2021-09-08

Release Notes

API Changes

• Add POST /conversations/list/v2 (#1703)
• Deprecate POST /list-conversations (#1703)

Features

• Bump SFTD to 2.0.127 (#1745)

Bug fixes and other updates

• Remove support for managed conversations in member removal (#1718)
• Update the webapp to correct labeling on CBR calling (#1743)

Documentation

• Document backend internals for user connections (#1717)
• Open Update spar braindump and explain idp deletion (#1728)

Internal changes

• Integration test script does not display the output interactively (#1742)
• Clean up JSON golden tests (#1729, #1732, #1733)
• Make regenerated golden tests' JSON output deterministic (#1734)
• Import fix for snappy linker issue (#1736)

Federation changes

• Refactored remote error handling in federator (#1681)
• The update conversation membership federation endpoint takes OriginDomainHeader (#1719)
• Added new endpoint to allow fetching conversation metadata by qualified ids (#1703)

Release 2021 08 27

Release Notes

API Changes

• Deprecate DELETE /conversations/:cnv/members/:usr (#1697)
• Add DELETE /conversations/:cnv/members/:domain/:usr (#1697)

Features

Bug fixes and other updates

• Fix case sensitivity in schema parser in hscim library (#1714)
• [helm charts] resolve a rate-limiting issue when using certificate-manager alongside wire-server and nginx-ingress-services helm charts (#1715)

Documentation

• Improve Swagger for DELETE /conversations/:cnv/members/:usr (#1697)

Internal changes

• Integration test script now displays output interactively (#1700)
• Fixed a few issues with error response documentation in Swagger (#1707)
• Make mapping between (team) permissions and roles more lenient (#1711)
• The DELETE /conversations/:cnv/members/:usr endpoint rewritten to Servant (#1697)
• Remove leftover auto-connect internal endpoint and code (#1716)
• Bump wire-webapp (#1720)
• Bump team-settings (#1721)
• Bump account-pages (#1666)

Federation changes

• Added client certificate support for server to server authentication (#1682)
• Implemented full server-to-server authentication (#1687)
• Add an endpoint for removing a qualified user from a local conversation (#1697)

2021-08-16

Release Notes

This is a routine release requiring only the routine upgrade steps.

API Changes

• Add POST /conversations/list-ids (#1686)
• Deprecate GET /converstations/ids (#1686)

Features

• Client functions for the hscim library (#1694, #1699, #1702, https://hackage.haskell.org/package/hscim)

Bug fixes and other updates

• Change http response code for missing-legalhold-consent. (#1688)
• Remove old end-point for changing email

Federation changes (alpha feature, do not use yet)

• Add new API to list paginated qualified conversation ids (#1686)

Documentation

• Fix swagger: mark name in UserUpdate as optional (#1691, #1692)

Internal changes

• Replaced uses of UVerb and EmptyResult with MultiVerb (#1693)
• Added a mechanism to derive AsUnion instances automatically (#1693)
• Integration test coverage (#1696, #1704)

2021-08-02

Release Notes

If you want to set the default for file sharing in all teams to disabled, search for "File Sharing" in https://github.com/wireapp/wire-server/tree/develop/docs/reference/config-options.md.

Release Notes for Wire.com Cloud operators

Upgrade nginz (#1658)

API Changes

Features

• A new team feature for classified domains is available (#1626):
  • a public endpoint is at GET /teams/:tid/features/classifiedDomains
  • an internal endpoint is at GET /i/teams/:tid/features/classifiedDomains
• Extend feature config API (#1658)
• fileSharing feature config (#1652, #1654, #1655)
• conferenceCalling feature flag (#1683)
• Add user_id to csv export (#1663)

Bug fixes and other updates

• New, hardened end-point for changing email (68b4db0)
• Fix: CSV export is missing SCIM external id when SAML is also used (#1608)
• Fix: sso_id field in user record (brig) was not always filled correctly in cassandra (#1334)

Documentation

• Improved Swagger documentation for endpoints with multiple responses (#1649, #1645)

Internal changes

• Improvements to local integration test setup when using buildah and kind (#1667)
• The servant-swagger dependency now points to the current upstream master (#1656)
• Improved error handling middleware (#1671)
• Refactor function createUser for readability (#1670)
• Removed explicit implementation for user HEAD endpoints (#1679)
• Improved test coverage for error responses (#1680)
• Introduced MultiVerb endpoints in Servant API (#1649).

Federation changes (alpha feature, do not use yet)

• Validate server TLS certificate between federators (#1662)
• A clarification is added about listing your own domain as a classified domain (#1678)
• Added a QualifiedCapture type to Servant for qualified paths (#1669)
• Renamed DomainHeader type to OriginDomainHeader (#1689)
• Added golden tests for protobuf serialisation / deserialisation (#1644).

2021-07-09

Release Notes

This release requires a manual change in your galley configuration: settings.conversationCodeURI in galley.yaml was had to be set to ${WEBAPP}/join before this release, and must be set to ${ACCOUNTS}/conversation-join from now on, where ${WEBAPP} is the url to the webapp and ${ACCOUNTS} is the url to the account pages.

API Changes

• Several public team feature endpoints are removed (their internal and
  Stern-based counterparts remain available):
  • PUT /teams/:tid/features/sso
  • PUT /teams/:tid/features/validateSAMLemails
  • PUT /teams/:tid/features/digitalSignatures
• All endpoints that fetch conversation details now also include a new key
  qualified_id for a qualified conversation ID (#1640)
• New endpoint POST /list-conversations similar to GET /conversations, but which will also return your own remote conversations (if federation is enabled). (#1591)

Features

• Change settings.conversationCodeURI in galley.yaml (#1643).
• [Federation] RPC to propagate messages to other backends (#1596).
• [Federation] Fetch remote user's clients when sending messages (#1635).
• [Federation] Actually propagate messages to other backends (#1638).
• [Federation] Support sending messages to remote conversations (#1609).
• [Federation] Guard against path traversal attacks (#1646).

Internal changes

• Feature endpoints are rewritten in Servant (#1642).
• Internal federation endpoints using the publicly-facing conversation data type
  now also include a qualified conversation ID under the qualified_id key
  (#1640)
• schema-profunctor: add optField combinator and corresponding documentation (#1621, #1624).
• [Federation] Let a receiving backend decide conversation attribute specifics of its users
  added to a new conversation via POST /federation/register-conversation (#1622).
• [Federation] Adjust scripts under ./hack/federation to work with recent changes to the federation API (#1632).
• Refactored Proteus endpoint to work with qualified users (#1634).
• Refactored Federator InternalServer (#1637)

Internal Federation API changes

• Breaking change on InwardResponse and OutwardResponse in router.proto for improved error handling (#1637)
  • Note: federation should not be in use anywhere yet, so this should not have any impact

Documentation

• Fix validation errors in Swagger documentation (#1625).

Bug fixes and other updates

• Restore old behaviour for parse errors in request bodies (#1628, #1629).
• Allow to change IdP Issuer name to previous name (#1615).

2021-06-23

IMPORTANT NOTE

This release is broken and should not be installed. Please upgrade to https://github.com/wireapp/wire-server/releases/tag/v2021-07-09 directly and consult release notes for both this and the new release.

API Changes

• [Federation] Add qualified endpoint for sending messages at POST /conversations/:domain/:cnv/proteus/messages (#1593, #1614, #1616, #1620).
• Replace 'otr' with 'proteus' in new message sending API (#1616)

Features

Bug fixes and other updates

• [helm] Allow sending messages upto 40 MB by default (#1614)
• Fix for GHSA-382j-mmc8-m5rw (#1613)
• Update wire-webapp version (#1613)
• Update team-settings version (#1598)
• Allow optional password field in RmClient (#1604, #1607)
• Add endpoint: Get name, id with for CodeAccess conversations (#1592)
• demote logging failed invitations to a warning, rather than an error. Server operators can't act on these errors in any way (#1586)

Documentation

• Add descriptive comments to ConversationMemberUpdate (#1578)
• initial few anti-patterns and links about cassandra (#1599)

Internal changes

• Rename a local members field in the Conversation data type (#1580)
• Servantify Protobuf endpoint to send messages (#1583)
• Servantify own client API (#1584, #1603)
• Remove resource requests (#1581)
• Import http2 fix (#1582)
• Remove stale FUTUREWORK comment (#1587)
• Reorganise helper functions for conversation notifications (#1588)
• Extract origin domain header name for use in API (#1597)
• Merge Empty200, Empty404 and EmptyResult (#1589)
• Set content-type header for JSON errors in Servant (#1600)
• Add golden tests for ClientCapability(List) (#1590)
• Add checklist for PRs (#1601, #1610)
• Remove outdated TODO (#1606)
• submodules (#1612)

More federation changes (inactive code)

• Add getUserClients RPC (and thereby allow remote clients lookup) (#1500)
• minor refactor: runFederated (#1575)
• Notify remote backends when users join (#1556)
• end2end test getting remote conversation and complete its implementation (#1585)
• Federation: Notify Remote Users of Being Added to a New Conversation (#1594)
• Add qualified endpoint for sending messages (#1593, #1614)
• Galley/int: Expect remote call when creating conv with remotes (#1611)

2021-06-08

Release Notes

This release doesn't require any extra considerations to deploy.

Release Notes for Wire.com Cloud operators

Deploy brig before galley (#1526, #1549)

Features

• Update versions of webapp, team-settings, account-pages (#1559)
• Add missing /list-users route (#1572)
• [Legalhold] Block device handshake in case of LH policy conflict (#1526)
• [Legalhold] Fix: Connection type when unblocking after LH (#1549)
• [Legalhold] Allow Legalhold for large teams (>2000) if enabled via whitelist (#1546)
• [Legalhold] Add ClientCapabilities to NewClient. (#1552)
• [Legalhold] Dynamic whitelisted teams & whitelist-teams-and-implicit-consent feature in tests (#1557, #1574)
• [Federation] Add remote members to conversations (#1529)
• [Federation] Federation: new endpoint: GET /conversations/{domain}/{cnv} (#1566)
• [Federation] Parametric mock federator (#1558)
• [Federation] Add more information to federation errors (#1560)
• [Federation] Add remote users when creating a conversation (#1569)
• [Federation] Update conversation membership in a remote backend (#1540)
• [Federation] expose /conversations/{cnv}/members/v2 for federation backends (#1543)

Bug fixes and other updates

• Fix MIME-type of asset artifacts
• Add some missing charts (#1533)

Internal changes

• Qualify users and conversations in Event (#1547)
• Make botsAndUsers pure (#1562)
• Set swagger type of text schema (#1561)
• More examples in schema-profunctor documentation (#1539)
• Refactoring-friendly FutureWork data type (#1550)
• nginz/Dockerfile: Run 'apk add' verbosely for debugging (#1565)
• Introduce a generalized version of wai-extra Session type constructor (#1563)
• Avoid wrapping error in rethrow middleware (#1567)
• wire-api: Introduce ErrorDescription (#1573)
• [Federation] Use Servant.respond instead of explicit SOP (#1535)
• [Federation] Add end2end test for adding remote users to a conversation (#1538)
• [Federation] Add required fields to Swagger for SchemaP (#1536)
• [Federation] Add Galley component to federator API (#1555)
• [Federation] Generalises the mock federator to work with any MonadIO m monad (#1564)
• [Federation] Introduces the HasGalley class (#1568)
• [Federation] Servantify JSON endpoint to send messages (#1532)
• [Federation] federator: rename Brig -> Service and add galley (#1570)

Documentation

• Update Rich Info docs (#1544)

2021-05-26

Release Notes

Legalhold: This release introduces a notion of "consent" to
legalhold (LH). If you are using LH on your site, follow the
instructions in
https://github.com/wireapp/wire-server/blob/814f3ebc251965ab4492f5df4d9195f3b2e0256f/docs/reference/team/legalhold.md#whitelisting-and-implicit-consent
after the upgrade. Legalhold will not work as expected until you
change galley.conf as described!

SAML/SCIM: This release introduces changes to the way NameID is
processed: all identifiers are stored in lower-case and qualifiers are
ignored. No manual upgrade steps are necessary, but consult
https://docs.wire.com/how-to/single-sign-on/trouble-shooting.html#theoretical-name-clashes-in-saml-nameids
on whether you need to re-calibrate your SAML IdP / SCIM setup.
(Reason / technical details: this change is motivated by two facts:
(1) email casing is complicated, and industry best practice appears to
be to ignore case information even though that is in conflict with the
official standard documents; and (2) SCIM user provisioning does not
allow to provide SAML NameID qualifiers, and guessing them has proven
to be infeasible. See
#1495 for the code
changes.)

Features

• [SAML/SCIM] More lenient matching of user ids (#1495)
• [Legalhold] Block and kick users in case of LH no_consent conflict (1:1 convs). (#1507, #1530)
• [Legalhold] Add legalhold status to user profile (#1522)
• [Legalhold] Client-supported capabilities end-point (#1503)
• [Legalhold] Whitelisting Teams for LH with implicit consent (#1502)
• [Federation] Remove OptionallyQualified data type from types-common (#1517)
• [Federation] Add RPC getConversations (#1493)
• [Federation] Prepare remote conversations: Remove Opaque/Mapped Ids, delete remote identifiers from member/user tables. (#1478)
• [Federation] Add schema migration for new tables (#1485)
• [SAML/SCIM] Normalize SAML identifiers and fix issues with duplicate account creation (#1495)
• Internal end-point for ejpd request processing. (#1484)

Bug fixes and other updates

• Fix: NewTeamMember vs. UserLegalHoldStatus (increase robustness against rogue clients) (#1496)

Documentation

• Fixes a typo in the wire-api documentation (#1513)
• Unify Swagger 2.0 docs for brig, galley and spar (#1508)

Internal changes

• Cleanup (no change in behavior) (#1494, #1501)
• wire-api: Add golden test for FromJSON instance of NewOtrMessage (#1531)
• Swagger/JSON cleanup (#1521, #1525)
• Work around a locale issue in Ormolu (#1520)
• Expose mock federator in wire-api-federation (#1524)
• Prettier looking golden tests (#1527)
• Refactorings, bug fixes (in tests only) (#1523)
• Use sed instead of yq to read yaml files (#1518)
• Remove zauth dependency from wire-api (#1516)
• Improve naming conventions federation RPC calls (#1511)
• Event refactoring and schema instances (#1506)
• Fix: regenerate cabal files. (#1510)
• Make DerivingVia a package default. (#1505)
• Port instances to schemas library (#1482)
• wire-api-federator: Make client tests more reliable (#1491)
• Remove duplicated roundtrip test (#1498)
• schema-profunctor: Add combinator for nonEmptyArray (#1497)
• Golden tests for JSON instances (#1486)
• galley: Convert conversation endpoints to servant (#1444, #1499)
• Fix Arbitrary instances and enable corresponding roundtrip tests (#1492)
• wire-api-fed: Mark flaky tests as pending
• RFC: Schemas for documented bidirectional JSON encoding (#1474)

v2021-05-05

Features

• [brig] New option to use a random prekey selection strategy to remove DynamoDB dependency (#1416, #1476)
• [brig] Ensure servant APIs are recorded by the metrics middleware (#1441)
• [brig] Add exact handle matches from all teams in /search/contacts (#1431, #1455)
• [brig] CSV endpoint: Add columns to output (#1452)
• [galley] Make pagination more idiomatic (#1460)
• [federation] Testing improvements (#1411, #1429)
• [federation] error reporting, DNS error logging (#1433, #1463)
• [federation] endpoint refactoring, new brig endpoints, servant client for federated calls, originDomain metadata (#1389, #1446, #1445, #1468, #1447)
• [federation] Add federator to galley (#1465)
• [move-team] Update move-team with upstream schema changes #1423

Bug fixes and other updates

• [security] Update webapp container image tag to address CVE-2021-21400 (#1473)
• [brig] Return correct status phrase and body on error (#1414) …
• [brig] Fix FromJSON instance of ListUsersQuery (#1456)
• [galley] Lower the limit for URL lengths for galley -> brig RPC calls (#1469)
• [chores] Remove unused dependencies (#1424) …
• [compilation] Stop re-compiling nginz when running integration test for unrelated changes
• [tooling] Use jq magic instead of bash (#1432), Add wget (#1443)
• [chores] Refactor Dockerfile apk installation tasks (#1448)
• [tooling] Script to generate token for SCIM endpoints (#1457)
• [tooling] Ormolu script improvements (#1458)
• [tooling] Add script to colourise test failure output (#1459)
• [tooling] Setup for running tests in kind (#1451, #1462)
• [tooling] HLS workaround for optimisation flags (#1449)

Documentation

• [docs] Document how to run multi-backend tests for federation (#1436)
• [docs] Fix CHANGELOG: incorrect release dates (#1435)
• [docs] Update release notes with data migration for SCIM (#1442)
• [docs] Fixes a k8s typo in the README (#1475)
• [docs] Document testing strategy and patterns (#1472)

2021-05-04

Intermediary release. See v2021-05-05.