Eric Schirra
b7bee29d04
- Added some missing require and recommend packages.
- gh#10655 Added php-intl as required package for avoiding upstream
- Update to 16.0.0
Nextcloud 16 is smarter than ever, with machine learning to
detect suspicious logins and offering clever recommendations.
Group Folders now sport access control lists so system
administrators can easily manage who has access to what in
organization-wide shares. We also introduce Projects, a way to
easily relate and find related information like files,
chats or tasks.
As this is a major release, the changelog is very long.
Find an overview of what has been improved in this series of blog
posts:
- Nextcloud 16 becomes smarter with Machine Learning for security
and productivity
- ACL permissions for Groupfolders
- Nextcloud 16 allows you to link resources to keep track of your
projects
- Talk 6.0 brings commands, improved user experience and more
- Coming soon, seems the github API can't deal with the size of
our changelog.
- Update to 15.0.7
- Fix for crashing occ files:scan (server#14968)
- Fix .drone.yml syntax (server#14984)
- Harden appdata putcontent (server#15000)
- Check if OCA.Files.App is available before calling
(server#15001)
- Update to 15.0.6
- Fix grid toggle button on public page (server#14376)
- Fix(EMailTemplate): malformed HTML in some cases (server#14387)
- Bugfix for issue 10862: Trash-bin ignores
trashbin_retention_obligation (server#14414)
- Parse multiple navigation items (server#14416)
- Fix referrer policy meta tags. (server#14438)
- Fix a bug with smb notify having leading slash when it should
not (server#14462)
- Fix for issue #13319: load oc-backbone-webdav before loading
versions app (server#14472)
- Add accessibility translations (server#14490)
- Run tests that fail with "no such process" over to apache
server (server#14495)
- Make header.feature more robust by running it on apache
(server#14497)
- Fix expire date change eventhandler (server#14503)
- Update icewind/smb to 3.0.2 (server#14512)
- Do not cut full color on accessibility svg color invert
(server#14516)
- Dav: Fix handling of chunked WebDAV upload (server#14517)
- Do not just write foobar (server#14521)
- Fix database configuration (server#14531)
- Add activities for group membership changes (server#14534)
- Check if password can be changed for the users backend in OCS
api (server#14542)
- Add test for updated CA bundle (server#14546)
- Clear backupcode reminder when no 2fa (server#14559)
- Use a tmp file for swift writes (server#14570)
- Have streams of files_external in sync (server#14580)
- Resolve user and groups in nested groups first before filtering
the results (server#14591)
- Remove Google+ from Social Sharing Bundle (server#14596)
- Do not calculate folder size for parent that also needs proper
scan, fixes #3524 (server#14597)
- Mention Open Cloud Mesh in Federated User Settings
(server#14599)
- Update index.php (server#14601)
- Remove sensitive SMB arguments from exception log
(server#14658)
- Prevent recursion when moving a file to the trashbin
(server#14661)
- Disable fragile tests (server#14672)
- Use SCSS variables since CSS vars are not loaded on public
pages (server#14677)
- Handle long etags from dav external storage (server#14694)
- Improve lookup server behaviour (server#14696)
- Add an integration test that ensures deletion of LDAP users
(server#14697)
- Dont try to restore a trashbin item to a readonly target
(server#14699)
- Throw a proper error if rename fails in dav (server#14700)
- Groupname like username - allow share with both (server#14709)
- Updated documentation go.php to 15 and adjusted copyright year.
(server#14716)
- Always register the Notifier (server#14749)
- Fix getting the access list on external storage (server#14751)
- Always allow moving mountpoints inside the same mountpoint
(server#14759)
- Use current directory for hashing. (server#14762)
- Fix user creation using LDAP Plugin (server#14781)
- Avoid replacement by user object (server#14795)
- Fix placeholder in disable message (server#14840)
- Fix setup checks for ocm/ocs-provider (server#14854)
- Remove Google+ federation usersettings (server#14855)
- Add setup check for missing UTF8MB4 on mysql (server#14857)
- Make regions translatable (server#14859)
- Show a setup warning in case S3 object storage is used as
primary storage (server#14865)
- Fix plural rule detection for languages (server#14867)
- Fix translations of settings (server#14882)
- Fix opening folders from different file lists (server#14891)
- Fix hidden file display in grid view (server#14924)
- Locale is not language (activity#355)
- Fallback to plaintext subject if no rich subject is set
(activity#358)
- Ignore query arguments in single video share for stable15
(Fix #121) (files_videoplayer#122)
- Less alerting log entries on fails (notifications#291)
- Fix Update nextcloud 15.0.4 to 15.0.5 error "ocm-provider"
apache2. (server#14445)
- Update to 15.0.5
- Show autocompletion as soon as "@" is typed (server#13961)
- Trim filename in webfrontend for windows compatibility
(server#13978)
- Clean code and fix drop zone shadow (server#13982)
- Show original path in trashbin (server#14029)
- Update icewind/smb to 3.0.1 (server#14068)
- Fix: Check if `$this->params['user']` is an array
(server#14085)
- [Security] Bump lodash from 4.17.10 to 4.17.11
in /apps/updatenotification (server#14093)
- [Security] Bump lodash from 4.17.10 to 4.17.11
in /apps/accessibility (server#14094)
- [Security] Bump lodash from 4.17.10 to 4.17.11
in /apps/oauth2 (server#14095)
- Make sure the relative path is always a string (server#14101)
- Fix the thorrtler whitelist bitmask (server#14151)
- [Security] Bump handlebars from 4.0.12 to 4.1.0 in /build
(server#14187)
- Fix recent files (server#14195)
- Update CRL to contain revoked files_external_dropbox,
passman & payback (server#14201)
- Ensure attribute names are lower cased (server#14203)
- Fix small glitches in update notification page (server#14207)
- Fix expiration date changing (server#14212)
- Fix trashbin restore translation (server#14213)
- Remove trailing spaces from localized strings (server#14225)
- Fixing phpdoc in FullTextSearch/Model/ISearchResult
(server#14268)
- Fix empty file uploads to S3 (and other streaming storages)
(server#14273)
- Do not do redirect handling when loggin out (server#14275)
- Catch Request exception in testRemoteUrl (server#14277)
- Correctly determinate the owner in case of shared external
storages (server#14283)
- Fix header label visibility on open menu (server#14287)
- Prefix $path for filename for internal file cache
(server#14288)
- Set false as default for requirePNG (server#14292)
- Use proper scroll container when dragging files (server#14301)
- Fix OC.getCurrentUser() on guest pages (server#14308)
- Fix ocm end-point discovery discovery (server#14312)
- Apply theme to 2FA button (server#14331)
- Fix "Undefined index: user_uid" on login page (server#14339)
- Fix unsafe array access (server#14340)
- Always query lookup server in GS mode (server#14368)
- Use latest ca-bundle.crt from
https://curl.haxx.se/docs/caextract.html (server#14371)
- Try to support 7.3 for DAV (3rdparty#213)
- Backport/stable15/streams 0.7.1 (3rdparty#244)
- Don't add empty entries to the objects array (activity#347)
- Ensure parameters are always an array (activity#350)
- Bye, Scrutinizer! (notifications#293)
- Fix require php versions. boo#1084320
- Update to 15.0.4
- Make external storages browsable again in the web UI
(server#14076)
- Upload new files in objectstore to a .part path first
(server#13036)
- Broker: add timezone to CANCEL messages (server#13384)
- Add strengthify.min files (server#13546)
- Fix click app names (server#13575)
- Principals can be principal/user/ or principal/ from lega…
(server#13582)
- Correctly handle displaynames returned from the sharee API
(server#13585)
- Don't close input stream when writing in encrypted file
(server#13588)
- Bump pear/archive_tar to 1.4.5 (server#13598)
- Fix integer background job id type error (server#13609)
- Fix user settings label translation (server#13611)
- Fix app navigation flickering on hover (server#13625)
- Update URL for federation (server#13636)
- Fix colorizeSvg with transformations that contain a comma (,)
(server#13653)
- Use warning background color & primary text color for setting
warnings (server#13665)
- Fix template paramter (server#13670)
- Cache tokens when using swift's v2 authentication
(server#13740)
- Cleanup shared lock if changing to exclusive lock failed
(server#13744)
- Honor remember_login_cookie_lifetime (server#13758)
- Fix integration of social sharing into the link popover menu
(server#13761)
- Respect user locale in natural sort comparator (server#13762)
- Call proper function when fetching link shares in the
breadcrumb view (server#13769)
- Add acceptance tests for moving and copying files (server#13771)
- Show proper default locale (server#13781)
- Ignore non existing users when retrieving details of group
members (server#13792)
- Remove .css fileending from accessibility user css route
(server#13793)
- Add icon to restore activity (server#13794)
- Fix long comment in dark theme (server#13804)
- Bump bower from 1.8.4 to 1.8.8 in /build (server#13821)
- Fix for high contrast theme (server#13852)
- Always use multipart uploader for s3 uploads (server#13882)
- Fix paged search with multiple bases (LDAP) (server#13884)
- Fix dropping a folder on a folder row (server#13887)
- Fix updating the password of a link share when passwords are
enforced (server#13900)
- Add fallback for trashbin original location (server#13904)
- Allow shared versions again in legacy backend (server#13905)
- Improve data directory write checking for NFS mounts
(server#13906)
- Clean pending 2FA authentication on password reset
(server#13915)
- Forward error message from password policy (server#13918)
- Remove warning in case of external storage error
(server#13920)
- Handle mail send error gracefully (server#13930)
- Bump pear/archive_tar from 1.4.3 to 1.4.5 (3rdparty#214)
- Move to SCSS and fix app icon for dark theme (activity#338)
- Fill screen in fullscreen mode for public videos. Fixes #77
(files_videoplayer#79)
- Use target="_blank" and rel="noreferrer noopener"
(firstrunwizard#105)
- Fix notification documentation to reflect recent changes
(notifications#258)
- Update to 15.0.2
- Don't log parameters on user creation in case of
error/exception (server#13479)
- RemoveClassifiedEventActivity: check if calendar still exists
(server#13506)
- Broker: add timezone to CANCEL messages (3rdparty#196)
- Update to 15.0.1
- Change doc link for 15 (server#12963)
- Use strengthify.min on personal settings page (server#12984)
- Use default cursor for disabled primary buttons (server#13007)
- Better activities for systemtags that are removed by CLI
(server#13029)
- Ie11 compatibility updatenotifications (server#13076)
- Fix exception on LDAP mapping during login (server#13119)
- Fix SAML Client login flow on Apple devices (server#13123)
- Only trust the X-FORWARDED-HOST header for trusted proxies
(server#13150)
- Prevent special characters from breaking the file drop remote
url (server#13151)
- Allow content provider to generate new Index (server#13155)
- Make the footer "Get your own free account" translatable
(server#13169)
- Use a case insensitive search for email (server#13179)
- Fix ie11 checkboxes (server#13206)
- SCSS cache buster is a combination of apps/theming/scc_vars
(server#13209)
- Files list not rendering if user has favorites navigation
unfolded (server#13215)
- Do not forgot to store the second displayname portion
(server#13218)
- Add default values when parsing account data (server#13252)
- Fix opening search results for comments (server#13253)
- Fetch lastInsertId only when id null (server#13278)
- Add caching headers for public previews (server#13328)
- Unbundle user_external to release it via appstore
(server#13329)
- Rewrite getNumberOfUnreadCommentsForFolder query (server#13335)
- Fix can change password check in case of encryption is enabled
(server#13349)
- Update the CRL (server#13352)
- Check anonymous OPTIONS requests file in root (not in subdir)
(server#13354)
- Re add the uploaded file list to file drops (server#13355)
- Returns a 404 instead of exception if app is not installed
- #13088 (server#13357)
- Transpile arrow function for ie11 compatibility (server#13360)
- IE fix for apps menu (server#13361)
- Allow URI as data for vcard PHOTO (server#13366)
- Throttle with correct metadata (server#13368)
- Fix loginflow with apptoken enter on iOS (server#13370)
- Register and show when an LDAP user was detected as
unavailable/deleted (server#13372)
- Fix apps menu overlapping (server#13404)
- Use the real logger in the settings (server#13405)
- CSP: Allow fonts to be provided in data (server#13411)
- HttpClient getHeader can return empty string (server#13425)
- Respect classification of calendar events in activity stream
(server#13439)
- Add support for boolean default (server#13444)
- Show the repair steps and repair info output in the web for
better feedback (server#13469)
- Fix PDF sidebar shown in PDF thumbnails (files_pdfviewer#114)
- Do not get the url from the download links
(files_videoplayer#74)
- Use proper slogan from theming app (firstrunwizard#94)
- Update info.xml (firstrunwizard#96)
- Update richObjectStringParser.js (notifications#245)
- fix require php versions.
- Update to 15.0.0
Nextcloud 15 introduces social networking, next-gen 2-factor
authentication and innovative collaborative document editing
abilities.
This release also adds a new design and grid view, workflow
features and 2-3x faster loading performance.
As this is a major release, the changelog is very long.
Find an overview of what has been improved in this series of blog
posts or see: https://nextcloud.com/changelog/
- Use php7 in apache under suse_version >= 1500 now.
- Fix warning for /.well-known/{caldav,carddav} in overview
security & setup warning.
- update to 14.0.4
- Allow overwrite.cli.url without trailing slash (server#11772)
- Remove duplicate call to decodeURIComponent (server#11781)
- Check for empty string (server#11783)
- Add "Referrer-Policy" to htaccess file, addresses issue #11099
(server#11798)
- Always query the lookup server in a global scale setup
(server#11800)
- Fix a case where "password_by_talk" was not a boolean
(server#11851)
- Add .l10nignore files for compiled assets (server#11925)
- Properly escape column name in "createFunction" call
(server#11929)
- Allow userId to be null (server#11939)
- Allow "same-origin" as "Referrer-Policy" (Backport to stable14)
(server#11950)
- Do not emit preHooks twice on non-part-storage (server#11961)
- Filter null values for UserManager::getByEmail (server#11976)
- Allow local delivery of schedule message while prohibiting
FreeBusy requests (server#11979)
- Load apps/APP/l10n/*.js and themes/THEME/apps/APP/l10n/*.js
(server#11990)
- Lazy open first source stream in assemblystream (server#11994)
- Fix opening a section again in the Files app (server#11995)
- Remove cookies from Clear-Site-Data Header (server#12005)
- Forwarded ExpiredTokenException (server#12032)
- Allow chunked uploads even if your quota is not sufficient
(server#12040)
- Improve encrypt all / decrypt all (server#12045)
- Double check for failed cache with a shared storage
(server#12108)
- Implement the size of an assembly stream (server#12111)
- Bring the browser window of an actor to the foreground when
acting as him (server#12120)
- Move acceptance tests that crash the PHP built-in server to
Apache (server#12121)
- Remove unneeded empty search attribute values, fixes #12086
(server#12122)
- Fixes wrong variable usage (server#12137)
- LDAP: announce display name changes so that addressbook picks
it up (server#12141)
- Bruteforce protection handling in combination with
(server#12160)
- Add global site selector as user back-end which doesn't support
password confirmation (server#12184)
- Do not set indeterminate state for file shares (server#12187)
- Revert "Wait for cron to finish before running upgrade command"
(server#12197)
- Fix bug #12151: fix list formatting by correcting malformed
html (server#12202)
- A folder should get a folder mimetype (server#12297)
- Use the proper server for the apptoken flow login
(server#12299)
- Do not log FileLock as exception (server#12300)
- Set the filemodel before rending the detailsview (server#12301)
- Disabled ldap fix (server#12331)
- Fix - Add to favorites not working in IE11 (server#12339)
- Remove arrow function for ie compatibility (server#12341)
- Fix default types of activity event member variables
(server#12353)
- Suppress wrong audit log messages about failed login attempts
(server#12372)
- Add fix for IE11 flexbox height bug (server#12374)
- Properly search the root of a shared external storage
(server#12375)
- Fix app update available check (server#12412)
- Use nextcloud-password-confirmation (server#12416)
- Fix IE rule for min width (server#12431)
- Added cache override to ensure an always up-to-date
accessibility css (server#12432)
- Unique contraint and deadlock fixes for filecache and
file_locks (server#12433)
- Fix app menu calculation for random size of the right header
(server#12440)
- Fix missing quickaccess favorite folder on add (server#12441)
- Fixes dav share issue with owner (server#12459)
- Fix wrong share popover opening on share link (server#12482)
- Only use width and opacity for transition (server#12492)
- Forward object not found error in swift as dav 404
(server#12502)
- Fix the warning appearing in the admin section when
mail_smtpmode is not configured (server#12529)
- Remove unused svg api route (server#12542)
- Bearer tokens are app token (server#12545)
- Handle permission in update of share better (server#12561)
- Correctly restrict affected users when using command to send
emails (activity#312)
- Improve code blocks in markdown rendering (files_texteditor#121)
- Properly escape column name in "createFunction" call
(survey_client#85)
- update to 14.0.3
- Fixes the apps menu scrollbar (server#11662)
- Ignore "session_lifetime" if it can not be converted to a
number (server#11761)
- Normalize getUnjailedPath (server#11770)
- changes from 14.0.2
- Fix contacts menu on mentions (server#11350)
- Make the server ready to use global scale with SAML as auth
back-end (server#11373)
- Fix default flex shrink on list (server#11374)
- Fixes the logo height (server#11385)
- Do not explode when getting permissions from a FailedStorage
(server#11389)
- Do not hide the progress bar while the chunked upload is being
assembled (server#11399)
- Fix "checkWellKnownUrl" not being run (server#11418)
- Add back the total used space per user (server#11425)
- Fix invalid inline input confirm border (server#11426)
- Center back the history icon (server#11430)
- AssemblyStream is also eof if we have no more source stream
(server#11436)
- Re-enable upload button after updating Avatar (server#11451)
- Fix typo in config.sample.php (server#11488)
- Bugfix 2FA theme: buttons white (server#11489)
- Update config and babel for ie11 (server#11490)
- Only catch QueryException when trying to build class
(server#11492)
- Show auth type "None" in email settings (server#11493)
- Fix public page footer link wrap (server#11510)
- Fix share header text on small widths (server#11511)
- Add missing compiled mimetype list (server#11516)
- Fixes the move/copy picker buttons (server#11525)
- Fix breadcrumbs (server#11530)
- Added kinetic scrolling for iOS to apps dropdown menu #10281
(server#11554)
- Throw an error if a node is smaller than expected in
assemblystream (server#11555)
- Reduce the min-width of the files table so it works on sharing
pages on mobile (server#11556)
- Fix header overflow, fix more apps menu, fix #11552
(server#11558)
- Add new group entry on users list + fixes (server#11575)
- Redirect guests to login if they follow the link of a comment
mention-notifications (server#11577)
- Force multiselect max-height to 5.5 items (server#11579)
- Just update password hash without validating (server#11580)
- Fix sticky header on users list (server#11582)
- Fix header border on users list (server#11608)
- Fix call to logger (server#11610)
- Allow the creationg of previews of files stored in appdata
(server#11703)
- Update CRL due to changed cert for linkshareex (server#11706)
- Fix a misleading setup check for .well-known/caldav & carddav
(server#11738)
- Remove unneeded CSS rule for IE 11 (files_pdfviewer#101)
- Hide footer in public share page (files_pdfviewer#103)
- Fix embedded viewer with new server layout on IE 11
(files_pdfviewer#98)
- update to 14.0.1
- Fixes the upload progress bar layout - 14 backport
(server#11039)
- Fix markup and style of mentions in comments (server#11077)
- Do not invalidate main token on OAuth (server#11090)
- Expire tokens hardening (server#11103)
- fix js files client for user names with spaces (server#11152)
- Fix user and group listing with users that have an integer
user id (server#11186)
- Fix exception class (server#11187)
- Remove posix_getpwuid and compare only userid (server#11191)
- Fix check for more users in sharing dialogue (server#11201)
- Remove filter_var flags due to PHP 7.3 deprecation,
fixes #10894 (server#11237)
- Fixes empty favorite names for trailing slashes (server#11259)
- Fix size of icons in menus inside apps when shown as images
(server#11276)
- Prevent comment being composed from overlapping the submit
button (server#11277)
- replace setcookie value with '' instead of null. (server#11280)
- Fix the link and anchor for the update notifications
(server#11282)
- Include empty directories in the default state of acceptance
tests (server#11283)
- Get permission of storage for shares (server#11287)
- Shared by info for room shares without names (server#11288)
- Fix icons cacher regex for compressed output (server#11291)
- Revert "Use APCu caching of composer" (server#11293)
- Use user locale as default in the template (server#11294)
- Fix expiration code of tokens (server#11302)
- Add unit test for findLanguageFromLocale (server#11340)
- 14 scroll fix (activity#295)
- Update stable14 target versions (files_texteditor#111)
- Update stable14 target versions (firstrunwizard#80)
- Update stable14 target versions (gallery#467)
- Update stable14 target versions (nextcloud_announcements#32)
- Update stable14 target versions (notifications#158)
- Update config and babel for ie11 (notifications#161)
- Insert Referrer-Policy in nextcloud.conf
- update to 14.0.0
No changelog from upstrem. Look instead here:
https://github.com/nextcloud/server/compare/v13.0.6...v14.0.0
- update to 13.0.6
- Add sabre plugin to allow anonymous options requests to the dav
root (server#10285)
- Do scan the root storage in background scan (server#10376)
- Adding test for table schedulingobjects and fixing postgres LOB
(server#10552)
- Fix transfering ownership of a share to user with same id as
receiver (server#10565)
- Make file cache updates more robust (server#10581)
- Retry smb stat on timeout (server#10591)
- Use insertIfNotExists to store new mimetypes. (server#10620)
- Only warn about data lose on password reset if per-user keys
are used (server#10646)
- Update the scope of the lockdownmanager (server#10682)
- Log entries that are hidden during file listing (server#10698)
- Forgotten pass fix link (server#10735)
- Fix comment style in config sample (server#10759)
- Make sure error_log() always receives a string (server#10760)
- Fix call to OC.generateUrl for caldav birthday calendar on/off
(server#10761)
- Use the path_hash instead of the path to query the filecache
(server#10762)
- Don't blame random people for background email updates
(server#10763)
- Resolve all group memberships properly (server#10783)
- Remove unexecutable code (server#10816)
- Improve URL detection (server#10821)
- MySQL 8.0+ and MariaDB 10.3+ are large prefix and
barracuda by default (server#10823)
- Disallow negative mtime in dav search (server#10837)
- update to 13.0.5
- Fix highlighting of the upload drop zone (server#9837)
- Apply ldapUserFilter on members of group (server#9839)
- Make the DELETION of groups match greedy on the groupID
(server#9841)
- Add parent index to share table (server#9843)
- Log full exception in cron instead of only the message
(server#9958)
- Properly lock the target file on dav upload when not using part
files (server#9986)
- LDAP backup server should not be queried when auth fails
(server#10032)
- Fix filenames in sharing integration tests (server#10044)
- Lower log level for quota manipulation cases (server#10076)
- Let user set avatar in nextcloud if LDAP provides invalid
image data (server#10089)
- Improved logging of smb connection errors (server#10093)
- Allow admin to disable fetching of avatars as well as
a specific attribute (server#10115)
- Allow to disable encryption (server#10121)
- Update message shown when unsharing a file (server#10164)
- Fixed English grammatical error on Settings page.
(server#10165)
- Request a valid property for DAV opendir (server#10169)
- Allow updating the token on session regeneration
(server#10170)
- Prevent lock values from going negative with memcache backend
(server#10180)
- Correctly handle users with numeric user ids (server#10185)
- Correctly parse the subject parameters for link (un)shares of
calendars (server#10188)
- Fix "parsing" of email-addresses in comments and chat messages
(server#10189)
- Sanitize parameters in createSessionToken() while logging
(server#10195)
- Also retry rename operation on InvalidArgumentException
(server#10201)
- Improve url detection in comments (server#10202)
- Only bind to ldap if configuration for the first server is set
(server#10233)
- Use download manager from PDF.js to download the file
(files_pdfviewer#84)
- Fix trying to load removed scripts (files_pdfviewer#87)
- Only pull for new messages if the session is allowed to be kept
alive (notifications#138)
- Always push object data (notifications#139)
- Add prioritization for Talk (notifications#140)
- update to 13.0.4
- Allow setting notify credentials in environment (server#9788)
- Make the token expiration also work for autocasting 0
(server#9803)
- Enable caldav for webdav subtree public-calendars (server#9820)
- This also fix security issues:
- (boo#1100343, CVE-2018-3762) and (boo#1100344, CVE-2018-3761)
- update to 13.0.3
- Backport various scss fixes #8777 (server#9259)
- Fix ellipsis in filename column (server#9344)
- Replace deprecated sinon reset() call with resetHistory()
(server#9358)
- Issue #9318: catch exceptions in SCSSCacher::resetCache()
(server#9377)
- Log lock state on conflict (server#9389)
- Remove unneeded locks in getCacheEntry (server#9391)
- Only allow a single concurrent dav write to a file
(server#9392)
- Workflow rules error when changing operation (server#9409)
- Fix jsunit tests (server#9430)
- Allow IPv6 database host (server#9432)
- Add labels for Contacts menu and Settings (server#9433)
- Get correct version of an app (server#9436)
- Fix ids of permission checkboxes for shares (server#9453)
- Fix race condition when preparing upload folder (server#9454)
- Allow to specify a link to a legal notice (server#9516)
- Fix for unbound cloned LDAP connections (server#9522)
- Dont use $info as array when its not an array (server#9525)
- Improve OAuth (server#9540)
- Bump theming version for extraordinary release (server#9547)
- Fix translation bug on lost password page (server#9548)
- Cleanup locks in scanner on error (server#9566)
- Bump version for theming again 🙇 (server#9573)
- Make sure force language is reflected in html lang attribute
(server#9579)
- Add privacy link to theming and fix scrollbars (server#9586)
- Fix settings menu (server#9590)
- Handle exception while itterating trough smb file listing
(server#9608)
- Send invitations for shared calendars (server#9610)
- Regenerate session id after public share auth (server#9619)
- Emit event when running ./occ db:add-missing-indices
(server#9620)
- Add PHP missing message to index.php (server#9621)
- Delete the previews when a version is restored (server#9622)
- Limit Sinon version to 5.0.7 at most (server#9629)
- Prepare another theming release including translations for
recently added imprint and privacy policy strings
(server#9647)
- Dont open the file on dav HEAD request (server#9649)
- Fix(AmazonS3): fix loop $result['Contents'] error
(server#9650)
- Fix undefined variables (server#9651)
- Add search category icon (server#9652)
- Fix "Invalid argument supplied for foreach()" (server#9654)
- Do not load calendar/addressbook plugins if not needed
(server#9655)
- Make LargeFileHelper.php faster by avoiding execs as much as
possible (server#9656)
- Improve error reporting and move format parameter to the
options (server#9657)
- The OAuth endpoint needs to support Basic Auth (server#9659)
- LDAP password renewal fixes (server#9661)
- Check user state when fetching to avoid dealing with offline
objects (server#9662)
- Make sure the file is readable before attempting to create
a preview (server#9668)
- Fix drone mysqlmb4 tests (server#9672)
- Make sure the log doesn't try to read from PUT if it can't
(server#9694)
- Allow admins to override FreeBusy capabilities without
modifying ShareAPI capabilities (server#9707)
- Fix the unit tests (server#9712)
- Fix header nav (server#9727)
- Fix local users check in contacts menu (server#9732)
- Don't open the file when handling HEAD requests (3rdparty#99)
- Do not sanitize markdown output twice (files_texteditor#101)
- update to 13.0.2
- Show group display names (server#8779)
- Group existence check works without attribute (like with users)
(server#8849)
- The FN is optional, carrying the displayname if present
(server#8900)
- Set "share with" field to the ID of the circle (server#8905)
- Show EOL warning in the update section (server#8986)
- Use app version to generate scss filename (server#9015)
- Update icewind/smb to 2.0.5 (server#9017)
- Fix search text overlapping close button (server#9019)
- Clear any theming prefixed cache on cache buster increase
(server#9020)
- Reset encryptionVersion to '1' if a file was stream copied
(server#9064)
- Do not treat is-encrypted as custom property (server#9071)
- Fix proper permissions for multiple file access (server#9072)
- When formatting a share node an Empty target is invalid
(server#9073)
- Move on with the next user if we found the user on one user
back-end (server#9077)
- Allow usage of Windows 10 WebDav Netdrive (server#9089)
- Add more logging for the object storage during creation of the
buckets (server#9094)
- Do not convert email addresses with idn_to_ascii if…
(server#9095)
- Fix progress bar hidden before the upload ends (server#9124)
- Update CRL to include old quicknotes cert (server#9213)
- Fix user selectable text for public links for text files
(server#9230)
- Provide an option to disable HTML emails (server#9231)
- Fix appinfo parsing when a single localized option is provided
(server#9233)
- Use multibyte substring (server#9234)
- Fix webdav support for OneNote clients (server#9236)
- Fixed files copy/move when in favorites or recent section
(server#9238)
- Don't update personal settings for admins (activity#262)
- Skip parameters which are not there instead of failing out
(activity#265)
- Bump version 13 (files_pdfviewer#64)
- Fix info.xml (files_pdfviewer#66)
- No default enable (files_pdfviewer#67)
- Fix position of icons in "Share with" input field (gallery#418)
- Fix "No results found" tooltip (gallery#419)
- Fix UI while a share is being added (gallery#420)
- Hide "No results found" tooltip on autocompletion (gallery#424)
- Fix error while clicking on the share link checkbox
(gallery#430)
- update to 13.0.1
- Dont polute the log on DAV emaillogin (server#8045)
- Don't perform CSRF check on OCS routes with Bearer auth
(server#8099)
- Use S3Client::upload instead of splitting single/multipart
upload ourselves (server#8102)
- Remove old perl script to update l10n files (server#8145)
- Scss hardening (server#8156)
- Do not try to get the jailed path if we can't find the id
(server#8177)
- Handle SSL certificate verifications for others than
Let's Encrypt (server#8183)
- Use a phan version instead of master (server#8195)
- Repair step to clear frontend related caches (server#8197)
- Keep previous exception when transforming to dav exception
(server#8228)
- Actually return stream from swift (server#8250)
- Remove invalid link to documentation (server#8253)
- Fix deleting folders when using s3 external storage
(server#8261)
- Link to NC13 dev manual (server#8264)
- Better result handling of email search (server#8267)
- Update CRL to revoke files_rightclick (server#8271)
- Fix styling issues of guest pages #8155 (server#8286)
- Remove jquery ui background image (server#8287)
- Show open graph preview in WhatsApp (server#8309)
- Make acceptance tests for comments more consistent with the
others (server#8395)
- Fix edit tag textbox size (server#8407)
- Use TTF fonts for avatar generation (server#8440)
- Use mb_* string methods to extract first character for
generated avatars (server#8470)
- Show hint in OCS API for user creation (server#8515)
- Fix hiding and event propagation issues with the user
management popover (server#8517)
- Add some whitespace around change.svg icon (server#8518)
- Avoid fruitless login attempts (server#8532)
- Fix retrieval of group members with numerical uids from LDAP
(server#8536)
- Theming: handle not being in the serverroot (server#8554)
- Ext storage error warning (server#8561)
- Set autocomplete=new-password for mail share password
(server#8577)
- Fix upload button visible on read-only folders (server#8595)
- Fixed app navigation for IE11 (server#8609)
- Fix breadcrumbs width calculation (server#8610)
- Fix comments (and systemtags) when involving users with
numerical ids (server#8615)
- Update commentstabview.js (server#8621)
- Properly encapsulate require_once for app.php (server#8631)
- AppData hardening (server#8636)
- Use hash algo that's robust against collisions (server#8654)
- Fixed date/time picker on IE11 (server#8663)
- Use a more widely available method to test s3 settings
(server#8667)
- Use proper lanugage in langauge code (server#8668)
- Display the proper language strings in setttings (server#8669)
- Do not create empty userid when attribute does not have allowed
chars (server#8673)
- Remove too restrict check for background image/color
(server#8675)
- Fix example regex for user agent matching (server#8676)
- Generate different UIDs for Birthday, Anniversary and Death
event (server#8678)
- Don't use double quotes in MySQL queries (server#8680)
- Log exceptions that happen when writing the app store reply
to storage (server#8683)
- Set the correct active navigation entry (server#8685)
- Fix activities for end2end encryption (server#8686)
- Filter out the current user when searching for emails too
(server#8687)
- Fix check if theming defaults instance is available
(server#8688)
- Fix undefined index problem (server#8693)
- Disable part files for object stores (server#8725)
- Better handling of invisible elements in acceptance tests
(server#8738)
- Remove base url from global cache prefix (server#8745)
- Check if the cached js file exists (server#8746)
- Sharee email matches not limited (server#8749)
- Fix integer overflow in ChunkingPlugin (server#8752)
- Revert wording back to updates (server#8755)
- Add acceptance tests for permissions on public shared folders
(server#8758)
- Also send file emails in ASAP mode (activity#249)
- Ensure userids are strings (activity#252)
- Null coalescing operator is PHP7+ (activity#254)
- Update PDF.js to 1.9.426 (files_pdfviewer#55)
- Enable full screen mode for PDF files (files_pdfviewer#59)
- Fix ACE module files failing to load (files_texteditor#83)
- Do not keep FileInfoModels returned by "getModelForFile"
(files_texteditor#89)
- Fix share drop down in gallery not properly shown (gallery#394)
- Fix gallery button hidden in folders without create permission
(gallery#402)
- Fix controls position in gallery layout (gallery#405)
- Removed old code already present thanks to the files app
(gallery#406)
- Create "file app" public share links if the slideshow is
opened from ... (gallery#407)
- Allow to check against haveibeenpwned.com password list
(password_policy#61)
- update to 13.0.0
Over 1100 changes were merged in the server, with many hundreds
more in existing or new apps. The main improvements include:
* Collaboration features
- Nextcloud Talk, a private videoconference software integrated
with Nextcloud
- real-time and asynchronous communication with push
notifications, calls and chat web and mobile devices
- Integration in business workflow with calendar invitations
and calls directly from Nextcloud Files
- Screen and note sharing with participant moderation
capabilities
- 100% secure peer-to-peer, end-to-end encrypted calls,
mediated by self-hosted server
- auto-completion of user names in comments and notification
to the mentioned user
- support free/busy scheduling in native calendar applications
like Thunderbird Lightning
- show meeting invites in the calendar
* End-to-End Encryption
- can encrypt data on a per-folder level rather than
all-or-nothing approach
- does not require users to remember or exchange passwords
- does not require re-uploading data upon sharing
- features an optional off-line administrator recovery key
- allows full audit logging
- can be combined with our File Access Control feature so
administrator can enforce aspects of End-to-end Encryption
- protects from identity theft with our Cryptographic Identity
Protection feature
This feature is in Tech Preview for Nextcloud 13 and does not
yet implement sharing.
* User Interface
- new way of selecting files
- easy way to quickly copy or move to a location
- High DPI support
- admin menu integrated in one list
- no limitation to file uploads via the web interface
- user quota in the side bar
- social sharing (Twitter, G+, Facebook, Diaspora) now features
a preview
- improved theming
* Performance
- decreased page load times with up to 50% and faster search
- 80% faster LDAP and up to 10x faster external storage
- Server-side Encryption performance largely improved
See https://nextcloud.com/changelog/
- update to 12.0.5
Many fixes were merged, the most important ones include:
- #7144 Unlock files even if an exception occurs
- #7322 Set primary action button color to same as theming color
- #7323 Use the correct root for shared jail when the source
storage is also a jail
- #7353 Fix translation of federation scope menu
- #7362 Allow to skip data dir permission checks
- #7407 Check if owner of share exists
- #7409 Add retry wrapper when reading files from swift
- #7451 Fix constructor spy in unit test with Sinon 4.1.3
- #7455 Remove wrong entry in admin_settings that causes 500
- #7456 CardDAV convertor check should not be to wide
- #7457 Fix loading icon position in the app menu
- #7464 Allow getting the filepath when getting cached mounts
- #7468 Allow 'Nextcloud' in the user agent string of Android
- #7558 Fix email buttons for white theme
- #7567 Respect sharing options when searching for Sharees
- #7568 Fix duplicate session token after remembered login
- #7577 Check userExists later,
saves lookups for appData_INSTANCEID userids
- #7672 Added additional methods for removal of sensitive info
- #7688 Fix scss webroot and url rewrite
- #7717 Throw ServerNotAvailableException when LDAP is caught
shutting down
- #7666 Fix drag shadow not visible when dragging a file on
a narrow screen
- #7674 Do no run SyncJob in cron
- #7684 Fix inverted app icons on IE11
- #7694 Don't attempt to translate login names to uids when uids
are provided
- #7708 Don't show recurring msg when pages result was turned off
- #7742 Hide favourite icon in details view if favourite action
is not available
- #7745 Don't lie about preview types
- #7747 Update of composer
- #7758 add option to use legacy v2 auth with s3
- #7759 Use correct L10N files for jsconfig
- #7757 Wait for the shared link to be set in the acceptance
tests
- gallery/#349 Fix date picker not visible in slideshow sharing
dialog
- activity/#229 Properly construct path of root on file rename
- #7770 Fix SCSS processing when undoing theming values
- #7774 Update icewind/smb to 2.0.3
- #7777 Set height for sidebar icons
- #7779 Improve zip support
- #7786 Return correct mount type for federated shares
- #7792 Fix empty details view after renaming a file
- #7817 Fix preview when theming changes invertion of icons
- #7821 Log full exception in cron instead of only the message
- #7888 Keep all shipped apps enabled because they should be okay
- #7962 update icewind/smb to 2.0.4
- Nextcloud 12 is not compatible with php ≥ 7.2,
so php < 7.2 is needed.
- upstream update to version 12.0.4
* Server
Over 50 fixes were merged in the server.
- Improve text: 'you have now' -> 'you now have (server#6464)
- Fix initializing paged search under some circumstances
(server#6502)
- LDAP: simplify returning the homePath (server#6509)
- Fix sharer name overlap with filename (server#6524)
- Allow to close sidebar for text files (server#6525)
- Fix quota new endpoint 12 (server#6527)
- Pass new value to triggerChange (server#6528)
- Throw 101 when an empty group string is provided
(server#6547)
- Contacts menu privacy (server#6554)
- Add color-border variable (server#6649)
- Do not stop on scss compilation failure (server#6661)
- Don't pass User object when uid string is expected
(server#6674)
- Navigate to the root directory when showing the main filelist
(server#6689)
- Fix LDAP User deletion (cleanup) (server#6699)
- Update aws sdk + s3 improvements (server#6737)
- Dont run invalid path repair step when upgrading
from 11.0.5.2 and later (server#6743)
- Fix language when trying to change password (server#6751)
- Fix postgresql tests (server#6792)
- Also use configured 'cache_path' for new chunking
(server#6814)
- Set s3 part size to 500mb (server#6815)
- Fix contacts menu for IE11 (server#6823)
- Still trigger conflict resolution for existing entries when
the curre (server#6847)
- Propagate multipart upload exception when aborting upload
(server#6855)
- Allow to migrate from 10.0.3.3 (server#6878)
- Timespan check (server#6896)
- Do not log WebDAV maintenance mode exception (server#6908)
- Don't reset quota (server#6910)
- Backport of translation string fixes (server#6935)
- Fix class name in exception logger plugin (server#6942)
- Allow quota of 0 again (server#6943)
- Fix uninitialized variable $this->params (server#6944)
- Don't add a LIKE condition when it's not needed (server#6945)
- Fix undefined offset warning when using '/' as external
storage root (server#6946)
- Fix page title not changed (server#6987)
- Better readability for text on log in page which is directly
on backgrounds (server#7028)
- Translate Grant Access (server#7040)
- Use fopen directly when reading objects from s3 (server#7079)
- Improve mimetype detection for object storages (server#7081)
- Fix seeking on object storage (server#7082)
- Hide spinner for initial install (server#7095)
- Ensure uid for calendar objects is unique (server#7096)
- Revert "Only allow colons in db host for IPv6 addresses
(server#7102)
- Theme flow redirection page (server#7114)
- Fix icon for security settings (server#7116)
- If for some reason the json can't be decoded it is not cached
(server#7118)
- Improve performance of UserMountCache with external storage
folders (server#7120)
- {J,CS}SResourceLocator: account for symlinks in app path
(server#7170)
- Fix s3 download and touch (server#7186)
- Touch opertation on object storage, don't create
the file cache entry to early (server#7207)
- Allow migration from upcoming 10.0.4 ownCloud release
(server#7245)
- CSSResourceLocator: handle SCSS in apps outside root
(server#7257)
- only replace permission popupmenu (server#7259)
- Fix accesslist when a user has an ID only containting 0-9
(server#7262)
- Update CRL due to files_frommail (server#7277)
- Only in case of $currentAccess the array uses the id as index
(server#7328)
* Other
- Add aws sdk (3rdparty#69)
- Don't send emails to disabled users (activity#202)
- Add an option to disable emails completly (activity#206)
- Make sure the mountPoint property is public before using it
(files_accesscontrol#79)
- Allow to playback m4v files (files_videoplayer#43)
- Fix notifications order (notifications#93)
- upstream update to version 12.0.3
Nextcloud 12.0.3 delivers a lot of enhancements in various areas
including:
- A number of improvements to email notification templates
- 2FA enhancements
- Smarter LDAP password handling
- File Drop and upload-in-general updates
- A performance improvement handling large files
See https://nextcloud.com/changelog/#latest12
Details: https://github.com/nextcloud/server/pulls?q=is%3Apr+milestone%3A%22Nextcloud+12.0.3%22+is%3Aclosed
- upstream update to version 12.0.2
* Server
- Minor bugfix release
- upstream update to version 12.0.1
So many changes. See https://nextcloud.com/changelog/#latest12
- unneeded git-files should not be remove,
otherwise it throw integrity check failure in some situations.
- upstream update to version 12.0.0
no changelog from upstream at this time
See https://github.com/nextcloud/server/issues?q=is%3Aissue+milestone%3A%22Nextcloud+12.0%22+is%3Aclosed
- fix boo#1036756: package security issue
- upstream update to version 11.0.3
* Server
- Use the correct principal for shared addressbooks
(server/3608)
- Fix saving backup codes by using a correct data uri
(server/3652)
- Update icewind/streams to 0.5.2 (server/32931)
- Fix string comparison and return docs (server/3665)
- Typecast shared mount's storage_id to int as documented
+ some refactor to avoid similar bugs (server/3658)
- Use a proper date format for transfer ownership
(server/3700)
- DAV sharing permissions should not depend on the order
(server/3722)
- Add new user agent of windows 10 dav backend
(server/37641)
- Add back appstoreenabled config switch (server/37671)
- Call right function after sudo mode (server/3820)
- Dont allow empty wildcard search (server/3842)
- Remove single quotes around search query like in
user search (server/3849)
- Fix mimetype detection on public uploads for the
workflow engine (server/3765)
- Fix branding and show Nextcloud (server/39691)
- Fix reshare with user activity message (server/39812)
- Create correct VCard and return correct error codes
(server/4029)
- Prevent migration from ownCloud 10 to Nextcloud 11
(server/34151)
- Make sure transparency is an integer when saving a
calendar (server/4167)
- Make public links work with master key (server/42071)
- Don't try to render the avatars if avatars are
disabled (server/4214)
- Reduce error message text (server/42281)
- Don't list on public calendar endpoints (server/4229)
- Fix upload of folders in Chrome (server/4154)
- Make sure blob columns are correctly converted as
parameters (server/4233)
- Save the scope of an auth token in the session
(server/4225)
- Take share by mail into consideration if we calculate
the access list (server/4242)
- Also add the root of external storages to the file id
list (server/4237)
- Fix LDAP description (server/42382)
- Remove the double password confirmation on changing
cron (server/4236)
- Fix scheduling plugin on legacy caldav endpoint
(server/4235)
- Directly fix invalid values of DTEND and DTSTART
(server/4234)
- Make JobList::next() lock free (server/4254)
- Don't remove owner property for public calendars
(server/4272)
- Add capabilities for share by mail (server/42511)
- Dont use the permissions mask while scanning
(server/4278)
- Add missing maintenance plugin to new DAV endpoint
(server/4290)
- Fix bug with shared_by for own calendars if shared
(server/4301)
- Translation string corrected > 1 user (server/4377)
* Activity
- Fix activities for "Files drop" on external storages
(activity/118)
* User_SAML
- Bump to php-saml 2.10.5 (user_saml/1001)
* Logreader
- Small screen layout improvements
(logreader/2bcd915969386ceb77c7f91dfd5fc19fd3212346
- Fix log filtering
(logreader/4095dfc62dcceb3c59a3f581baa5589737d0e6f3)
- Greatly speedup log iteration
(logreader/71a4c6849641f821e80d96674c57a69fe7a8aa9e)
- Search more rows
(logreader/b9d00b5599ac8a76862895266f1c23096391aad8)
- Stop iterating if we dont have a valid file handle
(logreader/a87a8e653ecae5efef6342e645b98f2878219c87)
- Don't return a LogIterator on a broken handle
(logreader/39069108f99d463b1cb8bc944f3ef24324b9f43d)
- More robust log iteration
(logreader/c0eb04d55bf1dee94ef523dae0e3b0e6afc272a6)
- Use proper iso date format
(logreader/13a31181a6d72d084797a71f49f2c5edee8c8dae)
- Automatically try to fix some common escape errors from
copy-pasted log entries
(logreader/031db2a7f9b9f8cee42acf6eae7d993d31d4660a)
- Fix stack trace parsing of incorrectly escaped logentries
(logreader/538667770edfdd48374ef33e9c15498ed98ece60)
- Highlight entries from the same request when clicking
on an entry
(logreader/2d1ccd0e4cca32220fcbe0b4d79d1cd23f0e73a5)
- Fix copy paste info searchfield
(logreader/0e91b2f46649a720feb7c3b6b8266b8657db5574)
- Fix reset search after 0 results
(logreader/50bec8ecf7edd81cfb96a35089283c0d879b41f3)
- Allow searching for requestId and user
(logreader/7f84e55bb4a1e4086ab0918a6bf58ad3885bbd91)
- Allow searching in url
(logreader/7833d97cf85fd351d2f7550d67d21bd0c2a815f4)
- Fix infinite scroll
(logreader/cbe874c6c068b9156ad8456edf31d112da40cbc9)
- Dont show loading indicator if we already have entries
(logreader/d26a08dc0540126177e8d20c3e243b44c5a399c4)
* Gallery
- Fix upload after core changes
(gallery/b4ac4429841cfe2b7ea260dfb37fcde25580143c2)
- Update JavaScript libraries (gallery/247)
- Remove empty %postun and redundant %clean.
- Ensure summary/description is neutral.
- upstream update to version 11.0.2
* Server
- Use login name to fix password confirm with ldap users
(server/2953)
- Change the row-format before changing the collation
(server/3063)
- Generate correct path for owner and use the display name
(server/3080)
- Markdown support for app descriptions (server/3117)
- Fix style in comment (server/3143)
- Escape the name for the jquery selector (server/3138)
- Define spreed calls (server/3115)
- LDAP Backend OCS Api (server/3213)
- Fix Sharing app description (server/3397)
- Fix shared-as-busy events for owner (server/3363)
- Use correct theming when returning the defaults (server/3399)
- Filter out sensitive appconfig values (server/3400)
- Add transifex config for sharebymail (server/3423)
- Update the email in the accounts table as well (server/3411)
- Don't log the password on confirmPassword when LDAP throws an
exception (server/3414)
- Make sure ownCloud 8.2 activities also can get displayed
(server/3412)
- Popovermenu backport (server/3286)
- Set vendor during install (server/3426)
- Make sure the file information is available when sending the
email (server/3433)
- Add profile data to provisioning api (server/3259)
- Fix detection of the new iOS app (server/3431)
- Add integration tests for legacy DAV endpoints (server/3445)
- Make sure invalid images don't flood the log file
(server/3440)
- Fix printing backup code (server/3510)
- Fix cookie name (nctoken instead of octoken) (server/3511)
- LDAP's checkPassword should only catch when a user was not
found (server/3493)
- Return unknown free space from nullstorage (server/3508)
- Fix for address book data lost when any user receiving a
share is deleted (server/3499)
- Rename database password toggle (server/3500)
- Popovermenu files css fix (server/3494)
- Add screensharing icon (server/3481)
- Fix misleading wording: searching is affected, not user
access (server/3560)
- Backport of Fix Broken UUID Attribute Detection (server/3528)
* Activity
- Make sure integer like names are still strings (activity/103)
- Fix activities for public uploads (activity/113)
- Show the parent as target when the file was not renamed
(activity/114)
- Fix activities for "Files drop" on external storages
(activity/118)
* SAML & SSO
- Setup account later (user_saml/79)
* Serverinfo
- Fix SQL syntax error on MariaDB 10.0.27 and 10.1.19
(serverinfo/77)
- Don't throw an error when /proc/meminfo is not readable
(serverinfo/76)
* Survey_Client
- Fix problem when checking size with dash in DB name
(survey_client/50)
- Add php-openssl dependency
- upstream update to version 11.0.1
- upstream update to version 11.0.0
- upstream update to version 10.0.1
- upstream update to version 10.0.0
- update spec file
* osc service localrun format_spec_file
* update Source with full URL
* simplify deps mainly for openSUSE
- enable HSTS to prevent the warning "The Strict-Transport-Security
HTTP header is not configured" in admin-page
- turn maintenance:mode off after upgrade
- upstream update to version 9.0.53 (bsc#989998)
- make apache_secure_data more restrictiver
- add missing .user.ini
- move README and README.SELinux to docdor to fix message code
integrity check
- upstream update to version 9.0.52
- initial build nextcloud 9.0.51
OBS-URL: https://build.opensuse.org/request/show/698163
OBS-URL: https://build.opensuse.org/package/show/server:php:applications/nextcloud?expand=0&rev=81
|
||
|---|---|---|
| .gitattributes | ||
| .gitignore | ||
| apache_secure_data | ||
| nextcloud-16.0.0.tar.bz2 | ||
| nextcloud.changes | ||
| nextcloud.spec | ||
| README | ||
| README.SELinux | ||
| README.SUSE | ||
| robots.txt | ||
nextcloud Overview and installation instructions
-----------------------------------------------
Welcome to nextcloud, your self-hosted file sync and share solution.
OwnCloud is open source file sync and share software for everyone from
individuals operating the free Community Edition, to large enterprises and
service providers operating nextcloud Enterprise Edition. nextcloud
provides a safe, secure and compliant file sync and share solution on
servers you control.
With nextcloud you can share one or more folders on your PC, and sync
them with your nextcloud server. Place files in your local shared
directories, and those files are immediately synced to the server, and then
to other PCs via the desktop client. Not near a desktop client? No
problem, simply log in with the web client and manage your files there. The
Android and iOS mobile apps allow you to browse, download and upload photos
and videos. On Android, you may also create, download, edit and upload any
other files, with the correct software installed.
Whether using a mobile device, a workstation, or a web client, nextcloud
provides the ability to put the right files in the right hands at the right
time on any device in one simple-to-use, secure, private and controlled
solution. After all, with nextcloud, it's Your Cloud, Your Data, Your Way.
The Various Elements of nextcloud
--------------------------------
nextcloud comes in three different Editions, with desktop clients and mobile
apps available as add-ons.
The three editions are:
- Community Edition: the free, unsupported, open source version of nextcloud.
This is the same server software that is included in Business and
Enterprise Edition, it is just provided unsupported under AGPL license. It
includes the server side application and the built in web client.
- Business Edition: the certified and supported nextcloud server provided
under AGPL license (support provided by nextcloud, Inc.), including the
desktop clients and intended as a starter pack for small businesses, or as
a PoC for large businesses or service providers.
- Enterprise Edition: the certified and supported nextcloud server provided
under AGPL or nextcloud license, including desktop clients and mobile apps,
available in increments up to an unlimited number of users, and intended
as an enterprise or service provider offering.
While there are three different Editions of nextcloud, the nextcloud server is
open source, and is essentially the same in all three offerings. This
installation guide is designed for installation of the nextcloud server,
a part of all three nextcloud Editions.
For more information on nextcloud Editions, please visit nextcloud.com/overview.
nextcloud is a Web Application
-----------------------------
nextcloud is a web based application that is intended to provide access to
files. As such, understand that once you take an nextcloud instance live, it
must be maintained as you would any other website or server. This means
keeping up with patches to the web server, PHP, your database, as well as
updates to nextcloud itself. Active monitoring of the application and logs
are recommended, SSL connections are a good idea for security reasons, and a
local server soft firewall is just smart - and in most cases part of the
default server setup. Be thorough with nextcloud and your web server, and you
will have the secure file, sync and share solution you are looking for for
many years to come.
Prerequisites
-------------
nextcloud requires a webserver, PHP5 and a database to operate. We support
Apache, though it is possible to run nextcloud on Microsoft's IIS on Windows
7 or Windows Server 2008 R2 via FastCGI. nextcloud recommends Apache and
PHP5, for performance and overhead reasons. For databases, we support
SQLite, MySQL, and PostgreSQL. See "Choosing the Database" for more
information on which database to choose.
Installation Scale
------------------
nextcloud is simple to install with a little technical know-how, and
depending on your situation, can be installed in minutes. However, before
installing nextcloud, it is important to understand what it is. nextcloud is a
PHP based web application, so you also need to install PHP5 and Apache2. You
can install nextcloud on Linux, Windows and Mac servers, as well as in
virtual machine(s), where you install the application is entirely dependent
on the scale of your operations.
nextcloud is highly flexible software, supporting small to massive
implementations. For small installations, you can install all of nextcloud on
an old desktop or workstation, on a single server, or inside a single
virtual machine. For mid-sized installations, you can separate the app and
database server to enhance security and improve scalability, and add a
second app server and MySQL server for redundancy. At the large end of the
installation spectrum, you may have a load balancer out front of many
nextcloud application servers, with a database cluster, and network attached
storage on the back end, enabling massive scalability and performance tuning
for your instance.
For the purposes of this document, the assumption is made that a small to
mid sized installation is the desired outcome, either for personal use, or
as a demo, proof of concept, or pilot.
Choosing the Database
---------------------
When you install nextcloud, first take a hard look at the scale of your
implementation. nextcloud can be installed with MySQL, PostgreSQL or SQLite.
Which you choose is dependent on your environment, the number of users, and
the scale of your implementation. SQLite is a lightweight,
zero-configuration, self contained database engine. The best parts of SQLite
are the ease with which one can implement and use SQLite, and the speed and
low overhead required for it to work. However, this is really designed for
small implementations of nextcloud. In general, it is best to keep the use of
SQLite to personal installations, or to PoC or pilot installations with no
more than 50 users. For these sorts of implementations, SQLite works great.
If you have security concerns, or just don't know which to choose, then we
recommend stepping up to MySQL, as the tradeoff in server overhead is
typically worth the added benefits of a heavier database engine.
If you are installing nextcloud Business or Enterprise Edition, the database
choice is a matter of preference between MySQL and PostgreSQL. While we
recommend MySQL for the large install base, large ecosystem, and the
additional features, such as MySQL clusters, you can use either database. On
first run, nextcloud will configure the instance using your defined database
instance name, location, user name and password. For this to work, you must
first install and start a database, and configure a database user for
nextcloud. For the purposes of this install guide, we will use MySQL.
Installation
------------
Enough of the background stuff, lets get started installing!
Getting Started
---------------
In this section, we will guide you to the links for the software you need to
install to get nextcloud operating. If you have an alternative or preferred
approach to finding and installing Apache, PHP and MySQL, you may use it. On
Linux, though, we highly recommend sticking to the package manager
installations, which will greatly simplify updates, upgrades and un-installs
in the future.
To get started with your nextcloud installation, install the latest Apache
release (as of writing, the latest Apache release is 2.4.1):
Linux: through your package manager
Windows: download from http://httpd.apache.org/download.cgi
Start the web server, and open a browser to localhost to be sure the web
server is installed and operating.
When that is installed, download and install the latest version of PHP (as
of writing, the latest PHP release is 5.4.0):
- Linux: through your package manager. The PHP or nextcloud package
installation will handle these dependencies at the next step, but it is
wise to make sure that these packagesare installed before you load
nextcloud for the first time:
- mod_php
- php-mysql
- php-json
- php-gd
- php-mb_multibyte
- php-ctype
- php-zip
- Windows: download from http://php.net/downloads.php
Note: you will be selecting the FastCGI installation as well, for PHP
support.
Note for Fedora 16 users: please check http://blogs.fsfe.org/samtuke/?p=333
for information on getting php-zip installed!
When that is installed, download and install the latest version of the MySQL
community server (as of writing, the latest MySQL release is 5.6):
- Linux: through your package manager.
- Windows: download from http://dev.mysql.com/downloads/
Mac Users:
If you are running a Mac, the easiest installation for this entire stack
(including the database) is to download the MAMP "one click solution for
setting up your personal web server". This can be found at
http://www.mamp.info/en/index.html .
At this point, you have the necessary prerequisites installed. Now it is
time to configure the database.
Setting up the Database
-----------------------
As already mentioned, nextcloud will automatically create tables inside a
database at first run, but it needs to connect to a running instance of the
database. If you are using SQLite, this is not an issue, as SQLite is
essentially embedded in nextcloud. But, if you are using MySQL or PostgreSQL,
you must install and configure the instance, as well as an nextcloud user.
Please refer to the latest documentation for your database.
http://dev.mysql.com/doc/#manual (5.6)
http://www.postgresql.org/docs/manuals/ (9.1)
Ensure that the database is installed, started, and that you have configured
an nextcloud user with complete rights to create, read, update and delete
tables and records, as this user will be used to create tables at nextcloud
first run, and then to manage users, groups, quota and more during ongoing
operations. For security considerations, we strongly suggest that you do not
use the database root account to access the database from nextcloud.
You may install the nextcloud database on a separate server from the nextcloud
installation. In fact, for the largest nextcloud installations, we recommend
installing a MySQL cluster environment, with multiple load balanced nextcloud
application servers out front, all accessing the shared cluster. Depending
on your hardware, security considerations, and expected load, you may want
to separate the database from the app server. Simply note the username,
password, and address of the database, and enter this information into the
form within nextcloud at first run, and nextcloud will create the instance and
tables.
Configuring PHP
---------------
There are a few default configuration settings that you will want to change
to enable nextcloud to operate more effectively as a self hosted file sync
and share server. When uploading through the web client, nextcloud is
governed by PHP and Apache. As a default, PHP is configured for only 2 MB
uploads. This is not entirely useful, so it is important to increase these
variables to the sizes you want to support on your server.
Point your favorite text editor over to your php.ini file. On different
server operating systems this is located in different places. On openSUSE
and Ubuntu, for example, this is located in /etc/php5/apache2/php.ini
Note: the commend 'find / -name php.ini' can help you locate your php.ini on
Linux.
On Windows, you can find this file within C:/Program Files (x86)/PHP/PHP.ini
Edit the php.ini file, looking for:
- upload_max_filesize = 500 MB
- post_max_size = 600 MB
The defaults for these values are quite small, so change them to to 500 MB
and 600MB, or 1G and 1.2G, for example, and you have adjusted the maximum
file size that can be uploaded at one time.
Make sure you restart your Apache server after these changes, or it will not
take affect!
Note: You will want these two values to be about the same size, with
post_max_size slightly larger to account for headers in the uploaded files.
If you find later that files keep timing out on upload, you may want to also
change these settings in the php.ini file:
max_input_time
memory_limit
max_execution_time
post_max_size
See below for more on php.ini settings from radlinks.com.
PHP.ini settings
- upload_max_filesize and post_max_size
Files are usually POSTed to the webserver in a format known as
'multipart/form-data'. The post_max_size sets the upper limit on the
amount of data that a script can accept in this manner. Ideally this value
should be larger than the value that you set for upload_max_filesize.
It's important to realize that upload_max_filesize is the sum of the sizes
of all the files that you are uploading. post_max_size is the
upload_max_filesize plus the sum of the lengths of all the other fields in
the form plus any mime headers that the encoder might include. Since these
fields are typically small you can often approximate the upload max size
to the post max size.
According to the PHP documentation you can set a MAX_UPLOAD_LIMIT in your
HTML form to suggest a limit to the browser. Our understanding is that
browsers totally ignore this directive and the only solution that can
impose such a client side restriction is our own Rad Upload Applet
- memory_limit
When the PHP engine is handling an incoming POST it needs to keep some of
the incoming data in memory. This directive has any effect only if you
have used the --enable-memory-limit option at configuration time. Setting
too high a value can be very dangerous because if several uploads are
being handled concurrently all available memory will be used up and other
unrelated scripts that consume a lot of memory might effect the whole
server as well.
- max_execution_time and max_input_time
These settings define the maximum life time of the script and the time
that the script should spend in accepting input. If several mega bytes of
data are being transfered max_input_time should be reasonably high. You
can override the setting in the ini file for max_input_time by calling the
set_time_limit() function in your scripts.
Additional IIS Server Upload Step
---------------------------------
Now you have to go back to IIS manager and make one last change to enable
file uploads on the webserver larger than 30MB.
- Go to the start menu, and type in 'iis manager'
- Open IIS Manager
- Select the website you want enable to accept large file uploads
- In the main window in the middle double click on the icon "Request filtering"
- Once the window is opened you will see a bunch of tabs across the top
- On the far right, select "Edit Feature Settings" and modify the
"Maximum allowed content length (bytes)"
In here, you can change this to up to 4.1 GB.
Note: this entry is in BYTES, not KB!
- Click OK and then restart IIS.
Installing nextcloud Server
--------------------------
For Linux we HIGHLY RECOMMEND using your package manager!
- Go to https://download.nextcloud.com/server/
- Select "nextcloud Server", "rpm" and click "Download"
You will be taken to the openSUSE Build Service, where you can select the
OS for the installation, which will take you to the appropriate
repositories for your OS version. When stepping through the installation
process, be sure you remain subscribed to these repositories so that you
can get the latest updates through the package manager!!!
These steps will download and install two packages and their dependencies on
your server:
- nextcloud
- nextcloud-3rdparty
Both are required for nextcloud to function, but for licensing reasons, they
must be packaged separately.
You may also download nextcloud-unsupported packages from the same
repository, following the instructions above, if you would like the
unsupported packages installed as well. These are the packages that are
provided by the community, but for which nextcloud, Inc. does not provide
support. They are not required for nextcloud to function.
Install from source tarball:
Through a manual process of download and extracting the files. There are a
few Linux distributions, as well as Mac and Windows that have no alternative
and will need to use this method. If you are running Linux and can use the
package manager, we recommend you do so because using a Tarball, all updates
and maintenance will have to be handled manually.
- Go to https://download.nextcloud.com/server/releases/
- Select "nextcloud Server", ".tar.bz2" and click "Download"
Once downloaded, extract the archive to a folder of your choice Copy the
archive contents into the root of your web server
- Linux: varies, but examples are /srv/www/htdocs/ or /var/www/html
- Windows: c:/inetpub/wwwroot/
You have just installed the nextcloud application on your server!
Note: there are Linux specific download and installation instructions
available for the Community Edition at
https://docs.nextcloud.org/server/9/admin_manual/
if you need additional details on how to install nextcloud. If you follow those
instructions, just be sure you download the nextcloud application from
https://download.nextcloud.com/server/releasses/ the latest stable and supported version of
nextcloud will always be available at this URL.
Configuration
-------------
After successfully installing nextcloud, you will find a folder in your web
server root called /nextcloud. The entire nextcloud application is installed
in that directory.
- Changing Permissions
Once nextcloud is installed, you need to change permissions so that the web
server user can access and update the nextcloud application and
configuration files.
To do this, go to your root web server directory and change the owner of
the files to the web server.
openSUSE / SLES
- Go to /srv/www/htdocs/
- type: chown -R wwwrun:www nextcloud
Fedora / RHEL
- Go to /var/www/html/
- type: chown -R apache:apache nextcloud
- If you are running SELinux, please read
/usr/share/doc/nextcloud/README.SELinux
Ubuntu
- Go to /var/www
- type: chown -R www-data:www-data nextcloud
Windows
- Navigate your windows explorer over to C:/inetpub/wwwroot/nextcloud (or
your installation directory if you selected something different).
- Right click and select properties.
- Click on the security tab, and click the button "to change permissions,
click edit".
- Select the "users" user from the list, and check the box "write".
- Apply these settings and close
Performing First Run
--------------------
Once all of this is completed, it is time to run the "first run" wizard.
Point your browser over to the instance of nextcloud you are setting up, e.g.
http://localhost/nextcloud
This will open the nextcloud "first run" wizard. On this page, you enter your
desired nextcloud username and password for the administrator, and expand the
little arrow.
You can select the appropriate database here, and enter the database user
name and password, instance name and address. We recommend MySQL as the
database, on this page enter the user name and password you setup for MySQL
earlier, and pick any name for the database instance.
Note: the nextcloud admin password and the MySQL password CANNOT be the same
in any way!
Click next, and the nextcloud server will write to the /nextcloud/config
folder the config.php file, connect to the database and create the tables
nextcloud needs, and then nextcloud should have you logged in as the admin
user in the nextcloud interface. Now you an get started exploring nextcloud,
creating other users and more from the web interface.
Configuring SSL
---------------
Configuring SSL within nextcloud is not difficult, as nextcloud is a web based
application. Simply get a certificate and follow your procedures for
enabling SSL on your web server. If you have are looking for procedures to
follow, you may follow a number of standard online tutorials at Apache.org
or a variety of other sites. They will demonstarte how to create a self
signed certificate, or how to generate a certificate request and get a
certificate authority signed certificate, where to place the certificate on
the server, and how to enable SSL in the Apache configuration files. As
nextcloud is a web application, following these procedures will enable you to
effectively use SSL, and if you choose, leverage SSL on all of your client,
mobile app and web based access to the server. Just remember to close HTTP
and open HTTPS on your server firewall if you would like to force all
clients to use HTTPS.
Desktop Clients
---------------
While all OwnCloud Editions can be accessed by our desktop clients,
only the Business and Enterprise Editions come with support subscriptions
for the client. You can gain access to any of the clients on the
http://dnextcloud.com/download website.
Windows Client Installation
---------------------------
- Go to http://nextcloud.com/download
- Find the nextcloud Windows Client and click Download
- Once downloaded, run the installation wizard
Note: On some Norton Antivirus systems, Norton raises a flag on this client
software. It doesn't say the software is a virus, just that it is unknown to
Norton. Essentially, this is new software from nextcloud, and Norton doesn't
have a record in their database for the file, so it quarantines it. It is a
simple matter to remove it from the quarantine and install the client.
- Once the client is installed, find the application in your Start menu, and
open it. You will be notified that "There is no nextcloud connection
available. Please configure one by clicking on the tray icon." In your
system tray, right click on the nextcloud icon and click configure. This
will take you to the "Create an nextcloud Connection" wizard.
- Here you enter your nextcloud instance address and click next, and then
enter your user name and password and click next.
- The desktop client will attempt to conenct to your server, and if
successful, will try to create the c:/users/'your user name'/nextcloud
directory, and will link this directory to a new folder on the server in
your account it will create called "syncclient". This is the automated
setup wizard. Note: if either of these folders exist already, it will not
link them for security reasons.
- If you want to add folders to Sync on the server, simply right click and
select "Add Folder". This will take you to the "Express Upload Source"
directory, where you can select other folders to sync on your PC, and
connect them to other folders you create on your server.
Note: you cannot sync a parent directory, and then sync a child directory,
as you would be syncing two directories that are essentially the same, which
the server does not allow.
From here, any files or folders put into any synced directory will be
automatically uploaded the server, and server files will automatically be
downloaded to the client. If a conflict is detected, the sync client will
create a file with "conflict" in the name, and you can view and
determine which file to keep and which to delete.
Also note, if you wish to share files, all sharing is enables through the
web client. Log in to an account through a web browser, and select the files
and folders to share, and they will be shared automatically with other users
of nextcloud, or publicly with a read only, shared public link.
Linux Client Installation
-------------------------
- Go to http://nextcloud.com/download
- Find the nextcloud Linux Clients and click Download
- Select the operating system you are working with, the version, and click
the button
- Your package manager will automatically download the client and any
dependencies not already installed. Remember to select to stay subscribed
to the repository so that updates can be easily installed on the Linux
client!!!
- Once the client is installed, find the application in your Start menu, and
open it. You will be notified that "There is no nextcloud connection
available. Please configure one by clicking on the tray icon." In your
system tray, right click on the nextcloud icon and click configure. This
will take you to the "Create an nextcloud Connection" wizard.
- Here you enter your nextcloud instance address and click next, and then
enter your user name and password and click next.
- The desktop client will attempt to connect to your server, and if
successful, will try to create the /home/'your user name'/nextcloud
directory, and will link this directory to a new folder on the server in
your account it will create called "syncclient". This is the
automated setup wizard. Note: if either of these folders exist already, it
will not link them for security reasons.
- If you want to remove an existing folder, or add folders to Sync to the
server, simply right click on the nextcloud system try icon and select
"Add Folder". This will take you to the "Express Upload Source"
directory, where you can select other folders to sync on your
PC, and connect them to other folders you create on your server.
Note: you cannot sync a parent directory, and then sync a child directory,
as you would be syncing two directories with the same content, which the
server does not allow.
From here, any files or folders put into any synced directory will be
automatically uploaded the server, and server files will automatically be
downloaded to the client. If a conflict is detected, the sync client will
create a file with "conflict" in the name, and you can view and
determine which file to keep and which to delete.
If you wish to share files, all sharing is enables through the web client.
Log in to an account through a web browser, and select the files and folders
to share, and they will be shared automatically with other users of
nextcloud, or publicly with a read only, shared public link.
Enjoy your own Cloud!