v2.9.0

Changelog for reva 2.9.0 (2022-09-08)

The following sections list the changes in reva 2.9.0 relevant to
reva users. The changes are ordered by importance.

Summary

• Fix #3206: Add spaceid when listing share jail mount points
• Fix #3194: Adds the rootinfo to storage spaces
• Fix #3201: Fix shareid on PROPFIND
• Fix #3176: Forbid duplicate shares
• Fix #3208: Prevent panic in time conversion
• Fix #3207: Align ocs status code for permission error on publiclink update
• Enh #3193: Add shareid to PROPFIND
• Enh #3180: Add canDeleteAllHomeSpaces permission
• Enh #3203: Added "delete-all-spaces" permission
• Enh #3200: OCS get share now also handle received shares
• Enh #3185: Improve ldap authprovider's error reporting
• Enh #3179: Improve tokeninfo endpoint
• Enh #3171: Cs3 to jsoncs3 share manager migration
• Enh #3204: Make the function flockFile private
• Enh #3192: Enable space members to update shares

Details

• Bugfix #3206: Add spaceid when listing share jail mount points

#3206

• Bugfix #3194: Adds the rootinfo to storage spaces

The sympton of the bug were search results not containing permissions

#3194

• Bugfix #3201: Fix shareid on PROPFIND

Shareid was still not working properly. We need to parse it from the path

#3201

• Bugfix #3176: Forbid duplicate shares

When sending a CreateShare request twice two shares would be created, one being not
accessible. This was blocked by web so the issue wasn't obvious. Now it's forbidden to create
share for a user who already has a share on that same resource

#3176

• Bugfix #3208: Prevent panic in time conversion

#3208

• Bugfix #3881: Align ocs status code for permission error on publiclink update

The ocs status code returned for permission errors on updates of publiclink permissions is now
aligned with the documentation of the OCS share API and the behaviour of ownCloud 10

owncloud/ocis#3881

• Enhancement #3193: Add shareid to PROPFIND

Adds the shareid to the PROPFIND response (in case of shares only)

#3193

• Enhancement #3180: Add canDeleteAllHomeSpaces permission

We added a permission to the admin role in ocis that allows deleting homespaces on user delete.

#3180
#3202
https://github.com/owncloud/ocis/pull/4447/files

• Enhancement #3203: Added "delete-all-spaces" permission

We introduced a new permission "delete-all-spaces", users holding this permission are
allowed to delete any space of any type.

#3203

• Enhancement #4322: OCS get share now also handle received shares

Requesting a specific share can now also correctly map the path to the mountpoint if the
requested share is a received share.

owncloud/ocis#4322
#3200

• Enhancement #3185: Improve ldap authprovider's error reporting

The errorcode returned by the ldap authprovider driver is a bit more explicit now. (i.e. we
return a proper Invalid Credentials error now, when the LDAP Bind operation fails with that)

#3185

• Enhancement #3179: Improve tokeninfo endpoint

We added more information to the tokeninfo endpoint. aliaslink is a bool value indicating if
the permissions are 0. id is the full id of the file. Both are available to all users having the
link token. spaceType (indicating the space type) is only available if the user has native
access

#3179

• Enhancement #3171: Cs3 to jsoncs3 share manager migration

We added a Load() to the jsoncs3 and Dump() to the sc3 share manager. The shareid might need to be
prefixed with a storageid and space id.

#3171
#3195

• Enhancement #3204: Make the function flockFile private

Having that function exported is tempting people to use the func to get the name for calling the
lock functions. That is wrong, as this function is just a helper to generate the lock file name
from a given file to lock.

#3204

• Enhancement #3192: Enable space members to update shares

Enabled space members to update shares which they have not created themselves.

#3192

v2.8.0

Changelog for reva 2.8.0 (2022-08-23)

The following sections list the changes in reva 2.8.0 relevant to
reva users. The changes are ordered by importance.

Summary

• Fix #3158: Add name to the propfind response
• Fix #3157: Fix locking response codes
• Fix #3152: Disable caching of not found stat responses
• Fix #4251: Disable caching
• Chg #3154: Dataproviders now return file metadata
• Enh #3143: Add /app/open-with-web endpoint
• Enh #3156: Added language option to the app provider
• Enh #3148: Add new jsoncs3 share manager

Details

• Bugfix #3158: Add name to the propfind response

Previously the file- or foldername had to be extracted from the href. This is not nice and
doesn't work for alias links.

#3158

• Bugfix #3157: Fix locking response codes

We've fixed the status codes for locking a file that is already locked.

owncloud/ocis#4366
#3157
#3003

• Bugfix #3152: Disable caching of not found stat responses

We no longer cache not found responses to prevent concurrent requests interfering with put
requests.

owncloud/ocis#4251
#3152

• Bugfix #4251: Disable caching

We disabled the cache, because there are race condtions that cause tests to fail.

owncloud/ocis#4251
#3167

• Change #3154: Dataproviders now return file metadata

Dataprovider drivers can now return file metadata. When the resource info contains a file id,
the mtime or an etag, these will be included in the response as the corresponding http headers.

#3154

• Enhancement #3143: Add /app/open-with-web endpoint

We've added an /app/open-with-web endpoint to the app provider, so that clients that are no
browser or have only limited browser access can also open apps with the help of a Web URL.

#3143
owncloud/ocis#4376

• Enhancement #3156: Added language option to the app provider

We've added an language option to the app provider which will in the end be passed to the app a user
opens so that the web ui is displayed in the users language.

owncloud/ocis#4367
#3156
owncloud/ocis#4399

• Enhancement #3148: Add new jsoncs3 share manager

We've added a new jsoncs3 share manager which splits the json file per storage space and caches
data locally.

#3148

v2.7.4

Changelog for reva 2.7.4 (2022-08-10)

The following sections list the changes in reva 2.7.4 relevant to
reva users. The changes are ordered by importance.

Summary

• Fix #3141: Check ListGrants permission when listing shares

Details

• Bugfix #3141: Check ListGrants permission when listing shares

We now check the ListGrants permission when listing outgoing shares. If this permission is
set, users can list all shares in all spaces.

#3141

v2.7.3

Changelog for reva 2.7.3 (2022-08-09)

The following sections list the changes in reva 2.7.3 relevant to
reva users. The changes are ordered by importance.

Summary

• Fix #3109: Fix missing check in MustCheckNodePermissions
• Fix #3086: Fix crash in ldap authprovider
• Fix #3094: Allow removing password from public links
• Fix #3096: Fix user filter
• Fix #3091: Project spaces need no real owner
• Fix #3088: Use correct sublogger
• Enh #3123: Allow stating links that have no permissions
• Enh #3087: Allow to set LDAP substring filter type
• Enh #3098: App provider http endpoint uses Form instead of Query
• Enh #3133: Admins can set quota on all spaces
• Enh #3117: Update go-ldap to v3.4.4
• Enh #3095: Upload expiration and cleanup

Details

• Bugfix #3109: Fix missing check in MustCheckNodePermissions

  We added a missing check to the MustCheckNodePermissions function, so space managers can see
  disabled spaces.

  #3109

• Bugfix #3086: Fix crash in ldap authprovider

  We fixed possible crash in the LDAP authprovider caused by a null pointer derefence, when the
  IDP settings of the userprovider are different from the authprovider.

  #3086

• Bugfix #3094: Allow removing password from public links

  When using cs3 public link share manager passwords would never be removed. We now remove the
  password when getting an update request with empty password field

  #3094

• Bugfix #3096: Fix user filter

  We fixed the user filter to display the users drives properly and allow admins to list other
  users drives.

  #3096
  #3110

• Bugfix #3091: Project spaces need no real owner

  Make it possible to use a non existing user as a space owner.

  #3091
  #3136

• Bugfix #3088: Use correct sublogger

  We no longer log cache updated messages when log level is less verbose than debug.

  #3088

• Enhancement #3123: Allow stating links that have no permissions

  We need a way to resolve the id when we have a token. This also needs to work for links that have no
  permissions assigned

  #3123

• Enhancement #3087: Allow to set LDAP substring filter type

  We introduced new settings for the user- and groupproviders to allow configuring the LDAP
  filter type for substring search. Possible values are: "initial", "final" and "any" to do
  either prefix, suffix or full substring searches.

  #3087

• Enhancement #3098: App provider http endpoint uses Form instead of Query

  We've improved the http endpoint now uses the Form instead of Query to also support
  application/x-www-form-urlencoded parameters on the app provider http endpoint.

  #3098

• Enhancement #3133: Admins can set quota on all spaces

  Admins which have the correct permissions should be able to set quota on all spaces. This is
  implemented via the existing permissions client.

  #3133

• Enhancement #3117: Update go-ldap to v3.4.4

  Updated go-ldap/ldap/v3 to the latest upstream release to include the latest bugfixes.

  #3117

• Enhancement #3095: Upload expiration and cleanup

  We made storage providers aware of upload expiration and added an interface for FS which
  support listing and purging expired uploads.

  We also implemented said interface for decomposedfs.

  #3095
  owncloud/ocis#4256

v2.7.2

Changelog for reva 2.7.2 (2022-07-18)

The following sections list the changes in reva 2.7.2 relevant to
reva users. The changes are ordered by importance.

Summary

• Fix #3079: Allow empty permissions
• Fix #3084: Spaces relatated permissions and providerid cleanup
• Fix #3083: Add space id to ItemTrashed event

Details

• Bugfix #3079: Allow empty permissions

  For alias link we need the ability to set no permission on an link. The permissions will then come
  from the natural permissions the receiving user has on that file/folder

  #3079

• Bugfix #3084: Spaces relatated permissions and providerid cleanup

  Following the CS3 resource id refactoring we reverted a logic check when checking the list all
  spaces permission, fixed some typos and made the storageprovider fill in a missing storage
  provider id.

  #3084

• Bugfix #3083: Add space id to ItemTrashed event

  We fixed the resource IDs in the ItemTrashed events which were missing the recently introduced
  space ID in the resource ID.

  #3083

v2.7.1

Changelog for reva 2.7.1 (2022-07-15)

The following sections list the changes in reva 2.7.1 relevant to
reva users. The changes are ordered by importance.

Summary

• Fix #3080: Make dataproviders return more headers
• Enh #4072: Add user filter

Details

• Bugfix #3080: Make dataproviders return more headers

  Instead of ocdav doing an additional Stat request we now rely on the dataprovider to return the
  necessary metadata information as headers.

  https://github.com/owncloud/reva/issues/3080

• Enhancement #4072: Add user filter

  This PR adds the ability to filter spaces by user-id

  owncloud/ocis#4072

v2.7.0

Changelog for reva 2.7.0 (2022-07-15)

The following sections list the changes in reva 2.7.0 relevant to
reva users. The changes are ordered by importance.

Summary

• Fix #3075: Check permissions of the move operation destination
• Fix #3036: Fix revad with EOS docker image
• Fix #3037: Add uid- and gidNumber to LDAP queries
• Fix #4061: Forbid resharing with higher permissions
• Fix #3017: Removed unused gateway config "commit_share_to_storage_ref"
• Fix #3031: Return proper response code when detecting recursive copy/move operations
• Fix #3071: Make CS3 sharing drivers parse legacy resource id
• Fix #3035: Prevent cross space move
• Fix #3074: Send storage provider and space id to wopi server
• Fix #3022: Improve the sharing internals
• Fix #2977: Test valid filename on spaces tus upload
• Chg #3006: Use spaceID on the cs3api
• Enh #3043: Introduce LookupCtx for index interface
• Enh #3009: Prevent recursive copy/move operations
• Enh #2977: Skip space lookup on space propfind

Details

• Bugfix #3075: Check permissions of the move operation destination

  We now properly check the permissions on the target of move operations.

  owncloud/ocis#4192
  #3075

• Bugfix #3036: Fix revad with EOS docker image

  We've fixed the revad with EOS docker image. Previously the revad binary was build on Alpine and
  not executable on the final RHEL based image.

  #3036

• Bugfix #3037: Add uid- and gidNumber to LDAP queries

  For the EOS storage to work correctly the uid- and gidNumber attributes need to be populated.

  #3037

• Bugfix #4061: Forbid resharing with higher permissions

  When creating a public link from a viewer share a user was able to set editor permissions on that
  link. This was because of a missing check that is added now

  owncloud/ocis#4061
  owncloud/ocis#3881
  owncloud/ocis#4077

• Bugfix #3017: Removed unused gateway config "commit_share_to_storage_ref"

  We've removed the unused gateway configuration option "commit_share_to_storage_ref".

  #3017

• Bugfix #3031: Return proper response code when detecting recursive copy/move operations

  We changed the ocdav response code to "409 - Conflict" when a recursive operation was detected.

  #3031

• Bugfix #3071: Make CS3 sharing drivers parse legacy resource id

  The CS3 public and user sharing drivers will now correct a resource id that is missing a spaceid
  when it can split the storageid.

  #3071

• Bugfix #3035: Prevent cross space move

  Decomposedfs now prevents moving across space boundaries

  #3035

• Bugfix #3074: Send storage provider and space id to wopi server

  We are now concatenating storage provider id and space id into the endpoint that is sent to the
  wopiserver

  #3074

• Bugfix #3022: Improve the sharing internals

  We cleaned up the sharing code validation and comparisons.

  #3022

• Bugfix #2977: Test valid filename on spaces tus upload

  Tus uploads in spaces now also test valid filenames.

  owncloud/ocis#3050
  #2977

• Change #3006: Use spaceID on the cs3api

  We introduced a new spaceID field on the cs3api to implement the spaces feature in a cleaner way.

  #3006

• Enhancement #3043: Introduce LookupCtx for index interface

  The index interface now has a new LookupCtx that can look up multiple values so we can more
  efficiently look up multiple shares by id. It also takes a context so we can pass on the trace
  context to the CS3 backend

  #3043

• Enhancement #3009: Prevent recursive copy/move operations

  We changed the ocs API to prevent copying or moving a folder into one of its children.

  #3009

• Enhancement #2977: Skip space lookup on space propfind

  We now construct the space id from the /dav/spaces URL intead of making a request to the
  registry.

  owncloud/ocis#1277
  owncloud/ocis#2144
  owncloud/ocis#3073
  #2977

v2.6.1

Changelog for reva 2.6.1 (2022-06-27)

The following sections list the changes in reva 2.6.1 relevant to
reva users. The changes are ordered by importance.

Summary

• Fix #2998: Fix 0-byte-uploads
• Enh #3983: Add capability for alias links
• Enh #3000: Make less stat requests
• Enh #3003: Distinguish GRPC FAILED_PRECONDITION and ABORTED codes
• Enh #3005: Remove unused HomeMapping variable

Details

• Bugfix #2998: Fix 0-byte-uploads

  We fixed a problem with 0-byte uploads by using TouchFile instead of going through TUS
  (decomposedfs and owncloudsql storage drivers only for now).

  #2998

• Enhancement #3983: Add capability for alias links

  For better UX clients need a way to discover if alias links are supported by the server. We added a
  capability under "files_sharing/public/alias"

  owncloud/ocis#3983
  #2991

• Enhancement #3000: Make less stat requests

  The /dav/spaces endpoint now constructs a reference instead of making a lookup grpc call,
  reducing the number of requests.

  #3000

• Enhancement #3003: Distinguish GRPC FAILED_PRECONDITION and ABORTED codes

  Webdav distinguishes between 412 precondition failed for if match errors for locks or etags,
  uses 405 Method Not Allowed when trying to MKCOL an already existing collection and 409
  Conflict when intermediate collections are missing.

  The CS3 GRPC status codes are modeled after
  https://github.com/googleapis/googleapis/blob/master/google/rpc/code.proto. When
  trying to use the error codes to distinguish these cases on a storageprovider CreateDir call we
  can map ALREADY_EXISTS to 405, FAILED_PRECONDITION to 409 and ABORTED to 412.

  Unfortunately, we currently use and map FAILED_PRECONDITION to 412. I assume, because the
  naming is very similar to PreconditionFailed. However the GRPC docs are very clear that
  ABORTED should be used, specifically mentioning etags and locks.

  With this PR we internally clean up the usage in the decomposedfs and mapping in the ocdav
  handler.

  #3003
  #3010

• Enhancement #3005: Remove unused HomeMapping variable

  We have removed the unused HomeMapping variable from the gateway.

  #3005

v2.6.0

Changelog for reva 2.6.0 (2022-06-21)

The following sections list the changes in reva 2.6.0 relevant to
reva users. The changes are ordered by importance.

Summary

• Fix #2985: Make stat requests route based on storage providerid
• Fix #2987: Let archiver handle all error codes
• Fix #2994: Fix errors when loading shares
• Fix #2996: Do not close share dump channels
• Fix #2993: Remove unused configuration
• Fix #2950: Fix sharing with space ref
• Fix #2991: Make sharesstorageprovider get accepted share
• Chg #2877: Enable resharing
• Chg #2984: Update CS3Apis
• Enh #3753: Add executant to the events
• Enh #2820: Instrument GRPC and HTTP requests with OTel
• Enh #2975: Leverage shares space storageid and type when listing shares
• Enh #3882: Explicitly return on ocdav move requests with body
• Enh #2932: Stat accepted shares mountpoints, configure existing share updates
• Enh #2944: Improve owncloudsql connection management
• Enh #2962: Per service TracerProvider
• Enh #2911: Allow for dumping and loading shares
• Enh #2938: Sharpen tooling

Details

• Bugfix #2985: Make stat requests route based on storage providerid

  The gateway now uses a filter mask to only fetch the root id of a space for stat requests. This
  allows the spaces registry to determine the responsible storage provider without querying
  the storageproviders.

  #2985

• Bugfix #2987: Let archiver handle all error codes

  We fixed the archiver handler to handle all error codes

  #2987

• Bugfix #2994: Fix errors when loading shares

  We fixed a bug where loading shares and associated received shares ran into issues when
  handling them simultaneously.

  #2994

• Bugfix #2996: Do not close share dump channels

  We no longer close the channels when dumping shares, it's the responsibility of the caller.

  #2996

• Bugfix #2993: Remove unused configuration

  We've fixed removed unused configuration:

  • insecure from the dataprovider - timeout from the dataprovider - tmp_folder from the
    storageprovider

  #2993

• Bugfix #2950: Fix sharing with space ref

  We've fixed a bug where share requests with path attribute present ignored the space_ref
  attribute. We now give the space_ref attribute precedence over the path attribute.

  #2950

• Bugfix #2991: Make sharesstorageprovider get accepted share

  The sharesstorageprovider now gets an accepted share instead of filtering all shares.

  #2991

• Change #2877: Enable resharing

  This will allow resharing of files. - All Viewers and Editors are now able to reshare files and
  folders - One can still edit their own shares, even when loosing share permissions - Viewers and
  Editors in a space are not affected

  #2877

• Change #2984: Update CS3Apis

  Updated the CS3Apis to make use of field_mask and pagination for list requests.

  #2984

• Enhancement #3753: Add executant to the events

  Added the executant field to all events.

  owncloud/ocis#3753
  #2945

• Enhancement #2820: Instrument GRPC and HTTP requests with OTel

  We've added the enduser.id tag to the HTTP and GRPC requests. We've fixed the tracer names.
  We've decorated the traces with the hostname.

  #2820

• Enhancement #2975: Leverage shares space storageid and type when listing shares

  The list shares call now also fills the storageid to allow the space registry to directly route
  requests to the correct storageprovider. The spaces registry will now also skip
  storageproviders that are not configured for a requested type, causing type 'personal'
  requests to skip the sharestorageprovider.

  #2975
  #2980

• Enhancement #3882: Explicitly return on ocdav move requests with body

  Added a check if a ocdav move request contains a body. If it does a 415 415 (Unsupported Media
  Type) will be returned.

  owncloud/ocis#3882
  #2974

• Enhancement #2932: Stat accepted shares mountpoints, configure existing share updates

  #2932

• Enhancement #2944: Improve owncloudsql connection management

  The owncloudsql storagedriver is now aware of the request context and will close db
  connections when http connections are closed or time out. We also increased the max number of
  open connections from 10 to 100 to prevent a corner case where all connections were used but idle
  connections were not freed.

  #2944

• Enhancement #2962: Per service TracerProvider

  To improve tracing we create separate TracerProviders per service now. This is especially
  helpful when running multiple reva services in a single process (like e.g. oCIS does).

  #2962
  #2978

• Enhancement #2911: Allow for dumping and loading shares

  We now have interfaces for dumpable and loadable share manages which can be used to migrate
  shares between share managers

  #2911

• Enhancement #2938: Sharpen tooling

  • We increased the linting timeout to 10min which caused some release builds to time out

  #2938

v1.19.0

Changelog for reva 1.19.0 (2022-06-16)

The following sections list the changes in reva 1.19.0 relevant to
reva users. The changes are ordered by importance.

Summary

• Fix #2693: Support editnew actions from MS Office
• Fix #2588: Dockerfile.revad-ceph to use the right base image
• Fix #2216: Make hardcoded HTTP "insecure" options configurable
• Fix #2860: Use eos-all parent image
• Fix #2499: Removed check DenyGrant in resource permission
• Fix #2712: Update Dockerfile.revad.eos to not break the image
• Fix #2789: Minor fixes in cephfs and eosfs
• Fix #2285: Accept new userid idp format
• Fix #2608: Respect the tracing_service_name config variable
• Fix #2841: Refactors logger to have ctx
• Fix #2759: Made uid, gid claims parsing more robust in OIDC auth provider
• Fix #2842: Fix download action in SDK
• Fix #2555: Fix site accounts endpoints
• Fix #2675: Updates Makefile according to latest go standards
• Fix #2572: Wait for nats server on middleware start
• Chg #2596: Remove hash from public link urls
• Chg #2559: Do not encode webDAV ids to base64
• Chg #2561: Merge oidcmapping auth manager into oidc
• Enh #2698: Make capabilities endpoint public, authenticate users is present
• Enh #2813: Support custom mimetypes in the WOPI appprovider driver
• Enh #2515: Enabling tracing by default if not explicitly disabled
• Enh #160: Implement the CS3 Lock API in the EOS storage driver
• Enh #2686: Features for favorites xattrs in EOS, cache for scope expansion
• Enh #2494: Use sys ACLs for file permissions
• Enh #2522: Introduce events
• Enh #2685: Enable federated account access
• Enh #2801: Use functional options for client gRPC connections
• Enh #2921: Use standard header for checksums
• Enh #2480: Group based capabilities
• Enh #1787: Add support for HTTP TPC
• Enh #2560: Mentix PromSD extensions
• Enh #2613: Externalize custom mime types configuration for storage providers
• Enh #2163: Nextcloud-based share manager for pkg/ocm/share
• Enh #2696: Preferences driver refactor and cbox sql implementation
• Enh #2052: New CS3API datatx methods
• Enh #2738: Site accounts site-global settings
• Enh #2672: Further Site Accounts improvements
• Enh #2549: Site accounts improvements
• Enh #2488: Cephfs support keyrings with IDs
• Enh #2514: Reuse ocs role objects in other drivers
• Enh #2752: Refactor the rest user and group provider drivers
• Enh #2946: Make user share indicators read from the share provider service

Details

• Bugfix #2693: Support editnew actions from MS Office

  This fixes the incorrect behavior when creating new xlsx and pptx files, as MS Office supports
  the editnew action and it must be used for newly created files instead of the normal edit action.

  #2693

• Bugfix #2588: Dockerfile.revad-ceph to use the right base image

  In Aug2021 https://hub.docker.com/r/ceph/daemon-base was moved to quay.ceph.io and the
  builds for this image were failing for some weeks after January.

  #2588

• Bugfix #2216: Make hardcoded HTTP "insecure" options configurable

  HTTP "insecure" options must be configurable and default to false.

  #2216

• Bugfix #2860: Use eos-all parent image

  #2860

• Bugfix #2499: Removed check DenyGrant in resource permission

  When adding a denial permission

  #2499

• Bugfix #2712: Update Dockerfile.revad.eos to not break the image

  #2712

• Bugfix #2789: Minor fixes in cephfs and eosfs

  #2789

• Bugfix #2285: Accept new userid idp format

  The format for userid idp changed and
  this broke the ocmd
  tutorial
  This PR makes the provider authorizer interceptor accept both the old and the new string
  format.

  #2285
  #2285
  See
  and

• Bugfix #2608: Respect the tracing_service_name config variable

  #2608

• Bugfix #2841: Refactors logger to have ctx

  This fixes the native library loggers which are not associated with the context and thus are not
  handled properly in the reva runtime.

  #2841

• Bugfix #2759: Made uid, gid claims parsing more robust in OIDC auth provider

  This fix makes sure the uid and gid claims are defined at init time, and that the necessary
  typecasts are performed correctly when authenticating users. A comment was added that in case
  the uid/gid claims are missing AND that no mapping takes place, a user entity is returned with
  uid = gid = 0.

  #2759

• Bugfix #2842: Fix download action in SDK

  The download action was no longer working in the SDK (used by our testing probes); this PR fixes
  the underlying issue.

  #2842

• Bugfix #2555: Fix site accounts endpoints

  This PR fixes small bugs in the site accounts endpoints.

  #2555

• Bugfix #2675: Updates Makefile according to latest go standards

  Earlier, we were using go get to install packages. Now, we are using go install to install
  packages

  #2675
  #2747

• Bugfix #2572: Wait for nats server on middleware start

  Use a retry mechanism to connect to the nats server when it is not ready yet

  #2572

• Change #2596: Remove hash from public link urls

  Public link urls do not contain the hash anymore, this is needed to support the ocis and web
  history mode.

  #2596
  owncloud/ocis#3109
  owncloud/web#6363

• Change #2559: Do not encode webDAV ids to base64

  We removed the base64 encoding of the IDs and use the format ! with a !
  delimiter. As a reserved delimiter it is URL safe. The IDs will be XML and JSON encoded as
  necessary.

  #2559

• Change #2561: Merge oidcmapping auth manager into oidc

  The oidcmapping auth manager was created as a separate package to ease testing. As it has now
  been tested also as a pure OIDC auth provider without mapping, and as the code is largely
  refactored, it makes sense to merge it back so to maintain a single OIDC manager.

  #2561

• Enhancement #2698: Make capabilities endpoint public, authenticate users is present

  #2698

• Enhancement #2813: Support custom mimetypes in the WOPI appprovider driver

  Similarly to the storage provider, also the WOPI appprovider driver now supports custom mime
  types. Also fixed a small typo.

  #2813

• Enhancement #2515: Enabling tracing by default if not explicitly disabled

  #2515

• Enhancement #160: Implement the CS3 Lock API in the EOS storage driver

  cs3org/cs3apis#160
  #2444

• Enhancement #2686: Features for favorites xattrs in EOS, cache for scope expansion

  #2686

• Enhancement #2494: Use sys ACLs for file permissions

  #2494

• Enhancement #2522: Introduce events

  This will introduce events into the system. Events are a simple way to bring information from
  one service to another. Read pkg/events/example and subfolders for more information

  #2522

• Enhancement #2685: Enable federated account access

  #2685

• Enhancement #2801: Use functional options for client gRPC connections

  This will add more ability to configure the client side gRPC connections.

  #2801

• Enhancement #2921: Use standard header for checksums

  On HEAD requests, we currently expose checksums (when available) using the
  ownCloud-specific header, which is typically consumed by the sync clients.

  This patch adds the standard Digest header using the standard format detailed at
  https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Digest. This is e.g. used
  by GFAL/Rucio clients in the context of managed transfers of datasets.

  #2921

• Enhancement #2480: Group based capabilities

  We can now return specific capabilities for users who belong to certain configured groups.

  #2480

• Enhancement #1787: Add support for HTTP TPC

  We have added support for HTTP Third Party Copy. This allows remote data transfers between
  storages managed by either two different reva servers, or a reva server and a Grid
  (WLCG/ESCAPE) site server.

  Such remote transfers are expected to be driven by
  GFAL, the underlying library used by
  FTS, and Rucio.

  In addition, the oidcmapping package has been refactored to support the standard OIDC use
  cases as well when no mapping is defined.

  #1787
  #2007

• Enhancement #2560: Mentix PromSD extensions

  The Mentix Prometheus SD scrape targets are now split into one file per service type, making
  health checks configuration easier. Furthermore, the local file connector for mesh data and
  the site registration endpoint have been dropped, as they aren't needed any...