Merge pull request #4860 from 2403905/release-2.19.8

release-2.19.8
cs3org · Sep 23, 2024 · 2387674 · 2387674
2 parents f9a75a1 + 8d725e2
commit 2387674
Show file tree

Hide file tree

Showing 9 changed files with 201 additions and 89 deletions.
diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -1,3 +1,44 @@
+Changelog for reva 2.19.8 (2024-09-23)
+=======================================
+
+The following sections list the changes in reva 2.19.8 relevant to
+reva users. The changes are ordered by importance.
+
+Summary
+-------
+
+*   Fix #4761: Quotes in dav Content-Disposition header
+*   Fix #4853: Write upload session info atomically
+*   Enh #4701: Extend service account permissions
+
+Details
+-------
+
+*   Bugfix #4761: Quotes in dav Content-Disposition header
+
+   We've fixed the the quotes in the dav `Content-Disposition` header. They caused an issue where
+   certain browsers would decode the quotes and falsely prepend them to the filename.
+
+   https://github.com/owncloud/web/issues/11031
+   https://github.com/owncloud/web/issues/11169
+   https://github.com/cs3org/reva/pull/4761
+
+*   Bugfix #4853: Write upload session info atomically
+
+   We now use a lock and atomic write on upload session metadata to prevent empty reads. A virus scan
+   event might cause the file to be truncated and then a finished event might try to read the file,
+   just getting an empty string.
+
+   Backport of https://github.com/cs3org/reva/pull/4850
+
+   https://github.com/cs3org/reva/pull/4853
+
+*   Enhancement #4701: Extend service account permissions
+
+   Adds AddGrant permisson
+
+   https://github.com/cs3org/reva/pull/4701
+
 Changelog for reva 2.19.7 (2024-05-13)
 =======================================
 
@@ -3958,6 +3999,34 @@ Details
 
    https://github.com/cs3org/reva/pull/3083
 
+Changelog for reva 2.7.1 (2022-07-15)
+=======================================
+
+The following sections list the changes in reva 2.7.1 relevant to
+reva users. The changes are ordered by importance.
+
+Summary
+-------
+
+*   Fix #3080: Make dataproviders return more headers
+*   Enh #3046: Add user filter
+
+Details
+-------
+
+*   Bugfix #3080: Make dataproviders return more headers
+
+   Instead of ocdav doing an additional Stat request we now rely on the dataprovider to return the
+   necessary metadata information as headers.
+
+   https://github.com/owncloud/reva/issues/3080
+
+*   Enhancement #3046: Add user filter
+
+   This PR adds the ability to filter spaces by user-id
+
+   https://github.com/cs3org/reva/pull/3046
+
 Changelog for reva 2.7.0 (2022-07-15)
 =======================================
 
@@ -4090,34 +4159,6 @@ Details
    https://github.com/owncloud/ocis/issues/3073
    https://github.com/cs3org/reva/pull/2977
 
-Changelog for reva 2.7.1 (2022-07-15)
-=======================================
-
-The following sections list the changes in reva 2.7.1 relevant to
-reva users. The changes are ordered by importance.
-
-Summary
--------
-
-*   Fix #3080: Make dataproviders return more headers
-*   Enh #3046: Add user filter
-
-Details
--------
-
-*   Bugfix #3080: Make dataproviders return more headers
-
-   Instead of ocdav doing an additional Stat request we now rely on the dataprovider to return the
-   necessary metadata information as headers.
-
-   https://github.com/owncloud/reva/issues/3080
-
-*   Enhancement #3046: Add user filter
-
-   This PR adds the ability to filter spaces by user-id
-
-   https://github.com/cs3org/reva/pull/3046
-
 Changelog for reva 2.6.1 (2022-06-27)
 =======================================
 

diff --git a/RELEASE_DATE b/RELEASE_DATE
@@ -1 +1 @@
-2024-05-13
+2024-09-23
diff --git a/VERSION b/VERSION
@@ -1 +1 @@
-2.19.7
+2.19.8
diff --git a/...d/extend-service-account-permissions-2.md → ...3/extend-service-account-permissions-2.md b/...d/extend-service-account-permissions-2.md → ...3/extend-service-account-permissions-2.md
diff --git a/...-quotes-in-content-disposition-headers.md → ...-quotes-in-content-disposition-headers.md b/...-quotes-in-content-disposition-headers.md → ...-quotes-in-content-disposition-headers.md
diff --git a/...eased/write-upload-sessions-atomically.md → ...09-23/write-upload-sessions-atomically.md b/...eased/write-upload-sessions-atomically.md → ...09-23/write-upload-sessions-atomically.md
diff --git a/changelog/NOTE.md b/changelog/NOTE.md
@@ -1,20 +1,41 @@
-Changelog for reva 2.19.7 (2024-05-13)
+Changelog for reva 2.19.8 (2024-09-23)
 =======================================
 
-The following sections list the changes in reva 2.19.7 relevant to
+The following sections list the changes in reva 2.19.8 relevant to
 reva users. The changes are ordered by importance.
 
 Summary
 -------
 
-*   Enh #4673: Add virus filter to list uploads sessions
+*   Fix #4761: Quotes in dav Content-Disposition header
+*   Fix #4853: Write upload session info atomically
+*   Enh #4701: Extend service account permissions
 
 Details
 -------
 
-*   Enhancement #4673: Add virus filter to list uploads sessions
+*   Bugfix #4761: Quotes in dav Content-Disposition header
 
-   Adds a filter for filtering for infected uploads
+   We've fixed the the quotes in the dav `Content-Disposition` header. They caused an issue where
+   certain browsers would decode the quotes and falsely prepend them to the filename.
 
-   https://github.com/cs3org/reva/pull/4673
+   https://github.com/owncloud/web/issues/11031
+   https://github.com/owncloud/web/issues/11169
+   https://github.com/cs3org/reva/pull/4761
+
+*   Bugfix #4853: Write upload session info atomically
+
+   We now use a lock and atomic write on upload session metadata to prevent empty reads. A virus scan
+   event might cause the file to be truncated and then a finished event might try to read the file,
+   just getting an empty string.
+
+   Backport of https://github.com/cs3org/reva/pull/4850
+
+   https://github.com/cs3org/reva/pull/4853
+
+*   Enhancement #4701: Extend service account permissions
+
+   Adds AddGrant permisson
+
+   https://github.com/cs3org/reva/pull/4701
 
diff --git a/docs/content/en/docs/changelog/2.19.8/_index.md b/docs/content/en/docs/changelog/2.19.8/_index.md
@@ -0,0 +1,50 @@
+
+---
+title: "v2.19.8"
+linkTitle: "v2.19.8"
+weight: 40
+description: >
+  Changelog for Reva v2.19.8 (2024-09-23)
+---
+
+Changelog for reva 2.19.8 (2024-09-23)
+=======================================
+
+The following sections list the changes in reva 2.19.8 relevant to
+reva users. The changes are ordered by importance.
+
+Summary
+-------
+
+*   Fix #4761: Quotes in dav Content-Disposition header
+*   Fix #4853: Write upload session info atomically
+*   Enh #4701: Extend service account permissions
+
+Details
+-------
+
+*   Bugfix #4761: Quotes in dav Content-Disposition header
+
+   We've fixed the the quotes in the dav `Content-Disposition` header. They caused an issue where
+   certain browsers would decode the quotes and falsely prepend them to the filename.
+
+   https://github.com/owncloud/web/issues/11031
+   https://github.com/owncloud/web/issues/11169
+   https://github.com/cs3org/reva/pull/4761
+
+*   Bugfix #4853: Write upload session info atomically
+
+   We now use a lock and atomic write on upload session metadata to prevent empty reads. A virus scan
+   event might cause the file to be truncated and then a finished event might try to read the file,
+   just getting an empty string.
+
+   Backport of https://github.com/cs3org/reva/pull/4850
+
+   https://github.com/cs3org/reva/pull/4853
+
+*   Enhancement #4701: Extend service account permissions
+
+   Adds AddGrant permisson
+
+   https://github.com/cs3org/reva/pull/4701
+