-
Bugfix - Fix OCM share permission change notification: #12190
Fix the OCM share permission change notification handling.
https://github.com/owncloud/ocis/pull/12190
-
Bugfix - Fix the internal links: #12231
We fixed the internal links access control
https://github.com/owncloud/ocis/pull/12231
-
Bugfix - Return 200 OK for WOPI Lock requests in read-only and view-only modes: #12257
OnlyOffice sends a WOPI Lock request when opening any document, even when the
user only has read access. The WOPI Lock handler was attempting to acquire a CS3
write lock regardless of the view mode, causing a permission error for read-only
tokens that OnlyOffice displayed as an error message on load.
The Lock handler now returns 200 OK immediately for READ_ONLY and VIEW_ONLY view
modes without attempting to acquire a lock, consistent with the WOPI spec.
https://github.com/owncloud/ocis/pull/12257
-
Bugfix - Fix space management middleware removing users from spaces on download: #12285
The space management middleware ran on every authenticated request, including
signed URL requests used for file downloads. Since signed URL auth does not
carry OIDC claims, the middleware interpreted the absence of claims as "user
should have no space access" and removed the user from all project spaces. On
the next OIDC request the user was re-added, causing an oscillating add/remove
cycle that led to intermittent download failures and transient "space not found"
errors.
The middleware now skips reconciliation entirely when no OIDC claims are present
in the request context.
https://github.com/owncloud/ocis/issues/12285
https://github.com/owncloud/ocis/pull/12285
-
Enhancement - Add spaceid to REPORT: #12241
Added the spaceid to the REPORT responses. This is aligning the REPORT
method with the PROPFIND method.
https://github.com/owncloud/ocis/pull/12241
-
Enhancement - Allow multiple objectClasses on group creation: #12242
Added support for configuring additional LDAP objectClasses when creating
groups. The new OCIS_LDAP_GROUP_ADDITIONAL_OBJECTCLASSES /
GRAPH_LDAP_GROUP_ADDITIONAL_OBJECTCLASSES environment variable accepts a list
of extra objectClasses that are set alongside the primary
GRAPH_LDAP_GROUP_OBJECTCLASS when a new group is created in LDAP.
https://github.com/owncloud/ocis/pull/12242
-
Enhancement - Add SpaceEditorWithoutVersionsWithoutTrashbin space membership role: #12245
Added a new space membership role "Can edit"
(SpaceEditorWithoutVersionsWithoutTrashbin) that grants full editor permissions
(create, upload, download, edit, move, delete) on a space without access to file
versions or the trashbin.
https://github.com/owncloud/ocis/pull/12245
-
Enhancement - Bump Web to 12.3.3: #13705
https://github.com/owncloud/web/pull/13705
https://github.com/owncloud/web/releases/tag/v12.3.3
