Merge pull request #4860 from 2403905/release-2.19.8

release-2.19.8
cs3org · Sep 23, 2024 · 2387674 · 2387674
2 parents f9a75a1 + 8d725e2
commit 2387674
Show file tree

Hide file tree

Showing 9 changed files with 201 additions and 89 deletions.
diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -1,3 +1,44 @@
+Changelog for reva 2.19.8 (2024-09-23)
+=======================================
+
+The following sections list the changes in reva 2.19.8 relevant to
+reva users. The changes are ordered by importance.
+
+Summary
+-------
+
+* Fix #4761: Quotes in dav Content-Disposition header
+* Fix #4853: Write upload session info atomically
+* Enh #4701: Extend service account permissions
+
+Details
+-------
+
+* Bugfix #4761: Quotes in dav Content-Disposition header
+
+ We've fixed the the quotes in the dav `Content-Disposition` header. They caused an issue where
+ certain browsers would decode the quotes and falsely prepend them to the filename.
+
+ https://github.com/owncloud/web/issues/11031
+ https://github.com/owncloud/web/issues/11169
+ https://github.com/cs3org/reva/pull/4761
+
+* Bugfix #4853: Write upload session info atomically
+
+ We now use a lock and atomic write on upload session metadata to prevent empty reads. A virus scan
+ event might cause the file to be truncated and then a finished event might try to read the file,
+ just getting an empty string.
+
+ Backport of https://github.com/cs3org/reva/pull/4850
+
+ https://github.com/cs3org/reva/pull/4853
+
+* Enhancement #4701: Extend service account permissions
+
+ Adds AddGrant permisson
+
+ https://github.com/cs3org/reva/pull/4701
+
 Changelog for reva 2.19.7 (2024-05-13)
 =======================================
 
@@ -3958,6 +3999,34 @@ Details
 
  https://github.com/cs3org/reva/pull/3083
 
+Changelog for reva 2.7.1 (2022-07-15)
+=======================================
+
+The following sections list the changes in reva 2.7.1 relevant to
+reva users. The changes are ordered by importance.
+
+Summary
+-------
+
+* Fix #3080: Make dataproviders return more headers
+* Enh #3046: Add user filter
+
+Details
+-------
+
+* Bugfix #3080: Make dataproviders return more headers
+
+ Instead of ocdav doing an additional Stat request we now rely on the dataprovider to return the
+ necessary metadata information as headers.
+
+ https://github.com/owncloud/reva/issues/3080
+
+* Enhancement #3046: Add user filter
+
+ This PR adds the ability to filter spaces by user-id
+
+ https://github.com/cs3org/reva/pull/3046
+
 Changelog for reva 2.7.0 (2022-07-15)
 =======================================
 
@@ -4090,34 +4159,6 @@ Details
  https://github.com/owncloud/ocis/issues/3073
  https://github.com/cs3org/reva/pull/2977
 
-Changelog for reva 2.7.1 (2022-07-15)
-=======================================
-
-The following sections list the changes in reva 2.7.1 relevant to
-reva users. The changes are ordered by importance.
-
-Summary
--------
-
-* Fix #3080: Make dataproviders return more headers
-* Enh #3046: Add user filter
-
-Details
--------
-
-* Bugfix #3080: Make dataproviders return more headers
-
- Instead of ocdav doing an additional Stat request we now rely on the dataprovider to return the
- necessary metadata information as headers.
-
- https://github.com/owncloud/reva/issues/3080
-
-* Enhancement #3046: Add user filter
-
- This PR adds the ability to filter spaces by user-id
-
- https://github.com/cs3org/reva/pull/3046
-
 Changelog for reva 2.6.1 (2022-06-27)
 =======================================
 

diff --git a/RELEASE_DATE b/RELEASE_DATE
@@ -1 +1 @@
-2024-05-13
+2024-09-23
diff --git a/VERSION b/VERSION
@@ -1 +1 @@
-2.19.7
+2.19.8
diff --git a/...d/extend-service-account-permissions-2.md → ...3/extend-service-account-permissions-2.md b/...d/extend-service-account-permissions-2.md → ...3/extend-service-account-permissions-2.md
diff --git a/...-quotes-in-content-disposition-headers.md → ...-quotes-in-content-disposition-headers.md b/...-quotes-in-content-disposition-headers.md → ...-quotes-in-content-disposition-headers.md
diff --git a/...eased/write-upload-sessions-atomically.md → ...09-23/write-upload-sessions-atomically.md b/...eased/write-upload-sessions-atomically.md → ...09-23/write-upload-sessions-atomically.md
diff --git a/changelog/NOTE.md b/changelog/NOTE.md
@@ -1,20 +1,41 @@
-Changelog for reva 2.19.7 (2024-05-13)
+Changelog for reva 2.19.8 (2024-09-23)
 =======================================
 
-The following sections list the changes in reva 2.19.7 relevant to
+The following sections list the changes in reva 2.19.8 relevant to
 reva users. The changes are ordered by importance.
 
 Summary
 -------
 
-* Enh #4673: Add virus filter to list uploads sessions
+* Fix #4761: Quotes in dav Content-Disposition header
+* Fix #4853: Write upload session info atomically
+* Enh #4701: Extend service account permissions
 
 Details
 -------
 
-* Enhancement #4673: Add virus filter to list uploads sessions
+* Bugfix #4761: Quotes in dav Content-Disposition header
 
- Adds a filter for filtering for infected uploads
+ We've fixed the the quotes in the dav `Content-Disposition` header. They caused an issue where
+ certain browsers would decode the quotes and falsely prepend them to the filename.
 
- https://github.com/cs3org/reva/pull/4673
+ https://github.com/owncloud/web/issues/11031
+ https://github.com/owncloud/web/issues/11169
+ https://github.com/cs3org/reva/pull/4761
+
+* Bugfix #4853: Write upload session info atomically
+
+ We now use a lock and atomic write on upload session metadata to prevent empty reads. A virus scan
+ event might cause the file to be truncated and then a finished event might try to read the file,
+ just getting an empty string.
+
+ Backport of https://github.com/cs3org/reva/pull/4850
+
+ https://github.com/cs3org/reva/pull/4853
+
+* Enhancement #4701: Extend service account permissions
+
+ Adds AddGrant permisson
+
+ https://github.com/cs3org/reva/pull/4701
 
diff --git a/docs/content/en/docs/changelog/2.19.8/_index.md b/docs/content/en/docs/changelog/2.19.8/_index.md
@@ -0,0 +1,50 @@
+
+---
+title: "v2.19.8"
+linkTitle: "v2.19.8"
+weight: 40
+description: >
+ Changelog for Reva v2.19.8 (2024-09-23)
+---
+
+Changelog for reva 2.19.8 (2024-09-23)
+=======================================
+
+The following sections list the changes in reva 2.19.8 relevant to
+reva users. The changes are ordered by importance.
+
+Summary
+-------
+
+* Fix #4761: Quotes in dav Content-Disposition header
+* Fix #4853: Write upload session info atomically
+* Enh #4701: Extend service account permissions
+
+Details
+-------
+
+* Bugfix #4761: Quotes in dav Content-Disposition header
+
+ We've fixed the the quotes in the dav `Content-Disposition` header. They caused an issue where
+ certain browsers would decode the quotes and falsely prepend them to the filename.
+
+ https://github.com/owncloud/web/issues/11031
+ https://github.com/owncloud/web/issues/11169
+ https://github.com/cs3org/reva/pull/4761
+
+* Bugfix #4853: Write upload session info atomically
+
+ We now use a lock and atomic write on upload session metadata to prevent empty reads. A virus scan
+ event might cause the file to be truncated and then a finished event might try to read the file,
+ just getting an empty string.
+
+ Backport of https://github.com/cs3org/reva/pull/4850
+
+ https://github.com/cs3org/reva/pull/4853
+
+* Enhancement #4701: Extend service account permissions
+
+ Adds AddGrant permisson
+
+ https://github.com/cs3org/reva/pull/4701
+