* Add: [logging] option to log response header on debug loglevel
* Add: logging of broken contact items during PUT
* Add: [server] max_resource_size option
* Add: support PROPFIND/max-resource-size by max_resource_size (capped to 80% of max_content_length)
* Extend: [auth] imap: add fallback support for LOGIN towards remote IMAP server (replaced in 3.5.0)
* Extend: [logging] with profiling log per reqest or regular per request method
* (see also https://github.com/Kozea/Radicale/wiki/Performance-Tuning)
* Extend: add selected XML query properties to request result log line for improved timing analysis incl. logwatch support
* (see also https://github.com/Kozea/Radicale/wiki/Server-Statistics)
* Improve: logging of broken calendar items during PUT
* Improve: remove unnecessary open+read for mtime+size cache
* Fix: improper detection of HTTP_X_FORWARDED_PORT on MOVE
* Adjust: [logging] header/content debug log indended by space to be skipped by logwatch
OBS-URL: https://build.opensuse.org/package/show/network/Radicale?expand=0&rev=77
- Update to 3.5.8
* Extend [auth]: re-factor & overhaul LDAP authentication, especially for Python's ldap module
* Fix: out-of-range timestamp on 32-bit systems
* Fix: format_ut problem on 32-bit systems
* Feature: extend logging with response size in bytes and flag served as plain or gzip
* Feature: [storage] strict_preconditions: new config option to enforce strict preconditions check on PUT in case item already exists [RFC6352#9.2]
* Doc: Telugu translation
OBS-URL: https://build.opensuse.org/package/show/network/Radicale?expand=0&rev=73
* Extend: [auth] dovecot: add support for version >= 2.4
* Fix: report/getetag with enabled expand
* Adjust: use of option [auth] ldap_ignore_attribute_create_modify_timestamp for support of Authentik LDAP server
OBS-URL: https://build.opensuse.org/package/show/network/Radicale?expand=0&rev=71
* Fix: broken start when UID does not exist (potential container startup case)
* Improve: user/group retrievement for running service and directories
* Extend/Improve: [auth] ldap: group membership lookup
* Add: [auth] remote_ip_source: set the remote IP source for auth algorithms
OBS-URL: https://build.opensuse.org/package/show/network/Radicale?expand=0&rev=68
(Thanks for David Walker for the suggestion in https://bugzilla.suse.com/show_bug.cgi?id=1248151)
- Update to 3.5.5
* Improve: [auth] ldap: do not read server info by bind to avoid needless network traffic
* Improve: add details about platform and effective user on startup
* Improve: display owner+permissions on directories on startup, extend error message in case of missing permissions
* Improve: add options [logging] trace_on_debug and trace_filter for supporting trace logging
* Improve: catch items having tzinfo only on dtstart or dtend set for whatever reason, overtake tzinfo from the other one
* Improve: conditional log level for base_prefix strip action depending on auth and web type
* Fix: [storage] broken support of 'folder_umask'
* Fix: logging ignores not retrievable get_native_id if not supported by OS
* Fix: report with enabled expand honors now provided filter proper
* Fix: catch case where getpwuid is not returning a username
* Fix: add support for query without comp-type
* Fix: expanded event with dates are missing VALUE=DATE
* Fix: storage hook path now added to DELETE, MKCOL, MKCALENDAR, MOVE, and PROPPATCH
* Feature: add hook for server-side e-mail notification
* Add: [hook] dryrun: option to disable real hook action for testing, add tests for email+rabbitmq
* Add: storage hook placeholder now supports "request" and "to_path" (MOVE only)
OBS-URL: https://build.opensuse.org/package/show/network/Radicale?expand=0&rev=66
* Adjust: [auth] ldap: use ldap_user_attr either first element of list or directly
* Fix: use value of property for time range filter
* Fix: return 204 instead of 201 in case PUT updates an item
* Add: [auth] ldap: option ldap_security (none, startls, tls) for additional support of STARTTLS, deprecate ldap_use_ssl
* Extend: log PYTHONPATH on startup if found in environment
OBS-URL: https://build.opensuse.org/package/show/network/Radicale?expand=0&rev=60
* Add: option [auth] ldap_ignore_attribute_create_modify_timestamp for support of Authentik LDAP server
* Extend: [storage] hook supports now placeholder for "cwd" and "path" (and catches unsupported placeholders)
* Extend: log and create base folders if not existing during startup
* Fix: auth/htpasswd related to detection and use of bcrypt
* Fix: location of lock file for in case of dedicated cache folder is activated
- Restored Radicale.rpmlintrc, still needed
OBS-URL: https://build.opensuse.org/package/show/network/Radicale?expand=0&rev=58
* Default type for authentication changed from "none" to "denyall" to prevent unexpected access after initial installation (secure-by-default)
* Reverse proxy base prefix stripping was adjusted/fixed, in case of issues check new option and your reverse proxy configuration
* InfCloud WebUI can be now be served "bundled", see https://github.com/Kozea/Radicale/wiki/Client-InfCloud
* Add: option [auth] type oauth2 by code migration from https://gitlab.mim-libre.fr/alphabet/radicale_oauth/-/blob/dev/oauth2/
* Add: option [auth] type pam by code migration from v1, add new option pam_serivce
* Add: option [server] script_name for reverse proxy base_prefix handling
* Add: on-the-fly link activation and default content adjustment in case of bundled InfCloud (tested with 0.13.1)
* Add: warning in case of started standalone and not listen on loopback interface but trusting external authentication
* Adjust: [auth] imap: use AUTHENTICATE PLAIN instead of LOGIN towards remote IMAP server
* Adjust: Change default [auth] type from "none" to "denyall" for secure-by-default
* Improve: relax mtime check on storage filesystem, change test file location to "collection-root" directory
* Improve: WebUI
* Improve: log client IP on SSL error and SSL protocol+cipher if successful
* Improve: catch htpasswd hash verification errors
* Improve: add support for more bcrypt algos on autodetection, extend logging for autodetection fallback to PLAIN in case of hash length is not matching
* Fix: catch OS errors on PUT MKCOL MKCALENDAR MOVE PROPPATCH (insufficient storage, access denied, internal server error)
* Test: skip bcrypt related tests if module is missing
* Fix: proper base_prefix stripping if running behind reverse proxy
* Cosmetics: extend list of used modules with their version on startup
* Review: Apache reverse proxy config example
- enable upstream tests
- remove Radicale.rpmlintrc, as that is not needed anymore
OBS-URL: https://build.opensuse.org/package/show/network/Radicale?expand=0&rev=56
* Add: option [auth] cache_logins/cache_successful_logins_expiry/cache_failed_logins for caching logins
* Improve: [auth] log used hash method and result on debug for htpasswd authentication
* Improve: [auth] htpasswd file now read and verified on start
* Add: option [auth] htpasswd_cache to automatic re-read triggered on change (mtime or size) instead reading on each request
* Improve: [auth] htpasswd: module 'bcrypt' is no longer mandatory in case digest method not used in file
* Improve: [auth] successful/failed login logs now type and whether result was taken from cache
* Improve: [auth] constant execution time for failed logins independent of external backend or by htpasswd used digest method
* Drop: support for Python 3.8
* Add: option [auth] ldap_user_attribute
* Add: option [auth] ldap_groups_attribute as a more flexible replacement of removed ldap_load_groups
- Update to 3.3.3
* Add: display mtime_ns precision of storage folder with condition warning if too less
* Improve: disable fsync during storage verification
* Improve: suppress duplicate log lines on startup
* Contrib: logwatch config and script
* Improve: log precondition result on PUT request
- Update to 3.3.2
* Fix: debug logging in rights/from_file
* Fix: ignore empty RRULESET in item
* Fix: also remove 'item' from cache on delete
* Fix: set PRODID on collection upload (instead of vobject is inserting default one)
* Fix: buggy cache file content creation on collection upload
* Add: option [storage] use_cache_subfolder_for_item for storing 'item' cache outside collection-root
* Add: option [storage] filesystem_cache_folder for defining location of cache outside collection-root
* Add: option [storage] use_cache_subfolder_for_history for storing 'history' cache outside collection-root
* Add: option [storage] use_cache_subfolder_for_synctoken for storing 'sync-token' cache outside collection-root
* Add: option [storage] folder_umask for configuration of umask (overwrite system-default)
* Add: option [storage] use_mtime_and_size_for_item_cache for changing cache lookup from SHA256 to mtime_ns + size
* Add: option [auth] uc_username for uppercase conversion (similar to existing lc_username)
OBS-URL: https://build.opensuse.org/package/show/network/Radicale?expand=0&rev=54
* Add: option [auth] type=dovecot
* Add: option [server] protocol + ciphersuite for optional restrictions on SSL socket
* Enhancement: log content in case of multiple main components error
* Enhancement: [storage] hook documentation, logging, error behavior (no longer throwing an exception)
* Fix: expand does not take timezones into account
* Fix: expand does not support overridden recurring events
* Fix: expand does not honor start and end times
- Update to 3.3.0
* Adjustment: option [auth] htpasswd_encryption change default from "md5" to "autodetect"
* Adjustment: switch from setup.py to pyproject.toml (but keep files for legacy packaging)
* Adjustment: 'rights' file is now read only during startup
* Add: option [auth] type=ldap with (group) rights management via LDAP/LDAPS
* Add: option [rights] permit_overwrite_collection (default=True) which can be also controlled per collection by rights 'O' or 'o'
* Enhancement: permit_delete_collection can be now controlled also per collection by rights 'D' or 'd'
* Fix: only expand VEVENT on REPORT request containing 'expand'
* Cleanup: Python 3.7 leftovers
OBS-URL: https://build.opensuse.org/package/show/network/Radicale?expand=0&rev=52
- Update to 3.2.3
* Add: support for Python 3.13
* Fix: Using icalendar's tzinfo on created datetime to fix issue with icalendar
* Fix: typos in code
* Enhancement: Added free-busy report
* Enhancement: Added 'max_freebusy_occurrences` setting to avoid potential DOS on reports
* Enhancement: remove unexpected control codes from uploaded items
* Enhancement: add 'strip_domain' setting for username handling
* Enhancement: add option to toggle debug log of rights rule with doesn't match
* Drop: remove unused requirement "typeguard"
* Improve: Refactored some date parsing code
OBS-URL: https://build.opensuse.org/package/show/network/Radicale?expand=0&rev=50
* Enhancement: add support for auth.type=denyall (will be default for security reasons in upcoming releases)
* Enhancement: display warning in case only default config is active
* Enhancement: display warning in case no user authentication is active
* Enhancement: add option to skip broken item to avoid triggering exception (default: enabled)
* Enhancement: add support for predefined collections for new users
* Enhancement: add options to enable several parts in debug log like backtrace, request_header, request_content, response_content (default: disabled)
* Enhancement: rights/from_file: display resulting permission of a match in debug log
* Enhancement: add Apache config file example (see contrib directory)
* Fix: "verify-collection" skips non-collection directories, logging improved
OBS-URL: https://build.opensuse.org/package/show/network/Radicale?expand=0&rev=48
- Update to 3.2.1
* Enhancement: add option for logging bad PUT request content
* Enhancement: extend logging with step where bad PUT request failed
* Fix: support for recurrence "full day"
* Fix: list of web_files related to HTML pages
* Test: update/adjustments for workflows (pytest>=7, typeguard<4.3)
OBS-URL: https://build.opensuse.org/package/show/network/Radicale?expand=0&rev=46
* Enhancement: add hook support for event changes+deletion hooks (initial support: "rabbitmq")
* Dependency: pika >= 1.1.0
* Enhancement: add support for webcal subscriptions
* Enhancement: major update of WebUI (design+features)
* Adjust: change default loglevel to "info"
* Enhancement: support "expand-property" on REPORT request
* Drop: support for Python 3.7 (EOSL, can't be tested anymore)
* Fix: allow quoted-printable encoding for vObjects
OBS-URL: https://build.opensuse.org/package/show/network/Radicale?expand=0&rev=44
* Add: support for Python 3.11 + 3.12
* Drop: support for Python 3.6
* Fix: MOVE in case listen on non-standard ports or behind reverse proxy
* Fix: stricter requirements of Python 3.11
* Fix: HTML pages
* Fix: Main Component is missing when only recurrence id exists
* Fix: passlib don't support bcrypt>=4.1
* Fix: web login now proper encodes passwords containing %XX (hexdigits)
* Enhancement: user-selectable log formats
* Enhancement: autodetect logging to systemd journal
* Enhancement: test code
* Enhancement: option for global permit to delete collection
* Enhancement: auth type 'htpasswd' supports now 'htpasswd_encryption' sha256/sha512 and "autodetect" for smooth transition
* Improve: Dockerfiles
* Improve: server socket listen code + address format in log
* Update: documentations + examples
* Dependency: limit typegard version < 3
* General: code cosmetics
OBS-URL: https://build.opensuse.org/package/show/network/Radicale?expand=0&rev=42
