] Fix tag label removed when share view is opened
[stable12] Fix unknown share token error message
[stable12] no themed icon when dragging folder
[stable12] Add quota to the files view
"Unspecified share exception" instead of proper 404 page on unknown public share tokens
[stable12] fix "add to your nextcloud" input field
[stable12] Revert "allow admin to disable groups on personal page"
Bearer auth backend causes problems with several dav clients
[stable12] filter missing groups in share provider
[stable12] use the email address configured in Nextcloud as sender instead of the users email address
[stable12] execute eval in global scope, addresses #5314
[stable12] l10n improvements from transifex
Activity
[stable12] Fix mimetype icon of deleted folders
[stable12] Use PNG icons for emails and ios client
[stable12] Ignore paths from chunking
Notifications
Allow to expand the message on click...
text editor
[stable12] Use text editor endpoint for previews
[stable12] Use CRLF line ending by default for better compatibility
Gallery
Fix link when opening from files
[stable12] Do not use propably outdated core translations
Fix the translation source
[stable12] Fix logged error if file ID is not available
[stable12] Merge JS for public pages
PDF viewer
missing context dir
Fix z index for small screen sizes
Changelog:
Server
Use the correct principal for shared addressbooks (server/3608)
Fix saving backup codes by using a correct data uri (server/3652)
Update icewind/streams to 0.5.2 (server/32931)
Fix string comparison and return docs (server/3665)
Typecast shared mount's storage_id to int as documented + some refactor to avoid similar bugs (server/3658)
Use a proper date format for transfer ownership (server/3700)
DAV sharing permissions should not depend on the order (server/3722)
Add new user agent of windows 10 dav backend (server/37641)
Add back appstoreenabled config switch (server/37671)
Call right function after sudo mode (server/3820)
Dont allow empty wildcard search (server/3842)
Remove single quotes around search query like in user search (server/3849)
Fix mimetype detection on public uploads for the workflow engine (server/3765)
Fix branding and show Nextcloud (server/39691)
Fix reshare with user activity message (server/39812)
Create correct VCard and return correct error codes (server/4029)
Prevent migration from ownCloud 10 to Nextcloud 11 (server/34151)
Make sure transparency is an integer when saving a calendar (server/4167)
Make public links work with master key (server/42071)
Don't try to render the avatars if avatars are disabled (server/4214)
Reduce error message text (server/42281)
Don't list on public calendar endpoints (server/4229)
Fix upload of folders in Chrome (server/4154)
Make sure blob columns are correctly converted as parameters (server/4233)
Save the scope of an auth token in the session (server/4225)
Take share by mail into consideration if we calculate the access list (server/4242)
Also add the root of external storages to the file id list (server/4237)
Fix LDAP description (server/42382)
Remove the double password confirmation on changing cron (server/4236)
Fix scheduling plugin on legacy caldav endpoint (server/4235)
Directly fix invalid values of DTEND and DTSTART (server/4234)
Make JobList::next() lock free (server/4254)
Don't remove owner property for public calendars (server/4272)
Add capabilities for share by mail (server/42511)
Dont use the permissions mask while scanning (server/4278)
Add missing maintenance plugin to new DAV endpoint (server/4290)
Fix bug with shared_by for own calendars if shared (server/4301)
Translation string corrected > 1 user (server/4377)
Activity
Fix activities for "Files drop" on external storages (activity/118)
User_SAML
Bump to php-saml 2.10.5 (user_saml/1001)
Logreader
Small screen layout improvements (logreader/2bcd915969386ceb77c7f91dfd5fc19fd3212346
Fix log filtering (logreader/4095dfc62dcceb3c59a3f581baa5589737d0e6f3)
Greatly speedup log iteration (logreader/71a4c6849641f821e80d96674c57a69fe7a8aa9e)
Search more rows (logreader/b9d00b5599ac8a76862895266f1c23096391aad8)
Stop iterating if we dont have a valid file handle (logreader/a87a8e653ecae5efef6342e645b98f2878219c87)
Don't return a LogIterator on a broken handle (logreader/39069108f99d463b1cb8bc944f3ef24324b9f43d)
More robust log iteration (logreader/c0eb04d55bf1dee94ef523dae0e3b0e6afc272a6)
Use proper iso date format (logreader/13a31181a6d72d084797a71f49f2c5edee8c8dae)
Automatically try to fix some common escape errors from copy-pasted log entries (logreader/031db2a7f9b9f8cee42acf6eae7d993d31d4660a)
Fix stack trace parsing of incorrectly escaped logentries (logreader/538667770edfdd48374ef33e9c15498ed98ece60)
Highlight entries from the same request when clicking on an entry (logreader/2d1ccd0e4cca32220fcbe0b4d79d1cd23f0e73a5)
Fix copy paste info searchfield (logreader/0e91b2f46649a720feb7c3b6b8266b8657db5574)
Fix reset search after 0 results (logreader/50bec8ecf7edd81cfb96a35089283c0d879b41f3)
Allow searching for requestId and user (logreader/7f84e55bb4a1e4086ab0918a6bf58ad3885bbd91)
Allow searching in url (logreader/7833d97cf85fd351d2f7550d67d21bd0c2a815f4)
Fix infinite scroll (logreader/cbe874c6c068b9156ad8456edf31d112da40cbc9)
Dont show loading indicator if we already have entries (logreader/d26a08dc0540126177e8d20c3e243b44c5a399c4)
Gallery
Fix upload after core changes (gallery/b4ac4429841cfe2b7ea260dfb37fcde25580143c2)
Update JavaScript libraries (gallery/247)
Changelog:
Changes
Server
Use login name to fix password confirm with ldap users (server/2953)
Change the row-format before changing the collation (server/3063)
Generate correct path for owner and use the display name (server/3080)
Markdown support for app descriptions (server/3117)
Fix style in comment (server/3143)
Escape the name for the jquery selector (server/3138)
Define spreed calls (server/3115)
LDAP Backend OCS Api (server/3213)
Fix Sharing app description (server/3397)
Fix shared-as-busy events for owner (server/3363)
Use correct theming when returning the defaults (server/3399)
Filter out sensitive appconfig values (server/3400)
Add transifex config for sharebymail (server/3423)
Update the email in the accounts table as well (server/3411)
Don't log the password on confirmPassword when LDAP throws an exception (server/3414)
Make sure ownCloud 8.2 activities also can get displayed (server/3412)
Popovermenu backport (server/3286)
Set vendor during install (server/3426)
Make sure the file information is available when sending the email (server/3433)
Add profile data to provisioning api (server/3259)
Fix detection of the new iOS app (server/3431)
Add integration tests for legacy DAV endpoints (server/3445)
Make sure invalid images don't flood the log file (server/3440)
Fix printing backup code (server/3510)
Fix cookie name (nctoken instead of octoken) (server/3511)
LDAP's checkPassword should only catch when a user was not found (server/3493)
Return unknown free space from nullstorage (server/3508)
Fix for address book data lost when any user receiving a share is deleted (server/3499)
Rename database password toggle (server/3500)
Popovermenu files css fix (server/3494)
Add screensharing icon (server/3481)
Fix misleading wording: searching is affected, not user access (server/3560)
Backport of Fix Broken UUID Attribute Detection (server/3528)
Activity
Make sure integer like names are still strings (activity/103)
Fix activities for public uploads (activity/113)
Show the parent as target when the file was not renamed (activity/114)
Fix activities for "Files drop" on external storages (activity/118)
SAML & SSO
Setup account later (user_saml/79)
Serverinfo
Fix SQL syntax error on MariaDB 10.0.27 and 10.1.19 (serverinfo/77)
Don't throw an error when /proc/meminfo is not readable (serverinfo/76)
Survey_Client
Fix problem when checking size with dash in DB name (survey_client/50)
Changelog:
Version 11.0.1 January 16 2017
Changes
Server
Safari CSPv3 support is sub-par (server/2699)
Fix legacy DAV endpoint (server/2685)
Use unmasked permissions in shared scanner (server/2696)
Do not connect to database before creating it (server/2703)
Fix todo list activity filter (server/2746)
Changed anchor in settings page (server/2805)
Also check in cron for old php version (server/2809)
Add DAV repair step to fix calendar data (server/2807)
Only log as info when we can not create a new DB user (server/2750)
Fix wording for apps mgmt buttons (server/2751)
Use a form so firefox doesn't try to save the space as a password (server/2804)
Fix overwriting parameter (server/2825)
Applied security hardening in SwiftMailer (core/2882)
Don't set Content-Disposition header if one already exists (server/2949)
Don't link to the oC forum (server/2988)
Set redirect_url on 2FA challenge page (server/2981)
Dont write a certificate bundle if the shipped ca bundle is empty (server/2994)
Remove group restrictions when those are not allowed anymore (server/2980)
Activity
Update docs and samples (activity/92)
Make sure the preview URLs are absolute (activity/91)
User_SAML
Update SAML library (user_saml/64))
Make the JS work with sudo mode (user_saml/71))
Enabled strict mode (user_saml/75))
files_retention
Delete job if tag not found (files_retention/18)
Also included is a precautionary update for a recent SwiftMailer security issue.
ryoon
fhajny