pool/Radicale
SHA256
17
0
Fork 1
Code Issues Pull Requests Activity

Commit Graph

  • ea86ff3f9c Accepting request 1324406 from network factory Dominique Leuenberger 2025-12-26 13:37:31 +00:00
  • 3a900007f9 - Update to 3.5.10 * Add: [logging] option to log response header on debug loglevel * Add: logging of broken contact items during PUT * Add: [server] max_resource_size option * Add: support PROPFIND/max-resource-size by max_resource_size (capped to 80% of max_content_length) * Extend: [auth] imap: add fallback support for LOGIN towards remote IMAP server (replaced in 3.5.0) * Extend: [logging] with profiling log per reqest or regular per request method * (see also https://github.com/Kozea/Radicale/wiki/Performance-Tuning) * Extend: add selected XML query properties to request result log line for improved timing analysis incl. logwatch support * (see also https://github.com/Kozea/Radicale/wiki/Server-Statistics) * Improve: logging of broken calendar items during PUT * Improve: remove unnecessary open+read for mtime+size cache * Fix: improper detection of HTTP_X_FORWARDED_PORT on MOVE * Adjust: [logging] header/content debug log indended by space to be skipped by logwatch Ákos Szőts 2025-12-18 19:34:02 +00:00
  • f1d0ec99db Accepting request 1321525 from network Ana Guerrero 2025-12-09 11:48:20 +00:00
  • 1f0772c49c - Update to 3.5.9 * Extend: [auth] add support for type http_remote_user * Extend: logging of invalid sync-token with user, path, remote host and useragent * Fix: typo related to collection delete hook (can cause OOM error) Ákos Szőts 2025-12-01 08:42:24 +00:00
  • 0cf0c5098d Accepting request 1318071 from network Ana Guerrero 2025-11-17 11:18:51 +00:00
  • 979eb04578 - Enable Argon2 support for testing and as a recommendation - Update to 3.5.8 * Extend [auth]: re-factor & overhaul LDAP authentication, especially for Python's ldap module * Fix: out-of-range timestamp on 32-bit systems * Fix: format_ut problem on 32-bit systems * Feature: extend logging with response size in bytes and flag served as plain or gzip * Feature: [storage] strict_preconditions: new config option to enforce strict preconditions check on PUT in case item already exists [RFC6352#9.2] * Doc: Telugu translation Ákos Szőts 2025-11-09 11:49:17 +00:00
  • 4429e2a463 Accepting request 1309057 from network Dominique Leuenberger 2025-10-05 15:51:47 +00:00
  • 8852a7efd8 - Update to 3.5.7 * Extend: [auth] dovecot: add support for version >= 2.4 * Fix: report/getetag with enabled expand * Adjust: use of option [auth] ldap_ignore_attribute_create_modify_timestamp for support of Authentik LDAP server Ákos Szőts 2025-09-28 09:15:59 +00:00
  • 848497b83b Accepting request 1306980 from network Ana Guerrero 2025-09-25 16:45:09 +00:00
  • 595fa26a76 - Use the provided "rights" example file as the base config file (instead of an empty one) Ákos Szőts 2025-09-17 15:36:28 +00:00
  • 40dc2ef816 - Update to 3.5.6 * Fix: broken start when UID does not exist (potential container startup case) * Improve: user/group retrievement for running service and directories * Extend/Improve: [auth] ldap: group membership lookup * Add: [auth] remote_ip_source: set the remote IP source for auth algorithms Ákos Szőts 2025-09-17 15:08:02 +00:00
  • 0e7a51aa4a Accepting request 1301918 from network Ana Guerrero 2025-08-29 16:37:36 +00:00
  • 2bbbe5d100 - Set "radicale" as the syslog identifier (replacing the generic "python3") when started via systemd (Thanks for David Walker for the suggestion in https://bugzilla.suse.com/show_bug.cgi?id=1248151) - Update to 3.5.5 * Improve: [auth] ldap: do not read server info by bind to avoid needless network traffic * Improve: add details about platform and effective user on startup * Improve: display owner+permissions on directories on startup, extend error message in case of missing permissions * Improve: add options [logging] trace_on_debug and trace_filter for supporting trace logging * Improve: catch items having tzinfo only on dtstart or dtend set for whatever reason, overtake tzinfo from the other one * Improve: conditional log level for base_prefix strip action depending on auth and web type * Fix: [storage] broken support of 'folder_umask' * Fix: logging ignores not retrievable get_native_id if not supported by OS * Fix: report with enabled expand honors now provided filter proper * Fix: catch case where getpwuid is not returning a username * Fix: add support for query without comp-type * Fix: expanded event with dates are missing VALUE=DATE * Fix: storage hook path now added to DELETE, MKCOL, MKCALENDAR, MOVE, and PROPPATCH * Feature: add hook for server-side e-mail notification * Add: [hook] dryrun: option to disable real hook action for testing, add tests for email+rabbitmq * Add: storage hook placeholder now supports "request" and "to_path" (MOVE only) Ákos Szőts 2025-08-22 10:27:53 +00:00
  • 3c3e6f0428 Accepting request 1282912 from network Ana Guerrero 2025-06-05 18:33:58 +00:00
  • 3a2fa7019b Accepting request 1280765 from network Dominique Leuenberger 2025-05-30 12:33:03 +00:00
  • 25e3ebeedf - Update to 3.5.4 * item filter enhanced for 3rd level supporting VALARM and honoring TRIGGER (offset or absolute) * add Caddy config file example (see contrib directory) Ákos Szőts 2025-05-28 20:06:34 +00:00
  • 4490c525de - Update to 3.5.3 * Add: [auth] htpasswd: support for Argon2 hashes * Add: [auth] urldecode_username: optional decode provided username (e.g. encoded email address) * Improve: catch error on calendar collection upload and display problematic item content on debug level Ákos Szőts 2025-05-21 06:43:33 +00:00
  • 676fa7776a Accepting request 1275415 from network Dominique Leuenberger 2025-05-08 16:23:05 +00:00
  • 745165732a - Update to 3.5.2 * Adjust: [auth] ldap: use ldap_user_attr either first element of list or directly * Fix: use value of property for time range filter * Fix: return 204 instead of 201 in case PUT updates an item * Add: [auth] ldap: option ldap_security (none, startls, tls) for additional support of STARTTLS, deprecate ldap_use_ssl * Extend: log PYTHONPATH on startup if found in environment Ákos Szőts 2025-05-01 06:33:33 +00:00
  • 66a2fae15c Accepting request 1272063 from network Ana Guerrero 2025-04-23 13:19:01 +00:00
  • 9b6067ba3e - Update to 3.5.1 * Add: option [auth] ldap_ignore_attribute_create_modify_timestamp for support of Authentik LDAP server * Extend: [storage] hook supports now placeholder for "cwd" and "path" (and catches unsupported placeholders) * Extend: log and create base folders if not existing during startup * Fix: auth/htpasswd related to detection and use of bcrypt * Fix: location of lock file for in case of dedicated cache folder is activated - Restored Radicale.rpmlintrc, still needed Ákos Szőts 2025-04-16 06:02:11 +00:00
  • 496da8aa5c Accepting request 1266772 from network Ana Guerrero 2025-04-03 14:50:22 +00:00
  • cc9a5d734a - update to 3.5.0: * Default type for authentication changed from "none" to "denyall" to prevent unexpected access after initial installation (secure-by-default) * Reverse proxy base prefix stripping was adjusted/fixed, in case of issues check new option and your reverse proxy configuration * InfCloud WebUI can be now be served "bundled", see https://github.com/Kozea/Radicale/wiki/Client-InfCloud * Add: option [auth] type oauth2 by code migration from https://gitlab.mim-libre.fr/alphabet/radicale_oauth/-/blob/dev/oauth2/ * Add: option [auth] type pam by code migration from v1, add new option pam_serivce * Add: option [server] script_name for reverse proxy base_prefix handling * Add: on-the-fly link activation and default content adjustment in case of bundled InfCloud (tested with 0.13.1) * Add: warning in case of started standalone and not listen on loopback interface but trusting external authentication * Adjust: [auth] imap: use AUTHENTICATE PLAIN instead of LOGIN towards remote IMAP server * Adjust: Change default [auth] type from "none" to "denyall" for secure-by-default * Improve: relax mtime check on storage filesystem, change test file location to "collection-root" directory * Improve: WebUI * Improve: log client IP on SSL error and SSL protocol+cipher if successful * Improve: catch htpasswd hash verification errors * Improve: add support for more bcrypt algos on autodetection, extend logging for autodetection fallback to PLAIN in case of hash length is not matching * Fix: catch OS errors on PUT MKCOL MKCALENDAR MOVE PROPPATCH (insufficient storage, access denied, internal server error) * Test: skip bcrypt related tests if module is missing * Fix: proper base_prefix stripping if running behind reverse proxy * Cosmetics: extend list of used modules with their version on startup * Review: Apache reverse proxy config example - enable upstream tests - remove Radicale.rpmlintrc, as that is not needed anymore Ákos Szőts 2025-04-03 06:59:22 +00:00
  • 2342b69535 Accepting request 1239122 from network Ana Guerrero 2025-01-21 20:10:29 +00:00
  • 90c4054168 - Update to 3.4.0 * Add: option [auth] cache_logins/cache_successful_logins_expiry/cache_failed_logins for caching logins * Improve: [auth] log used hash method and result on debug for htpasswd authentication * Improve: [auth] htpasswd file now read and verified on start * Add: option [auth] htpasswd_cache to automatic re-read triggered on change (mtime or size) instead reading on each request * Improve: [auth] htpasswd: module 'bcrypt' is no longer mandatory in case digest method not used in file * Improve: [auth] successful/failed login logs now type and whether result was taken from cache * Improve: [auth] constant execution time for failed logins independent of external backend or by htpasswd used digest method * Drop: support for Python 3.8 * Add: option [auth] ldap_user_attribute * Add: option [auth] ldap_groups_attribute as a more flexible replacement of removed ldap_load_groups - Update to 3.3.3 * Add: display mtime_ns precision of storage folder with condition warning if too less * Improve: disable fsync during storage verification * Improve: suppress duplicate log lines on startup * Contrib: logwatch config and script * Improve: log precondition result on PUT request - Update to 3.3.2 * Fix: debug logging in rights/from_file * Fix: ignore empty RRULESET in item * Fix: also remove 'item' from cache on delete * Fix: set PRODID on collection upload (instead of vobject is inserting default one) * Fix: buggy cache file content creation on collection upload * Add: option [storage] use_cache_subfolder_for_item for storing 'item' cache outside collection-root * Add: option [storage] filesystem_cache_folder for defining location of cache outside collection-root * Add: option [storage] use_cache_subfolder_for_history for storing 'history' cache outside collection-root * Add: option [storage] use_cache_subfolder_for_synctoken for storing 'sync-token' cache outside collection-root * Add: option [storage] folder_umask for configuration of umask (overwrite system-default) * Add: option [storage] use_mtime_and_size_for_item_cache for changing cache lookup from SHA256 to mtime_ns + size * Add: option [auth] uc_username for uppercase conversion (similar to existing lc_username) Ákos Szőts 2025-01-13 21:19:20 +00:00
  • ac3851e4a8 Accepting request 1228342 from network Ana Guerrero 2024-12-05 16:09:00 +00:00
  • ff26afe9e8 - Update to 3.3.1 * Add: option [auth] type=dovecot * Add: option [server] protocol + ciphersuite for optional restrictions on SSL socket * Enhancement: log content in case of multiple main components error * Enhancement: [storage] hook documentation, logging, error behavior (no longer throwing an exception) * Fix: expand does not take timezones into account * Fix: expand does not support overridden recurring events * Fix: expand does not honor start and end times - Update to 3.3.0 * Adjustment: option [auth] htpasswd_encryption change default from "md5" to "autodetect" * Adjustment: switch from setup.py to pyproject.toml (but keep files for legacy packaging) * Adjustment: 'rights' file is now read only during startup * Add: option [auth] type=ldap with (group) rights management via LDAP/LDAPS * Add: option [rights] permit_overwrite_collection (default=True) which can be also controlled per collection by rights 'O' or 'o' * Enhancement: permit_delete_collection can be now controlled also per collection by rights 'D' or 'd' * Fix: only expand VEVENT on REPORT request containing 'expand' * Cleanup: Python 3.7 leftovers Ákos Szőts 2024-11-27 15:22:31 +00:00
  • 3eadaf2bdb Accepting request 1199117 from network leap-16.1 leap-16.0 Ana Guerrero 2024-09-06 15:18:53 +00:00
  • 437352e10b - Cleaned up unnecessary BuildRequires - Update to 3.2.3 * Add: support for Python 3.13 * Fix: Using icalendar's tzinfo on created datetime to fix issue with icalendar * Fix: typos in code * Enhancement: Added free-busy report * Enhancement: Added 'max_freebusy_occurrences` setting to avoid potential DOS on reports * Enhancement: remove unexpected control codes from uploaded items * Enhancement: add 'strip_domain' setting for username handling * Enhancement: add option to toggle debug log of rights rule with doesn't match * Drop: remove unused requirement "typeguard" * Improve: Refactored some date parsing code Ákos Szőts 2024-08-30 05:08:34 +00:00
  • 6e86aecd58 Accepting request 1183250 from network Ana Guerrero 2024-06-27 14:00:31 +00:00
  • 4afd2f977a - Update to 3.2.2 * Enhancement: add support for auth.type=denyall (will be default for security reasons in upcoming releases) * Enhancement: display warning in case only default config is active * Enhancement: display warning in case no user authentication is active * Enhancement: add option to skip broken item to avoid triggering exception (default: enabled) * Enhancement: add support for predefined collections for new users * Enhancement: add options to enable several parts in debug log like backtrace, request_header, request_content, response_content (default: disabled) * Enhancement: rights/from_file: display resulting permission of a match in debug log * Enhancement: add Apache config file example (see contrib directory) * Fix: "verify-collection" skips non-collection directories, logging improved Ákos Szőts 2024-06-18 19:16:08 +00:00
  • 0eff9c65ac Accepting request 1180843 from network Ana Guerrero 2024-06-14 17:02:45 +00:00
  • e2d2b58888 - Filtered out false positive rpmlint error message - Update to 3.2.1 * Enhancement: add option for logging bad PUT request content * Enhancement: extend logging with step where bad PUT request failed * Fix: support for recurrence "full day" * Fix: list of web_files related to HTML pages * Test: update/adjustments for workflows (pytest>=7, typeguard<4.3) Ákos Szőts 2024-06-07 07:32:00 +00:00
  • 2a53079761 Accepting request 1173485 from network Ana Guerrero 2024-05-12 20:54:21 +00:00
  • dc1d041776 - Update to 3.2.0 * Enhancement: add hook support for event changes+deletion hooks (initial support: "rabbitmq") * Dependency: pika >= 1.1.0 * Enhancement: add support for webcal subscriptions * Enhancement: major update of WebUI (design+features) * Adjust: change default loglevel to "info" * Enhancement: support "expand-property" on REPORT request * Drop: support for Python 3.7 (EOSL, can't be tested anymore) * Fix: allow quoted-printable encoding for vObjects Ákos Szőts 2024-05-05 10:30:11 +00:00
  • 9f740320a9 Accepting request 1161353 from network Ana Guerrero 2024-03-25 20:12:31 +00:00
  • 5a31425a7f - Update to 3.1.9 * Add: support for Python 3.11 + 3.12 * Drop: support for Python 3.6 * Fix: MOVE in case listen on non-standard ports or behind reverse proxy * Fix: stricter requirements of Python 3.11 * Fix: HTML pages * Fix: Main Component is missing when only recurrence id exists * Fix: passlib don't support bcrypt>=4.1 * Fix: web login now proper encodes passwords containing %XX (hexdigits) * Enhancement: user-selectable log formats * Enhancement: autodetect logging to systemd journal * Enhancement: test code * Enhancement: option for global permit to delete collection * Enhancement: auth type 'htpasswd' supports now 'htpasswd_encryption' sha256/sha512 and "autodetect" for smooth transition * Improve: Dockerfiles * Improve: server socket listen code + address format in log * Update: documentations + examples * Dependency: limit typegard version < 3 * General: code cosmetics Ákos Szőts 2024-03-18 09:07:47 +00:00
  • 768e4ebacc Accepting request 1060254 from network Dominique Leuenberger 2023-01-23 17:31:26 +00:00
  • e7a93d9dea - Security fortifications (provided by systemd) Ákos Szőts 2023-01-15 10:07:39 +00:00
  • 9a02555c82 Accepting request 990602 from network Richard Brown 2022-07-22 17:21:18 +00:00
  • fb04584aee - Update to 3.1.8 * Fix setuptools requirement if installing wheel * Tests: Switch from python setup.py test to tox * Small changes to build system configuration and tests Ákos Szőts 2022-07-14 22:15:12 +00:00
  • ce9eb7b1d3 Accepting request 985937 from network Dominique Leuenberger 2022-06-30 11:18:26 +00:00
  • 399b77873c - Add python passlib as a recommendation as it is needed for htpasswd authentication Ákos Szőts 2022-06-22 18:51:01 +00:00
  • 2e13c2f20d Accepting request 982452 from home:jengelh:branches:network Ákos Szőts 2022-06-22 18:45:29 +00:00
  • e7d7c314ee Accepting request 974280 from network Dominique Leuenberger 2022-05-02 14:25:37 +00:00
  • 2821264be0 - Update to 3.1.7 * Fix random href fallback Ákos Szőts 2022-04-25 06:31:34 +00:00
  • 6a3104f556 Accepting request 970767 from network Dominique Leuenberger 2022-04-20 14:55:13 +00:00
  • df612317ac Accepting request 970726 from home:polslinux:branches:network Marcus Meissner 2022-04-19 12:06:47 +00:00
  • 6e9e6f4603 Accepting request 955944 from network Dominique Leuenberger 2022-02-18 22:03:13 +00:00
  • 800128987e Accepting request 952827 from network Dominique Leuenberger 2022-02-09 19:39:35 +00:00
  • ced57abc1b - Update to 3.1.5 * Ignore configuration file if access is denied * Use F_FULLFSYNC with PyPy on MacOS * Fallback if F_FULLFSYNC is not supported by the filesystem Ákos Szőts 2022-02-08 22:20:58 +00:00
  • c1a6dc55f3 - Update to 3.1.4 * Fallback if RENAME_EXCHANGE is not supportd by the filesystem * Assume POSIX compatibility if sys.platform is not win32 Ákos Szőts 2022-02-01 22:01:40 +00:00
  • 6dfc03ccce - Update to 3.1.3 * Redirect '…/.well-known/caldav' and '…/.well-known/carddav' to base prefix * Warning instead of error when base prefix ends with '/' Ákos Szőts 2022-01-26 22:10:38 +00:00
  • 1eb07b108b - Update to 3.1.2 * Verify that base prefix starts with '/' but doesn't end with '/' * Improve base prefix log message * Never send body for HEAD requests (again) Ákos Szőts 2022-01-22 07:34:10 +00:00
  • 39b8aece80 Resolved OBS conflicts Ákos Szőts 2022-01-19 19:54:22 +00:00
  • 9b05b02a5a Accepting request 945255 from network Dominique Leuenberger 2022-01-10 22:53:11 +00:00
  • e4423ba54a - Fix download URL * This release contains a "v" in front of the version number in the URL Ákos Szőts 2022-01-03 09:48:53 +00:00
  • 8ff0b7282e - Update to 3.1.0 * Single <D:propstat> element in PROPPATCH response * Allow multiple <D:set> and <D:remove> elements * Improve log messages * Fix date filter * Improve sanitization of collection properties * Cancel mkcalendar request on error * Use renameat2 on Linux for atomic overwriting of collections * Command Line Parser * Disallow abbreviated arguments * Support backend specific options and HTTP headers * Optional argument for boolean options * Load no config file for --config without argument * Allow float for server->timeout setting * Fix is-not-defined filter in addressbook-query report * Add python type hints * Add multifilesystem_nolock storage * Add support for Python 3.9 and 3.10 * Drop support for Python 3.5 * Fix compatibility with Evolution (Exceptions from recurrence rules) Ákos Szőts 2021-12-27 08:27:30 +00:00
  • 6d5e2c5a18 Accepting request 922228 from network Dominique Leuenberger 2021-09-30 21:43:24 +00:00
  • 05f2acf0f8 Accepting request 921940 from home:kukuk:branches:network Ákos Szőts 2021-09-29 20:25:47 +00:00
  • f8b39d8edc Accepting request 913536 from network Dominique Leuenberger 2021-08-24 08:54:32 +00:00
  • 75d80fbe69 - Add firewalld service description for Radicale Based on the previous work of Martin Haas <sandrick@seznam.cz> Ákos Szőts 2021-08-22 07:34:41 +00:00
  • 8c79721086 - Migrate legacy user creation to sysusers.d(5) Ákos Szőts 2021-08-22 07:05:09 +00:00
  • 666cbb2af9 - Fix error message "Address family for hostname not supported" (EAFNOSUPPORT) when trying to bind to a non-loopback address during startup Ákos Szőts 2021-06-19 07:45:13 +00:00
  • cab850e9f2 Remove code for v1 -> v2/v3 upgrading since v1 times are long gone Ákos Szőts 2021-04-03 10:21:24 +00:00
  • 41272d0347 - Remove %{?systemd_requires} macro as it is not always needed - Give full path of the interpreter in the .service file as a security hardening - URL update for upgrading from v1.x Ákos Szőts 2020-12-10 10:23:50 +00:00
  • b8d829a793 - Removed Radicale.logrotate since there's no /var/log/radicale anymore Ákos Szőts 2020-10-08 19:33:37 +00:00
  • c6a1d83ca4 - Radicale 3.0.6 * Allow web plugins to handle POST requests - Remove /var/log/radicale since it's become unused by now - Remove duplicated rights and users file listings - Add DOCUMENTATION.md into %doc Ákos Szőts 2020-09-15 06:42:44 +00:00
  • 4a2607b01e - Start using openSUSE built-in python packaging scripts - Wait with startup until network comes online. This helps the situation where a non-localhost address is given to be listened on - Updated package description Ákos Szőts 2020-09-11 07:33:29 +00:00
  • 466975d1e2 Accepting request 832983 from home:polslinux:branches:network Ákos Szőts 2020-09-11 07:12:29 +00:00
  • a876417704 Accepting request 828444 from home:polslinux:branches:network Marcus Meissner 2020-09-08 08:50:40 +00:00
  • d2275ee401 Accepting request 808616 from home:polslinux:branches:network Marcus Meissner 2020-06-06 06:52:55 +00:00
  • cddadad02f Upgrade to Radicale 2 with version 2.1.11 Ákos Szőts 2018-11-29 10:47:51 +00:00
  • 25ebba2f4f - Radicale 1.1.6 - Improve logging for --export-storage Ákos Szőts 2017-07-25 05:33:00 +00:00
  • 652d0142a2 - Radicale 1.1.4 - Use shutil.move for --export-storage Ákos Szőts 2017-06-26 20:31:07 +00:00
  • ec4040337d - Radicale 1.1.3 - Add a --export-storage=FOLDER command-line argument (by Unrud, see #606) Ákos Szőts 2017-05-27 13:33:43 +00:00
  • c7525ebff1 Adding 1.1.2 source Ákos Szőts 2017-05-01 09:05:46 +00:00
  • ffaa3e5b36 - Radicale 1.1.2 - Security fix: Add a random timer to avoid timing oracles and simple bruteforce attacks when using the htpasswd authentication method. - Various minor fixes. Ákos Szőts 2017-05-01 09:04:47 +00:00
  • ecb3dad17b Accepting request 446484 from home:darix:playground Dirk Mueller 2016-12-16 09:30:05 +00:00
  • 7e84bc6b16 Accepting request 433872 from home:szotsaki Marcus Meissner 2016-10-25 07:06:59 +00:00