-
Notifications
You must be signed in to change notification settings - Fork 187
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
users
: GetUserByClaim still not fully working for objectGUID
#7469
Labels
Comments
I think the bug is this if condition https://github.com/cs3org/reva/blob/edge/pkg/utils/ldap/identity.go#L529 |
rhafer
added a commit
to rhafer/reva
that referenced
this issue
Oct 12, 2023
GetUserByClaim didn't correctly work for claim "userid" when "idIsOctetString" is set to true. Because the LDAP filter was not correctly hex-escaped. Fixes: owncloud/ocis#7469
rhafer
added a commit
to rhafer/reva
that referenced
this issue
Oct 12, 2023
GetUserByClaim didn't correctly work for claim "userid" when "idIsOctetString" is set to true. Because the LDAP filter was not correctly hex-escaped. Fixes: owncloud/ocis#7469
rhafer
added a commit
to cs3org/reva
that referenced
this issue
Oct 12, 2023
GetUserByClaim didn't correctly work for claim "userid" when "idIsOctetString" is set to true. Because the LDAP filter was not correctly hex-escaped. Fixes: owncloud/ocis#7469
rhafer
added a commit
to rhafer/ocis
that referenced
this issue
Oct 12, 2023
To get cs3org/reva#4249 Fixes: owncloud#7469
rhafer
added a commit
to rhafer/ocis
that referenced
this issue
Oct 12, 2023
To get cs3org/reva#4249 Fixes: owncloud#7469
rhafer
added a commit
to rhafer/reva
that referenced
this issue
Oct 12, 2023
GetUserByClaim didn't correctly work for claim "userid" when "idIsOctetString" is set to true. Because the LDAP filter was not correctly hex-escaped. Fixes: owncloud/ocis#7469 (cherry picked from commit 9b24c17)
rhafer
added a commit
to rhafer/reva
that referenced
this issue
Oct 12, 2023
GetUserByClaim didn't correctly work for claim "userid" when "idIsOctetString" is set to true. Because the LDAP filter was not correctly hex-escaped. Fixes: owncloud/ocis#7469 (cherry picked from commit 9b24c17)
rhafer
added a commit
to rhafer/ocis
that referenced
this issue
Oct 12, 2023
To get cs3org/reva#4249 Fixes: owncloud#7469
github-project-automation
bot
moved this from In progress
to Done
in Infinite Scale Team Board
Oct 12, 2023
rhafer
added a commit
to cs3org/reva
that referenced
this issue
Oct 16, 2023
GetUserByClaim didn't correctly work for claim "userid" when "idIsOctetString" is set to true. Because the LDAP filter was not correctly hex-escaped. Fixes: owncloud/ocis#7469 (cherry picked from commit 9b24c17)
Closed
12 tasks
stavros-k
referenced
this issue
in truecharts/public
Jan 3, 2024
This PR contains the following updates: | Package | Update | Change | |---|---|---| | [2fauth/2fauth](https://togithub.com/Bubka/2FAuth) | patch | `5.0.0` -> `5.0.2` | | appsmith/appsmith-ce | patch | `v1.9.50` -> `v1.9.57` | | [caronc/apprise](https://togithub.com/caronc/apprise-api) | patch | `v0.9.5` -> `0.9.7` | | [common](https://togithub.com/truecharts/apps/tree/master/charts/common) ([source](https://togithub.com/truecharts/apps)) | patch | `17.2.18` -> `17.2.21` | | dbeaver/cloudbeaver | patch | `23.3.0` -> `23.3.1` | | docker.bintray.io/jfrog/artifactory-oss | patch | `7.71.4` -> `7.71.11` | | docker.io/jetbrains/youtrack | patch | `2023.2.20316` -> `2023.2.22656` | | [ghcr.io/alexjustesen/speedtest-tracker](https://togithub.com/alexjustesen/speedtest-tracker) | patch | `v0.13.1` -> `v0.13.4` | | [ghcr.io/linuxserver/wireshark](https://togithub.com/linuxserver/docker-wireshark/packages) ([source](https://togithub.com/linuxserver/docker-wireshark)) | patch | `4.0.10` -> `4.0.11` | | ghcr.io/muety/telepush | patch | `4.1.1` -> `4.1.2` | | [ghcr.io/pushbits/server](https://togithub.com/pushbits/server) | patch | `0.10.2` -> `0.10.3` | | ghcr.io/seriousm4x/upsnap | patch | `4.1.3` -> `4.1.4` | | ghost | patch | `5.73.1` -> `5.73.2` | | [grafana/loki](https://togithub.com/grafana/loki) | patch | `2.9.2` -> `2.9.3` | | gristlabs/grist | patch | `1.1.7` -> `1.1.10` | | [inventree/inventree](https://togithub.com/inventree/InvenTree) | patch | `0.12.8` -> `0.12.10` | | [jlesage/dupeguru](https://togithub.com/jlesage/docker-dupeguru) | patch | `v23.11.2` -> `v23.11.3` | | leantime/leantime | patch | `2.4.7` -> `2.4.8` | | [netboxcommunity/netbox](https://togithub.com/netbox-community/netbox-docker) | patch | `v3.6.5-2.7.0` -> `v3.6.9-2.7.0` | | noisedash/noisedash | patch | `v0.6.12` -> `v0.6.13` | | [openproject/community](https://togithub.com/opf/openproject) | patch | `13.0.7` -> `13.0.8` | | [owncloud/ocis](https://togithub.com/owncloud/ocis) | patch | `4.0.2` -> `4.0.5` | | [privatebin/pdo](https://togithub.com/PrivateBin/docker-nginx-fpm-alpine) | patch | `1.6.0` -> `1.6.2` | | pydio/cells | patch | `4.3.1` -> `4.3.2` | | selexin/cleanarr | patch | `v2.5.0` -> `v2.5.1` | | stonith404/pingvin-share | patch | `v0.20.2` -> `v0.20.3` | | typesense/typesense | patch | `0.25.1` -> `0.25.2` | | [vabene1111/recipes](https://togithub.com/TandoorRecipes/recipes) | patch | `1.5.6` -> `1.5.10` | | zusam/zusam | patch | `0.5.4` -> `0.5.5` | --- > [!WARNING] > Some dependencies could not be looked up. Check the Dependency Dashboard for more information. --- ### Release Notes <details> <summary>Bubka/2FAuth (2fauth/2fauth)</summary> ### [`v5.0.2`](https://togithub.com/Bubka/2FAuth/blob/HEAD/changelog.md#502---2023-12-29) [Compare Source](https://togithub.com/Bubka/2FAuth/compare/v5.0.1...v5.0.2) ##### Fixed - [issue #​265](https://togithub.com/Bubka/2FAuth/issues/265) Version 5.0.1 doesn't display colored countdown segments ### [`v5.0.1`](https://togithub.com/Bubka/2FAuth/blob/HEAD/changelog.md#501---2023-12-29) [Compare Source](https://togithub.com/Bubka/2FAuth/compare/v5.0.0...v5.0.1) ##### Fixed - [issue #​262](https://togithub.com/Bubka/2FAuth/issues/262) Missing custom base url support </details> <details> <summary>caronc/apprise-api (caronc/apprise)</summary> ### [`v0.9.7`](https://togithub.com/caronc/apprise-api/releases/tag/v0.9.7): Apprise API Release v0.9.7 [Compare Source](https://togithub.com/caronc/apprise-api/compare/v0.9.6...v0.9.7) #### 💡 Features - Refactored to work with [Apprise v1.7.x](https://togithub.com/caronc/apprise/releases/tag/v1.7.0) - Group Configuration now working via APi (introduced in Apprise v1.6.x) - Improved documentation #### 🐞 Bugfixes - n/a ### [`v0.9.6`](https://togithub.com/caronc/apprise-api/releases/tag/v0.9.6): Apprise API Release v0.9.6 [Compare Source](https://togithub.com/caronc/apprise-api/compare/0.9.5...v0.9.6) #### 💡 Features - Multi-stage Docker changes that brought image size down from ~600MB to just 70MB! 🚀 - New Configuration Generator button added to make it easier to create obfuscated (and non-guessable) unique configuration keys. - Dark mode color improvements - Added more documentation and dynamic examples based on `{key}` being viewed to show how it can be triggered using `curl` and or the `apprise` CLI tool #### 🐞 Bugfixes - Light/Dark Theme saved in session fix ([#​141](https://togithub.com/caronc/apprise-api/issues/141)) </details> <details> <summary>alexjustesen/speedtest-tracker (ghcr.io/alexjustesen/speedtest-tracker)</summary> ### [`v0.13.4`](https://togithub.com/alexjustesen/speedtest-tracker/releases/tag/v0.13.4) [Compare Source](https://togithub.com/alexjustesen/speedtest-tracker/compare/v0.13.3...v0.13.4) #### What's Changed - Laravel 10.33.0 Shift by [@​alexjustesen](https://togithub.com/alexjustesen) in [https://github.com/alexjustesen/speedtest-tracker/pull/920](https://togithub.com/alexjustesen/speedtest-tracker/pull/920) - \[Feature] Added home nav item by [@​alexjustesen](https://togithub.com/alexjustesen) in [https://github.com/alexjustesen/speedtest-tracker/pull/921](https://togithub.com/alexjustesen/speedtest-tracker/pull/921) - \[Feature] Made more result columns sortable by [@​alexjustesen](https://togithub.com/alexjustesen) in [https://github.com/alexjustesen/speedtest-tracker/pull/926](https://togithub.com/alexjustesen/speedtest-tracker/pull/926) - Release v0.13.4 by [@​alexjustesen](https://togithub.com/alexjustesen) in [https://github.com/alexjustesen/speedtest-tracker/pull/927](https://togithub.com/alexjustesen/speedtest-tracker/pull/927) **Full Changelog**: alexjustesen/speedtest-tracker@v0.13.3...v0.13.4 ### [`v0.13.3`](https://togithub.com/alexjustesen/speedtest-tracker/releases/tag/v0.13.3) [Compare Source](https://togithub.com/alexjustesen/speedtest-tracker/compare/v0.13.2...v0.13.3) #### What's Changed - \[Bug] Don't return SAMEORIGIN twice (Hotfix Release v0.13.3) by [@​alexjustesen](https://togithub.com/alexjustesen) in [https://github.com/alexjustesen/speedtest-tracker/pull/904](https://togithub.com/alexjustesen/speedtest-tracker/pull/904) **Full Changelog**: alexjustesen/speedtest-tracker@v0.13.2...v0.13.3 ### [`v0.13.2`](https://togithub.com/alexjustesen/speedtest-tracker/releases/tag/v0.13.2) [Compare Source](https://togithub.com/alexjustesen/speedtest-tracker/compare/v0.13.1...v0.13.2) #### What's Changed - Added public dashboard enabled setting to general settings by [@​frknakk](https://togithub.com/frknakk) in [https://github.com/alexjustesen/speedtest-tracker/pull/856](https://togithub.com/alexjustesen/speedtest-tracker/pull/856) - Laravel 10.28.0 Shift by [@​alexjustesen](https://togithub.com/alexjustesen) in [https://github.com/alexjustesen/speedtest-tracker/pull/861](https://togithub.com/alexjustesen/speedtest-tracker/pull/861) - Laravel 10.31.0 Shift by [@​alexjustesen](https://togithub.com/alexjustesen) in [https://github.com/alexjustesen/speedtest-tracker/pull/890](https://togithub.com/alexjustesen/speedtest-tracker/pull/890) - \[Chore] Build and publish dev image workflow by [@​alexjustesen](https://togithub.com/alexjustesen) in [https://github.com/alexjustesen/speedtest-tracker/pull/898](https://togithub.com/alexjustesen/speedtest-tracker/pull/898) - \[Feature] Allow public dashboard to be embedded by [@​alexjustesen](https://togithub.com/alexjustesen) in [https://github.com/alexjustesen/speedtest-tracker/pull/897](https://togithub.com/alexjustesen/speedtest-tracker/pull/897) - \[Bug] missed a dash in allow from by [@​alexjustesen](https://togithub.com/alexjustesen) in [https://github.com/alexjustesen/speedtest-tracker/pull/899](https://togithub.com/alexjustesen/speedtest-tracker/pull/899) - \[Bug] Use same origin as header default by [@​alexjustesen](https://togithub.com/alexjustesen) in [https://github.com/alexjustesen/speedtest-tracker/pull/900](https://togithub.com/alexjustesen/speedtest-tracker/pull/900) - Release v0.13.2 by [@​alexjustesen](https://togithub.com/alexjustesen) in [https://github.com/alexjustesen/speedtest-tracker/pull/901](https://togithub.com/alexjustesen/speedtest-tracker/pull/901) #### New Contributors - [@​frknakk](https://togithub.com/frknakk) made their first contribution in [https://github.com/alexjustesen/speedtest-tracker/pull/856](https://togithub.com/alexjustesen/speedtest-tracker/pull/856) **Full Changelog**: alexjustesen/speedtest-tracker@v0.13.1...v0.13.2 </details> <details> <summary>pushbits/server (ghcr.io/pushbits/server)</summary> ### [`v0.10.3`](https://togithub.com/pushbits/server/releases/tag/v0.10.3) [Compare Source](https://togithub.com/pushbits/server/compare/v0.10.2...v0.10.3) #### Changelog - [`35f9573`](https://togithub.com/pushbits/server/commit/35f9573) Update Go version </details> <details> <summary>grafana/loki (grafana/loki)</summary> ### [`v2.9.3`](https://togithub.com/grafana/loki/releases/tag/v2.9.3) [Compare Source](https://togithub.com/grafana/loki/compare/v2.9.2...v2.9.3) This is release `v2.9.3` of Loki. ##### Notable changes: This release includes a few small fixes and CVE patches - Upgrade otelhttp from 0.40.0 -> 0.44.0 and base alpine image from 3.18.3 -> 3.18.5 to fix a few CVES (CVE-2023-45142, CVE-2022-21698, CVE-2023-5363). - Fix querying ingester for label values with a matcher (previously didn't respect the matcher). - Ensure all lifecycler cfgs ref a valid IPv6 addr and port combination ##### Installation: The components of Loki are currently distributed in plain binary form and as Docker container images. Choose what fits your use-case best. ##### Docker container: - https://hub.docker.com/r/grafana/loki - https://hub.docker.com/r/grafana/promtail ```bash $ docker pull "grafana/loki:2.9.3" $ docker pull "grafana/promtail:2.9.3" ``` ##### Binary We provide pre-compiled binary executables for the most common operating systems and architectures. Choose from the assets below for the application and architecture matching your system. Example for `Loki` on the `linux` operating system and `amd64` architecture: ```bash $ curl -O -L "https://github.com/grafana/loki/releases/download/v2.9.3/loki-linux-amd64.zip" ### extract the binary $ unzip "loki-linux-amd64.zip" ### make sure it is executable $ chmod a+x "loki-linux-amd64" ``` </details> <details> <summary>inventree/InvenTree (inventree/inventree)</summary> ### [`v0.12.10`](https://togithub.com/inventree/InvenTree/releases/tag/0.12.10) [Compare Source](https://togithub.com/inventree/InvenTree/compare/0.12.8...0.12.10) <!-- Release notes generated using configuration in .github/release.yml at 0.12.x --> #### What's Changed ##### Bug Fixes - Cherry pick changes from [`fe0d9c1`](https://togithub.com/inventree/InvenTree/commit/fe0d9c19230013471a2100fbc1f41c7694f318fa) by [@​SchrodingersGat](https://togithub.com/SchrodingersGat) in [https://github.com/inventree/InvenTree/pull/5917](https://togithub.com/inventree/InvenTree/pull/5917) - Bug fix: distinct query by [@​SchrodingersGat](https://togithub.com/SchrodingersGat) in [https://github.com/inventree/InvenTree/pull/5960](https://togithub.com/inventree/InvenTree/pull/5960) - Revert base requirements for docker build by [@​SchrodingersGat](https://togithub.com/SchrodingersGat) in [https://github.com/inventree/InvenTree/pull/5963](https://togithub.com/inventree/InvenTree/pull/5963) ##### Devops / Setup Changes - Update docker workflow action by [@​SchrodingersGat](https://togithub.com/SchrodingersGat) in [https://github.com/inventree/InvenTree/pull/5958](https://togithub.com/inventree/InvenTree/pull/5958) - Backport docker updates by [@​SchrodingersGat](https://togithub.com/SchrodingersGat) in [https://github.com/inventree/InvenTree/pull/5962](https://togithub.com/inventree/InvenTree/pull/5962) **Full Changelog**: inventree/InvenTree@0.12.9...0.12.10 </details> <details> <summary>jlesage/docker-dupeguru (jlesage/dupeguru)</summary> ### [`v23.11.3`](https://togithub.com/jlesage/docker-dupeguru/releases/tag/v23.11.3): Version 23.11.3 [Compare Source](https://togithub.com/jlesage/docker-dupeguru/compare/v23.11.2...v23.11.3) Changes in this release: - Updated baseimage to version 4.5.2, which brings the following changes: - Fixed issue that would cause the helper that takes ownership of a directory to fail when using a very high user or group ID. </details> <details> <summary>opf/openproject (openproject/community)</summary> ### [`v13.0.8`](https://togithub.com/opf/openproject/releases/tag/v13.0.8): OpenProject 13.0.8 [Compare Source](https://togithub.com/opf/openproject/compare/v13.0.7...v13.0.8) ### OpenProject 13.0.8 Release date: 2023-12-05 We released [OpenProject 13.0.8](https://community.openproject.com/versions/1942). The release contains several bug fixes and we recommend updating to the newest version. <!--more--> ##### Bug fixes and changes - Fixed: Logging time using "My spent time" widget returns previous day (likely time zone issue) \[[#​49779](https://community.openproject.com/wp/49779)] - Fixed: Internal server error upon login via Microsoft Entra ID (AzureAD) \[[#​50167](https://community.openproject.com/wp/50167)] - Fixed: IFC conversion fails (libhostfxr.so not found) (reintroduced bug) \[[#​50172](https://community.openproject.com/wp/50172)] - Fixed: +Custom field button moved left (instead of being on the right) of the Custom fields page in Project settings \[[#​50285](https://community.openproject.com/wp/50285)] - Fixed: Make Nextcloud synchronization more stable in 13.0. \[[#​51265](https://community.openproject.com/wp/51265)] ##### Contributions A big thanks to community members for reporting bugs and helping us identifying and providing fixes. Special thanks for reporting and finding bugs go to Daniel Grabowski, Jeffrey McDole </details> <details> <summary>owncloud/ocis (owncloud/ocis)</summary> ### [`v4.0.5`](https://togithub.com/owncloud/ocis/releases/tag/v4.0.5): 4.0.5 [Compare Source](https://togithub.com/owncloud/ocis/compare/v4.0.4...v4.0.5) ### Changes in 4.0.5 #### Summary - Bugfix - Fix reva config of frontend service to avoid misleading error logs: [#​7934](https://togithub.com/owncloud/ocis/pull/7934) - Bugfix - Fix trace ids: [#​8026](https://togithub.com/owncloud/ocis/pull/8026) - Bugfix - Do not purge expired upload sessions that are still postprocessing: [#​7941](https://togithub.com/owncloud/ocis/pull/7941) - Enhancement - Add cli commands for trash-binq: [#​7936](https://togithub.com/owncloud/ocis/pull/7936) #### Details - Bugfix - Fix reva config of frontend service to avoid misleading error logs: [#​7934](https://togithub.com/owncloud/ocis/pull/7934) We set an empty Credentials chain for the frontend service now. In ocis all non-reva token authentication is handled by the proxy. This avoids irritating error messages about the missing 'auth-bearer' service. [https://github.com/owncloud/ocis/issues/6692](https://togithub.com/owncloud/ocis/issues/6692) [https://github.com/owncloud/ocis/pull/7934](https://togithub.com/owncloud/ocis/pull/7934)7[https://github.com/owncloud/ocis/pull/7453](https://togithub.com/owncloud/ocis/pull/7453)u[https://github.com/cs3org/reva/pull/4396](https://togithub.com/cs3org/reva/pull/4396)v[https://github.com/cs3org/reva/pull/4241](https://togithub.com/cs3org/reva/pull/4241)g/reva/pull/4241 - Bugfix - Fix trace ids: [#​8026](https://togithub.com/owncloud/ocis/pull/8026) We changed the default tracing to produce non-empty traceids and fixed a problem where traces got disconnected further down the stack. [https://github.com/owncloud/ocis/pull/8026](https://togithub.com/owncloud/ocis/pull/8026) - Bugfix - Do not purge expired upload sessions that are still postprocessing: [#​7941](https://togithub.com/owncloud/ocis/pull/7941) [https://github.com/owncloud/ocis/pull/7941](https://togithub.com/owncloud/ocis/pull/7941) [https://github.com/owncloud/ocis/pull/7859](https://togithub.com/owncloud/ocis/pull/7859)7[https://github.com/owncloud/ocis/pull/7958](https://togithub.com/owncloud/ocis/pull/7958)ull/7958 - Enhancement - Add cli commands for trash-binq: [#​7936](https://togithub.com/owncloud/ocis/pull/7936) We added the `list` and `restore` commands to the trash-bin items to the CLI [https://github.com/owncloud/ocis/issues/7845](https://togithub.com/owncloud/ocis/issues/7845) [https://github.com/owncloud/ocis/pull/7936](https://togithub.com/owncloud/ocis/pull/7936)7936 ### [`v4.0.4`](https://togithub.com/owncloud/ocis/blob/HEAD/CHANGELOG.md#Changelog-for-404-2023-12-07) [Compare Source](https://togithub.com/owncloud/ocis/compare/v4.0.3...v4.0.4) The following sections list the changes for 4.0.4. [4.0.4]: https://togithub.com/owncloud/ocis/compare/v4.0.3...v4.0.4 #### Summary - Enhancement - Update reva to improve trashbin listing: [#​7858](https://togithub.com/owncloud/ocis/pull/7858) #### Details - Enhancement - Update reva to improve trashbin listing: [#​7858](https://togithub.com/owncloud/ocis/pull/7858) #### Changelog for reva 2.13.3 - Enhancement [cs3org/reva#4377](https://togithub.com/cs3org/reva/pull/4377): Handle trashbin file listings concurrently [https://github.com/owncloud/ocis/pull/7858](https://togithub.com/owncloud/ocis/pull/7858) ### [`v4.0.3`](https://togithub.com/owncloud/ocis/blob/HEAD/CHANGELOG.md#Changelog-for-403-2023-11-24) [Compare Source](https://togithub.com/owncloud/ocis/compare/v4.0.2...v4.0.3) The following sections list the changes for 4.0.3. [4.0.3]: https://togithub.com/owncloud/ocis/compare/v4.0.2...v4.0.3 #### Summary - Bugfix - Bump reva to 2.16.2: [#​7512](https://togithub.com/owncloud/ocis/pull/7512) - Bugfix - Token storage config fixed: [#​7546](https://togithub.com/owncloud/ocis/pull/7546) - Enhancement - Support spec violating AD FS access token issuer: [#​7138](https://togithub.com/owncloud/ocis/pull/7138) - Enhancement - Update web to v7.1.2: [#​7798](https://togithub.com/owncloud/ocis/pull/7798) #### Details - Bugfix - Bump reva to 2.16.2: [#​7512](https://togithub.com/owncloud/ocis/pull/7512) - Bugfix [cs3org/reva#4251](https://togithub.com/cs3org/reva/pull/4251): ldap: fix GetUserByClaim for binary encoded UUIDs [https://github.com/owncloud/ocis/issues/7469](https://togithub.com/owncloud/ocis/issues/7469) [https://github.com/owncloud/ocis/pull/7512](https://togithub.com/owncloud/ocis/pull/7512)7512 - Bugfix - Token storage config fixed: [#​7546](https://togithub.com/owncloud/ocis/pull/7546) The token storage config in the config.json for web was missing when it was set to `false`. [https://github.com/owncloud/ocis/issues/7462](https://togithub.com/owncloud/ocis/issues/7462) [https://github.com/owncloud/ocis/pull/7546](https://togithub.com/owncloud/ocis/pull/7546)7546 - Enhancement - Support spec violating AD FS access token issuer: [#​7138](https://togithub.com/owncloud/ocis/pull/7138) AD FS `/adfs/.well-known/openid-configuration` has an optional `access_token_issuer` which, in violation of the OpenID Connect spec, takes precedence over `issuer`. [https://github.com/owncloud/ocis/pull/7138](https://togithub.com/owncloud/ocis/pull/7138) - Enhancement - Update web to v7.1.2: [#​7798](https://togithub.com/owncloud/ocis/pull/7798) Tags: web We updated ownCloud Web to v7.1.2. Please refer to the changelog (linked) for details on the web release. #### Summary \* Bugfix [owncloud/web#9833](https://togithub.com/owncloud/web/pull/9833): Resolving external URLs \* Bugfix [owncloud/web#9868](https://togithub.com/owncloud/web/pull/9868): Respect "details"-query on private links \* Bugfix [owncloud/web#9913](https://togithub.com/owncloud/web/pull/9913): Private link resolving via share jail ID [https://github.com/owncloud/ocis/pull/7798](https://togithub.com/owncloud/ocis/pull/7798) https://github.com/owncloud/web/releases/tag/v7.1.2 </details> <details> <summary>TandoorRecipes/recipes (vabene1111/recipes)</summary> ### [`v1.5.10`](https://togithub.com/TandoorRecipes/recipes/releases/tag/1.5.10) [Compare Source](https://togithub.com/TandoorRecipes/recipes/compare/1.5.9...1.5.10) - **added** property editor to quickly edit properties for all foods on a given recipe - **improved** error messages when importing recipes / other places (thanks to [jrester](https://togithub.com/jrester) [#​2728](https://togithub.com/TandoorRecipes/recipes/issues/2728)) - **improved** adding to the meal plan from the recipe context menu now has a default end date - **improved** lots of documentation about the installation/update process (thanks to [@​smilerz](https://togithub.com/smilerz) [#​2758](https://togithub.com/TandoorRecipes/recipes/issues/2758)) - **improved** made `to_date` in meal plan api optional - **changed** renamed `TIMEZONE` environment variable to `TZ`, old is deprecated but will likely stay for a long time (thanks to [@​smilerz](https://togithub.com/smilerz) [#​2758](https://togithub.com/TandoorRecipes/recipes/issues/2758)) - **changed** no longer show warning on property view when individual values are 0 as that might be on purpose - **changed** automatically open the ingredient editor in a new tab - **fixed** meal plan items breaking when spanning multiple weeks/periods [#​2678](https://togithub.com/TandoorRecipes/recipes/issues/2678) - **fixed** error when URL importing recipes with to long descriptions (thanks to [@​smilerz](https://togithub.com/smilerz) [#​2763](https://togithub.com/TandoorRecipes/recipes/issues/2763)) - **fixed** issue with the youtube importer - **fixed** database connection strings with port numbers (thanks to [tourn](https://togithub.com/tourn) [#​2771](https://togithub.com/TandoorRecipes/recipes/issues/2771)) - **fixed** copying recipes with properties would link properties together [#​2720](https://togithub.com/TandoorRecipes/recipes/issues/2720) - **fixed** description overlays breaking obscured by time information [#​2743](https://togithub.com/TandoorRecipes/recipes/issues/2743) (thanks [flomero](https://togithub.com/flomero) for helping) - **updated** some dependencies ### [`v1.5.9`](https://togithub.com/TandoorRecipes/recipes/releases/tag/1.5.9) [Compare Source](https://togithub.com/TandoorRecipes/recipes/compare/1.5.8...1.5.9)⚠️ Tandoor Version `1.5.7` updates to Django `4.2` which [removes support for postgres 11](https://docs.djangoproject.com/en/4.2/releases/4.2/#dropped-support-for-postgresql-11). See [FAQ](https://docs.tandoor.dev/faq/#how-can-i-upgrade-postgres-major-versions) for notes on how to upgrade. - **fixed** error with space image for non logged in / non spaced views [#​2751](https://togithub.com/TandoorRecipes/recipes/issues/2751) (thanks to [@​smilerz](https://togithub.com/smilerz) [#​2753](https://togithub.com/TandoorRecipes/recipes/issues/2753)) ### [`v1.5.8`](https://togithub.com/TandoorRecipes/recipes/releases/tag/1.5.8) [Compare Source](https://togithub.com/TandoorRecipes/recipes/compare/1.5.6...1.5.8)⚠️ Tandoor Version `1.5.7` updates to Django `4.2` which [removes support for postgres 11](https://docs.djangoproject.com/en/4.2/releases/4.2/#dropped-support-for-postgresql-11). See [FAQ](https://docs.tandoor.dev/faq/#how-can-i-upgrade-postgres-major-versions) for notes on how to upgrade. - **fixed** constraint on meal type uniqueness breaking migrations for some users </details> --- ### Configuration 📅 **Schedule**: Branch creation - "before 10pm on monday" in timezone Europe/Amsterdam, Automerge - At any time (no schedule defined). 🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 👻 **Immortal**: This PR will be recreated if closed unmerged. Get [config help](https://togithub.com/renovatebot/renovate/discussions) if that's undesired. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://togithub.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzNy4xMTUuMCIsInVwZGF0ZWRJblZlciI6IjM3LjExOC4wIiwidGFyZ2V0QnJhbmNoIjoibWFzdGVyIn0=-->
GabrielBarzen
referenced
this issue
in GabrielBarzen/charts
Feb 2, 2024
This PR contains the following updates: | Package | Update | Change | |---|---|---| | [2fauth/2fauth](https://togithub.com/Bubka/2FAuth) | patch | `5.0.0` -> `5.0.2` | | appsmith/appsmith-ce | patch | `v1.9.50` -> `v1.9.57` | | [caronc/apprise](https://togithub.com/caronc/apprise-api) | patch | `v0.9.5` -> `0.9.7` | | [common](https://togithub.com/truecharts/apps/tree/master/charts/common) ([source](https://togithub.com/truecharts/apps)) | patch | `17.2.18` -> `17.2.21` | | dbeaver/cloudbeaver | patch | `23.3.0` -> `23.3.1` | | docker.bintray.io/jfrog/artifactory-oss | patch | `7.71.4` -> `7.71.11` | | docker.io/jetbrains/youtrack | patch | `2023.2.20316` -> `2023.2.22656` | | [ghcr.io/alexjustesen/speedtest-tracker](https://togithub.com/alexjustesen/speedtest-tracker) | patch | `v0.13.1` -> `v0.13.4` | | [ghcr.io/linuxserver/wireshark](https://togithub.com/linuxserver/docker-wireshark/packages) ([source](https://togithub.com/linuxserver/docker-wireshark)) | patch | `4.0.10` -> `4.0.11` | | ghcr.io/muety/telepush | patch | `4.1.1` -> `4.1.2` | | [ghcr.io/pushbits/server](https://togithub.com/pushbits/server) | patch | `0.10.2` -> `0.10.3` | | ghcr.io/seriousm4x/upsnap | patch | `4.1.3` -> `4.1.4` | | ghost | patch | `5.73.1` -> `5.73.2` | | [grafana/loki](https://togithub.com/grafana/loki) | patch | `2.9.2` -> `2.9.3` | | gristlabs/grist | patch | `1.1.7` -> `1.1.10` | | [inventree/inventree](https://togithub.com/inventree/InvenTree) | patch | `0.12.8` -> `0.12.10` | | [jlesage/dupeguru](https://togithub.com/jlesage/docker-dupeguru) | patch | `v23.11.2` -> `v23.11.3` | | leantime/leantime | patch | `2.4.7` -> `2.4.8` | | [netboxcommunity/netbox](https://togithub.com/netbox-community/netbox-docker) | patch | `v3.6.5-2.7.0` -> `v3.6.9-2.7.0` | | noisedash/noisedash | patch | `v0.6.12` -> `v0.6.13` | | [openproject/community](https://togithub.com/opf/openproject) | patch | `13.0.7` -> `13.0.8` | | [owncloud/ocis](https://togithub.com/owncloud/ocis) | patch | `4.0.2` -> `4.0.5` | | [privatebin/pdo](https://togithub.com/PrivateBin/docker-nginx-fpm-alpine) | patch | `1.6.0` -> `1.6.2` | | pydio/cells | patch | `4.3.1` -> `4.3.2` | | selexin/cleanarr | patch | `v2.5.0` -> `v2.5.1` | | stonith404/pingvin-share | patch | `v0.20.2` -> `v0.20.3` | | typesense/typesense | patch | `0.25.1` -> `0.25.2` | | [vabene1111/recipes](https://togithub.com/TandoorRecipes/recipes) | patch | `1.5.6` -> `1.5.10` | | zusam/zusam | patch | `0.5.4` -> `0.5.5` | --- > [!WARNING] > Some dependencies could not be looked up. Check the Dependency Dashboard for more information. --- ### Release Notes <details> <summary>Bubka/2FAuth (2fauth/2fauth)</summary> ### [`v5.0.2`](https://togithub.com/Bubka/2FAuth/blob/HEAD/changelog.md#502---2023-12-29) [Compare Source](https://togithub.com/Bubka/2FAuth/compare/v5.0.1...v5.0.2) ##### Fixed - [issue #&truecharts#8203;265](https://togithub.com/Bubka/2FAuth/issues/265) Version 5.0.1 doesn't display colored countdown segments ### [`v5.0.1`](https://togithub.com/Bubka/2FAuth/blob/HEAD/changelog.md#501---2023-12-29) [Compare Source](https://togithub.com/Bubka/2FAuth/compare/v5.0.0...v5.0.1) ##### Fixed - [issue #&truecharts#8203;262](https://togithub.com/Bubka/2FAuth/issues/262) Missing custom base url support </details> <details> <summary>caronc/apprise-api (caronc/apprise)</summary> ### [`v0.9.7`](https://togithub.com/caronc/apprise-api/releases/tag/v0.9.7): Apprise API Release v0.9.7 [Compare Source](https://togithub.com/caronc/apprise-api/compare/v0.9.6...v0.9.7) #### 💡 Features - Refactored to work with [Apprise v1.7.x](https://togithub.com/caronc/apprise/releases/tag/v1.7.0) - Group Configuration now working via APi (introduced in Apprise v1.6.x) - Improved documentation #### 🐞 Bugfixes - n/a ### [`v0.9.6`](https://togithub.com/caronc/apprise-api/releases/tag/v0.9.6): Apprise API Release v0.9.6 [Compare Source](https://togithub.com/caronc/apprise-api/compare/0.9.5...v0.9.6) #### 💡 Features - Multi-stage Docker changes that brought image size down from ~600MB to just 70MB! 🚀 - New Configuration Generator button added to make it easier to create obfuscated (and non-guessable) unique configuration keys. - Dark mode color improvements - Added more documentation and dynamic examples based on `{key}` being viewed to show how it can be triggered using `curl` and or the `apprise` CLI tool #### 🐞 Bugfixes - Light/Dark Theme saved in session fix ([#&truecharts#8203;141](https://togithub.com/caronc/apprise-api/issues/141)) </details> <details> <summary>alexjustesen/speedtest-tracker (ghcr.io/alexjustesen/speedtest-tracker)</summary> ### [`v0.13.4`](https://togithub.com/alexjustesen/speedtest-tracker/releases/tag/v0.13.4) [Compare Source](https://togithub.com/alexjustesen/speedtest-tracker/compare/v0.13.3...v0.13.4) #### What's Changed - Laravel 10.33.0 Shift by [@&truecharts#8203;alexjustesen](https://togithub.com/alexjustesen) in [https://github.com/alexjustesen/speedtest-tracker/pull/920](https://togithub.com/alexjustesen/speedtest-tracker/pull/920) - \[Feature] Added home nav item by [@&truecharts#8203;alexjustesen](https://togithub.com/alexjustesen) in [https://github.com/alexjustesen/speedtest-tracker/pull/921](https://togithub.com/alexjustesen/speedtest-tracker/pull/921) - \[Feature] Made more result columns sortable by [@&truecharts#8203;alexjustesen](https://togithub.com/alexjustesen) in [https://github.com/alexjustesen/speedtest-tracker/pull/926](https://togithub.com/alexjustesen/speedtest-tracker/pull/926) - Release v0.13.4 by [@&truecharts#8203;alexjustesen](https://togithub.com/alexjustesen) in [https://github.com/alexjustesen/speedtest-tracker/pull/927](https://togithub.com/alexjustesen/speedtest-tracker/pull/927) **Full Changelog**: alexjustesen/speedtest-tracker@v0.13.3...v0.13.4 ### [`v0.13.3`](https://togithub.com/alexjustesen/speedtest-tracker/releases/tag/v0.13.3) [Compare Source](https://togithub.com/alexjustesen/speedtest-tracker/compare/v0.13.2...v0.13.3) #### What's Changed - \[Bug] Don't return SAMEORIGIN twice (Hotfix Release v0.13.3) by [@&truecharts#8203;alexjustesen](https://togithub.com/alexjustesen) in [https://github.com/alexjustesen/speedtest-tracker/pull/904](https://togithub.com/alexjustesen/speedtest-tracker/pull/904) **Full Changelog**: alexjustesen/speedtest-tracker@v0.13.2...v0.13.3 ### [`v0.13.2`](https://togithub.com/alexjustesen/speedtest-tracker/releases/tag/v0.13.2) [Compare Source](https://togithub.com/alexjustesen/speedtest-tracker/compare/v0.13.1...v0.13.2) #### What's Changed - Added public dashboard enabled setting to general settings by [@&truecharts#8203;frknakk](https://togithub.com/frknakk) in [https://github.com/alexjustesen/speedtest-tracker/pull/856](https://togithub.com/alexjustesen/speedtest-tracker/pull/856) - Laravel 10.28.0 Shift by [@&truecharts#8203;alexjustesen](https://togithub.com/alexjustesen) in [https://github.com/alexjustesen/speedtest-tracker/pull/861](https://togithub.com/alexjustesen/speedtest-tracker/pull/861) - Laravel 10.31.0 Shift by [@&truecharts#8203;alexjustesen](https://togithub.com/alexjustesen) in [https://github.com/alexjustesen/speedtest-tracker/pull/890](https://togithub.com/alexjustesen/speedtest-tracker/pull/890) - \[Chore] Build and publish dev image workflow by [@&truecharts#8203;alexjustesen](https://togithub.com/alexjustesen) in [https://github.com/alexjustesen/speedtest-tracker/pull/898](https://togithub.com/alexjustesen/speedtest-tracker/pull/898) - \[Feature] Allow public dashboard to be embedded by [@&truecharts#8203;alexjustesen](https://togithub.com/alexjustesen) in [https://github.com/alexjustesen/speedtest-tracker/pull/897](https://togithub.com/alexjustesen/speedtest-tracker/pull/897) - \[Bug] missed a dash in allow from by [@&truecharts#8203;alexjustesen](https://togithub.com/alexjustesen) in [https://github.com/alexjustesen/speedtest-tracker/pull/899](https://togithub.com/alexjustesen/speedtest-tracker/pull/899) - \[Bug] Use same origin as header default by [@&truecharts#8203;alexjustesen](https://togithub.com/alexjustesen) in [https://github.com/alexjustesen/speedtest-tracker/pull/900](https://togithub.com/alexjustesen/speedtest-tracker/pull/900) - Release v0.13.2 by [@&truecharts#8203;alexjustesen](https://togithub.com/alexjustesen) in [https://github.com/alexjustesen/speedtest-tracker/pull/901](https://togithub.com/alexjustesen/speedtest-tracker/pull/901) #### New Contributors - [@&truecharts#8203;frknakk](https://togithub.com/frknakk) made their first contribution in [https://github.com/alexjustesen/speedtest-tracker/pull/856](https://togithub.com/alexjustesen/speedtest-tracker/pull/856) **Full Changelog**: alexjustesen/speedtest-tracker@v0.13.1...v0.13.2 </details> <details> <summary>pushbits/server (ghcr.io/pushbits/server)</summary> ### [`v0.10.3`](https://togithub.com/pushbits/server/releases/tag/v0.10.3) [Compare Source](https://togithub.com/pushbits/server/compare/v0.10.2...v0.10.3) #### Changelog - [`35f9573`](https://togithub.com/pushbits/server/commit/35f9573) Update Go version </details> <details> <summary>grafana/loki (grafana/loki)</summary> ### [`v2.9.3`](https://togithub.com/grafana/loki/releases/tag/v2.9.3) [Compare Source](https://togithub.com/grafana/loki/compare/v2.9.2...v2.9.3) This is release `v2.9.3` of Loki. ##### Notable changes: This release includes a few small fixes and CVE patches - Upgrade otelhttp from 0.40.0 -> 0.44.0 and base alpine image from 3.18.3 -> 3.18.5 to fix a few CVES (CVE-2023-45142, CVE-2022-21698, CVE-2023-5363). - Fix querying ingester for label values with a matcher (previously didn't respect the matcher). - Ensure all lifecycler cfgs ref a valid IPv6 addr and port combination ##### Installation: The components of Loki are currently distributed in plain binary form and as Docker container images. Choose what fits your use-case best. ##### Docker container: - https://hub.docker.com/r/grafana/loki - https://hub.docker.com/r/grafana/promtail ```bash $ docker pull "grafana/loki:2.9.3" $ docker pull "grafana/promtail:2.9.3" ``` ##### Binary We provide pre-compiled binary executables for the most common operating systems and architectures. Choose from the assets below for the application and architecture matching your system. Example for `Loki` on the `linux` operating system and `amd64` architecture: ```bash $ curl -O -L "https://github.com/grafana/loki/releases/download/v2.9.3/loki-linux-amd64.zip" ### extract the binary $ unzip "loki-linux-amd64.zip" ### make sure it is executable $ chmod a+x "loki-linux-amd64" ``` </details> <details> <summary>inventree/InvenTree (inventree/inventree)</summary> ### [`v0.12.10`](https://togithub.com/inventree/InvenTree/releases/tag/0.12.10) [Compare Source](https://togithub.com/inventree/InvenTree/compare/0.12.8...0.12.10) <!-- Release notes generated using configuration in .github/release.yml at 0.12.x --> #### What's Changed ##### Bug Fixes - Cherry pick changes from [`fe0d9c1`](https://togithub.com/inventree/InvenTree/commit/fe0d9c19230013471a2100fbc1f41c7694f318fa) by [@&truecharts#8203;SchrodingersGat](https://togithub.com/SchrodingersGat) in [https://github.com/inventree/InvenTree/pull/5917](https://togithub.com/inventree/InvenTree/pull/5917) - Bug fix: distinct query by [@&truecharts#8203;SchrodingersGat](https://togithub.com/SchrodingersGat) in [https://github.com/inventree/InvenTree/pull/5960](https://togithub.com/inventree/InvenTree/pull/5960) - Revert base requirements for docker build by [@&truecharts#8203;SchrodingersGat](https://togithub.com/SchrodingersGat) in [https://github.com/inventree/InvenTree/pull/5963](https://togithub.com/inventree/InvenTree/pull/5963) ##### Devops / Setup Changes - Update docker workflow action by [@&truecharts#8203;SchrodingersGat](https://togithub.com/SchrodingersGat) in [https://github.com/inventree/InvenTree/pull/5958](https://togithub.com/inventree/InvenTree/pull/5958) - Backport docker updates by [@&truecharts#8203;SchrodingersGat](https://togithub.com/SchrodingersGat) in [https://github.com/inventree/InvenTree/pull/5962](https://togithub.com/inventree/InvenTree/pull/5962) **Full Changelog**: inventree/InvenTree@0.12.9...0.12.10 </details> <details> <summary>jlesage/docker-dupeguru (jlesage/dupeguru)</summary> ### [`v23.11.3`](https://togithub.com/jlesage/docker-dupeguru/releases/tag/v23.11.3): Version 23.11.3 [Compare Source](https://togithub.com/jlesage/docker-dupeguru/compare/v23.11.2...v23.11.3) Changes in this release: - Updated baseimage to version 4.5.2, which brings the following changes: - Fixed issue that would cause the helper that takes ownership of a directory to fail when using a very high user or group ID. </details> <details> <summary>opf/openproject (openproject/community)</summary> ### [`v13.0.8`](https://togithub.com/opf/openproject/releases/tag/v13.0.8): OpenProject 13.0.8 [Compare Source](https://togithub.com/opf/openproject/compare/v13.0.7...v13.0.8) ### OpenProject 13.0.8 Release date: 2023-12-05 We released [OpenProject 13.0.8](https://community.openproject.com/versions/1942). The release contains several bug fixes and we recommend updating to the newest version. <!--more--> ##### Bug fixes and changes - Fixed: Logging time using "My spent time" widget returns previous day (likely time zone issue) \[[#&truecharts#8203;49779](https://community.openproject.com/wp/49779)] - Fixed: Internal server error upon login via Microsoft Entra ID (AzureAD) \[[#&truecharts#8203;50167](https://community.openproject.com/wp/50167)] - Fixed: IFC conversion fails (libhostfxr.so not found) (reintroduced bug) \[[#&truecharts#8203;50172](https://community.openproject.com/wp/50172)] - Fixed: +Custom field button moved left (instead of being on the right) of the Custom fields page in Project settings \[[#&truecharts#8203;50285](https://community.openproject.com/wp/50285)] - Fixed: Make Nextcloud synchronization more stable in 13.0. \[[#&truecharts#8203;51265](https://community.openproject.com/wp/51265)] ##### Contributions A big thanks to community members for reporting bugs and helping us identifying and providing fixes. Special thanks for reporting and finding bugs go to Daniel Grabowski, Jeffrey McDole </details> <details> <summary>owncloud/ocis (owncloud/ocis)</summary> ### [`v4.0.5`](https://togithub.com/owncloud/ocis/releases/tag/v4.0.5): 4.0.5 [Compare Source](https://togithub.com/owncloud/ocis/compare/v4.0.4...v4.0.5) ### Changes in 4.0.5 #### Summary - Bugfix - Fix reva config of frontend service to avoid misleading error logs: [#&truecharts#8203;7934](https://togithub.com/owncloud/ocis/pull/7934) - Bugfix - Fix trace ids: [#&truecharts#8203;8026](https://togithub.com/owncloud/ocis/pull/8026) - Bugfix - Do not purge expired upload sessions that are still postprocessing: [#&truecharts#8203;7941](https://togithub.com/owncloud/ocis/pull/7941) - Enhancement - Add cli commands for trash-binq: [#&truecharts#8203;7936](https://togithub.com/owncloud/ocis/pull/7936) #### Details - Bugfix - Fix reva config of frontend service to avoid misleading error logs: [#&truecharts#8203;7934](https://togithub.com/owncloud/ocis/pull/7934) We set an empty Credentials chain for the frontend service now. In ocis all non-reva token authentication is handled by the proxy. This avoids irritating error messages about the missing 'auth-bearer' service. [https://github.com/owncloud/ocis/issues/6692](https://togithub.com/owncloud/ocis/issues/6692) [https://github.com/owncloud/ocis/pull/7934](https://togithub.com/owncloud/ocis/pull/7934)7[https://github.com/owncloud/ocis/pull/7453](https://togithub.com/owncloud/ocis/pull/7453)u[https://github.com/cs3org/reva/pull/4396](https://togithub.com/cs3org/reva/pull/4396)v[https://github.com/cs3org/reva/pull/4241](https://togithub.com/cs3org/reva/pull/4241)g/reva/pull/4241 - Bugfix - Fix trace ids: [#&truecharts#8203;8026](https://togithub.com/owncloud/ocis/pull/8026) We changed the default tracing to produce non-empty traceids and fixed a problem where traces got disconnected further down the stack. [https://github.com/owncloud/ocis/pull/8026](https://togithub.com/owncloud/ocis/pull/8026) - Bugfix - Do not purge expired upload sessions that are still postprocessing: [#&truecharts#8203;7941](https://togithub.com/owncloud/ocis/pull/7941) [https://github.com/owncloud/ocis/pull/7941](https://togithub.com/owncloud/ocis/pull/7941) [https://github.com/owncloud/ocis/pull/7859](https://togithub.com/owncloud/ocis/pull/7859)7[https://github.com/owncloud/ocis/pull/7958](https://togithub.com/owncloud/ocis/pull/7958)ull/7958 - Enhancement - Add cli commands for trash-binq: [#&truecharts#8203;7936](https://togithub.com/owncloud/ocis/pull/7936) We added the `list` and `restore` commands to the trash-bin items to the CLI [https://github.com/owncloud/ocis/issues/7845](https://togithub.com/owncloud/ocis/issues/7845) [https://github.com/owncloud/ocis/pull/7936](https://togithub.com/owncloud/ocis/pull/7936)7936 ### [`v4.0.4`](https://togithub.com/owncloud/ocis/blob/HEAD/CHANGELOG.md#Changelog-for-404-2023-12-07) [Compare Source](https://togithub.com/owncloud/ocis/compare/v4.0.3...v4.0.4) The following sections list the changes for 4.0.4. [4.0.4]: https://togithub.com/owncloud/ocis/compare/v4.0.3...v4.0.4 #### Summary - Enhancement - Update reva to improve trashbin listing: [#&truecharts#8203;7858](https://togithub.com/owncloud/ocis/pull/7858) #### Details - Enhancement - Update reva to improve trashbin listing: [#&truecharts#8203;7858](https://togithub.com/owncloud/ocis/pull/7858) #### Changelog for reva 2.13.3 - Enhancement [cs3org/reva#4377](https://togithub.com/cs3org/reva/pull/4377): Handle trashbin file listings concurrently [https://github.com/owncloud/ocis/pull/7858](https://togithub.com/owncloud/ocis/pull/7858) ### [`v4.0.3`](https://togithub.com/owncloud/ocis/blob/HEAD/CHANGELOG.md#Changelog-for-403-2023-11-24) [Compare Source](https://togithub.com/owncloud/ocis/compare/v4.0.2...v4.0.3) The following sections list the changes for 4.0.3. [4.0.3]: https://togithub.com/owncloud/ocis/compare/v4.0.2...v4.0.3 #### Summary - Bugfix - Bump reva to 2.16.2: [#&truecharts#8203;7512](https://togithub.com/owncloud/ocis/pull/7512) - Bugfix - Token storage config fixed: [#&truecharts#8203;7546](https://togithub.com/owncloud/ocis/pull/7546) - Enhancement - Support spec violating AD FS access token issuer: [#&truecharts#8203;7138](https://togithub.com/owncloud/ocis/pull/7138) - Enhancement - Update web to v7.1.2: [#&truecharts#8203;7798](https://togithub.com/owncloud/ocis/pull/7798) #### Details - Bugfix - Bump reva to 2.16.2: [#&truecharts#8203;7512](https://togithub.com/owncloud/ocis/pull/7512) - Bugfix [cs3org/reva#4251](https://togithub.com/cs3org/reva/pull/4251): ldap: fix GetUserByClaim for binary encoded UUIDs [https://github.com/owncloud/ocis/issues/7469](https://togithub.com/owncloud/ocis/issues/7469) [https://github.com/owncloud/ocis/pull/7512](https://togithub.com/owncloud/ocis/pull/7512)7512 - Bugfix - Token storage config fixed: [#&truecharts#8203;7546](https://togithub.com/owncloud/ocis/pull/7546) The token storage config in the config.json for web was missing when it was set to `false`. [https://github.com/owncloud/ocis/issues/7462](https://togithub.com/owncloud/ocis/issues/7462) [https://github.com/owncloud/ocis/pull/7546](https://togithub.com/owncloud/ocis/pull/7546)7546 - Enhancement - Support spec violating AD FS access token issuer: [#&truecharts#8203;7138](https://togithub.com/owncloud/ocis/pull/7138) AD FS `/adfs/.well-known/openid-configuration` has an optional `access_token_issuer` which, in violation of the OpenID Connect spec, takes precedence over `issuer`. [https://github.com/owncloud/ocis/pull/7138](https://togithub.com/owncloud/ocis/pull/7138) - Enhancement - Update web to v7.1.2: [#&truecharts#8203;7798](https://togithub.com/owncloud/ocis/pull/7798) Tags: web We updated ownCloud Web to v7.1.2. Please refer to the changelog (linked) for details on the web release. #### Summary \* Bugfix [owncloud/web#9833](https://togithub.com/owncloud/web/pull/9833): Resolving external URLs \* Bugfix [owncloud/web#9868](https://togithub.com/owncloud/web/pull/9868): Respect "details"-query on private links \* Bugfix [owncloud/web#9913](https://togithub.com/owncloud/web/pull/9913): Private link resolving via share jail ID [https://github.com/owncloud/ocis/pull/7798](https://togithub.com/owncloud/ocis/pull/7798) https://github.com/owncloud/web/releases/tag/v7.1.2 </details> <details> <summary>TandoorRecipes/recipes (vabene1111/recipes)</summary> ### [`v1.5.10`](https://togithub.com/TandoorRecipes/recipes/releases/tag/1.5.10) [Compare Source](https://togithub.com/TandoorRecipes/recipes/compare/1.5.9...1.5.10) - **added** property editor to quickly edit properties for all foods on a given recipe - **improved** error messages when importing recipes / other places (thanks to [jrester](https://togithub.com/jrester) [#&truecharts#8203;2728](https://togithub.com/TandoorRecipes/recipes/issues/2728)) - **improved** adding to the meal plan from the recipe context menu now has a default end date - **improved** lots of documentation about the installation/update process (thanks to [@&truecharts#8203;smilerz](https://togithub.com/smilerz) [#&truecharts#8203;2758](https://togithub.com/TandoorRecipes/recipes/issues/2758)) - **improved** made `to_date` in meal plan api optional - **changed** renamed `TIMEZONE` environment variable to `TZ`, old is deprecated but will likely stay for a long time (thanks to [@&truecharts#8203;smilerz](https://togithub.com/smilerz) [#&truecharts#8203;2758](https://togithub.com/TandoorRecipes/recipes/issues/2758)) - **changed** no longer show warning on property view when individual values are 0 as that might be on purpose - **changed** automatically open the ingredient editor in a new tab - **fixed** meal plan items breaking when spanning multiple weeks/periods [#&truecharts#8203;2678](https://togithub.com/TandoorRecipes/recipes/issues/2678) - **fixed** error when URL importing recipes with to long descriptions (thanks to [@&truecharts#8203;smilerz](https://togithub.com/smilerz) [#&truecharts#8203;2763](https://togithub.com/TandoorRecipes/recipes/issues/2763)) - **fixed** issue with the youtube importer - **fixed** database connection strings with port numbers (thanks to [tourn](https://togithub.com/tourn) [#&truecharts#8203;2771](https://togithub.com/TandoorRecipes/recipes/issues/2771)) - **fixed** copying recipes with properties would link properties together [#&truecharts#8203;2720](https://togithub.com/TandoorRecipes/recipes/issues/2720) - **fixed** description overlays breaking obscured by time information [#&truecharts#8203;2743](https://togithub.com/TandoorRecipes/recipes/issues/2743) (thanks [flomero](https://togithub.com/flomero) for helping) - **updated** some dependencies ### [`v1.5.9`](https://togithub.com/TandoorRecipes/recipes/releases/tag/1.5.9) [Compare Source](https://togithub.com/TandoorRecipes/recipes/compare/1.5.8...1.5.9)⚠️ Tandoor Version `1.5.7` updates to Django `4.2` which [removes support for postgres 11](https://docs.djangoproject.com/en/4.2/releases/4.2/#dropped-support-for-postgresql-11). See [FAQ](https://docs.tandoor.dev/faq/#how-can-i-upgrade-postgres-major-versions) for notes on how to upgrade. - **fixed** error with space image for non logged in / non spaced views [#&truecharts#8203;2751](https://togithub.com/TandoorRecipes/recipes/issues/2751) (thanks to [@&truecharts#8203;smilerz](https://togithub.com/smilerz) [#&truecharts#8203;2753](https://togithub.com/TandoorRecipes/recipes/issues/2753)) ### [`v1.5.8`](https://togithub.com/TandoorRecipes/recipes/releases/tag/1.5.8) [Compare Source](https://togithub.com/TandoorRecipes/recipes/compare/1.5.6...1.5.8)⚠️ Tandoor Version `1.5.7` updates to Django `4.2` which [removes support for postgres 11](https://docs.djangoproject.com/en/4.2/releases/4.2/#dropped-support-for-postgresql-11). See [FAQ](https://docs.tandoor.dev/faq/#how-can-i-upgrade-postgres-major-versions) for notes on how to upgrade. - **fixed** constraint on meal type uniqueness breaking migrations for some users </details> --- ### Configuration 📅 **Schedule**: Branch creation - "before 10pm on monday" in timezone Europe/Amsterdam, Automerge - At any time (no schedule defined). 🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 👻 **Immortal**: This PR will be recreated if closed unmerged. Get [config help](https://togithub.com/renovatebot/renovate/discussions) if that's undesired. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://togithub.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzNy4xMTUuMCIsInVwZGF0ZWRJblZlciI6IjM3LjExOC4wIiwidGFyZ2V0QnJhbmNoIjoibWFzdGVyIn0=-->
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Describe the bug
The
users
service is still not correctly hex-escaping UUID values whenUSERS_LDAP_USER_SCHEMA_ID_IS_OCTETSTRING
istrue
for GetUserByClaim queries withclaim
set touserid
.This is mostly affecting the 4.0 release as we only seem to be using that type of query for "machine" authentication when impersonating another user (e.g. in the userlog and search services). master recently swich to service accounts, where we don't do that type for impersonation anymore.
See also #7449
cc @kenodai
The text was updated successfully, but these errors were encountered: