Nextcloud Server Changelog

We recommend you follow our Release Channels to always have the latest and most secure Nextcloud Server version which fits your needs.

Go directly to the latest maintenance release of:

• Nextcloud 24
• Nextcloud 23
• Nextcloud 22
• Nextcloud 21 (unsupported!)
• Nextcloud 20 (unsupported!)
• Nextcloud 19 (unsupported!)
• Nextcloud 18 (unsupported!)
• Nextcloud 17 (unsupported!)
• Nextcloud 16 (unsupported!)
• Nextcloud 15 (unsupported!)
• Nextcloud 14 (unsupported!)
• Nextcloud 13 (unsupported!)
• Nextcloud 12 (unsupported!)
• Nextcloud 11 (unsupported!)
• Nextcloud 10 (unsupported!)
• Nextcloud 9 (unsupported!)

Note here that with ‘supported’ in this context we mean that software updates will be available to the public, not that there is any actual support beyond community members answering questions in our home user forums. If you need to run Nextcloud in an enterprise setting, we recommend Nextcloud Enterprise.

Privacy needs security

We strongly recommend to stay up to date with Nextcloud to keep your data safe. The minor releases fix security issues that are found through, for example, our HackerOne program. Not doing so can put your data at risk. Update timely and don’t run unmaintained Nextcloud versions. Privacy does not exist without security.
Our security policy is to publicize CVE’s about 3 weeks after public availability of a new minor release. Administrators can then learn more about the vulnerabilities fixed and determine if their systems might have been vulnerable. As malicious actors are at this point more able to determine attack vectors, it is important to have updated before the CVE’s are published.

We provide advance patches and security information for no-downtime-security-patching for Nextcloud Enterprise. If you run a server with sensitive data at scale, we highly recommend to use Nextcloud Enterprise.

latest 24 release below.

Version 24.0.1 May 3 2022

Download: nextcloud-24.0.1.tar.bz2 or nextcloud-24.0.1.zip
Check the file integrity with:
MD5: nextcloud-24.0.1.tar.bz2.md5 or nextcloud-24.0.1.zip.md5
SHA256: nextcloud-24.0.1.tar.bz2.sha256 or nextcloud-24.0.1.zip.sha256
SHA512: nextcloud-24.0.1.tar.bz2.sha512 or nextcloud-24.0.1.zip.sha512
PGP (Key): nextcloud-24.0.1.tar.bz2.asc or nextcloud-24.0.1.zip.asc

Changes

• Bump karma-spec-reporter from 0.0.33 to 0.0.34 (server#31985)
• Tell mysql to ignore the sort index for search queries (server#32123)
• Update description of cronjob settings to be aligned to the documenta… (server#32133)
• Fix showing of all apps are up-to-date in apps management (server#32153)
• Fx translations with trailing colon (server#32159)
• Fix social sharing buttons (server#32181)
• Revert “Show the child folders in the breadcrumb menu when on a parent entry.” (server#32219)
• Use sabre function directly rather than duplicating it (server#32236)
• Revert “Revert “Make the order of reactions reliable”” (server#32241)
• Include more emoji chars to test and fixes after include it (server#32256)
• Expose shareWithDisplayNameUnique also on autocomplete endpoint (server#32275)
• Don’t use hash to check if binding worked (server#32282)
• Fix preview generator trying to recreate an existing folder (server#32320)
• Fix for transferring ownership of groupfolders (server#32329)
• Add share search tweaks (server#32360)
• Don’t unjail the path when getting the storage info (server#32365)
• Increase retry delay on ‘Wait for S3’ CI job (server#32368)
• Bump karma from 6.3.17 to 6.3.20 (server#32386)
• Bump moment from 2.29.2 to 2.29.3 (server#32402)
• Fix user agent trimming on installation (server#32414)
• Show user account on grant loginflow step (server#32415)
• Only log diagnostic events if a treshhold is set (server#32424)
• Replace isValidEmoji by method in EmojiHelper (server#32437)
• Add Email validation (server#32472)
• Switch to getOption() (circles#1042)
• Add new diagram templates (example-files#23)
• Adapt layout after viewer update (files_pdfviewer#597)
• Update phpunit workflows (files_pdfviewer#599)
• Prevent video file downloads when there is a download limit (files_videoplayer#275)
• Fix password generation (password_policy#357)
• Fix FreeBsd Interface parsing (serverinfo#373)
• Switch to auto table layout (text#2375)
• Use ‘(n)’ suffix instead of timestamp prefix for uploaded image names (text#2377)
• Manually get a mounted instance of the file if needed during lock/unlock (text#2380)
• Fix attachment cleanup when file names contain parenthesis (text#2389)
• Build(deps-dev): bump cypress from 9.5.3 to 9.5.4 (text#2402)
• Build(deps-dev): bump @vue/vue2-jest from 27.0.0-alpha.4 to 27.0.0 (text#2405)
• Fix viewer integration styling (text#2419)
• Revert “Revert “Improve preloading”” (viewer#1237)
• Revert “Revert “Revert “Improve preloading””” (viewer#1238)
• Fix design update after 5 vue components upgrade (viewer#1239)
• Improve preloading (viewer#1240)

Version 24.0.0 May 3 2022

Download: nextcloud-24.0.0.tar.bz2 or nextcloud-24.0.0.zip
Check the file integrity with:
MD5: nextcloud-24.0.0.tar.bz2.md5 or nextcloud-24.0.0.zip.md5
SHA256: nextcloud-24.0.0.tar.bz2.sha256 or nextcloud-24.0.0.zip.sha256
SHA512: nextcloud-24.0.0.tar.bz2.sha512 or nextcloud-24.0.0.zip.sha512
PGP (Key): nextcloud-24.0.0.tar.bz2.asc or nextcloud-24.0.0.zip.asc

Nextcloud Hub 24 is here!

The biggest improvements Nextcloud Hub 24 introduces are:

• 🙋 User migration
• 🔒 Smart file locking
• 🚀 4x lower db load
• ❤️ Reactions & media tab in Talk
• 🤩 Reply to calls & messages in Desktop client
• 💌 Undo send & schedule emails

Read our announcement blog for all the the details.

latest 23 release below.

Version 23.0.5 May 19 2022

Download: nextcloud-23.0.5.tar.bz2 or nextcloud-23.0.5.zip
Check the file integrity with:
MD5: nextcloud-23.0.5.tar.bz2.md5 or nextcloud-23.0.5.zip.md5
SHA256: nextcloud-23.0.5.tar.bz2.sha256 or nextcloud-23.0.5.zip.sha256
SHA512: nextcloud-23.0.5.tar.bz2.sha512 or nextcloud-23.0.5.zip.sha512
PGP (Key): nextcloud-23.0.5.tar.bz2.asc or nextcloud-23.0.5.zip.asc

Changes

• Use the nextcloud certificate bundle for s3 (server#31818)
• Federated share performance improvements (server#31902)
• Principal search by display name case insensitive (server#31976)
• Log why the login token can’t be used for credentials (server#31978)
• Bump babel-loader from 8.2.4 to 8.2.5 (server#32100)
• Bump moment from 2.29.2 to 2.29.3 (server#32101)
• Fix showing of all apps are up-to-date in apps management (server#32115)
• Do not update _lastChanged on auto-detected attributes (server#32120)
• Tell mysql to ignore the sort index for search queries (server#32124)
• Get not only time-sensitive next job from list but any when not in cron-mode (server#32131)
• Update description of cronjob settings to be aligned to the documenta… (server#32135)
• Fx translations with trailing colon (server#32160)
• L10n: Change apostrophe (server#32174)
• Fix social sharing buttons (server#32182)
• Don’t use plain URL on the email subject (server#32247)
• Don’t use hash to check if binding worked (server#32284)
• Fix preview generator trying to recreate an existing folder (server#32323)
• Fix for transferring ownership of groupfolders (server#32330)
• Bump @testing-library/vue from 5.8.2 to 5.8.3 (server#32334)
• Explicitly close div element (server#32417)
• Fix user agent trimming on installation (server#32420)
• Show user account on grant loginflow step (server#32422)
• Add Email validation (server#32474)
• Fix array key on import() (circles#1027)
• Switch to getOption() (circles#1043)
• Add new diagram templates (example-files#24)
• Update phpunit workflows (files_pdfviewer#600)
• Prevent video file downloads when there is a download limit (files_videoplayer#276)
• Fix password generation (password_policy#358)
• Bump babel-loader from 8.2.4 to 8.2.5 (privacy#764)
• Build(deps): bump prosemirror-view from 1.23.12 to 1.23.13 (text#2348)
• Improve preloading (viewer#1232)

 

Version 23.0.4 April 21 2022

Download: nextcloud-23.0.4.tar.bz2 or nextcloud-23.0.4.zip
Check the file integrity with:
MD5: nextcloud-23.0.4.tar.bz2.md5 or nextcloud-23.0.4.zip.md5
SHA256: nextcloud-23.0.4.tar.bz2.sha256 or nextcloud-23.0.4.zip.sha256
SHA512: nextcloud-23.0.4.tar.bz2.sha512 or nextcloud-23.0.4.zip.sha512
PGP (Key): nextcloud-23.0.4.tar.bz2.asc or nextcloud-23.0.4.zip.asc

Changes

• Run tests with primary object storage in CI + large upload fixes (server#31453)
• User_ldap fix ldap connection resets #31421 (server#31514)
• Validate overwrite.cli.url to be a url in setup check (server#31518)
• Fix duplicated UUID detection when there are empty uuids (server#31521)
• Fix occ user:add-app-password (server#31536)
• Fix the logger that is imported for critical actions (server#31540)
• Toggle profile globally (server#31624)
• Improve imagick, bcmath and gmp extension warnings (server#31634)
• Add optional WebDav propfind properties to count sub elements (server#31641)
• Fix listeners declaration in case of occ usage (server#31656)
• Do not forget DB table prefix with truncate query (server#31666)
• Limit the length of app password names (server#31678)
• Add OPcache recommendations to Transifex (server#31705)
• Bump babel-loader from 8.2.3 to 8.2.4 (server#31721)
• Add oauth2_clients migration for Owncloud (server#31730)
• Don’t create cards_abiduri it if already exists (server#31733)
• Show that the web updater is not recommended on big instances (server#31740)
• Add direct arg to login flow (server#31748)
• Wrap oauth2 migrations inside conditions (server#31774)
• Fix assignment of the LDAP Wizard connection (server#31785)
• Fix ldap wizard styling (server#31804)
• Bump guzzlehttp/psr7 from 1.8.3 to 1.8.5 (server#31821)
• Ignore errors when searching for bundled preview (server#31831)
• Deduplicate storage ids in list before reusing (server#31835)
• Dont re-query fileinfo when getting dav quota (server#31836)
• Take permissions from multiple paths into account for share permissions (server#31846)
• Log in audit log federated shares events (server#31856)
• Update autoloaders and Node package-lock.json (server#31862)
• Fix incorrect if conditions in View (server#31878)
• Do not decorate the CLI output if it’s explicitly turned off (server#31880)
• Fix _App::getCurrentApp() when being called from CLI or phpunit (server#31882)
• Bump moment from 2.29.1 to 2.29.2 (server#31913)
• Fix shared mount roots not being returned from getSharesInFolder (server#31923)
• Confirm user is internal to globalscale (server#31940)
• AmazonS3: allow not implemented versioning (server#31946)
• Fix accept/reject remote share action (server#31949)
• Update CRL after revocation of socialsharing_telegram.csr (server#31955)
• Fix LDAP Dark Theme Issue (server#31968)
• Bump guzzlehttp/psr7 from 1.8.3 to 1.8.5 (3rdparty#1016)
• Fallback to the admin settings if the user did not configure it (activity#781)
• Bypass/limit permissions (circles#1001)
• Update memberships on path change (circles#1007)
• Check owner attendance (circles#1010)
• Remove child shares (circles#1015)
• Update displayName (circles#1017)
• Oracle support (circles#978)
• Limit some feature when Circles is managed by an app (circles#982)
• Use stable23 for oci tests (circles#985)
• Missing $prec (circles#995)
• Update population (circles#997)
• Disable social recommendation (firstrunwizard#693)
• Fix settings navigation order (firstrunwizard#697)
• Bump babel-loader from 8.2.3 to 8.2.4 (privacy#752)
• Build(deps): bump prosemirror-view from 1.23.7 to 1.23.9 (text#2233)
• Build(deps): bump prosemirror-view from 1.23.9 to 1.23.10 (text#2259)
• Build(deps): bump prosemirror-view from 1.23.10 to 1.23.11 (text#2274)
• Fix: menu bubble size at the end of the line (text#2277)
• Build(deps): bump prosemirror-view from 1.23.11 to 1.23.12 (text#2286)
• Properly cancel and reset ongoing streams when unmounting (viewer#1208)

Version 23.0.3 March 21 2022

Download: nextcloud-23.0.3.tar.bz2 or nextcloud-23.0.3.zip
Check the file integrity with:
MD5: nextcloud-23.0.3.tar.bz2.md5 or nextcloud-23.0.3.zip.md5
SHA256: nextcloud-23.0.3.tar.bz2.sha256 or nextcloud-23.0.3.zip.sha256
SHA512: nextcloud-23.0.3.tar.bz2.sha512 or nextcloud-23.0.3.zip.sha512
PGP (Key): nextcloud-23.0.3.tar.bz2.asc or nextcloud-23.0.3.zip.asc

Changes

• Allow writing audit log to syslog and systemdlog (server#30852)
• Allow to disable AuthToken v1 (server#30949)
• Add primary key for ratelimit table (server#30965)
• Bump samba images in tests (server#30967)
• Update variables.scss – Fallback font before Noto Color Emoji (server#30969)
• Show if the mail server settings are not set or verified (server#30998)
• Use the unjailed-path in OC_Helper::getStorageInfo() for files located in SharedStorage. (server#30999)
• Fix: Birthday events missing after reimporting contacts (server#31000)
• Bump clipboard from 2.0.9 to 2.0.10 (server#31023)
• Fix bugs with incorrect currentFileList in the favorite and share by you view (server#31050)
• Allow specify a config prefix for another database connection (server#31059)
• Don’t provide favorite activity settings (server#31084)
• Only setup part of the filesystem for appdata requests (server#31098)
• Allow sub-admins to access delegated settings. (server#31102)
• Ignore contact interaction with self (server#31120)
• Fix overlapping buttons in apps-management (server#31179)
• Fix typo in DAV namespace registration (server#31183)
• Fix a broken tooltip (server#31184)
• Improve user status revert performance (server#31192)
• Fix path handling when transferring incoming shares (server#31204)
• Bump dompurify from 2.3.5 to 2.3.6 (server#31226)
• Improve caching policy use immutable when loading versionned assets (server#31244)
• Hide download button for images (server#31253)
• Don’t redirect when loading files index page (server#31255)
• Consider only reminders with calendar data (server#31262)
• Also cache non-existing to reuse it (server#31297)
• Ignore cache in occ ldap:check-ldap command (server#31299)
• Wrap S3 multipart upload exception (server#31302)
• Fix ldap:check-user method for newly created LDAP users (server#31306)
• Avoid PHP errors in the checkers drone step (server#31313)
• Background job time windows (server#31318)
• Mark split database configs as sensitive (server#31331)
• Update CRL after revocation of rocket_integration.csr (server#31350)
• Bump backbone from 1.4.0 to 1.4.1 (server#31369)
• Make Sabre File exception messages translatable (server#31392)
• Censor more configs (server#31399)
• Don’t set up full filesystem to check for certificates (server#31401)
• Also use hashed/indexed column on delete (server#31402)
• Fix caching of the user avatar (server#31410)
• Fix duplicate primary email message (server#31412)
• Fix developer link (server#31423)
• Fix fileactions for sharing overview (server#31424)
• Prevent default right-click options when hideDownload is enabled (server#31427)
• Fix return type of avatar file (server#31432)
• Fix “Nextcloud is not allowed to use the OPcache API” warning (server#31437)
• Add Nextcloud docs link to OPcache recommends (server#31438)
• Be conservative when reading from fresh created column (server#31442)
• Init user’s file system if not existing on ownership transfer (server#31445)
• Use persistent connections when connecting to redis (server#31450)
• Fix settings error message timeout (server#31457)
• Connectivity check: allow using the protocol in ‘connectivity_check_domains’ (server#31479)
• Add option to disallow creation of local storages (server#31481)
• Fix too many file download notifications when watching a video (server#31485)
• Fix new file menu (server#31490)
• Fix listeners declaration in case of occ usage (server#31529)
• Fix user status not resetting correctly after a call (server#31543)
• Prevent reading key on SFTP stat bool (server#31547)
• Fix more than 1000 entries in queries exception in CardDavBackend (server#31550)
• Update CRL after revoke deckimportfromtrello.csr (server#31618)
• Revert “Fix listeners declaration in case of occ usage” (server#31642)
• Try to reduce the load from writing (activity#731)
• Allow specify a config prefix for another database connection (activity#735)
• Adjust nextcloud lib version (activity#739)
• Make background job time insensitive (activity#741)
• Fix cached circle returning bool before being parsed as JSON (circles#932)
• MembershipsService -> membershipService (circles#934)
• Block/force circle types (circles#938)
• Set member as INVITED only if not external (circles#940)
• Allow configuration of one single password per circle (circles#944)
• Display spent time on request (circles#949)
• Lighter SQL requests and compat with Oracle (circles#956)
• Update population (circles#959)
• Fix PrimaryKey on circles_event (circles#965)
• Fix import (circles#970)
• Only refresh notifications once with notify push (notifications#1155)
• Improve mass notification processing (notifications#1156)
• Bump url-parse from 1.5.4 to 1.5.10 (photos#1043)
• Fix privacy UI with subscription (privacy#707)
• Bump vue-loader from 15.9.6 to 15.9.8 (privacy#712)
• Bump @nextcloud/babel-config from 1.0.0-beta.1 to 1.0.0 (privacy#715)
• Bump @babel/core from 7.13.15 to 7.13.16 (privacy#718)
• Bump eslint-import-resolver-webpack from 0.13.0 to 0.13.2 (privacy#721)
• Bump babel-loader from 8.2.2 to 8.2.3 (privacy#724)
• Bump sass from 1.32.10 to 1.32.13 (privacy#731)
• Bump vue and vue-template-compiler (privacy#732)
• Bump eslint-config-standard from 16.0.2 to 16.0.3 (privacy#733)
• Bump node-polyfill-webpack-plugin from 1.1.0 to 1.1.4 (privacy#734)
• Bump eslint-webpack-plugin from 2.5.3 to 2.5.4 (privacy#738)
• Add index for last_contact in text_sessions table (text#2147)
• Use file.path to track EditorWrapper instances more accurately (text#2150)
• Build(deps): bump prosemirror-transform from 1.3.3 to 1.3.4 (text#2159)
• Fix: only apply bullet style to ul > li (text#2195)
• Build(deps): bump prosemirror-view from 1.23.6 to 1.23.7 (text#2207)
• Fix: update psalm baseline to account for changes in server (text#2208)
• Derpgon cz fix/stable23/image data urls (text#2210)
• Display content first and then load menus (text#2228)
• Build(deps-dev): bump @babel/plugin-proposal-class-properties from 7.16.0 to 7.16.7 (viewer#1171)
• Build(deps-dev): bump @nextcloud/webpack-vue-config from 4.1.0 to 4.1.4 (viewer#1174)
• Build(deps): bump camelcase from 6.2.0 to 6.2.1 (viewer#1175)
• Build(deps): bump @nextcloud/event-bus from 2.1.0 to 2.1.1 (viewer#1176)
• Build(deps-dev): bump @cypress/browserify-preprocessor from 3.0.1 to 3.0.2 (viewer#1178)
• Build(deps-dev): bump @nextcloud/eslint-config from 6.1.0 to 6.1.2 (viewer#1179)
• Build(deps-dev): bump wait-on from 6.0.0 to 6.0.1 (viewer#1180)

Version 23.0.2 February 16 2022

Download: nextcloud-23.0.2.tar.bz2 or nextcloud-23.0.2.zip
Check the file integrity with:
MD5: nextcloud-23.0.2.tar.bz2.md5 or nextcloud-23.0.2.zip.md5
SHA256: nextcloud-23.0.2.tar.bz2.sha256 or nextcloud-23.0.2.zip.sha256
SHA512: nextcloud-23.0.2.tar.bz2.sha512 or nextcloud-23.0.2.zip.sha512
PGP (Key): nextcloud-23.0.2.tar.bz2.asc or nextcloud-23.0.2.zip.asc

Changes

• Check for disk_free_space (server#29798)
• Avoid use of iconv to get rid of unicode (server#29965)
• Don’t query the bruteforce attempts when we just deleted them (server#30026)
• Fix input for groups validation in new user form (server#30144)
• Reload page instead of file list when getting 401 authentification error (server#30151)
• Allow to delete non-migrated previews instead of moving them (server#30175)
• Fix relation “user_id” already exists migration error (server#30176)
• Check resource before closing in encryption wrapper (server#30180)
• Use correct icon for dir-external-root (server#30187)
• Properly format sharing datepicker locale (server#30190)
• Update guzzlehttp/guzzle requirement from 6.5.2 to 6.5.5 in /build/integration (server#30212)
• Update sabre/dav requirement from 4.2.1 to 4.2.3 in /build/integration (server#30213)
• Bump dompurify from 2.3.3 to 2.3.4 (server#30214)
• Bump core-js from 3.19.2 to 3.19.3 (server#30215)
• Don’t check the configvalue for lastLogin which is never null (server#30236)
• Support LDAP dns longer than 255 characters (server#30238)
• Only wildcard search if enumeration is allowed (server#30245)
• Fix setting up 2FA when no providers are set up but backup codes (server#30252)
• Carefully filter out non matching time ranges for CalDAV search (server#30267)
• Use bigint for autoincremented column (server#30272)
• Fix ShareLink Upload UI for Folders (server#30289)
• Use proper translation source for direct editing (server#30301)
• Ignore non-existing groups when notifying group shares (server#30306)
• Fix share owner not being displayed in sharing tab (server#30315)
• Update sabre/dav requirement from 4.2.3 to 4.3.0 in /build/integration (server#30325)
• Enhance and complement OPcache setup checks (server#30339)
• Fix potential unwarranted memberships in nested groups from LDAP (server#30343)
• Fix overlapping in the help settings section (server#30344)
• Remove iconv from dependencies and tests (server#30351)
• Fix persistent tooltip in the “new folder” input of the file picker (server#30356)
• Don’t die with LockedException when removing/restoring multiple files from trash (server#30390)
• Improve personal settings on mobile (server#30411)
• Fix rendering app authors with homepage or email (server#30431)
• Add missing index for propertypath only queries of DAV properties (server#30433)
• Handle external share with invalid host (server#30443)
• Make sure to get file model in template picker (server#30449)
• Improve status modal (server#30455)
• Allow using composer plugin with composer 2.2 (server#30462)
• Fix uploading text position (server#30480)
• Run migrations fully when reenabling an app (server#30486)
• Fix passing on the parameter (server#30522)
• Fix email verification (server#30525)
• Update CRL after revocation of sharerenamer.crt (server#30528)
• Handle LocalServerException when scanning external shares (server#30557)
• Fix fail when keys/files folder already exists (server#30576)
• Use npm ci when running JS tests (server#30580)
• Fix: only use jquery once it is available (server#30592)
• Avoid zero division in setup checks (server#30594)
• Prevent loading images that would require too much memory. (server#30602)
• Fix undefined/unset scope in account properties (server#30611)
• Fix RequestURL check for cli commands (server#30619)
• Reset job disabling timer on adding the job again (server#30621)
• Set the file’s mtime from the headers in bulk upload (server#30623)
• Trigger “changeDirectory” event on URL change (server#30627)
• Properly abort uploads (server#30636)
• Fix idn emails not working in shares (server#30643)
• Implement multibucket shift for ObjectStore (server#30659)
• Fix wrong unified search link to folder (server#30662)
• Fix primary key change in user_ldap migration (server#30663)
• Improve accessibility settings on mobile (server#30671)
• Fix file picker not respecting hidden files settings (server#30672)
• Add version of disabled apps when available (server#30674)
• Optimize FileSystemTags workflow for groupfolder (server#30684)
• Fix users can’t login external mount user entered credentials not set (server#30685)
• Remove inefficient fed share scanner (server#30688)
• New Files internal link GET param to avoid opening the file (server#30689)
• UpdateEncryptedVersion: cleanup on target if cache already got renamed (server#30695)
• Improve layout for the public download page (server#30698)
• Fix loading of the text app in public shared links (server#30722)
• Fix non-ascii characters present in the header (server#30728)
• Hash job argument (server#30734)
• Increase email main buttons width for non-english languages (server#30740)
• Improve install process (server#30747)
• Create block-merge-freeze.yml (server#30753)
• Log bruteforce throttle and blocking (server#30759)
• Always call flush() as getAllKeys() is broken (server#30773)
• Add KerberosApacheAuth support to files_external (server#30782)
• Update sabre/dav requirement from 4.3.0 to 4.3.1 in /build/integration (server#30799)
• Bump jquery-ui from 1.13.0 to 1.13.1 (server#30800)
• Fix accessing undefined offsets (server#30811)
• Fix psalm not running (server#30814)
• 23.0.1 Final (server#30840)
• Fix php:cs (server#30847)
• Prevent merging on EOL branches (server#30872)
• Fixes occ user:info when the user never logged in (server#30890)
• Bump dompurify from 2.3.4 to 2.3.5 (server#30911)
• Bump clipboard from 2.0.8 to 2.0.9 (server#30912)
• Bump webpack-cli from 4.9.1 to 4.9.2 (server#30913)
• Fix psalm warning related to registerEventListener (server#30915)
• Update version.php (server#30975)
• Fix duplicated UUID migration issue (server#31107)
• Revert the ‘broken’ public page changes (server#31108)
• Disable bulk upload by not advertising it (server#31171)
• Create block-merge-freeze.yml (3rdparty#971)
• Fix sorting of filters on php 8.0+ (activity#715)
• Filter allowed type of member (circles#865)
• Lighten select for single circle (circles#867)
• Bypass moderator check on CFG_FRIEND (circles#873)
• Better display of federated user (circles#876)
• Strtolower on mail address (circles#882)
• Only returns population on direct request from the front-end or occ command (circles#885)
• Enforce password on new share (circles#887)
• Ignore exception to group sync (circles#894)
• Exception on null token (circles#896)
• L10n: Improved grammar (circles#898)
• Create block-merge-freeze.yml (circles#907)
• Fix loosing memberships in low depth (circles#914)
• Remove shares during circles destruction, clean orphan shares on cron (circles#918)
• Paginate Circles through OCS query parameters (circles#919)
• GetSingleId(): string; (circles#922)
• Bump actions (files_pdfviewer#530)
• Bump @nextcloud/eslint-config from 6.1.0 to 6.1.2 (files_pdfviewer#534)
• Bump @nextcloud/webpack-vue-config from 4.1.0 to 4.1.4 (files_pdfviewer#535)
• Create block-merge-freeze.yml (files_pdfviewer#544)
• Updating lint-php.yml workflow from template (files_pdfviewer#549)
• Create block-merge-freeze.yml (files_rightclick#131)
• Create block-merge-freeze.yml (files_videoplayer#256)
• Fix overlapping buttons (firstrunwizard#652)
• Create block-merge-freeze.yml (firstrunwizard#661)
• Create block-merge-freeze.yml (logreader#636)
• Create block-merge-freeze.yml (nextcloud_announcements#92)
• Create block-merge-freeze.yml (notifications#1137)
• Create block-merge-freeze.yml (password_policy#315)
• Bump autoprefixer from 10.3.6 to 10.3.7 (photos#1009)
• Bump @nextcloud/eslint-config from 6.1.0 to 6.1.2 (photos#1010)
• Bump postcss-loader from 6.2.0 to 6.2.1 (photos#1011)
• Bump @nextcloud/event-bus from 2.1.0 to 2.1.1 (photos#1012)
• Bump @nextcloud/initial-state from 1.2.0 to 1.2.1 (photos#1013)
• Fix default previews (photos#951)
• Fix Tags: Don’t display tags without photos (photos#960)
• Update workflows (photos#981)
• Bump @nextcloud/webpack-vue-config from 4.1.0 to 4.1.4 (photos#985)
• Bump url-parse from 1.5.3 to 1.5.4 (photos#986)
• Bump vue-router from 3.5.2 to 3.5.3 (photos#987)
• Bump qs from 6.10.1 to 6.10.3 (photos#988)
• Bump camelcase from 6.2.0 to 6.2.1 (photos#989)
• Create block-merge-freeze.yml (photos#998)
• Fix label of account name and hide parts with subscription (privacy#676)
• Create block-merge-freeze.yml (privacy#684)
• Update workflows (privacy#690)
• Create block-merge-freeze.yml (recommendations#470)
• Update test.yml (recommendations#473)
• Create block-merge-freeze.yml (serverinfo#352)
• Create block-merge-freeze.yml (survey_client#123)
• Update mark input/paste rules to tiptap v2 regular expressions (text#1976)
• Don’t show “Link file” button when using direct edition (text#1979)
• Make sure translations are detected (text#1984)
• Fix only the first item gets tasklist-ified issue (text#2005)
• Fix: use stable23 branch for cypress tests (text#2023)
• Fix autofocus on empty documents without a node (Fixes: #1974) (text#2035)
• Add stylelint to github actions (text#2041)
• Fix: cypress login with new session feature (text#2046)
• Bump @nextcloud/event-bus from 2.1.0 to 2.1.1 (text#2078)
• Bump @nextcloud/initial-state from 1.2.0 to 1.2.1 (text#2081)
• Bump @nextcloud/webpack-vue-config from 4.1.0 to 4.1.4 (text#2084)
• Bump @cypress/browserify-preprocessor from 3.0.1 to 3.0.2 (text#2085)
• Bump prosemirror-markdown from 1.6.0 to 1.6.2 (text#2086)
• Bump @nextcloud/eslint-config from 6.1.0 to 6.1.2 (text#2088)
• Bump prosemirror-view from 1.23.5 to 1.23.6 (text#2100)
• Fix closing the editor modal in public folder view (text#2105)
• Fix: 2020 let heading menu overflow workspace (text#2109)
• Create block-merge-freeze.yml (text#2115)
• Disable fade-out because of accessbility reasons (viewer#1066)
• Fix german (Sie) translations comming from nextcloud-vue (viewer#1089)
• Add cypress summary for easier branch protection mgmt (viewer#1094)
• Add engines support for cypress tests (viewer#1099)
• Always check for `OCA.Files` before using it (Fixes: #1106) (viewer#1108)
• Disable swiping on viewer video controls (viewer#1114)
• Disable swiping on viewer audio controls (viewer#1122)
• Create block-merge-freeze.yml (viewer#1133)
• Update lint-php.yml (viewer#1138)

Version 23.0.0 November 30 2021

Download: nextcloud-23.0.0.tar.bz2 or nextcloud-23.0.0.zip
Check the file integrity with:
MD5: nextcloud-23.0.0.tar.bz2.md5 or nextcloud-23.0.0.zip.md5
SHA256: nextcloud-23.0.0.tar.bz2.sha256 or nextcloud-23.0.0.zip.sha256
SHA512: nextcloud-23.0.0.tar.bz2.sha512 or nextcloud-23.0.0.zip.sha512
PGP (Key): nextcloud-23.0.0.tar.bz2.asc or nextcloud-23.0.0.zip.asc

Nextcloud Hub II is here!

The biggest improvements Nextcloud Hub II (Nextcloud 23) introduces are:

•  Nextcloud Files: 10x syncing performance improvements,delegate limited administration from admins to users; automatic user status setting
•  Nextcloud Groupware: external appointment booking, advanced room and resource search in Calendar and Mail improvements
•  Nextcloud Talk: background blur, device check screen and advanced permission management
• 🖺 Nextcloud Office: developed in collaboration with Collabora Productivity
•  Docker-All-In-One: easy installation and update
•  Nextcloud Backup: a peer-to-peer backup solution designed for private users
•  Nextcloud Clients: updates available for Desktop, Android and iOS clients

There are many more new features and changes like integration of Unified Search, User Profile and User status in our mobile apps, emoji picker in Text, updates to Deck and much more.

Read our announcement blog for all the the details.

latest 22 release below.

Version 22.2.8 May 19 2022

Download: nextcloud-22.2.8.tar.bz2 or nextcloud-22.2.8.zip
Check the file integrity with:
MD5: nextcloud-22.2.8.tar.bz2.md5 or nextcloud-22.2.8.zip.md5
SHA256: nextcloud-22.2.8.tar.bz2.sha256 or nextcloud-22.2.8.zip.sha256
SHA512: nextcloud-22.2.8.tar.bz2.sha512 or nextcloud-22.2.8.zip.sha512
PGP (Key): nextcloud-22.2.8.tar.bz2.asc or nextcloud-22.2.8.zip.asc

Changes

• Principal search by display name case insensitive (server#31977)
• Log why the login token can’t be used for credentials (server#31980)
• AmazonS3: allow not implemented versioning (server#32015)
• Do not update _lastChanged on auto-detected attributes (server#32070)
• Tell mysql to ignore the sort index for search queries (server#32125)
• Get not only time-sensitive next job from list but any when not in cron-mode (server#32130)
• Update description of cronjob settings to be aligned to the documenta… (server#32136)
• Fix showing of all apps are up-to-date in apps management (server#32158)
• Fx translations with trailing colon (server#32161)
• L10n: Change apostrophe (server#32175)
• Fix social sharing buttons (server#32183)
• Don’t use plain URL on the email subject (server#32248)
• Don’t use hash to check if binding worked (server#32283)
• Fix preview generator trying to recreate an existing folder (server#32324)
• Fix for transferring ownership of groupfolders (server#32331)
• Explicitly close div element (server#32421)
• Show user account on grant loginflow step (server#32430)
• Fix user agent trimming on installation (server#32433)
• Add Email validation (server#32475)
• Fix array key on import() (circles#1028)
• Switch to getOption() (circles#1044)
• Update phpunit workflows (files_pdfviewer#601)
• Prevent video file downloads when there is a download limit (files_videoplayer#277)
• Fix password generation (password_policy#359)
• Bump babel-loader from 8.2.4 to 8.2.5 (privacy#763)
• Build(deps-dev): bump babel-loader from 8.2.4 to 8.2.5 (text#2327)
• Fix: use node workflow from template (text#2360)
• Build(deps-dev): bump @nextcloud/eslint-config from 6.1.0 to 6.1.2 (viewer#1215)
• Improve preloading (viewer#1233)

Version 22.2.7 April  2022

Download: nextcloud-22.2.7.tar.bz2 or nextcloud-22.2.7.zip
Check the file integrity with:
MD5: nextcloud-22.2.7.tar.bz2.md5 or nextcloud-22.2.7.zip.md5
SHA256: nextcloud-22.2.7.tar.bz2.sha256 or nextcloud-22.2.7.zip.sha256
SHA512: nextcloud-22.2.7.tar.bz2.sha512 or nextcloud-22.2.7.zip.sha512
PGP (Key): nextcloud-22.2.7.tar.bz2.asc or nextcloud-22.2.7.zip.asc

Changes

• Only setuppart of the filesystem for appdata requests (server#31099)
• Make SabreFile exception messages translatable (server#31393)
• Validatemoverwrite.cli.url to be a url in setup check (server#31517)
• Fix duplicated UUID detection when there are empty uuids (server#31522)
• Fix listeners declaration in case of occ usage (server#31530)
• Fix occ user:add-app-password (server#31535)
• Fix the logger that is imported for critical actions (server#31541)
• Add optional WebDav propfind properties to count sub elements (server#31640)
• Do not forget DB table prefix with truncate query (server#31669)
• Limit the length of app password names (server#31677)
• Bump babel-loader from 8.2.3 to 8.2.4 (server#31720)
• Add direct arg to login flow (server#31747)
• Show that the web updater is not recommended on big instances (server#31767)
• User_ldap fix ldap connection resets #31421 (server#31777)
• Fix assignment of the LDAP Wizard connection (server#31784)
• Fix ldap wizard styling (server#31803)
• Use the nextcloud certificate bundle for s3 (server#31819)
• Ignore errors when searching for bundled preview (server#31830)
• Deduplicate storage ids in list before reusing (server#31834)
• Dont re-query fileinfo when getting dav quota (server#31837)
• Fix bug with adding multiple emails in a single input box (server#31838)
• Log in audit log federated shares events (server#31855)
• Do not decorate the CLI output if it’s explicitly turned off (server#31881)
• Bump moment from 2.29.1 to 2.29.2 (server#31912)
• Fix shared mount roots not being returned from getSharesInFolder (server#31924)
• Confirm user is internal to globalscale (server#31941)
• Update CRL after revocation of socialsharing_telegram.csr (server#31957)
• Fix LDAP Dark Theme Issue (server#31967)
• Fix incorrect if conditions in View (server#31974)
• Fallback to the admin settings if the user did not configure it (activity#782)
• Small edit (circles#1003)
• Update memberships on path change (circles#1008)
• Check owner attendance (circles#1011)
• Remove child shares (circles#1016)
• Update displayName (circles#1018)
• Oracle support (circles#979)
• Limit some feature when Circles is managed by an app (circles#984)
• Use stable22 for oci tests (circles#987)
• Missing $prec (circles#996)
• Update population (circles#998)
• Disable social recommendation (firstrunwizard#694)
• Fix settings navigation order (firstrunwizard#699)
• Bump babel-loader from 8.2.3 to 8.2.4 (privacy#751)
• Build(deps-dev): bump babel-loader from 8.2.3 to 8.2.4 (text#2258)
• Ui: maintain menu bubble size (text#2262)
• Properly cancel and reset ongoing streams when unmounting (viewer#1209)

Version 22.2.6 March 21 2022

Download: nextcloud-22.2.6.tar.bz2 or nextcloud-22.2.6.zip
Check the file integrity with:
MD5: nextcloud-22.2.6.tar.bz2.md5 or nextcloud-22.2.6.zip.md5
SHA256: nextcloud-22.2.6.tar.bz2.sha256 or nextcloud-22.2.6.zip.sha256
SHA512: nextcloud-22.2.6.tar.bz2.sha512 or nextcloud-22.2.6.zip.sha512
PGP (Key): nextcloud-22.2.6.tar.bz2.asc or nextcloud-22.2.6.zip.asc

Changes

• Fix removing remote shares when the remote server is unreachable (server#29565)
• Allow writing audit log to syslog and systemdlog (server#30851)
• Allow to disable AuthToken v1 (server#30958)
• Add primary key for ratelimit table (server#30966)
• Update variables.scss – Fallback font before Noto Color Emoji (server#30968)
• Fix: Birthday events missing after reimporting contacts (server#31002)
• Bump clipboard from 2.0.9 to 2.0.10 (server#31025)
• Fix bugs with incorrect currentFileList in the favorite and share by you view (server#31051)
• Allow specify a config prefix for another database connection (server#31060)
• Don’t provide favorite activity settings (server#31085)
• Ignore contact interaction with self (server#31119)
• Background job time windows (server#31122)
• Use the unjailed-path in OC_Helper::getStorageInfo() for files located in SharedStorage. (server#31136)
• Fix typo in DAV namespace registration (server#31182)
• Fix a broken tooltip (server#31185)
• Fix path handling when transferring incoming shares (server#31203)
• Fix overlapping buttons in apps-management (server#31210)
• Improve caching policy use immutable when loading versionned assets (server#31243)
• Hide download button for images (server#31254)
• Don’t redirect when loading files index page (server#31256)
• Consider only reminders with calendar data (server#31263)
• Also cache non-existing to reuse it (server#31298)
• Fix ldap:check-user method for newly created LDAP users (server#31305)
• Ignore cache in occ ldap:check-ldap command (server#31307)
• Avoid PHP errors in the checkers drone step (server#31314)
• Update CRL after revocation of rocket_integration.csr (server#31351)
• Bump backbone from 1.4.0 to 1.4.1 (server#31370)
• Censor more configs (server#31400)
• Also use hashed/indexed column on delete (server#31403)
• Fix caching of the user avatar (server#31411)
• Fix duplicate primary email message (server#31413)
• Prevent default right-click options when hideDownload is enabled (server#31428)
• Fix return type of avatar file (server#31433)
• Fix developer link (server#31440)
• Fix fileactions for sharing overview (server#31441)
• Be conservative when reading from fresh created column (server#31443)
• Init user’s file system if not existing on ownership transfer (server#31446)
• Use persistent connections when connecting to redis (server#31451)
• Fix settings error message timeout (server#31458)
• Connectivity check: allow using the protocol in ‘connectivity_check_domains’ (server#31480)
• Add option to disallow creation of local storages (server#31482)
• Fix too many file download notifications when watching a video (server#31486)
• Fix new file menu (server#31497)
• Prevent reading key on SFTP stat bool (server#31548)
• Fix more than 1000 entries in queries exception in CardDavBackend (server#31552)
• Update CRL after revoke deckimportfromtrello.csr (server#31619)
• Bump aws/aws-sdk-php from 3.184.6 to 3.212.2 (3rdparty#1005)
• Make background job time insensitive (activity#730)
• Allow specify a config prefix for another database connection (activity#736)
• Adjust nextcloud lib version (activity#740)
• Fix cached circle returning bool before being parsed as JSON (circles#933)
• MembershipsService -> membershipService (circles#935)
• Block/force circle types (circles#937)
• Set member as INVITED only if not external (circles#939)
• Allow configuration of one single password per circle (circles#945)
• Display spent time on request (circles#948)
• Backport of #950 – support oracle (circles#957)
• Update population (circles#958)
• Fix PrimaryKey on circles_event (circles#964)
• Fix import (circles#969)
• Bump url-parse from 1.5.4 to 1.5.10 (photos#1044)
• Fix privacy UI with subscription (privacy#710)
• Bump sass from 1.32.10 to 1.32.13 (privacy#714)
• Bump eslint-webpack-plugin from 2.5.3 to 2.5.4 (privacy#717)
• Bump @nextcloud/babel-config from 1.0.0-beta.1 to 1.0.0 (privacy#723)
• Bump @babel/core from 7.13.15 to 7.13.16 (privacy#726)
• Bump babel-loader from 8.2.2 to 8.2.3 (privacy#727)
• Bump eslint-config-standard from 16.0.2 to 16.0.3 (privacy#728)
• Bump vue and vue-template-compiler (privacy#729)
• Bump @nextcloud/vue from 2.6.5 to 2.6.9 (privacy#730)
• Bump node-polyfill-webpack-plugin from 1.1.0 to 1.1.4 (privacy#737)
• Bump vue-loader from 15.9.6 to 15.9.8 (privacy#745)
• Add index for last_contact in text_sessions table (text#2148)
• Use file.path to track more accurately EditorWrapper instances (text#2151)
• Build(deps): bump prosemirror-transform from 1.3.3 to 1.3.4 (text#2160)
• Fix: only apply bullet style to ul > li (text#2197)
• Fix: dependabot template comment (text#2212)

Version 22.2.5 February 16 2022

Download: nextcloud-22.2.5.tar.bz2 or nextcloud-22.2.5.zip
Check the file integrity with:
MD5: nextcloud-22.2.5.tar.bz2.md5 or nextcloud-22.2.5.zip.md5
SHA256: nextcloud-22.2.5.tar.bz2.sha256 or nextcloud-22.2.5.zip.sha256
SHA512: nextcloud-22.2.5.tar.bz2.sha512 or nextcloud-22.2.5.zip.sha512
PGP (Key): nextcloud-22.2.5.tar.bz2.asc or nextcloud-22.2.5.zip.asc

Changes

• Delete calendar subscriptions as well when deleting user (server#28659)
• Add a prefix index to filecache.path, attempt 2 (server#29324)
• Check for disk_free_space (server#29799)
• Interpolate the log message also for logged exceptions (server#29962)
• Don’t check the configvalue for lastLogin which is never null (server#30237)
• Fix setting up 2FA when no providers are set up but backup codes (server#30250)
• Support LDAP dns longer than 255 characters (server#30260)
• Fix ShareLink Upload UI for Folders (server#30288)
• Use proper translation source for direct editing (server#30300)
• Ignore non-existing groups when notifying group shares (server#30307)
• Fix share owner not being displayed in sharing tab (server#30316)
• Update sabre/dav requirement from 4.2.3 to 4.3.0 in /build/integration (server#30323)
• Fix potential unwarranted memberships in nested groups from LDAP (server#30340)
• Fix overlapping in the help settings section (server#30345)
• Stable23] Avoid use of iconv to get rid of unicode (server#30347)
• Fix persistent tooltip in the “new folder” input of the file picker (server#30357)
• Don’t die with LockedException when removing/restoring multiple files from trash (server#30391)
• Fix rendering app authors with homepage or email (server#30432)
• Add missing index for propertypath only queries of DAV properties (server#30434)
• Handle external share with invalid host (server#30444)
• Make sure to get file model in template picker (server#30450)
• Improve status modal (server#30453)
• Fix uploading text position (server#30481)
• Run migrations fully when reenabling an app (server#30487)
• Remove iconv from dependencies and tests (server#30515)
• Fix passing on the parameter (server#30523)
• Fix email verification (server#30526)
• Update CRL after revocation of sharerenamer.crt (server#30529)
• Handle LocalServerException when scanning external shares (server#30558)
• Fix fail when keys/files folder already exists (server#30578)
• Use npm ci when running JS tests (server#30581)
• Fix: only use jquery once it is available (server#30591)
• Add better index for finding unindexed paths (server#30598)
• Prevent loading images that would require too much memory. (server#30603)
• Fix undefined/unset scope in account properties (server#30610)
• Fix RequestURL check for cli commands (server#30618)
• Reset job disabling timer on adding the job again (server#30622)
• Trigger “changeDirectory” event on URL change (server#30628)
• Properly abort uploads (server#30637)
• Fix idn emails not working in shares (server#30644)
• Implement multibucket shift for ObjectStore (server#30658)
• Fix wrong unified search link to folder (server#30664)
• Fix primary key change in user_ldap migration (server#30666)
• Improve accessibility settings on mobile (server#30670)
• Fix file picker not respecting hidden files settings (server#30673)
• Add version of disabled apps when available (server#30675)
• Optimize FileSystemTags workflow for groupfolder (server#30683)
• Remove inefficient fed share scanner (server#30687)
• New Files internal link GET param to avoid opening the file (server#30690)
• Fix users can’t login external mount user entered credentials not set (server#30692)
• UpdateEncryptedVersion: cleanup on target if cache already got renamed (server#30694)
• Improve layout for the public download page (server#30697)
• Fix non-ascii characters present in the header (server#30727)
• Hash job argument (server#30736)
• Increase email main buttons width for non-english languages (server#30741)
• Improve install process (server#30748)
• Revert “Improve layout for the public download page” (server#30752)
• Create block-merge-freeze.yml (server#30754)
• Log bruteforce throttle and blocking (server#30760)
• Always call flush() as getAllKeys() is broken (server#30774)
• Add KerberosApacheAuth support to files_external (server#30780)
• Fix backport/30470/stable22 (server#30786)
• Update sabre/dav requirement from 4.3.0 to 4.3.1 in /build/integration (server#30807)
• Fix accessing undefined offsets (server#30812)
• Fix psalm (server#30826)
• 22.2.4 Final (server#30839)
• Fix php:cs (server#30848)
• Prevent merging on EOL branches (server#30873)
• Bump clipboard from 2.0.8 to 2.0.9 (server#30910)
• Fix psalm warning related to registerEventListener (server#30914)
• Cast orphan subscription id to int (server#30930)
• Fix preview generation for office documents (server#30971)
• Update version.php (server#30976)
• Prevent writing invalid mtime (server#31013)
• Fix duplicated UUID migration issue (server#31109)
• Revert the ‘broken’ public page changes (server#31114)
• Create block-merge-freeze.yml (3rdparty#972)
• Pass activity link to notification (activity#667)
• Fix sorting of filters on php 8.0+ (activity#716)
• Backport of #797 (circles#827)
• Filter allowed type of member (circles#864)
• Lighten select for single circle (circles#868)
• Bypass moderator check on CFG_FRIEND (circles#874)
• Better display of federated user (circles#877)
• Strtolower on mail address (circles#883)
• Only returns population on direct request from the front-end or occ command (circles#886)
• Enforce password on new share (circles#888)
• Exception on null token (circles#893)
• Ignore exception to group sync (circles#895)
• L10n: Improved grammar (circles#899)
• Create block-merge-freeze.yml (circles#908)
• Fix loosing memberships in low depth (circles#915)
• Paginate Circles through OCS query parameters (circles#920)
• Remove shares during circles destruction, clean orphan shares on cron (circles#921)
• Bump actions (files_pdfviewer#531)
• Create block-merge-freeze.yml (files_pdfviewer#545)
• Updating lint-php.yml workflow from template (files_pdfviewer#550)
• Create block-merge-freeze.yml (files_rightclick#132)
• Create block-merge-freeze.yml (files_videoplayer#257)
• Disable fade-out because of accessbility reasons (firstrunwizard#639)
• Fix overlapping buttons (firstrunwizard#653)
• Create block-merge-freeze.yml (firstrunwizard#662)
• Create block-merge-freeze.yml (logreader#637)
• Create block-merge-freeze.yml (nextcloud_announcements#93)
• Create block-merge-freeze.yml (notifications#1138)
• Create block-merge-freeze.yml (password_policy#316)
• Bump @nextcloud/initial-state from 1.2.0 to 1.2.1 (photos#924)
• Fix default previews (photos#952)
• Fix Tags: Don’t display tags without photos (photos#961)
• Bump qs from 6.10.1 to 6.10.3 (photos#963)
• Bump url-parse from 1.5.3 to 1.5.4 (photos#964)
• Update workflows (photos#982)
• Create block-merge-freeze.yml (photos#999)
• Fix label of account name and hide parts with subscription (privacy#677)
• Create block-merge-freeze.yml (privacy#685)
• Update workflows (privacy#691)
• Create block-merge-freeze.yml (recommendations#471)
• Update test.yml (recommendations#474)
• Create block-merge-freeze.yml (serverinfo#353)
• Create block-merge-freeze.yml (survey_client#124)
• Bump babel-loader from 8.2.2 to 8.2.3 (text#1912)
• Bump @nextcloud/initial-state from 1.2.0 to 1.2.1 (text#1935)
• Bump @cypress/browserify-preprocessor from 3.0.1 to 3.0.2 (text#1936)
• Hide menu and keep focus when using menubar popover items (text#1967)
• Update mark input/paste rules to tiptap v2 regular expressions (text#1977)
• Don’t show “Link file” button when using direct edition (text#1980)
• Make sure translations are parsed correctly (text#1989)
• Fix scss deprecated syntax (text#1993)
• Pin node/npm versions (text#1997)
• Fix header popover in richworkspace (text#2003)
• Fix only the first item gets tasklist-ified issue (text#2010)
• Azul/rebase stable22 fix 1677 menububble position (text#2019)
• Fix: use stable22 branch for cypress tests (text#2021)
• Fix autofocus on empty documents without a node (Fixes: #1974) (text#2036)
• Add stylelint to github actions (text#2042)
• Stable22 update cypress (text#2054)
• Fix: cypress login with new session feature (text#2055)
• Backport/1883/stable22 (text#2057)
• Avoid creating invalid URIs from user input (text#2074)
• Allow to insert text after trailing codeblock (text#2075)
• Only register trailing node for rich text editing (text#2076)
• Bump cypress from 9.2.0 to 9.2.1 (text#2080)
• Make collabora on top of text idle message (text#2094)
• Only show image author annotations if needed (text#2095)
• Backport/stable22/2020 (text#2113)
• Create block-merge-freeze.yml (text#2116)
• Disable fade-out because of accessbility reasons (viewer#1067)
• Add light  dowload icon (viewer#1070)
• Fix github actions (viewer#1071)
• Add light  dowload icon (fixed) (viewer#1074)
• Build(deps): bump camelcase from 6.2.0 to 6.2.1 (viewer#1076)
• Fix german (Sie) translations comming from nextcloud-vue (viewer#1090)
• Add cypress summary for easier branch protection mgmt (viewer#1093)
• Add engines support for cypress tests (viewer#1100)
• Always check for `OCA.Files` before using it (Fixes: #1106) (viewer#1109)
• Disable swiping on viewer video controls (viewer#1115)
• Disable swiping on viewer audio controls (viewer#1123)
• Create block-merge-freeze.yml (viewer#1134)
• Update lint-php.yml (viewer#1139)

Version 22.2.3 November 15 2021

Download: nextcloud-22.2.3.tar.bz2 or nextcloud-22.2.3.zip
Check the file integrity with:
MD5: nextcloud-22.2.3.tar.bz2.md5 or nextcloud-22.2.3.zip.md5
SHA256: nextcloud-22.2.3.tar.bz2.sha256 or nextcloud-22.2.3.zip.sha256
SHA512: nextcloud-22.2.3.tar.bz2.sha512 or nextcloud-22.2.3.zip.sha512
PGP (Key): nextcloud-22.2.3.tar.bz2.asc or nextcloud-22.2.3.zip.asc

Changes

• Bump moment-timezone from 0.5.33 to 0.5.34 (server#29658)
• Don’t flash external storage mountpoints during the status check (server#29706)
• Bump doctrine/dbal to 3.1.4 (server#29717)
• Add composer patch (3rdparty#890)
• Bump doctrine/dbal to 3.1.4 (3rdparty#895)

Version 22.2.2 November 12 2021

Download: nextcloud-22.2.2.tar.bz2 or nextcloud-22.2.2.zip
Check the file integrity with:
MD5: nextcloud-22.2.2.tar.bz2.md5 or nextcloud-22.2.2.zip.md5
SHA256: nextcloud-22.2.2.tar.bz2.sha256 or nextcloud-22.2.2.zip.sha256
SHA512: nextcloud-22.2.2.tar.bz2.sha512 or nextcloud-22.2.2.zip.sha512
PGP (Key): nextcloud-22.2.2.tar.bz2.asc or nextcloud-22.2.2.zip.asc

Changes

Single fix that could cause significant performance degradation: Fix missing token update #29682

Version 22.2.1 November 11 2021

Download: nextcloud-22.2.1.tar.bz2 or nextcloud-22.2.1.zip
Check the file integrity with:
MD5: nextcloud-22.2.1.tar.bz2.md5 or nextcloud-22.2.1.zip.md5
SHA256: nextcloud-22.2.1.tar.bz2.sha256 or nextcloud-22.2.1.zip.sha256
SHA512: nextcloud-22.2.1.tar.bz2.sha512 or nextcloud-22.2.1.zip.sha512
PGP (Key): nextcloud-22.2.1.tar.bz2.asc or nextcloud-22.2.1.zip.asc

Changes

• Ensure that user and group IDs in LDAP’s tables are also max 64chars (server#28968)
• Fix Lots of Error: file_exists(): open_basedir restriction in effect.… (server#29016)
• Change output format of Psalm to Github (server#29046)
• Don’t further setup disabled users when logging in with apache (server#29062)
• Allow “TwoFactor Nextcloud Notifications” to pull the state of the 2FA again (server#29066)
• Fix path of `file_get_contents` (server#29073)
• Do not transfer shares for deleted users (server#29078)
• Add a few sensitive config keys (server#29086)
• Update the certificate bundle (server#29096)
• Add button color variables (server#29113)
• Generate a better optimized query for path prefix search filters (server#29121)
• Set associative = true for cleanup job (server#29124)
• Keep pw based auth tokens valid when pw-less login happens (server#29129)
• Explicitly close source stream on local / encryption storage (server#29133)
• Properly handle folder deletion on external s3 storage (server#29160)
• Tokens without password should not trigger changed password invalidation (server#29162)
• Add ‘supported’-label to all supported apps (server#29183)
• Keep group restrictions when reenabling apps after an update (server#29196)
• Fix translated app details (server#29207)
• Add documentation for files_no_background_scan (server#29217)
• Don’t setup the filesystem to check for a favicon we don’t use anyway (server#29221)
• Add proper message to created share not found (server#29225)
• Fix background scan doc in config (server#29251)
• Add configuration flag to disable the background job for files_trashbin (server#29262)
• Add configuration flag to disable the background job for files_versions (server#29263)
• Fix bug introduced on drag and drop external files (server#29283)
• Get `filesize()` if `file_exists()` (server#29288)
• Fix app upgrade (server#29301)
• Fix cliping issues in alternative logging buttons (server#29311)
• Avoid PHP errors when the LDAP attribute is not found (server#29316)
• Fix basic auth for OAuth token endpoint (server#29341)
• Fix login button alignment (server#29359)
• Fix security issues when copying groupfolder with advanced ACL (server#29365)
• Prevent duplicate auth token activity updates (server#29381)
• Catch null path in share manager (server#29383)
• Scheduling plugin not updating responding attendee status (server#29385)
• Make calendar schedule options translatable (server#29389)
• S3 external storage fixes (server#29391)
• Fix federated scope not shown when public addressbook upload is disabled (server#29393)
• Make the route name error more helpful (server#29398)
• Bump babel-loader from 8.2.2 to 8.2.3 (server#29409)
• Update behat/behat requirement from ~3.8.0 to ~3.9.0 in /build/integration (server#29410)
• Handle files with `is_file` instead of `file_exists` (server#29415)
• Fixes an undefined index when getAccessList returns an empty array (server#29419)
• Backport #29260: Respect user enumeration settings in user status lists (server#29427)
• Implement local filtering in file list (server#29442)
• Detect mimetype by content only with content (server#29459)
• Fix permissions when copying from ObjectStorage (server#29475)
• Bump vue-router from 3.5.2 to 3.5.3 (server#29494)
• Bump bootstrap from 4.6.0 to 4.6.1 (server#29495)
• Update CRL (server#29503)
• Limit parameter count per query in Cache.removeChildren (server#29506)
• Fix/images php 8.0 (server#29519)
• Revert split capability “AccountPropertyScopesFederationEnabled” (server#29528)
• Expose send_password_by_mail via capabilities (server#29534)
• Update update-psalm-baseline workflow (server#29549)
• Do not retain VerifyUserData job when lookup server is not available (server#29562)
• Bump @nextcloud/initial-state from 1.2.0 to 1.2.1 (server#29575)
• Update behat/behat requirement from ~3.9.0 to ~3.10.0 in /build/integration (server#29578)
• Handle empty directory drag-and-drop in Files UI (server#29597)
• Fix HTML entity rendering in file comments sidebar (server#29598)
• Reduce the sleep time in test-dummy-token handler (circles#816)
• Dispatching event before the action (circles#825)
• Bump version (files_pdfviewer#513)
• Allow to open links in new tab (notifications#1078)
• Fix deleting notifications with numeric user ID (notifications#1088)
• Add integration tests for push registration (notifications#1095)
• Restore old device signature so the proxy works again (notifications#1103)
• Bump autoprefixer from 9.8.6 to 9.8.7 (photos#902)
• Bump autoprefixer from 9.8.7 to 9.8.8 (photos#907)
• Bump prosemirror-schema-list from 1.1.5 to 1.1.6 (text#1871)
• Bump prosemirror-transform from 1.3.2 to 1.3.3 (text#1881)
• Additional checks for workspace controller (text#1885)

Version 22.2.0 October 1 2021

Download: nextcloud-22.2.0.tar.bz2 or nextcloud-22.2.0.zip
Check the file integrity with:
MD5: nextcloud-22.2.0.tar.bz2.md5 or nextcloud-22.2.0.zip.md5
SHA256: nextcloud-22.2.0.tar.bz2.sha256 or nextcloud-22.2.0.zip.sha256
SHA512: nextcloud-22.2.0.tar.bz2.sha512 or nextcloud-22.2.0.zip.sha512
PGP (Key): nextcloud-22.2.0.tar.bz2.asc or nextcloud-22.2.0.zip.asc

Changes

• Fix SQL type error (server#28531)
• Allow to open any app in a standalone window (server#28594)
• Fix encrypted version to 0 when finding unencrypted file (server#28603)
• Only recommand for php-sodium on >= PHP 7.4 (server#28658)
• Fix position of search bar (server#28670)
• Fix S3 ObjectStore proxy option (server#28683)
• NMC-464 Highlight the search term on no results (server#28685)
• NMC-552 Move filename/size out of the download button (server#28697)
• Fix user list infinite loading state in user settings (server#28701)
• Pin Psalm version for security analysis (server#28705)
• Bump css-vars-ponyfill from 2.4.6 to 2.4.7 (server#28712)
• Check if SVG path is valid (server#28734)
• Remove 2FA exemption from PublicPage annotation (server#28740)
• Bump 3rdparty ref (server#28744)
• Send attendence links to required and optinal attendees of an event without an RSVP (server#28748)
• Bump 3rdparty ref (server#28752)
• Fix trashbin files view sticky action bar (server#28769)
• Make it possible to override the default collation on mysql (server#28777)
• Allow users to choose a different email for notifications (server#28780)
• Dashboard – fix touch layout (server#28781)
• Scan the shared external storage source on access (server#28785)
• Bump vue-clipboard2 from 0.3.1 to 0.3.2 (server#28801)
• Add database ratelimiting backend (server#28814)
• Fixes missing prefix to validate password reset token (server#28824)
• Update .htaccess (php8+ and mod_lsapi) (server#28827)
• Do not cache file ids in FileSystemTags inside group folders (server#28830)
• Allow using of disabled password reset mechanism for special cases (server#28841)
• The user always may modify their additional emails (server#28843)
• Added support for transferring incoming file shares. (server#28844)
• L10n: ignore packed js files from TX sync (server#28850)
• Add config.php option for transfer ownership (server#28851)
• L10n: Remove a text string from translation (server#28852)
• Let user choose notification email in user settings (server#28855)
• Add email addresses to contacts menu (server#28860)
• Add new ExternalShareActions API (server#28865)
• Fix files view change and undefined currentFileList (server#28878)
• Fix file creation from template without ext (server#28881)
• Bump vue-clipboard2 from 0.3.2 to 0.3.3 (server#28888)
• Fall back to full file for video previews (server#28895)
• Update CRL due to revoked twofactor_email.crt (server#28900)
• Support seeking also from the end of file on S3 storage (server#28910)
• Use IRoomMetadata as source of truth for supported room types (server#28919)
• Bump 3rdparty ref (server#28928)
• Allow upgrade from 22.2.0.0 to 22.2.0.1 (server#28945)
• Fix caching of objectsid searches (server#28949)
• Allow casting query functions (server#28953)
• Fix check for redis minimal version (server#28954)
• Don’t allow to change activity settings that don’t work (server#28962)
• Bump app versions (server#28984)
• Fix redirect during initial setup (server#28998)
• Fix CI (3rdparty#758)
• Bump Webauthn Lib to 3.3.9 (3rdparty#780)
• Bump Archive_Tar to latest release (3rdparty#781)
• Composer install (3rdparty#812)
• Read the email from IUser (API) not guess from the DB (activity#637)
• Increase activity email speed in instances with more than 500 users (activity#641)
• Bump pdfjs-dist from 2.8.335 to 2.9.359 (files_pdfviewer#478)
• Bump @nextcloud/babel-config from 1.0.0-beta.1 to 1.0.0 (files_pdfviewer#479)
• Fix phpunit (files_pdfviewer#487)
• Update workflows (files_pdfviewer#492)
• Use setup-php v2 (files_pdfviewer#495)
• Bump cli-progress from 3.9.0 to 3.9.1 (files_pdfviewer#504)
• Fix illustrations (photos#876)
• Bump @nextcloud/vue from 3.10.0 to 3.10.2 (photos#889)
• Dependency updates (text#1835)
• Bump prosemirror-markdown from 1.5.1 to 1.5.2 (text#1851)
• Update dependabot (viewer#1013)

Version 22.1.1 August 29 2021

Download: nextcloud-22.1.1.tar.bz2 or nextcloud-22.1.1.zip
Check the file integrity with:
MD5: nextcloud-22.1.1.tar.bz2.md5 or nextcloud-22.1.1.zip.md5
SHA256: nextcloud-22.1.1.tar.bz2.sha256 or nextcloud-22.1.1.zip.sha256
SHA512: nextcloud-22.1.1.tar.bz2.sha512 or nextcloud-22.1.1.zip.sha512
PGP (Key): nextcloud-22.1.1.tar.bz2.asc or nextcloud-22.1.1.zip.asc

Changes

• Manual backport of “No limit in the number of group shares” #27875 (server#27993)
• Extend pending shares list in frontend to include remote shares (server#28209)
• Allow to disable group membership change notification (server#28231)
• Add h2 to personal info page, fixing accessibility issue (server#28252)
• Add quota restrictions options (server#28256)
• Bump marked from 2.0.6 to 2.0.7 (server#28271)
• Fix CI failures when building settings app (server#28274)
• Check that php was compiled with argon2 support or that the php-sodium extensions is installed (server#28288)
• Allow upgrade from 22.1 (server#28304)
• Bump dompurify from 2.2.8 to 2.2.9 (server#28340)
• Bump @babel/preset-env from 7.14.8 to 7.14.9 (server#28341)
• Bump vue-loader from 15.9.7 to 15.9.8 (server#28342)
• Change the concurrent upload limit to less than 10 (server#28353)
• Fix Folder->getById() when a single storage is mounted multiple times (server#28359)
• Make “name” column nullable for workflows (server#28384)
• Gracefully handle smb acls for users without a domain (server#28416)
• Add missing files for Composer v2 (server#28441)
• Improve auto expiration hint for trashbin and file versions (server#28446)
• UnifiedSearchController: strip webroot from URL before finding a route (server#28454)
• Only trap E_ERROR in session handling (server#28470)
• Disable autofocus of primary Email (server#28479)
• Emit an error log when the app token login name does not match (server#28489)
• Hash cache key (server#28494)
• Fix #20913: Check image resource before attempting to preserve alpha (server#28499)
• Output exception in cron (server#28518)
• Properly log errors in Movie previews generation (server#28522)
• Fix folder size contained in S3 buckets (server#28534)
• Set alias for result of cast column function (server#28536)
• Do not load versions tab view if the files app is not available (server#28545)
• Bump webdav from 4.6.0 to 4.6.1 (server#28553)
• Fix UserController tests (server#28568)
• Use case insensitive like when limiting search to jail (server#28573)
• Log exception message during failed ownership transfer share restore (server#28576)
• Use getGetUnjailedRoot to determine if jailed search needs the path filter (server#28583)
• 22.1.1-rc2 (server#28590)
• Fix setting up 2FA providers when 2FA is enforced and bc are generated (server#28596)
• Fix activity design (activity#633)
• Check if `$knownPath` is set before invoking `rtrim()` (circles#776)
• Generate quick members’ memberships during migration (circles#779)
• Verify shareType in params (circles#782)
• Details on non-visible (but open) circles (circles#787)
• Fix definition on single circles (circles#788)
• Emulate initiator on CircleJoin (circles#791)
• Owner of NO_OWNER should not have memberships cached (circles#799)
• Fix notification when invited to a circle (circles#800)
• Exception on non visible circle (circles#805)
• Force join_request on old secret circles (circles#806)
• Fix hide download and printing (files_pdfviewer#460)
• Fix body footer hiding (files_pdfviewer#463)
• Disable download for pdf files (files_pdfviewer#469)
• Fix download & print view (files_pdfviewer#473)
• Fix share option being displayed erroneously (files_rightclick#119)
• Give twofactor nextcloud notifications a high priority (notifications#1062)
• Always show the dismiss all button (notifications#1065)
• Fix maria db tests (notifications#1067)
• High priority for the PhoneTrack app (notifications#1070)
• Bump @babel/plugin-transform-modules-commonjs from 7.14.0 to 7.14.5 (text#1732)
• Bump @babel/plugin-transform-classes from 7.14.5 to 7.14.9 (text#1813)
• Bump vue-loader from 15.9.7 to 15.9.8 (text#1814)
• Bump @babel/preset-env from 7.14.5 to 7.14.9 (text#1815)

Version 22.1.0 August 6 2021

Download: nextcloud-22.1.0.tar.bz2 or nextcloud-22.1.0.zip
Check the file integrity with:
MD5: nextcloud-22.1.0.tar.bz2.md5 or nextcloud-22.1.0.zip.md5
SHA256: nextcloud-22.1.0.tar.bz2.sha256 or nextcloud-22.1.0.zip.sha256
SHA512: nextcloud-22.1.0.tar.bz2.sha512 or nextcloud-22.1.0.zip.sha512
PGP (Key): nextcloud-22.1.0.tar.bz2.asc or nextcloud-22.1.0.zip.asc

Changes

• Update guzzlehttp/guzzle requirement from 6.5.2 to 7.3.0 in /build/integration (server#27654)
• Bump vue and vue-template-compiler (server#27658)
• Bump vue-router from 3.5.1 to 3.5.2 (server#27659)
• Ignore subdomain for soa queries (server#27825)
• Fix in locking cache check (server#27826)
• Fixes recursion count incrementation (server#27848)
• Make search popup usable on mobile, too (server#27856)
• Cache images on browser (server#27861)
• Fix add group button (server#27878)
• Fix dark theme on public link shares (server#27889)
• Make user status usable on mobile (server#27898)
• Check if dns_get_record returns non-false (server#27925)
• Correctly skip suppressed errors in PHP 8.0 (server#27938)
• Fix newfileMenu on public page (server#27942)
• Do not escape display name in dashboard welcome text (server#27944)
• Fix svg icons disapearing in app navigation when text overflows (server#27957)
• Revert “Update guzzlehttp/guzzle requirement from 6.5.2 to 7.3.0 in /build/integration” (server#27959)
• Also hide group from direct matches (server#27964)
• Show registered breadcrumb detail views in breadcrumb menu (server#27966)
• Fix regression in file sidebar (server#27974)
• Allow to get a local cloud id without going through the contacts manager (server#27979)
• Multiple Emails UI and Integration (server#28001)
• Improve notcreatable permissions hint (server#28008)
• Some multiselect design fixes (server#28011)
• Only display supported email scopes (server#28014)
• Update CRL due to revoked twofactor_nextcloud_notification.crt (server#28016)
• Increase footer height for longer menus (server#28043)
• Add titleTooltip to sidebar (server#28047)
• Mask password for Redis and RedisCluster on connection failure (server#28053)
• Fix missing theming for login button (server#28061)
• Improve Emails UX (server#28071)
• Fix overlapping of elements in certain views (server#28073)
• Disable HEIC image preview provider for performance concerns (server#28079)
• Improve provider check (server#28085)
• Sanitize more functions from the encryption app (server#28089)
• Hide download button for public preview of audio files (server#28093)
• Fix dark theme in file exists dialog (server#28109)
• Support redis user password auth and tls encryption (server#28112)
• Bump @babel/core from 7.14.3 to 7.14.8 (server#28121)
• Let memory limit set in tests fit the used amount (server#28123)
• Bump @nextcloud/babel-config from 1.0.0-beta.1 to 1.0.0 (server#28126)
• Allow empty Redis config (server#28131)
• Add an option to the multiple files selected actions to add and remov… (server#28135)
• Bump css-vars-ponyfill from 2.4.3 to 2.4.5 (server#28149)
• Make sure that the dav propfind plugins always use the proper user id (server#28152)
• Admin Audit – Sharing: createShare – report the full path (server#28167)
• Fix sort function of files multiple selection actions (server#28168)
• User management – Add icon to user groups (server#28170)
• Bump @babel/preset-env from 7.14.7 to 7.14.8 (server#28177)
• Bump sass from 1.35.1 to 1.35.2 (server#28179)
• Bump autosize from 4.0.2 to 4.0.4 (server#28181)
• Fix variable override in file view (server#28193)
• Fix comments file action sidebar opening (server#28197)
• Set openfile params when following internal links (server#28215)
• Fix Files breadcrumbs being hidden even if there is enough space (server#28222)
• Dont apply jail search filter is on the root (server#28228)
• Fix missing label of Search function (server#28244)
• Add missing order attribute to tag multiselect action (server#28247)
• Update guzzlehttp/guzzle requirement from 6.5.2 to 6.5.5 in /build/integration (server#28269)
• Bump css-loader from 5.2.6 to 5.2.7 (server#28270)
• Bump css-vars-ponyfill from 2.4.5 to 2.4.6 (server#28272)
• Bump regenerator-runtime from 0.13.7 to 0.13.9 (server#28273)
• Fix “Enable notification emails” (activity#611)
• Show add, del and restored files within by and self filter (activity#614)
• Only call getCloudId if needed (activity#618)
• Link from app-navigation-settings to personal settings (activity#623)
• Remove echo (circles#688)
• Returns files shared to Personal (circles#698)
• Make cs-fix/cs-check (circles#699)
• Cs fix (circles#700)
• Backport of 704 (circles#708)
• Avoid timeout on check (circles#709)
• Better probe (circles#714)
• Removing hidden flag by default (circles#717)
• Generate probe if needed (circles#719)
• Adding unified search (circles#721)
• Detect source of search (circles#724)
• Remove root circles from search for new members (circles#727)
• Sending mail on new shares (circles#729)
• GetDefinition (circles#732)
• Cloud_force_base (circles#737)
• Fixing notification and mails (circles#738)
• Remote inherited and memberships (circles#740)
• Sendmail on new fileshare (circles#741)
• Fix phpdoc+lint (circles#742)
• Better display of mail addresses (circles#744)
• Limit non-local circles as members of local circles (circles#747)
• Local stays local (circles#749)
• Local circles starts local (circles#751)
• Throw instead of doing nothing (circles#754)
• Send mails to inherited members on GS (circles#755)
• Optional details on Link (circles#757)
• Include and config path in loopback (circles#759)
• Cleaning old code (circles#761)
• Migration to 22.1.0 – child shares (circles#762)
• Fix pdfviewer design (files_pdfviewer#445)
• Include version number in firstrunwizard (firstrunwizard#568)
• Remove timeout of browser notifications (notifications#1049)
• Some Design fixes (text#1711)
• Unify error responses and add logging where appropriate (text#1717)
• Bump eslint-plugin-import from 2.23.3 to 2.23.4 (text#1734)
• Bump @babel/core from 7.14.3 to 7.14.6 (text#1739)
• Fix: rich workspaces overlap with new file dropdown (text#1769)
• Azul/fix links 1676 (text#1775)
• Extend mimetypes for direct editing (text#1781)
• Bump @vue/test-utils from 1.2.1 to 1.2.2 (text#1792)
• Make occ command return an integer as return code (text#1797)
• Custom input rule to add first character after bullet (Backport #1798) (text#1806)
• Fix: cypress icon close selector (text#1808)
• Disable header timeout on mobile (viewer#977)

Version 22.0.0 July 6 2021

Download: nextcloud-22.0.0.tar.bz2 or nextcloud-22.0.0.zip
Check the file integrity with:
MD5: nextcloud-22.0.0.tar.bz2.md5 or nextcloud-22.0.0.zip.md5
SHA256: nextcloud-22.0.0.tar.bz2.sha256 or nextcloud-22.0.0.zip.sha256
SHA512: nextcloud-22.0.0.tar.bz2.sha512 or nextcloud-22.0.0.zip.sha512
PGP (Key): nextcloud-22.0.0.tar.bz2.asc or nextcloud-22.0.0.zip.asc

Nextcloud 22 is here!

The biggest improvements Nextcloud Hub 22 introduces are:

•  User-defined groups with Circles that makes it easier to manage teams where you can share files or assign tasks to circles, or create chat rooms for a circle
•  Integrated chat and task management where you can simply share a deck card into a chat room or turn a chat message into a task
•  Easy approval workflow, where an administrator can define a new approval flow in the settings and users can, on a document, request approval
•  Getting your document signatures easy with integrated PDF signing with DocuSign, EIDEasy, and LibreSign
•  Integrated knowledge management Nextcloud puts knowledge available to everyone at a moments’ notice, providing easy search, sharing, and portable access
•  Groupware improvements bringing a trash bin feature in Calendar, resource booking to facilitate the handling of resources in organizations. Nextcloud Mail features improved threading, email tagging, and support for Sieve filtering

There are many more new features and changes like notifications in the app navigation, integrated compression in the Files interface, and significant performance improvements to universal search.

Read our announcement blog for the details.

Changelog

A full changelog would be to long to reproduce here, given the core server alone had over 600 PR’s merged.

You can find a list of PR’s for the core server, without dependency bumps, here. If you replace ‘server’ in the URL above with, for example, viewer, activity, photos, notifications or text, the changes in the respective apps will show up.

latest 21 release below.

Version 21.0.9 February 16 2022

Download: nextcloud-21.0.9.tar.bz2 or nextcloud-21.0.9.zip
Check the file integrity with:
MD5: nextcloud-21.0.9.tar.bz2.md5 or nextcloud-21.0.9.zip.md5
SHA256: nextcloud-21.0.9.tar.bz2.sha256 or nextcloud-21.0.9.zip.sha256
SHA512: nextcloud-21.0.9.tar.bz2.sha512 or nextcloud-21.0.9.zip.sha512
PGP (Key): nextcloud-21.0.9.tar.bz2.asc or nextcloud-21.0.9.zip.asc

Changes

• Delete calendar subscriptions as well when deleting user (server#28657)
• Add a prefix index to filecache.path, attempt 2 (server#29325)
• Interpolate the log message also for logged exceptions (server#29963)
• Avoid calling image* methods on boolean (server#30117)
• Allow to delete non-migrated previews instead of moving them (server#30178)
• Check resource before closing in encryption wrapper (server#30182)
• Use correct icon for dir-external-root (server#30189)
• Properly format sharing datepicker locale (server#30192)
• Update sabre/dav requirement from 4.2.1 to 4.2.3 in /build/integration (server#30216)
• Only wildcard search if enumeration is allowed (server#30248)
• Fix setting up 2FA when no providers are set up but backup codes (server#30251)
• Support LDAP dns longer than 255 characters (server#30261)
• Also use case sensitive like when searching in a folder (server#30270)
• Fix ShareLink Upload UI for Folders (server#30287)
• Ignore non-existing groups when notifying group shares (server#30308)
• Fix share owner not being displayed in sharing tab (server#30314)
• Update sabre/dav requirement from 4.2.3 to 4.3.0 in /build/integration (server#30327)
• Fix potential unwarranted memberships in nested groups from LDAP (server#30341)
• Fix overlapping in the help settings section (server#30346)
• Stable23] Avoid use of iconv to get rid of unicode (server#30348)
• Add missing index for propertypath only queries of DAV properties (server#30435)
• Handle external share with invalid host (server#30442)
• Make sure to get file model in template picker (server#30448)
• Improve status modal (server#30454)
• Fix uploading text position (server#30482)
• Run migrations fully when reenabling an app (server#30488)
• Remove iconv from dependencies and tests (server#30521)
• Fix passing on the parameter (server#30524)
• Update CRL after revocation of sharerenamer.crt (server#30527)
• Handle LocalServerException when scanning external shares (server#30559)
• Fix fail when keys/files folder already exists (server#30579)
• Use npm ci when running JS tests (server#30583)
• Fix: only use jquery once it is available (server#30590)
• Fix static analysis on CI (server#30596)
• Add better index for finding unindexed paths (server#30599)
• Prevent loading images that would require too much memory. (server#30601)
• Fix RequestURL check for cli commands (server#30617)
• Trigger “changeDirectory” event on URL change (server#30629)
• Reset job disabling timer on adding the job again (server#30633)
• Properly abort uploads (server#30638)
• Fix idn emails not working in shares (server#30642)
• Implement multibucket shift for ObjectStore (server#30660)
• Fix wrong unified search link to folder (server#30665)
• Fix primary key change in user_ldap migration (server#30667)
• Improve accessibility settings on mobile (server#30669)
• Add version of disabled apps when available (server#30676)
• Fix file picker not respecting hidden files settings (server#30677)
• Optimize FileSystemTags workflow for groupfolder (server#30682)
• Remove inefficient fed share scanner (server#30686)
• Fix users can’t login external mount user entered credentials not set (server#30693)
• Hash job argument (server#30737)
• Improve install process (server#30749)
• Create block-merge-freeze.yml (server#30755)
• Always call flush() as getAllKeys() is broken (server#30775)
• Fix backport/30470/stable21 (server#30787)
• Update sabre/dav requirement from 4.3.0 to 4.3.1 in /build/integration (server#30809)
• 21.0.8 Final (server#30838)
• Prevent merging on EOL branches (server#30874)
• Bump clipboard from 2.0.8 to 2.0.9 (server#30909)
• Use existing API (server#30946)
• Update version.php (server#30977)
• Fix duplicated UUID migration issue (server#31115)
• Create block-merge-freeze.yml (3rdparty#973)
• Fix sorting of filters on php 8.0+ (activity#717)
• Bump actions (files_pdfviewer#532)
• Create block-merge-freeze.yml (files_pdfviewer#546)
• Updating lint-php.yml workflow from template (files_pdfviewer#551)
• Create block-merge-freeze.yml (files_rightclick#133)
• Create block-merge-freeze.yml (files_videoplayer#258)
• Disable fade-out because of accessbility reasons (firstrunwizard#640)
• Fix overlapping buttons (firstrunwizard#654)
• Create block-merge-freeze.yml (firstrunwizard#663)
• Create block-merge-freeze.yml (logreader#638)
• Create block-merge-freeze.yml (nextcloud_announcements#94)
• Create block-merge-freeze.yml (notifications#1139)
• Create block-merge-freeze.yml (password_policy#317)
• Create block-merge-freeze.yml (photos#1000)
• Bump babel-loader from 8.2.2 to 8.2.3 (photos#1007)
• Bump eslint-config-standard from 16.0.2 to 16.0.3 (photos#1008)
• Bump @nextcloud/vue from 3.3.1 to 3.3.2 (photos#959)
• Fix Tags: Don’t display tags without photos (photos#962)
• Bump vue-loader from 15.9.6 to 15.9.8 (photos#967)
• Bump @nextcloud/initial-state from 1.2.0 to 1.2.1 (photos#969)
• Bump autoprefixer from 9.8.6 to 9.8.8 (photos#970)
• Bump regenerator-runtime from 0.13.7 to 0.13.9 (photos#971)
• Update workflows (photos#983)
• Bump vue-virtual-grid from 2.3.0 to 2.3.2 (photos#990)
• Bump vuex from 3.6.0 to 3.6.2 (photos#991)
• Bump vue and vue-template-compiler (photos#992)
• Bump qs from 6.9.6 to 6.9.7 (photos#993)
• Bump camelcase from 6.2.0 to 6.2.1 (photos#994)
• Fix label of account name and hide parts with subscription (privacy#678)
• Create block-merge-freeze.yml (privacy#686)
• Update workflows (privacy#692)
• Create block-merge-freeze.yml (recommendations#472)
• Update test.yml (recommendations#475)
• Create block-merge-freeze.yml (serverinfo#354)
• Create block-merge-freeze.yml (survey_client#125)
• Bump @babel/preset-env from 7.15.6 to 7.15.8 (text#1894)
• Bump babel-loader from 8.2.2 to 8.2.3 (text#1911)
• Bump @nextcloud/initial-state from 1.2.0 to 1.2.1 (text#1937)
• Bump @cypress/browserify-preprocessor from 3.0.1 to 3.0.2 (text#1938)
• Make sure translations are parsed correctly (text#1991)
• Fix deprecated scss syntax (text#1994)
• Pin node/npm versions (text#1998)
• Fix: use stable21 branch for cypress tests (text#2022)
• Add stylelint to github actions (text#2043)
• Only show image author annotations if needed (text#2110)
• Create block-merge-freeze.yml (text#2117)
• Fix github actions (viewer#1072)
• Add light  download icon (viewer#1073)
• Disable fade-out because of accessbility reasons (viewer#1078)
• Fix german (Sie) translations comming from nextcloud-vue (viewer#1091)
• Bump workflows (viewer#1095)
• Add engines support for cypress tests (viewer#1101)
• Disable swiping on viewer video controls (viewer#1116)
• Disable swiping on viewer audio controls (viewer#1124)
• Create block-merge-freeze.yml (viewer#1135)
• Update lint-php.yml (viewer#1140)

Version 21.0.7 November 15 2021

Download: nextcloud-21.0.7.tar.bz2 or nextcloud-21.0.7.zip
Check the file integrity with:
MD5: nextcloud-21.0.7.tar.bz2.md5 or nextcloud-21.0.7.zip.md5
SHA256: nextcloud-21.0.7.tar.bz2.sha256 or nextcloud-21.0.7.zip.sha256
SHA512: nextcloud-21.0.7.tar.bz2.sha512 or nextcloud-21.0.7.zip.sha512
PGP (Key): nextcloud-21.0.7.tar.bz2.asc or nextcloud-21.0.7.zip.asc

Changes

• Use unique combination of hostname/bucket/key for external storages (server#29635)
• Bump moment-timezone from 0.5.33 to 0.5.34 (server#29656)
• Don’t flash external storage mountpoints during the status check (server#29707)
• Bump doctrine/dbal to 3.1.4 (server#29718)
• Add composer patch (3rdparty#891)
• Bump doctrine/dbal to 3.1.4 (3rdparty#896)

Version 21.0.6 November 12 2021

Download: nextcloud-21.0.6.tar.bz2 or nextcloud-21.0.6.zip
Check the file integrity with:
MD5: nextcloud-21.0.6.tar.bz2.md5 or nextcloud-21.0.6.zip.md5
SHA256: nextcloud-21.0.6.tar.bz2.sha256 or nextcloud-21.0.6.zip.sha256
SHA512: nextcloud-21.0.6.tar.bz2.sha512 or nextcloud-21.0.6.zip.sha512
PGP (Key): nextcloud-21.0.6.tar.bz2.asc or nextcloud-21.0.6.zip.asc

Changes

• 3rdparty: Bump icewind/streams from 0.7.2 to 0.7.5 (server#28505)
• Handle case where storage can’t be created in getStorageRootId (server#28730)
• Ensure that user and group IDs in LDAP’s tables are also max 64chars (server#28969)
• Fix Lots of Error: file_exists(): open_basedir restriction in effect (server#29037)
• Change output format of Psalm to Github (server#29047)
• File-upload: Correctly handle error responses for HTTP2 (server#29068)
• Update psalm baseline (server#29070)
• Allow “TwoFactor Nextcloud Notifications” to pull the state of the 2F… (server#29071)
• ExecuteQuery and executeStatement are 22+ (server#29074)
• Fix path of file_get_contents (server#29075)
• Generate a better optimized query for path prefix search filters (server#29080)
• Add a few sensitive config keys (server#29087)
• Update the certificate bundle (server#29097)
• Keep pw based auth tokens valid when pw-less login happens (server#29130)
• Explicitly close source stream on local / encryption storage (server#29134)
• Update icewind/streams to 0.7.5 in files_external (server#29137)
• Properly handle folder deletion on external s3 storage (server#29159)
• Tokens without password should not trigger changed password invalidation (server#29161)
• Don’t further setup disabled users when logging in with apache (server#29164)
• Add button color variables (server#29178)
• Add ‘supported’-label to all supported apps (server#29182)
• Revert “Add button color variables” (server#29194)
• Keep group restrictions when reenabling apps after an update (server#29197)
• Add proper message to created share not found (server#29203)
• Fix translated app details (server#29208)
• Add documentation for files_no_background_scan (server#29218)
• Don’t setup the filesystem to check for a favicon we don’t use anyway (server#29222)
• Fix background scan doc in config (server#29252)
• Add configuration flag to disable the background job for files_versions (server#29267)
• Add configuration flag to disable the background job for files_trashbin (server#29268)
• Fix bug introduced on drag and drop external files (server#29282)
• Get `filesize()` if `file_exists()` (server#29289)
• Fix app upgrade (server#29302)
• Avoid PHP errors when the LDAP attribute is not found (server#29315)
• Tell mysql to ignore the sort index for search queries (server#29322)
• Fix security issues when copying groupfolder with advanced ACL (server#29367)
• Fix federated scope not shown when public addressbook upload is disabled (server#29384)
• Scheduling plugin not updating responding attendee status (server#29386)
• Make calendar schedule options translatable (server#29390)
• Make the route name error more helpful (server#29399)
• Update behat/behat requirement from ~3.8.0 to ~3.9.0 in /build/integration (server#29403)
• Bump babel-loader from 8.2.2 to 8.2.3 (server#29411)
• Handle files with `is_file` instead of `file_exists` (server#29416)
• Fixes an undefined index when getAccessList returns an empty array (server#29420)
• Backport #29260: Respect user enumeration settings in user status lists (server#29428)
• Implement local filtering in file list (server#29443)
• S3 external storage fixes (server#29447)
• Detect mimetype by content only with content (server#29458)
• Fix permissions when copying from ObjectStorage (server#29476)
• Bump bootstrap from 4.6.0 to 4.6.1 (server#29492)
• Update guzzlehttp/guzzle requirement from 6.5.2 to 6.5.5 in /build/integration (server#29493)
• Update CRL (server#29504)
• Limit parameter count per query in Cache.removeChildren (server#29507)
• Fix/images php 8.0 (server#29520)
• Update update-psalm-baseline workflow (server#29550)
• Revert “tell mysql to ignore the sort index for search queries” (server#29551)
• Bump @nextcloud/initial-state from 1.2.0 to 1.2.1 (server#29576)
• Update behat/behat requirement from ~3.9.0 to ~3.10.0 in /build/integration (server#29579)
• Handle empty directory drag-and-drop in Files UI (server#29596)
• Fix HTML entity rendering in file comments sidebar (server#29599)
• Bump icewind/streams from 0.7.2 to 0.7.5 (3rdparty#730)
• Bump version (files_pdfviewer#511)
• Bump eslint-import-resolver-webpack from 0.13.1 to 0.13.2 (files_pdfviewer#515)
• Bump babel-loader from 8.2.2 to 8.2.3 (files_pdfviewer#516)
• Fix deleting notifications with numeric user ID (notifications#1089)
• Add integration tests for push registration (notifications#1096)
• Restore old device signature so the proxy works again (notifications#1104)
• Fix: rich workspaces overlap with new file dropdown (text#1770)
• Bump prosemirror-schema-list from 1.1.5 to 1.1.6 (text#1870)
• Bump prosemirror-transform from 1.3.2 to 1.3.3 (text#1880)
• Additional checks for workspace controller (text#1886)
• Bump @babel/core from 7.15.5 to 7.15.8 (text#1895)
• Build(deps-dev): bump eslint-import-resolver-webpack from 0.13.1 to 0.13.2 (viewer#1055)
• Build(deps-dev): bump babel-loader from 8.2.2 to 8.2.3 (viewer#1056)

Version 21.0.5 October 1 2021

Download: nextcloud-21.0.5.tar.bz2 or nextcloud-21.0.5.zip
Check the file integrity with:
MD5: nextcloud-21.0.5.tar.bz2.md5 or nextcloud-21.0.5.zip.md5
SHA256: nextcloud-21.0.5.tar.bz2.sha256 or nextcloud-21.0.5.zip.sha256
SHA512: nextcloud-21.0.5.tar.bz2.sha512 or nextcloud-21.0.5.zip.sha512
PGP (Key): nextcloud-21.0.5.tar.bz2.asc or nextcloud-21.0.5.zip.asc

Changes

• Fix Oracle query limit compliance in Comments (server#27203)
• Bump @babel/core from 7.12.10 to 7.12.17 (server#27234)
• Avoid fread on directories and unencrypted files (server#27406)
• Bump clipboard from 2.0.6 to 2.0.8 (server#27640)
• Harden bootstrap context registrations when apps are missing (server#27681)
• Bump css-loader from 5.0.1 to 5.0.2 (server#27917)
• Bump vue and vue-template-compiler (server#27983)
• Bump url-search-params-polyfill from 8.1.0 to 8.1.1 (server#28203)
• Add h2 to personal info page, fixing accessibility issue (server#28253)
• Fix CI failures when building settings app (server#28275)
• Check that php was compiled with argon2 support or that the php-sodium extensions is installed (server#28287)
• Change the concurrent upload limit to less than 10 (server#28354)
• Bump debounce from 1.2.0 to 1.2.1 (server#28358)
• Fix Folder->getById() when a single storage is mounted multiple times (server#28361)
• Make “name” column nullable for workflows (server#28383)
• Dont show trusted proxy warning when the proxy and remote are both localhost (server#28386)
• Better cleanup of user files on user deletion (server#28400)
• Gracefully handle smb acls for users without a domain (server#28415)
• Bump vue-loader from 15.9.7 to 15.9.8 (server#28440)
• Add missing files for Composer v2 (server#28442)
• Improve auto expiration hint for trashbin and file versions (server#28447)
• UnifiedSearchController: strip webroot from URL before finding a route (server#28455)
• Only trap E_ERROR in session handling (server#28469)
• Emit an error log when the app token login name does not match (server#28490)
• Hash cache key (server#28495)
• Fix #20913: Check image resource before attempting to preserve alpha (server#28498)
• Output exception in cron (server#28517)
• Properly log errors in Movie previews generation (server#28523)
• Fix folder size contained in S3 buckets (server#28535)
• Set alias for result of cast column function (server#28537)
• Do not load versions tab view if the files app is not available (server#28546)
• Log exception message during failed ownership transfer share restore (server#28577)
• Fix setting up 2FA providers when 2FA is enforced and bc are generated (server#28597)
• Fix encrypted version to 0 when finding unencrypted file (server#28604)
• Bump css-vars-ponyfill from 2.4.5 to 2.4.6 (server#28623)
• Only recommand for php-sodium on >= PHP 7.4 (server#28656)
• Fix position of search bar (server#28673)
• Fix user list infinite loading state in user settings (server#28702)
• Pin Psalm version for security analysis (server#28706)
• Bump css-vars-ponyfill from 2.4.6 to 2.4.7 (server#28709)
• Check if SVG path is valid (server#28735)
• Remove 2FA exemption from PublicPage annotation (server#28741)
• Send attendence links to required and optinal attendees of an event without an RSVP (server#28749)
• Bump 3rdparty ref (server#28753)
• Fix trashbin files view sticky action bar (server#28770)
• Dashboard – fix touch layout (server#28782)
• Scan the shared external storage source on access (server#28786)
• Fix null displayname crash as described in #21885 (server#28790)
• Bump vue-clipboard2 from 0.3.1 to 0.3.2 (server#28800)
• Bump 3rdparty reference (server#28811)
• Add database ratelimiting backend (server#28815)
• Update .htaccess (php8+ and mod_lsapi) (server#28829)
• Do not cache file ids in FileSystemTags inside group folders (server#28831)
• L10n: ignore packed js files from TX sync (server#28849)
• Add email addresses to contacts menu (server#28859)
• Fix files view change and undefined currentFileList (server#28879)
• Fix file creation from template without ext (server#28882)
• Bump vue-clipboard2 from 0.3.2 to 0.3.3 (server#28887)
• Fall back to full file for video previews (server#28896)
• Update CRL due to revoked twofactor_email.crt (server#28901)
• Explicitly close source stream on object store upload even if count… (server#28905)
• Support seeking also from the end of file on S3 storage (server#28909)
• Use IRoomMetadata as source of truth for supported room types (server#28920)
• Bump 3rdparty ref (server#28929)
• Fix caching of objectsid searches (server#28950)
• Don’t allow to change activity settings that don’t work (server#28963)
• Fix redirect during initial setup (server#28999)
• Bump Archive_Tar to latest release (3rdparty#782)
• Bump Webauthn Lib to 3.3.9 (3rdparty#784)
• Composer install (3rdparty#811)
• Fix activity design (activity#634)
• Increase activity email speed in instances with more than 500 users (activity#642)
• Fix hide download and printing (files_pdfviewer#462)
• Fix body footer hiding (files_pdfviewer#464)
• Disable download for pdf files (files_pdfviewer#470)
• Fix download & print view (files_pdfviewer#474)
• Bump @babel/preset-env from 7.12.11 to 7.12.17 (files_pdfviewer#481)
• Bump @babel/core from 7.12.10 to 7.12.17 (files_pdfviewer#482)
• Bump eslint-import-resolver-webpack from 0.13.0 to 0.13.1 (files_pdfviewer#484)
• Bump vue-loader from 15.9.6 to 15.9.8 (files_pdfviewer#486)
• Bump vue-template-compiler from 2.6.12 to 2.6.14 (files_pdfviewer#488)
• Use setup-php v2 (files_pdfviewer#496)
• Update workflows (files_pdfviewer#497)
• Fix share option being displayed erroneously (files_rightclick#120)
• Give twofactor nextcloud notifications a high priority (notifications#1063)
• Always show the dismiss all button (notifications#1066)
• High priority for the PhoneTrack app (notifications#1071)
• Update dependabot (photos#874)
• Bump vue from 2.6.12 to 2.6.14 (text#1752)
• Bump vue-loader from 15.9.7 to 15.9.8 (text#1816)
• Bump core-js from 3.16.2 to 3.16.3 (text#1840)
• Bump core-js from 3.16.3 to 3.16.4 (text#1846)
• Bump prosemirror-markdown from 1.5.1 to 1.5.2 (text#1850)
• Bump @babel/preset-env from 7.15.0 to 7.15.6 (text#1858)
• Bump @babel/core from 7.15.0 to 7.15.5 (text#1859)
• Build(deps-dev): bump @babel/core from 7.13.14 to 7.13.16 (viewer#1009)
• Build(deps-dev): bump vue-loader from 15.9.6 to 15.9.8 (viewer#1011)
• Build(deps-dev): bump @babel/preset-env from 7.13.12 to 7.13.15 (viewer#1012)
• Build(deps-dev): bump eslint-import-resolver-webpack from 0.13.0 to 0.13.1 (viewer#1014)
• Build(deps-dev): bump eslint-config-standard from 16.0.2 to 16.0.3 (viewer#1021)
• Build(deps): bump @nextcloud/dialogs from 3.1.1 to 3.1.2 (viewer#1023)
• Build(deps): bump regenerator-runtime from 0.13.7 to 0.13.9 (viewer#1039)
• Build(deps-dev): bump eslint-webpack-plugin from 2.5.3 to 2.5.4 (viewer#1040)

Version 21.0.4 August 6 2021

Download: nextcloud-21.0.4.tar.bz2 or nextcloud-21.0.4.zip
Check the file integrity with:
MD5: nextcloud-21.0.4.tar.bz2.md5 or nextcloud-21.0.4.zip.md5
SHA256: nextcloud-21.0.4.tar.bz2.sha256 or nextcloud-21.0.4.zip.sha256
SHA512: nextcloud-21.0.4.tar.bz2.sha512 or nextcloud-21.0.4.zip.sha512
PGP (Key): nextcloud-21.0.4.tar.bz2.asc or nextcloud-21.0.4.zip.asc

Changes

• Files & Core accessibility fixes (server#26650)
• Fix account data visibility after disabling public addressbook upload (server#26724)
• Better cleanup of filecache when deleting an external storage (server#27205)
• Bump @babel/preset-env from 7.12.11 to 7.12.17 (server#27225)
• Bump marked from 1.2.8 to 1.2.9 (server#27228)
• Bump vuex from 3.6.0 to 3.6.2 (server#27624)
• Revert “Fix constraint violation detection in QB Mapper” (server#27729)
• Design fixes to app-settings button (server#27744)
• Reset checksum when writing files to object store (server#27753)
• Run s3 tests again (server#27803)
• Fix in locking cache check (server#27828)
• Make search popup usable on mobile, too (server#27857)
• Cache images on browser (server#27862)
• Fix dark theme on public link shares (server#27896)
• Make user status usable on mobile (server#27899)
• Correctly skip suppressed errors in PHP 8.0 (server#27939)
• Fix newfileMenu on public page (server#27940)
• Do not escape display name in dashboard welcome text (server#27943)
• Fix svg icons disapearing in app navigation when text overflows (server#27956)
• Show registered breadcrumb detail views in breadcrumb menu (server#27967)
• Fix regression in file sidebar (server#27975)
• Manual backport of “No limit in the number of group shares” #27875 (server#27992)
• Improve notcreatable permissions hint (server#28007)
• Update CRL due to revoked twofactor_nextcloud_notification.crt (server#28017)
• Increase footer height for longer menus (server#28044)
• Add titleTooltip to sidebar (server#28048)
• Mask password for Redis and RedisCluster on connection failure (server#28055)
• Fix missing theming for login button (server#28064)
• Fix overlapping of elements in certain views (server#28074)
• Disable HEIC image preview provider for performance concerns (server#28080)
• Improve provider check (server#28086)
• Sanitize more functions from the encryption app (server#28090)
• Hide download button for public preview of audio files (server#28097)
• Fix dark theme in file exists dialog (server#28110)
• Let memory limit set in tests fit the used amount (server#28124)
• Bump regenerator-runtime from 0.13.7 to 0.13.9 (server#28145)
• User management – Add icon to user groups (server#28171)
• Fix variable override in file view (server#28192)
• Revert “better cleanup of filecache when deleting an external storage” (server#28196)
• Fix comments file action sidebar opening (server#28198)
• Fix missing exception class import (server#28214)
• Revert accidentally dropped lines from Psalm baselines (server#28218)
• Fix Files breadcrumbs being hidden even if there is enough space (server#28223)
• Allow to disable group membership change notification (server#28230)
• Dont apply jail search filter is on the root (server#28235)
• Fix missing label of Search function (server#28245)
• Update comments bundles (server#28302)
• Fix preference name when generating notifications (activity#602)
• Fix monochrome icon detection for correct dark mode invert (activity#606)
• Fix “Enable notification emails” (activity#612)
• Show add, del and restored files within by and self filter (activity#615)
• Link from app-navigation-settings to personal settings (activity#624)
• Fix pdfviewer design (files_pdfviewer#447)
• Include version number in firstrunwizard (firstrunwizard#569)
• Use notification main link if no parameter has a link (notifications#1039)
• ViewerComponent: pass on autofocus to EditorWrapper (text#1646)
• Unify error responses and add logging where appropriate (text#1718)
• Bump cypress-image-snapshot from 4.0.0 to 4.0.1 (text#1736)
• Bump vue-loader from 15.9.6 to 15.9.7 (text#1743)
• Bump @vue/test-utils from 1.1.2 to 1.1.4 (text#1744)
• Bump @babel/plugin-proposal-class-properties from 7.12.1 to 7.12.13 (text#1749)
• Bump @babel/core from 7.12.10 to 7.12.17 (text#1751)
• Bump @babel/plugin-transform-runtime from 7.12.10 to 7.12.17 (text#1753)
• Bump @babel/plugin-transform-modules-commonjs from 7.12.1 to 7.12.13 (text#1756)
• Some Design fixes (text#1782)
• Custom input rule to add first character after bullet (Backport #1798) (text#1807)
• Fix: cypress icon close selector (text#1809)
• Disable header timeout on mobile (viewer#976)

Version 21.0.3 July 2 2021

Download: nextcloud-21.0.3.tar.bz2 or nextcloud-21.0.3.zip
Check the file integrity with:
MD5: nextcloud-21.0.3.tar.bz2.md5 or nextcloud-21.0.3.zip.md5
SHA256: nextcloud-21.0.3.tar.bz2.sha256 or nextcloud-21.0.3.zip.sha256
SHA512: nextcloud-21.0.3.tar.bz2.sha512 or nextcloud-21.0.3.zip.sha512
PGP (Key): nextcloud-21.0.3.tar.bz2.asc or nextcloud-21.0.3.zip.asc

Changes

• Don’t break OCC if an app is breaking in it’s Application class (server#26879)
• Bump handlebars from 4.7.6 to 4.7.7 (server#26905)
• Bump url-parse from 1.4.7 to 1.5.1 (server#26911)
• Bump lodash from 4.17.20 to 4.17.21 (server#26912)
• Bump hosted-git-info from 2.8.8 to 2.8.9 (server#26918)
• Fix occ command user:add-app-password (server#26952)
• Add bruteforce protection to the shareinfo endpoint (server#26955)
• Ignore readonly flag for directories (server#26964)
• Throttle MountPublicLinkController when share is not found (server#26972)
• Respect default share permissions for federated reshares (server#26999)
• Harden apptoken check (server#27012)
• Use parent wrapper to properly handle moves on the same source/target storage (server#27015)
• Fix log error when creating files from an empty template (server#27021)
• Fix error when using CORS with no auth credentials (server#27028)
• Fix filesize error on log rotation, if file does not exist (server#27058)
• Avoid reading ~/.aws/config when using S3 provider (server#27097)
• Fix return value of getStorageInfo when ‘quota_include_external_storage’ is enabled (server#27107)
• Move remnants of ocs api requests to v2 endpoint (server#27109)
• Add DB exception ‘@throws’ tag to QBMapper PHPDoc (server#27121)
• Improve type handling of Avatar::generateAvatarFromSvg (server#27124)
• Bump patch dependencies (server#27184)
• Fix the get editable fields endpoint without a user id (server#27195)
• Use noreply@ as email address for share emails (server#27208)
• Bump vue-loader from 15.9.6 to 15.9.7 (server#27231)
• Bump moment-timezone from 0.5.32 to 0.5.33 (server#27237)
• Bump browserslist from 4.16.0 to 4.16.6 (server#27248)
• Bump ws from 7.3.1 to 7.4.6 (server#27250)
• Properly use limit and offset for search in Jail wrapper (server#27303)
• Make user:report command scale (server#27318)
• Properly log expiration date removal in audit log (server#27324)
• Emit UserLoggedInEvent on apache auth (server#27333)
• Don’t allow executing cli if cache backend is unavailable (server#27334)
• Propagate throttling on OCS response (server#27336)
• Replace OCSController with OCP\API (server#27346)
• Don’t throw when comments is disabled (server#27347)
• Set umask before operations that create local files (server#27350)
• Escape filename in Content-Disposition (server#27359)
• Don’t update statuses to offline again and again (server#27411)
• Fix some php 8 warnings (server#27415)
• Don’t pass a column object to addOrderBy (server#27446)
• Header must contain a colon (server#27455)
• Only allow removing existing shares that would not be allowed due to reshare restrictions (server#27551)
• Bump postcss from 7.0.35 to 7.0.36 (server#27569)
• Properly cleanup entries of WebAuthn on user deletion (server#27599)
• Throttle on public DAV endpoint (server#27616)
• Bump dompurify from 2.2.8 to 2.2.9 (server#27622)
• Unshift crash reports when they are loaded, to break the recusion (server#27670)
• Validate the theming color also on CLI (server#27679)
• LDAP: determine shares of offline users only when needed (server#27703)
• Downstream encryption:fix-encrypted-version for repairing “bad signature” errors (server#27727)
• Remove encodeURI code (files_pdfviewer#397)
• Disable content copy for PDF files that specify it (files_pdfviewer#417)
• Update openssl for PHP 8.0 (nextcloud_announcements#78)
• Only ask for permissions on HTTPS (notifications#997)
• Fix sorting if one of the file name is only composed with number (photos#784)
• Update File.vue (photos#812)
• Hide free space if it can’t be calculated (serverinfo#295)
• Update chart.js (serverinfo#308)
• Only return workspace property for top node in a propfind request (text#1610)
• Use text/plain as content type for fetching the document (text#1691)
• Log exceptions that happen on unknown exception and return generic messages (text#1697)
• Try enabling apcu on cli for cypress (text#1700)
• Add fixup (viewer#923)
• Fix: fullscreen for Firefox (viewer#928)
• Use physical pixel size for preview resolution (viewer#937)

Version 21.0.2 May 20 2021

Download: nextcloud-21.0.2.tar.bz2 or nextcloud-21.0.2.zip
Check the file integrity with:
MD5: nextcloud-21.0.2.tar.bz2.md5 or nextcloud-21.0.2.zip.md5
SHA256: nextcloud-21.0.2.tar.bz2.sha256 or nextcloud-21.0.2.zip.sha256
SHA512: nextcloud-21.0.2.tar.bz2.sha512 or nextcloud-21.0.2.zip.sha512
PGP (Key): nextcloud-21.0.2.tar.bz2.asc or nextcloud-21.0.2.zip.asc

Changes

• L10n: Add word user in FederatedShareProvider.php (server#26508)
• Increase subnet matcher (server#26514)
• Limit size of properties to 2048 characters (server#26525)
• Fix accessibility issues on log in screen (server#26535)
• Fix constraint violation detection in QB Mapper (server#26587)
• Bump ssri from 6.0.1 to 6.0.2 (server#26604)
• Add force option to app install command (server#26607)
• Update root.crl due to revoked news.crt (server#26616)
• Do not allow adding file drop shares to your own cloud (server#26621)
• Fix empty password check for mail shares (server#26625)
• Require read permissions for federated shares (server#26636)
• Ensure redis returns bool for hasKey (server#26639)
• Make lookup search explicit (server#26641)
• Update psalm baseline (server#26653)
• Fix broken Expiration test (server#26667)
• Do not stop directory listing when ACL is blocking access (server#26677)
• Mention MariaDB in MySQL support warning (server#26685)
• Make Testcase class compatible with phpunit-9.5 (server#26690)
• Explicitly check hex2bin input (server#26694)
• Remove undefined parameter, add description (server#26702)
• FIx Oracle by testing on Ubuntu 20.04 until oci8.so is available for … (server#26703)
• Update icewind/smb to 3.4.1 (server#26704)
• Bump @nextcloud/dialogs from 3.1.1 to 3.1.2 (server#26733)
• Private cannot be final (server#26752)
• Fix installer deprecation warnings for PHP 8 (server#26759)
• Validate the website field input to be a valid URL (server#26760)
• Respect the error level when logging (server#26766)
• Improve federated permission handling (server#26770)
• No longer add trusted servers on federated share creation (server#26778)
• Fix ratelimit template (server#26789)
• LDAP: do not bother to search after the last page (server#26797)
• Fail when creating new files with an empty path (server#26808)
• Only return display name as editable when the user backend allows it (server#26815)
• Do not try to contact lookup server if not needed (server#26823)
• Only perform login check during ownership transfer for encryption (server#26863)
• Fix creating vcards with multiple string values (server#26865)
• L10n: Spelling unification (server#26881)
• Remove self setting checking which can not be set anymore (activity#574)
• Ensure link names are unique for accessibility, thanks @nickvergessen, fix #575 (activity#578)
• Use PNG images in daily activity summary emails (activity#584)
• Fix accessibility issues in PDF pt. II (example-files#18)
• Fix admin notification api (notifications#929)
• Only push delete-push to devices that also got the notification (notifications#938)
• Move counting storage statistics to the background (serverinfo#298)
• Hide squashfs and overlay-FS from the overview (serverinfo#304)
• Add download button in actions menu (viewer#849)
• Limit scope of the icon white overwrite (viewer#858)
• Fixes for naughty filenames (viewer#869)

Version 21.0.1 April 9 2021

Download: nextcloud-21.0.1.tar.bz2 or nextcloud-21.0.1.zip
Check the file integrity with:
MD5: nextcloud-21.0.1.tar.bz2.md5 or nextcloud-21.0.1.zip.md5
SHA256: nextcloud-21.0.1.tar.bz2.sha256 or nextcloud-21.0.1.zip.sha256
SHA512: nextcloud-21.0.1.tar.bz2.sha512 or nextcloud-21.0.1.zip.sha512
PGP (Key): nextcloud-21.0.1.tar.bz2.asc or nextcloud-21.0.1.zip.asc

Changes

• Always renew apppasswords on login (server#25571)
• Improve mention matches (server#25573)
• Disable trasbin during the moveFromStorage fallback (server#25877)
• Clear multiselect after selection in share panel (server#25918)
• Activity: show if files are hidden or not (server#25935)
• Sharebymail: set expiration on creation (server#25937)
• Catch notfound and forbidden exception in smb::getmetadata (server#25943)
• Skip empty obsolete owner when adding to own NC (server#25955)
• Fix admin password strengthify tooltip (server#25962)
• Add missing waits and asserts in acceptance tests (server#25993)
• Hide expiration date field for remote shares (server#26026)
• Remove trash items from other trash backends when deleting all (server#26039)
• Fix SCSS compiler deprecated function usages (server#26042)
• Provisioning API to IBootstrap (server#26044)
• Cache baseurl in url generator (server#26051)
• Allow autocomplete based on phone sync (server#26056)
• Only clear share password model when actually saved (server#26058)
• Add appconfig to always show the unique label of a sharee (server#26062)
• Only clear known users when we had at least one phonebook entry (server#26081)
• Chunk the array of phone numbers (server#26084)
• Limit constructing of result objects in file search (server#26087)
• Apply object store copy optimization when ‘cross storage’ copy is wit… (server#26090)
• Add getID function to the simplefile implementation (server#26119)
• Allow overwriting isAuthenticated (server#26122)
• Send share notification instead of erroring on duplicate share (server#26124)
• Log exceptions when creating share (server#26128)
• Do cachejail search filtering in sql (server#26133)
• Return the fileid from `copyFromCache` and use it instead of doing an extra query (server#26146)
• Dont allow creating users with __groupfolders as uid (server#26151)
• Use correct exception type hint in catch statement (server#26162)
• Fix default missing initial state for templates (server#26166)
• Remove explicit fclose from S3->writeStream (server#26167)
• Adds ldap user:reset command (server#26175)
• Improve search results when only phonebook-matches can we autocompleted (server#26177)
• Fix valid storages removed when cleaning remote storages (server#26192)
• Update user share must use correct expiration validation (server#26204)
• Expand ‘path is already shared’ error message (server#26211)
• Add (hidden) option to always show smb root as writable (server#26215)
• Removed unnecessary padding (server#26227)
• L10n: Add words user and because in ShareByMailProvider.php (server#26238)
• Fix non LGC glyphs in avatars and txt file previews (server#26249)
• Handle limit offset and sorting in files search (server#26257)
• Update icewind/smb to 3.4.0 (server#26263)
• Catch invalid cache source storage path (server#26271)
• Fix casing of core test folder, bring back missing tests (server#26276)
• L10n: Separate ellipsis (server#26279)
• Show better error messages when a file with a forbidden path is encountered (server#26291)
• Fix l10n (server#26298)
• Log when a storage is marked as unavailable (server#26301)
• Delete old birthday calendar object when moving contact to another ad… (server#26307)
• Add a prefix index to filecache.path (server#26326)
• Avatar privacy and new scope (server#26352)
• Fix broken Calendar Event Invite email icons in Gmail by using PNGs instead of SVGs (server#26357)
• Update cipher defaults (server#26363)
• Fix wording for phone number integration (server#26366)
• Remove notifications when retesting profile field input (server#26371)
• Do not attempt to read 0 bytes when manually iterating over a non-seekable file (server#26376)
• Fix(translation): replace static error message (server#26377)
• Only mark migrations as installed after execution (server#26379)
• Gracefully handle deleteFromSelf when share is already gone (server#26382)
• Also check the default phone region when the number has no country code (server#26391)
• Allow apps to write/update account data (server#26398)
• Log and continue when failing to update encryption keys during for individual files (server#26400)
• Make ILDAPProviderFactory usable when there is no ldap setup (server#26402)
• Remove leftover debug @NoCSRFRequired introduced with #26198 (server#26404)
• Get the parent directory before creating a file from a template (server#26406)
• Bump y18n from 4.0.0 to 4.0.1 (server#26413)
• [3rdparty]phpseclib-2.0.31 (server#26447)
• Revert “add a prefix index to filecache.path” (server#26451)
• 21.0.1 final (server#26453)
• Show icon-phone when setting is set to private instead of local (server#26459)
• Bump phpseclib/phpseclib from 2.0.30 to 2.0.31 (3rdparty#643)
• Fix ‘Daily activity summary’ email subject translation (activity#562)
• Fix notifying own activities (activity#566)
• Send the footer with the defined language (activity#570)
• Make sure we only load the public script on public pages (files_pdfviewer#340)
• Extend reasons for email address (firstrunwizard#503)
• Only send desktop notifications in one tab (notifications#911)
• Fix Photos not shown in large browser windows #630 (photos#689)
• Add vue-virtual-grid to babel (photos#710)
• Match any non-whitespace character in filesystem type pattern (serverinfo#280)
• Fix Internal Server Error @ /settings/admin/serverinfo in 21.0.0 (serverinfo#287)
• Disable cypress recording for now (text#1504)
• Use write permission when possible (text#1512)
• Fix clicking links with color annotations (text#1516)
• Update CLI tests to PHP 7.4 to 8.0 (updater#346)
• Disable UI when web updater is disabled in config.php (updater#351)
• Remove obsolete pipeline php72-master (updater#355)
• Update used version of box (updater#359)
• Do not allow to keep maintenance mode active in web updater (updater#363)
• Fix fullscreen (viewer#842)

Version 21.0.0 February 22 2021

Download: nextcloud-21.0.0.tar.bz2 or nextcloud-21.0.0.zip
Check the file integrity with:
MD5: nextcloud-21.0.0.tar.bz2.md5 or nextcloud-21.0.0.zip.md5
SHA256: nextcloud-21.0.0.tar.bz2.sha256 or nextcloud-21.0.0.zip.sha256
SHA512: nextcloud-21.0.0.tar.bz2.sha512 or nextcloud-21.0.0.zip.sha512
PGP (Key): nextcloud-21.0.0.tar.bz2.asc or nextcloud-21.0.0.zip.asc

Changes

The biggest improvements we introduce with Nextcloud 21 are:

•  High Performance Back-end for Nextcloud Files: reduces server load from desktop clients and web interface polling by 90% while delivering instant notifications to users.
•  And a wide range of performance improvements all over on top, decreasing loading times of pages and reducing load on the server
•  Collaborative features: new Whiteboard, author colours in Text and Document Templates to increase team productivity
•  Nextcloud Talk: debuts message status indicators, a raise hand feature, a group conversation description and more!
•  A range of Groupware improvements like drag’n’drop and nicer threading in Mail and syncing social media avatars in Contacts.

Read the full announcement on our blog.

An exhaustive changelog would be unreasonably long, but one can always see our entire development history in github. For the core Server repository, see for example here the 762 pull requests merged for Milestone 21.

latest 20 release below.

Version 20.0.14 November 12 2021

Download: nextcloud-20.0.14.tar.bz2 or nextcloud-20.0.14.zip
Check the file integrity with:
MD5: nextcloud-20.0.14.tar.bz2.md5 or nextcloud-20.0.14.zip.md5
SHA256: nextcloud-20.0.14.tar.bz2.sha256 or nextcloud-20.0.14.zip.sha256
SHA512: nextcloud-20.0.14.tar.bz2.sha512 or nextcloud-20.0.14.zip.sha512
PGP (Key): nextcloud-20.0.14.tar.bz2.asc or nextcloud-20.0.14.zip.asc

Changes

• Add command to repair broken filesystem trees (server#26630)
• Ensure that user and group IDs in LDAP’s tables are also max 64chars (server#28971)
• Change output format of Psalm to Github (server#29048)
• File-upload: Correctly handle error responses for HTTP2 (server#29069)
• Allow “TwoFactor Nextcloud Notifications” to pull the state of the 2F… (server#29072)
• Add a few sensitive config keys (server#29085)
• Fix path of file_get_contents (server#29095)
• Update the certificate bundle (server#29098)
• Keep pw based auth tokens valid when pw-less login happens (server#29131)
• Properly handle folder deletion on external s3 storage (server#29158)
• Tokens without password should not trigger changed password invalidation (server#29166)
• Don’t further setup disabled users when logging in with apache (server#29167)
• Add ‘supported’-label to all supported apps (server#29181)
• 21] generate a better optimized query for path prefix search filters (server#29192)
• Keep group restrictions when reenabling apps after an update (server#29198)
• Add proper message to created share not found (server#29205)
• Add documentation for files_no_background_scan (server#29219)
• Don’t setup the filesystem to check for a favicon we don’t use anyway (server#29223)
• Fix background scan doc in config (server#29253)
• Get `filesize()` if `file_exists()` (server#29290)
• Fix unable to login errors due to file system not being initialized (server#29291)
• Update 3rdparty ref (server#29297)
• Bump icewind/streams from 0.7.3 to 0.7.5 in files_external (server#29298)
• Fix app upgrade (server#29303)
• Avoid PHP errors when the LDAP attribute is not found (server#29314)
• Fix security issues when copying groupfolder with advanced ACL (server#29366)
• Scheduling plugin not updating responding attendee status (server#29387)
• Make calendar schedule options translatable (server#29388)
• Add whitelist for apps inside of the server repo (server#29396)
• Handle files with `is_file` instead of `file_exists` (server#29417)
• Fixes an undefined index when getAccessList returns an empty array (server#29421)
• Extra fixes needed for icewind/streams update to 0.7.2 (server#29426)
• Backport #29260: Respect user enumeration settings in user status lists (server#29429)
• Implement local filtering in file list (server#29441)
• Detect mimetype by content only with content (server#29457)
• Update CRL (server#29505)
• Update update-psalm-baseline workflow (server#29548)
• Bump icewind/streams from 0.7.1 to 0.7.5 (3rdparty#855)
• Bump version (files_pdfviewer#512)
• Fix deleting notifications with numeric user ID (notifications#1090)
• Add integration tests for push registration (notifications#1097)
• Restore old device signature so the proxy works again (notifications#1105)
• Bump vue and vue-template-compiler (photos#864)
• Bump prosemirror-schema-list from 1.1.5 to 1.1.6 (text#1868)
• Additional checks for workspace controller (text#1887)

Version 20.0.13 October 1 2021

Download: nextcloud-20.0.13.tar.bz2 or nextcloud-20.0.13.zip
Check the file integrity with:
MD5: nextcloud-20.0.13.tar.bz2.md5 or nextcloud-20.0.13.zip.md5
SHA256: nextcloud-20.0.13.tar.bz2.sha256 or nextcloud-20.0.13.zip.sha256
SHA512: nextcloud-20.0.13.tar.bz2.sha512 or nextcloud-20.0.13.zip.sha512
PGP (Key): nextcloud-20.0.13.tar.bz2.asc or nextcloud-20.0.13.zip.asc

Changes

• Avoid fread on directories and unencrypted files (server#27407)
• Manual backport of “No limit in the number of group shares” #27875 (server#27991)
• Bump file-loader from 6.1.0 to 6.1.1 (server#28186)
• Fix autocompletion for usernames in comments (server#28248)
• Fix CI failures when building settings app (server#28305)
• Bump vue-loader from 15.9.7 to 15.9.8 (server#28339)
• Change the concurrent upload limit to less than 10 (server#28355)
• Fix Folder->getById() when a single storage is mounted multiple times (server#28362)
• Make “name” column nullable for workflows (server#28382)
• Dont show trusted proxy warning when the proxy and remote are both localhost (server#28387)
• Gracefully handle smb acls for users without a domain (server#28414)
• Improve auto expiration hint for trashbin and file versions (server#28448)
• UnifiedSearchController: strip webroot from URL before finding a route (server#28453)
• Only trap E_ERROR in session handling (server#28471)
• Emit an error log when the app token login name does not match (server#28491)
• Output exception in cron (server#28516)
• Properly log errors in Movie previews generation (server#28524)
• Set alias for result of cast column function (server#28538)
• Do not load versions tab view if the files app is not available (server#28547)
• Log exception message during failed ownership transfer share restore (server#28578)
• Fix setting up 2FA providers when 2FA is enforced and bc are generated (server#28598)
• Fix encrypted version to 0 when finding unencrypted file (server#28605)
• Only recommand for php-sodium on >= PHP 7.4 (server#28655)
• Fix position of search bar (server#28672)
• Check if SVG path is valid (server#28736)
• Remove 2FA exemption from PublicPage annotation (server#28742)
• Send attendence links to required and optinal attendees of an event without an RSVP (server#28750)
• Fix trashbin files view sticky action bar (server#28771)
• Dashboard – fix touch layout (server#28783)
• Scan the shared external storage source on access (server#28787)
• Fix null displayname crash as described in #21885 (server#28789)
• Bump vue-clipboard2 from 0.3.1 to 0.3.2 (server#28799)
• Bump 3rdparty reference (server#28808)
• Bump 3rdparty ref (server#28812)
• Add database ratelimiting backend (server#28818)
• Extend cache events (server#28820)
• Do not cache file ids in FileSystemTags inside group folders (server#28833)
• L10n: ignore packed js files from TX sync (server#28848)
• Fix files view change and undefined currentFileList (server#28880)
• Bump vue-clipboard2 from 0.3.2 to 0.3.3 (server#28886)
• Fall back to full file for video previews (server#28897)
• Update CRL due to revoked twofactor_email.crt (server#28902)
• Support seeking also from the end of file on S3 storage (server#28908)
• Use IRoomMetadata as source of truth for supported room types (server#28921)
• Bump 3rdparty ref (server#28930)
• Explicitly close source stream on object store upload even if count… (server#28946)
• Fix caching of objectsid searches (server#28951)
• Don’t allow to change activity settings that don’t work (server#28964)
• Fix redirect during initial setup (server#29000)
• Remove unneeded dependencies (3rdparty#785)
• Bump Webauthn Lib to 3.3.9 (3rdparty#788)
• Manually add removed dependencies (3rdparty#789)
• Bump Archive_Tar to last release (3rdparty#796)
• Composer install (3rdparty#810)
• Add Spomsky (3rdparty#824)
• Fix activity design (activity#635)
• Increase activity email speed in instances with more than 500 users (activity#643)
• Fix hide download and printing (files_pdfviewer#461)
• Fix body footer hiding (files_pdfviewer#465)
• Disable download for pdf files (files_pdfviewer#471)
• Fix download & print view (files_pdfviewer#475)
• Bump vue-template-compiler from 2.6.12 to 2.6.14 (files_pdfviewer#480)
• Bump stylelint-webpack-plugin from 2.1.0 to 2.1.1 (files_pdfviewer#483)
• Bump stylelint from 13.7.1 to 13.7.2 (files_pdfviewer#485)
• Bump eslint-plugin-import from 2.22.0 to 2.22.1 (files_pdfviewer#489)
• Bump file-loader from 6.1.0 to 6.1.1 (files_pdfviewer#490)
• Update node.yml (files_pdfviewer#498)
• Bump eslint-plugin-standard from 4.0.1 to 4.0.2 (files_pdfviewer#499)
• Bump url-loader from 4.1.0 to 4.1.1 (files_pdfviewer#501)
• Bump webpack from 4.44.1 to 4.44.2 (files_pdfviewer#502)
• Fix share option being displayed erroneously (files_rightclick#121)
• Give twofactor nextcloud notifications a high priority (notifications#1064)
• High priority for the PhoneTrack app (notifications#1072)
• Update dependabot (photos#875)
• Bump vue from 2.6.12 to 2.6.14 (text#1648)
• Bump vue-loader from 15.9.7 to 15.9.8 (text#1812)
• Bump prosemirror-markdown from 1.5.1 to 1.5.2 (text#1845)
• Build(deps): bump regenerator-runtime from 0.13.7 to 0.13.9 (viewer#1005)
• Build(deps-dev): bump stylelint-webpack-plugin from 2.1.0 to 2.1.1 (viewer#1006)
• Build(deps-dev): bump url-loader from 4.1.0 to 4.1.1 (viewer#1007)
• Build(deps-dev): bump vue-loader from 15.9.3 to 15.9.8 (viewer#1008)
• Build(deps-dev): bump eslint-plugin-import from 2.22.0 to 2.22.1 (viewer#1010)
• Build(deps-dev): bump wait-on from 5.2.0 to 5.2.2 (viewer#1016)
• Build(deps): bump path-parse from 1.0.6 to 1.0.7 (viewer#1017)
• Build(deps-dev): bump webpack from 4.44.1 to 4.44.2 (viewer#1018)
• Build(deps-dev): bump file-loader from 6.1.0 to 6.1.1 (viewer#1020)
• Build(deps-dev): bump eslint-plugin-standard from 4.0.1 to 4.0.2 (viewer#1028)
• Build(deps): bump @nextcloud/vue from 2.6.5 to 2.6.9 (viewer#1029)
• Build(deps): bump debounce from 1.2.0 to 1.2.1 (viewer#1036)

Version 20.0.12 August 6 2021

Download: nextcloud-20.0.12.tar.bz2 or nextcloud-20.0.12.zip
Check the file integrity with:
MD5: nextcloud-20.0.12.tar.bz2.md5 or nextcloud-20.0.12.zip.md5
SHA256: nextcloud-20.0.12.tar.bz2.sha256 or nextcloud-20.0.12.zip.sha256
SHA512: nextcloud-20.0.12.tar.bz2.sha512 or nextcloud-20.0.12.zip.sha512
PGP (Key): nextcloud-20.0.12.tar.bz2.asc or nextcloud-20.0.12.zip.asc

Changes

• Bump vue-router from 3.4.3 to 3.4.9 (server#27224)
• Bump v-click-outside from 3.1.1 to 3.1.2 (server#27232)
• Bump url-search-params-polyfill from 8.1.0 to 8.1.1 (server#27236)
• Bump debounce from 1.2.0 to 1.2.1 (server#27646)
• Bump vue and vue-template-compiler (server#27701)
• Design fixes to app-settings button (server#27745)
• Reset checksum when writing files to object store (server#27754)
• Run s3 tests again (server#27804)
• Fix in locking cache check (server#27829)
• Bump dompurify from 2.2.8 to 2.2.9 (server#27836)
• Make search popup usable on mobile, too (server#27858)
• Cache images on browser (server#27863)
• Fix dark theme on public link shares (server#27895)
• Make user status usable on mobile (server#27897)
• Do not escape display name in dashboard welcome text (server#27913)
• Bump moment-timezone from 0.5.31 to 0.5.33 (server#27924)
• Fix newfileMenu on public page (server#27941)
• Fix svg icons disapearing in app navigation when text overflows (server#27955)
• Bump bootstrap from 4.5.2 to 4.5.3 (server#27965)
• Show registered breadcrumb detail views in breadcrumb menu (server#27970)
• Fix regression in file sidebar (server#27976)
• Bump exports-loader from 1.1.0 to 1.1.1 (server#27984)
• Bump @nextcloud/capabilities from 1.0.2 to 1.0.4 (server#27985)
• Bump @nextcloud/vue-dashboard from 1.0.0 to 1.0.1 (server#27988)
• Improve notcreatable permissions hint (server#28006)
• Update CRL due to revoked twofactor_nextcloud_notification.crt (server#28018)
• Bump sass-loader from 10.0.2 to 10.0.5 (server#28032)
• Increase footer height for longer menus (server#28045)
• Mask password for Redis and RedisCluster on connection failure (server#28054)
• Fix missing theming for login button (server#28065)
• Fix overlapping of elements in certain views (server#28072)
• Disable HEIC image preview provider for performance concerns (server#28081)
• Improve provider check (server#28087)
• Sanitize more functions from the encryption app (server#28091)
• Hide download button for public preview of audio files (server#28096)
• L10n: HTTP in capital letters (server#28107)
• Fix dark theme in file exists dialog (server#28111)
• Let memory limit set in tests fit the used amount (server#28125)
• User management – Add icon to user groups (server#28172)
• Bump marked from 1.1.1 to 1.1.2 (server#28187)
• Fix variable override in file view (server#28191)
• Bump regenerator-runtime from 0.13.7 to 0.13.9 (server#28207)
• Bump url-loader from 4.1.0 to 4.1.1 (server#28208)
• Fix Files breadcrumbs being hidden even if there is enough space (server#28224)
• Dont apply jail search filter is on the root (server#28241)
• Check that php was compiled with argon2 support or that the php-sodium extensions is installed (server#28289)
• Fix preference name when generating notifications (activity#603)
• Fix monochrome icon detection for correct dark mode invert (activity#607)
• Fix “Enable notification emails” (activity#613)
• Show add, del and restored files within by and self filter (activity#616)
• Link from app-navigation-settings to personal settings (activity#625)
• Fix pdfviewer design (files_pdfviewer#446)
• Include version number in firstrunwizard (firstrunwizard#570)
• Use notification main link if no parameter has a link (notifications#1040)
• Bump sass-loader from 10.1.0 to 10.1.1 (text#1360)
• Bump @babel/plugin-transform-runtime from 7.13.9 to 7.13.15 (text#1548)
• Bump @babel/preset-env from 7.13.9 to 7.13.15 (text#1550)
• Bump vue-loader from 15.9.6 to 15.9.7 (text#1592)
• Unify error responses and add logging where appropriate (text#1719)
• Disable header timeout on mobile (viewer#978)

Version 20.0.11 July 2 2021

Download: nextcloud-20.0.11.tar.bz2 or nextcloud-20.0.11.zip
Check the file integrity with:
MD5: nextcloud-20.0.11.tar.bz2.md5 or nextcloud-20.0.11.zip.md5
SHA256: nextcloud-20.0.11.tar.bz2.sha256 or nextcloud-20.0.11.zip.sha256
SHA512: nextcloud-20.0.11.tar.bz2.sha512 or nextcloud-20.0.11.zip.sha512
PGP (Key): nextcloud-20.0.11.tar.bz2.asc or nextcloud-20.0.11.zip.asc

Changes

• Bump handlebars from 4.7.6 to 4.7.7 (server#26900)
• Bump lodash from 4.17.20 to 4.17.21 (server#26909)
• Bump hosted-git-info from 2.8.8 to 2.8.9 (server#26920)
• Don’t break OCC if an app is breaking in it’s Application class (server#26954)
• Add bruteforce protection to the shareinfo endpoint (server#26956)
• Ignore readonly flag for directories (server#26965)
• Throttle MountPublicLinkController when share is not found (server#26971)
• Respect default share permissions for federated reshares (server#27001)
• Harden apptoken check (server#27014)
• Use parent wrapper to properly handle moves on the same source/target storage (server#27016)
• Fix error when using CORS with no auth credentials (server#27027)
• Fix return value of getStorageInfo when ‘quota_include_external_storage’ is enabled (server#27108)
• Bump patch dependencies (server#27183)
• Use noreply@ as email address for share emails (server#27209)
• Bump p-queue from 6.6.1 to 6.6.2 (server#27226)
• Bump browserslist from 4.14.0 to 4.16.6 (server#27247)
• Bump webpack from 4.44.1 to 4.44.2 (server#27297)
• Properly use limit and offset for search in Jail wrapper (server#27308)
• Make user:report command scale (server#27319)
• Properly log expiration date removal in audit log (server#27325)
• Propagate throttling on OCS response (server#27337)
• Set umask before operations that create local files (server#27349)
• Escape filename in Content-Disposition (server#27360)
• Don’t update statuses to offline again and again (server#27412)
• Header must contain a colon (server#27456)
• Activate constraint check for oracle / pqsql also for 20 (server#27523)
• Only allow removing existing shares that would not be allowed due to reshare restrictions (server#27552)
• Bump ws from 7.3.1 to 7.5.0 (server#27570)
• Properly cleanup entries of WebAuthn on user deletion (server#27596)
• Throttle on public DAV endpoint (server#27617)
• Bump vue-loader from 15.9.3 to 15.9.7 (server#27639)
• Bump eslint-plugin-standard from 4.0.1 to 4.0.2 (server#27651)
• Validate the theming color also on CLI (server#27680)
• Downstream encryption:fix-encrypted-version for repairing “bad signature” errors (server#27728)
• Remove encodeURI code (files_pdfviewer#396)
• Only ask for permissions on HTTPS (notifications#998)
• Fix sorting if one of the file name is only composed with number (photos#785)
• Backport 20 fix Photos not shown in large browser windows #630 (#686) (photos#810)
• Update File.vue (photos#813)
• Update chart.js (serverinfo#309)
• Only return workspace property for top node in a propfind request (text#1611)
• ViewerComponent: pass on autofocus to EditorWrapper (text#1647)
• Use text/plain as content type for fetching the document (text#1692)
• Log exceptions that happen on unknown exception and return generic messages (text#1698)
• Add fixup (viewer#924)
• Fix: fullscreen for Firefox (viewer#929)

Version 20.0.10 May 20 2021

Download: nextcloud-20.0.10.tar.bz2 or nextcloud-20.0.10.zip
Check the file integrity with:
MD5: nextcloud-20.0.10.tar.bz2.md5 or nextcloud-20.0.10.zip.md5
SHA256: nextcloud-20.0.10.tar.bz2.sha256 or nextcloud-20.0.10.zip.sha256
SHA512: nextcloud-20.0.10.tar.bz2.sha512 or nextcloud-20.0.10.zip.sha512
PGP (Key): nextcloud-20.0.10.tar.bz2.asc or nextcloud-20.0.10.zip.asc

Changes

• Fix account data visibility after disabling public addressbook upload (server#25973)
• L10n: Add word user in FederatedShareProvider.php (server#26509)
• Increase subnet matcher (server#26515)
• Limit size of properties to 2048 characters (server#26542)
• Bump ssri from 6.0.1 to 6.0.2 (server#26602)
• Update root.crl due to revoked news.crt (server#26620)
• Do not allow adding file drop shares to your own cloud (server#26622)
• Require read permissions for federated shares (server#26637)
• Fix empty password check for mail shares (server#26640)
• Ensure redis returns bool for hasKey (server#26642)
• Make lookup search explicit (server#26643)
• Update psalm baseline (server#26656)
• Do not stop directory listing when ACL is blocking access (server#26678)
• Mention MariaDB in MySQL support warning (server#26684)
• Explicitly check hex2bin input (server#26693)
• Update icewind/smb to 3.4.1 (server#26705)
• Private cannot be final (server#26753)
• Respect the error level when logging (server#26767)
• Improve federated permission handling (server#26771)
• No longer add trusted servers on federated share creation (server#26779)
• Fix ratelimit template (server#26788)
• LDAP: do not bother to search after the last page (server#26798)
• Fail when creating new files with an empty path (server#26809)
• Do not try to contact lookup server if not needed (server#26824)
• Only perform login check during ownership transfer for encryption (server#26862)
• L10n: Spelling unification (server#26882)
• Remove self setting checking which can not be set anymore (activity#573)
• Use PNG images in daily activity summary emails (activity#585)
• Move counting storage statistics to the background (serverinfo#299)
• Bump @vue/test-utils from 1.1.3 to 1.1.4 (text#1561)
• Limit scope of the icon white overwrite (viewer#859)
• Fixes for naughty filenames (viewer#872)

Version 20.0.9 April 9 2021

Download: nextcloud-20.0.9.tar.bz2 or nextcloud-20.0.9.zip
Check the file integrity with:
MD5: nextcloud-20.0.9.tar.bz2.md5 or nextcloud-20.0.9.zip.md5
SHA256: nextcloud-20.0.9.tar.bz2.sha256 or nextcloud-20.0.9.zip.sha256
SHA512: nextcloud-20.0.9.tar.bz2.sha512 or nextcloud-20.0.9.zip.sha512
PGP (Key): nextcloud-20.0.9.tar.bz2.asc or nextcloud-20.0.9.zip.asc

Changes

• Avoid creating two share links when password is enforced (server#25740)
• Fix detecting cyclic group memberships (server#25844)
• Bump the ca location (server#25848)
• Card::getOwner should return the actual value (server#25858)
• Fix namespacing (server#25873)
• Update psalm baseline (server#25876)
• Disable trasbin during the moveFromStorage fallback (server#25878)
• Do not die after LDAP auth failed with expired acc (server#25900)
• Clear multiselect after selection in share panel (server#25919)
• Activity: show if files are hidden or not (server#25934)
• Sharebymail: set expiration on creation (server#25938)
• Catch notfound and forbidden exception in smb::getmetadata (server#25944)
• Skip empty obsolete owner when adding to own NC (server#25956)
• Fix admin password strengthify tooltip (server#25963)
• Add missing waits and asserts in acceptance tests (server#25994)
• Bump elliptic from 6.5.3 to 6.5.4 (server#26009)
• Hide expiration date field for remote shares (server#26027)
• Remove trash items from other trash backends when deleting all (server#26040)
• Cache baseurl in url generator (server#26052)
• Only clear share password model when actually saved (server#26059)
• Add appconfig to always show the unique label of a sharee (server#26063)
• Limit constructing of result objects in file search (server#26088)
• Apply object store copy optimization when ‘cross storage’ copy is wit… (server#26091)
• Allow overwriting isAuthenticated (server#26123)
• Send share notification instead of erroring on duplicate share (server#26125)
• Log exceptions when creating share (server#26130)
• Do cachejail search filtering in sql (server#26134)
• Return the fileid from `copyFromCache` and use it instead of doing an extra query (server#26147)
• Dont allow creating users with __groupfolders as uid (server#26152)
• Use correct exception type hint in catch statement (server#26163)
• Remove explicit fclose from S3->writeStream (server#26168)
• Adds ldap user:reset command (server#26176)
• Add getID function to the simplefile implementation (server#26181)
• Fix valid storages removed when cleaning remote storages (server#26190)
• Update user share must use correct expiration validation (server#26205)
• Expand ‘path is already shared’ error message (server#26209)
• Add (hidden) option to always show smb root as writable (server#26217)
• L10n: Add words user and because in ShareByMailProvider.php (server#26239)
• Fix non LGC glyphs in avatars and txt file previews (server#26250)
• Handle limit offset and sorting in files search (server#26258)
• Update icewind/smb to 3.4.0 (server#26262)
• Catch invalid cache source storage path (server#26272)
• Fix casing of core test folder, bring back missing tests (server#26275)
• L10n: Separate ellipsis (server#26278)
• Show better error messages when a file with a forbidden path is encountered (server#26290)
• Fix l10n (server#26297)
• Log when a storage is marked as unavailable (server#26302)
• Delete old birthday calendar object when moving contact to another ad… (server#26305)
• Fix broken Calendar Event Invite email icons in Gmail by using PNGs instead of SVGs (server#26356)
• Bump y18n from 4.0.0 to 4.0.1 (server#26360)
• Update cipher defaults (server#26364)
• Fix(translation): replace static error message (server#26378)
• Gracefully handle deleteFromSelf when share is already gone (server#26381)
• Log and continue when failing to update encryption keys during for individual files (server#26399)
• Remove leftover debug @NoCSRFRequired introduced with #26198 (server#26405)
• [3rdparty]phpseclib-2.0.31 (server#26449)
• 20.0.9 final (server#26454)
• Bump phpseclib/phpseclib from 2.0.25 to 2.0.31 (3rdparty#644)
• Fix ‘Daily activity summary’ email subject translation (activity#563)
• Fix notifying own activities (activity#567)
• Send the footer with the defined language (activity#571)
• Make sure we only load the public script on public pages (files_pdfviewer#339)
• Extend reasons for email address (firstrunwizard#504)
• Only send desktop notifications in one tab (notifications#912)
• Add vue-virtual-grid to babel (photos#711)
• Match any non-whitespace character in filesystem type pattern (serverinfo#281)
• Make sure the session list is always at the end (text#1410)
• Pin versions (text#1506)
• Use write permission when possible (text#1513)
• Update CLI tests to PHP 7.4 to 8.0 (updater#345)
• Disable UI when web updater is disabled in config.php (updater#352)
• Remove obsolete pipeline php72-master (updater#354)
• Update used version of box (updater#360)
• Do not allow to keep maintenance mode active in web updater (updater#364)
• Fix fullscreen (viewer#843)

Version 20.0.8 February 26 2021

Download: nextcloud-20.0.8.tar.bz2 or nextcloud-20.0.8.zip
Check the file integrity with:
MD5: nextcloud-20.0.8.tar.bz2.md5 or nextcloud-20.0.8.zip.md5
SHA256: nextcloud-20.0.8.tar.bz2.sha256 or nextcloud-20.0.8.zip.sha256
SHA512: nextcloud-20.0.8.tar.bz2.sha512 or nextcloud-20.0.8.zip.sha512
PGP (Key): nextcloud-20.0.8.tar.bz2.asc or nextcloud-20.0.8.zip.asc

Changes

• Dont offer to edit external config settings if we can’t edit them (server#25132)
• LDAP: make actually use of batch read known groups (server#25379)
• Do not lower case search provider names on web ui (server#25382)
• Do not remove valid group shares (server#25384)
• Use RFC-compliant URL encoding for cookies (server#25388)
• Keep direct login active when redirecting (server#25430)
• Add repair job for unencoded group share uris (server#25448)
• Override default dashboard background with theming one (server#25458)
• Make user list pagination more tolerant (server#25475)
• Fix duplicate tag info view registration (server#25477)
• Remove stray compiled assets (server#25480)
• Fix CI branch for notifications app (server#25492)
• Log deprecation notice of GenericEventWrapper just once (server#25497)
• Cleanup bundle files before checking the rebuild (server#25504)
• Change reconect wrapper to only check connection after inactivity (server#25550)
• Do not send imip email to invalid recipients (server#25592)
• Use ownerDisplayName for SharingEntry Tooltip (server#25651)
• Fix app icon list in dark mode (server#25663)
• Updated CRL (server#25666)
• Initialize \OCP\AppFramework\Http\ZipResponse::$resources (server#25703)
• Send emails on password reset to the displayname (server#25709)
• 20.0.8 final (server#25719)
• Fix opening pdf files in public folder shares (files_pdfviewer#321)

Version 20.0.7 February 3 2021

Download: nextcloud-20.0.7.tar.bz2 or nextcloud-20.0.7.zip
Check the file integrity with:
MD5: nextcloud-20.0.7.tar.bz2.md5 or nextcloud-20.0.7.zip.md5
SHA256: nextcloud-20.0.7.tar.bz2.sha256 or nextcloud-20.0.7.zip.sha256
SHA512: nextcloud-20.0.7.tar.bz2.sha512 or nextcloud-20.0.7.zip.sha512
PGP (Key): nextcloud-20.0.7.tar.bz2.asc or nextcloud-20.0.7.zip.asc

Changes

• Catch NotFoundException when querying quota (server#25315)
• CalDAV] Validate notified emails (server#25324)
• Fix/app fetcher php compat comparison (server#25347)
• Show the actual error on share requests (server#25352)
• Fix parameter provided as string not array (server#25366)
• The objectid is a string (server#25374)
• 20.0.7 final (server#25387)
• Properly handle SMB ACL blocking scanning a directory (server#25421)
• Don’t break completely when creating the digest fail for one user (activity#556)
• Only attempt to use a secure view if hide download is actually set (files_pdfviewer#296)
• Fix opening PDF files with special characters in their name (files_pdfviewer#298)
• Fix PDF viewer failing on Edge (not based on Chromium) (files_pdfviewer#299)
• Cannot unfold plain text notifications (notifications#846)
• Remove EPUB mimetype (text#1391)

Version 20.0.6 January 27 2021

Download: nextcloud-20.0.6.tar.bz2 or nextcloud-20.0.6.zip
Check the file integrity with:
MD5: nextcloud-20.0.6.tar.bz2.md5 or nextcloud-20.0.6.zip.md5
SHA256: nextcloud-20.0.6.tar.bz2.sha256 or nextcloud-20.0.6.zip.sha256
SHA512: nextcloud-20.0.6.tar.bz2.sha512 or nextcloud-20.0.6.zip.sha512
PGP (Key): nextcloud-20.0.6.tar.bz2.asc or nextcloud-20.0.6.zip.asc

Changes

• Make sure to do priority app upgrades first (server#25077)
• Respect DB restrictions on number of arguments in statements and queries (server#25120)
• Add a hint about the direction of priority (server#25143)
• Do not redirect to logout after login (server#25146)
• Fix comparison of PHP versions (server#25152)
• Add “composer.lock” for acceptance tests to git (server#25178)
• Update CRL due to revoked gravatar.crl (server#25190)
• Don’t log keys on checkSignature (server#25193)
• Update 3rdparty after Archive_Tar (server#25199)
• Bump CA bundle (server#25219)
• Update handling of user credentials (server#25225)
• Fix encoding issue with OC.Notification.show (server#25244)
• Also use storage copy when dav copying directories (server#25261)
• Silence log message (server#25263)
• Extend ILDAPProvider to allow reading arbitrairy ldap attributes for users (server#25276)
• Do not obtain userFolder of a federated user (server#25278)
• Bump pear/archive_tar from 1.4.11 to 1.4.12 (3rdparty#603)
• Add gitignore entry for .github folder of dependencies (3rdparty#604)
• Clear event array on getting them (activity#551)

Version 20.0.5 January 15 2021

Download: nextcloud-20.0.5.tar.bz2 or nextcloud-20.0.5.zip
Check the file integrity with:
MD5: nextcloud-20.0.5.tar.bz2.md5 or nextcloud-20.0.5.zip.md5
SHA256: nextcloud-20.0.5.tar.bz2.sha256 or nextcloud-20.0.5.zip.sha256
SHA512: nextcloud-20.0.5.tar.bz2.sha512 or nextcloud-20.0.5.zip.sha512
PGP (Key): nextcloud-20.0.5.tar.bz2.asc or nextcloud-20.0.5.zip.asc

Changes

• Don’t log params of imagecreatefromstring (server#24546)
• Use storage copy implementation when doing dav copy (server#24590)
• Use in objectstore copy (server#24592)
• Add tel, note, org and title search (server#24697)
• Check php compatibility of app store app releases (server#24698)
• Fix #24682]: ensure federation cloud id is retruned if FN property not found (server#24709)
• Do not include non-required scripts on the upgrade page (server#24714)
• LDAP: fix inGroup for memberUid type of group memberships (server#24716)
• Cancel user search requests to avoid duplicate results being added (server#24728)
• Also unset the other possible unused paramters (server#24751)
• Enables the file name check also to match name of mountpoints (server#24760)
• Fixes sharing to group ids with characters that are being url encoded (server#24763)
• Limit getIncomplete query to one row (server#24791)
• Fix Argon2 descriptions (server#24792)
• Actually set the TTL on redis set (server#24798)
• Allow to force rename a conflicting calendar (server#24806)
• Fix IPv6 localhost regex (server#24823)
• Catch the error on heartbeat update (server#24826)
• Make oc_files_trash.auto_id a bigint (server#24853)
• Fix total upload size overwritten by next upload (server#24854)
• Avoid huge exception argument logging (server#24876)
• Make share results distinguishable if there are more than one with the exact same display name (server#24878)
• Add migration for oc_share_external columns (server#24963)
• Don’t throw a 500 when importing a broken ics reminder file (server#24972)
• Fix unreliable ViewTest (server#24976)
• Update root.crl due to revocation of transmission.crt (server#24990)
• Set the JSCombiner cache if needed (server#24997)
• Fix column name to check prior to deleting (server#25009)
• Catch throwable instead of exception (server#25013)
• Set the user language when adding the footer (server#25019)
• Change defaultapp in config.sample.php to dashboard to improve docs and align it to source code (server#25030)
• Fix clearing the label of a share (server#25035)
• Update psalm-baseline.xml (server#25066)
• Don’t remove assignable column for now (server#25074)
• Add setup check to verify that the used DB version is still supported… (server#25076)
• Correctly set the user for activity parsing when preparing a notifica… (activity#542)
• Bump vue-virtual-grid from 2.2.1 to 2.3.0 (photos#597)
• Catch possible database exceptions when fetching document data (text#1221)
• Make sure we have the proper PHP version installed before running composer (text#1234)
• Revert removal of transformResponse (text#1235)
• Bump prosemirror-view from 1.16.1 to 1.16.5 (text#1255)
• Bump @babel/preset-env from 7.12.1 to 7.12.11 (text#1257)
• Bump babel-loader from 8.1.0 to 8.2.2 (text#1259)
• Bump eslint-plugin-standard from 4.0.2 to 4.1.0 (text#1261)
• Bump vue-loader from 15.9.5 to 15.9.6 (text#1263)
• Bump prosemirror-model from 1.12.0 to 1.13.1 (text#1265)
• Bump core-js from 3.7.0 to 3.8.1 (text#1266)
• Bump stylelint from 13.7.2 to 13.8.0 (text#1269)
• Bump @babel/plugin-transform-runtime from 7.12.1 to 7.12.10 (text#1271)
• Bump sass-loader from 10.0.5 to 10.1.0 (text#1273)
• Bump webpack-merge from 5.3.0 to 5.7.2 (text#1274)
• Bump @babel/core from 7.12.3 to 7.12.10 (text#1277)
• Bump cypress from 5.1.0 to 5.6.0 (text#1278)
• Bump @vue/test-utils from 1.1.1 to 1.1.2 (text#1279)
• Bump webpack-merge from 5.7.2 to 5.7.3 (text#1303)

Version 20.0.4 December 17 2020

Download: nextcloud-20.0.4.tar.bz2 or nextcloud-20.0.4.zip
Check the file integrity with:
MD5: nextcloud-20.0.4.tar.bz2.md5 or nextcloud-20.0.4.zip.md5
SHA256: nextcloud-20.0.4.tar.bz2.sha256 or nextcloud-20.0.4.zip.sha256
SHA512: nextcloud-20.0.4.tar.bz2.sha512 or nextcloud-20.0.4.zip.sha512
PGP (Key): nextcloud-20.0.4.tar.bz2.asc or nextcloud-20.0.4.zip.asc

Changes

• Avoid dashboard crash when accessibility app is not installed (server#24636)
• Bump ini from 1.3.5 to 1.3.7 (server#24649)
• Handle owncloud migration to latest release (server#24653)
• Use string for storing a OCM remote id (server#24654)
• Fix MySQL database size calculation (serverinfo#262)
• Bump cypress-io/github-action@v2 (viewer#722)
• Fix] sidebar opening animation (viewer#723)
• Fix not.exist cypress and TESTING checks (viewer#725)

Note: the main improvement in this very small release is the migration support.

Version 20.0.3 December 10 2020

Download: nextcloud-20.0.3.tar.bz2 or nextcloud-20.0.3.zip
Check the file integrity with:
MD5: nextcloud-20.0.3.tar.bz2.md5 or nextcloud-20.0.3.zip.md5
SHA256: nextcloud-20.0.3.tar.bz2.sha256 or nextcloud-20.0.3.zip.sha256
SHA512: nextcloud-20.0.3.tar.bz2.sha512 or nextcloud-20.0.3.zip.sha512
PGP (Key): nextcloud-20.0.3.tar.bz2.asc or nextcloud-20.0.3.zip.asc

Changes

• Check quota of subdirectories when uploading to them (server#24181)
• CircleId too short in some request (server#24196)
• Missing level in ScopedPsrLogger (server#24212)
• Fix nextcloud logo in email notifications misalignment (server#24228)
• Allow selecting multiple columns with SELECT DISTINCT (server#24230)
• Use file name instead of path in ‘not allowed to share’ message (server#24231)
• Fix setting images through occ for theming (server#24232)
• Use regex when searching on single file shares (server#24239)
• Harden EncryptionLegacyCipher a bit (server#24249)
• Update ScanLegacyFormat.php (server#24258)
• Simple typo in comments (server#24259)
• Use correct year for generated birthdays events (server#24263)
• Delete files that exceed trashbin size immediately (server#24297)
• Update sabre/xml to fix XML parsing errors (server#24311)
• Only check path for being accessible when the storage is a object home (server#24325)
• Avoid empty null default with value that will be inserted anyways (server#24333)
• Fix contacts menu position and show uid as a tooltip (server#24342)
• Fix the config key on the sharing expire checkbox (server#24346)
• Set the display name of federated sharees from addressbook (server#24353)
• Catch storage not available in versions expire command (server#24367)
• Use proper bundles for files client and fileinfo (server#24377)
• Properly encode path when fetching inherited shares (server#24387)
• Formatting remote sharer should take protocol, path into account (server#24391)
• Make sure we add new line between vcf groups exports (server#24443)
• Fix public calendars shared to circles (server#24446)
• Store scss variables under a different prefix for each theming config version (server#24453)
• External storages: save group ids not display names in configuration (server#24455)
• Use correct l10n source in files_sharing JS code (server#24462)
• Set frame-ancestors to none if none are filled (server#24477)
• Move the password fiels of chaging passwords to post (server#24478)
• Move the global password for files external to post (server#24479)
• Only attempt to move to trash if a file is not in appdata (server#24483)
• Fix loading mtime of new file in conflict dialog in firefox (server#24491)
• Harden setup check for TLS version if host is not reachable (server#24502)
• Fix file size computation on 32bit platforms (server#24509)
• Allow subscription to indicate that a userlimit is reached (server#24511)
• Set mountid for personal external storage mounts (server#24513)
• Only execute plain mimetype check for directories and do the fallback… (server#24517)
• Fix vsprint parameter (server#24527)
• Replace abandoned log normalizer with our fork (server#24530)
• Add icon to user limit notification (server#24531)
• Also run repair steps when encryption is disabled but a legacy key is present (server#24532)
• [3rdparty][security] Archive TAR to 1.4.11 (server#24534)
• Generate a new session id if the decrypting the session data fails (server#24553)
• Revert “Do not read certificate bundle from data dir by default” (server#24556)
• Dont use system composer for autoload checker (server#24557)
• Remember me is not an app_password (server#24563)
• Do not load nonexisting setup.js (server#24582)
• Update sabre/xml to fix XML parsing errors (3rdparty#529)
• Use composer v1 on CI (3rdparty#532)
• Bump pear/archive_tar from 1.4.9 to 1.4.11 (3rdparty#536)
• Replace abandoned log normalizer with our fork (3rdparty#543)
• Allow nullable values as subject params (activity#535)
• Don’t log when unknown array is null (notifications#803)
• Feat/virtual grid (photos#550)
• Make sure we have a string to localecompare to (photos#583)
• Always get recommendations for dashboard if enabled (recommendations#336)
• Properly fetch oracle database information (serverinfo#258)
• Also register to urlChanged event to update RichWorkspace (text#1181)
• Move away from GET (text#1214)

Version 20.0.2 November 20 2020

Download: nextcloud-20.0.2.tar.bz2 or nextcloud-20.0.2.zip
Check the file integrity with:
MD5: nextcloud-20.0.2.tar.bz2.md5 or nextcloud-20.0.2.zip.md5
SHA256: nextcloud-20.0.2.tar.bz2.sha256 or nextcloud-20.0.2.zip.sha256
SHA512: nextcloud-20.0.2.tar.bz2.sha512 or nextcloud-20.0.2.zip.sha512
PGP (Key): nextcloud-20.0.2.tar.bz2.asc or nextcloud-20.0.2.zip.asc

Changes

• Inidicate preview availability in share api responses (server#23419)
• CalDavBackend: check if timerange is array before accessing (server#23563)
• Some emojis are in CHAR_CATEGORY_GENERAL_OTHER_TYPES (server#23575)
• Also expire share type email (server#23583)
• Only use index of mount point when it is there (server#23611)
• Only retry fetching app store data once every 5 minutes in case it fails (server#23633)
• Bring back the restore share button (server#23636)
• Fix updates of NULL appconfig values (server#23641)
• Fix sharing input placeholder for emails (server#23646)
• Use bigint for fileid in filecache_extended (server#23690)
• Enable theming background transparency (server#23699)
• Fix sharer flag on ldap:show-remnants when user owned more than a single share (server#23702)
• Make sure the function signatures of the backgroundjob match (server#23710)
• Check if array elements exist before using them (server#23713)
• Fix default quota display value in user row (server#23726)
• Use lib instead if core as l10n module in OC_Files (server#23727)
• Specify accept argument to avatar upload input field (server#23732)
• Save email as lower case (server#23733)
• Reset avatar cropper before showing (server#23736)
• Also run the SabreAuthInitEvent for the main server (server#23745)
• Type the \OCP\IUserManager::callForAllUsers closure with Psalm (server#23749)
• Type the \OCP\AppFramework\Services\IInitialState::provideLazyInitial… (server#23751)
• Don’t overwrite the event if we use it later (server#23753)
• Inform the user when flow config data exceeds thresholds (server#23759)
• Type the \OCP\IUserManager::callForSeenUsers closure with Psalm (server#23763)
• Catch errors when closing file conflict dialog (server#23774)
• Document the backend registered events of LDAP (server#23779)
• Fetch the logger and system config once for all query builder instances (server#23787)
• Type the event dispatcher listener callables with Psalm (server#23789)
• Only run phpunit when “php” changed (server#23794)
• Remove bold font-weight and lower font-size for empty search box (server#23829)
• No need to check if there is an avatar available, because it is gener… (server#23846)
• Ensure filepicker list is empty before populating (server#23850)
• UserStatus: clear status message if message is null (server#23858)
• Fix grid view toggle in tags view (server#23874)
• Restrict query when searching for versions of trashbin files (server#23884)
• Fix potentially passing null to events where IUser is expected (server#23894)
• Make user status styles scoped (server#23899)
• Move help to separate stylesheet (server#23900)
• Add default font size (server#23902)
• Do not emit UserCreatedEvent twice (server#23917)
• Bearer must be in the start of the auth header (server#23924)
• Fix casting of integer and boolean on Oracle (server#23935)
• Skip already loaded apps in loadApps (server#23948)
• Fix repair mimetype step to not leave stray cursors (server#23950)
• Improve query type detection (server#23951)
• Fix iLike() falsely turning escaped % and _ into wildcards (server#23954)
• Replace some usages of OC_DB in OC\Share\* with query builder (server#23955)
• Use query builder instead of OC_DB in trashbin (server#23971)
• Fix greatest/least order for oracle (server#23975)
• Fix link share label placeholder not showing (server#23992)
• Unlock when promoting to exclusive lock fails (server#23995)
• Make sure root storage is valid before checking its size (server#23996)
• Use query builder instead of OC_DB in OC\Files\* (server#23998)
• Shortcut to avoid file system setup when generating the logo URL (server#24001)
• Remove old legacy scripts references (server#24004)
• Fix js search in undefined ocs response (server#24012)
• Don’t leave cursors open (server#24033)
• Fix sharing tab state not matching resharing admin settings (server#24044)
• Run unit tests against oracle (server#24049)
• Use png icons in caldav reminder emails (server#24050)
• Manually iterate over calendardata when oracle is used (server#24058)
• Make is_user_defined nullable so we can store false on oracle (server#24079)
• Fix default internal expiration date enforce (server#24081)
• Register new command db:add-missing-primary-keys (server#24106)
• Convert the card resource to a string if necessary (server#24114)
• Don’t throw on SHOW VERSION query (server#24147)
• Bump dompurify to 2.2.2 (server#24153)
• Set up FS before querying storage info in settings (server#24156)
• Fix default internal expiration date (server#24159)
• CircleId too short in some request (server#24178)
• Revert “circleId too short in some request” (server#24183)
• Missing level in ScopedPsrLogger (server#24212)
• Fix activity spinner on empty activity (activity#523)
• Add OCI github action (activity#528)
• Disable download button by default (files_pdfviewer#257)
• Feat/dependabot ga/stable20 (firstrunwizard#442)
• Fix loading notifications without a message on oracle (notifications#796)
• Do not setup appdata in constructor to avoid errors causing the whole instance to stop working (text#1105)
• Bump eslint-plugin-standard from 4.0.1 to 4.0.2 (text#1125)
• Bump sass-loader from 10.0.1 to 10.0.5 (text#1134)
• Bump webpack from 4.44.1 to 4.44.2 (text#1140)
• Bump dependencies to version in range (text#1164)
• Validate link on click (text#1166)
• Add migration to fix oracle issues with the database schema (text#1177)
• Bump cypress from 4.12.1 to 5.1.0 (text#1179)
• Fix URL escaping of shared files (viewer#681)
• Fix component click outside and cleanup structure (viewer#684)

Version 20.0.1 October 24 2020

Download: nextcloud-20.0.1.tar.bz2 or nextcloud-20.0.1.zip
Check the file integrity with:
MD5: nextcloud-20.0.1.tar.bz2.md5 or nextcloud-20.0.1.zip.md5
SHA256: nextcloud-20.0.1.tar.bz2.sha256 or nextcloud-20.0.1.zip.sha256
SHA512: nextcloud-20.0.1.tar.bz2.sha512 or nextcloud-20.0.1.zip.sha512
PGP (Key): nextcloud-20.0.1.tar.bz2.asc or nextcloud-20.0.1.zip.asc

Changes

• Add mount point to quota warning message (server#23170)
• Dont hold a transaction during the move to trash (server#23185)
• Fix dashboard rendering if accessibility app is disabled (server#23192)
• Fix legacy update notifications (server#23195)
• Fix the user email issue while creating a user (server#23203)
• Make BeforeTemplateRenderedEvent aware of the actual response (server#23205)
• Fix array to string conversion on event search (server#23207)
• Also check the path based mimetype for flow rule checks (server#23211)
• Allow configuring the activity update interval of token (server#23213)
• Don’t influence toastify errors and always use white (server#23216)
• Only run the query to get the account data once (server#23220)
• Fix appid in translation (server#23235)
• Use the correct l10n for activities (server#23254)
• Make sure getUsersFavoritingObject can be run without a user (server#23256)
• Fix sidebar updateTabs method (server#23271)
• Fix the user remove from group in UI (server#23281)
• Fix dashboard statuses sort (server#23288)
• Fix database password visibility toggle (server#23336)
• Add template typing to the QBMapper (server#23375)
• Add Psalm type for the bootstrap registration context (server#23383)
• Fix adminpass strengthify margin (server#23384)
• Fix typo ‘shared’ (server#23388)
• Expose CLOUD federation for local users in the recent addressbook (server#23390)
• Stop transfer of ownership between same users (server#23395)
• VersioningTest.php:729 is unreliable and should be disabled (server#23403)
• Encode requesttoken for logout url in auto logout (server#23420)
• Fix undefined index and consequential damages in versions code (server#23422)
• Allow using saved login credentials for notify (server#23426)
• Add option to disable notify self check (server#23438)
• Annotate IContainer so Psalm knows what resove and query return (server#23446)
• Fix app sidebar mountpoint (server#23458)
• Bump @nextcloud/vue to 2.6.9 (server#23466)
• Add psalm types for the migration schema closure (server#23472)
• Remove posix_getpwuid and compare only userid (server#23473)
• Use own psalm instead of a global one (server#23480)
• Add psalm types for the event dispatcher (server#23491)
• SharedMountTest.php:367 is unreliable (server#23498)
• Provide log statements for SCSS cache (server#23503)
• SCSSCacher – Lock should not be removed (server#23510)
• Clear cached app config while waiting for the SCSSCache lock to return (server#23513)
• Fixes potential passing of null to getUserGroupIds (server#23514)
• Add local version of escapeHTML (server#23548)
• LDAP: when nesting is not enabled, the group filter can be applied right away (server#23570)
• Disable unreliable app-files.feature:108 (server#23621)
• Disable unreliable app-files-sharing.feature:338 (server#23622)
• Set current user when parsing activities for digest (activity#507)
• Fix mail table columns to match the activity table (activity#511)
• Fix the comments added to the activity table (activity#515)
• GetUsersFavoritingObject is moved to the manager (activity#517)
• Remove close button (files_pdfviewer#244)
• Update phpunit.yml (files_pdfviewer#245)
• Hide the download button by default (files_pdfviewer#247)
• Better debug output on public pages (files_pdfviewer#249)
• Pass preview availability too (photos#510)
• FIx loading speed of dashboard by loading the data async (recommendations#307)
• Fix Memory (#240) (serverinfo#245)
• Fix num_shares_link_no_password for NC >= 15 (serverinfo#247)
• Fix FreeBSD Interface Exception (serverinfo#252)
• Fix player controls on Firefox (viewer#627)
• Make div display: none (viewer#629)
• Fix theming chaining (viewer#633)
• Fix cypress branch (viewer#643)

Version 20.0.0 October 3 2020

Download: nextcloud-20.0.0.tar.bz2 or nextcloud-20.0.0.zip
Check the file integrity with:
MD5: nextcloud-20.0.0.tar.bz2.md5 or nextcloud-20.0.0.zip.md5
SHA256: nextcloud-20.0.0.tar.bz2.sha256 or nextcloud-20.0.0.zip.sha256
SHA512: nextcloud-20.0.0.tar.bz2.sha512 or nextcloud-20.0.0.zip.sha512
PGP (Key): nextcloud-20.0.0.tar.bz2.asc or nextcloud-20.0.0.zip.asc

Changes

The three biggest features we introduce with Nextcloud 20 are:

•  Our new dashboard provides a great starting point for the day with over a dozen widgets ranging from Twitter and Github to Moodle and Zammad already available
•  Search was unified, bringing search results of Nextcloud apps as well as external services like Gitlab, Jira and Discourse in one place
•  Talk introduced bridging to other platforms including MS Teams, Slack, IRC, Matrix and a dozen others

 Some other improvements we want to highlight include:

•  Notifications and Activities were brought together, making sure you won’t miss anything important
• 🟢 We added a ‘status’ setting so you can communicate to other users what you are up to
•  Talk also brings dashboard and search integration, emoji picker, upload view, camera and microphone settings, mute and more
•  Calendar integrates in dashboard and search, introduced a list view and design improvements
•  Mail introduces threaded view, mailbox management and more
•  Deck integrates with dashboard and search, introduces Calendar integration, modal view for card editing and series of smaller improvements
•  Flow adds push notification and webhooks so other web apps can easily integrate with Nextcloud
•  Text introduced direct linking to files in Nextcloud
•  Files lets you add a description to public link shares

Read the full announcement on our blog.

An exhaustive changelog would be unreasonably long, but one can always see our entire development history in github. For the core Server repository, see for example here the 783 pull requests merged for Milestone 20.

latest 19 release below.

Version 19.0.13 July 2 2021

Download: nextcloud-19.0.13.tar.bz2 or nextcloud-19.0.13.zip
Check the file integrity with:
MD5: nextcloud-19.0.13.tar.bz2.md5 or nextcloud-19.0.13.zip.md5
SHA256: nextcloud-19.0.13.tar.bz2.sha256 or nextcloud-19.0.13.zip.sha256
SHA512: nextcloud-19.0.13.tar.bz2.sha512 or nextcloud-19.0.13.zip.sha512
PGP (Key): nextcloud-19.0.13.tar.bz2.asc or nextcloud-19.0.13.zip.asc

Changes

• Bump handlebars from 4.7.6 to 4.7.7 (server#26901)
• Bump hosted-git-info from 2.8.4 to 2.8.9 (server#26921)
• Add bruteforce protection to the shareinfo endpoint (server#26957)
• Ignore readonly flag for directories (server#26966)
• Throttle MountPublicLinkController when share is not found (server#26970)
• Respect default share permissions for federated reshares (server#27002)
• Harden apptoken check (server#27013)
• Use proper query method. No get yet on stable19 (server#27041)
• Merge stable19 intermediate back to stable19 (server#27056)
• Bump patch dependencies (server#27182)
• Use noreply@ as email address for share emails (server#27210)
• Bump webpack-cli from 3.3.11 to 3.3.12 (server#27223)
• Bump @nextcloud/axios from 1.3.2 to 1.3.3 (server#27296)
• Properly use limit and offset for search in Jail wrapper (server#27307)
• Properly log expiration date removal in audit log (server#27326)
• Propagate throttling on OCS response (server#27338)
• Escape filename in Content-Disposition (server#27361)
• Header must contain a colon (server#27457)
• Bump ws from 7.2.3 to 7.5.0 (server#27568)
• Bump postcss from 7.0.18 to 7.0.36 (server#27572)
• Stable20] Properly cleanup entries of WebAuthn on user deletion (server#27598)
• Throttle on public DAV endpoint (server#27618)
• Fix integration-federation_features tests (server#27643)
• Backport 19 fix Photos not shown in large browser windows #630 (#686) (photos#811)
• Update chart.js (serverinfo#310)
• Only return workspace property for top node in a propfind request (text#1612)
• Use text/plain as content type for fetching the document (text#1693)
• Log exceptions that happen on unknown exception and return generic messages (text#1699)

Version 19.0.12 May 21 2021

Download: nextcloud-19.0.12.tar.bz2 or nextcloud-19.0.12.zip
Check the file integrity with:
MD5: nextcloud-19.0.12.tar.bz2.md5 or nextcloud-19.0.12.zip.md5
SHA256: nextcloud-19.0.12.tar.bz2.sha256 or nextcloud-19.0.12.zip.sha256
SHA512: nextcloud-19.0.12.tar.bz2.sha512 or nextcloud-19.0.12.zip.sha512
PGP (Key): nextcloud-19.0.12.tar.bz2.asc or nextcloud-19.0.12.zip.asc

Changes

• Use proper query method. No get yet on stable19 (server#27041)

Version 19.0.11 May 20 2021

Download: nextcloud-19.0.11.tar.bz2 or nextcloud-19.0.11.zip
Check the file integrity with:
MD5: nextcloud-19.0.11.tar.bz2.md5 or nextcloud-19.0.11.zip.md5
SHA256: nextcloud-19.0.11.tar.bz2.sha256 or nextcloud-19.0.11.zip.sha256
SHA512: nextcloud-19.0.11.tar.bz2.sha512 or nextcloud-19.0.11.zip.sha512
PGP (Key): nextcloud-19.0.11.tar.bz2.asc or nextcloud-19.0.11.zip.asc

Changes

• Fix account data visibility after disabling public addressbook upload (server#25974)
• L10n: Add word user in FederatedShareProvider.php (server#26510)
• Increase subnet matcher (server#26513)
• Limit size of properties to 2048 characters (server#26543)
• Bump ssri from 6.0.1 to 6.0.2 (server#26603)
• Update root.crl due to revoked news.crt (server#26619)
• Do not allow adding file drop shares to your own cloud (server#26623)
• Add command to repair broken filesystem trees (server#26629)
• Require read permissions for federated shares (server#26638)
• Ensure redis returns bool for hasKey (server#26644)
• Make lookup search explicit (server#26645)
• Fix empty password check for mail shares (server#26646)
• Do not stop directory listing when ACL is blocking access (server#26676)
• Respect the error level when logging (server#26769)
• Improve federated permission handling (server#26772)
• No longer add trusted servers on federated share creation (server#26780)
• Fix ratelimit template (server#26787)
• LDAP: do not bother to search after the last page (server#26799)
• Fail when creating new files with an empty path (server#26807)
• Catch notfound and forbidden exception in smb::getmetadata (server#26810)
• Do not try to contact lookup server if not needed (server#26825)
• Bump @vue/test-utils from 1.1.2 to 1.1.4 (text#1560)

Version 19.0.10 April 9 2021

Download: nextcloud-19.0.10.tar.bz2 or nextcloud-19.0.10.zip
Check the file integrity with:
MD5: nextcloud-19.0.10.tar.bz2.md5 or nextcloud-19.0.10.zip.md5
SHA256: nextcloud-19.0.10.tar.bz2.sha256 or nextcloud-19.0.10.zip.sha256
SHA512: nextcloud-19.0.10.tar.bz2.sha512 or nextcloud-19.0.10.zip.sha512
PGP (Key): nextcloud-19.0.10.tar.bz2.asc or nextcloud-19.0.10.zip.asc

Changes

• Show the actual error on share requests (server#25351)
• Avoid creating two share links when password is enforced (server#25741)
• Fix detecting cyclic group memberships (server#25845)
• Bump the ca location (server#25849)
• Card::getOwner should return the actual value (server#25859)
• Do not die after LDAP auth failed with expired acc (server#25901)
• Skip empty obsolete owner when adding to own NC (server#25957)
• Fix admin password strengthify tooltip (server#25964)
• Bump elliptic from 6.5.3 to 6.5.4 (server#26010)
• Hide expiration date field for remote shares (server#26028)
• Remove trash items from other trash backends when deleting all (server#26041)
• Only clear share password model when actually saved (server#26060)
• Limit constructing of result objects in file search (server#26073)
• Apply object store copy optimization when ‘cross storage’ copy is wit… (server#26092)
• Bump yargs-parser from 5.0.0 to 5.0.1 (server#26095)
• Log exceptions when creating share (server#26129)
• Do cachejail search filtering in sql (server#26135)
• Return the fileid from `copyFromCache` and use it instead of doing an extra query (server#26148)
• Use correct exception type hint in catch statement (server#26164)
• Remove explicit fclose from S3->writeStream (server#26169)
• Fix valid storages removed when cleaning remote storages (server#26191)
• Update user share must use correct expiration validation (server#26206)
• Add (hidden) option to always show smb root as writable (server#26216)
• L10n: Add words user and because in ShareByMailProvider.php (server#26240)
• Handle limit offset and sorting in files search (server#26264)
• Catch invalid cache source storage path (server#26273)
• L10n: Separate ellipsis (server#26277)
• Fix l10n (server#26296)
• Delete old birthday calendar object when moving contact to another ad… (server#26306)
• Bump y18n from 3.2.1 to 3.2.2 (server#26359)
• Update cipher defaults (server#26365)
• Gracefully handle deleteFromSelf when share is already gone (server#26380)
• [3rdparty]phpseclib-2.0.31 (server#26450)
• 19.0.10 final (server#26455)
• Bump phpseclib/phpseclib from 2.0.25 to 2.0.31 (3rdparty#646)
• Match any non-whitespace character in filesystem type pattern (serverinfo#282)
• Remove EPUB mimetype (text#1392)
• Make sure the session list is always at the end (text#1411)
• Bump @babel/plugin-transform-modules-commonjs from 7.12.1 to 7.12.13 (text#1435)
• Bump @babel/plugin-proposal-class-properties from 7.12.1 to 7.12.13 (text#1437)
• Bump @babel/plugin-transform-runtime from 7.12.10 to 7.12.17 (text#1465)
• Bump @babel/preset-env from 7.12.11 to 7.12.17 (text#1467)
• Bump @babel/core from 7.12.10 to 7.12.17 (text#1469)
• Use write permission when possible (text#1514)
• Update CLI tests to PHP 7.4 to 8.0 (updater#344)
• Disable UI when web updater is disabled in config.php (updater#350)
• Remove obsolete pipeline php72-master (updater#353)

Version 19.0.9 February 26 2021

Download: nextcloud-19.0.9.tar.bz2 or nextcloud-19.0.9.zip
Check the file integrity with:
MD5: nextcloud-19.0.9.tar.bz2.md5 or nextcloud-19.0.9.zip.md5
SHA256: nextcloud-19.0.9.tar.bz2.sha256 or nextcloud-19.0.9.zip.sha256
SHA512: nextcloud-19.0.9.tar.bz2.sha512 or nextcloud-19.0.9.zip.sha512
PGP (Key): nextcloud-19.0.9.tar.bz2.asc or nextcloud-19.0.9.zip.asc

Changes

• Respect DB restrictions on number of arguments in statements and queries (server#25121)
• CalDAV] Validate notified emails (server#25323)
• Fix parameter provided as string not array (server#25367)
• The objectid is a string (server#25375)
• LDAP: make actually use of batch read known groups (server#25380)
• Do not remove valid group shares (server#25385)
• Use RFC-compliant URL encoding for cookies (server#25389)
• Properly handle SMB ACL blocking scanning a directory (server#25422)
• Keep direct login active when redirecting (server#25431)
• Add repair job for unencoded group share uris (server#25449)
• Fix(translation): replace static error message (server#25507)
• Do not send imip email to invalid recipients (server#25593)
• Use ownerDisplayName for SharingEntry Tooltip (server#25652)
• Updated CRL (server#25667)
• Initialize \OCP\AppFramework\Http\ZipResponse::$resources (server#25704)
• Send emails on password reset to the displayname (server#25710)
• 19.0.9 final (server#25720)
• Bump prosemirror-markdown from 1.5.0 to 1.5.1 (text#1346)
• Bump webpack from 4.45.0 to 4.46.0 (text#1361)
• Bump stylelint from 13.8.0 to 13.9.0 (text#1377)
• Pin to patch releases (text#1390)

Version 19.0.8 January 27 2021

Download: nextcloud-19.0.8.tar.bz2 or nextcloud-19.0.8.zip
Check the file integrity with:
MD5: nextcloud-19.0.8.tar.bz2.md5 or nextcloud-19.0.8.zip.md5
SHA256: nextcloud-19.0.8.tar.bz2.sha256 or nextcloud-19.0.8.zip.sha256
SHA512: nextcloud-19.0.8.tar.bz2.sha512 or nextcloud-19.0.8.zip.sha512
PGP (Key): nextcloud-19.0.8.tar.bz2.asc or nextcloud-19.0.8.zip.asc

Changes

• Make sure to do priority app upgrades first (server#25078)
• Do not redirect to logout after login (server#25147)
• Add “composer.lock” for acceptance tests to git (server#25179)
• Update CRL due to revoked gravatar.crl (server#25191)
• Don’t log keys on checkSignature (server#25194)
• Update 3rdparty after Archive_Tar (server#25200)
• Bump CA bundle (server#25220)
• Also use storage copy when dav copying directories (server#25262)
• Silence log message (server#25264)
• Do not obtain userFolder of a federated user (server#25277)
• Bump pear/archive_tar from 1.4.11 to 1.4.12 (3rdparty#600)

Version 19.0.7 January 15 2021

Download: nextcloud-19.0.7.tar.bz2 or nextcloud-19.0.7.zip
Check the file integrity with:
MD5: nextcloud-19.0.7.tar.bz2.md5 or nextcloud-19.0.7.zip.md5
SHA256: nextcloud-19.0.7.tar.bz2.sha256 or nextcloud-19.0.7.zip.sha256
SHA512: nextcloud-19.0.7.tar.bz2.sha512 or nextcloud-19.0.7.zip.sha512
PGP (Key): nextcloud-19.0.7.tar.bz2.asc or nextcloud-19.0.7.zip.asc

Changes

• Use storage copy implementation when doing dav copy (server#24591)
• Use in objectstore copy (server#24593)
• Fixes sharing to group ids with characters that are being url encoded (server#24762)
• Fix Argon2 descriptions (server#24795)
• Actually set the TTL on redis set (server#24799)
• Fix total upload size overwritten by next upload (server#24855)
• Avoid huge exception argument logging (server#24875)
• Make share results distinguishable if there are more than one with the exact same display name (server#24880)
• Bump pear/archive_tar from 1.4.9 to 1.4.11 (server#24901)
• Fix #24682]: ensure federation cloud id is retruned if FN property not found (server#24962)
• Don’t throw a 500 when importing a broken ics reminder file (server#24973)
• Update root.crl due to revocation of transmission.crt (server#24991)
• Bump pear/archive_tar from 1.4.9 to 1.4.11 (3rdparty#533)
• Catch possible database exceptions when fetching document data (text#1222)
• Bump prosemirror-view from 1.16.1 to 1.16.5 (text#1256)
• Bump @vue/test-utils from 1.1.1 to 1.1.2 (text#1258)
• Bump eslint-plugin-standard from 4.0.2 to 4.1.0 (text#1260)
• Bump @babel/preset-env from 7.12.1 to 7.12.11 (text#1262)
• Bump @babel/plugin-transform-runtime from 7.12.1 to 7.12.10 (text#1264)
• Bump babel-loader from 8.1.0 to 8.2.2 (text#1267)
• Bump prosemirror-model from 1.12.0 to 1.13.1 (text#1268)
• Bump vue-loader from 15.9.5 to 15.9.6 (text#1270)
• Bump stylelint from 13.7.2 to 13.8.0 (text#1272)
• Bump @babel/core from 7.12.3 to 7.12.10 (text#1275)
• Bump core-js from 3.7.0 to 3.8.1 (text#1276)
• Fix cypress tests (text#1290)
• Fix: use OC.Files API to get file info (text#1294)
• Fix link menu positioning (text#1295)
• Bump cypress from 5.1.0 to 5.6.0 (text#1302)
• Bump webpack from 4.44.2 to 4.45.0 (text#1326)

Version 19.0.6 December 10 2020

Download: nextcloud-19.0.6.tar.bz2 or nextcloud-19.0.6.zip
Check the file integrity with:
MD5: nextcloud-19.0.6.tar.bz2.md5 or nextcloud-19.0.6.zip.md5
SHA256: nextcloud-19.0.6.tar.bz2.sha256 or nextcloud-19.0.6.zip.sha256
SHA512: nextcloud-19.0.6.tar.bz2.sha512 or nextcloud-19.0.6.zip.sha512
PGP (Key): nextcloud-19.0.6.tar.bz2.asc or nextcloud-19.0.6.zip.asc

Changes

• Check quota of subdirectories when uploading to them (server#24182)
• CircleId too short in some request (server#24195)
• Fix setting images through occ for theming (server#24233)
• Simple typo in comments (server#24260)
• Use correct year for generated birthdays events (server#24262)
• Delete files that exceed trashbin size immediately (server#24296)
• Update sabre/xml to fix XML parsing errors (server#24306)
• Only check path for being accessible when the storage is a object home (server#24327)
• Avoid empty null default with value that will be inserted anyways (server#24334)
• Fix contacts menu position and show uid as a tooltip (server#24343)
• Fix the config key on the sharing expire checkbox (server#24347)
• Set the display name of federated sharees from addressbook (server#24354)
• Catch storage not available in versions expire command (server#24368)
• Avoid substr() error when strpos returns false (server#24370)
• Properly encode path when fetching inherited shares (server#24386)
• Formatting remote sharer should take protocol, path into account (server#24392)
• Make sure we add new line between vcf groups exports (server#24444)
• Fix public calendars shared to circles (server#24447)
• Store scss variables under a different prefix for each theming config version (server#24452)
• External storages: save group ids not display names in configuration (server#24457)
• Use correct l10n source in files_sharing JS code (server#24463)
• Update ScanLegacyFormat.php (server#24480)
• Only attempt to move to trash if a file is not in appdata (server#24484)
• Fix loading mtime of new file in conflict dialog in firefox (server#24492)
• Harden setup check for TLS version if host is not reachable (server#24503)
• Fix file size computation on 32bit platforms (server#24508)
• Set mountid for personal external storage mounts (server#24514)
• Only execute plain mimetype check for directories and do the fallback… (server#24518)
• Fix vsprint parameter (server#24528)
• Generate a new session id if the decrypting the session data fails (server#24554)
• Stable20] dont use system composer for autoload checker (server#24561)
• Remember me is not an app_password (server#24564)
• Do not load nonexisting setup.js (server#24583)
• Update sabre/xml to fix XML parsing errors (3rdparty#530)
• Use composer v1 on CI (3rdparty#531)
• Make sure we have a string to localecompare to (photos#584)
• Also register to urlChanged event to update RichWorkspace (text#1182)

Version 19.0.5 November 20 2020

Download: nextcloud-19.0.5.tar.bz2 or nextcloud-19.0.5.zip
Check the file integrity with:
MD5: nextcloud-19.0.5.tar.bz2.md5 or nextcloud-19.0.5.zip.md5
SHA256: nextcloud-19.0.5.tar.bz2.sha256 or nextcloud-19.0.5.zip.sha256
SHA512: nextcloud-19.0.5.tar.bz2.sha512 or nextcloud-19.0.5.zip.sha512
PGP (Key): nextcloud-19.0.5.tar.bz2.asc or nextcloud-19.0.5.zip.asc

Changes

• Add mount point to quota warning message (server#23168)
• Fix the user email issue while creating a user (server#23202)
• Also check the path based mimetype for flow rule checks (server#23212)
• Allow configuring the activity update interval of token (server#23214)
• Allow using saved login credentials for notify (server#23233)
• Fix the user remove from group in UI (server#23282)
• Add template typing to the QBMapper (server#23376)
• Fix adminpass strengthify margin (server#23385)
• VersioningTest.php:729 is unreliable and should be disabled (server#23404)
• Encode requesttoken for logout url in auto logout (server#23421)
• Fix undefined index and consequential damages in versions code (server#23424)
• Add option to disable notify self check (server#23439)
• SharedMountTest.php:367 is unreliable (server#23499)
• Provide log statements for SCSS cache (server#23504)
• SCSSCacher – Lock should not be removed (server#23511)
• Clear cached app config while waiting for the SCSSCache lock to return (server#23515)
• Update CA bundle to october version (server#23556)
• CalDavBackend: check if timerange is array before accessing (server#23564)
• LDAP: when nesting is not enabled, the group filter can be applied right away (server#23571)
• Also expire share type email (server#23585)
• Disable unreliable app-files.feature:108 (server#23623)
• Disable unreliable app-files-sharing.feature:338 (server#23624)
• Only retry fetching app store data once every 5 minutes in case it fails (server#23634)
• Bring back the restore share button (server#23637)
• Fix updates of NULL appconfig values (server#23642)
• Fix sharing input placeholder for emails (server#23647)
• Log the route not found exception on a lower level (server#23676)
• Use bigint for fileid in filecache_extended (server#23691)
• Enable theming background transparency (server#23705)
• Fix sharer flag on ldap:show-remnants when user owned more than a single share (server#23708)
• Check if array elements exist before using them (server#23714)
• Use lib instead if core as l10n module in OC_Files (server#23728)
• Save email as lower case (server#23734)
• Harden SSE key generation (server#23755)
• Inform the user when flow config data exceeds thresholds (server#23760)
• Add occ command to set theming values (server#23777)
• Only run phpunit when “php” changed (server#23795)
• Bump lodash from 4.17.15 to 4.17.20 (server#23806)
• No need to check if there is an avatar available, because it is gener… (server#23847)
• Inidicate preview availability in share api responses (server#23860)
• Fix grid view toggle in tags view (server#23875)
• Restrict query when searching for versions of trashbin files (server#23885)
• Fix potentially passing null to events where IUser is expected (server#23895)
• Bearer must be in the start of the auth header (server#23925)
• Do not emit UserCreatedEvent twice (server#23931)
• Improve query type detection (server#23952)
• Make sure root storage is valid before checking its size (server#23997)
• Remove old legacy scripts references (server#24005)
• Fix js search in undefined ocs response (server#24013)
• Fix sharing tab state not matching resharing admin settings (server#24045)
• Fix iLike() falsely turning escaped % and _ into wildcards (server#24048)
• Use png icons in caldav reminder emails (server#24052)
• Fix php-cs-fixer on stable19 by updating to a new minor version (server#24057)
• Unlock when promoting to exclusive lock fails (server#24076)
• Fix default internal expiration date enforce (server#24080)
• Fix password visibility toggles (server#24111)
• Convert the card resource to a string if necessary (server#24115)
• Don’t throw on SHOW VERSION query (server#24148)
• Bump dompurify to 2.2.2 (server#24155)
• Fix default internal expiration date (server#24160)
• CircleId too short in some request (server#24177)
• Revert “circleId too short in some request” (server#24184)
• Feat/dependabot ga/stable19 (firstrunwizard#441)
• Pass preview availability too (photos#511)
• Do not setup appdata in constructor to avoid errors causing the whole instance to stop working (text#1106)
• Bump dependencies to version in range (text#1163)
• Validate link before opening (text#1167)
• Fix player controls on Firefox (viewer#671)
• Fix URL escaping of shared files (viewer#682)

Version 19.0.4 October 9 2020

Download: nextcloud-19.0.4.tar.bz2 or nextcloud-19.0.4.zip
Check the file integrity with:
MD5: nextcloud-19.0.4.tar.bz2.md5 or nextcloud-19.0.4.zip.md5
SHA256: nextcloud-19.0.4.tar.bz2.sha256 or nextcloud-19.0.4.zip.sha256
SHA512: nextcloud-19.0.4.tar.bz2.sha512 or nextcloud-19.0.4.zip.sha512
PGP (Key): nextcloud-19.0.4.tar.bz2.asc or nextcloud-19.0.4.zip.asc

Changes

• Better error message when blocked by access control (server#22591)
• LDAP: remove unused methods and DB values (server#22630)
• Fix installing on Oracle (server#22652)
• Do not fail if share for mountpoint is no longer available (server#22713)
• Don’t use SELECT DISTINCT when to_char() is used in a WHERE statement (server#22720)
• Allow additional personal settings via normal registration (server#22742)
• Fix detecting text/x-php mimetype and secure mimetype mapping (server#22745)
• Check if var debugMode exists (server#22752)
• Fix reading empty files from objectstorage (server#22753)
• Clarify PHP warning in admin settings (server#22769)
• Makes LDAP’s group updater dispatch type events (server#22775)
• Fix s3 doesDirectoryExist check for empty directories (server#22776)
• Don’t fail if copying a file of 0 byte size (server#22778)
• Use user mount with matching shared storage only (server#22784)
• Fix share transfer of single files and on the transfered node (server#22804)
• Mitigate encoding issue with user principal uri (server#22840)
• Only get the permissions from the share source if it’s not already cached (server#22892)
• Revoke secsignid (server#22893)
• Fix: file quota was not applied in all cases (server#22899)
• Make sure that getConfig is still called for browsers that do not support CSPv3 (server#22904)
• Improve handling of out of space errors for smb (server#22926)
• Fix settings chunk loading (server#22941)
• Flow: do not hide “matches” and “does not match” checkers (server#22988)
• Never copy the share link when the password is forced (server#23002)
• Fix numeric folders throwing on markDirty (server#23049)
• Sync all users to the system addresssbook (server#23086)
• Show federation and email results also with exact user match unless c… (server#23087)
• Do not match sharees on an empty email address (server#23090)
• Generate exception to log on php errors (server#23093)
• Fix ignoring the correct settings files for translations (server#23137)
• Dont hold a transaction during the move to trash (server#23186)
• Fix legacy update notifications (server#23196)
• Don’t influence toastify errors and always use white (server#23217)
• Only run the query to get the account data once (server#23221)
• 19.0.4 final (server#23263)
• Fix mail table columns to match the activity table (activity#512)
• Bugfix): Protect LogIterator.php from empty array indices (logreader#389)
• Also check responses of 400 errors and so delete unknown devices (notifications#760)
• Fix num_shares_link_no_password for NC >= 15 (serverinfo#248)
• Only return rich workspace when depth is 1 or greater (text#1003)
• IE11 madness (text#1036)
• Check if error is ocs response on workspace request (text#1054)
• Update .l10nignore to exclude bundled JS files (viewer#613)

Version 19.0.3 September 10 2020

Download: nextcloud-19.0.3.tar.bz2 or nextcloud-19.0.3.zip
Check the file integrity with:
MD5: nextcloud-19.0.3.tar.bz2.md5 or nextcloud-19.0.3.zip.md5
SHA256: nextcloud-19.0.3.tar.bz2.sha256 or nextcloud-19.0.3.zip.sha256
SHA512: nextcloud-19.0.3.tar.bz2.sha512 or nextcloud-19.0.3.zip.sha512
PGP (Key): nextcloud-19.0.3.tar.bz2.asc or nextcloud-19.0.3.zip.asc

Changes

• Fix possible leaking scope in Flow (server#22410)
• Combine body-login rules in theming and fix twofactor and guest styling on bright colors (server#22427)
• Show better quota warning for group folders and external storage (server#22442)
• Add php docs build script (server#22448)
• Fix clicks on actions menu of non opaque file rows in acceptance tests (server#22503)
• Fix writing BLOBs to postgres with recent contacts interaction (server#22515)
• Set the mount id before calling storage wrapper (server#22519)
• Fix S3 error handling (server#22521)
• Only disable zip64 if the size is known (server#22537)
• Change free space calculation (server#22553)
• Do not keep the part file if the forbidden exception has no retry set (server#22560)
• Fix app password updating out of bounds (server#22569)
• Use the correct root to determinate the webroot for the resource (server#22579)
• Upgrade icewind/smb to 3.2.7 (server#22581)
• Bump elliptic from 6.4.1 to 6.5.3 (notifications#732)
• Fixes regression that prevented you from toggling the encryption flag (privacy#489)
• Match any non-whitespace character in filesystem pattern (serverinfo#229)
• Catch StorageNotAvailable exceptions (text#1001)
• Harden read only check on public endpoints (text#1017)
• Harden check when using token from memcache (text#1020)
• Sessionid is an int (text#1029)
• Only overwrite Ctrl-f when text is focussed (text#990)
• Set the X-Requested-With header on dav requests (viewer#582)

Version 19.0.2 August 28 2020

Download: nextcloud-19.0.2.tar.bz2 or nextcloud-19.0.2.zip
Check the file integrity with:
MD5: nextcloud-19.0.2.tar.bz2.md5 or nextcloud-19.0.2.zip.md5
SHA256: nextcloud-19.0.2.tar.bz2.sha256 or nextcloud-19.0.2.zip.sha256
SHA512: nextcloud-19.0.2.tar.bz2.sha512 or nextcloud-19.0.2.zip.sha512
PGP (Key): nextcloud-19.0.2.tar.bz2.asc or nextcloud-19.0.2.zip.asc

Changes

• Lower minimum search length to 2 characters (server#21782)
• Call openssl_pkey_export with $config and log errors. (server#21804)
• Improve error reporting on sharing errors (server#21806)
• Do not log RequestedRangeNotSatisfiable exceptions in DAV (server#21840)
• Fix parsing of language code (server#21857)
• Fix typo in revokeShare() (server#21876)
• Discourage webauthn user interaction (server#21917)
• Encryption is ready if master key is enabled (server#21935)
• Disable fragile comments tests (server#21939)
• Do not double encode the userid in webauthn login (server#21953)
• Update icewind/smb to 3.2.6 (server#21955)
• Respect default share permissions (server#21967)
• allow admin to configure the max trashbin size (server#21975)
• Fix risky test in twofactor_backupcodes (server#21978)
• Fix PHPUnit deprecation warnings (server#21981)
• Fix moving files from external storage to object store trashbin (server#21983)
• Ignore whitespace in sharing by mail (server#21991)
• Properly fetch translation for remote wipe confirmation dialog (server#22036)
• Parse_url returns null in case a parameter is not found (server#22044)
• Bump elliptic from 6.5.2 to 6.5.3 (server#22050)
• Correctly remove usergroup shares on removing group members (server#22053)
• Fix height to big for iPhone when using many apps (server#22064)
• Reset the cookie internally in new API when abandoning paged results op (server#22069)
• Add Guzzle’s InvalidArgumentException (server#22070)
• Contactsmanager shall limit number of results early (server#22091)
• Fix browser freeze on long password input (server#22094)
• Search also the email and displayname in user mangement for groups (server#22118)
• Ensured large image is unloaded from memory when generating previews (server#22121)
• Fix display of remote users in incoming share notifications (server#22131)
• Reuse cache for directory mtime/size if filesystem changes can be ignored (server#22171)
• Remove unexpected argument (server#22178)
• Do not exit if available space cannot be determined on file transfer (server#22181)
• Fix empty ‘more’ apps navigation after installing an app (server#22183)
• Fix default log_rotate_size in config.sample.php (server#22192)
• shortcut in reading nested group members when IN_CHAIN is available (server#22203)
• Fix chmod on file descriptor (server#22208)
• Do clearstatcache() on rmdir (server#22209)
• SSE enhancement of file signature (server#22210)
• Remove logging message carrying no valuable information (server#22215)
• Add app config option to disable “Email was changed by admin” activity (server#22232)
• Delete chunks if the move on an upload failed (server#22239)
• Silence duplicate session warnings (server#22247)
• Doctrine: Fix unquoted stmt fragments backslash escaping (server#22252)
• Allow to disable share emails (server#22300)
• Show disabled user count in occ user:report (server#22302)
• Bump 3rdparty to last stable19 commit (server#22303)
• Fixing a logged deprecation message (server#22309)
• CalDAV: Add ability to limit sharing to owner (server#22333)
• Only copy the link when updating a share or no password was forced (server#22337)
• Remove encryption option for nextcloud external storage (server#22341)
• L10n:Correct appid for WebAuthn (server#22348)
• Properly search for users when limittogroups is enabled (server#22355)
• SSE: make legacy format opt in (server#22381)
• Update the CRL (server#22387)
• Fix missing FN from federated contact (server#22400)
• Fix event icon sizes and text alignment (server#22414)
• Bump stecman/symfony-console-completion from 0.8.0 to 0.11.0 (3rdparty#457)
• Add Guzzle’s InvalidArgumentException (3rdparty#474)
• Doctrine: Fix unquoted stmt fragments backslash escaping (3rdparty#486)
• Fix cypress (viewer#545)
• Move to webpack vue global config & bump deps (viewer#558)

Version 19.0.1 July 17 2020

Download: nextcloud-19.0.1.tar.bz2 or nextcloud-19.0.1.zip
Check the file integrity with:
MD5: nextcloud-19.0.1.tar.bz2.md5 or nextcloud-19.0.1.zip.md5
SHA256: nextcloud-19.0.1.tar.bz2.sha256 or nextcloud-19.0.1.zip.sha256
SHA512: nextcloud-19.0.1.tar.bz2.sha512 or nextcloud-19.0.1.zip.sha512
PGP (Key): nextcloud-19.0.1.tar.bz2.asc or nextcloud-19.0.1.zip.asc

Changes

• Improve group queries (server#21068)
• Do not read certificate bundle from data dir by default (server#21095)
• Fixes infinitely repeating LDPA search results with PHP <= 7.2 (server#21111)
• Use the loginname to verify the old password in user password changes (server#21114)
• Make the translation sanitization optional (server#21126)
• Simplify getGroups, fixing wrong chunking logic (server#21128)
• Move the password confirmation form template to post (server#21131)
• Clear the statscache before fetching the metadata (server#21135)
• Fix reference to wrong class name (server#21148)
• Fix password changes in link and mail shares (server#21151)
• Do not only catch Exceptions but any Throwable during rmt share delete (server#21200)
• Normalize sftp path in read and write stream (server#21203)
• Fix the Talk verification (server#21210)
• Prevent harder to share your root (server#21226)
• Use \OC::$CLI instead of PHP_SAPI (server#21242)
• Fix empty event UUID reminder notifications (server#21247)
• Enable passwordless for everyone not only admins. (server#21287)
• Only use background fade if nextcloud blue is set (server#21308)
• Clear LDAP cache after user deletion (server#21333)
• Update icewind/smb to 3.2.5 (server#21342)
• Always sort shares in a reliable way (server#21352)
• Pass the proper share permissions to the create share call (server#21354)
• Reflect unreadable state in the UI (server#21356)
• Increase timeout of the appstore requests (server#21387)
• Fix pagination of contacts search (server#21405)
• Upload part size as S3 parameter instead of constant value (server#21409)
• Avoid duplicate matches in wide and exact results (server#21419)
• Clean up auth tokens when user is deleted (server#21427)
• Fix invalid usage of \Exception::getResult (server#21441)
• Disable Client-Side Monitoring on AWS storage (server#21447)
• Don’t log Keys (server#21485)
• GetXbyY can still return false, e.g. when using ldap write support (server#21491)
• Acceptence tests shall specify which branch to pick when cloning apps (server#21493)
• Give up after 10 seconds in SCSS timeout (server#21495)
• Clarify that the email is always shared within the instance (server#21521)
• Allow to specify the cookie type for appframework responses (server#21526)
• Fix autocomplete for LDAP with `shareapi_only_share_with_group_members` on (server#21538)
• Fix modal support for vue apps and dark theme (server#21541)
• Fix language in share notes email for users (server#21550)
• Fix obsolete usage of OCdialogs (server#21568)
• Comment was wrong, block is needed nevertheless (server#21571)
• Relax permissions mask check for detecting part file rename (server#21573)
• Fix share permission checkboxes enabled when permissions can not be set (server#21574)
• Fix strings being passed where arrays where expected (server#21583)
• Remove rescanDelay from directory mtime (server#21584)
• Precalculate the primary element color for dark mode too (server#21622)
• Update presign method to match with interface again. (server#21638)
• Log deprecated events as debug (server#21652)
• Fix IPv6 remote addresses from X_FORWARDED_FOR headers before validating (server#21655)
• Check if debugMode is defined before using it (server#21660)
• Fix static method call for s3 bucket compat check (server#21663)
• Add missing TarHeader.php (server#21664)
• Revert “Do not read certificate bundle from data dir by default” (server#21671)
• Change OAuth2 redirect link to relative link (server#21687)
• Changes the Birthday calendar color to slightly brighter one (server#21703)
• Fix releasing a shared lock multiple times (server#21710)
• Fix main bundle on IE11 (server#21726)
• Add a clear message why you could end up there (server#21751)
• Fix placeholder issues with multiplace spaces in the name (server#21770)
• Use the correct mountpoint to calculate (server#21772)
• Fix #21285 as oneliner (server#21779)
• Set the moment locale even earlier (server#21780)
• Build source maps on production build again (server#21834)
• Add missing TarHeader.php (3rdparty#466)
• Allow downloads in sandboxed iframe (files_pdfviewer#187)
• Do not keep loading the slide list on every reopen (firstrunwizard#351)
• Allow to group push notifications via an event (notifications#651)
• Don’t shutdown the notifications when it freezes by browser shutdown (notifications#666)
• Ignore old push devices (notifications#667)
• More buffer to the key size (notifications#672)
• Delete duplicates of the same push token hash (notifications#676)
• Fix wordwrap issue regression from #540, fix #679 (notifications#686)
• Don’t push without internet connection (notifications#694)
• Also check for internet on delete push (notifications#697)
• Correct format for uptime is used (serverinfo#221)

Version 19.0.0 June 3 2020

Download: nextcloud-19.0.0.tar.bz2 or nextcloud-19.0.0.zip
Check the file integrity with:
MD5: nextcloud-19.0.0.tar.bz2.md5 or nextcloud-19.0.0.zip.md5
SHA256: nextcloud-19.0.0.tar.bz2.sha256 or nextcloud-19.0.0.zip.sha256
SHA512: nextcloud-19.0.0.tar.bz2.sha512 or nextcloud-19.0.0.zip.sha512
PGP (Key): nextcloud-19.0.0.tar.bz2.asc or nextcloud-19.0.0.zip.asc

Changes

Nextcloud Hub v19, code name “home office”, represents a big step forward for remote collaboration in teams. This release brings document collaboration to video chats, introduces password-less login and improves performance.

As this is a major release, the changelog is too long to put here. Users can look at github milestones to find what has been merged. A quick overview of what is new:

•  password-less authentication and many other security measures
•  Talk 9 with built-in office document editing courtesy of Collabora, a grid view & more
•  MUCH improved performance,  Deck integration in Calendar,  guest account groups and more!

Read the release announcement for more details.

Version 18.0.14 January 27 2021

Download: nextcloud-18.0.14.tar.bz2 or nextcloud-18.0.14.zip
Check the file integrity with:
MD5: nextcloud-18.0.14.tar.bz2.md5 or nextcloud-18.0.14.zip.md5
SHA256: nextcloud-18.0.14.tar.bz2.sha256 or nextcloud-18.0.14.zip.sha256
SHA512: nextcloud-18.0.14.tar.bz2.sha512 or nextcloud-18.0.14.zip.sha512
PGP (Key): nextcloud-18.0.14.tar.bz2.asc or nextcloud-18.0.14.zip.asc

Changes

This is the final release of Nextcloud Hub 18. To protect the security of your data, upgrade to Nextcloud Hub 19 or get a subscription to Nextcloud Enterprise to benefit from long term support.

• Update 3rdparty after Archive_Tar (server#25201)
• Bump CA bundle (server#25221)
• Bump pear/archive_tar from 1.4.11 to 1.4.12 (3rdparty#602)
• Bump ini from 1.3.5 to 1.3.8 (recommendations#348)

Version 18.0.13 January 15 2021

Download: nextcloud-18.0.13.tar.bz2 or nextcloud-18.0.13.zip
Check the file integrity with:
MD5: nextcloud-18.0.13.tar.bz2.md5 or nextcloud-18.0.13.zip.md5
SHA256: nextcloud-18.0.13.tar.bz2.sha256 or nextcloud-18.0.13.zip.sha256
SHA512: nextcloud-18.0.13.tar.bz2.sha512 or nextcloud-18.0.13.zip.sha512
PGP (Key): nextcloud-18.0.13.tar.bz2.asc or nextcloud-18.0.13.zip.asc

Changes

• Bump ini from 1.3.5 to 1.3.7 (server#24651)
• Enables the file name check also to match name of mountpoints (server#24761)
• Actually set the TTL on redis set (server#24800)
• Fix total upload size overwritten by next upload (server#24857)
• Make share results distinguishable if there are more than one with the exact same display name (server#24881)
• Bump pear/archive_tar from 1.4.8 to 1.4.11 (server#24902)
• Don’t throw a 500 when importing a broken ics reminder file (server#24974)
• Update root.crl due to revocation of transmission.crt (server#24992)
• Bump pear/archive_tar from 1.4.8 to 1.4.11 (3rdparty#534)
• Bump stylelint from 13.7.2 to 13.8.0 (text#1194)
• Bump babel-loader from 8.2.1 to 8.2.2 (text#1209)
• Bump @babel/plugin-transform-runtime from 7.12.1 to 7.12.10 (text#1226)
• Bump core-js from 3.7.0 to 3.8.1 (text#1227)
• Bump prosemirror-view from 1.16.1 to 1.16.5 (text#1228)
• Bump @babel/core from 7.12.3 to 7.12.10 (text#1229)
• Bump vue-loader from 15.9.5 to 15.9.6 (text#1237)
• Bump @babel/preset-env from 7.12.1 to 7.12.11 (text#1238)
• Bump @vue/test-utils from 1.1.1 to 1.1.2 (text#1240)
• Bump prosemirror-model from 1.12.0 to 1.13.1 (text#1284)
• Fix cypress (text#1291)
• Handle 403 errors the same as not found (text#1292)
• Fix: use OC.Files API to get file info (text#1293)
• Bump cypress from 5.1.0 to 5.6.0 (text#1301)
• Bump webpack from 4.44.2 to 4.45.0 (text#1325)

Version 18.0.12 December 10 2020

Download: nextcloud-18.0.12.tar.bz2 or nextcloud-18.0.12.zip
Check the file integrity with:
MD5: nextcloud-18.0.12.tar.bz2.md5 or nextcloud-18.0.12.zip.md5
SHA256: nextcloud-18.0.12.tar.bz2.sha256 or nextcloud-18.0.12.zip.sha256
SHA512: nextcloud-18.0.12.tar.bz2.sha512 or nextcloud-18.0.12.zip.sha512
PGP (Key): nextcloud-18.0.12.tar.bz2.asc or nextcloud-18.0.12.zip.asc

Changes

• CircleId too short in some request (server#24152)
• Simple typo in comments (server#24261)
• Fix contacts menu position in sharing sidebar (server#24332)
• Avoid empty null default with value that will be inserted anyways (server#24335)
• Only check path for being accessible when the storage is a object home (server#24344)
• Catch storage not available in versions expire command (server#24369)
• Avoid substr() error when strpos returns false (server#24371)
• Properly encode path when fetching inherited shares (server#24388)
• Respect default share permissions (server#24437)
• Make sure we add new line between vcf groups exports (server#24445)
• External storages: save group ids not display names in configuration (server#24458)
• Use correct l10n source in files_sharing JS code (server#24465)
• Fix the config key on the sharing expire checkbox (server#24481)
• Only attempt to move to trash if a file is not in appdata (server#24485)
• Harden setup check for TLS version if host is not reachable (server#24504)
• Generate a new session id if the decrypting the session data fails (server#24555)
• Stable20] dont use system composer for autoload checker (server#24562)
• Remember me is not an app_password (server#24565)
• Make sure we have a string to localecompare to (photos#585)

Version 18.0.11 November 20 2020

Download: nextcloud-18.0.11.tar.bz2 or nextcloud-18.0.11.zip
Check the file integrity with:
MD5: nextcloud-18.0.11.tar.bz2.md5 or nextcloud-18.0.11.zip.md5
SHA256: nextcloud-18.0.11.tar.bz2.sha256 or nextcloud-18.0.11.zip.sha256
SHA512: nextcloud-18.0.11.tar.bz2.sha512 or nextcloud-18.0.11.zip.sha512
PGP (Key): nextcloud-18.0.11.tar.bz2.asc or nextcloud-18.0.11.zip.asc

Changes

• Fix the user email issue while creating a user (server#23204)
• Fix adminpass strengthify margin (server#23386)
• Fix the user remove from group in UI (server#23393)
• VersioningTest.php:729 is unreliable and should be disabled (server#23405)
• Contactsmanager shall limit number of results early (server#23423)
• Use paginated search for contacts + fixes (server#23437)
• SharedMountTest.php:367 is unreliable (server#23500)
• Provide log statements for SCSS cache (server#23506)
• SCSSCacher – Lock should not be removed (server#23512)
• Clear cached app config while waiting for the SCSSCache lock to return (server#23516)
• Fix display of remote users in incoming share notifications (server#23549)
• Update CA bundle to october version (server#23557)
• CalDavBackend: check if timerange is array before accessing (server#23565)
• Dont hold a transaction during the move to trash (server#23567)
• Also expire share type email (server#23584)
• Disable unreliable app-files.feature:108 (server#23625)
• Disable unreliable app-files-sharing.feature:108 (server#23626)
• Only retry fetching app store data once every 5 minutes in case it fails (server#23635)
• Bring back the restore share button (server#23638)
• Fix updates of NULL appconfig values (server#23643)
• Fix sharing input placeholder for emails (server#23648)
• Use bigint for fileid in filecache_extended (server#23692)
• Enable theming background transparency (server#23706)
• Fix sharer flag on ldap:show-remnants when user owned more than a single share (server#23709)
• Check if array elements exist before using them (server#23715)
• Use lib instead if core as l10n module in OC_Files (server#23729)
• Save email as lower case (server#23735)
• Harden SSE key generation (server#23756)
• Inform the user when flow config data exceeds thresholds (server#23761)
• Only run phpunit when “php” changed (server#23796)
• Bump lodash from 4.17.15 to 4.17.20 (server#23803)
• No need to check if there is an avatar available, because it is gener… (server#23848)
• Inidicate preview availability in share api responses (server#23861)
• Fix grid view toggle in tags view (server#23876)
• Restrict query when searching for versions of trashbin files (server#23886)
• Fix potentially passing null to events where IUser is expected (server#23896)
• Bearer must be in the start of the auth header (server#23926)
• Improve query type detection (server#23953)
• Remove old legacy scripts references (server#24006)
• Fix js search in undefined ocs response (server#24020)
• Fix sharing tab state not matching resharing admin settings (server#24046)
• Fix iLike() falsely turning escaped % and _ into wildcards (server#24047)
• Use png icons in caldav reminder emails (server#24051)
• Unlock when promoting to exclusive lock fails (server#24077)
• Add mount point to quota warning message (server#24078)
• Fix default internal expiration date enforce (server#24082)
• Don’t throw on SHOW VERSION query (server#24149)
• Bump dompurify to 2.2.2 (server#24154)
• Fix default internal expiration date (server#24161)
• Bump lodash from 4.17.14 to 4.17.20 (firstrunwizard#435)
• Add dependabot-approve-merge (firstrunwizard#440)
• Pass preview availability too (photos#512)
• Bump lodash from 4.17.14 to 4.17.20 (recommendations#321)
• Bump dependencies to version in range (text#1161)
• Validate link on click (text#1168)
• Bump eslint-plugin-standard from 4.0.2 to 4.1.0 (text#1173)
• Bump babel-loader from 8.1.0 to 8.2.1 (text#1174)

Version 18.0.10 October 9 2020

Download: nextcloud-18.0.10.tar.bz2 or nextcloud-18.0.10.zip
Check the file integrity with:
MD5: nextcloud-18.0.10.tar.bz2.md5 or nextcloud-18.0.10.zip.md5
SHA256: nextcloud-18.0.10.tar.bz2.sha256 or nextcloud-18.0.10.zip.sha256
SHA512: nextcloud-18.0.10.tar.bz2.sha512 or nextcloud-18.0.10.zip.sha512
PGP (Key): nextcloud-18.0.10.tar.bz2.asc or nextcloud-18.0.10.zip.asc

Changes

• Show better quota warning for group folders and external storage (server#22443)
• Better error message when blocked by access control (server#22592)
• LDAP: remove unused methods and DB values (server#22631)
• Fix installing on Oracle (server#22653)
• Do not fail if share for mountpoint is no longer available (server#22714)
• Don’t use SELECT DISTINCT when to_char() is used in a WHERE statement (server#22721)
• Allow additional personal settings via normal registration (server#22743)
• Fix detecting text/x-php mimetype and secure mimetype mapping (server#22746)
• Fix reading empty files from objectstorage (server#22754)
• Fix s3 doesDirectoryExist check for empty directories (server#22777)
• Don’t fail if copying a file of 0 byte size (server#22779)
• Makes LDAP’s group updater dispatch type events (server#22781)
• Fix share transfer of single files and on the transfered node (server#22802)
• Mitigate encoding issue with user principal uri (server#22841)
• Revoke secsignid (server#22894)
• Fix: file quota was not applied in all cases (server#22900)
• Improve handling of out of space errors for smb (server#22927)
• Fix settings chunk loading (server#22942)
• Flow: do not hide “matches” and “does not match” checkers (server#22989)
• Never copy the share link when the password is forced (server#23003)
• Show federation and email results also with exact user match unless c… (server#23088)
• Do not match sharees on an empty email address (server#23091)
• Fix ignoring the correct settings files for translations (server#23139)
• Don’t influence toastify errors and always use white (server#23218)
• Only run the query to get the account data once (server#23222)
• Sync all users to the system addresssbook (server#23227)
• Fix mail table columns to match the activity table (activity#513)
• Bugfix): Protect LogIterator.php from empty array indices (logreader#390)
• Also check responses of 400 errors and so delete unknown devices (notifications#761)
• Fix num_shares_link_no_password for NC >= 15 (serverinfo#249)
• IE11 madness (text#1035)
• Update .l10nignore to exclude bundled JS files (viewer#614)

Version 18.0.9 September 10 2020

Download: nextcloud-18.0.9.tar.bz2 or nextcloud-18.0.9.zip
Check the file integrity with:
MD5: nextcloud-18.0.9.tar.bz2.md5 or nextcloud-18.0.9.zip.md5
SHA256: nextcloud-18.0.9.tar.bz2.sha256 or nextcloud-18.0.9.zip.sha256
SHA512: nextcloud-18.0.9.tar.bz2.sha512 or nextcloud-18.0.9.zip.sha512
PGP (Key): nextcloud-18.0.9.tar.bz2.asc or nextcloud-18.0.9.zip.asc

Changes

• Fix possible leaking scope in Flow (server#22411)
• Fix event icon sizes and text alignment (server#22415)
• Combine body-login rules in theming and fix twofactor and guest styling on bright colors (server#22428)
• Add php docs build script (server#22449)
• Fix clicks on actions menu of non opaque file rows in acceptance tests (server#22504)
• Set the mount id before calling storage wrapper (server#22518)
• Fix S3 error handling (server#22522)
• Only disable zip64 if the size is known (server#22538)
• Change free space calculation (server#22554)
• Do not keep the part file if the forbidden exception has no retry set (server#22561)
• Fix app password updating out of bounds (server#22570)
• Bump node-sass from 4.13.0 to 4.13.1 in /build (server#22572)
• Upgrade icewind/smb to 3.2.7 (server#22582)
• Use the correct root to determinate the webroot for the resource (server#22585)
• Bump node-sass from 4.13.0 to 4.13.1 (server#22595)
• Bump http-proxy from 1.17.0 to 1.18.1 in /build (server#22602)
• Bump node-sass from 4.13.0 to 4.13.1 (firstrunwizard#398)
• Bump node-sass from 4.13.0 to 4.13.1 (notifications#731)
• Bump node-sass from 4.13.0 to 4.13.1 (recommendations#279)
• Catch StorageNotAvailable exceptions (text#1002)
• Harden read only check on public endpoints (text#1018)
• Sessionid is an int (text#1030)
• Only overwrite Ctrl-f when text is focussed (text#991)
• Set the X-Requested-With header on dav requests (viewer#586)

Version 18.0.8 August 28 2020

Download: nextcloud-18.0.8.tar.bz2 or nextcloud-18.0.8.zip
Check the file integrity with:
MD5: nextcloud-18.0.8.tar.bz2.md5 or nextcloud-18.0.8.zip.md5
SHA256: nextcloud-18.0.8.tar.bz2.sha256 or nextcloud-18.0.8.zip.sha256
SHA512: nextcloud-18.0.8.tar.bz2.sha512 or nextcloud-18.0.8.zip.sha512
PGP (Key): nextcloud-18.0.8.tar.bz2.asc or nextcloud-18.0.8.zip.asc

Changes

• Do not filter id matching userId on non-user-share shares (server#20842)
• Lower minimum search length to 2 characters (server#21783)
• Improve error reporting on sharing errors (server#21807)
• Do not log RequestedRangeNotSatisfiable exceptions in DAV (server#21841)
• Fix typo in revokeShare() (server#21877)
• Encryption is ready if master key is enabled (server#21936)
• Update icewind/smb to 3.2.6 (server#21956)
• Fix parsing of language code (server#21961)
• Allow admin to configure the max trashbin size (server#21976)
• Fix risky test in twofactor_backupcodes (server#21979)
• Fix moving files from external storage to object store trashbin (server#21982)
• Ignore whitespace in sharing by mail (server#21992)
• Properly fetch translation for remote wipe confirmation dialog (server#22035)
• Bump elliptic from 6.5.2 to 6.5.3 (server#22051)
• Correctly remove usergroup shares on removing group members (server#22054)
• Fix PHPUnit deprecation warnings (server#22058)
• Fix height to big for iPhone when using many apps (server#22071)
• Reuse cache for directory mtime/size if filesystem changes can be ignored (server#22172)
• Remove unexpected argument (server#22179)
• Do not exit if available space cannot be determined on file transfer (server#22182)
• Fix empty ‘more’ apps navigation after installing an app (server#22184)
• Fix default log_rotate_size in config.sample.php (server#22191)
• Shortcut in reading nested group members when IN_CHAIN is available (server#22204)
• Fix chmod on file descriptor (server#22207)
• SSE enhancement of file signature (server#22212)
• Add app config option to disable “Email was changed by admin” activity (server#22233)
• Delete chunks if the move on an upload failed (server#22240)
• Fix browser freeze on long password input (server#22268)
• Show disabled user count in occ user:report (server#22301)
• Allow to disable share emails (server#22306)
• Fixing a logged deprecation message (server#22310)
• Only copy the link when updating a share or no password was forced (server#22338)
• Remove encryption option for nextcloud external storage (server#22343)
• Update the CRL (server#22388)
• Fix missing FN from federated contact (server#22401)
• Make legacy format opt-in (server#22405)
• Bump elliptic from 6.5.2 to 6.5.3 (firstrunwizard#368)
• Bump elliptic from 6.4.1 to 6.5.3 (notifications#710)
• Bump elliptic from 6.5.2 to 6.5.3 (recommendations#255)
• Fix babel (viewer#552)
• Bump elliptic from 6.5.2 to 6.5.3 (viewer#556)

Version 18.0.7 July 17 2020

Download: nextcloud-18.0.7.tar.bz2 or nextcloud-18.0.7.zip
Check the file integrity with:
MD5: nextcloud-18.0.7.tar.bz2.md5 or nextcloud-18.0.7.zip.md5
SHA256: nextcloud-18.0.7.tar.bz2.sha256 or nextcloud-18.0.7.zip.sha256
SHA512: nextcloud-18.0.7.tar.bz2.sha512 or nextcloud-18.0.7.zip.sha512
PGP (Key): nextcloud-18.0.7.tar.bz2.asc or nextcloud-18.0.7.zip.asc

Changes

• Only use background fade if nextcloud blue is set (server#21309)
• Clear LDAP cache after user deletion (server#21334)
• Update icewind/smb to 3.2.5 (server#21343)
• Pass the proper share permissions to the create share call (server#21355)
• Increase max-height on button in welcome email template (server#21381)
• Increase timeout of the appstore requests (server#21388)
• Disable Client-Side Monitoring on AWS storage (server#21448)
• Clean up auth tokens when user is deleted (server#21471)
• Don’t log Keys (server#21486)
• Acceptence tests shall specify which branch to pick when cloning apps (server#21494)
• Give up after 10 seconds in SCSS timeout (server#21496)
• Fix #21285 as oneliner (server#21499)
• Clarify that the email is always shared within the instance (server#21522)
• Fix autocomplete for LDAP with `shareapi_only_share_with_group_members` on (server#21539)
• Fix modal support for vue apps and dark theme (server#21543)
• Fix language in share notes email for users (server#21551)
• Fix obsolete usage of OCdialogs (server#21569)
• Relax permissions mask check for detecting part file rename (server#21572)
• Fix share permission checkboxes enabled when permissions can not be set (server#21575)
• Remove rescanDelay from directory mtime (server#21585)
• Fix IPv6 remote addresses from X_FORWARDED_FOR headers before validating (server#21654)
• Manual backport of “Check if debugMode is defined before using it” #21657 (server#21661)
• Revert “Do not read certificate bundle from data dir by default” (server#21670)
• Changes the Birthday calendar color to slightly brighter one (server#21702)
• Add a clear message why you could end up there (server#21752)
• Use the correct mountpoint to calculate (server#21773)
• Set the moment locale even earlier (server#21781)
• Do not keep loading the slide list on every reopen (firstrunwizard#352)
• More buffer to the key size (notifications#673)
• Delete duplicates of the same push token hash (notifications#677)
• Fix wordwrap issue regression from #540, fix #679 (notifications#685)
• Don’t push without internet connection (notifications#695)
• Also check for internet on delete push (notifications#698)
• Fix NC18 deprecation (password_policy#107)

Version 18.0.6 June 10 2020

Download: nextcloud-18.0.6.tar.bz2 or nextcloud-18.0.6.zip
Check the file integrity with:
MD5: nextcloud-18.0.6.tar.bz2.md5 or nextcloud-18.0.6.zip.md5
SHA256: nextcloud-18.0.6.tar.bz2.sha256 or nextcloud-18.0.6.zip.sha256
SHA512: nextcloud-18.0.6.tar.bz2.sha512 or nextcloud-18.0.6.zip.sha512
PGP (Key): nextcloud-18.0.6.tar.bz2.asc or nextcloud-18.0.6.zip.asc

Changes

• Simplify getGroups, fixing wrong chunking logic (server#21129)
• Fix password changes in link and mail shares (server#21160)
• Do not only catch Exceptions but any Throwable during rmt share delete (server#21201)
• Fix the Talk verification (server#21211)
• Prevent harder to share your root (server#21227)
• Fix password reset saying Admin changed my password when reset from login page (server#21230)
• Fix empty event UUID reminder notifications (server#21248)
• Init fileinfo for all tabs (server#21306)
• Allow downloads in sandboxed iframe (files_pdfviewer#188)

Version 18.0.5 June 4 2020

Download: nextcloud-18.0.5.tar.bz2 or nextcloud-18.0.5.zip
Check the file integrity with:
MD5: nextcloud-18.0.5.tar.bz2.md5 or nextcloud-18.0.5.zip.md5
SHA256: nextcloud-18.0.5.tar.bz2.sha256 or nextcloud-18.0.5.zip.sha256
SHA512: nextcloud-18.0.5.tar.bz2.sha512 or nextcloud-18.0.5.zip.sha512
PGP (Key): nextcloud-18.0.5.tar.bz2.asc or nextcloud-18.0.5.zip.asc

Changes

• Dont show remote and email options if we have an exact match for local user email (server#20574)
• Array offset error due to empty file versions array (server#20578)
• Set fileInfo correctly for LegacyTabs (server#20588)
• Fix Sharing recommendation user display (server#20596)
• Fix IE11 upload fallback methods (server#20602)
• Allow specifying a default expiration date (server#20635)
• Fix security header setting in .htaccess by adding ‘onsuccess unset’ (server#20647)
• Only catch anonymous OPTIONS for Office (server#20680)
• Adhere to EMailTemplate interface in constructor call. (server#20682)
• Don’t remove last user in ldap group when limit is -1 (server#20701)
• Add tests for update notification controller for non-default updater … (server#20703)
• Allow to navigate to others with access from the sidebar (server#20740)
• Add a wrapper to fall back to the share owner on public shares (server#20747)
• Fix public layout header title & description (server#20750)
• Fix Argon2 options checks (server#20763)
• Dont try to update storage mtime if we can’t get the mtime (server#20774)
• Exclude groups from sharing: Skip delete groups (server#20802)
• Correctly hide table headers in filepicker (server#20805)
• Clarified trash bin retention by storage shortage override in config.sample.php (server#20808)
• Fix filtering our owner & current user from shares (server#20830)
• Fix languages empty array (server#20877)
• Add locking to resolve concurent move to trashbin conflicts (server#20881)
• Fix color-text-maxcontrast not passing WCAG AA (server#20886)
• Use random_bytes (server#20924)
• Proxy server could cache http response when it is not private (server#20955)
• Enable fseek for files in S3 storage (server#20965)
• Bump handlebars from 4.5.3 to 4.6.0 in /build (server#20975)
• Update icewind/smb to 3.2.4 (server#20992)
• Fix issues with Keystone auth v3 in files_external app (server#20994)
• Don’t load text file preview when text app is available (Fixes: #20615) (server#20996)
• Remove entries from locales.json incompatible with punic (server#21030)
• Caching and compression for app store requests (server#21053)
• Do not read certificate bundle from data dir by default (server#21096)
• Fix resharing of federated shares that were created out of links (server#21109)
• Use the loginname to verify the old password in user password changes (server#21115)
• Make the translation sanitization optional (server#21127)
• Move the password confirmation form template to post (server#21132)
• Fix password changes in link and mail shares (server#21152)
• Revert “Fix password changes in link and mail shares” (server#21159)
• Use the usermountcache to get all users who have access to a file (activity#457)
• Prevent download, printing and text selection when download is hidden (files_pdfviewer#181)
• Bump handlebars from 4.5.3 to 4.6.0 (notifications#647)
• Revert “Delete menu-sidebar-white.svg” (viewer#477)

Version 18.0.4 April 24 2020

Download: nextcloud-18.0.4.tar.bz2 or nextcloud-18.0.4.zip
Check the file integrity with:
MD5: nextcloud-18.0.4.tar.bz2.md5 or nextcloud-18.0.4.zip.md5
SHA256: nextcloud-18.0.4.tar.bz2.sha256 or nextcloud-18.0.4.zip.sha256
SHA512: nextcloud-18.0.4.tar.bz2.sha512 or nextcloud-18.0.4.zip.sha512
PGP (Key): nextcloud-18.0.4.tar.bz2.asc or nextcloud-18.0.4.zip.asc

Changes

• Use contacts name on federated activities (server#19879)
• Allow to edit admin/own user in the user management (server#19882)
• Fix hostname in Apple configuration profile (server#19884)
• Don’t break when one remote share is down (server#19886)
• Properly emit Viewer event on files and files_sharing (server#19897)
• Get correct mimetype on objectstores (server#19916)
• Properly respect hide download on sharebymail (server#19921)
• Use placeholder values for password fields in external storage webui (server#19922)
• Do not use the instance name as user part of from mail addresses (server#19924)
• Don’t allow anchors and queries in remote urls (server#19933)
• Fix external storage controller tests (server#19940)
• Bump acorn from 6.3.0 to 6.4.1 (server#19945)
• Properly set ‘hide_download’ as integer (server#19950)
• Fix safari useragent for versions with 3 digits (server#19966)
• Fix default action for deleted shares (server#19982)
• Default value of lookupServerEnabled should be the same everywhere (server#19998)
• Only do regular polling of storage statistics if session_keepalive is enabled (server#19999)
• Fix single “ScopeContext” passed to “setScopes” (server#20001)
• Fix invalid instantiation of TemplateResponse if client not found (server#20008)
• Update the target when it isempty after sharing (server#20016)
• Remove the requirement that everything that looks like a placeholder … (server#20021)
• Handle long dav property paths by hashing them (server#20030)
• Allow the video player on the hide download (server#20044)
• Fixes auto-detecting UUID attributes (server#20046)
• Force compatible dependency versions in acceptance tests (server#20051)
• Adjust acceptance tests to incoming shares being accepted by default (server#20060)
• Fix OCA\DAV\CalDAV\CalDavBackend search $options (server#20102)
• Fix dav browser error page not styled (server#20104)
• Fix language multiselect action (server#20136)
• Remove admin_notifications since it is obsolete since Nextcloud 14 (server#20140)
• Change quota design (server#20144)
• RefreshWebcalService: randomly generate calendar-object uri (server#20148)
• Close updatenotification channel selector on click outside (server#20155)
• Add app config to disable user flows (server#20158)
• Auto accept group shares for users added to a group (server#20161)
• Use global used space in quota wrappen when external storage is included (server#20163)
• Check the user on remote wipe (server#20166)
• Bugfix – Prevent PHP Warning for count on null on LDAP (server#20175)
• Bump version on stable18 (server#20195)
• Actually check if the owner is not null (server#20202)
• Remove Acrobat logo from PDF filetype icon (server#20238)
• Dont always use the current users quota when calculating storage info (server#20258)
• Silence LDAP deprecation logs in NC 18 (server#20274)
• Check for empty authorization headers for office requests (server#20282)
• Fixes the return type of BeforeUserLoggedInEvent (server#20296)
• Properly catch NoUserException during upload cleanup (server#20334)
• Catch NotFoundException when getting the user folder (server#20335)
• Try to use the display name of file transfers (server#20366)
• Clear comment on successful post (server#20382)
• Fix systemtags overflow (server#20387)
• Update icewind/smb to 3.2.3 (server#20405)
• Add text restore after restore icon (server#20407)
• Use a normal string to translate. (server#20420)
• Make sure group management works with all types of group names (server#20433)
• Properly display share error messages (server#20471)
• Handle unset owner in sharing (server#20483)
• Update root.crl due to revocation of spgverein.crt (server#20485)
• Close the streams in `writeStream` even when there is an exception (server#20493)
• Fix absolute redirect (server#20495)
• Provide the proper language to the mailer (server#20512)
• Do not advertise nulled userId for for systemwide credentials (server#20516)
• Allow to edit admin user (server#20530)
• Update list of multiple properties (server#20531)
• Fix jsunit tests (server#20548)
• Set fileInfo correctly for LegacyTabs (server#20588)
• Fix Sharing recommendation user display (server#20596)
• Fix IE11 upload fallback methods (server#20602)
• Email activity is missing information (activity#441)
• Catch new notfound exception while trying to get owner (activity#446)
• Skip notifications for users with invalid email address. (activity#449)
• Bump pdf.js to 2.1.266 (files_pdfviewer#169)
• Bump acorn from 7.1.0 to 7.1.1 (firstrunwizard#301)
• Hide slide for app store if disabled (firstrunwizard#313)
• Bump acorn from 6.4.0 to 6.4.1 (notifications#592)
• Request the permissions for notifications via user interaction (notifications#608)
• Bump acorn from 6.4.0 to 6.4.1 (recommendations#196)
• Update DefaultOs.php (serverinfo#189)
• Public pages compatibility (viewer#422)
• Move cypress to gh actions (viewer#423)
• Bump acorn from 5.7.3 to 5.7.4 (viewer#425)
• Fix trying to open the sidebar when not available (viewer#428)
• Add public testing (viewer#435)
• Fix public preview url cropping (viewer#450)
• Fix babel transpile settings (viewer#453)
• Await sidebar (viewer#467)
• Change sidebar icon to proper understandable one (viewer#469)
• Fix sidebar full state (viewer#470)

Version 18.0.3 March 23 2020

Download: nextcloud-18.0.3.tar.bz2 or nextcloud-18.0.3.zip
Check the file integrity with:
MD5: nextcloud-18.0.3.tar.bz2.md5 or nextcloud-18.0.3.zip.md5
SHA256: nextcloud-18.0.3.tar.bz2.sha256 or nextcloud-18.0.3.zip.sha256
SHA512: nextcloud-18.0.3.tar.bz2.sha512 or nextcloud-18.0.3.zip.sha512
PGP (Key): nextcloud-18.0.3.tar.bz2.asc or nextcloud-18.0.3.zip.asc

Changes

Security update

Version 18.0.2 March 13 2020

Download: nextcloud-18.0.2.tar.bz2 or nextcloud-18.0.2.zip
Check the file integrity with:
MD5: nextcloud-18.0.2.tar.bz2.md5 or nextcloud-18.0.2.zip.md5
SHA256: nextcloud-18.0.2.tar.bz2.sha256 or nextcloud-18.0.2.zip.sha256
SHA512: nextcloud-18.0.2.tar.bz2.sha512 or nextcloud-18.0.2.zip.sha512
PGP (Key): nextcloud-18.0.2.tar.bz2.asc or nextcloud-18.0.2.zip.asc

Changes

• Disable timeout on app install via cli (server#19439)
• Show proper file name when fetching details fails (server#19441)
• Don’t create invalid users (server#19451)
• When we receive intentional empty whats new info, do not try to show it (server#19470)
• Reduce flow logging at INFO level, move to DEBUG (server#19481)
• Continue with next foreach iteration (server#19516)
• Allow to overwrite the path on the cache event (server#19522)
• Move RefreshWebcalJob logic to a proper service so that it may be called independently (server#19573)
• Make sure the secondary view registered for systemtags has an id (server#19574)
• Strip of users home path from share api message (server#19591)
• FIx logging in accessibility controller (server#19607)
• Change the route generation of AuthPublicShareController.php (server#19610)
• Replace tab character with space (server#19612)
• Remove noise from detectUuid and cache results (server#19624)
• Make sure that the transfer details are present in the database during the cron run (server#19628)
• Fix hover state color of drag-n-drop with theming and dark mode (server#19630)
• Correctly trim long cyrillic note (server#19636)
• Hash event UID to make sure it’s not too long for PushProvider notifications (server#19639)
• Theme search results (server#19690)
• Also cache avatars when it’s not allowed (server#19696)
• Revive the “send email to new users” toggle for the user form (server#19702)
• Fix non-centered no javascript message (server#19715)
• Allow single file downloads so the video player works again (server#19729)
• Add message for DoesNotExistException (server#19744)
• Fetch translate for Tags from files app (server#19762)
• Various user settings fixes (server#19767)
• Do not allow transfer ownership when the user isn’t the owner (server#19773)
• Introduce a default refresh rate app setting for calendar subscriptions (server#19784)
• Fix regex for office documents (server#19800)
• Fix filename and popover menu misalignment (server#19802)
• Fix avatar in file list for users with an @ in the uid (server#19803)
• Fix “Error loading the shares list TypeError: “this is undefined”” fo… (server#19824)
• Prevent self-xss via invalid mysql user name on install screen (server#19830)
• Correctly set up Application class (activity#430)
• Chunk deleting of rows from the activity table (activity#435)
• Fix 18 public folder (files_videoplayer#153)
• Move to github actions (files_videoplayer#156)
• Fix push notifications for multibyte notifications (notifications#576)
• Prevent delete for impersonated users (notifications#582)
• Delete unknown devices (notifications#583)
• Fix long message (notifications#584)
• Ignore unavailable storages while scanning for albums (photos#211)
• Don’t flatten out albums (photos#213)
• Avoid line breaks after long device names in “df” command (serverinfo#177)
• Do not print errors if time server config is not available (serverinfo#178)
• Change sidebar file while changing file in slideshow (viewer#405)