Nextcloud Hub 28.0.8
30 July 2024
Nextcloud Hub version 28.0.8 is now available.
Upgrading to Nextcloud Hub 28.0.8
Nextcloud Hub 28.0.8 can be upgraded to (or installed) using any of Installatron's products. Use Installatron's optional Automatic Update feature to automatically apply Nextcloud Hub updates as new versions are released, or use Installatron's Clone feature to duplicate an existing Nextcloud Hub install to test the 28.0.8 upgrade prior to applying it live. Get started managing your Nextcloud Hub installations with Installatron
What's New in Nextcloud Hub 28.0.8
Bug Fixes and Changes
- Fix: don’t return null for SharedStorage::getWrapperStorage with share recursion (server#44323)
- Fix(settings): Use axios directly for health check to preven URL sanitizing (server#45770)
- Fix npm audit (server#45891)
- Chore(deps): Bump deepdiver/zipstreamer (server#45896)
- Fix(files): Properly handle denied ownership transfers (server#45905)
- Delete background jobs by id when cleaning up (server#45920)
- Fix(settings): define a ‘heartbeat’ route, so SecurityHeaders can handle redirected root (server#45955)
- Rename openFileInfo to fileInfo (server#45987)
- Fix: avoid duplicate tag inserts by checking if the mapping exists already in db (server#45994)
- Fix(caldav): encode calendar URIs with umlauts for activities (server#46011)
- Don’t trigger action when renaming (server#46019)
- Fix: Do not log an error when connecting to SFTP without a logged in user (server#46060)
- Fix: don’t use custom certificate bundle if no customer certificates are configured (server#46067)
- Fix: allows admin to edit global credentials (server#46090)
- Fix(files_versions): renaming file version when its not a string (server#46092)
- Fix(FilesView): Update files view upon share creation/delete (server#46118)
- Feat(files): increase max copy-move concurrency to 5 (server#46129)
- Update favorites navigation list on folder renames (server#46138)
- Fix(files_sharing): Also set the expiration date timezone during validation (server#46141)
- Fix(caldav): When message is a reply compare the message sender not the recipient (server#46145)
- Fix(security): Update code signing revocation list (server#46155)
- Fix(openapi): Regenerate OpenAPI after server changes (server#46164)
- Fix(cron): Log long running jobs (server#46191)
- Fix: getMountsForFileId may return an unordered list (server#46214)
- Fix(DAV): offset not applied (server#46221)
- Fix(setupchecks): skip check when disk_free_space is disabled (server#46223)
- Chore: upgrade `@nextcloud/files` and `@nextcloud/sharing` (server#46236)
- Build(deps): Bump @nextcloud/calendar-availability-vue from 2.2.0 to 2.2.2 (server#46238)
- Build(deps): Bump @nextcloud/vue from 8.11.2 to 8.14.0 (server#46239)
- Build(deps-dev): Bump karma-coverage from 2.2.0 to 2.2.1 (server#46241)
- Build(deps-dev): Bump @types/dockerode from 3.3.28 to 3.3.29 (server#46243)
- Build(deps-dev): Bump cypress from 13.7.2 to 13.7.3 (server#46245)
- Fix(security): Update CA certificate bundle (server#46265)
- Fix(ExternalSharing): Handle template shares from external sources (server#46280)
- Fix(IntegrityCheck): Ensure the check is run if no results are available (server#46297)
- Fix(SetupCheck): jsm test shall not give up with first no-response (server#46302)
- Fix(carddav): limit vcard size (server#46313)
- Sidebar: allow turning off tags view by default (server#46316)
- Chore(deps): bump dompurify from 3.1.4 to 3.1.6 (server#46335)
- Chore(deps-dev): bump jsdoc from 4.0.2 to 4.0.3 (server#46336)
- Chore(deps-dev): bump mime from 4.0.1 to 4.0.4 (server#46337)
- Chore(deps-dev): bump ts-jest from 29.1.2 to 29.1.5 (server#46338)
- Chore(mp3info): apply upstream patch for invalid array access (server#46341)
- Fix(SharingDetailsView): Prevent illegal unselection of read permissions (server#46364)
- Fix(s3): Don’t wait indefinitely for S3 to return (server#46366)
- Perf: Set session.cache_limiter at runtime to avoid clients caching static assets served by PHP (server#46394)
- Fix(workflows): Fix file systemtag cache (server#46411)
- Fix(files_trashbin): Make files view registering an init script (server#46417)
- Fix(caldav): limit vevent size (server#46421)
- Fix: Update Nextcloud libraries (server#46422)
- Test: run tests in child process (server#46430)
- Fix(theming): Conitionally disable blur filter for performance (server#46431)
- Fix(theming): Don’t reset the cachebuster value when we reset theming (server#46433)
- Fix(Session): avoid race conditions on clustered setups (server#46436)
- Feat: don’t count failed CSRF as failed login attempt (server#46442)
- Fix(ci): Use low runners were possible (server#46468)
- Stop file actions when conflict dialog skipped (server#46561)
- Fix(CI): Update setup-php, setup-node, checkout and paths-filter actions (server#46576)
- Fix(files_sharing): also allow removing READ permissions on email shares (server#46599)
- Chore(deps): Bump deepdiver/zipstreamer from 2.0.2 to 2.0.3 (3rdparty#1865)
- Chore: set version in composer.json (3rdparty#1892)
- Chore(mp3info): apply upstream patch for invalid array access (3rdparty#1895)
- Ignore empty fileIds (circles#1624)
- Fix npm audit (files_pdfviewer#984)
- Update nextcloud/ocp dependency (firstrunwizard#1244)
- Fix npm audit (firstrunwizard#1258)
- Update nextcloud/ocp dependency (logreader#1253)
- Chore(deps): Bump @nextcloud/files from 3.1.0 to 3.1.1 (photos#2398)
- Fix npm audit (photos#2464)
- Update nextcloud/ocp dependency (photos#2473)
- Various fix from 30 (photos#2518)
- Chore(deps-dev): Bump postcss from 8.4.35 to 8.4.39 (photos#2523)
- Fix: avoid erroring out on corrupt image data (photos#2529)
- Fix(l10n): Translate “All Tags” string (photos#2531)
- Feat: Handle complex location type (photos#2537)
- Fix npm audit (privacy#1090)
- Update nextcloud/ocp dependency (related_resources#437)
- Fix npm audit (related_resources#439)
- Update nextcloud/ocp dependency (serverinfo#624)
- Fix: handle getNetInterfaces error (serverinfo#632)
- Fix: update wording about apps element in monitoring response (serverinfo#634)
- Chore: update workflows from templates (survey_client#225)
- Update nextcloud/ocp dependency (survey_client#292)
- Fix npm audit (suspicious_login#886)
- Fix(description): 5688 no need to encode filename (text#5718)
- Update nextcloud/ocp dependency (text#5911)
- Fix npm audit (text#5914)
- Perf: Reduce polling interval for read only users (text#5935)
- Chore(deps): update cypress (text#5972)
- Fix(attachments): Don’t require document session for getting attachments (text#5980)
- Revert “chore(deps): update cypress” (text#5982)
- Request the native app to reload the direct editing view on 403 errors (text#5984)
- Keep base version etag during reload (text#5986)
- Fix(ApiService): Catch NotPermittedException and return 404 (text#6022)
- Ci(test): use codecov token (twofactor_totp#1536)
- Fix(deps): update dependency webdav to ^5.6.0 (viewer#2257)
- Fix npm audit (viewer#2337)
- Fix(requesttoken): Make sure to use the correct requesttoken in WebdavClient (viewer#2343)
- Fix npm audit (viewer#2366)