v5.0.4

Changelog for reva 1.22.0 (2022-12-31)

The following sections list the changes in reva 1.22.0 relevant to
reva users. The changes are ordered by importance.

Summary

• Fix cs3org#3528: Fix expired authenticated public link error code
• Fix cs3org#3121: Add missing domain normalization to mentix provider authorizer
• Enh cs3org#3565: Migrate the litmus tests from Drone to GitHub Actions

Details

• Bugfix cs3org#3528: Fix expired authenticated public link error code

  On an expired authenticated public link, the error returned was 401 unauthorized, behaving
  differently from a not-authenticated one, that returns 404 not found. This has been fixed,
  returning 404 not found.

  cs3org#3528

• Bugfix cs3org#3121: Add missing domain normalization to mentix provider authorizer

  The Mentix OCM Provider authorizer lacked provider domain normalization. This led to
  incorrect provider domain matching when authorizing OCM providers.

  cs3org#3121

• Enhancement cs3org#3565: Migrate the litmus tests from Drone to GitHub Actions

  We've migrated the litmusOcisOldWebdav and the litmusOcisNewWebdav tests from Drone to
  GitHub Actions.

  cs3org#3565

v5.0.3

Changelog for reva 1.22.0 (2022-12-31)

The following sections list the changes in reva 1.22.0 relevant to
reva users. The changes are ordered by importance.

Summary

• Fix cs3org#3528: Fix expired authenticated public link error code
• Fix cs3org#3121: Add missing domain normalization to mentix provider authorizer
• Enh cs3org#3565: Migrate the litmus tests from Drone to GitHub Actions

Details

• Bugfix cs3org#3528: Fix expired authenticated public link error code

  On an expired authenticated public link, the error returned was 401 unauthorized, behaving
  differently from a not-authenticated one, that returns 404 not found. This has been fixed,
  returning 404 not found.

  cs3org#3528

• Bugfix cs3org#3121: Add missing domain normalization to mentix provider authorizer

  The Mentix OCM Provider authorizer lacked provider domain normalization. This led to
  incorrect provider domain matching when authorizing OCM providers.

  cs3org#3121

• Enhancement cs3org#3565: Migrate the litmus tests from Drone to GitHub Actions

  We've migrated the litmusOcisOldWebdav and the litmusOcisNewWebdav tests from Drone to
  GitHub Actions.

  cs3org#3565

v5.0.2

Changelog for reva 1.22.0 (2022-12-31)

The following sections list the changes in reva 1.22.0 relevant to
reva users. The changes are ordered by importance.

Summary

• Fix cs3org#3528: Fix expired authenticated public link error code
• Fix cs3org#3121: Add missing domain normalization to mentix provider authorizer
• Enh cs3org#3565: Migrate the litmus tests from Drone to GitHub Actions

Details

• Bugfix cs3org#3528: Fix expired authenticated public link error code

  On an expired authenticated public link, the error returned was 401 unauthorized, behaving
  differently from a not-authenticated one, that returns 404 not found. This has been fixed,
  returning 404 not found.

  cs3org#3528

• Bugfix cs3org#3121: Add missing domain normalization to mentix provider authorizer

  The Mentix OCM Provider authorizer lacked provider domain normalization. This led to
  incorrect provider domain matching when authorizing OCM providers.

  cs3org#3121

• Enhancement cs3org#3565: Migrate the litmus tests from Drone to GitHub Actions

  We've migrated the litmusOcisOldWebdav and the litmusOcisNewWebdav tests from Drone to
  GitHub Actions.

  cs3org#3565

v4.0.5

Changelog for reva 1.21.0 (2022-12-07)

The following sections list the changes in reva 1.21.0 relevant to
reva users. The changes are ordered by importance.

Summary

• Fix cs3org#3492: Fixes the DefaultQuotaBytes in EOS
• Fix cs3org#3420: EOS grpc fixes
• Fix cs3org#3501: Fix errors of public share provider according to cs3apis
• Fix cs3org#3504: Fix RefreshLock method for cephfs storage driver
• Enh cs3org#3502: Appproviders: pass other query parameters as Opaque
• Enh cs3org#3028: Access directly auth registry rules map when getting provider
• Enh cs3org#3197: Bring back multi-stage build to save on image size
• Enh cs3org#3506: Migrate the buildAndPublishDocker job from Drone to GitHub Actions
• Enh cs3org#3500: Migrate the BuildOnly job from Drone to GitHub Actions
• Enh cs3org#3513: Migrate the testIntegration job from Drone to GitHub Actions
• Enh cs3org#3494: Implemented folderurl for WOPI apps
• Enh cs3org#3507: Get user preferred language
• Enh cs3org#3530: Improve error logging in ocmd flow
• Enh cs3org#3491: Implement rclone third-party copy push option
• Enh cs3org#3508: Allow an user to set a preferred language

Details

• Bugfix cs3org#3492: Fixes the DefaultQuotaBytes in EOS

  We were setting the default logical quota to 1T, resulting on only 500GB available to the user.

  cs3org#3492

• Bugfix cs3org#3420: EOS grpc fixes

  The shares and the applications were not working with the EOS grpc storage driver. This fixes
  both.

  cs3org#3420

• Bugfix cs3org#3501: Fix errors of public share provider according to cs3apis

  All the errors returned by the public share provider where internal errors. Now this has been
  fixed and the returned errors are the one defined in the cs3apis.

  cs3org#3501

• Bugfix cs3org#3504: Fix RefreshLock method for cephfs storage driver

  cs3org#3504

• Enhancement cs3org#3502: Appproviders: pass other query parameters as Opaque

  This allows to send any other HTTP query parameter passed to /app/open to the underlying
  appprovider drivers via GRPC

  cs3org#3502

• Enhancement cs3org#3028: Access directly auth registry rules map when getting provider

  cs3org#3028

• Enhancement cs3org#3197: Bring back multi-stage build to save on image size

  • Use EOS 4.8.91 as base image - Bring back multi-stage build - Build revad on the eos 4.8.91 image
    due to missing dependency (ld-musl-x86_64.so.1, typical of alpine) - Copy the resulting
    revad from the builder container

  Resulting image size (unpacked on disk) is 2.59GB - eos-all:4.8.91 is 2.47GB - existing
  revad:latest-eos is 6.18GB

  cs3org#3197

• Enhancement cs3org#3506: Migrate the buildAndPublishDocker job from Drone to GitHub Actions

  We've migrated the buildAndPublishDocker job from Drone to GitHub Actions workflow. We've
  updated the Golang version used to build the Docker images to go1.19. We've fixed the Cephfs
  storage module. We've improved the Makefile. We've refactored the build-docker workflow.

  cs3org#3506

• Enhancement cs3org#3500: Migrate the BuildOnly job from Drone to GitHub Actions

  We've migrated the BuildOnly job from Drone to GitHub Actions workflow. The Workflow builds
  and Tests Reva, builds a Revad Docker Image and checks the license headers. The license header
  tools was removed since the goheader linter provides the same functionality.

  cs3org#3500

• Enhancement cs3org#3513: Migrate the testIntegration job from Drone to GitHub Actions

  cs3org#3513

• Enhancement cs3org#3494: Implemented folderurl for WOPI apps

  The folderurl is now populated for WOPI apps, such that for owners and named shares it points to
  the containing folder, and for public links it points to the appropriate public link URL.

  On the way, functions to manipulate the user's scope and extract the eventual public link
  token(s) have been added, coauthored with @gmgigi96.

  cs3org#3494

• Enhancement cs3org#3507: Get user preferred language

  The only way for an OCIS web user to change language was to set it into the browser settings. In the
  ocs user info response, a field language is added, to change their language in the UI,
  regardless of the browser settings.

  cs3org#3507

• Enhancement cs3org#3530: Improve error logging in ocmd flow

  cs3org#3365
  cs3org#3530
  cs3org#3526
  cs3org#3419
  cs3org#3369

• Enhancement cs3org#3491: Implement rclone third-party copy push option

  This enhancement gives the option to use third-party copy push with rclone between two
  different user accounts.

  cs3org#3491

• Enhancement cs3org#3508: Allow an user to set a preferred language

  cs3org#3508

v4.0.4

Changelog for reva 1.21.0 (2022-12-07)

The following sections list the changes in reva 1.21.0 relevant to
reva users. The changes are ordered by importance.

Summary

• Fix cs3org#3492: Fixes the DefaultQuotaBytes in EOS
• Fix cs3org#3420: EOS grpc fixes
• Fix cs3org#3501: Fix errors of public share provider according to cs3apis
• Fix cs3org#3504: Fix RefreshLock method for cephfs storage driver
• Enh cs3org#3502: Appproviders: pass other query parameters as Opaque
• Enh cs3org#3028: Access directly auth registry rules map when getting provider
• Enh cs3org#3197: Bring back multi-stage build to save on image size
• Enh cs3org#3506: Migrate the buildAndPublishDocker job from Drone to GitHub Actions
• Enh cs3org#3500: Migrate the BuildOnly job from Drone to GitHub Actions
• Enh cs3org#3513: Migrate the testIntegration job from Drone to GitHub Actions
• Enh cs3org#3494: Implemented folderurl for WOPI apps
• Enh cs3org#3507: Get user preferred language
• Enh cs3org#3530: Improve error logging in ocmd flow
• Enh cs3org#3491: Implement rclone third-party copy push option
• Enh cs3org#3508: Allow an user to set a preferred language

Details

• Bugfix cs3org#3492: Fixes the DefaultQuotaBytes in EOS

  We were setting the default logical quota to 1T, resulting on only 500GB available to the user.

  cs3org#3492

• Bugfix cs3org#3420: EOS grpc fixes

  The shares and the applications were not working with the EOS grpc storage driver. This fixes
  both.

  cs3org#3420

• Bugfix cs3org#3501: Fix errors of public share provider according to cs3apis

  All the errors returned by the public share provider where internal errors. Now this has been
  fixed and the returned errors are the one defined in the cs3apis.

  cs3org#3501

• Bugfix cs3org#3504: Fix RefreshLock method for cephfs storage driver

  cs3org#3504

• Enhancement cs3org#3502: Appproviders: pass other query parameters as Opaque

  This allows to send any other HTTP query parameter passed to /app/open to the underlying
  appprovider drivers via GRPC

  cs3org#3502

• Enhancement cs3org#3028: Access directly auth registry rules map when getting provider

  cs3org#3028

• Enhancement cs3org#3197: Bring back multi-stage build to save on image size

  • Use EOS 4.8.91 as base image - Bring back multi-stage build - Build revad on the eos 4.8.91 image
    due to missing dependency (ld-musl-x86_64.so.1, typical of alpine) - Copy the resulting
    revad from the builder container

  Resulting image size (unpacked on disk) is 2.59GB - eos-all:4.8.91 is 2.47GB - existing
  revad:latest-eos is 6.18GB

  cs3org#3197

• Enhancement cs3org#3506: Migrate the buildAndPublishDocker job from Drone to GitHub Actions

  We've migrated the buildAndPublishDocker job from Drone to GitHub Actions workflow. We've
  updated the Golang version used to build the Docker images to go1.19. We've fixed the Cephfs
  storage module. We've improved the Makefile. We've refactored the build-docker workflow.

  cs3org#3506

• Enhancement cs3org#3500: Migrate the BuildOnly job from Drone to GitHub Actions

  We've migrated the BuildOnly job from Drone to GitHub Actions workflow. The Workflow builds
  and Tests Reva, builds a Revad Docker Image and checks the license headers. The license header
  tools was removed since the goheader linter provides the same functionality.

  cs3org#3500

• Enhancement cs3org#3513: Migrate the testIntegration job from Drone to GitHub Actions

  cs3org#3513

• Enhancement cs3org#3494: Implemented folderurl for WOPI apps

  The folderurl is now populated for WOPI apps, such that for owners and named shares it points to
  the containing folder, and for public links it points to the appropriate public link URL.

  On the way, functions to manipulate the user's scope and extract the eventual public link
  token(s) have been added, coauthored with @gmgigi96.

  cs3org#3494

• Enhancement cs3org#3507: Get user preferred language

  The only way for an OCIS web user to change language was to set it into the browser settings. In the
  ocs user info response, a field language is added, to change their language in the UI,
  regardless of the browser settings.

  cs3org#3507

• Enhancement cs3org#3530: Improve error logging in ocmd flow

  cs3org#3365
  cs3org#3530
  cs3org#3526
  cs3org#3419
  cs3org#3369

• Enhancement cs3org#3491: Implement rclone third-party copy push option

  This enhancement gives the option to use third-party copy push with rclone between two
  different user accounts.

  cs3org#3491

• Enhancement cs3org#3508: Allow an user to set a preferred language

  cs3org#3508

v4.0.1

Changelog for reva 1.21.0 (2022-12-07)

The following sections list the changes in reva 1.21.0 relevant to
reva users. The changes are ordered by importance.

Summary

• Fix cs3org#3492: Fixes the DefaultQuotaBytes in EOS
• Fix cs3org#3420: EOS grpc fixes
• Fix cs3org#3501: Fix errors of public share provider according to cs3apis
• Fix cs3org#3504: Fix RefreshLock method for cephfs storage driver
• Enh cs3org#3502: Appproviders: pass other query parameters as Opaque
• Enh cs3org#3028: Access directly auth registry rules map when getting provider
• Enh cs3org#3197: Bring back multi-stage build to save on image size
• Enh cs3org#3506: Migrate the buildAndPublishDocker job from Drone to GitHub Actions
• Enh cs3org#3500: Migrate the BuildOnly job from Drone to GitHub Actions
• Enh cs3org#3513: Migrate the testIntegration job from Drone to GitHub Actions
• Enh cs3org#3494: Implemented folderurl for WOPI apps
• Enh cs3org#3507: Get user preferred language
• Enh cs3org#3530: Improve error logging in ocmd flow
• Enh cs3org#3491: Implement rclone third-party copy push option
• Enh cs3org#3508: Allow an user to set a preferred language

Details

• Bugfix cs3org#3492: Fixes the DefaultQuotaBytes in EOS

  We were setting the default logical quota to 1T, resulting on only 500GB available to the user.

  cs3org#3492

• Bugfix cs3org#3420: EOS grpc fixes

  The shares and the applications were not working with the EOS grpc storage driver. This fixes
  both.

  cs3org#3420

• Bugfix cs3org#3501: Fix errors of public share provider according to cs3apis

  All the errors returned by the public share provider where internal errors. Now this has been
  fixed and the returned errors are the one defined in the cs3apis.

  cs3org#3501

• Bugfix cs3org#3504: Fix RefreshLock method for cephfs storage driver

  cs3org#3504

• Enhancement cs3org#3502: Appproviders: pass other query parameters as Opaque

  This allows to send any other HTTP query parameter passed to /app/open to the underlying
  appprovider drivers via GRPC

  cs3org#3502

• Enhancement cs3org#3028: Access directly auth registry rules map when getting provider

  cs3org#3028

• Enhancement cs3org#3197: Bring back multi-stage build to save on image size

  • Use EOS 4.8.91 as base image - Bring back multi-stage build - Build revad on the eos 4.8.91 image
    due to missing dependency (ld-musl-x86_64.so.1, typical of alpine) - Copy the resulting
    revad from the builder container

  Resulting image size (unpacked on disk) is 2.59GB - eos-all:4.8.91 is 2.47GB - existing
  revad:latest-eos is 6.18GB

  cs3org#3197

• Enhancement cs3org#3506: Migrate the buildAndPublishDocker job from Drone to GitHub Actions

  We've migrated the buildAndPublishDocker job from Drone to GitHub Actions workflow. We've
  updated the Golang version used to build the Docker images to go1.19. We've fixed the Cephfs
  storage module. We've improved the Makefile. We've refactored the build-docker workflow.

  cs3org#3506

• Enhancement cs3org#3500: Migrate the BuildOnly job from Drone to GitHub Actions

  We've migrated the BuildOnly job from Drone to GitHub Actions workflow. The Workflow builds
  and Tests Reva, builds a Revad Docker Image and checks the license headers. The license header
  tools was removed since the goheader linter provides the same functionality.

  cs3org#3500

• Enhancement cs3org#3513: Migrate the testIntegration job from Drone to GitHub Actions

  cs3org#3513

• Enhancement cs3org#3494: Implemented folderurl for WOPI apps

  The folderurl is now populated for WOPI apps, such that for owners and named shares it points to
  the containing folder, and for public links it points to the appropriate public link URL.

  On the way, functions to manipulate the user's scope and extract the eventual public link
  token(s) have been added, coauthored with @gmgigi96.

  cs3org#3494

• Enhancement cs3org#3507: Get user preferred language

  The only way for an OCIS web user to change language was to set it into the browser settings. In the
  ocs user info response, a field language is added, to change their language in the UI,
  regardless of the browser settings.

  cs3org#3507

• Enhancement cs3org#3530: Improve error logging in ocmd flow

  cs3org#3365
  cs3org#3530
  cs3org#3526
  cs3org#3419
  cs3org#3369

• Enhancement cs3org#3491: Implement rclone third-party copy push option

  This enhancement gives the option to use third-party copy push with rclone between two
  different user accounts.

  cs3org#3491

• Enhancement cs3org#3508: Allow an user to set a preferred language

  cs3org#3508

v3.0.6

Changelog for reva 1.20.0 (2022-11-24)

The following sections list the changes in reva 1.20.0 relevant to
reva users. The changes are ordered by importance.

Summary

• Sec cs3org#3316: Mitigate XSS
• Fix cs3org#3455: Fixes panic in case of empty configuration
• Fix cs3org#3311: Remove FIXME
• Fix cs3org#3396: Fix the Ceph Docker image repository URL
• Fix cs3org#3055: Fix quota for LW accounts
• Fix cs3org#3361: Use custom reva logger in ocs
• Fix cs3org#3344: Fix quota percentage
• Fix cs3org#2979: Removed unused datatx code
• Fix cs3org#2973: Fix datatxtarget uri when prefix is used
• Fix cs3org#3319: Fix oidc provider crash when custom claims are provided
• Fix cs3org#3481: OIDC: resolve users with no uid/gid by username
• Fix cs3org#3055: Get user from user provider in oidc driver
• Fix cs3org#3053: Temporary read user acl instead of sys acl
• Enh cs3org#3401: Make WOPI bridged apps (CodiMD) configuration non hard-coded
• Enh cs3org#3402: Block users
• Enh cs3org#3098: App provider http endpoint uses Form instead of Query
• Enh cs3org#3116: Implementation of cback storage driver for REVA
• Enh cs3org#3422: Migrate Codacy from Drone to Codacy/GitHub integration
• Enh cs3org#3412: Migrate Fossa from Drone to Github Integration
• Enh cs3org#3367: Update go version
• Enh cs3org#3467: Enable gocritic linter in golangci-lint and solve issues
• Enh cs3org#3463: Enable gofmt linter in golangci-lint and apply gofmt
• Enh cs3org#3471: Enable goimports and usestdlibvars in golangci-lint
• Enh cs3org#3466: Migrate golangci-lint from Drone to GitHub Actions
• Enh cs3org#3465: Enable revive linter in golangci-lint and solve issues
• Enh cs3org#3487: Enable staticcheck linter in golangci-lint and solve issues
• Enh cs3org#3475: Enable the style linters
• Enh cs3org#3070: Allow http service to expose prefixes containing /
• Enh cs3org#2986: Better display name in apps for all user types
• Enh cs3org#3303: Added support for configuring language locales in apps
• Enh cs3org#3348: Revamp lightweigth accounts
• Enh cs3org#3304: Add http service to send email for shares
• Enh cs3org#3072: Mesh meta data operators
• Enh cs3org#3313: Fix content-type for OCM sharing
• Enh cs3org#3234: Add post create home hook for eos storage driver
• Enh cs3org#3347: Implemented PROPFIND with 0 depth
• Enh cs3org#3056: Add public share auth provider
• Enh cs3org#3305: Add description to public link
• Enh cs3org#3163: Add support for quicklinks for public shares
• Enh cs3org#3289: Make Refresh Lock operation WOPI compliant
• Enh cs3org#3315: Accept reva token as a bearer authentication
• Enh cs3org#3438: Sanitize non-utf8 characters in xattr values in EOS
• Enh cs3org#3221: Site Accounts improvements
• Enh cs3org#3404: Site accounts & Mentix updates
• Enh cs3org#3424: Expire tokens on sunday
• Enh cs3org#2986: Use email as display name for external users opening WOPI apps

Details

• Security cs3org#3316: Mitigate XSS

  We've mitigated an XSS vulnerability resulting from unescaped HTTP responses containing
  user-provided values in pkg/siteacc/siteacc.go and
  internal/http/services/ocmd/invites.go. This patch uses html.EscapeString to escape the
  user-provided values in the HTTP responses of pkg/siteacc/siteacc.go and
  internal/http/services/ocmd/invites.go.

  cs3org#3316

• Bugfix cs3org#3455: Fixes panic in case of empty configuration

  Makes sure the config map is allocated prior to setting it

  cs3org#3455

• Bugfix cs3org#3311: Remove FIXME

  Issue cs3org#2402 is closed.

  cs3org#3311

• Bugfix cs3org#3396: Fix the Ceph Docker image repository URL

  cs3org#3396

• Bugfix cs3org#3055: Fix quota for LW accounts

  LW accounts do not have quota assigned.

  cs3org#3055

• Bugfix cs3org#3361: Use custom reva logger in ocs

  cs3org#3361

• Bugfix cs3org#3344: Fix quota percentage

  cs3org#3344

• Bugfix cs3org#2979: Removed unused datatx code

  An OCM reference is not created for a data transfer type share.

  cs3org#2979

• Bugfix cs3org#2973: Fix datatxtarget uri when prefix is used

  When a webdav prefix is used it appears in both host and name parameter of the target uri for data
  transfer. This PR fixes that.

  cs3org#2973

• Bugfix cs3org#3319: Fix oidc provider crash when custom claims are provided

  cs3org#3319

• Bugfix cs3org#3481: OIDC: resolve users with no uid/gid by username

  Previously we resolved such users (so called "lightweight" or "external" accounts in the CERN
  realm) by email, but it turns out that the same email may have multiple accounts associated to
  it.

  Therefore we now resolve them by username, that is the upn, which is unique.

  cs3org#3481

• Bugfix cs3org#3055: Get user from user provider in oidc driver

  For oidc providers that only respond with standard claims, use the user provider to get the
  user.

  cs3org#3055

• Bugfix cs3org#3053: Temporary read user acl instead of sys acl

  We read the user acl in EOS until the migration of all user acls to sys acls are done

  cs3org#3053

• Enhancement cs3org#3401: Make WOPI bridged apps (CodiMD) configuration non hard-coded

  The configuration of the custom mimetypes has been moved to the AppProvider, and the given
  mimetypes are used to configure bridged apps by sharing the corresponding config item to the
  drivers.

  cs3org#3401

• Enhancement cs3org#3402: Block users

  Allows an operator to set a list of users that are banned for every operation in reva.

  cs3org#3402

• Enhancement cs3org#3098: App provider http endpoint uses Form instead of Query

  We've improved the http endpoint now uses the Form instead of Query to also support
  application/x-www-form-urlencoded parameters on the app provider http endpoint.

  cs3org#3098
  cs3org#3101

• Enhancement cs3org#3116: Implementation of cback storage driver for REVA

  This is a read only fs interface.

  cs3org#3116

• Enhancement cs3org#3422: Migrate Codacy from Drone to Codacy/GitHub integration

  cs3org#3422

• Enhancement cs3org#3412: Migrate Fossa from Drone to Github Integration

  cs3org#3412

• Enhancement cs3org#3367: Update go version

  Update go version to 1.19 in go.mod

  cs3org#3367

• Enhancement cs3org#3467: Enable gocritic linter in golangci-lint and solve issues

  cs3org#3467

• Enhancement cs3org#3463: Enable gofmt linter in golangci-lint and apply gofmt

  cs3org#3463

• Enhancement cs3org#3471: Enable goimports and usestdlibvars in golangci-lint

  We've enabled the goimports and usestdlibvars linters in golangci-lint and solved the
  related issues.

  cs3org#3471

• Enhancement cs3org#3466: Migrate golangci-lint from Drone to GitHub Actions

  cs3org#3466

• Enhancement cs3org#3465: Enable revive linter in golangci-lint and solve issues

  cs3org#3465

• Enhancement cs3org#3487: Enable staticcheck linter in golangci-lint and solve issues

  cs3org#3487

• Enhancement cs3org#3475: Enable the style linters

  We've enabled the stylecheck, whitespace, dupword, godot and dogsled linters in
  golangci-lint and solved the related issues.

  cs3org#3475

• Enhancement cs3org#3070: Allow http service to expose prefixes containing /

  cs3org#3070

• Enhancement cs3org#2986: Better display name in apps for all user types

  This includes a FirstName FamilyName (domain) format for non-primary accounts, and a
  sanitization of the email address claim for such non-primary accounts.

  cs3org#2986
  cs3org#3280

• Enhancement cs3org#3303: Added support for configuring language locales in apps

  This is a partial backport from edge: we introduce a language option in the appprovider, which
  if set is passed as appropriate parameter to the external apps in order to force a given
  localization. In particular, for Microsoft Office 365 the DC_LLCC option is set as well. The
  default behavior is unset, where apps try and resolve the localization from the browser
  headers.

  cs3org#3303

• Enhancement cs3org#3348: Revamp lightweigth accounts

  Re-implements the lighweight account scope check, making it more efficient. Also, the ACLs
  for the EOS storage driver for the lw accounts are set atomically.

  cs3org#3348

• Enhancement cs3org#3304: Add http service to send email for shares

  cs3org#3304

• Enhancement cs3org#3072: Mesh meta data operators

  To better support sites that run multiple instances, the meta data have been extended to
  include a new hierarchy layer called 'operators'. This PR brings all necessary changes in the
  Mentix and site accounts services.

  cs3org#3072

• Enhancement cs3org#3313: Fix content-type for OCM sharing

  This fix change the content type to just "application/json"

  cs3org#3313

• Enhancement cs3org#3234: Add post create home hook for eos storage driver

  cs3org#3234

• Enhancement cs3org#3347: Implemented PROPFIND with 0 depth

  cs3org#3347

• Enhancement cs3org#3056: Add public share auth provider

  Add a public share auth middleware

  cs3org#3056

• Enhancement cs3org#3305: Add description to public link

  cs3org#3305

• Enhancement cs3org#3163: Add support for quicklinks for public shares

  https://github.com/cs3or...

v3.0.5

Changelog for reva 1.20.0 (2022-11-24)

The following sections list the changes in reva 1.20.0 relevant to
reva users. The changes are ordered by importance.

Summary

• Sec cs3org#3316: Mitigate XSS
• Fix cs3org#3455: Fixes panic in case of empty configuration
• Fix cs3org#3311: Remove FIXME
• Fix cs3org#3396: Fix the Ceph Docker image repository URL
• Fix cs3org#3055: Fix quota for LW accounts
• Fix cs3org#3361: Use custom reva logger in ocs
• Fix cs3org#3344: Fix quota percentage
• Fix cs3org#2979: Removed unused datatx code
• Fix cs3org#2973: Fix datatxtarget uri when prefix is used
• Fix cs3org#3319: Fix oidc provider crash when custom claims are provided
• Fix cs3org#3481: OIDC: resolve users with no uid/gid by username
• Fix cs3org#3055: Get user from user provider in oidc driver
• Fix cs3org#3053: Temporary read user acl instead of sys acl
• Enh cs3org#3401: Make WOPI bridged apps (CodiMD) configuration non hard-coded
• Enh cs3org#3402: Block users
• Enh cs3org#3098: App provider http endpoint uses Form instead of Query
• Enh cs3org#3116: Implementation of cback storage driver for REVA
• Enh cs3org#3422: Migrate Codacy from Drone to Codacy/GitHub integration
• Enh cs3org#3412: Migrate Fossa from Drone to Github Integration
• Enh cs3org#3367: Update go version
• Enh cs3org#3467: Enable gocritic linter in golangci-lint and solve issues
• Enh cs3org#3463: Enable gofmt linter in golangci-lint and apply gofmt
• Enh cs3org#3471: Enable goimports and usestdlibvars in golangci-lint
• Enh cs3org#3466: Migrate golangci-lint from Drone to GitHub Actions
• Enh cs3org#3465: Enable revive linter in golangci-lint and solve issues
• Enh cs3org#3487: Enable staticcheck linter in golangci-lint and solve issues
• Enh cs3org#3475: Enable the style linters
• Enh cs3org#3070: Allow http service to expose prefixes containing /
• Enh cs3org#2986: Better display name in apps for all user types
• Enh cs3org#3303: Added support for configuring language locales in apps
• Enh cs3org#3348: Revamp lightweigth accounts
• Enh cs3org#3304: Add http service to send email for shares
• Enh cs3org#3072: Mesh meta data operators
• Enh cs3org#3313: Fix content-type for OCM sharing
• Enh cs3org#3234: Add post create home hook for eos storage driver
• Enh cs3org#3347: Implemented PROPFIND with 0 depth
• Enh cs3org#3056: Add public share auth provider
• Enh cs3org#3305: Add description to public link
• Enh cs3org#3163: Add support for quicklinks for public shares
• Enh cs3org#3289: Make Refresh Lock operation WOPI compliant
• Enh cs3org#3315: Accept reva token as a bearer authentication
• Enh cs3org#3438: Sanitize non-utf8 characters in xattr values in EOS
• Enh cs3org#3221: Site Accounts improvements
• Enh cs3org#3404: Site accounts & Mentix updates
• Enh cs3org#3424: Expire tokens on sunday
• Enh cs3org#2986: Use email as display name for external users opening WOPI apps

Details

• Security cs3org#3316: Mitigate XSS

  We've mitigated an XSS vulnerability resulting from unescaped HTTP responses containing
  user-provided values in pkg/siteacc/siteacc.go and
  internal/http/services/ocmd/invites.go. This patch uses html.EscapeString to escape the
  user-provided values in the HTTP responses of pkg/siteacc/siteacc.go and
  internal/http/services/ocmd/invites.go.

  cs3org#3316

• Bugfix cs3org#3455: Fixes panic in case of empty configuration

  Makes sure the config map is allocated prior to setting it

  cs3org#3455

• Bugfix cs3org#3311: Remove FIXME

  Issue cs3org#2402 is closed.

  cs3org#3311

• Bugfix cs3org#3396: Fix the Ceph Docker image repository URL

  cs3org#3396

• Bugfix cs3org#3055: Fix quota for LW accounts

  LW accounts do not have quota assigned.

  cs3org#3055

• Bugfix cs3org#3361: Use custom reva logger in ocs

  cs3org#3361

• Bugfix cs3org#3344: Fix quota percentage

  cs3org#3344

• Bugfix cs3org#2979: Removed unused datatx code

  An OCM reference is not created for a data transfer type share.

  cs3org#2979

• Bugfix cs3org#2973: Fix datatxtarget uri when prefix is used

  When a webdav prefix is used it appears in both host and name parameter of the target uri for data
  transfer. This PR fixes that.

  cs3org#2973

• Bugfix cs3org#3319: Fix oidc provider crash when custom claims are provided

  cs3org#3319

• Bugfix cs3org#3481: OIDC: resolve users with no uid/gid by username

  Previously we resolved such users (so called "lightweight" or "external" accounts in the CERN
  realm) by email, but it turns out that the same email may have multiple accounts associated to
  it.

  Therefore we now resolve them by username, that is the upn, which is unique.

  cs3org#3481

• Bugfix cs3org#3055: Get user from user provider in oidc driver

  For oidc providers that only respond with standard claims, use the user provider to get the
  user.

  cs3org#3055

• Bugfix cs3org#3053: Temporary read user acl instead of sys acl

  We read the user acl in EOS until the migration of all user acls to sys acls are done

  cs3org#3053

• Enhancement cs3org#3401: Make WOPI bridged apps (CodiMD) configuration non hard-coded

  The configuration of the custom mimetypes has been moved to the AppProvider, and the given
  mimetypes are used to configure bridged apps by sharing the corresponding config item to the
  drivers.

  cs3org#3401

• Enhancement cs3org#3402: Block users

  Allows an operator to set a list of users that are banned for every operation in reva.

  cs3org#3402

• Enhancement cs3org#3098: App provider http endpoint uses Form instead of Query

  We've improved the http endpoint now uses the Form instead of Query to also support
  application/x-www-form-urlencoded parameters on the app provider http endpoint.

  cs3org#3098
  cs3org#3101

• Enhancement cs3org#3116: Implementation of cback storage driver for REVA

  This is a read only fs interface.

  cs3org#3116

• Enhancement cs3org#3422: Migrate Codacy from Drone to Codacy/GitHub integration

  cs3org#3422

• Enhancement cs3org#3412: Migrate Fossa from Drone to Github Integration

  cs3org#3412

• Enhancement cs3org#3367: Update go version

  Update go version to 1.19 in go.mod

  cs3org#3367

• Enhancement cs3org#3467: Enable gocritic linter in golangci-lint and solve issues

  cs3org#3467

• Enhancement cs3org#3463: Enable gofmt linter in golangci-lint and apply gofmt

  cs3org#3463

• Enhancement cs3org#3471: Enable goimports and usestdlibvars in golangci-lint

  We've enabled the goimports and usestdlibvars linters in golangci-lint and solved the
  related issues.

  cs3org#3471

• Enhancement cs3org#3466: Migrate golangci-lint from Drone to GitHub Actions

  cs3org#3466

• Enhancement cs3org#3465: Enable revive linter in golangci-lint and solve issues

  cs3org#3465

• Enhancement cs3org#3487: Enable staticcheck linter in golangci-lint and solve issues

  cs3org#3487

• Enhancement cs3org#3475: Enable the style linters

  We've enabled the stylecheck, whitespace, dupword, godot and dogsled linters in
  golangci-lint and solved the related issues.

  cs3org#3475

• Enhancement cs3org#3070: Allow http service to expose prefixes containing /

  cs3org#3070

• Enhancement cs3org#2986: Better display name in apps for all user types

  This includes a FirstName FamilyName (domain) format for non-primary accounts, and a
  sanitization of the email address claim for such non-primary accounts.

  cs3org#2986
  cs3org#3280

• Enhancement cs3org#3303: Added support for configuring language locales in apps

  This is a partial backport from edge: we introduce a language option in the appprovider, which
  if set is passed as appropriate parameter to the external apps in order to force a given
  localization. In particular, for Microsoft Office 365 the DC_LLCC option is set as well. The
  default behavior is unset, where apps try and resolve the localization from the browser
  headers.

  cs3org#3303

• Enhancement cs3org#3348: Revamp lightweigth accounts

  Re-implements the lighweight account scope check, making it more efficient. Also, the ACLs
  for the EOS storage driver for the lw accounts are set atomically.

  cs3org#3348

• Enhancement cs3org#3304: Add http service to send email for shares

  cs3org#3304

• Enhancement cs3org#3072: Mesh meta data operators

  To better support sites that run multiple instances, the meta data have been extended to
  include a new hierarchy layer called 'operators'. This PR brings all necessary changes in the
  Mentix and site accounts services.

  cs3org#3072

• Enhancement cs3org#3313: Fix content-type for OCM sharing

  This fix change the content type to just "application/json"

  cs3org#3313

• Enhancement cs3org#3234: Add post create home hook for eos storage driver

  cs3org#3234

• Enhancement cs3org#3347: Implemented PROPFIND with 0 depth

  cs3org#3347

• Enhancement cs3org#3056: Add public share auth provider

  Add a public share auth middleware

  cs3org#3056

• Enhancement cs3org#3305: Add description to public link

  cs3org#3305

• Enhancement cs3org#3163: Add support for quicklinks for public shares

  https://github.com/cs3or...