Nextcloud Server Changelog

We recommend you follow our Release Channels to always have the latest and most secure Nextcloud Server version which fits your needs.

Go directly to the latest maintenance release of:

• Nextcloud 18
• Nextcloud 17
• Nextcloud 16
• Nextcloud 15 (unsupported!)
• Nextcloud 14 (unsupported!)
• Nextcloud 13 (unsupported!)
• Nextcloud 12 (unsupported!)
• Nextcloud 11 (unsupported!)
• Nextcloud 10 (unsupported!)
• Nextcloud 9 (unsupported!)

Version 18.0.3 March 23 2020

Download: nextcloud-18.0.3.tar.bz2 or nextcloud-18.0.3.zip
Check the file integrity with:
MD5: nextcloud-18.0.3.tar.bz2.md5 or nextcloud-18.0.3.zip.md5
SHA256: nextcloud-18.0.3.tar.bz2.sha256 or nextcloud-18.0.3.zip.sha256
SHA512: nextcloud-18.0.3.tar.bz2.sha512 or nextcloud-18.0.3.zip.sha512
PGP (Key): nextcloud-18.0.3.tar.bz2.asc or nextcloud-18.0.3.zip.asc

Changes

Security update

Version 18.0.2 March 13 2020

Download: nextcloud-18.0.2.tar.bz2 or nextcloud-18.0.2.zip
Check the file integrity with:
MD5: nextcloud-18.0.2.tar.bz2.md5 or nextcloud-18.0.2.zip.md5
SHA256: nextcloud-18.0.2.tar.bz2.sha256 or nextcloud-18.0.2.zip.sha256
SHA512: nextcloud-18.0.2.tar.bz2.sha512 or nextcloud-18.0.2.zip.sha512
PGP (Key): nextcloud-18.0.2.tar.bz2.asc or nextcloud-18.0.2.zip.asc

Changes

• [stable18] disable timeout on app install via cli (server#19439)
• [stable18] Show proper file name when fetching details fails (server#19441)
• [stable18] Don't create invalid users (server#19451)
• [stable18] when we receive intentional empty whats new info, do not try to show it (server#19470)
• [stable18] Reduce flow logging at INFO level, move to DEBUG (server#19481)
• [stable18] Continue with next foreach iteration (server#19516)
• [stable18] Allow to overwrite the path on the cache event (server#19522)
• [stable18] Move RefreshWebcalJob logic to a proper service so that it may be called independently (server#19573)
• [stable18] Make sure the secondary view registered for systemtags has an id (server#19574)
• [stable18] Strip of users home path from share api message (server#19591)
• [stable18] FIx logging in accessibility controller (server#19607)
• [stable18] Change the route generation of AuthPublicShareController.php (server#19610)
• Replace tab character with space (server#19612)
• [stable18] remove noise from detectUuid and cache results (server#19624)
• [stable18] Make sure that the transfer details are present in the database during the cron run (server#19628)
• [stable18] Fix hover state color of drag-n-drop with theming and dark mode (server#19630)
• [stable18] Correctly trim long cyrillic note (server#19636)
• [stable18] Hash event UID to make sure it's not too long for PushProvider notifications (server#19639)
• [stable18] Theme search results (server#19690)
• [stable18] Also cache avatars when it's not allowed (server#19696)
• [stable18] Revive the "send email to new users" toggle for the user form (server#19702)
• [stable18] Fix non-centered no javascript message (server#19715)
• [stable18] Allow single file downloads so the video player works again (server#19729)
• [stable18] Add message for DoesNotExistException (server#19744)
• Fetch translate for Tags from files app (server#19762)
• [stable18] Various user settings fixes (server#19767)
• [stable18] Do not allow transfer ownership when the user isn't the owner (server#19773)
• [stable18] Introduce a default refresh rate app setting for calendar subscriptions (server#19784)
• [stable18] Fix regex for office documents (server#19800)
• [stable18] Fix filename and popover menu misalignment (server#19802)
• [stable18] Fix avatar in file list for users with an @ in the uid (server#19803)
• [stable18] Fix "Error loading the shares list TypeError: "this is undefined"" fo… (server#19824)
• [stable18] Prevent self-xss via invalid mysql user name on install screen (server#19830)
• [stable18] Correctly set up Application class (activity#430)
• [stable18] Chunk deleting of rows from the activity table (activity#435)
• [stable18] Fix 18 public folder (files_videoplayer#153)
• [stable18] Move to github actions (files_videoplayer#156)
• [stable18] Fix push notifications for multibyte notifications (notifications#576)
• [stable18] Prevent delete for impersonated users (notifications#582)
• [stable18] Delete unknown devices (notifications#583)
• [stable18] Fix long message (notifications#584)
• [stable18] ignore unavailable storages while scanning for albums (photos#211)
• [stable18] Don't flatten out albums (photos#213)
• [stable18] Avoid line breaks after long device names in "df" command (serverinfo#177)
• [stable18] Do not print errors if time server config is not available (serverinfo#178)
• [stable18] Change sidebar file while changing file in slideshow (viewer#405)

Version 18.0.1 February 13 2020

Download: nextcloud-18.0.1.tar.bz2 or nextcloud-18.0.1.zip
Check the file integrity with:
MD5: nextcloud-18.0.1.tar.bz2.md5 or nextcloud-18.0.1.zip.md5
SHA256: nextcloud-18.0.1.tar.bz2.sha256 or nextcloud-18.0.1.zip.sha256
SHA512: nextcloud-18.0.1.tar.bz2.sha512 or nextcloud-18.0.1.zip.sha512
PGP (Key): nextcloud-18.0.1.tar.bz2.asc or nextcloud-18.0.1.zip.asc

Changes

• [stable18] Fix cursor on disabled contenteditable divs (server#18961)
• Bump style-loader from 1.1.2 to 1.1.3 (server#18982)
• [stable18] Increase the timeout for app downloads (server#19025)
• [stable18] Fix loaded controller check (server#19060)
• [stable18] Allow to await the sidebar (server#19089)
• [stable18] expose Argon2 options (as we did for bcrypt) (server#19094)
• [stable18] fix multiselect actions for files (server#19108)
• [stable18] Adjust filelist color handling to new dark theme value (server#19117)
• [stable18] Reduce legacy event log level to debug (server#19118)
• [stable18] New file menu needs to be above the filelist header (server#19119)
• [stable18] Do not invert avatar colors when dark theme is enabled (server#19121)
• [stable18] Use the target for file notifications (server#19149)
• [stable18] Use correct appid for talk (server#19150)
• [stable18] add hub bundle for easy installation on upgraded instances (server#19153)
• [stable18] apps can have polyamorous relationships with bundles (server#19166)
• [stable18] Use themed favicon-fb (server#19189)
• [stable18] Fix "Call to undefined method OCA\\WorkflowEngine\\Entity\\File::t()" (server#19190)
• [stable18] Fix query selector for inverted icons (server#19206)
• [stable18] Do not encode contacts menu mailto links (server#19207)
• [stable18] Give the sharing tab a unique id so it also opens properly on other languages (server#19212)
• [stable18] WebcalRefreshJob: Fix reading refresh rate (server#19228)
• [stable18] Make sure to catch php errors during job execution (server#19269)
• [stable18] Center Buttons (server#19271)
• [stable18] Use the l10n from settings (server#19277)
• [stable18] Use proper andwhere clause (server#19278)
• [stable18] Add move (and firstlogin) option to transferownership service (server#19279)
• [stable18] for the DB ot pick an index specify the object_type (server#19283)
• [stable18] owner transfer multiselect fixes (server#19291)
• [stable18] Allow respecting PASSWORD_DEFAULT (server#19292)
• [stable18] Keep the modification time during decryptFile (server#19297)
• [stable18] Fix data Apache2 .htaccess typo (server#19302)
• [stable18] Fix display of DTEND for multi-day all-day event (server#19308)
• [stable18] do not overwrite global user auth credentials with empty values (server#19315)
• [stable18] Fix occ maintenance:install database connect failure (server#19326)
• [stable18] Fix event type (server#19330)
• [stable18] Array access on int will fail on php7.4 (server#19332)
• [stable18] Make sure the default share provider does not execute for other things (server#19334)
• [stable18] Disable link shares of disabled users (server#19340)
• [stable18] Prevent archieved download on secure view (server#19360)
• [stable18] Log Flow activity (server#19396)
• [stable18] Allow to serve static webm directly (server#19420)
• 18.0.1 final (server#19422)
• [stable18] Allow to serve static mp4 directly (server#19428)
• [stable18] Update master php testing versions (activity#417)
• Update stable18 target versions (activity#418)
• [stable18] Update master php testing versions (files_pdfviewer#164)
• Update stable18 target versions (files_pdfviewer#165)
• Update stable18 target versions (files_texteditor#194)
• Update stable18 target versions (firstrunwizard#274)
• Update stable18 target versions (logreader#313)
• [stable18] Update master php testing versions (nextcloud_announcements#64)
• Update stable18 target versions (nextcloud_announcements#65)
• Update stable18 target versions (notifications#547)
• [stable18] Add linting via github actions (notifications#555)
• [stable18] Support Strict VoIP push notifications for iOS 13 SDK (notifications#565)
• [stable18] Update master php testing versions (password_policy#93)
• Update stable18 target versions (password_policy#94)
• [stable18] Lint with github actions (photos#153)
• [stable18] No more drone. Do it all on github actions (photos#158)
• [stable18] Respect .noimage and .nomedia files (photos#160)
• [stable18] added headers for your photos and favs (photos#172)
• [stable18] Fix/actions (photos#174)
• [stable18] Fix url escaping (photos#175)
• [stable18] Use actions from tutorial (photos#181)
• Update stable18 target versions (privacy#323)
• Update stable18 target versions (recommendations#182)
• Update stable18 target versions (serverinfo#170)
• [stable18] Update master php testing versions (survey_client#104)
• Update stable18 target versions (survey_client#105)
• [stable18] GitHub actions/lint (viewer#368)
• Fix url escaping (viewer#370)
• [stable18] Adjust tests syntax & formatting (viewer#379)
• [stable18] Use actions from tutorial (viewer#385)
• [stable18] Revert "Fix url escaping" (viewer#396)

Version 18.0.0 January 17 2020

Download: nextcloud-18.0.0.tar.bz2 or nextcloud-18.0.0.zip
Check the file integrity with:
MD5: nextcloud-18.0.0.tar.bz2.md5 or nextcloud-18.0.0.zip.md5
SHA256: nextcloud-18.0.0.tar.bz2.sha256 or nextcloud-18.0.0.zip.sha256
SHA512: nextcloud-18.0.0.tar.bz2.sha512 or nextcloud-18.0.0.zip.sha512
PGP (Key): nextcloud-18.0.0.tar.bz2.asc or nextcloud-18.0.0.zip.asc

Changes

Nextcloud Hub is the first completely integrated on-premises content collaboration platform on the market, ready for a new generation of users who expect seamless online collaboration capabilities out of the box.

With this release, we made a change to what we ship. Nextcloud 17 is now Nextcloud Hub 18. Nextcloud Hub comes with a number of new apps which get installed by default on installation (but not shipped as part of the tarball/zip). Nextcloud 17 users can just upgrade as usual to 18, we encourage you to install the new and improved apps like Talk, Calendar, Mail, ONLYOFFICE and more. You will get notified of this recommendation on upgrade!

As this is a major release, the changelog is too long to put here. Users can look at github milestones to find what has been merged. A quick overview of what is new:

• 📁 Files - features an improved sidebar, accepting internal shares & folder owner transfership
  • 🗃 Workspaces brings context to your folders, facilitating collaboration in one place.
  • 🔏 File locking prevents conflicts editing shared files with others
• 🤖 Flow - Brings extensive, easy to use workflow capabilities to Nextcloud. Automatically turn documents in PDFs, send messages to chat rooms and more!
• 📝 ONLYOFFICE - Built in ONLYOFFICE makes collaborative editing of Microsoft Office documents accessible to everyone
• 📸 Photos - A brand new image gallery makes finding, browsing and sharing your images easier than ever before.
• 📅 Calendar 2.0 - Calendar 2.0 books Talk meetings, brings busy view for meetings and resource booking and more
• 📩 Mail - Mail 1.0 recognizes itineraries, handles rich text mails and more
• 🗣 Talk - rewritten user interface brings message delivery notifications, circles support, message replies and flow integration

Read the release announcement for more details.

Version 17.0.5 March 23 2020

Download: nextcloud-17.0.5.tar.bz2 or nextcloud-17.0.5.zip
Check the file integrity with:
MD5: nextcloud-17.0.5.tar.bz2.md5 or nextcloud-17.0.5.zip.md5
SHA256: nextcloud-17.0.5.tar.bz2.sha256 or nextcloud-17.0.5.zip.sha256
SHA512: nextcloud-17.0.5.tar.bz2.sha512 or nextcloud-17.0.5.zip.sha512
PGP (Key): nextcloud-17.0.5.tar.bz2.asc or nextcloud-17.0.5.zip.asc

Changes

Security update

Version 17.0.4 March 13 2020

Download: nextcloud-17.0.4.tar.bz2 or nextcloud-17.0.4.zip
Check the file integrity with:
MD5: nextcloud-17.0.4.tar.bz2.md5 or nextcloud-17.0.4.zip.md5
SHA256: nextcloud-17.0.4.tar.bz2.sha256 or nextcloud-17.0.4.zip.sha256
SHA512: nextcloud-17.0.4.tar.bz2.sha512 or nextcloud-17.0.4.zip.sha512
PGP (Key): nextcloud-17.0.4.tar.bz2.asc or nextcloud-17.0.4.zip.asc

Changes

• Allow inline styles for theming images (server#18580)
• Relax strict getHome behaviour for LDAP users in a shadow state (server#18884)
• Expose Argon2 options (as we did for bcrypt) (server#19095)
• Use themed favicon-fb (server#19188)
• Do not encode contacts menu mailto links (server#19208)
• WebcalRefreshJob: Fix reading refresh rate (server#19229)
• Make sure to catch php errors during job execution (server#19270)
• For the DB ot pick an index specify the object_type (server#19284)
• Fix display of DTEND for multi-day all-day event (server#19309)
• Do not overwrite global user auth credentials with empty values (server#19316)
• Fix occ maintenance:install database connect failure (server#19327)
• Prevent archieved download on secure view (server#19361)
• Show proper file name when fetching details fails (server#19442)
• Don't create invalid users (server#19452)
• When we receive intentional empty whats new info, do not try to show it (server#19471)
• Move RefreshWebcalJob logic to a proper service so that it may be called independently (server#19588)
• Strip of users home path from share api message (server#19592)
• Change the route generation of AuthPublicShareController.php (server#19611)
• Remove noise from detectUuid and cache results (server#19625)
• Fix hover state color of drag-n-drop with theming and dark mode (server#19631)
• Correctly trim long cyrillic note (server#19637)
• Hash event UID to make sure it's not too long for PushProvider notifications (server#19640)
• Theme search results (server#19691)
• Revive the "send email to new users" toggle for the user form (server#19703)
• Fix non-centered no javascript message (server#19716)
• Keep edit permission when toggling share checkbox (server#19768)
• Introduce a default refresh rate app setting for calendar subscriptions (server#19785)
• Add message for DoesNotExistException (server#19816)
• Prevent self-xss via invalid mysql user name on install screen (server#19831)
• Move to github actions (files_videoplayer#157)
• Append the autocomplete results to the dropdown container (gallery#571)
• Support Strict VoIP push notifications for iOS 13 SDK (notifications#566)
• Bump handlebars from 4.1.2 to 4.3.0 (notifications#568)
• Fix push notifications for multibyte notifications (notifications#577)
• Use actions from tutorial (viewer#384)

Version 17.0.3 January 31 2020

Download: nextcloud-17.0.3.tar.bz2 or nextcloud-17.0.3.zip
Check the file integrity with:
MD5: nextcloud-17.0.3.tar.bz2.md5 or nextcloud-17.0.3.zip.md5
SHA256: nextcloud-17.0.3.tar.bz2.sha256 or nextcloud-17.0.3.zip.sha256
SHA512: nextcloud-17.0.3.tar.bz2.sha512 or nextcloud-17.0.3.zip.sha512
PGP (Key): nextcloud-17.0.3.tar.bz2.asc or nextcloud-17.0.3.zip.asc

Changes

• Fix comments search result to work with multibyte strings (server#18399)
• Fix listing users in groups with slash in the name (server#18467)
• Fix Office preview generation (server#18475)
• Use File Node API for more download cases, skip unreadable files (server#18488)
• Restore old behavior allowing to set custom appstore (server#18694)
• Fix broken upgrade caused by undefined method call (server#18706)
• Trash bin: fix exception triggered if no correct fileId is provided. (server#18734)
• Cache group existence early to save useless requests to LDAP (server#18747)
• Do not rerender the selection menu on show (server#18758)
• Set direct login after password reset (server#18792)
• Properly handle resources in ReminderService (server#18880)
• Dont throw undefined index errors for storages that have no owner set (server#18932)
• Always use the latest timestamp for merged activities (server#19014)
• Fix loaded controller check (server#19069)
• When a user was deleted remove them from applicable list, unless... (server#19076)
• AppFetcher: Distinguish between fileName and endpointName (server#19159)
• Use themed favicon-fb (server#19188)
• GitHub actions/lint (viewer#369)

Version 17.0.2 December 20 2019

Download: nextcloud-17.0.2.tar.bz2 or nextcloud-17.0.2.zip
Check the file integrity with:
MD5: nextcloud-17.0.2.tar.bz2.md5 or nextcloud-17.0.2.zip.md5
SHA256: nextcloud-17.0.2.tar.bz2.sha256 or nextcloud-17.0.2.zip.sha256
SHA512: nextcloud-17.0.2.tar.bz2.sha512 or nextcloud-17.0.2.zip.sha512
PGP (Key): nextcloud-17.0.2.tar.bz2.asc or nextcloud-17.0.2.zip.asc

Changes

• Actually return the quote when getting global storage info (server#17851)
• Also set X-OC-Mtime header for files that are smaller than 10MB (server#17858)
• FIX: horizontal scrolling on mobile due to tab accessibility navigation 'skip to content' positioned at a fixed position (server#17883)
• Fix reshare with circle (server#17916)
• Bump icewind/searchdav (server#17919)
• Make timeout a optional parameter (server#17925)
• Check quota before transfer ownership (server#17928)
• Re-acquired expired shared locks on large file uploads (server#17945)
• Pass through ServerNotAvailableException on app init (server#17952)
• Do not check for updates if we have no internet (server#18036)
• Convert more columns to bigint (server#18040)
• Fix installing with MySQL 8.0.4+ (server#18043)
• Uid can be false when the user record does not exit (server#18047)
• Update the CRL (server#18050)
• Make chunksize (used to check for gone LDAP users) configurable (server#18054)
• Remove objectstore credentials (server#18075)
• Incorrect integer value: '' for column 'password_invalid' while migra… (server#18100)
• Trim the login name (server#18156)
• Delay creation of the cert bundle (server#18186)
• Handle token insert conflicts (server#18189)
• Throw an invalid token exception is token is marked outdated (server#18198)
• Backport #18120 (server#18205)
• Mark "Talk" active on /call/token URLs (server#18221)
• Allow to unfavorite all files (server#18247)
• Hide the tooltip if the list row is rerendered (server#18252)
• Move overwritehost check to isTrustedDomain (server#18306)
• Convert various columns in oc_mounts to bigint (server#18307)
• Do not disable authentication apps (server#18332)
• Sharee API GS fixes (server#18337)
• Handle IPv6 addresses with an explict incoming interface at the end (server#18352)
• Adding share type circles (server#18355)
• Fix restoring shared versions (server#18358)
• Support more IPv6 addresses in the RefreshWebcalJob (server#18366)
• Bump the CRL (server#18375)
• Allow to detect mimetype by content (server#18386)
• Bump serialize-javascript and handlebars (server#18419)
• Update icewind/searchdav to 1.0.2 (3rdparty#351)
• Is_dir can be null on blacklisted files (activity#407)
• Remove debug log (activity#412)
• Stable17 Use @nextcloud/axios so the csrf token gets refreshed (notifications#471)
• Fix header icon hover & focus feedback (notifications#495)
• Fix cutting of multibyte characters (notifications#499)
• Do not send push notifications when nothing was deleted (notifications#506)

Version 17.0.1 November 9 2019

Download: nextcloud-17.0.1.tar.bz2 or nextcloud-17.0.1.zip
Check the file integrity with:
MD5: nextcloud-17.0.1.tar.bz2.md5 or nextcloud-17.0.1.zip.md5
SHA256: nextcloud-17.0.1.tar.bz2.sha256 or nextcloud-17.0.1.zip.sha256
SHA512: nextcloud-17.0.1.tar.bz2.sha512 or nextcloud-17.0.1.zip.sha512
PGP (Key): nextcloud-17.0.1.tar.bz2.asc or nextcloud-17.0.1.zip.asc

Changes

• Always use the folder icon depending on the mount type if not a share mount (server#17156)
• Fix "create folder" icon overlaying home icon (server#17219)
• Fix directory detection for s3 (server#17273)
• Fix user with id 0 to be able to comment (server#17274)
• Handle moveFromStorage within the same storage even when storage wrap… (server#17277)
• Dont delete cache entries if deleting an object from object store failed (server#17281)
• Correctly detect the mimetype from uploads (server#17295)
• Add (hidden) option to configure smb timeout (server#17298)
• Position fixed for .toastify.toast (server#17300)
• Fix fetching additional search results on scrolling down (server#17305)
• Bring the default font size up to 15px (server#17309)
• Use handlebars from node_modules (on CI) (server#17348)
• Reduce adressbook change events and handling (server#17351)
• Fix typo in "which" (server#17358)
• Fix updating and deleting authtokens (server#17415)
• Allow removing federated shares of locally reshared files (server#17418)
• Fix oauth client redirect (server#17438)
• Don't call basename on null (server#17444)
• Fix axios csrf token update event (server#17453)
• Use @nextcloud/axios to keep the CSRF token in sync (server#17455)
• Kill ui-regression ci job (server#17457)
• Force hide tooltips on sidebar close (server#17493)
• Only cache the mimetype if the file exists (server#17538)
• Set the proper filename for version downloads (server#17541)
• Load additional scripts on help page (server#17578)
• Let SCSS cleanup only run once (server#17579)
• Pass on direct query parameter during login (server#17581)
• Added documentation links on settings pages (server#17589)
• Include the share in the Files_Sharing::loadAdditionalScripts event (server#17597)
• Treat LDAP error 50 as auth issue, prevents lost server connection errors (server#17617)
• Hide strange Everyone and Disabled group numbers with LDAP (server#17621)
• Fix browser back button (server#17638)
• Fix filename overlapping on mobile (server#17676)
• Harden middleware check (server#17681)
• Fix jsConfigHelper lang/locale mixup (server#17686)
• Fix weird KDE bug with loginflowv2 (server#17688)
• Make sure limit is never negative (server#17716)
• Fix DAV mimetype search (server#17731)
• Return null from migration to match with typehint (server#17742)
• Do not show 'Get your own free account' on services under subscription (server#17748)
• Fix action menu on mobile (server#17766)
• Bring back external storage group select delete (server#17767)
• Switch to Files Node API for zip generation (server#17840)
• Use correct route to generate (nextcloud_announcements#56)
• Name of the collector is `Php`. (survey_client#98)
• Update version on master (viewer#232)
• Bump eslint-plugin-node from 9.2.0 to 10.0.0 (viewer#235)
• Bump @babel/core from 7.5.5 to 7.6.0 (viewer#236)
• Bump @babel/preset-env from 7.5.5 to 7.6.0 (viewer#237)
• Bump webpack-cli from 3.3.7 to 3.3.8 (viewer#238)
• Bump webpack from 4.39.3 to 4.40.1 (viewer#242)
• Bump webpack from 4.40.1 to 4.40.2 (viewer#245)
• Bump webpack-cli from 3.3.8 to 3.3.9 (viewer#250)
• Bump eslint-config-nextcloud from 0.0.5 to 0.0.6 (viewer#258)
• Bump url-loader from 2.1.0 to 2.2.0 (viewer#259)

Version 17.0.0 September 30 2019

Download: nextcloud-17.0.0.tar.bz2 or nextcloud-17.0.0.zip
Check the file integrity with:
MD5: nextcloud-17.0.0.tar.bz2.md5 or nextcloud-17.0.0.zip.md5
SHA256: nextcloud-17.0.0.tar.bz2.sha256 or nextcloud-17.0.0.zip.sha256
SHA512: nextcloud-17.0.0.tar.bz2.sha512 or nextcloud-17.0.0.zip.sha512
PGP (Key): nextcloud-17.0.0.tar.bz2.asc or nextcloud-17.0.0.zip.asc

Changes

Nextcloud 17 introduces a series of secure collaboration features including a collaborative text editor, remote wipe, updated secure view, improved two-factor-authentication and easier access than ever with deeper integration of large-scale storage like S3 and IBM Spectrum Scale.

As this is a major release, the changelog is too long to put here. Users can look at github milestones to find what has been merged.

A quick overview of what is new:

• 💣 Remote Wipe allows users and administrators to forcibly clean files from remote devices, for example in case they are stolen.
• 📝 Nextcloud Text, our new distraction-free, collaborative rich text editor
• 🔒 Improvements to secure view like enforcable watermarks enable virtual data room use
• 🔐 Setup two-factor authentication after first login, admins can create one-time login tokens in the web UI and delegate this to group admins
• 📧 secure mailbox in Outlook Add-in
• 👥 LDAP write support makes it possible to manage users from Nextcloud
• 💽 S3 versioning support, IBM Spectrum Scale integration and Global Scale with Collabora Online

Read the release announcement and blogs it links to for more details.

Version 16.0.9 March 13 2020

Download: nextcloud-16.0.9.tar.bz2 or nextcloud-16.0.9.zip
Check the file integrity with:
MD5: nextcloud-16.0.9.tar.bz2.md5 or nextcloud-16.0.9.zip.md5
SHA256: nextcloud-16.0.9.tar.bz2.sha256 or nextcloud-16.0.9.zip.sha256
SHA512: nextcloud-16.0.9.tar.bz2.sha512 or nextcloud-16.0.9.zip.sha512
PGP (Key): nextcloud-16.0.9.tar.bz2.asc or nextcloud-16.0.9.zip.asc

Changes

• Respect shareapi_allow_share_dialog_user_enumeration in Principal bac… (server#18230)
• Relax strict getHome behaviour for LDAP users in a shadow state (server#18885)
• Expose Argon2 options (as we did for bcrypt) (server#19096)
• Do not encode contacts menu mailto links (server#19209)
• For the DB ot pick an index specify the object_type (server#19285)
• Fix display of DTEND for multi-day all-day event (server#19310)
• Prevent archieved download on secure view (server#19362)
• Bump fstream from 1.0.11 to 1.0.12 in /build (server#19371)
• Bump lodash from 4.17.11 to 4.17.15 in /build (server#19373)
• Bump lodash.mergewith from 4.6.1 to 4.6.2 in /build (server#19374)
• Don't create invalid users (server#19453)
• When we receive intentional empty whats new info, do not try to show it (server#19472)
• Strip of users home path from share api message (server#19594)
• Remove noise from detectUuid and cache results (server#19626)
• Correctly trim long cyrillic note (server#19638)
• Fix non-centered no javascript message (server#19717)
• Keep edit permission when toggling share checkbox (server#19797)
• Add message for DoesNotExistException (server#19817)
• Prevent self-xss via invalid mysql user name on install screen (server#19832)
• Move to github actions (files_videoplayer#158)
• Fix push notifications for multibyte notifications (notifications#586)
• Stb16 actions (viewer#386)

Version 16.0.8 January 31 2020

Download: nextcloud-16.0.8.tar.bz2 or nextcloud-16.0.8.zip
Check the file integrity with:
MD5: nextcloud-16.0.8.tar.bz2.md5 or nextcloud-16.0.8.zip.md5
SHA256: nextcloud-16.0.8.tar.bz2.sha256 or nextcloud-16.0.8.zip.sha256
SHA512: nextcloud-16.0.8.tar.bz2.sha512 or nextcloud-16.0.8.zip.sha512
PGP (Key): nextcloud-16.0.8.tar.bz2.asc or nextcloud-16.0.8.zip.asc

Changes

• Fix comments search result to work with multibyte strings (server#18400)
• Bump nextcloud-vue-collections to 0.4.2 (server#18440)
• Use File Node API for more download cases, skip unreadable files (server#18489)
• Allow inline styles for theming images (server#18581)
• Cache group existence early to save useless requests to LDAP (server#18748)
• Do not rerender the selection menu on show (server#18759)
• Dont throw undefined index errors for storages that have no owner set (server#18933)
• Always use the latest timestamp for merged activities (server#19015)
• Fix restoring shared versions (server#19016)
• When a user was deleted remove them from applicable list, unless... (server#19077)
• Bump handlebars from 4.1.2 to 4.3.0 (notifications#524)

Version 16.0.7 December 20 2019

Download: nextcloud-16.0.7.tar.bz2 or nextcloud-16.0.7.zip
Check the file integrity with:
MD5: nextcloud-16.0.7.tar.bz2.md5 or nextcloud-16.0.7.zip.md5
SHA256: nextcloud-16.0.7.tar.bz2.sha256 or nextcloud-16.0.7.zip.sha256
SHA512: nextcloud-16.0.7.tar.bz2.sha512 or nextcloud-16.0.7.zip.sha512
PGP (Key): nextcloud-16.0.7.tar.bz2.asc or nextcloud-16.0.7.zip.asc

Changes

• Actually return the quote when getting global storage info (server#17852)
• Also set X-OC-Mtime header for files that are smaller than 10MB (server#17857)
• FIX: horizontal scrolling on mobile due to tab accessibility navigation 'skip to content' positioned at a fixed position (server#17884)
• Don't use an undefined index if not needed (server#17906)
• Always check via http and https whether htaccess is working (server#17910)
• Check quota before transfer ownership (server#17927)
• Make timeout a optional parameter (server#17929)
• Bump icewind/searchdav (server#17933)
• Re-acquired expired shared locks on large file uploads (server#17944)
• Pass through ServerNotAvailableException on app init (server#17953)
• Do not check for updates if we have no internet (server#18037)
• Convert more columns to bigint (server#18041)
• Fix installing with MySQL 8.0.4+ (server#18044)
• Uid can be false when the user record does not exit (server#18048)
• Update the CRL (server#18051)
• Make chunksize (used to check for gone LDAP users) configurable (server#18055)
• Incorrect integer value: '' for column 'password_invalid' while migra… (server#18116)
• Use old node LTS to build handlebars (server#18129)
• Trim the login name (server#18183)
• Delay creation of the cert bundle (server#18187)
• Allow to unfavorite all files (server#18248)
• Mark files_rightclick as shipped so it's marked as official (server#18259)
• Fix removing groups that have a slash in the name (server#18284)
• Move overwritehost check to isTrustedDomain (server#18308)
• Convert various columns in oc_mounts to bigint (server#18309)
• Do not disable authentication apps (server#18333)
• ShareeAPI GS fixes (server#18347)
• Adding share type circles (server#18356)
• Support more IPv6 addresses in the RefreshWebcalJob (server#18367)
• Bump the CRL (server#18376)
• Stable17] Allow to detect mimetype by content (server#18387)
• Update icewind/searchdav to 1.0.2 (3rdparty#352)
• Remove debug log (activity#413)
• The token id is an int (notifications#489)
• Fix cutting of multibyte characters (notifications#500)

Version 16.0.6 November 9 2019

Download: nextcloud-16.0.6.tar.bz2 or nextcloud-16.0.6.zip
Check the file integrity with:
MD5: nextcloud-16.0.6.tar.bz2.md5 or nextcloud-16.0.6.zip.md5
SHA256: nextcloud-16.0.6.tar.bz2.sha256 or nextcloud-16.0.6.zip.sha256
SHA512: nextcloud-16.0.6.tar.bz2.sha512 or nextcloud-16.0.6.zip.sha512
PGP (Key): nextcloud-16.0.6.tar.bz2.asc or nextcloud-16.0.6.zip.asc

Changes

• Instead of upsert query, fallback to default on PSQL <= 9.4 (server#16814)
• Return the proper jailed path when requesting the root path (server#17012)
• Fix "create folder" icon overlaying home icon (server#17227)
• Fix directory detection for s3 (server#17271)
• Handle moveFromStorage within the same storage even when storage wrap… (server#17278)
• Dont delete cache entries if deleting an object from object store failed (server#17282)
• Correctly detect the mimetype from uploads (server#17296)
• Add (hidden) option to configure smb timeout (server#17299)
• Fix scrolling after switching to grid view (server#17342)
• Use handlebars from node_modules (on CI) (server#17347)
• Reduce adressbook change events and handling (server#17352)
• Fix updating and deleting authtokens (server#17416)
• Allow removing federated shares of locally reshared files (server#17419)
• Don't call basename on null (server#17441)
• Correctly handle emtpy string in proxyuserpwd config (server#17511)
• Only cache the mimetype if the file exists (server#17539)
• Set the proper filename for version downloads (server#17542)
• Let SCSS cleanup only run once (server#17580)
• Added documentation links on settings pages (server#17588)
• Treat LDAP error 50 as auth issue, prevents lost server connection errors (server#17618)
• Fix method scope (server#17619)
• Hide strange Everyone and Disabled group numbers with LDAP (server#17622)
• Stable17] Load additional scripts on help page (server#17641)
• Stop if there is no encrypted token (server#17648)
• Reset and init new user form language (server#17653)
• Fix jsConfigHelper lang/locale mixup (server#17687)
• Fix weird KDE bug with loginflowv2 (server#17689)
• Fix DAV mimetype search (server#17732)
• Bring back external storage group select delete (server#17768)
• Switch to Files Node API for zip generation (server#17841)
• Actually return the quote when getting global storage info (server#17852)
• Force close all tooltips when closing sharing menu (gallery#548)
• Use correct route to generate (nextcloud_announcements#57)
• Name of the collector is `Php`. (survey_client#99)
• Bump sass-loader from 7.1.0 to 7.2.0 (viewer#213)
• Bump webpack from 4.39.1 to 4.39.2 (viewer#214)
• Bump sass-loader from 7.2.0 to 7.3.1 (viewer#215)
• Bump webpack-cli from 3.3.6 to 3.3.7 (viewer#216)
• Bump eslint-loader from 2.2.1 to 3.0.0 (viewer#217)
• Bump eslint-plugin-standard from 4.0.0 to 4.0.1 (viewer#218)
• Bump eslint-utils from 1.3.1 to 1.4.2 (viewer#220)
• Bump webpack-merge from 4.2.1 to 4.2.2 (viewer#222)
• Bump babel-eslint from 10.0.2 to 10.0.3 (viewer#223)
• Bump webpack from 4.39.2 to 4.39.3 (viewer#225)
• Bump nextcloud-vue from 0.12.1 to 0.12.2 (viewer#226)
• Bump eslint-plugin-node from 9.1.0 to 9.2.0 (viewer#227)
• Update version on master (viewer#232)
• Bump eslint-plugin-node from 9.2.0 to 10.0.0 (viewer#235)
• Bump @babel/core from 7.5.5 to 7.6.0 (viewer#236)
• Bump @babel/preset-env from 7.5.5 to 7.6.0 (viewer#237)
• Bump webpack-cli from 3.3.7 to 3.3.8 (viewer#238)
• Bump webpack from 4.39.3 to 4.40.1 (viewer#242)
• Bump webpack from 4.40.1 to 4.40.2 (viewer#245)
• Bump webpack-cli from 3.3.8 to 3.3.9 (viewer#250)
• Bump eslint-config-nextcloud from 0.0.5 to 0.0.6 (viewer#258)
• Bump url-loader from 2.1.0 to 2.2.0 (viewer#259)

Version 16.0.5 September 27 2019

Download: nextcloud-16.0.5.tar.bz2 or nextcloud-16.0.5.zip
Check the file integrity with:
MD5: nextcloud-16.0.5.tar.bz2.md5 or nextcloud-16.0.5.zip.md5
SHA256: nextcloud-16.0.5.tar.bz2.sha256 or nextcloud-16.0.5.zip.sha256
SHA512: nextcloud-16.0.5.tar.bz2.sha512 or nextcloud-16.0.5.zip.sha512
PGP (Key): nextcloud-16.0.5.tar.bz2.asc or nextcloud-16.0.5.zip.asc

Changes

• Make possible to focus grid/list view toggle via keyboard (server#16745)
• Fix tracking of auto disabled apps in Updater (server#16753)
• Filter more configs (server#16802)
• Correctly remove apps without any releases (server#16818)
• Undefined variable response when server is no nextcloud anymore (server#16826)
• Change access handling of projects (server#16837)
• Only add the app-itunes-app tag if the id is set (server#16848)
• Use custom client URL in welcome emails (server#16883)
• Properly redirect if accessing invalid file though /f/ entrypoint (server#16891)
• Bump mixin-deep from 1.3.1 to 1.3.2 (server#16896)
• Only run integration tests when PHP was modified (server#16909)
• Ignore Enter key up event on menu button toggles (server#16921)
• Be sure to get the jailed path if the storage is a jail (server#16991)
• Remove orphaned calendar data from deleted subscriptions (server#16994)
• Only run code coverage CI on merge (server#16995)
• Returns 404 (server#16997)
• Properly initialize the CacheJail for sharing (server#17061)
• Fix SMB availability status + higher delay on auth issues (server#17070)
• When you click on thumbnail of a file, it should open the file not the sidebar (server#17091)
• Emit moveToTrash event only for the deleting user (server#17099)
• Fix opening apps with Ctrl+click (server#17103)
• Always use the folder icon depending on the mount type if not a share mount (server#17155)
• Don't send executionContexts for Clear-Site-Data (server#17157)
• Add uid to delete temp token query (server#17197)
• Fix l10n in federated file sharing (server#17211)
• Nextcloud 16.0.5 (server#17250)
• Fix spaces being collapsed in move dialog (server#17257)
• Better dark theme support (activity#389)
• Fix travis database tests (activity#390)
• Bump lodash from 4.17.11 to 4.17.14 (files_texteditor#174)
• Translate menu action (files_texteditor#183)
• Bump mixin-deep from 1.3.1 to 1.3.2 (files_videoplayer#138)
• Bump mixin-deep from 1.3.1 to 1.3.2 (firstrunwizard#211)
• Randomize the interval. (nextcloud_announcements#48)
• Improve the notification (nextcloud_announcements#51)
• Also set the subject when the subject is not too long (notifications#415)
• Bump eslint-utils from 1.3.1 to 1.4.2 (notifications#418)
• The backports of #392 and #390 did not work out as expected (notifications#420)
• Bump mixin-deep from 1.3.1 to 1.3.2 (recommendations#121)
• Bump eslint-utils from 1.3.1 to 1.4.2 (viewer#221)

Version 16.0.4 August 16 2019

Download: nextcloud-16.0.4.tar.bz2 or nextcloud-16.0.4.zip
Check the file integrity with:
MD5: nextcloud-16.0.4.tar.bz2.md5 or nextcloud-16.0.4.zip.md5
SHA256: nextcloud-16.0.4.tar.bz2.sha256 or nextcloud-16.0.4.zip.sha256
SHA512: nextcloud-16.0.4.tar.bz2.sha512 or nextcloud-16.0.4.zip.sha512
PGP (Key): nextcloud-16.0.4.tar.bz2.asc or nextcloud-16.0.4.zip.asc

Changes

• Always set the display name for user shares (server#16254)
• Prevent undefined offset 0 in findByUserIdOrMail (server#16325)
• Use HTTP1.1 to read S3 objects (server#16330)
• Bump lodash.mergewith from 4.6.1 to 4.6.2 (server#16338)
• Bump lodash.merge from 4.6.1 to 4.6.2 (server#16341)
• Bump lodash from 4.17.11 to 4.17.13 (server#16352)
• Addsubtag should push to array (server#16405)
• Add catch for RuntimeException (server#16414)
• Only prevent disabling encrytion via the API (server#16425)
• Do not keep searching for recent (server#16432)
• Update operationprogressbar.js (server#16437)
• Fix File#putContents(string) on ObjectStorage (server#16444)
• Pass $configargs to openssl_pkey_export (server#16500)
• Nested recursion breaking max nested level for parent comment calculation (server#16524)
• Allow hidden smb shares (server#16527)
• Allow to provide supported calendar component set internally as a string (server#16536)
• Lock SCSS so we only run 1 job at a time (server#16541)
• Fix max contrast retrieval to limit minimum color for relative time (server#16543)
• Supresses disclosing the userid for LDAP users in the welcome mail (server#16561)
• Use a pattern to identify sensitive config keys (server#16562)
• Do not log locked files (server#16564)
• Log email shares in admin_audit log (server#16566)
• Change send to sent (server#16567)
• Do not log all locked exceptions (server#16578)
• Check the if we can actually access the storage cache for recent files (server#16598)
• Set proper defaults for v-tooltip usages (server#16607)
• Fix/xss/on favorite file (server#16610)
• Log circles and remote shares in admin_audit (server#16627)
• Make sure we only fetch the file by id for the actual owner (server#16630)
• Remove unncessary code block in share recommendations, fixed undefined var error (server#16633)
• Files_external: proper user context for sharing (server#16637)
• Properly return an int in the getId function of the cache (server#16689)
• Fix enable/disable user audit message (server#16691)
• Delay sending event from app init to when they are needed (server#16695)
• Fix download button shown in public share page with hidden downloads (files_pdfviewer#145)
• Change name from 'Text editor' to 'Plain text editor' to prevent confusion with 'Text' (files_texteditor#169)
• Run drone for webpack build (files_texteditor#176)
• Bump lodash from 4.17.11 to 4.17.14 (files_videoplayer#135)
• Bump lodash.mergewith from 4.6.1 to 4.6.2 (firstrunwizard#199)
• Bump lodash.merge from 4.6.1 to 4.6.2 (firstrunwizard#200)
• Bump lodash from 4.17.11 to 4.17.14 (firstrunwizard#202)
• Bump fstream from 1.0.11 to 1.0.12 (firstrunwizard#205)
• Bump lodash from 4.17.11 to 4.17.13 (notifications#376)
• Trim the subject before encrypting the subject (notifications#384)
• Align the notification subject vertically to the icon (notifications#390)
• Fix notification body text alignment and text contrast (notifications#391)
• Fix mention and actions layout (notifications#392)
• Bump lodash.mergewith from 4.6.1 to 4.6.2 (recommendations#105)
• Bump lodash from 4.17.11 to 4.17.14 (recommendations#107)
• Bump tar from 2.2.1 to 2.2.2 (recommendations#120)
• Bump cypress-image-snapshot from 3.0.1 to 3.0.2 (viewer#102)
• Bump babel-loader from 8.0.5 to 8.0.6 (viewer#103)
• Bump cypress-file-upload from 3.1.1 to 3.1.2 (viewer#104)
• Bump @babel/preset-env from 7.4.4 to 7.4.5 (viewer#109)
• Bump eslint-plugin-node from 9.0.1 to 9.1.0 (viewer#116)
• Bump cypress-testing-library from 3.0.1 to 4.0.0 (viewer#119)
• Bump nextcloud-vue from 0.11.3 to 0.11.4 (viewer#121)
• Bump webpack-cli from 3.3.2 to 3.3.3 (viewer#127)
• Bump file-loader from 3.0.1 to 4.0.0 (viewer#130)
• Bump cypress-image-snapshot from 3.1.0 to 3.1.1 (viewer#131)
• Bump webpack from 4.33.0 to 4.34.0 (viewer#135)
• Bump cypress-file-upload from 3.1.2 to 3.1.3 (viewer#137)
• Bump webpack-cli from 3.3.3 to 3.3.4 (viewer#138)
• Bump nextcloud-server from 0.15.9 to 0.15.10 (viewer#139)
• Bump webpack from 4.34.0 to 4.35.0 (viewer#144)
• Bump eslint-plugin-vue from 5.2.2 to 5.2.3 (viewer#152)
• Bump webpack-cli from 3.3.4 to 3.3.5 (viewer#153)
• Bump eslint-plugin-promise from 4.1.1 to 4.2.1 (viewer#154)
• Bump url-loader from 2.0.0 to 2.0.1 (viewer#155)
• Bump eslint-plugin-import from 2.17.3 to 2.18.0 (viewer#156)
• Bump eslint-loader from 2.1.2 to 2.2.1 (viewer#165)
• Bump webpack from 4.35.2 to 4.35.3 (viewer#176)
• Bump stylelint-scss from 3.8.0 to 3.9.1 (viewer#178)
• Bump eslint-plugin-import from 2.18.0 to 2.18.2 (viewer#182)
• Bump webpack-cli from 3.3.5 to 3.3.6 (viewer#187)
• Bump vue-loader from 15.7.0 to 15.7.1 (viewer#188)
• Bump webpack from 4.35.3 to 4.36.1 (viewer#189)
• Bump webpack from 4.36.1 to 4.38.0 (viewer#194)
• Bump url-loader from 2.0.1 to 2.1.0 (viewer#196)
• Bump lodash from 4.17.11 to 4.17.15 (viewer#201)
• Bump webpack from 4.38.0 to 4.39.0 (viewer#202)
• Bump webpack from 4.39.0 to 4.39.1 (viewer#204)
• Detect and switch fullscreen (viewer#47)
• Update version on master (viewer#66)
• Test actions (viewer#67)
• Revert "Test actions" (viewer#68)
• Bump nextcloud-vue from 0.9.5 to 0.10.0 (viewer#69)
• Bump eslint-plugin-import from 2.16.0 to 2.17.2 (viewer#70)
• Bump eslint-import-resolver-webpack from 0.11.0 to 0.11.1 (viewer#71)
• Bump webpack from 4.29.6 to 4.30.0 (viewer#72)
• Fix/loading/race condition (viewer#73)
• Bump webpack-cli from 3.3.1 to 3.3.2 (viewer#90)
• Bump eslint-plugin-node from 8.0.1 to 9.0.1 (viewer#92)
• Bump webpack from 4.30.0 to 4.31.0 (viewer#96)

Version 16.0.3 July 9 2019

Download: nextcloud-16.0.3.tar.bz2 or nextcloud-16.0.3.zip
Check the file integrity with:
MD5: nextcloud-16.0.3.tar.bz2.md5 or nextcloud-16.0.3.zip.md5
SHA256: nextcloud-16.0.3.tar.bz2.sha256 or nextcloud-16.0.3.zip.sha256
SHA512: nextcloud-16.0.3.tar.bz2.sha512 or nextcloud-16.0.3.zip.sha512
PGP (Key): nextcloud-16.0.3.tar.bz2.asc or nextcloud-16.0.3.zip.asc

Changes

• Do not fail hard on new user mail error (server#16189)
• Fix redirect after rescanFailedIntegrityCheck to "Overview" page (server#16244)
• Fix permissions for drag-n-drop uploads (server#16249)
• Try to delete the cypress folder of the viewer app (server#16297)
• Send browser notifications again (notifications#373)

Version 16.0.2 July 5 2019

Download: nextcloud-16.0.2.tar.bz2 or nextcloud-16.0.2.zip
Check the file integrity with:
MD5: nextcloud-16.0.2.tar.bz2.md5 or nextcloud-16.0.2.zip.md5
SHA256: nextcloud-16.0.2.tar.bz2.sha256 or nextcloud-16.0.2.zip.sha256
SHA512: nextcloud-16.0.2.tar.bz2.sha512 or nextcloud-16.0.2.zip.sha512
PGP (Key): nextcloud-16.0.2.tar.bz2.asc or nextcloud-16.0.2.zip.asc

Changes

• Update ca bundle (server#15553)
• Update ca bundle checker (server#15554)
• User management/subadmin: rephrase ambiguous error message (server#15575)
• Update shipped.json to include privacy and recommendations (server#15592)
• Show supported apps in app management (server#15593)
• Update CRL due to revoked cookbook.crt (server#15628)
• Only show sharing section if it has content (server#15649)
• Remove quota feedback if no link set (server#15666)
• Allow redis cluster to use password (server#15686)
• Don't run repair step for every individual user, outsource that to background job (server#15718)
• Check the actual status code for 204 and 304 (server#15724)
• [Security] Bump tar from 2.2.1 to 2.2.2 (server#15728)
• Don't notify admins if no potentially over exposing links found (server#15745)
• Also allow dragging below the file list (server#15754)
• Change text color in search box in darktheme, ref #15598 (server#15768)
• Check for free space on touch (server#15772)
• Search files by id in shared storages last (server#15799)
• Hide newFile menu if quota is set to 0B (server#15856)
• Add core/js/dist/ to l10nignore (server#15948)
• Add LDAP integr. test for receiving share candidates with group limitation (server#15984)
• Remove auto focus of share input field on dialog open, fix #15261 (server#16010)
• LDAP) API: return one base properly when multiple are configured (server#16015)
• Handle storage exceptions when trying to set mtime (server#16038)
• Fix LDAP Wizard forgetting groups on select with search (server#16051)
• Revert "Fix userid casting in notifications" (server#16068)
• Fix appid argument for integrity:check-app (server#16080)
• Fix full text search for groupfolders (server#16082)
• Fall back to black for non-color values (server#16089)
• Check if uploading to lookup server is enabled before verifying (server#16091)
• Allow apps to store longer messages in the comments API (server#16105)
• Invalidates user when plugin reported deletion success (server#16112)
• Fix download link included in public share page with hidden download (server#16125)
• Better check reshare permissions (server#16127)
• Verify that paths are valid for recursive local move (server#16128)
• Don't allow to disable encryption via the API (server#16133)
• Do not show a internet connectivity warning if internet access is dis… (server#16146)
• Update Nextcloud version in docs link (server#16157)
• Allow apps to overwrite the maximum length when reading from database (server#16177)
• RefreshWebcalJob: replace ugly Regex with standard php utils (server#16201)
• Better check reshare permissions part2 (server#16211)
• Fix "unshare group share from self" activity (activity#380)
• Fix load of character maps (files_pdfviewer#141)
• [Security] Bump axios from 0.18.0 to 0.18.1 (firstrunwizard#192)
• Correctly show errors when setting the password (gallery#529)
• Blacklist using .noimage (gallery#533)
• Update dependabot deps in stable16 (notifications#359)
• Increase size of icon bubble for more visibility (notifications#368)
• Add app description to readme and appinfo (privacy#133)
• Catch and filter share that can't be found (recommendations#79)
• [Security] Bump axios from 0.18.0 to 0.18.1 (recommendations#92)
• [Security] Bump tar from 2.2.1 to 2.2.2 (viewer#113)
• [Security] Bump axios from 0.18.0 to 0.19.0 (viewer#117)

Version 16.0.1 May 16 2019

Download: nextcloud-16.0.1.tar.bz2 or nextcloud-16.0.1.zip
Check the file integrity with:
MD5: nextcloud-16.0.1.tar.bz2.md5 or nextcloud-16.0.1.zip.md5
SHA256: nextcloud-16.0.1.tar.bz2.sha256 or nextcloud-16.0.1.zip.sha256
SHA512: nextcloud-16.0.1.tar.bz2.sha512 or nextcloud-16.0.1.zip.sha512
PGP (Key): nextcloud-16.0.1.tar.bz2.asc or nextcloud-16.0.1.zip.asc

Changes

• Fix setupcheck for intl module (server#15223)
• Take return of mkdir into consideration; photocache to not create a folder for deletion (server#15303)
• Remove the custom prefix from the table name length when checking on … (server#15312)
• Check if the data is in the lookup server (server#15341)
• Do NOT assume all files are selected if the first checkbox is (server#15345)
• Fix collapse button in app navigation in IE11 (server#15389)
• Make sure all middlewares are only registered once (server#15399)
• Allow to send the password of protected conversations (server#15405)
• Remove extra margin from warning messages in authenticate page (server#15409)
• Set Edge < 16 as incompatible with css vars (server#15417)
• Remove extra param in cache update call (server#15418)
• Handle 0 B default quota properly in the web UI (server#15424)
• Fix multiselect min width (server#15433)
• Make access column a real boolean (server#15434)
• Fix public upload by also load the semaphore method (server#15439)
• Remove setup args from logging (server#15442)
• Use non-absolute logout URL to fix wrong URL in reverse proxy scenario (server#15452)
• Fix mobile vertical scrolling (server#15469)
• Remove recommendation for opcache on CLI (server#15471)
• Update file-upload.js (server#15482)
• Add interfaces to interact with subscription from support app (server#15513)
• Fall back to application/octet-stream instead of using an invalid mim… (activity#374)
• Only call setViewerMode if FileList is available (files_pdfviewer#132)
• Use correct CSS URL, remove default marked settings and change to GFM rendering (files_texteditor#150)
• Use correct method to determine if HTTPS is used (firstrunwizard#189)

Version 16.0.0 April 25 2019

Download: nextcloud-16.0.0.tar.bz2 or nextcloud-16.0.0.zip
Check the file integrity with:
MD5: nextcloud-16.0.0.tar.bz2.md5 or nextcloud-16.0.0.zip.md5
SHA256: nextcloud-16.0.0.tar.bz2.sha256 or nextcloud-16.0.0.zip.sha256
SHA512: nextcloud-16.0.0.tar.bz2.sha512 or nextcloud-16.0.0.zip.sha512
PGP (Key): nextcloud-16.0.0.tar.bz2.asc or nextcloud-16.0.0.zip.asc

Changes

Nextcloud 16 is smarter than ever, with machine learning to detect suspicious logins and offering clever recommendations. Group Folders now sport access control lists so system administrators can easily manage who has access to what in organization-wide shares. We also introduce Projects, a way to easily relate and find related information like files, chats or tasks.

As this is a major release, the changelog is too long to put here. Users can look on github milestones to find what has been merged. Find an overview of what has been improved in this series of blog posts:

• Nextcloud 16 becomes smarter with Machine Learning for security and productivity
• ACL permissions for Groupfolders
• Nextcloud 16 allows you to link resources to keep track of your projects
• Talk 6.0 brings commands, improved user experience and more

Version 15.0.14 December 20 2019

Download: nextcloud-15.0.14.tar.bz2 or nextcloud-15.0.14.zip
Check the file integrity with:
MD5: nextcloud-15.0.14.tar.bz2.md5 or nextcloud-15.0.14.zip.md5
SHA256: nextcloud-15.0.14.tar.bz2.sha256 or nextcloud-15.0.14.zip.sha256
SHA512: nextcloud-15.0.14.tar.bz2.sha512 or nextcloud-15.0.14.zip.sha512
PGP (Key): nextcloud-15.0.14.tar.bz2.asc or nextcloud-15.0.14.zip.asc

Changes

• Actually return the quote when getting global storage info (server#17853)
• Always check via http and https whether htaccess is working (server#17911)
• Pass through ServerNotAvailableException on app init (server#17954)
• Uid can be false when the user record does not exit (server#18049)
• Update the CRL (server#18052)
• Revert "Load additional scripts on help page" (server#18106)
• Incorrect integer value: '' for column 'password_invalid' while migra… (server#18117)
• Delay creation of the cert bundle (server#18190)
• Correctly remove apps without any releases (server#18214)
• Fix removing groups that have a slash in the name (server#18285)
• Convert various columns in oc_mounts to bigint (server#18310)
• Adding share type circles (server#18357)
• Support more IPv6 addresses in the RefreshWebcalJob (server#18368)
• Bump the CRL (server#18377)
• Stable17] Allow to detect mimetype by content (server#18388)
• Remove debug log (activity#414)

Version 15.0.13 November 9 2019

Download: nextcloud-15.0.13.tar.bz2 or nextcloud-15.0.13.zip
Check the file integrity with:
MD5: nextcloud-15.0.13.tar.bz2.md5 or nextcloud-15.0.13.zip.md5
SHA256: nextcloud-15.0.13.tar.bz2.sha256 or nextcloud-15.0.13.zip.sha256
SHA512: nextcloud-15.0.13.tar.bz2.sha512 or nextcloud-15.0.13.zip.sha512
PGP (Key): nextcloud-15.0.13.tar.bz2.asc or nextcloud-15.0.13.zip.asc

Changes

• Return the proper jailed path when requesting the root path (server#17013)
• Fix directory detection for s3 (server#17272)
• Correctly detect the mimetype from uploads (server#17297)
• Don't call basename on null (server#17442)
• Only cache the mimetype if the file exists (server#17540)
• Added documentation links on settings pages (server#17587)
• Stable17] Load additional scripts on help page (server#17642)
• Stable16] fix method scope (server#17660)
• Fix DAV mimetype search (server#17733)
• Fix to strict typehint in FileMimeType (server#17760)
• Actually return the quote when getting global storage info (server#17853)
• Force close all tooltips when closing sharing menu (gallery#549)
• Use correct route to generate (nextcloud_announcements#58)
• Adjust target branch (nextcloud_announcements#59)
• Name of the collector is `Php`. (survey_client#100)

Version 15.0.12 September 27 2019

Download: nextcloud-15.0.12.tar.bz2 or nextcloud-15.0.12.zip
Check the file integrity with:
MD5: nextcloud-15.0.12.tar.bz2.md5 or nextcloud-15.0.12.zip.md5
SHA256: nextcloud-15.0.12.tar.bz2.sha256 or nextcloud-15.0.12.zip.sha256
SHA512: nextcloud-15.0.12.tar.bz2.sha512 or nextcloud-15.0.12.zip.sha512
PGP (Key): nextcloud-15.0.12.tar.bz2.asc or nextcloud-15.0.12.zip.asc

Changes

• Filter more configs (server#16803)
• Undefined variable response when server is no nextcloud anymore (server#16825)
• Only add the app-itunes-app tag if the id is set (server#16849)
• Use custom client URL in welcome emails (server#16884)
• Bump mixin-deep from 1.3.1 to 1.3.2 in /apps/accessibility (server#16897)
• Bump mixin-deep from 1.3.1 to 1.3.2 in /apps/oauth2 (server#16900)
• Bump mixin-deep from 1.3.1 to 1.3.2 in /apps/updatenotification (server#16902)
• Bump mixin-deep from 1.3.1 to 1.3.2 in /settings (server#16904)
• Bump mixin-deep from 1.3.1 to 1.3.2 in /build (server#16905)
• Be sure to get the jailed path if the storage is a jail (server#16992)
• Only run code coverage CI on merge (server#16996)
• Returns 404 (server#17058)
• Properly initialize the CacheJail for sharing (server#17062)
• Fix SMB availability status + higher delay on auth issues (server#17071)
• Emit moveToTrash event only for the deleting user (server#17100)
• Don't send executionContexts for Clear-Site-Data (server#17158)
• Add uid to delete temp token query (server#17198)
• Fix l10n in federated file sharing (server#17212)
• Nextcloud 15.0.12 (server#17251)
• Randomize the interval. (nextcloud_announcements#49)
• Stable16] Improve the notification (nextcloud_announcements#53)
• Bump mixin-deep from 1.3.1 to 1.3.2 (notifications#419)
• Bump tar from 4.4.1 to 4.4.11 (notifications#437)

Version 15.0.11 August 16 2019

Download: nextcloud-15.0.11.tar.bz2 or nextcloud-15.0.11.zip
Check the file integrity with:
MD5: nextcloud-15.0.11.tar.bz2.md5 or nextcloud-15.0.11.zip.md5
SHA256: nextcloud-15.0.11.tar.bz2.sha256 or nextcloud-15.0.11.zip.sha256
SHA512: nextcloud-15.0.11.tar.bz2.sha512 or nextcloud-15.0.11.zip.sha512
PGP (Key): nextcloud-15.0.11.tar.bz2.asc or nextcloud-15.0.11.zip.asc

Changes

• Dont use part files for dav writes when the target folder doesn't have create permissions (server#16224)
• Prevent undefined offset 0 in findByUserIdOrMail (server#16326)
• Bump lodash.mergewith from 4.6.1 to 4.6.2 in /settings (server#16344)
• Bump lodash.merge from 4.6.1 to 4.6.2 in /settings (server#16345)
• Bump lodash.mergewith from 4.6.1 to 4.6.2 in /build (server#16346)
• Bump lodash from 4.17.11 to 4.17.14 in /apps/accessibility (server#16348)
• Bump lodash from 4.17.11 to 4.17.13 in /settings (server#16350)
• Bump lodash from 4.17.11 to 4.17.14 in /apps/updatenotification (server#16351)
• Bump lodash from 4.17.11 to 4.17.14 in /build (server#16353)
• Bump lodash from 4.17.11 to 4.17.14 in /apps/oauth2 (server#16357)
• Only prevent disabling encrytion via the API (server#16426)
• Do not keep searching for recent (server#16433)
• Fix File#putContents(string) on ObjectStorage (server#16445)
• Allow to provide supported calendar component set internally as a string (server#16537)
• Bump fstream from 1.0.11 to 1.0.12 in /build (server#16548)
• Bump fstream from 1.0.11 to 1.0.12 in /settings (server#16549)
• Use a pattern to identify sensitive config keys (server#16565)
• Change send to sent (server#16568)
• Set proper defaults for v-tooltip usages (server#16608)
• Fix/xss/on favorite file (server#16611)
• Make sure we only fetch the file by id for the actual owner (server#16631)
• Properly return an int in the getId function of the cache (server#16690)
• Fix enable/disable user audit message (server#16692)
• Fix download button shown in public share page with hidden downloads (files_pdfviewer#146)
• Bump lodash from 4.17.10 to 4.17.14 (notifications#377)
• Trim the subject before encrypting the subject (notifications#385)

Version 15.0.10 July 9 2019

Download: nextcloud-15.0.10.tar.bz2 or nextcloud-15.0.10.zip
Check the file integrity with:
MD5: nextcloud-15.0.10.tar.bz2.md5 or nextcloud-15.0.10.zip.md5
SHA256: nextcloud-15.0.10.tar.bz2.sha256 or nextcloud-15.0.10.zip.sha256
SHA512: nextcloud-15.0.10.tar.bz2.sha512 or nextcloud-15.0.10.zip.sha512
PGP (Key): nextcloud-15.0.10.tar.bz2.asc or nextcloud-15.0.10.zip.asc

Changes

• Do not fail hard on new user mail error (server#16190)
• Forward OCSException to initiator (server#16192)
• Properly load permissions in showActions (server#16283)

Version 15.0.9 July 5 2019

Download: nextcloud-15.0.9.tar.bz2 or nextcloud-15.0.9.zip
Check the file integrity with:
MD5: nextcloud-15.0.9.tar.bz2.md5 or nextcloud-15.0.9.zip.md5
SHA256: nextcloud-15.0.9.tar.bz2.sha256 or nextcloud-15.0.9.zip.sha256
SHA512: nextcloud-15.0.9.tar.bz2.sha512 or nextcloud-15.0.9.zip.sha512
PGP (Key): nextcloud-15.0.9.tar.bz2.asc or nextcloud-15.0.9.zip.asc

Changes

• Update ca bundle checker (server#15555)
• Update ca bundle (server#15572)
• User management/subadmin: rephrase ambiguous error message (server#15576)
• Update CRL due to revoked cookbook.crt (server#15629)
• Only show sharing section if it has content (server#15650)
• Allow redis cluster to use password (server#15687)
• Check the actual status code for 204 and 304 (server#15725)
• [Security] Bump tar from 2.2.1 to 2.2.2 in /settings (server#15726)
• [Security] Bump tar from 2.2.1 to 2.2.2 in /build (server#15727)
• Also allow dragging below the file list (server#15755)
• Check for free space on touch (server#15771)
• Search files by id in shared storages last (server#15800)
• [Security] Bump axios from 0.18.0 to 0.19.0 in /apps/accessibility (server#15818)
• Hide newFile menu if quota is set to 0B (server#15855)
• Don't notify admins if no potentially over exposing links found (server#15861)
• Show share settings only if incoming federated shares are allowed (server#15927)
• Add LDAP integr. test for receiving share candidates with group limitation (server#15985)
• Prevent faulty logs from nested setupFS calls (server#16030)
• Fix LDAP Wizard forgetting groups on select with search (server#16052)
• Fix appid argument for integrity:check-app (server#16081)
• Fix full text search for groupfolders (server#16083)
• Fall back to black for non-color values (server#16090)
• Check if uploading to lookup server is enabled before verifying (server#16092)
• LDAP) API: return one base properly when multiple are configured (server#16110)
• Invalidates user when plugin reported deletion success (server#16113)
• Fix download link included in public share page with hidden download (server#16126)
• Verify that paths are valid for recursive local move (server#16129)
• Don't allow to disable encryption via the API (server#16134)
• Better check reshare permissions (server#16142)
• RefreshWebcalJob: replace ugly Regex with standard php utils (server#16202)
• Fix notification casting (server#16212)
• Better check reshare permissions part2 (server#16215)
• Fix "unshare group share from self" activity (activity#381)
• Fix load of character maps (files_pdfviewer#142)
• Correctly show errors when setting the password (gallery#530)

Version 15.0.8 May 16 2019

Download: nextcloud-15.0.8.tar.bz2 or nextcloud-15.0.8.zip
Check the file integrity with:
MD5: nextcloud-15.0.8.tar.bz2.md5 or nextcloud-15.0.8.zip.md5
SHA256: nextcloud-15.0.8.tar.bz2.sha256 or nextcloud-15.0.8.zip.sha256
SHA512: nextcloud-15.0.8.tar.bz2.sha512 or nextcloud-15.0.8.zip.sha512
PGP (Key): nextcloud-15.0.8.tar.bz2.asc or nextcloud-15.0.8.zip.asc

Changes

• Reconnect to DB after timeout for Notify command. Fixes #14479 (server#15006)
• Respect the setting if the lookup server is disabled (server#15021)
• Disable the injected snapper logic when apps want to ship their own (server#15046)
• Do not allow invalid users to be created (server#15071)
• Prevent a reinstall (server#15112)
• Do not use spaces in generated passwords (server#15119)
• Improve the share link password error feedback with a red border (server#15128)
• Use slient option to switch for regular file actions as well (server#15131)
• Backport/15129/stable15 (server#15139)
• Load apps before running repair steps (server#15158)
• Always use a temp file for swift writes (server#15205)
• Prefetching blows up if there are a lot of files. (server#15206)
• Take return of mkdir into consideration; photocache to not create a folder for deletion (server#15307)
• [Security] Bump tar from 4.4.1 to 4.4.8 in /apps/oauth2 (server#15332)
• [Security] Bump tar from 4.4.1 to 4.4.8 in /apps/accessibility (server#15333)
• [Security] Bump tar from 4.4.1 to 4.4.8 in /apps/updatenotification (server#15334)
• Check if the data is in the lookup server (server#15342)
• Do NOT assume all files are selected if the first checkbox is (server#15346)
• Remove orphan event and contacts data (server#15387)
• Fix collapse button in app navigation in IE11 (server#15390)
• Set Edge < 16 as incompatible with css vars (server#15421)
• Handle 0 B default quota properly in the web UI (server#15425)
• Remove setup args from logging (server#15443)
• Use non-absolute logout URL to fix wrong URL in reverse proxy scenario (server#15456)
• Remove recommendation for opcache on CLI (server#15472)
• Update file-upload.js (server#15485)
• Fix missing translation for "Home folder" (activity#362)
• Fall back to application/octet-stream instead of using an invalid mim… (activity#375)
• Only call setViewerMode if FileList is available (files_pdfviewer#133)
• Use correct CSS URL, remove default marked settings and change to GFM rendering (files_texteditor#151)

Version 15.0.7 April 9 2019

Download: nextcloud-15.0.7.tar.bz2 or nextcloud-15.0.7.zip
Check the file integrity with:
MD5: nextcloud-15.0.7.tar.bz2.md5 or nextcloud-15.0.7.zip.md5
SHA256: nextcloud-15.0.7.tar.bz2.sha256 or nextcloud-15.0.7.zip.sha256
SHA512: nextcloud-15.0.7.tar.bz2.sha512 or nextcloud-15.0.7.zip.sha512
PGP (Key): nextcloud-15.0.7.tar.bz2.asc or nextcloud-15.0.7.zip.asc

Changes

• Fix for crashing occ files:scan (server#14968)
• Fix .drone.yml syntax (server#14984)
• Harden appdata putcontent (server#15000)
• Check if OCA.Files.App is available before calling (server#15001)

Version 15.0.6 April 4 2019

Download: nextcloud-15.0.6.tar.bz2 or nextcloud-15.0.6.zip
Check the file integrity with:
MD5: nextcloud-15.0.6.tar.bz2.md5 or nextcloud-15.0.6.zip.md5
SHA256: nextcloud-15.0.6.tar.bz2.sha256 or nextcloud-15.0.6.zip.sha256
SHA512: nextcloud-15.0.6.tar.bz2.sha512 or nextcloud-15.0.6.zip.sha512
PGP (Key): nextcloud-15.0.6.tar.bz2.asc or nextcloud-15.0.6.zip.asc

Changes

• Fix grid toggle button on public page (server#14376)
• Fix(EMailTemplate): malformed HTML in some cases (server#14387)
• Bugfix for issue 10862: Trash-bin ignores trashbin_retention_obligation (server#14414)
• Parse multiple navigation items (server#14416)
• Fix referrer policy meta tags. (server#14438)
• Fix a bug with smb notify having leading slash when it should not (server#14462)
• Fix for issue #13319: load oc-backbone-webdav before loading versions app (server#14472)
• Add accessibility translations (server#14490)
• Run tests that fail with "no such process" over to apache server (server#14495)
• Make header.feature more robust by running it on apache (server#14497)
• Fix expire date change eventhandler (server#14503)
• Update icewind/smb to 3.0.2 (server#14512)
• Do not cut full color on accessibility svg color invert (server#14516)
• Dav: Fix handling of chunked WebDAV upload (server#14517)
• Do not just write foobar (server#14521)
• Fix database configuration (server#14531)
• Add activities for group membership changes (server#14534)
• Check if password can be changed for the users backend in OCS api (server#14542)
• Add test for updated CA bundle (server#14546)
• Clear backupcode reminder when no 2fa (server#14559)
• Use a tmp file for swift writes (server#14570)
• Have streams of files_external in sync (server#14580)
• Resolve user and groups in nested groups first before filtering the results (server#14591)
• Remove Google+ from Social Sharing Bundle (server#14596)
• Do not calculate folder size for parent that also needs proper scan, fixes #3524 (server#14597)
• Mention Open Cloud Mesh in Federated User Settings (server#14599)
• Update index.php (server#14601)
• Remove sensitive SMB arguments from exception log (server#14658)
• Prevent recursion when moving a file to the trashbin (server#14661)
• Disable fragile tests (server#14672)
• Use SCSS variables since CSS vars are not loaded on public pages (server#14677)
• Handle long etags from dav external storage (server#14694)
• Improve lookup server behaviour (server#14696)
• Add an integration test that ensures deletion of LDAP users (server#14697)
• Dont try to restore a trashbin item to a readonly target (server#14699)
• Throw a proper error if rename fails in dav (server#14700)
• Groupname like username - allow share with both (server#14709)
• Updated documentation go.php to 15 and adjusted copyright year. (server#14716)
• Always register the Notifier (server#14749)
• Fix getting the access list on external storage (server#14751)
• Always allow moving mountpoints inside the same mountpoint (server#14759)
• Use current directory for hashing. (server#14762)
• Fix user creation using LDAP Plugin (server#14781)
• Avoid replacement by user object (server#14795)
• Fix placeholder in disable message (server#14840)
• Fix setup checks for ocm/ocs-provider (server#14854)
• Remove Google+ federation usersettings (server#14855)
• Add setup check for missing UTF8MB4 on mysql (server#14857)
• Make regions translatable (server#14859)
• Show a setup warning in case S3 object storage is used as primary storage (server#14865)
• Fix plural rule detection for languages (server#14867)
• Fix translations of settings (server#14882)
• Fix opening folders from different file lists (server#14891)
• Fix hidden file display in grid view (server#14924)
• Locale is not language (activity#355)
• Fallback to plaintext subject if no rich subject is set (activity#358)
• Ignore query arguments in single video share for stable15 (Fix #121) (files_videoplayer#122)
• Less alerting log entries on fails (notifications#291)

Version 15.0.5 February 28 2019

Download: nextcloud-15.0.5.tar.bz2 or nextcloud-15.0.5.zip
Check the file integrity with:
MD5: nextcloud-15.0.5.tar.bz2.md5 or nextcloud-15.0.5.zip.md5
SHA256: nextcloud-15.0.5.tar.bz2.sha256 or nextcloud-15.0.5.zip.sha256
SHA512: nextcloud-15.0.5.tar.bz2.sha512 or nextcloud-15.0.5.zip.sha512
PGP (Key): nextcloud-15.0.5.tar.bz2.asc or nextcloud-15.0.5.zip.asc

Changes

• Show autocompletion as soon as "@" is typed (server#13961)
• Trim filename in webfrontend for windows compatibility (server#13978)
• Clean code and fix drop zone shadow (server#13982)
• Show original path in trashbin (server#14029)
• Update icewind/smb to 3.0.1 (server#14068)
• Fix: Check if `$this->params['user']` is an array (server#14085)
• [Security] Bump lodash from 4.17.10 to 4.17.11 in /apps/updatenotification (server#14093)
• [Security] Bump lodash from 4.17.10 to 4.17.11 in /apps/accessibility (server#14094)
• [Security] Bump lodash from 4.17.10 to 4.17.11 in /apps/oauth2 (server#14095)
• Make sure the relative path is always a string (server#14101)
• Fix the thorrtler whitelist bitmask (server#14151)
• [Security] Bump handlebars from 4.0.12 to 4.1.0 in /build (server#14187)
• Fix recent files (server#14195)
• Update CRL to contain revoked files_external_dropbox, passman & payback (server#14201)
• Ensure attribute names are lower cased (server#14203)
• Fix small glitches in update notification page (server#14207)
• Fix expiration date changing (server#14212)
• Fix trashbin restore translation (server#14213)
• Remove trailing spaces from localized strings (server#14225)
• Fixing phpdoc in FullTextSearch/Model/ISearchResult (server#14268)
• Fix empty file uploads to S3 (and other streaming storages) (server#14273)
• Do not do redirect handling when loggin out (server#14275)
• Catch Request exception in testRemoteUrl (server#14277)
• Correctly determinate the owner in case of shared external storages (server#14283)
• Fix header label visibility on open menu (server#14287)
• Prefix $path for filename for internal file cache (server#14288)
• Set false as default for requirePNG (server#14292)
• Use proper scroll container when dragging files (server#14301)
• Fix OC.getCurrentUser() on guest pages (server#14308)
• Fix ocm end-point discovery discovery (server#14312)
• Apply theme to 2FA button (server#14331)
• Fix "Undefined index: user_uid" on login page (server#14339)
• Fix unsafe array access (server#14340)
• Always query lookup server in GS mode (server#14368)
• Use latest ca-bundle.crt from https://curl.haxx.se/docs/caextract.html (server#14371)
• Try to support 7.3 for DAV (3rdparty#213)
• Backport/stable15/streams 0.7.1 (3rdparty#244)
• Don't add empty entries to the objects array (activity#347)
• Ensure parameters are always an array (activity#350)
• Bye, Scrutinizer! (notifications#293)

Version 15.0.4 February 7 2019

Download: nextcloud-15.0.4.tar.bz2 or nextcloud-15.0.4.zip
Check the file integrity with:
MD5: nextcloud-15.0.4.tar.bz2.md5 or nextcloud-15.0.4.zip.md5
SHA256: nextcloud-15.0.4.tar.bz2.sha256 or nextcloud-15.0.4.zip.sha256
SHA512: nextcloud-15.0.4.tar.bz2.sha512 or nextcloud-15.0.4.zip.sha512
PGP (Key): nextcloud-15.0.4.tar.bz2.asc or nextcloud-15.0.4.zip.asc

Changes

• Make external storages browsable again in the web UI (server#14076)

Version 15.0.3 February 7 2019

Download: nextcloud-15.0.3.tar.bz2 or nextcloud-15.0.3.zip
Check the file integrity with:
MD5: nextcloud-15.0.3.tar.bz2.md5 or nextcloud-15.0.3.zip.md5
SHA256: nextcloud-15.0.3.tar.bz2.sha256 or nextcloud-15.0.3.zip.sha256
SHA512: nextcloud-15.0.3.tar.bz2.sha512 or nextcloud-15.0.3.zip.sha512
PGP (Key): nextcloud-15.0.3.tar.bz2.asc or nextcloud-15.0.3.zip.asc

Changes

• Upload new files in objectstore to a .part path first (server#13036)
• Broker: add timezone to CANCEL messages (server#13384)
• Add strengthify.min files (server#13546)
• Fix click app names (server#13575)
• Principals can be principal/user/ or principal/ from lega… (server#13582)
• Correctly handle displaynames returned from the sharee API (server#13585)
• Don't close input stream when writing in encrypted file (server#13588)
• Bump pear/archive_tar to 1.4.5 (server#13598)
• Fix integer background job id type error (server#13609)
• Fix user settings label translation (server#13611)
• Fix app navigation flickering on hover (server#13625)
• Update URL for federation (server#13636)
• Fix colorizeSvg with transformations that contain a comma (,) (server#13653)
• Use warning background color & primary text color for setting warnings (server#13665)
• Fix template paramter (server#13670)
• Cache tokens when using swift's v2 authentication (server#13740)
• Cleanup shared lock if changing to exclusive lock failed (server#13744)
• Honor remember_login_cookie_lifetime (server#13758)
• Fix integration of social sharing into the link popover menu (server#13761)
• Respect user locale in natural sort comparator (server#13762)
• Call proper function when fetching link shares in the breadcrumb view (server#13769)
• Add acceptance tests for moving and copying files (server#13771)
• Show proper default locale (server#13781)
• Ignore non existing users when retrieving details of group members (server#13792)
• Remove .css fileending from accessibility user css route (server#13793)
• Add icon to restore activity (server#13794)
• Fix long comment in dark theme (server#13804)
• Bump bower from 1.8.4 to 1.8.8 in /build (server#13821)
• Fix for high contrast theme (server#13852)
• Always use multipart uploader for s3 uploads (server#13882)
• Fix paged search with multiple bases (LDAP) (server#13884)
• Fix dropping a folder on a folder row (server#13887)
• Fix updating the password of a link share when passwords are enforced (server#13900)
• Add fallback for trashbin original location (server#13904)
• Allow shared versions again in legacy backend (server#13905)
• Improve data directory write checking for NFS mounts (server#13906)
• Clean pending 2FA authentication on password reset (server#13915)
• Forward error message from password policy (server#13918)
• Remove warning in case of external storage error (server#13920)
• Handle mail send error gracefully (server#13930)
• Bump pear/archive_tar from 1.4.3 to 1.4.5 (3rdparty#214)
• Move to SCSS and fix app icon for dark theme (activity#338)
• Fill screen in fullscreen mode for public videos. Fixes #77 (files_videoplayer#79)
• Use target="_blank" and rel="noreferrer noopener" (firstrunwizard#105)
• Fix notification documentation to reflect recent changes (notifications#258)

Version 15.0.2 January 11 2019

Download: nextcloud-15.0.2.tar.bz2 or nextcloud-15.0.2.zip
Check the file integrity with:
MD5: nextcloud-15.0.2.tar.bz2.md5 or nextcloud-15.0.2.zip.md5
SHA256: nextcloud-15.0.2.tar.bz2.sha256 or nextcloud-15.0.2.zip.sha256
SHA512: nextcloud-15.0.2.tar.bz2.sha512 or nextcloud-15.0.2.zip.sha512
PGP (Key): nextcloud-15.0.2.tar.bz2.asc or nextcloud-15.0.2.zip.asc

Changes

• Don't log parameters on user creation in case of error/exception (server#13479)
• RemoveClassifiedEventActivity: check if calendar still exists (server#13506)
• Broker: add timezone to CANCEL messages (3rdparty#196)

Version 15.0.1 January 10 2019

Download: nextcloud-15.0.1.tar.bz2 or nextcloud-15.0.1.zip
Check the file integrity with:
MD5: nextcloud-15.0.1.tar.bz2.md5 or nextcloud-15.0.1.zip.md5
SHA256: nextcloud-15.0.1.tar.bz2.sha256 or nextcloud-15.0.1.zip.sha256
SHA512: nextcloud-15.0.1.tar.bz2.sha512 or nextcloud-15.0.1.zip.sha512
PGP (Key): nextcloud-15.0.1.tar.bz2.asc or nextcloud-15.0.1.zip.asc

Changes

• Change doc link for 15 (server#12963)
• Use strengthify.min on personal settings page (server#12984)
• Use default cursor for disabled primary buttons (server#13007)
• Better activities for systemtags that are removed by CLI (server#13029)
• Ie11 compatibility updatenotifications (server#13076)
• Fix exception on LDAP mapping during login (server#13119)
• Fix SAML Client login flow on Apple devices (server#13123)
• Only trust the X-FORWARDED-HOST header for trusted proxies (server#13150)
• Prevent special characters from breaking the file drop remote url (server#13151)
• Allow content provider to generate new Index (server#13155)
• Make the footer "Get your own free account" translatable (server#13169)
• Use a case insensitive search for email (server#13179)
• Fix ie11 checkboxes (server#13206)
• SCSS cache buster is a combination of apps/theming/scc_vars (server#13209)
• Files list not rendering if user has favorites navigation unfolded (server#13215)
• Do not forgot to store the second displayname portion (server#13218)
• Add default values when parsing account data (server#13252)
• Fix opening search results for comments (server#13253)
• Fetch lastInsertId only when id null (server#13278)
• Add caching headers for public previews (server#13328)
• Unbundle user_external to release it via appstore (server#13329)
• Rewrite getNumberOfUnreadCommentsForFolder query (server#13335)
• Fix can change password check in case of encryption is enabled (server#13349)
• Update the CRL (server#13352)
• Check anonymous OPTIONS requests file in root (not in subdir) (server#13354)
• Re add the uploaded file list to file drops (server#13355)
• Returns a 404 instead of exception if app is not installed - #13088 (server#13357)
• Transpile arrow function for ie11 compatibility (server#13360)
• IE fix for apps menu (server#13361)
• Allow URI as data for vcard PHOTO (server#13366)
• Throttle with correct metadata (server#13368)
• Fix loginflow with apptoken enter on iOS (server#13370)
• Register and show when an LDAP user was detected as unavailable/deleted (server#13372)
• Fix apps menu overlapping (server#13404)
• Use the real logger in the settings (server#13405)
• CSP: Allow fonts to be provided in data (server#13411)
• HttpClient getHeader can return empty string (server#13425)
• Respect classification of calendar events in activity stream (server#13439)
• Add support for boolean default (server#13444)
• Show the repair steps and repair info output in the web for better feedback (server#13469)
• Fix PDF sidebar shown in PDF thumbnails (files_pdfviewer#114)
• Do not get the url from the download links (files_videoplayer#74)
• Use proper slogan from theming app (firstrunwizard#94)
• Update info.xml (firstrunwizard#96)
• Update richObjectStringParser.js (notifications#245)

Version 15.0.0 December 10 2018

Download: nextcloud-15.0.0.tar.bz2 or nextcloud-15.0.0.zip
Check the file integrity with:
MD5: nextcloud-15.0.0.tar.bz2.md5 or nextcloud-15.0.0.zip.md5
SHA256: nextcloud-15.0.0.tar.bz2.sha256 or nextcloud-15.0.0.zip.sha256
SHA512: nextcloud-15.0.0.tar.bz2.sha512 or nextcloud-15.0.0.zip.sha512
PGP (Key): nextcloud-15.0.0.tar.bz2.asc or nextcloud-15.0.0.zip.asc

Changes

Nextcloud 15 introduces social networking, next-gen 2-factor authentication and innovative collaborative document editing abilities. This release also adds a new design and grid view, workflow features and 2-3x faster loading performance.

As this is a major release, the changelog is very long. Find an overview of what has been improved in this series of blog posts:

• The full announcement
• Introducing Social networking to Nextcloud
• Next generation 2-factor authentication and security hardening
• Online Office goes mobile, Talk in the sidebar and improved sharing
• New grid view, PDF conversion, 2-3x faster loading, dashboard and more

• Avoid logging of "Partial search results returned: Sizelimit exceeded…" (server#12292)
• Enable sorting in file picker (server#12350)
• 15.0.0 Beta 2 (server#12355)
• Fix the warning appearing in the admin section when mail_smtpmode is not configured (server#12401)
• Prefix icon variables with app name to avoid conflicts (server#12421)
• Shorten index name of calendar changes table (server#12447)
• Fixes dav share issue with owner (server#12458)
• Fix string doctype casing (server#12466)
• Show thumbnail on rename (server#12467)
• Remove conflicting multiselect (server#12468)
• Actually return the user when creating version dav nodes (server#12472)
• Rollback to default list view (server#12474)
• Add welcome bot (server#12476)
• Fix navigation layout for items that are added on a re-render (server#12481)
• Fix login loader position and theming support (server#12483)
• Fix loader colours for better visibility (server#12484)
• Format Nextcloud Talk clients sessions. (server#12485)
• Remove unused svg api route (server#12487)
• Only use width and opacity for transition (server#12489)
• Fix share link password input (server#12491)
• Return the correct value when trying to get a non existing item from cache by id (server#12494)
• Fix login primary colour and feedback (server#12495)
• Fix revert icon position on theming settings (server#12496)
• Forward object not found error in swift as dav 404 (server#12500)
• Make number of file list entries depending on the width for grid view (server#12515)
• Fix loading of files external templates file (server#12517)
• Fix loading of .woff2 files in .htaccess (server#12518)
• Fix updatenotifications display, dependencies and csp (server#12525)
• Allow to hide download option for folders shared by link (server#12531)
• Fix redirect page design details (server#12539)
• Bearer tokens are app token (server#12543)
• Handle permission in update of share better (server#12544)
• Respect the disabled setting for lost_password_link (server#12552)
• Allow empty string in get absolute url (server#12553)
• Do not switch to root folder if filelist is already shown (server#12554)
• Apply border to primary button if on log in page (and not in a dark container) or if in header (server#12558)
• Better header navigation display (server#12559)
• Do not show tab headers marked as hidden (server#12570)
• Make connectivity check domains configurable (server#12571)
• Fix rendering of the sidebar in Files app (server#12577)
• Fix navigation more menu background for dark theme (server#12580)
• 15.0.0 RC 1 (server#12581)
• Do not clear new user form on failure (server#12587)
• Add explanatory text to admin twofactor settings (server#12589)
• Fix Typo in Original English String and All Translations (server#12615)
• Extend anonymous options to work on every dav url (server#12638)
• Fix count on string (server#12683)
• Add interface to allow storages from opting out of encryption (server#12692)
• Make acceptance tests for comments more robust (server#12696)
• Add acceptance tests for sharing files and folders with another user (server#12700)
• I changed the width of the srollbar to make it a bit bigger (server#12712)
• Open the updater via a POST form submit instead of eval the JS code d… (server#12713)
• Fix folder path containing leading slash when getting mount root by id (server#12714)
• Add capabilities for multiple share links (server#12718)
• Remove old button to submit the apppassword login (server#12723)
• Fix versions sidebar issues (server#12730)
• Don't require Same Site Cookies on accessibility app assets (server#12731)
• Date title to linkshare (server#12733)
• Add pipe mode for sendmail (server#12736)
• Set Referrer-Policy also in addSecurityHeaders() (server#12737)
• Polishing fixes (server#12740)
• Fix the loader position and the focus state on the login button (server#12741)
• Add check for missing .woff2 rule in Nginx via setup check (server#12742)
• Update compatible versions for cloud federation api (server#12744)
• Fix cannot set 0 as value on files_external through OCC command (server#12746)
• 15.0.0 RC 2 (server#12755)
• Parse activity when a user self-unshares a file (server#12756)
• Polishing of various modal dialogs (server#12784)
• Fix activatable/deactivatable 2fa provider interface typos (server#12805)
• Only run the AnonymousOptionsPlugion on Anonymous requests (server#12811)
• Fix the system address book (server#12816)
• PHP module is named mbstring (server#12825)
• Unshare from mail activity is missing (server#12828)
• Fix layout of "i" in admin settings of federated sharing (server#12829)
• PHP 7.0 is end of life (server#12830)
• Do not update child all child shares on group share update (server#12833)
• Validate all rich objects (server#12836)
• Add setup check for recommended PHP modules (i.e. Imagick, intl) (server#12837)
• 15.0.0 RC 3 (server#12847)
• Make a button out of 'What's new' so it's obvious it can be clicked on (server#12848)
• Fix missing click event on update button (server#12849)
• Add setup check for pending bigint conversion (server#12853)
• No user enumeration on DAV if disabled (server#12856)
• Only execute query in propagateChange once (server#12861)
• Fix password confirmation lib for ie11 (server#12863)
• Log and continue on Dav reader failure (repair uid) (server#12867)
• Emit write update only once on touch (server#12868)
• Do not show general warning on free space error (server#12880)
• Set 3rdparty to pr187 (server#12882)
• Fix logo path in non-themed instance (server#12908)
• Fix unread comment icon not shown for the sharee (server#12913)
• Bump to 15.0.0 final (server#12959)
• Bump lukasreschke/id3parser from 0.0.1 to 0.0.3 (3rdparty#118)
• Bump stecman/symfony-console-completion from 0.7.0 to 0.8.0 (3rdparty#119)
• Bump guzzlehttp/guzzle from 6.3.0 to 6.3.3 (3rdparty#120)
• Bump leafo/scssphp from 0.7.6 to 0.7.7 (3rdparty#137)
• Bump synfony to 3.4.15 (3rdparty#146)
• Bump microsoft/azure-storage-blob from 1.1.0 to 1.2.0 (3rdparty#151)
• Bump swiftmailer/swiftmailer from 6.0.2 to 6.1.3 (3rdparty#155)
• Bump symfony to 3.4.16 (3rdparty#161)
• Bump symfony 3.4.17 (3rdparty#168)
• Remove random_compat lib (3rdparty#170)
• Bump sabre/dav from 3.2.2 to 3.2.3 (3rdparty#176)
• Manually patch PHP-Doc of VObject Splitter (3rdparty#185)
• Fix named parameter detection on SQLite (3rdparty#187)
• Update version on master (activity#291)
• Fix scrolling detection on activity 14 (activity#293)
• Make the object information available on emails (activity#299)
• Add the mimetype to the preview arrays (activity#300)
• Move to compiled handlebrs (activity#301)
• Remove unneeded -ms-filter (was only needed for IE8) (activity#302)
• Use the query builder and cast the values (activity#304)
• Add icon to files sidebar tab (activity#305)
• Fix JS unit tests after handlebars (activity#307)
• Shorten tab label 'Activities' to 'Activity' (activity#308)
• Add a intermediate migration to fix old installations (activity#310)
• Correctly restrict affected users when using command to send emails (activity#311)
• Autocomplete for email command (activity#314)
• Use the substract function instead of manual math (activity#315)
• Use the full path instead of the file name in HTML emails too (activity#316)
• Update stable15 target versions (activity#319)
• Create activity when user unshares a file themselves (activity#323)
• Validate rich objects before using (activity#324)
• Remove unneeded CSS rule for IE 11 (files_pdfviewer#100)
• Update stable15 target versions (files_pdfviewer#109)
• Update version on master (files_pdfviewer#94)
• Fix embedded viewer with new server layout on IE 11 (files_pdfviewer#95)
• Hide footer in public share page (files_pdfviewer#99)
• Update version on master (files_texteditor#112)
• Update info.xml (files_texteditor#116)
• Improve code blocks in markdown rendering (files_texteditor#120)
• Update stable15 target versions (files_texteditor#123)
• Update version on master (files_videoplayer#61)
• Fix videoplayback on NC15 (files_videoplayer#68)
• Update stable15 target versions (files_videoplayer#69)
• Don't Assume Document Root (firstrunwizard#78)
• Update version on master (firstrunwizard#81)
• Remove hardcoded background-size (firstrunwizard#84)
• Design detail and accessibility fixes (firstrunwizard#85)
• Update stable15 target versions (firstrunwizard#89)
• Add HEIC/HEIF support to the gallery (gallery#464)
• Update version on master (gallery#468)
• Move to compiled handlebars (gallery#481)
• Remove sharing height limit, since it is overwriting the server defaults (gallery#482)
• Hide button if download links are hidden for link shares (gallery#484)
• Update stable15 target versions (gallery#485)
• Update version on master (logreader#74)
• Update version on master (nextcloud_announcements#33)
• Update version on master (notifications#159)
• Update config and babel for ie11 (notifications#160)
• Add vue build test (notifications#162)
• Update all NPM (notifications#170)
• Bump @babel/core from 7.0.0 to 7.0.1 (notifications#171)
• Bump vue-loader from 15.4.1 to 15.4.2 (notifications#172)
• Bump webpack from 4.18.0 to 4.19.0 (notifications#173)
• Update NPM packages (notifications#176)
• Bump webpack from 4.19.0 to 4.19.1 (notifications#177)
• Bump webpack from 4.19.1 to 4.20.2 (notifications#179)
• Bump babel-loader from 8.0.2 to 8.0.4 (notifications#180)
• Update all NPM (notifications#184)
• Switch to compiled handlebars (notifications#186)
• Bump webpack from 4.20.2 to 4.21.0 (notifications#187)
• Add .l10nignore files for compiled assets (notifications#188)
• Bump webpack from 4.21.0 to 4.22.0 (notifications#189)
• Use the rich message when available and instead of trim overlay with a shadow (notifications#190)
• Bump css-loader from 1.0.0 to 1.0.1 (notifications#194)
• Bump webpack from 4.22.0 to 4.24.0 (notifications#195)
• Bump webpack from 4.24.0 to 4.25.1 (notifications#196)
• Bump @babel/preset-env from 7.1.0 to 7.1.5 (notifications#197)
• Bump @babel/core from 7.1.2 to 7.1.6 (notifications#199)
• Bump @babel/preset-env from 7.1.5 to 7.1.6 (notifications#200)
• Bump webpack from 4.25.1 to 4.26.0 (notifications#203)
• Update stable15 target versions (notifications#204)
• Add icon to empty content message (notifications#210)
• Update version on master (password_policy#70)
• Update stable15 target versions (password_policy#74)
• Adds tooltip to make people aware of API JSON format (serverinfo#129)
• Update version on master (serverinfo#131)
• Update stable15 target versions (serverinfo#134)
• Checking for valid CPU average values (serverinfo#97)
• Update version on master (survey_client#81)
• Properly escape column name in "createFunction" call (survey_client#84)
• Do not call invalid function (survey_client#86)
• Update stable15 target versions (survey_client#87)

Version 14.0.14 August 16 2019

Download: nextcloud-14.0.14.tar.bz2 or nextcloud-14.0.14.zip
Check the file integrity with:
MD5: nextcloud-14.0.14.tar.bz2.md5 or nextcloud-14.0.14.zip.md5
SHA256: nextcloud-14.0.14.tar.bz2.sha256 or nextcloud-14.0.14.zip.sha256
SHA512: nextcloud-14.0.14.tar.bz2.sha512 or nextcloud-14.0.14.zip.sha512
PGP (Key): nextcloud-14.0.14.tar.bz2.asc or nextcloud-14.0.14.zip.asc

Changes

• Forward OCSException to initiator (server#16193)
• Bump lodash.merge from 4.6.1 to 4.6.2 in /settings (server#16342)
• Bump lodash from 4.17.11 to 4.17.14 in /settings (server#16347)
• Bump lodash from 4.17.11 to 4.17.14 in /apps/oauth2 (server#16354)
• Bump lodash from 4.17.11 to 4.17.14 in /apps/updatenotification (server#16355)
• Bump lodash from 4.17.11 to 4.17.14 in /build (server#16356)
• Bump lodash from 4.17.11 to 4.17.14 in /apps/accessibility (server#16358)
• Only prevent disabling encrytion via the API (server#16427)
• Do not keep searching for recent (server#16434)
• Set proper defaults for v-tooltip usages (server#16609)
• Fix/xss/on favorite file (server#16612)
• Bump lodash.mergewith from 4.6.1 to 4.6.2 in /build (server#16648)
• Bump fstream from 1.0.11 to 1.0.12 in /build (server#16650)
• Trim the subject before encrypting the subject (notifications#386)

Version 14.0.13 July 5 2019

Download: nextcloud-14.0.13.tar.bz2 or nextcloud-14.0.13.zip
Check the file integrity with:
MD5: nextcloud-14.0.13.tar.bz2.md5 or nextcloud-14.0.13.zip.md5
SHA256: nextcloud-14.0.13.tar.bz2.sha256 or nextcloud-14.0.13.zip.sha256
SHA512: nextcloud-14.0.13.tar.bz2.sha512 or nextcloud-14.0.13.zip.sha512
PGP (Key): nextcloud-14.0.13.tar.bz2.asc or nextcloud-14.0.13.zip.asc

Changes

• Update CRL due to revoked cookbook.crt (server#15630)
• Also allow dragging below the file list (server#15756)
• Don't notify admins if no potentially over exposing links found (server#15862)
• Prevent faulty logs from nested setupFS calls (server#16031)
• 14.0.13 RC1 (server#16062)
• Check if uploading to lookup server is enabled before verifying (server#16094)
• Fall back to black for non-color values (server#16096)
• Verify that paths are valid for recursive local move (server#16130)
• Don't allow to disable encryption via the API (server#16135)
• [stabel 14] Better check reshare permissions (server#16143)
• Fix notification casting (server#16213)
• Better check reshare permissions part2 (server#16216)
• 14.0.13 (server#16220)
• Fix load of character maps (files_pdfviewer#143)
• Correctly show errors when setting the password (gallery#531)

Version 14.0.12 May 17 2019

Download: nextcloud-14.0.12.tar.bz2 or nextcloud-14.0.12.zip
Check the file integrity with:
MD5: nextcloud-14.0.12.tar.bz2.md5 or nextcloud-14.0.12.zip.md5
SHA256: nextcloud-14.0.12.tar.bz2.sha256 or nextcloud-14.0.12.zip.sha256
SHA512: nextcloud-14.0.12.tar.bz2.sha512 or nextcloud-14.0.12.zip.sha512
PGP (Key): nextcloud-14.0.12.tar.bz2.asc or nextcloud-14.0.12.zip.asc

Changes

• DateTime is not yet in 14 (server#15570)
• Update ca bundle (server#15573)

Version 14.0.11 May 16 2019

Download: nextcloud-14.0.11.tar.bz2 or nextcloud-14.0.11.zip
Check the file integrity with:
MD5: nextcloud-14.0.11.tar.bz2.md5 or nextcloud-14.0.11.zip.md5
SHA256: nextcloud-14.0.11.tar.bz2.sha256 or nextcloud-14.0.11.zip.sha256
SHA512: nextcloud-14.0.11.tar.bz2.sha512 or nextcloud-14.0.11.zip.sha512
PGP (Key): nextcloud-14.0.11.tar.bz2.asc or nextcloud-14.0.11.zip.asc

Changes

• Reconnect to DB after timeout for Notify command. Fixes #14479 (server#15007)
• 3rdparty] Bump sabre to 3.2.3 (server#15070)
• Do not allow invalid users to be created (server#15072)
• Do not use spaces in generated passwords (server#15120)
• Backport/15129/stable14 (server#15140)
• Load apps before running repair steps (server#15159)
• Prefetching blows up if there are a lot of files. (server#15207)
• [Security] Bump tar from 4.4.1 to 4.4.8 in /apps/updatenotification (server#15329)
• [Security] Bump tar from 4.4.1 to 4.4.8 in /apps/accessibility (server#15330)
• [Security] Bump tar from 4.4.1 to 4.4.8 in /apps/oauth2 (server#15331)
• [Security] Bump tar from 4.4.1 to 4.4.8 in /settings (server#15335)
• Check if the data is in the lookup server (server#15343)
• Do NOT assume all files are selected if the first checkbox is (server#15347)
• Fix collapse button in app navigation in IE11 (server#15391)
• Set Edge < 16 as incompatible with css vars (server#15423)
• Remove setup args from logging (server#15444)
• Remove recommendation for opcache on CLI (server#15473)
• Update file-upload.js (server#15484)
• Bump sabre/dav to 3.2.3 (3rdparty#266)
• Use correct CSS URL, remove default marked settings and change to GFM rendering (files_texteditor#152)
• Do not call invalid function (survey_client#92)

Version 14.0.10 April 9 2019

Download: nextcloud-14.0.10.tar.bz2 or nextcloud-14.0.10.zip
Check the file integrity with:
MD5: nextcloud-14.0.10.tar.bz2.md5 or nextcloud-14.0.10.zip.md5
SHA256: nextcloud-14.0.10.tar.bz2.sha256 or nextcloud-14.0.10.zip.sha256
SHA512: nextcloud-14.0.10.tar.bz2.sha512 or nextcloud-14.0.10.zip.sha512
PGP (Key): nextcloud-14.0.10.tar.bz2.asc or nextcloud-14.0.10.zip.asc

Changes

• Fix .drone.yml syntax (server#14996)
• Check if OCA.Files.App is available before calling (server#15002)

Version 14.0.9 April 4 2019

Download: nextcloud-14.0.9.tar.bz2 or nextcloud-14.0.9.zip
Check the file integrity with:
MD5: nextcloud-14.0.9.tar.bz2.md5 or nextcloud-14.0.9.zip.md5
SHA256: nextcloud-14.0.9.tar.bz2.sha256 or nextcloud-14.0.9.zip.sha256
SHA512: nextcloud-14.0.9.tar.bz2.sha512 or nextcloud-14.0.9.zip.sha512
PGP (Key): nextcloud-14.0.9.tar.bz2.asc or nextcloud-14.0.9.zip.asc

Changes

• Bugfix for issue 10862: Trash-bin ignores trashbin_retention_obligation (server#14415)
• Parse multiple navigation items (server#14417)
• Add accessibility translations (server#14491)
• Run tests that fail with "no such process" over to apache server (server#14496)
• Make header.feature more robust by running it on apache (server#14498)
• Fix expire date change eventhandler (server#14504)
• Update icewind/smb to 3.0.2 (server#14513)
• Fix database configuration (server#14533)
• Check if password can be changed for the users backend in OCS api (server#14543)
• Add test for updated CA bundle (server#14547)
• Resolve user and groups in nested groups first before filtering the results (server#14592)
• Remove Google+ from Social Sharing Bundle (server#14595)
• Do not calculate folder size for parent that also needs proper scan, fixes #3524 (server#14598)
• Mention Open Cloud Mesh in Federated User Settings (server#14600)
• Remove sensitive SMB arguments from exception log (server#14659)
• Disable fragile tests (server#14673)
• Throw a proper error if rename fails in dav (server#14701)
• Always allow moving mountpoints inside the same mountpoint (server#14760)
• Fix user creation using LDAP Plugin (server#14782)
• Always register the Notifier (server#14783)
• Fix placeholder in disable message (server#14841)
• Remove Google+ federation usersettings (server#14856)
• Fix a bug with smb notify having leading slash when it should not (server#14866)
• Avoid replacement by user object (server#14868)
• Fix translations of settings (server#14881)
• Fix opening folders from different file lists (server#14890)
• Locale is not language (activity#356)

Version 14.0.8 February 28 2019

Download: nextcloud-14.0.8.tar.bz2 or nextcloud-14.0.8.zip
Check the file integrity with:
MD5: nextcloud-14.0.8.tar.bz2.md5 or nextcloud-14.0.8.zip.md5
SHA256: nextcloud-14.0.8.tar.bz2.sha256 or nextcloud-14.0.8.zip.sha256
SHA512: nextcloud-14.0.8.tar.bz2.sha512 or nextcloud-14.0.8.zip.sha512
PGP (Key): nextcloud-14.0.8.tar.bz2.asc or nextcloud-14.0.8.zip.asc

Changes

• Update icewind/smb to 3.0.1 (server#14069)
• Fix: Check if `$this->params['user']` is an array (server#14086)
• [Security] Bump extend from 3.0.1 to 3.0.2 in /build (server#14089)
• [Security] Bump lodash from 4.17.10 to 4.17.11 in /apps/accessibility (server#14090)
• [Security] Bump lodash from 4.17.10 to 4.17.11 in /build (server#14091)
• [Security] Bump lodash from 4.17.10 to 4.17.11 in /apps/oauth2 (server#14092)
• [Security] Bump lodash from 4.17.10 to 4.17.11 in /apps/updatenotification (server#14096)
• Fix the thorrtler whitelist bitmask (server#14152)
• [Security] Bump handlebars from 4.0.11 to 4.1.0 in /build (server#14188)
• Fix recent files (server#14196)
• Update CRL to contain revoked files_external_dropbox, passman & payback (server#14202)
• Fix small glitches in update notification page (server#14205)
• Ensure attribute names are lower cased (server#14206)
• Remove trailing spaces from localized strings (server#14226)
• Catch Request exception in testRemoteUrl (server#14278)
• Correctly determinate the owner in case of shared external storages (server#14284)
• Use latest ca-bundle.crt from https://curl.haxx.se/docs/caextract.html (server#14372)
• Make sure the parameters are always an array (activity#348)
• Bye, Scrutinizer! (notifications#294)

Version 14.0.7 February 7 2019

Download: nextcloud-14.0.7.tar.bz2 or nextcloud-14.0.7.zip
Check the file integrity with:
MD5: nextcloud-14.0.7.tar.bz2.md5 or nextcloud-14.0.7.zip.md5
SHA256: nextcloud-14.0.7.tar.bz2.sha256 or nextcloud-14.0.7.zip.sha256
SHA512: nextcloud-14.0.7.tar.bz2.sha512 or nextcloud-14.0.7.zip.sha512
PGP (Key): nextcloud-14.0.7.tar.bz2.asc or nextcloud-14.0.7.zip.asc

Changes

• Upload new files in objectstore to a .part path first (server#13035)
• Broker: add timezone to CANCEL messages (server#13385)
• Check anonymous OPTIONS requests file in root (not in subdir) (server#13558)
• Principals can be principal/user/ or principal/ from lega… (server#13583)
• Update pear/acrchive_tar to 1.4.5 (server#13599)
• Update URL for federation (server#13637)
• Fix colorizeSvg with transformations that contain a comma (,) (server#13654)
• Use warning background color & primary text color for setting warnings (server#13666)
• Fix template paramter (server#13671)
• Vcard avatar fixes (server#13708)
• Cache tokens when using swift's v2 authentication (server#13741)
• Cleanup shared lock if changing to exclusive lock failed (server#13745)
• Respect user locale in natural sort comparator (server#13763)
• Honor remember_login_cookie_lifetime (server#13767)
• Show proper default locale (server#13782)
• Add acceptance tests for moving and copying files (server#13788)
• Bump bower from 1.8.4 to 1.8.8 in /build (server#13822)
• Fix dropping a folder on a folder row (server#13888)
• Fix updating the password of a link share when passwords are enforced (server#13901)
• Clean pending 2FA authentication on password reset (server#13916)
• Forward error message from password policy (server#13921)
• Ignore non existing users when retrieving details of group members (server#13922)
• Fix paged search with multiple bases (LDAP) (server#13923)
• Remove .css fileending from accessibility user css route (server#13928)
• Handle mail send error gracefully (server#13931)
• Bump pear/archive_tar from 1.4.3 to 1.4.5 (3rdparty#215)
• Fix notification documentation to reflect recent changes (notifications#259)

Version 14.0.6 January 11 2019

Download: nextcloud-14.0.6.tar.bz2 or nextcloud-14.0.6.zip
Check the file integrity with:
MD5: nextcloud-14.0.6.tar.bz2.md5 or nextcloud-14.0.6.zip.md5
SHA256: nextcloud-14.0.6.tar.bz2.sha256 or nextcloud-14.0.6.zip.sha256
SHA512: nextcloud-14.0.6.tar.bz2.sha512 or nextcloud-14.0.6.zip.sha512
PGP (Key): nextcloud-14.0.6.tar.bz2.asc or nextcloud-14.0.6.zip.asc

Changes

• Don't log parameters on user creation in case of error/exception (server#13480)
• RemoveClassifiedEventActivity: check if calendar still exists (server#13507)
• Broker: add timezone to CANCEL messages (3rdparty#197)

Version 14.0.5 January 10 2019

Download: nextcloud-14.0.5.tar.bz2 or nextcloud-14.0.5.zip
Check the file integrity with:
MD5: nextcloud-14.0.5.tar.bz2.md5 or nextcloud-14.0.5.zip.md5
SHA256: nextcloud-14.0.5.tar.bz2.sha256 or nextcloud-14.0.5.zip.sha256
SHA512: nextcloud-14.0.5.tar.bz2.sha512 or nextcloud-14.0.5.zip.sha512
PGP (Key): nextcloud-14.0.5.tar.bz2.asc or nextcloud-14.0.5.zip.asc

Changes

• Throw exception if decryption fails (server#12540)
• Respect the disabled setting for lost_password_link (server#12555)
• Fix share link password input (server#12560)
• Do not switch to root folder if filelist is already shown (server#12593)
• Load apps that have a dav type set before the dav server plugins (server#12596)
• Fix rendering of the sidebar in Files app (server#12598)
• Fix Typo in Original English String and All Translations (server#12600)
• Adjust Calendar resource / room interfaces to use class implementation (server#12617)
• Extend anonymous options to work on every dav url (server#12639)
• Fix count on string (server#12684)
• Fix folder path containing leading slash when getting mount root by id (server#12715)
• Set Referrer-Policy also in addSecurityHeaders() (server#12738)
• Make sure to always load the latest icons-vars.css file (server#12739)
• Update compatible versions for cloud federation api (server#12745)
• Fix interaction with groups that contain a slash (server#12748)
• Add pipe mode for sendmail (server#12749)
• Only run the AnonymousOptionsPlugion on Anonymous requests (server#12812)
• Fix the system address book (server#12817)
• PHP module is named mbstring (server#12826)
• Do not update child all child shares on group share update (server#12834)
• Fix missing click event on update button (server#12850)
• Fix password confirmation lib for ie11 (server#12860)
• Only execute query in propagateChange once (server#12862)
• Emit write update only once on touch (server#12869)
• Fix unread comment icon not shown for the sharee (server#12914)
• Better activities for systemtags that are removed by CLI (server#13030)
• Settings ie11 fixes (server#13037)
• Ie11 compatibility updatenotifications (server#13077)
• Fix exception on LDAP mapping during login (server#13120)
• Fix SAML Client login flow on Apple devices (server#13124)
• Prevent special characters from breaking the file drop remote url (server#13152)
• Use a case insensitive search for email (server#13180)
• Fix ie11 checkboxes (server#13207)
• Files list not rendering if user has favorites navigation unfolded (server#13216)
• Do not forgot to store the second displayname portion (server#13219)
• Use only app path to get the icon on the svg api (server#13224)
• Fix opening search results for comments (server#13254)
• Force var to be integer (server#13321)
• Make the footer "Get your own free account" translatable (server#13322)
• Fix can change password check in case of encryption is enabled (server#13350)
• Update the CRL (server#13353)
• Throttle with correct metadata (server#13369)
• Fix loginflow with apptoken enter on iOS (server#13371)
• Register and show when an LDAP user was detected as unavailable/deleted (server#13373)
• HttpClient getHeader can return empty string (server#13426)
• Respect classification of calendar events in activity stream (server#13441)
• Add support for boolean default (server#13445)
• Show the repair steps and repair info output in the web for better feedback (server#13470)
• Fix PDF sidebar shown in PDF thumbnails (files_pdfviewer#115)
• Remove hardcoded background-size (firstrunwizard#92)
• Use proper slogan from theming app (firstrunwizard#95)
• Update info.xml (firstrunwizard#97)

Version 14.0.4 November 22 2018

Download: nextcloud-14.0.4.tar.bz2 or nextcloud-14.0.4.zip
Check the file integrity with:
MD5: nextcloud-14.0.4.tar.bz2.md5 or nextcloud-14.0.4.zip.md5
SHA256: nextcloud-14.0.4.tar.bz2.sha256 or nextcloud-14.0.4.zip.sha256
SHA512: nextcloud-14.0.4.tar.bz2.sha512 or nextcloud-14.0.4.zip.sha512
PGP (Key): nextcloud-14.0.4.tar.bz2.asc or nextcloud-14.0.4.zip.asc

Changes

• Allow overwrite.cli.url without trailing slash (server#11772)
• Remove duplicate call to decodeURIComponent (server#11781)
• Check for empty string (server#11783)
• Add "Referrer-Policy" to htaccess file, addresses issue #11099 (server#11798)
• Always query the lookup server in a global scale setup (server#11800)
• Fix a case where "password_by_talk" was not a boolean (server#11851)
• Add .l10nignore files for compiled assets (server#11925)
• Properly escape column name in "createFunction" call (server#11929)
• Allow userId to be null (server#11939)
• Allow "same-origin" as "Referrer-Policy" (Backport to stable14) (server#11950)
• Do not emit preHooks twice on non-part-storage (server#11961)
• Filter null values for UserManager::getByEmail (server#11976)
• Allow local delivery of schedule message while prohibiting FreeBusy requests (server#11979)
• Load apps/APP/l10n/*.js and themes/THEME/apps/APP/l10n/*.js (server#11990)
• Lazy open first source stream in assemblystream (server#11994)
• Fix opening a section again in the Files app (server#11995)
• Remove cookies from Clear-Site-Data Header (server#12005)
• Forwarded ExpiredTokenException (server#12032)
• Allow chunked uploads even if your quota is not sufficient (server#12040)
• Improve encrypt all / decrypt all (server#12045)
• Double check for failed cache with a shared storage (server#12108)
• Implement the size of an assembly stream (server#12111)
• Bring the browser window of an actor to the foreground when acting as him (server#12120)
• Move acceptance tests that crash the PHP built-in server to Apache (server#12121)
• Remove unneeded empty search attribute values, fixes #12086 (server#12122)
• Fixes wrong variable usage (server#12137)
• LDAP: announce display name changes so that addressbook picks it up (server#12141)
• Bruteforce protection handling in combination with (server#12160)
• Add global site selector as user back-end which doesn't support password confirmation (server#12184)
• Do not set indeterminate state for file shares (server#12187)
• Revert "Wait for cron to finish before running upgrade command" (server#12197)
• Fix bug #12151: fix list formatting by correcting malformed html (server#12202)
• A folder should get a folder mimetype (server#12297)
• Use the proper server for the apptoken flow login (server#12299)
• Do not log FileLock as exception (server#12300)
• Set the filemodel before rending the detailsview (server#12301)
• Disabled ldap fix (server#12331)
• Fix - Add to favorites not working in IE11 (server#12339)
• Remove arrow function for ie compatibility (server#12341)
• Fix default types of activity event member variables (server#12353)
• Suppress wrong audit log messages about failed login attempts (server#12372)
• Add fix for IE11 flexbox height bug (server#12374)
• Properly search the root of a shared external storage (server#12375)
• Fix app update available check (server#12412)
• Use nextcloud-password-confirmation (server#12416)
• Fix IE rule for min width (server#12431)
• Added cache override to ensure an always up-to-date accessibility css (server#12432)
• Unique contraint and deadlock fixes for filecache and file_locks (server#12433)
• Fix app menu calculation for random size of the right header (server#12440)
• Fix missing quickaccess favorite folder on add (server#12441)
• Fixes dav share issue with owner (server#12459)
• Fix wrong share popover opening on share link (server#12482)
• Only use width and opacity for transition (server#12492)
• Forward object not found error in swift as dav 404 (server#12502)
• Fix the warning appearing in the admin section when mail_smtpmode is not configured (server#12529)
• Remove unused svg api route (server#12542)
• Bearer tokens are app token (server#12545)
• Handle permission in update of share better (server#12561)
• Correctly restrict affected users when using command to send emails (activity#312)
• Improve code blocks in markdown rendering (files_texteditor#121)
• Properly escape column name in "createFunction" call (survey_client#85)

Version 14.0.3 October 12 2018

Download: nextcloud-14.0.3.tar.bz2 or nextcloud-14.0.3.zip
Check the file integrity with:
MD5: nextcloud-14.0.3.tar.bz2.md5 or nextcloud-14.0.3.zip.md5
SHA256: nextcloud-14.0.3.tar.bz2.sha256 or nextcloud-14.0.3.zip.sha256
SHA512: nextcloud-14.0.3.tar.bz2.sha512 or nextcloud-14.0.3.zip.sha512
PGP (Key): nextcloud-14.0.3.tar.bz2.asc or nextcloud-14.0.3.zip.asc

Changes

• Fixes the apps menu scrollbar (server#11662)
• Ignore "session_lifetime" if it can not be converted to a number (server#11761)
• Normalize getUnjailedPath (server#11770)

Version 14.0.2 October 11 2018

Download: nextcloud-14.0.2.tar.bz2 or nextcloud-14.0.2.zip
Check the file integrity with:
MD5: nextcloud-14.0.2.tar.bz2.md5 or nextcloud-14.0.2.zip.md5
SHA256: nextcloud-14.0.2.tar.bz2.sha256 or nextcloud-14.0.2.zip.sha256
SHA512: nextcloud-14.0.2.tar.bz2.sha512 or nextcloud-14.0.2.zip.sha512
PGP (Key): nextcloud-14.0.2.tar.bz2.asc or nextcloud-14.0.2.zip.asc

Changes

• Fix contacts menu on mentions (server#11350)
• Make the server ready to use global scale with SAML as auth back-end (server#11373)
• Fix default flex shrink on list (server#11374)
• Fixes the logo height (server#11385)
• Do not explode when getting permissions from a FailedStorage (server#11389)
• Do not hide the progress bar while the chunked upload is being assembled (server#11399)
• Fix "checkWellKnownUrl" not being run (server#11418)
• Add back the total used space per user (server#11425)
• Fix invalid inline input confirm border (server#11426)
• Center back the history icon (server#11430)
• AssemblyStream is also eof if we have no more source stream (server#11436)
• Re-enable upload button after updating Avatar (server#11451)
• Fix typo in config.sample.php (server#11488)
• Bugfix 2FA theme: buttons white (server#11489)
• Update config and babel for ie11 (server#11490)
• Only catch QueryException when trying to build class (server#11492)
• Show auth type "None" in email settings (server#11493)
• Fix public page footer link wrap (server#11510)
• Fix share header text on small widths (server#11511)
• Add missing compiled mimetype list (server#11516)
• Fixes the move/copy picker buttons (server#11525)
• Fix breadcrumbs (server#11530)
• Added kinetic scrolling for iOS to apps dropdown menu #10281 (server#11554)
• Throw an error if a node is smaller than expected in assemblystream (server#11555)
• Reduce the min-width of the files table so it works on sharing pages on mobile (server#11556)
• Fix header overflow, fix more apps menu, fix #11552 (server#11558)
• Add new group entry on users list + fixes (server#11575)
• Redirect guests to login if they follow the link of a comment mention-notifications (server#11577)
• Force multiselect max-height to 5.5 items (server#11579)
• Just update password hash without validating (server#11580)
• Fix sticky header on users list (server#11582)
• Fix header border on users list (server#11608)
• Fix call to logger (server#11610)
• Allow the creationg of previews of files stored in appdata (server#11703)
• Update CRL due to changed cert for linkshareex (server#11706)
• Fix a misleading setup check for .well-known/caldav & carddav (server#11738)
• Remove unneeded CSS rule for IE 11 (files_pdfviewer#101)
• Hide footer in public share page (files_pdfviewer#103)
• Fix embedded viewer with new server layout on IE 11 (files_pdfviewer#98)

Version 14.0.1 September 25 2018

Download: nextcloud-14.0.1.tar.bz2 or nextcloud-14.0.1.zip
Check the file integrity with:
MD5: nextcloud-14.0.1.tar.bz2.md5 or nextcloud-14.0.1.zip.md5
SHA256: nextcloud-14.0.1.tar.bz2.sha256 or nextcloud-14.0.1.zip.sha256
SHA512: nextcloud-14.0.1.tar.bz2.sha512 or nextcloud-14.0.1.zip.sha512
PGP (Key): nextcloud-14.0.1.tar.bz2.asc or nextcloud-14.0.1.zip.asc

Changes

• Fixes the upload progress bar layout - 14 backport (server#11039)
• Fix markup and style of mentions in comments (server#11077)
• Do not invalidate main token on OAuth (server#11090)
• Expire tokens hardening (server#11103)
• fix js files client for user names with spaces (server#11152)
• Fix user and group listing with users that have an integer user id (server#11186)
• Fix exception class (server#11187)
• Remove posix_getpwuid and compare only userid (server#11191)
• Fix check for more users in sharing dialogue (server#11201)
• Remove filter_var flags due to PHP 7.3 deprecation, fixes #10894 (server#11237)
• Fixes empty favorite names for trailing slashes (server#11259)
• Fix size of icons in menus inside apps when shown as images (server#11276)
• Prevent comment being composed from overlapping the submit button (server#11277)
• replace setcookie value with '' instead of null. (server#11280)
• Fix the link and anchor for the update notifications (server#11282)
• Include empty directories in the default state of acceptance tests (server#11283)
• Get permission of storage for shares (server#11287)
• Shared by info for room shares without names (server#11288)
• Fix icons cacher regex for compressed output (server#11291)
• Revert "Use APCu caching of composer" (server#11293)
• Use user locale as default in the template (server#11294)
• Fix expiration code of tokens (server#11302)
• Add unit test for findLanguageFromLocale (server#11340)
• 14 scroll fix (activity#295)
• Update stable14 target versions (files_texteditor#111)
• Update stable14 target versions (firstrunwizard#80)
• Update stable14 target versions (gallery#467)
• Update stable14 target versions (nextcloud_announcements#32)
• Update stable14 target versions (notifications#158)
• Update config and babel for ie11 (notifications#161)

Version 14.0.0 September 10 2018

Download: nextcloud-14.0.0.tar.bz2 or nextcloud-14.0.0.zip
Check the file integrity with:
MD5: nextcloud-14.0.0.tar.bz2.md5 or nextcloud-14.0.0.zip.md5
SHA256: nextcloud-14.0.0.tar.bz2.sha256 or nextcloud-14.0.0.zip.sha256
SHA512: nextcloud-14.0.0.tar.bz2.sha512 or nextcloud-14.0.0.zip.sha512
PGP (Key): nextcloud-14.0.0.tar.bz2.asc or nextcloud-14.0.0.zip.asc

Changes

Nextcloud 14 merged nearly 1000 pull requests with improvements and changes, almost 150 more than Nextcloud 13. This only covers the core server, hundreds more changes were made in the apps that make up our release, making this version officially our biggest release ever.

While we can never cover everything that has improved, these are the main feature highlights:

• Video Verification - use a video call with Talk to verify the identity of somebody before granting them access to a share
• Two-factor authentication now with Signal and Telegram as well as NFC and SMS
• Accessibility improvements & dark theme
• Add a note to shares, share files in a Talk chat, new Deck Kanban app and much more

Our blog with more details is here.

Version 13.0.12 February 29 2019

Download: nextcloud-13.0.12.tar.bz2 or nextcloud-13.0.12.zip
Check the file integrity with:
MD5: nextcloud-13.0.12.tar.bz2.md5 or nextcloud-13.0.12.zip.md5
SHA256: nextcloud-13.0.12.tar.bz2.sha256 or nextcloud-13.0.12.zip.sha256
SHA512: nextcloud-13.0.12.tar.bz2.sha512 or nextcloud-13.0.12.zip.sha512
PGP (Key): nextcloud-13.0.12.tar.bz2.asc or nextcloud-13.0.12.zip.asc

Changes

• Update icewind/smb to 2.0.6 (server#14067)
• Update CRL to contain revoked files_external_dropbox, passman & payback (server#14204)
• Ensure attribute names are lower cased (server#14208)
• Decrease $maxDelay in Throttler.php (server#14224)

Version 13.0.11 February 7 2019

Download: nextcloud-13.0.11.tar.bz2 or nextcloud-13.0.11.zip
Check the file integrity with:
MD5: nextcloud-13.0.11.tar.bz2.md5 or nextcloud-13.0.11.zip.md5
SHA256: nextcloud-13.0.11.tar.bz2.sha256 or nextcloud-13.0.11.zip.sha256
SHA512: nextcloud-13.0.11.tar.bz2.sha512 or nextcloud-13.0.11.zip.sha512
PGP (Key): nextcloud-13.0.11.tar.bz2.asc or nextcloud-13.0.11.zip.asc

Changes

• Principals can be principal/user/ or principal/ from legacy installs (server#13584)
• Bump pear/archive_tar to 1.4.5 (server#13600)
• Update URL for federation (server#13638)
• Don't log parameters on user creation in case of error/exception (server#13707)
• Cleanup shared lock if changing to exclusive lock failed (server#13746)
• Fix dropping a folder on a folder row (server#13889)
• Clean pending 2FA authentication on password reset (server#13917)
• Pear/archive_tar 1.4.5 (3rdparty#216)
• Fix notification documentation to reflect recent changes (notifications#260)

Version 13.0.10 January 11 2019

Download: nextcloud-13.0.10.tar.bz2 or nextcloud-13.0.10.zip
Check the file integrity with:
MD5: nextcloud-13.0.10.tar.bz2.md5 or nextcloud-13.0.10.zip.md5
SHA256: nextcloud-13.0.10.tar.bz2.sha256 or nextcloud-13.0.10.zip.sha256
SHA512: nextcloud-13.0.10.tar.bz2.sha512 or nextcloud-13.0.10.zip.sha512
PGP (Key): nextcloud-13.0.10.tar.bz2.asc or nextcloud-13.0.10.zip.asc

Changes

• RemoveClassifiedEventActivity: check if calendar still exists (server#13508)

Version 13.0.9 January 10 2019

Download: nextcloud-13.0.9.tar.bz2 or nextcloud-13.0.9.zip
Check the file integrity with:
MD5: nextcloud-13.0.9.tar.bz2.md5 or nextcloud-13.0.9.zip.md5
SHA256: nextcloud-13.0.9.tar.bz2.sha256 or nextcloud-13.0.9.zip.sha256
SHA512: nextcloud-13.0.9.tar.bz2.sha512 or nextcloud-13.0.9.zip.sha512
PGP (Key): nextcloud-13.0.9.tar.bz2.asc or nextcloud-13.0.9.zip.asc

Changes

• Load apps that have a dav type set before the dav server plugins (server#12595)
• Fix typo in original english string and all translations (server#12616)
• Fix the system address book (server#12818)
• PHP module is named mbstring (server#12827)
• Do not update child all child shares on group share update (server#12835)
• Only execute query in propagateChange once (server#12864)
• Fix SAML Client login flow on Apple devices (server#13125)
• Prevent special characters from breaking the file drop remote url (server#13153)
• Do not forgot to store the second displayname portion (server#13220)
• Update the CRL (server#13359)
• Fix loginflow with apptoken enter on iOS (server#13374)
• Log more information about insufficient storage in dav plugin (server#13422)
• Respect classification of calendar events in activity stream (server#13443)
• Show the repair steps and repair info output in the web for better feedback (server#13471)
• Fix PDF sidebar shown in PDF thumbnails (files_pdfviewer#116)

Version 13.0.8 November 22 2018

Download: nextcloud-13.0.8.tar.bz2 or nextcloud-13.0.8.zip
Check the file integrity with:
MD5: nextcloud-13.0.8.tar.bz2.md5 or nextcloud-13.0.8.zip.md5
SHA256: nextcloud-13.0.8.tar.bz2.sha256 or nextcloud-13.0.8.zip.sha256
SHA512: nextcloud-13.0.8.tar.bz2.sha512 or nextcloud-13.0.8.zip.sha512
PGP (Key): nextcloud-13.0.8.tar.bz2.asc or nextcloud-13.0.8.zip.asc

Changes

• Ignore "session_lifetime" if it can not be converted to a number (server#11762)
• Change password expiration time from 12h to 7d (server#11857)
• Do not emit preHooks twice on non-part-storage (server#11962)
• Filter null values for UserManager::getByEmail (server#11978)
• Allow local delivery of schedule message while prohibiting FreeBusy requests (server#11982)
• Load apps/APP/l10n/*.js and themes/THEME/apps/APP/l10n/*.js (server#11992)
• Fix opening a section again in the Files app (server#11996)
• Lazy open first source stream in assemblystream (server#11997)
• Remove cookies from Clear-Site-Data Header (server#12006)
• Actually return the root folder when traversing up the tree (server#12060)
• Double check for failed cache with a shared storage (server#12109)
• Implement the size of an assembly stream (server#12112)
• Remove unneeded empty search attribute values, fixes #12086 (server#12123)
• LDAP: announce display name changes so that addressbook picks it up (server#12142)
• Reset bruteforce on token refresh OAuth (server#12208)
• Expired tokens should not trigger bruteforce protection (server#12212)
• A folder should get a folder mimetype (server#12298)
• Properly search the root of a shared external storage (server#12376)
• Unique contraint and deadlock fixes for filecache and file_locks (server#12434)
• Fixes dav share issue with owner (server#12460)
• Forward object not found error in swift as dav 404 (server#12503)
• Bearer tokens are app token (server#12546)
• Handle permission in update of share better (server#12562)
• Correctly restrict affected users when using command to send emails (activity#313)

Version 13.0.7 October 11 2018

Download: nextcloud-13.0.7.tar.bz2 or nextcloud-13.0.7.zip
Check the file integrity with:
MD5: nextcloud-13.0.7.tar.bz2.md5 or nextcloud-13.0.7.zip.md5
SHA256: nextcloud-13.0.7.tar.bz2.sha256 or nextcloud-13.0.7.zip.sha256
SHA512: nextcloud-13.0.7.tar.bz2.sha512 or nextcloud-13.0.7.zip.sha512
PGP (Key): nextcloud-13.0.7.tar.bz2.asc or nextcloud-13.0.7.zip.asc

Changes

• Prefer using dir instead of allinfo for getting smb file info (server#10804)
• [LDAP] The WebUI Wizard also should not assign empty config IDs (server#10824)
• Fix mimetype detection for junked uploads (server#10829)
• Improve performance when dealing with large numbers of shares (server#10884)
• Cast timestamps older than unix epoch to 0 (server#10902)
• Use the same ignored properties list for both CustomerPropertiesBackends (server#10911)
• Do not hide the progress bar while the chunked upload is being assembled (server#11400)
• Fix "checkWellKnownUrl" not being run (server#11419)
• AssemblyStream is also eof if we have no more source stream (server#11437)
• Show auth type "None" in email settings (server#11494)
• Fixes the move/copy picker buttons (server#11524)
• Allow the creationg of previews of files stored in appdata (server#11704)
• Update CRL due to changed cert for linkshareex (server#11707)
• Fix a misleading setup check for .well-known/caldav & carddav (server#11739)

Version 13.0.6 August 30 2018

Download: nextcloud-13.0.6.tar.bz2 or nextcloud-13.0.6.zip
Check the file integrity with:
MD5: nextcloud-13.0.6.tar.bz2.md5 or nextcloud-13.0.6.zip.md5
SHA256: nextcloud-13.0.6.tar.bz2.sha256 or nextcloud-13.0.6.zip.sha256
SHA512: nextcloud-13.0.6.tar.bz2.sha512 or nextcloud-13.0.6.zip.sha512
PGP (Key): nextcloud-13.0.6.tar.bz2.asc or nextcloud-13.0.6.zip.asc

Changes

• Add sabre plugin to allow anonymous options requests to the dav root (server#10285)
• Do scan the root storage in background scan (server#10376)
• Adding test for table schedulingobjects and fixing postgres LOB (server#10552)
• Fix transfering ownership of a share to user with same id as receiver (server#10565)
• Make file cache updates more robust (server#10581)
• Retry smb stat on timeout (server#10591)
• Use insertIfNotExists to store new mimetypes. (server#10620)
• Only warn about data lose on password reset if per-user keys are used (server#10646)
• Update the scope of the lockdownmanager (server#10682)
• Log entries that are hidden during file listing (server#10698)
• Forgotten pass fix link (server#10735)
• Fix comment style in config sample (server#10759)
• Make sure error_log() always receives a string (server#10760)
• Fix call to OC.generateUrl for caldav birthday calendar on/off (server#10761)
• Use the path_hash instead of the path to query the filecache (server#10762)
• Don't blame random people for background email updates (server#10763)
• Resolve all group memberships properly (server#10783)
• Remove unexecutable code (server#10816)
• Improve URL detection (server#10821)
• MySQL 8.0+ and MariaDB 10.3+ are large prefix and barracuda by default (server#10823)
• Disallow negative mtime in dav search (server#10837)

Version 13.0.5 July 23 2018

Download: nextcloud-13.0.5.tar.bz2 or nextcloud-13.0.5.zip
Check the file integrity with:
MD5: nextcloud-13.0.5.tar.bz2.md5 or nextcloud-13.0.5.zip.md5
SHA256: nextcloud-13.0.5.tar.bz2.sha256 or nextcloud-13.0.5.zip.sha256
SHA512: nextcloud-13.0.5.tar.bz2.sha512 or nextcloud-13.0.5.zip.sha512
PGP (Key): nextcloud-13.0.5.tar.bz2.asc or nextcloud-13.0.5.zip.asc

Changes

• Fix highlighting of the upload drop zone (server#9837)
• Apply ldapUserFilter on members of group (server#9839)
• Make the DELETION of groups match greedy on the groupID (server#9841)
• Add parent index to share table (server#9843)
• Log full exception in cron instead of only the message (server#9958)
• Properly lock the target file on dav upload when not using part files (server#9986)
• LDAP backup server should not be queried when auth fails (server#10032)
• Fix filenames in sharing integration tests (server#10044)
• Lower log level for quota manipulation cases (server#10076)
• Let user set avatar in nextcloud if LDAP provides invalid image data (server#10089)
• Improved logging of smb connection errors (server#10093)
• Allow admin to disable fetching of avatars as well as a specific attribute (server#10115)
• Allow to disable encryption (server#10121)
• Update message shown when unsharing a file (server#10164)
• Fixed English grammatical error on Settings page. (server#10165)
• Request a valid property for DAV opendir (server#10169)
• Allow updating the token on session regeneration (server#10170)
• Prevent lock values from going negative with memcache backend (server#10180)
• Correctly handle users with numeric user ids (server#10185)
• Correctly parse the subject parameters for link (un)shares of calendars (server#10188)
• Fix "parsing" of email-addresses in comments and chat messages (server#10189)
• Sanitize parameters in createSessionToken() while logging (server#10195)
• Also retry rename operation on InvalidArgumentException (server#10201)
• Improve url detection in comments (server#10202)
• Only bind to ldap if configuration for the first server is set (server#10233)
• Use download manager from PDF.js to download the file (files_pdfviewer#84)
• Fix trying to load removed scripts (files_pdfviewer#87)
• Only pull for new messages if the session is allowed to be kept alive (notifications#138)
• Always push object data (notifications#139)
• Add prioritization for Talk (notifications#140)

Version 13.0.4 June 11 2018

Download: nextcloud-13.0.4.tar.bz2 or nextcloud-13.0.4.zip
Check the file integrity with:
MD5: nextcloud-13.0.4.tar.bz2.md5 or nextcloud-13.0.4.zip.md5
SHA256: nextcloud-13.0.4.tar.bz2.sha256 or nextcloud-13.0.4.zip.sha256
SHA512: nextcloud-13.0.4.tar.bz2.sha512 or nextcloud-13.0.4.zip.sha512
PGP (Key): nextcloud-13.0.4.tar.bz2.asc or nextcloud-13.0.4.zip.asc

Changes

• Allow setting notify credentials in environment (server#9788)
• Make the token expiration also work for autocasting 0 (server#9803)
• Enable caldav for webdav subtree public-calendars (server#9820)

Version 13.0.3 June 7 2018

Download: nextcloud-13.0.3.tar.bz2 or nextcloud-13.0.3.zip
Check the file integrity with:
MD5: nextcloud-13.0.3.tar.bz2.md5 or nextcloud-13.0.3.zip.md5
SHA256: nextcloud-13.0.3.tar.bz2.sha256 or nextcloud-13.0.3.zip.sha256
SHA512: nextcloud-13.0.3.tar.bz2.sha512 or nextcloud-13.0.3.zip.sha512
PGP (Key): nextcloud-13.0.3.tar.bz2.asc or nextcloud-13.0.3.zip.asc

Changes

• Backport various scss fixes #8777 (server#9259)
• Fix ellipsis in filename column (server#9344)
• Replace deprecated sinon reset() call with resetHistory() (server#9358)
• Issue #9318: catch exceptions in SCSSCacher::resetCache() (server#9377)
• Log lock state on conflict (server#9389)
• Remove unneeded locks in getCacheEntry (server#9391)
• Only allow a single concurrent dav write to a file (server#9392)
• Workflow rules error when changing operation (server#9409)
• Fix jsunit tests (server#9430)
• Allow IPv6 database host (server#9432)
• Add labels for Contacts menu and Settings (server#9433)
• Get correct version of an app (server#9436)
• Fix ids of permission checkboxes for shares (server#9453)
• Fix race condition when preparing upload folder (server#9454)
• Allow to specify a link to a legal notice (server#9516)
• Fix for unbound cloned LDAP connections (server#9522)
• Dont use $info as array when its not an array (server#9525)
• Improve OAuth (server#9540)
• Bump theming version for extraordinary release (server#9547)
• Fix translation bug on lost password page (server#9548)
• Cleanup locks in scanner on error (server#9566)
• Bump version for theming again 🙇 (server#9573)
• Make sure force language is reflected in html lang attribute (server#9579)
• Add privacy link to theming and fix scrollbars (server#9586)
• Fix settings menu (server#9590)
• Handle exception while itterating trough smb file listing (server#9608)
• Send invitations for shared calendars (server#9610)
• Regenerate session id after public share auth (server#9619)
• Emit event when running ./occ db:add-missing-indices (server#9620)
• Add PHP missing message to index.php (server#9621)
• Delete the previews when a version is restored (server#9622)
• Limit Sinon version to 5.0.7 at most (server#9629)
• Prepare another theming release including translations for recently added imprint and privacy policy strings (server#9647)
• Dont open the file on dav HEAD request (server#9649)
• Fix(AmazonS3): fix loop $result['Contents'] error (server#9650)
• Fix undefined variables (server#9651)
• Add search category icon (server#9652)
• Fix "Invalid argument supplied for foreach()" (server#9654)
• Do not load calendar/addressbook plugins if not needed (server#9655)
•  Make LargeFileHelper.php faster by avoiding execs as much as possible (server#9656)
• Improve error reporting and move format parameter to the options (server#9657)
• The OAuth endpoint needs to support Basic Auth (server#9659)
• LDAP password renewal fixes (server#9661)
• Check user state when fetching to avoid dealing with offline objects (server#9662)
• Make sure the file is readable before attempting to create a preview (server#9668)
• Fix drone mysqlmb4 tests (server#9672)
• Make sure the log doesn't try to read from PUT if it can't (server#9694)
• Allow admins to override FreeBusy capabilities without modifying ShareAPI capabilities (server#9707)
• Fix the unit tests (server#9712)
• Fix header nav (server#9727)
• Fix local users check in contacts menu (server#9732)
• Don't open the file when handling HEAD requests (3rdparty#99)
• Do not sanitize markdown output twice (files_texteditor#101)

Version 13.0.2 April 26 2018

Download: nextcloud-13.0.2.tar.bz2 or nextcloud-13.0.2.zip
Check the file integrity with:
MD5: nextcloud-13.0.2.tar.bz2.md5 or nextcloud-13.0.2.zip.md5
SHA256: nextcloud-13.0.2.tar.bz2.sha256 or nextcloud-13.0.2.zip.sha256
SHA512: nextcloud-13.0.2.tar.bz2.sha512 or nextcloud-13.0.2.zip.sha512
PGP (Key): nextcloud-13.0.2.tar.bz2.asc or nextcloud-13.0.2.zip.asc

Changes

• Show group display names (server#8779)
• Group existence check works without attribute (like with users) (server#8849)
• The FN is optional, carrying the displayname if present (server#8900)
• Set "share with" field to the ID of the circle (server#8905)
• Show EOL warning in the update section (server#8986)
• Use app version to generate scss filename (server#9015)
• Update icewind/smb to 2.0.5 (server#9017)
• Fix search text overlapping close button (server#9019)
• Clear any theming prefixed cache on cache buster increase (server#9020)
• Reset encryptionVersion to '1' if a file was stream copied (server#9064)
• Do not treat is-encrypted as custom property (server#9071)
• Fix proper permissions for multiple file access (server#9072)
• When formatting a share node an Empty target is invalid (server#9073)
• Move on with the next user if we found the user on one user back-end (server#9077)
• Allow usage of Windows 10 WebDav Netdrive (server#9089)
• Add more logging for the object storage during creation of the buckets (server#9094)
• Do not convert email addresses with idn_to_ascii if… (server#9095)
• Fix progress bar hidden before the upload ends (server#9124)
• Update CRL to include old quicknotes cert (server#9213)
• Fix user selectable text for public links for text files (server#9230)
• Provide an option to disable HTML emails (server#9231)
• Fix appinfo parsing when a single localized option is provided (server#9233)
• Use multibyte substring (server#9234)
• Fix webdav support for OneNote clients (server#9236)
• Fixed files copy/move when in favorites or recent section (server#9238)
• Don't update personal settings for admins (activity#262)
• Skip parameters which are not there instead of failing out (activity#265)
• Bump version 13 (files_pdfviewer#64)
• Fix info.xml (files_pdfviewer#66)
• No default enable (files_pdfviewer#67)
• Fix position of icons in "Share with" input field (gallery#418)
• Fix "No results found" tooltip (gallery#419)
• Fix UI while a share is being added (gallery#420)
• Hide "No results found" tooltip on autocompletion (gallery#424)
• Fix error while clicking on the share link checkbox (gallery#430)

Version 13.0.1 March 15 2018

Download: nextcloud-13.0.1.tar.bz2 or nextcloud-13.0.1.zip
Check the file integrity with:
MD5: nextcloud-13.0.1.tar.bz2.md5 or nextcloud-13.0.1.zip.md5
SHA256: nextcloud-13.0.1.tar.bz2.sha256 or nextcloud-13.0.1.zip.sha256
SHA512: nextcloud-13.0.1.tar.bz2.sha512 or nextcloud-13.0.1.zip.sha512
PGP (Key): nextcloud-13.0.1.tar.bz2.asc or nextcloud-13.0.1.zip.asc

Changes

• Don't pollute the log on DAV emaillogin (server#8045)
• Don't perform CSRF check on OCS routes with Bearer auth (server#8099)
• Use S3Client::upload instead of splitting single/multipart upload ourselves (server#8102)
• Remove old perl script to update l10n files (server#8145)
• Scss hardening (server#8156)
• Do not try to get the jailed path if we can't find the id (server#8177)
• Handle SSL certificate verifications for others than Let's Encrypt (server#8183)
• Use a phan version instead of master (server#8195)
• Repair step to clear frontend related caches (server#8197)
• Keep previous exception when transforming to dav exception (server#8228)
• Actually return stream from swift (server#8250)
• Remove invalid link to documentation (server#8253)
• Fix deleting folders when using s3 external storage (server#8261)
• Link to NC13 dev manual (server#8264)
• Better result handling of email search (server#8267)
• Update CRL to revoke files_rightclick (server#8271)
• Fix styling issues of guest pages #8155 (server#8286)
• Remove jquery ui background image (server#8287)
• Show open graph preview in WhatsApp (server#8309)
• Make acceptance tests for comments more consistent with the others (server#8395)
• Fix edit tag textbox size (server#8407)
• Use TTF fonts for avatar generation (server#8440)
• Use mb_* string methods to extract first character for generated avatars (server#8470)
• Show hint in OCS API for user creation (server#8515)
• Fix hiding and event propagation issues with the user management popover (server#8517)
• Add some whitespace around change.svg icon (server#8518)
• Avoid fruitless login attempts (server#8532)
• Fix retrieval of group members with numerical uids from LDAP (server#8536)
• Theming: handle not being in the serverroot (server#8554)
• Ext storage error warning (server#8561)
• Set autocomplete=new-password for mail share password (server#8577)
• Fix upload button visible on read-only folders (server#8595)
• Fixed app navigation for IE11 (server#8609)
• Fix breadcrumbs width calculation (server#8610)
• Fix comments (and systemtags) when involving users with numerical ids (server#8615)
• Update commentstabview.js (server#8621)
• Properly encapsulate require_once for app.php (server#8631)
• AppData hardening (server#8636)
• Use hash algo that's robust against collisions (server#8654)
• Fixed date/time picker on IE11 (server#8663)
• Use a more widely available method to test s3 settings (server#8667)
• Use proper language in language code (server#8668)
• Display the proper language strings in settings (server#8669)
• Do not create empty userid when attribute does not have allowed chars (server#8673)
• Remove too restrict check for background image/color (server#8675)
• Fix example regex for user agent matching (server#8676)
• Generate different UIDs for Birthday, Anniversary and Death event (server#8678)
• Don't use double quotes in MySQL queries (server#8680)
• Log exceptions that happen when writing the app store reply to storage (server#8683)
• Set the correct active navigation entry (server#8685)
• Fix activities for end2end encryption (server#8686)
• Filter out the current user when searching for emails too (server#8687)
• Fix check if theming defaults instance is available (server#8688)
•  Fix undefined index problem (server#8693)
• Disable part files for object stores (server#8725)
• Better handling of invisible elements in acceptance tests (server#8738)
• Remove base url from global cache prefix (server#8745)
• Check if the cached js file exists (server#8746)
• Sharee email matches not limited (server#8749)
• Fix integer overflow in ChunkingPlugin (server#8752)
• Revert wording back to updates (server#8755)
• Add acceptance tests for permissions on public shared folders (server#8758)
• Also send file emails in ASAP mode (activity#249)
• Ensure userids are strings (activity#252)
• Null coalescing operator is PHP7+ (activity#254)
• Update PDF.js to 1.9.426 (files_pdfviewer#55)
• Enable full screen mode for PDF files (files_pdfviewer#59)
• Fix ACE module files failing to load (files_texteditor#83)
• Do not keep FileInfoModels returned by "getModelForFile" (files_texteditor#89)
• Fix share drop down in gallery not properly shown (gallery#394)
• Fix gallery button hidden in folders without create permission (gallery#402)
• Fix controls position in gallery layout (gallery#405)
• Removed old code already present thanks to the files app (gallery#406)
• Create "file app" public share links if the slideshow is opened from ... (gallery#407)
• Allow to check against haveibeenpwned.com password list (password_policy#61)

Version 13.0.0 February 6 2018

Download: nextcloud-13.0.0.tar.bz2 or nextcloud-13.0.0.zip
Check the file integrity with:
MD5: nextcloud-13.0.0.tar.bz2.md5 or nextcloud-13.0.0.zip.md5
SHA256: nextcloud-13.0.0.tar.bz2.sha256 or nextcloud-13.0.0.zip.sha256
SHA512: nextcloud-13.0.0.tar.bz2.sha512 or nextcloud-13.0.0.zip.sha512
PGP (Key): nextcloud-13.0.0.tar.bz2.asc or nextcloud-13.0.0.zip.asc

Changes

Over 1100 changes were merged in the server, with many hundreds more in existing or new apps. The main improvements include:

• Collaboration features
  • Nextcloud Talk, a private videoconference software integrated with Nextcloud
    • real-time and asynchronous communication with push notifications, calls and chat web and mobile devices
    • Integration in business workflow with calendar invitations and calls directly from Nextcloud Files
    • Screen and note sharing with participant moderation capabilities
    • 100% secure peer-to-peer, end-to-end encrypted calls, mediated by self-hosted server
  • auto-completion of user names in comments and notification to the mentioned user
  • support free/busy scheduling in native calendar applications like Thunderbird Lightning
  • show meeting invites in the calendar
• End-to-End Encryption
  • can encrypt data on a per-folder level rather than all-or-nothing approach
  • does not require users to remember or exchange passwords
  • does not require re-uploading data upon sharing
  • features an optional off-line administrator recovery key
  • allows full audit logging
  • can be combined with our File Access Control feature so administrator can enforce aspects of End-to-end Encryption
  • protects from identity theft with our Cryptographic Identity Protection feature
  This feature is in Tech Preview for Nextcloud 13 and does not yet implement sharing.
• User Interface
  • new way of selecting files
  • easy way to quickly copy or move to a location
  • High DPI support
  • admin menu integrated in one list
  • no limitation to file uploads via the web interface
  • user quota in the side bar
  • social sharing (Twitter, G+, Facebook, Diaspora) now features a preview
  • improved theming
• Performance
  • decreased page load times with up to 50% and faster search
  • 80% faster LDAP and up to 10x faster external storage
  • Server-side Encryption performance largely improved
• Other
  • Support for PHP 7.2
  • Support for PostgreSQL 10

Release announcement with overview about features and changes

See a full list of integrated pull requests here.

Version 12.0.13 November 22 2018

Download: nextcloud-12.0.13.tar.bz2 or nextcloud-12.0.13.zip
Check the file integrity with:
MD5: nextcloud-12.0.13.tar.bz2.md5 or nextcloud-12.0.13.zip.md5
SHA256: nextcloud-12.0.13.tar.bz2.sha256 or nextcloud-12.0.13.zip.sha256
SHA512: nextcloud-12.0.13.tar.bz2.sha512 or nextcloud-12.0.13.zip.sha512
PGP (Key): nextcloud-12.0.13.tar.bz2.asc or nextcloud-12.0.13.zip.asc

Changes

• Ignore "session_lifetime" if it can not be converted to a number (server#11763)
• Fix opening a section again in the Files app (server#11998)
• Actually return the root folder when traversing up the tree (server#12059)
• Double check for failed cache with a shared storage (server#12110)
• Fixes dav share issue with owner (server#12461)
• Forward object not found error in swift as dav 404 (server#12504)
• Handle permission in update of share better (server#12563)

Version 12.0.12 October 11 2018

Download: nextcloud-12.0.12.tar.bz2 or nextcloud-12.0.12.zip
Check the file integrity with:
MD5: nextcloud-12.0.12.tar.bz2.md5 or nextcloud-12.0.12.zip.md5
SHA256: nextcloud-12.0.12.tar.bz2.sha256 or nextcloud-12.0.12.zip.sha256
SHA512: nextcloud-12.0.12.tar.bz2.sha512 or nextcloud-12.0.12.zip.sha512
PGP (Key): nextcloud-12.0.12.tar.bz2.asc or nextcloud-12.0.12.zip.asc

Changes

• Improve performance when dealing with large numbers of shares (server#10882)
• Include empty directories in the default state of acceptance tests (server#11285)
• Show auth type "None" in email settings (server#11495)
• Add future releases to be migrated from (server#11601)
• Update CRL due to changed cert for linkshareex (server#11708)

Version 12.0.11 August 30 2018

Download: nextcloud-12.0.11.tar.bz2 or nextcloud-12.0.11.zip
Check the file integrity with:
MD5: nextcloud-12.0.11.tar.bz2.md5 or nextcloud-12.0.11.zip.md5
SHA256: nextcloud-12.0.11.tar.bz2.sha256 or nextcloud-12.0.11.zip.sha256
SHA512: nextcloud-12.0.11.tar.bz2.sha512 or nextcloud-12.0.11.zip.sha512
PGP (Key): nextcloud-12.0.11.tar.bz2.asc or nextcloud-12.0.11.zip.asc

Changes

• Fix transfering ownership of a share to user with same id as receiver (server#10566)
• Update the scope of the lockdownmanager (server#10683)

Version 12.0.10 July 23 2018

Download: nextcloud-12.0.10.tar.bz2 or nextcloud-12.0.10.zip
Check the file integrity with:
MD5: nextcloud-12.0.10.tar.bz2.md5 or nextcloud-12.0.10.zip.md5
SHA256: nextcloud-12.0.10.tar.bz2.sha256 or nextcloud-12.0.10.zip.sha256
SHA512: nextcloud-12.0.10.tar.bz2.sha512 or nextcloud-12.0.10.zip.sha512
PGP (Key): nextcloud-12.0.10.tar.bz2.asc or nextcloud-12.0.10.zip.asc

Changes

• Make the DELETION of groups match greedy on the groupID (server#9842)
• Sanitize parameters in createSessionToken() while logging (server#10196)
• Fix trying to load removed scripts (files_pdfviewer#88)

Version 12.0.9 June 11 2018

Download: nextcloud-12.0.9.tar.bz2 or nextcloud-12.0.9.zip
Check the file integrity with:
MD5: nextcloud-12.0.9.tar.bz2.md5 or nextcloud-12.0.9.zip.md5
SHA256: nextcloud-12.0.9.tar.bz2.sha256 or nextcloud-12.0.9.zip.sha256
SHA512: nextcloud-12.0.9.tar.bz2.sha512 or nextcloud-12.0.9.zip.sha512
PGP (Key): nextcloud-12.0.9.tar.bz2.asc or nextcloud-12.0.9.zip.asc

Changes

• Make the token expiration also work for autocasting 0 (server#9804)

Version 12.0.8 June 7 2018

Download: nextcloud-12.0.8.tar.bz2 or nextcloud-12.0.8.zip
Check the file integrity with:
MD5: nextcloud-12.0.8.tar.bz2.md5 or nextcloud-12.0.8.zip.md5
SHA256: nextcloud-12.0.8.tar.bz2.sha256 or nextcloud-12.0.8.zip.sha256
SHA512: nextcloud-12.0.8.tar.bz2.sha512 or nextcloud-12.0.8.zip.sha512
PGP (Key): nextcloud-12.0.8.tar.bz2.asc or nextcloud-12.0.8.zip.asc

Changes

Many fixes were merged, the most important ones include:

• Replace deprecated sinon reset() call with resetHistory() (server#9359)
• Fix jsunit tests (server#9431)
• Allow upgrades from ownCloud 10.0.8 (server#9493)
• Improve OAuth (server#9546)
• Fix translation bug on lost password page (server#9549)
• Cleanup locks in scanner on error (server#9567)
• Make sure force language is reflected in html lang attribute (server#9580)
• Send invitations for shared calendars (server#9611)
• Regenerate session id after public share auth (server#9618)
• Limit Sinon version to 5.0.7 at most (server#9630)
• The OAuth endpoint needs to support Basic Auth (server#9660)
• Make sure the file is readable before attempting to create a preview (server#9669)
• Fix drone mysqlmb4 tests (server#9671)
• Make sure the log doesn't try to read from PUT if it can't (server#9695)

Version 12.0.7 April 26 2018

Download: nextcloud-12.0.7.tar.bz2 or nextcloud-12.0.7.zip
Check the file integrity with:
MD5: nextcloud-12.0.7.tar.bz2.md5 or nextcloud-12.0.7.zip.md5
SHA256: nextcloud-12.0.7.tar.bz2.sha256 or nextcloud-12.0.7.zip.sha256
SHA512: nextcloud-12.0.7.tar.bz2.sha512 or nextcloud-12.0.7.zip.sha512
PGP (Key): nextcloud-12.0.7.tar.bz2.asc or nextcloud-12.0.7.zip.asc

Changes

Many fixes were merged, the most important ones include:

• Group existence check works without attribute (like with users) (server#8850)
• Fix undefined index problem (server#8893)
• Show EOL warning in the update section (server#8987)
• Update icewind/smb to 2.0.5 (server#9016)
• Set new-password as autocomplete on the link password (server#9078)
• Allow usage of Windows 10 WebDav Netdrive (server#9088)
• Update CRL to include old quicknotes cert (server#9214)
• Provide an option to disable HTML emails (server#9232)
• Use multibyte substring (server#9235)
• Bump version 12 (files_pdfviewer#65)
• Fix info.xml (files_pdfviewer#68)
• Remove default enable (files_pdfviewer#69)

Version 12.0.6 March 15 2018

Download: nextcloud-12.0.6.tar.bz2 or nextcloud-12.0.6.zip
Check the file integrity with:
MD5: nextcloud-12.0.6.tar.bz2.md5 or nextcloud-12.0.6.zip.md5
SHA256: nextcloud-12.0.6.tar.bz2.sha256 or nextcloud-12.0.6.zip.sha256
SHA512: nextcloud-12.0.6.tar.bz2.sha512 or nextcloud-12.0.6.zip.sha512
PGP (Key): nextcloud-12.0.6.tar.bz2.asc or nextcloud-12.0.6.zip.asc

Changes

Many fixes were merged, the most important ones include:

• Fix password displayed as username in Firefox password manager dialog (server#7797)
• Fix #4789: Group admins cannot see disabled users (server#8006)
• Fix jquery-ui theming (server#8022)
• Do not catch and ignore ServerNotAvailable in the wrong spot (server#8074)
• Use S3Client::upload instead of splitting single/multipart upload ourselves (server#8101)
• Fix own avatar not updated when display name is changed (server#8130)
• Remove old perl script to update l10n files (server#8146)
• Update CRL because user_sql cert was lost (server#8152)
• Handle SSL certificate verifications for others than Let's Encrypt (server#8184)
• Do not try to get the jailed path if we can't find the id (server#8196)
• Better result handling of email search (server#8205)
• Nextcloud 12 is not compatible with newer than php 7.1 (server#8216)
• Keep previous exception when transforming to dav exception (server#8229)
• Actually return stream from swift (server#8251)
• Remove invalid link to documentation (server#8254)
• Fix deleting folders when using s3 external storage (server#8262)
• Update CRL to revoke files_rightclick (server#8272)
• Fix edit tag textbox size (server#8408)
• Show hint in OCS API for user creation (server#8516)
• Add some whitespace around change.svg icon (server#8520)
• Don't try login with the same name that just failed (server#8533)
• Fix retrieval of group members with numerical uids from LDAP (server#8537)
• Allow upgrading from OC 10.0.6 & 10.0.7 (server#8544)
• Theming: handle not being in the serverroot (server#8549)
• Use apps versions to generate suffix when possible (server#8611)
• Fix comments (and systemtags) when involving users with numerical ids (server#8616)
• Update commentstabview.js (server#8622)
• Properly encapsulate require_once for app.php (server#8632)
• Use hash algo that's robust against collisions (server#8655)
• Do not create empty userid when attribute does not have allowed chars (server#8674)
• Fix example regex for user agent matching (server#8677)
• Generate different UIDs for Birthday, Anniversary and Death event (server#8679)
• Don't use double quotes in MySQL queries (server#8681)
• Log exceptions that happen when writing the app store reply to storage (server#8682)
• Fix 500 on setup page (server#8689)
• Add missing import (server#8692)
• Disable part files for object stores (server#8726)
• Better handling of invisible elements in acceptance tests (server#8739)
• Display the home icon for empty paths (root folder) (activity#232)
• Ensure userids are strings (activity#253)
• Update PDF.js to 1.9.426 (files_pdfviewer#56)
• Enable full screen mode for PDF files (files_pdfviewer#60)
• Fix ACE module files failing to load (files_texteditor#84)
• Do not keep FileInfoModels returned by "getModelForFile" (files_texteditor#90)

Version 12.0.5 January 24 2018

Download: nextcloud-12.0.5.tar.bz2 or nextcloud-12.0.5.zip
Check the file integrity with:
MD5: nextcloud-12.0.5.tar.bz2.md5 or nextcloud-12.0.5.zip.md5
SHA256: nextcloud-12.0.5.tar.bz2.sha256 or nextcloud-12.0.5.zip.sha256
SHA512: nextcloud-12.0.5.tar.bz2.sha512 or nextcloud-12.0.5.zip.sha512
PGP (Key): nextcloud-12.0.5.tar.bz2.asc or nextcloud-12.0.5.zip.asc

Changes

Many fixes were merged, the most important ones include:

• #7144 Unlock files even if an exception occurs
• #7322 Set primary action button color to same as theming color
• #7323 Use the correct root for shared jail when the source storage is also a jail
• #7353 Fix translation of federation scope menu
• #7362 Allow to skip data dir permission checks
• #7407 Check if owner of share exists
• #7409 Add retry wrapper when reading files from swift
• #7451 Fix constructor spy in unit test with Sinon 4.1.3
• #7455 Remove wrong entry in admin_settings that causes 500
• #7456 CardDAV convertor check should not be to wide
• #7457 Fix loading icon position in the app menu
• #7464 Allow getting the filepath when getting cached mounts
• #7468 Allow 'Nextcloud' in the user agent string of Android
• #7558 Fix email buttons for white theme
• #7567 Respect sharing options when searching for Sharees
• #7568 Fix duplicate session token after remembered login
• #7577 Check userExists later, saves lookups for appData_INSTANCEID userids
• #7672 Added additional methods for removal of sensitive info
• #7688 Fix scss webroot and url rewrite
• #7717 Throw ServerNotAvailableException when LDAP is caught shutting down
• #7666 Fix drag shadow not visible when dragging a file on a narrow screen
• #7674 Do no run SyncJob in cron
• #7684 Fix inverted app icons on IE11
• #7694 Don't attempt to translate login names to uids when uids are provided
• #7708 Don't show recurring msg when pages result was turned off
• #7742 Hide favourite icon in details view if favourite action is not available
• #7745 Don't lie about preview types
• #7747 Update of composer
• #7758 add option to use legacy v2 auth with s3
• #7759 Use correct L10N files for jsconfig
• #7757 Wait for the shared link to be set in the acceptance tests
• gallery/#349 Fix date picker not visible in slideshow sharing dialog
• activity/#229 Properly construct path of root on file rename
• #7770 Fix SCSS processing when undoing theming values
• #7774 Update icewind/smb to 2.0.3
• #7777 Set height for sidebar icons
• #7779 Improve zip support
• #7786 Return correct mount type for federated shares
• #7792 Fix empty details view after renaming a file
• #7817 Fix preview when theming changes invertion of icons
• #7821 Log full exception in cron instead of only the message
• #7888 Keep all shipped apps enabled because they should be okay
• #7962 update icewind/smb to 2.0.4

Version 12.0.4 December 4 2017

Download: nextcloud-12.0.4.tar.bz2 or nextcloud-12.0.4.zip
Check the file integrity with:
MD5: nextcloud-12.0.4.tar.bz2.md5 or nextcloud-12.0.4.zip.md5
SHA256: nextcloud-12.0.4.tar.bz2.sha256 or nextcloud-12.0.4.zip.sha256
SHA512: nextcloud-12.0.4.tar.bz2.sha512 or nextcloud-12.0.4.zip.sha512
PGP (Key): nextcloud-12.0.4.tar.bz2.asc or nextcloud-12.0.4.zip.asc

Changes

Server

Over 50 fixes were merged in the server.

• Improve text: 'you have now' -> 'you now have (server#6464)
• Fix initializing paged search under some circumstances (server#6502)
• LDAP: simplify returning the homePath (server#6509)
• Fix sharer name overlap with filename (server#6524)
• Allow to close sidebar for text files (server#6525)
• Fix quota new endpoint 12 (server#6527)
• Pass new value to triggerChange (server#6528)
• Throw 101 when an empty group string is provided (server#6547)
• Contacts menu privacy (server#6554)
• Add color-border variable (server#6649)
• Do not stop on scss compilation failure (server#6661)
• Don't pass User object when uid string is expected (server#6674)
• Navigate to the root directory when showing the main filelist (server#6689)
• Fix LDAP User deletion (cleanup) (server#6699)
• Update aws sdk + s3 improvements (server#6737)
• Dont run invalid path repair step when upgrading from 11.0.5.2 and later (server#6743)
• Fix language when trying to change password (server#6751)
• Fix postgresql tests (server#6792)
• Also use configured 'cache_path' for new chunking (server#6814)
• Set s3 part size to 500mb (server#6815)
• Fix contacts menu for IE11 (server#6823)
• Still trigger conflict resolution for existing entries when the curre (server#6847)
• Propagate multipart upload exception when aborting upload (server#6855)
• Allow to migrate from 10.0.3.3 (server#6878)
• Timespan check (server#6896)
• Do not log WebDAV maintenance mode exception (server#6908)
• Don't reset quota (server#6910)
• Backport of translation string fixes (server#6935)
• Fix class name in exception logger plugin (server#6942)
• Allow quota of 0 again (server#6943)
• Fix uninitialized variable $this->params (server#6944)
• Don't add a LIKE condition when it's not needed (server#6945)
• Fix undefined offset warning when using '/' as external storage root (server#6946)
• Fix page title not changed (server#6987)
• Better readability for text on log in page which is directly on backgrounds (server#7028)
• Translate Grant Access (server#7040)
• Use fopen directly when reading objects from s3 (server#7079)
• Improve mimetype detection for object storages (server#7081)
• Fix seeking on object storage (server#7082)
• Hide spinner for initial install (server#7095)
• Ensure uid for calendar objects is unique (server#7096)
• Revert "Only allow colons in db host for IPv6 addresses (server#7102)
• Theme flow redirection page (server#7114)
• Fix icon for security settings (server#7116)
• If for some reason the json can't be decoded it is not cached (server#7118)
• Improve performance of UserMountCache with external storage folders (server#7120)
• {J,CS}SResourceLocator: account for symlinks in app path server#7170)
• Fix s3 download and touch (server#7186)
• Touch opertation on object storage, don't create the file cache entry to early (server#7207)
• Allow migration from upcoming 10.0.4 ownCloud release (server#7245)
• CSSResourceLocator: handle SCSS in apps outside root (server#7257)
• only replace permission popupmenu (server#7259)
• Fix accesslist when a user has an ID only containting 0-9 (server#7262)
• Update CRL due to files_frommail (server#7277)
• Only in case of $currentAccess the array uses the id as index (server#7328)

Other

• Add aws sdk (3rdparty#69)
• Don't send emails to disabled users (activity#202)
• Add an option to disable emails completly (activity#206)
• Make sure the mountPoint property is public before using it (files_accesscontrol#79)
• Allow to playback m4v files (files_videoplayer#43)
• Fix notifications order (notifications#93)

Version 12.0.3 September 20 2017

Download: nextcloud-12.0.3.tar.bz2 or nextcloud-12.0.3.zip
Check the file integrity with:
MD5: nextcloud-12.0.3.tar.bz2.md5 or nextcloud-12.0.3.zip.md5
SHA256: nextcloud-12.0.3.tar.bz2.sha256 or nextcloud-12.0.3.zip.sha256
SHA512: nextcloud-12.0.3.tar.bz2.sha512 or nextcloud-12.0.3.zip.sha512
PGP (Key): nextcloud-12.0.3.tar.bz2.asc or nextcloud-12.0.3.zip.asc

Changes

Nextcloud 12.0.3 delivers a lot of enhancements in various areas including:

• A number of improvements to email notification templates
• 2FA enhancements
• Smarter LDAP password handling
• File Drop and upload-in-general updates
• A performance improvement handling large files

See the full list of changes in github.

Version 12.0.2 August 14 2017

Download: nextcloud-12.0.2.tar.bz2 or nextcloud-12.0.2.zip
Check the file integrity with:
MD5: nextcloud-12.0.2.tar.bz2.md5 or nextcloud-12.0.2.zip.md5
SHA256: nextcloud-12.0.2.tar.bz2.sha256 or nextcloud-12.0.2.zip.sha256
SHA512: nextcloud-12.0.2.tar.bz2.sha512 or nextcloud-12.0.2.zip.sha512
PGP (Key): nextcloud-12.0.2.tar.bz2.asc or nextcloud-12.0.2.zip.asc

Changes

Server

Minor bugfix release.

Version 12.0.1 August 7 2017

Download: nextcloud-12.0.1.tar.bz2 or nextcloud-12.0.1.zip
Check the file integrity with:
MD5: nextcloud-12.0.1.tar.bz2.md5 or nextcloud-12.0.1.zip.md5
SHA256: nextcloud-12.0.1.tar.bz2.sha256 or nextcloud-12.0.1.zip.sha256
SHA512: nextcloud-12.0.1.tar.bz2.sha512 or nextcloud-12.0.1.zip.sha512
PGP (Key): nextcloud-12.0.1.tar.bz2.asc or nextcloud-12.0.1.zip.asc

Changes

Server

Over 100 fixes were merged in the server.

• Update broken on PGSQL
• Add brackets around concat statements so comparing the result works a…
• Can't close PDF preview
• Add a repair step to drop the account_terms table on oc migration
• [stable12] Fix show password button for password change
• [stable12] Enable postgres on drone again
• fix overlay on show password
• [stable12] Add new bundle
• [stable12] proper logo height in emails for Outlook
• scan.nextcloud.com causing exception in theming?
• Long running php processes: LDAP timeout
• X-XSS-Protection header invalid (NextCloud 12.0.0.29)
• [stable12] Fix for mb strlen
• [stable12] Fix error message on untrusted domain error page
• [12] Fix renaming of non-renamble mounts
• [12] Also repair storage id's when repairing invalid entries
• [12] still remove the federated share even if we cant notify the remote
• [stable12] Show warning if PHP 7.2 is used
• [stable12] fix preview for public links
• [stable12] Fix config.sample.php documentation
• [stable12] Add recovery key on public upload
• [stable12] Backport translation fixes
• [stable12] Enable acceptance tests again on Drone 0.7
• [stable12] Backport allow to theme emails
• [stable 12] Add ellipsis for app titles in the app menu popover
• [stable12] Fix emitting of legacy hook post_unshare
• [stable12] Allow overwriting of IOS theming values
• Update 3rdparty for "Fix infinite propfinds reporting files as direct…
• [12] Fix invalid path repair step not getting all invalid entries
• [stable12] Add test to check if new files are added to the root of the repository
• [12] null users dont exist 
• [12] Fix scan permissions with nested permissions masks 
• [12] fix moving folders out of a cache jail 
• Moving shared folders doesn't work as expected
• Write cert bundle to tmp file first
• [12] properly block file upload to non-active filelist
• nc beta 4 internal server error due to totp backup codes
• [12] Fix propagating changes within jail wrapper
• [12] dont die if we try to access the shared cache while setting up the shared storage
• hint should not be clickable
• Check if Circles is still here
• [stable12] Allow dir-listing also when one child is blocked by access control
• [stable12] Fix unselecting items on multi select dropdowns
• [stable12] Fix remote share activity emails
• [stable12] fix alignment of radio button and its label in encryption settings
• Remote share emails doesn't show what's shared.
• [stable12] Ldap password renewal fixes for NC12
• [stable12] Use PNG icons for activity emails and ios client
• [stable12] Use the share_folder config for remote shares
• [stable12] Don't load navigation entries of restricted apps
• [stable12] Don't try to generate logs for chunking paths
• [stable12] Don't log passwords on dav exceptions
• Use translated Hint instead of english error on password policy
• [stable12] Add info text about updates
• [stable12] Use base url for cache prefix and SCSS caching
• [stable12] Enhance the logging if the part file can not be renamed
• [stable12] Improved logging for object storage and trashbin
• [stable12] Fix more icon in apps menu on bright backgrounds
• [stable12] Use realpath to obtain the webroot
• [stable12] Don't create activities for email and password change before login
• [stable12] Allow to force a language and set it via the ocs api
• [stable12] Create users in non default backends first
• Progress bar message completely wrong with multi-GB file upload
• [stable12] Fix example theme
• [stable12] Don't try to save the setting when its not an admin
• Update layout.user.php
• Fix upload remaining time and uploadrate value
• [stable12] App menu fixes
• [stable12] Allow to find local users by their email address
• [stable12] Treat PHP Errors on User session regenerate
• [stable12] Ldap attempt reconnect stable12
• [stable12] allow users to send PropPatch request when calendar is group-shared with them
• [stable12] urldecode group principals in Cal- and CardDAV backend
• [stable12] Use the guest.css for the maintenance page as well
• [stable12] Fixed a crash caused by Local::copyFromStorage() not conforming to Co…
• [stable12] Make file name input tooltip error text change
• Translate OAuth2 in stable12
• [stable12] Localize contacts menu search input placeholder
• [stable12] Prevent sending second WWW-Authenticate header
• [stable12] don't try to encrypt/decrypt the certificate bundle
• [stable12] allow PropPatch requests to contact_birthdays
• [stable12] Fix username and avatar for external users
• [stable12] Fix tag label removed when share view is opened
• [stable12] Fix unknown share token error message
• [stable12] no themed icon when dragging folder
• [stable12] Add quota to the files view
• "Unspecified share exception" instead of proper 404 page on unknown public share tokens
• [stable12] fix "add to your nextcloud" input field
• [stable12] Revert "allow admin to disable groups on personal page"
• Bearer auth backend causes problems with several dav clients
• [stable12] filter missing groups in share provider
• [stable12] use the email address configured in Nextcloud as sender instead of the users email address
• [stable12] execute eval in global scope, addresses #5314
• [stable12] l10n improvements from transifex
• [stable12] Treat PHP Errors on User session regenerate
• [stable12] Ldap attempt reconnect stable12
• [stable12] allow users to send PropPatch request when calendar is group-shared with them
• [stable12] urldecode group principals in Cal- and CardDAV backend
• [stable12] Use the guest.css for the maintenance page as well
• [stable12] Fixed a crash caused by Local::copyFromStorage() not conforming to Co…
• [stable12] Make file name input tooltip error text change
• Translate OAuth2 in stable12
• [stable12] Localize contacts menu search input placeholder
• [stable12] Prevent sending second WWW-Authenticate header
• [stable12] don't try to encrypt/decrypt the certificate bundle
• [stable12] allow PropPatch requests to contact_birthdays
• [stable12] Fix username and avatar for external users
• [stable12] Fix tag label removed when share view is opened
• [stable12] Fix unknown share token error message
• [stable12] no themed icon when dragging folder
• [stable12] Add quota to the files view
• "Unspecified share exception" instead of proper 404 page on unknown public share tokens
• [stable12] fix "add to your nextcloud" input field
• [stable12] Revert "allow admin to disable groups on personal page"
• Bearer auth backend causes problems with several dav clients
• [stable12] filter missing groups in share provider
• [stable12] use the email address configured in Nextcloud as sender instead of the users email address
• [stable12] execute eval in global scope, addresses #5314
• [stable12] l10n improvements from transifex

Activity

• [stable12] Fix mimetype icon of deleted folders
• [stable12] Use PNG icons for emails and ios client
• [stable12] Ignore paths from chunking

Notifications

• Allow to expand the message on click...

text editor

• [stable12] Use text editor endpoint for previews
• [stable12] Use CRLF line ending by default for better compatibility

Gallery

• Fix link when opening from files
• [stable12] Do not use propably outdated core translations
• Fix the translation source
• [stable12] Fix logged error if file ID is not available
• [stable12] Merge JS for public pages

PDF viewer

• missing context dir
• Fix z index for small screen sizes

Version 12.0.0 May 22 2017

Download: nextcloud-12.0.0.tar.bz2 or nextcloud-12.0.0.zip
Check the file integrity with:
MD5: nextcloud-12.0.0.tar.bz2.md5 or nextcloud-12.0.0.zip.md5
SHA256: nextcloud-12.0.0.tar.bz2.sha256 or nextcloud-12.0.0.zip.sha256
SHA512: nextcloud-12.0.0.tar.bz2.sha512 or nextcloud-12.0.0.zip.sha512
PGP (Key): nextcloud-12.0.0.tar.bz2.asc or nextcloud-12.0.0.zip.asc

Changes

Over 1100 changes were merged in the server, with many hundreds more in existing or new apps. The main improvements include:

• Collaboration features
  • push notifications on mobile
  • unique public link shares to multiple users, each with their own settings like read/write rights, password protection and expiration date.
  • videocall app integration with screensharing
  • federated activities
  • writable public share link allowing you to share and collaborate immediately
  • compatibility for user-centric group management with the Circles app
  • social sharing (Twitter, G+, Facebook, Diaspora)
  • XMPP chat improvements (file transfers, chat status notifications, message archive management)
• Security improvements
  • brute force protection for developers
  • rate limiting of certain IP range for developers
  • support of a wide variety of authentication mechanisms
• Administration
  • push notifications via command line
  • new apps (Guest App, Impersonate App, Excludedirs app, Quota Warning App, JSLoader App, Backup App)
• Contacts menu for reaching users easily in your Nextcloud
• Many more smaller changes like the ability to move files through the menu instead of drag and drop in the Files App, and ability to find documents deleted by a recipient in your trashbin

Release announcement with overview about features and changes

See a full list of integrated pull requests here.

Version 11.0.8 March 15 2018

Download: nextcloud-11.0.8.tar.bz2 or nextcloud-11.0.8.zip
Check the file integrity with:
MD5: nextcloud-11.0.8.tar.bz2.md5 or nextcloud-11.0.8.zip.md5
SHA256: nextcloud-11.0.8.tar.bz2.sha256 or nextcloud-11.0.8.zip.sha256
SHA512: nextcloud-11.0.8.tar.bz2.sha512 or nextcloud-11.0.8.zip.sha512
PGP (Key): nextcloud-11.0.8.tar.bz2.asc or nextcloud-11.0.8.zip.asc

Changes

• Do not catch and ignore ServerNotAvailable in the wrong spot (server#8075)
• Update CRL because user_sql cert was lost (server#8153)
• Update CRL to revoke files_rightclick (server#8273)
• Fix retrieval of group members with numerical uids from LDAP (server#8538)

Note that this is the last public 11.0.x release. To maintain the security and integrity of your Nextcloud installation you should upgrade to 12.0.x as soon as possible or acquire a Nextcloud Subscription to get access to further LTS releases for Nextcloud 11.

Version 11.0.7 January 24 2018

Download: nextcloud-11.0.7.tar.bz2 or nextcloud-11.0.7.zip
Check the file integrity with:
MD5: nextcloud-11.0.7.tar.bz2.md5 or nextcloud-11.0.7.zip.md5
SHA256: nextcloud-11.0.7.tar.bz2.sha256 or nextcloud-11.0.7.zip.sha256
SHA512: nextcloud-11.0.7.tar.bz2.sha512 or nextcloud-11.0.7.zip.sha512
PGP (Key): nextcloud-11.0.7.tar.bz2.asc or nextcloud-11.0.7.zip.asc

Changes

• #7467 Allow 'Nextcloud' in the user agent string of Android
• #7673 Added additional methods for removal of sensitive info
• #7718 Throw ServerNotAvailableException when LDAP is caught shutting down
• #7695 Don't attempt to translate login names to uids when uids are provided
• #7746 Update composer
• #7780 Improve zip support
• #7936 update icewind/smb to 2.0.4

Version 11.0.6 December 4 2017

Download: nextcloud-11.0.6.tar.bz2 or nextcloud-11.0.6.zip
Check the file integrity with:
MD5: nextcloud-11.0.6.tar.bz2.md5 or nextcloud-11.0.6.zip.md5
SHA256: nextcloud-11.0.6.tar.bz2.sha256 or nextcloud-11.0.6.zip.sha256
SHA512: nextcloud-11.0.6.tar.bz2.sha512 or nextcloud-11.0.6.zip.sha512
PGP (Key): nextcloud-11.0.6.tar.bz2.asc or nextcloud-11.0.6.zip.asc

Changes

Server

• Fix initializing paged search under some circumstances (#6504)
• Throw 101 when an empty group string is provided (#6548)
• Fix moving folders out of a cache jail (#6588)
• Don't pass User object when uid string is expected (#6675)
• MP3 without cover don't get a preview (#6695)
• Fix postgresql tests (#6793)
• Timespan check (#6897)
• Fix mismatch method signature in Nextcloud 11 (#7023)
• Unlock files even if an exception occurs (#7148)

Version 11.0.5 September 20 2017

Download: nextcloud-11.0.5.tar.bz2 or nextcloud-11.0.5.zip
Check the file integrity with:
MD5: nextcloud-11.0.5.tar.bz2.md5 or nextcloud-11.0.5.zip.md5
SHA256: nextcloud-11.0.5.tar.bz2.sha256 or nextcloud-11.0.5.zip.sha256
SHA512: nextcloud-11.0.5.tar.bz2.sha512 or nextcloud-11.0.5.zip.sha512
PGP (Key): nextcloud-11.0.5.tar.bz2.asc or nextcloud-11.0.5.zip.asc

Changes

See the full list of changes in github.

Version 11.0.4 August 7 2017

Download: nextcloud-11.0.4.tar.bz2 or nextcloud-11.0.4.zip
Check the file integrity with:
MD5: nextcloud-11.0.4.tar.bz2.md5 or nextcloud-11.0.4.zip.md5
SHA256: nextcloud-11.0.4.tar.bz2.sha256 or nextcloud-11.0.4.zip.sha256
SHA512: nextcloud-11.0.4.tar.bz2.sha512 or nextcloud-11.0.4.zip.sha512
PGP (Key): nextcloud-11.0.4.tar.bz2.asc or nextcloud-11.0.4.zip.asc

Changes

• [stable11] Enable postgres on drone again
• Argument 1 passed to OC\Group\MetaData::generateGroupMetaData() must implement interface OCP\IGroup, null given
• [stable11] Skip null groups in group manager
• [stable11] Show warning if PHP 7.2 is used
• [stable11] fix preview for public links
• [stable11] Fix config.sample.php documentation
• [stable11] Backport translation fixes
• [stable11] Add recovery key on public upload
• [stable11] Add test to check if new files are added to the root of the repository
• [11] dont die if we try to access the shared cache while setting up the shared storage
• [stable11] Fix unselecting items on multi select dropdowns
• [stable11] some sharing settings
• allow to disable upload to lookup server, by default it is enabled
• [stable11] Don't try to save the setting when its not an admin
• [stable11] Fix upload remaining time
• [stable11] Treat PHP Errors on User session regenerate
• Backport fix for colon in folder name on dav
• [stable11] don't try to encrypt/decrypt the certificate bundle
• [stable11] Fix mimetype update query
• [stable11] filter missing groups in share provider
• Doctrine\DBAL\Exception\DriverException updating oc_filecache table with PostgreSQL
• [stable11] Trigger changeUser hook only on real changes
• [stable11] Add layer on top of LDAP methods to catch server disconnects and attempt re-connection
• fix for sharing stable 11
• [11] round the mtime in touch
• [stable11] SSL menu is now shown for files_external
• [11] dont spam log when request can't access filesystem
• [11] Prevent PHP request to get killed when using fclose callback (#26775)
• [stable11] Fix the storage info and other checks when the user has wrong casing
• [stable11] Add unit tests for mounts of delete users

Version 11.0.3 April 24 2017

Download: nextcloud-11.0.3.tar.bz2 or nextcloud-11.0.3.zip
Check the file integrity with:
MD5: nextcloud-11.0.3.tar.bz2.md5 or nextcloud-11.0.3.zip.md5
SHA256: nextcloud-11.0.3.tar.bz2.sha256 or nextcloud-11.0.3.zip.sha256
SHA512: nextcloud-11.0.3.tar.bz2.sha512 or nextcloud-11.0.3.zip.sha512
PGP (Key): nextcloud-11.0.3.tar.bz2.asc or nextcloud-11.0.3.zip.asc

Changes

Server

• Use the correct principal for shared addressbooks (server/3608)
• Fix saving backup codes by using a correct data uri (server/3652)
• Update icewind/streams to 0.5.2 (server/3293)
• Fix string comparison and return docs (server/3665)
• Typecast shared mount's storage_id to int as documented + some refactor to avoid similar bugs (server/3658)
• Use a proper date format for transfer ownership (server/3700)
• DAV sharing permissions should not depend on the order (server/3722)
• Add new user agent of windows 10 dav backend (server/3764)
• Add back appstoreenabled config switch (server/3767)
• Call right function after sudo mode (server/3820)
• Dont allow empty wildcard search (server/3842)
• Remove single quotes around search query like in user search (server/3849)
• Fix mimetype detection on public uploads for the workflow engine (server/3765)
• Fix branding and show Nextcloud (server/3969)
• Fix reshare with user activity message (server/3981)
• Create correct VCard and return correct error codes (server/4029)
• Prevent migration from ownCloud 10 to Nextcloud 11 (server/3415)
• Make sure transparency is an integer when saving a calendar (server/4167)
• Make public links work with master key (server/4207)
• Don't try to render the avatars if avatars are disabled (server/4214)
• Reduce error message text (server/4228)
• Don't list on public calendar endpoints (server/4229)
• Fix upload of folders in Chrome (server/4154)
• Make sure blob columns are correctly converted as parameters (server/4233)
• Save the scope of an auth token in the session (server/4225)
• Take share by mail into consideration if we calculate the access list (server/4242)
• Also add the root of external storages to the file id list (server/4237)
• Fix LDAP description (server/4238)
• Remove the double password confirmation on changing cron (server/4236)
• Fix scheduling plugin on legacy caldav endpoint (server/4235)
• Directly fix invalid values of DTEND and DTSTART (server/4234)
• Make JobList::next() lock free (server/4254)
• Don't remove owner property for public calendars (server/4272)
• Add capabilities for share by mail (server/4251)
• Dont use the permissions mask while scanning (server/4278)
• Add missing maintenance plugin to new DAV endpoint (server/4290)
• Fix bug with shared_by for own calendars if shared (server/4301)
• Translation string corrected > 1 user (server/4377)

Activity

• Fix activities for "Files drop" on external storages (activity/118)

User_SAML

• Bump to php-saml 2.10.5 (user_saml/100)

Logreader

• Small screen layout improvements (logreader/2bcd915969386ceb77c7f91dfd5fc19fd3212346
• Fix log filtering (logreader/4095dfc62dcceb3c59a3f581baa5589737d0e6f3)
• Greatly speedup log iteration (logreader/71a4c6849641f821e80d96674c57a69fe7a8aa9e)
• Search more rows (logreader/b9d00b5599ac8a76862895266f1c23096391aad8)
• Stop iterating if we dont have a valid file handle (logreader/a87a8e653ecae5efef6342e645b98f2878219c87)
• Don't return a LogIterator on a broken handle (logreader/39069108f99d463b1cb8bc944f3ef24324b9f43d)
• More robust log iteration (logreader/c0eb04d55bf1dee94ef523dae0e3b0e6afc272a6)
• Use proper iso date format (logreader/13a31181a6d72d084797a71f49f2c5edee8c8dae)
• Automatically try to fix some common escape errors from copy-pasted log entries (logreader/031db2a7f9b9f8cee42acf6eae7d993d31d4660a)
• Fix stack trace parsing of incorrectly escaped logentries (logreader/538667770edfdd48374ef33e9c15498ed98ece60)
• Highlight entries from the same request when clicking on an entry (logreader/2d1ccd0e4cca32220fcbe0b4d79d1cd23f0e73a5)
• Fix copy paste info searchfield (logreader/0e91b2f46649a720feb7c3b6b8266b8657db5574)
• Fix reset search after 0 results (logreader/50bec8ecf7edd81cfb96a35089283c0d879b41f3)
• Allow searching for requestId and user (logreader/7f84e55bb4a1e4086ab0918a6bf58ad3885bbd91)
• Allow searching in url (logreader/7833d97cf85fd351d2f7550d67d21bd0c2a815f4)
• Fix infinite scroll (logreader/cbe874c6c068b9156ad8456edf31d112da40cbc9)
• Dont show loading indicator if we already have entries (logreader/d26a08dc0540126177e8d20c3e243b44c5a399c4)

Gallery

• Fix upload after core changes (gallery/b4ac4429841cfe2b7ea260dfb37fcde25580143c)
• Update JavaScript libraries (gallery/247)

Version 11.0.2 February 27 2017

Download: nextcloud-11.0.2.tar.bz2 or nextcloud-11.0.2.zip
Check the file integrity with:
MD5: nextcloud-11.0.2.tar.bz2.md5 or nextcloud-11.0.2.zip.md5
SHA256: nextcloud-11.0.2.tar.bz2.sha256 or nextcloud-11.0.2.zip.sha256
SHA512: nextcloud-11.0.2.tar.bz2.sha512 or nextcloud-11.0.2.zip.sha512
PGP (Key): nextcloud-11.0.2.tar.bz2.asc or nextcloud-11.0.2.zip.asc

Changes

Server

• Use login name to fix password confirm with ldap users (server/2953)
• Change the row-format before changing the collation (server/3063)
• Generate correct path for owner and use the display name (server/3080)
• Markdown support for app descriptions (server/3117)
• Fix style in comment (server/3143)
• Escape the name for the jquery selector (server/3138)
• Define spreed calls (server/3115)
• LDAP Backend OCS Api (server/3213)
• Fix Sharing app description (server/3397)
• Fix shared-as-busy events for owner (server/3363)
• Use correct theming when returning the defaults (server/3399)
• Filter out sensitive appconfig values (server/3400)
• Add transifex config for sharebymail (server/3423)
• Update the email in the accounts table as well (server/3411)
• Don't log the password on confirmPassword when LDAP throws an exception (server/3414)
• Make sure ownCloud 8.2 activities also can get displayed (server/3412)
• Popovermenu backport (server/3286)
• Set vendor during install (server/3426)
• Make sure the file information is available when sending the email (server/3433)
• Add profile data to provisioning api (server/3259)
• Fix detection of the new iOS app (server/3431)
• Add integration tests for legacy DAV endpoints (server/3445)
• Make sure invalid images don't flood the log file (server/3440)
• Fix printing backup code (server/3510)
• Fix cookie name (nctoken instead of octoken) (server/3511)
• LDAP's checkPassword should only catch when a user was not found (server/3493)
• Return unknown free space from nullstorage (server/3508)
• Fix for address book data lost when any user receiving a share is deleted (server/3499)
• Rename database password toggle (server/3500)
• Popovermenu files css fix (server/3494)
• Add screensharing icon (server/3481)
• Fix misleading wording: searching is affected, not user access (server/3560)
• Backport of Fix Broken UUID Attribute Detection (server/3528)

Activity

• Make sure integer like names are still strings (activity/103)
• Fix activities for public uploads (activity/113)
• Show the parent as target when the file was not renamed (activity/114)
• Fix activities for "Files drop" on external storages (activity/118)

SAML & SSO

• Setup account later (user_saml/79)

Serverinfo

• Fix SQL syntax error on MariaDB 10.0.27 and 10.1.19 (serverinfo/77)
• Don't throw an error when /proc/meminfo is not readable (serverinfo/76)

Survey_Client

• Fix problem when checking size with dash in DB name (survey_client/50)

Version 11.0.1 January 16 2017

Download: nextcloud-11.0.1.tar.bz2 or nextcloud-11.0.1.zip
Check the file integrity with:
MD5: nextcloud-11.0.1.tar.bz2.md5 or nextcloud-11.0.1.zip.md5
SHA256: nextcloud-11.0.1.tar.bz2.sha256 or nextcloud-11.0.1.zip.sha256
SHA512: nextcloud-11.0.1.tar.bz2.sha512 or nextcloud-11.0.1.zip.sha512
PGP (Key): nextcloud-11.0.1.tar.bz2.asc or nextcloud-11.0.1.zip.asc

Changes

Server

• Safari CSPv3 support is sub-par (server/2699)
• Fix legacy DAV endpoint (server/2685)
• Use unmasked permissions in shared scanner (server/2696)
• Do not connect to database before creating it (server/2703)
• Fix todo list activity filter (server/2746)
• Changed anchor in settings page (server/2805)
• Also check in cron for old php version (server/2809)
• Add DAV repair step to fix calendar data (server/2807)
• Only log as info when we can not create a new DB user (server/2750)
• Fix wording for apps mgmt buttons (server/2751)
• Use a form so firefox doesn't try to save the space as a password (server/2804)
• Fix overwriting parameter (server/2825)
• Applied security hardening in SwiftMailer (core/2882)
• Don't set Content-Disposition header if one already exists (server/2949)
• Don't link to the oC forum (server/2988)
• Set redirect_url on 2FA challenge page (server/2981)
• Dont write a certificate bundle if the shipped ca bundle is empty (server/2994)
• Remove group restrictions when those are not allowed anymore (server/2980)

Activity

• Update docs and samples (activity/92)
• Make sure the preview URLs are absolute (activity/91)

User_SAML

• Update SAML library (user_saml/64))
• Make the JS work with sudo mode (user_saml/71))
• Enabled strict mode (user_saml/75))

files_retention

• Delete job if tag not found (files_retention/18)

Also included is a precautionary update for a recent SwiftMailer security issue.

Release blog with more information

Version 11.0.0 December 13 2016

Download: nextcloud-11.0.0.tar.bz2 or nextcloud-11.0.0.zip
Check the file integrity with:
MD5: nextcloud-11.0.0.tar.bz2.md5 or nextcloud-11.0.0.zip.md5
SHA256: nextcloud-11.0.0.tar.bz2.sha256 or nextcloud-11.0.0.zip.sha256
SHA512: nextcloud-11.0.0.tar.bz2.sha512 or nextcloud-11.0.0.zip.sha512
PGP (Key): nextcloud-11.0.0.tar.bz2.asc or nextcloud-11.0.0.zip.asc

Changes

Over 1000 changes were merged, among them:

• Security improvements
  • support for cutting edge browser security features CSP 3.0 and Same-site Cookies
  • support for Kerberos authentication and Two-factor Authentication providers based on Universal 2nd Factor and Time-based One-Time Password
  • expanded brute force protection to all API access points
  • more secure Federation through use of SSL/TLS
  • access rights on app-specific login tokens
  • Our new app store automatically checks apps and enforces signatures
• Scalability and performance improvements
  • Reduce database load up to 80%, speed up small files transfer up to 60%
  • Introduce Multi-bucket support for better scalability on Object Stores
  • Improved preview handling, including no more duplicates for each user
  • Faster Collabora Online startup
  • Faster loading of large folders
• Apache Solr based Full Text Search with Nextant app
• Next gen Federation supports optionally storing info in global 'addressbook' for easy finding of users
• Experimental Spreed app integrates audio/video chat
• Many more smaller changes like 'move file' option in menu, scrollable pdf previews and more

Release announcement with overview about features and changes

See a full list of integrated pull requests here.

Version 10.0.6 August 7 2017

Download: nextcloud-10.0.6.tar.bz2 or nextcloud-10.0.6.zip
Check the file integrity with:
MD5: nextcloud-10.0.6.tar.bz2.md5 or nextcloud-10.0.6.zip.md5
SHA256: nextcloud-10.0.6.tar.bz2.sha256 or nextcloud-10.0.6.zip.sha256
SHA512: nextcloud-10.0.6.tar.bz2.sha512 or nextcloud-10.0.6.zip.sha512
PGP (Key): nextcloud-10.0.6.tar.bz2.asc or nextcloud-10.0.6.zip.asc

Changes

Server

• Upgrade to 10.0.1 fails on Remove shares of a users root folder
• [stable10] SSL menu is now shown for files_external
• [stable10] Fix the storage info and other checks when the user has wrong casing
• [stable10] Add unit tests for mounts of delete users

Version 10.0.5 April 24 2017

Download: nextcloud-10.0.5.tar.bz2 or nextcloud-10.0.5.zip
Check the file integrity with:
MD5: nextcloud-10.0.5.tar.bz2.md5 or nextcloud-10.0.5.zip.md5
SHA256: nextcloud-10.0.5.tar.bz2.sha256 or nextcloud-10.0.5.zip.sha256
SHA512: nextcloud-10.0.5.tar.bz2.sha512 or nextcloud-10.0.5.zip.sha512
PGP (Key): nextcloud-10.0.5.tar.bz2.asc or nextcloud-10.0.5.zip.asc

Changes

Server

• Fix typo in advertisment footer (server/3664)
• Fix branding and show Nextcloud (server/3970)
• Make sure transparency is an integer when saving a calendar (server/4168)
• Reduce error message text (server/4227)
• Fix LDAP description (server/4239)

User_SAML

• Bump to php-saml 2.10.5 (user_saml/101)

Gallery

• Bump to newest DOMPurify release (gallery/249)

Version 10.0.4 February 27 2017

Download: nextcloud-10.0.4.tar.bz2 or nextcloud-10.0.4.zip
Check the file integrity with:
MD5: nextcloud-10.0.4.tar.bz2.md5 or nextcloud-10.0.4.zip.md5
SHA256: nextcloud-10.0.4.tar.bz2.sha256 or nextcloud-10.0.4.zip.sha256
SHA512: nextcloud-10.0.4.tar.bz2.sha512 or nextcloud-10.0.4.zip.sha512
PGP (Key): nextcloud-10.0.4.tar.bz2.asc or nextcloud-10.0.4.zip.asc

Changes

Server

• Fix Sharing app description (server/3398
• Replace ownCloud with Nextcloud in welcome.txt (server/3404)
• Set vendor during install (server/3427)
• Fix detection of the new iOS app (server/3432)
• Add integration tests for legacy DAV endpoints (server/3446)
• Make sure invalid images don't flood the log file (server/3441)
• Fix misleading wording: searching is affected, not user access (server/3561)

Serverinfo

• Fix SQL syntax error on MariaDB 10.0.27 and 10.1.19 (serverinfo/78)

Survey_Client

• Fix problem when checking size with dash in DB name (survey_client/51)

Version 10.0.3 January 16 2017

Download: nextcloud-10.0.3.tar.bz2 or nextcloud-10.0.3.zip
Check the file integrity with:
MD5: nextcloud-10.0.3.tar.bz2.md5 or nextcloud-10.0.3.zip.md5
SHA256: nextcloud-10.0.3.tar.bz2.sha256 or nextcloud-10.0.3.zip.sha256
SHA512: nextcloud-10.0.3.tar.bz2.sha512 or nextcloud-10.0.3.zip.sha512
PGP (Key): nextcloud-10.0.3.tar.bz2.asc or nextcloud-10.0.3.zip.asc

Changes

Server

• Return ETag and OC-ETag in case of move (server/2462)
• Throw an exception when a shipped app was not replaced before the update (server/2464)
• Use proper ALTER ROLE syntax (server/2591)
• Lower the role name before using it (server/2592)
• Get correct L10N for Settings Manager (server/2667)
• Perform CalDAV and CardDAV tests against old endpoint (server/2684)
• Use unmasked permissions in shared scanner (server/2697)
• Do not connect to database before creating it (server/2702)
• Make sure that header is always positioned at the top (server/2755)
• Also check in cron for old php version (server/2810)
• Fix overwriting parameter (server/2826)
• Don't link to the oC forum (server/2989)
• Applied security hardening in SwiftMailer (core/2884)

User_SAML

• Update SAML library (user_saml/65))
• Enabled strict mode (user_saml/74))

Precautionary update for a recent SwiftMailer security issue.

Release blog with more information

Version 10.0.2 December 9 2016

Download: nextcloud-10.0.2.tar.bz2 or nextcloud-10.0.2.zip
Check the file integrity with:
MD5: nextcloud-10.0.2.tar.bz2.md5 or nextcloud-10.0.2.zip.md5
SHA256: nextcloud-10.0.2.tar.bz2.sha256 or nextcloud-10.0.2.zip.sha256
SHA512: nextcloud-10.0.2.tar.bz2.sha512 or nextcloud-10.0.2.zip.sha512
PGP (Key): nextcloud-10.0.2.tar.bz2.asc or nextcloud-10.0.2.zip.asc

Changes

Some 90 changes were merged, among them:

• fix compatibility with older Firefox versions
• check what PHP version you run before upgrade
• make file system work with some specific settings
• fix small UI glitches
• translation improvements
• and more.

This release fixes a number of security issues, details of which you can expect after our usual 2 week waiting period. We suggest upgrading before that time!

See a full list of integrated pull requests here.

Version 10.0.1 September 28 2016

Download: nextcloud-10.0.1.tar.bz2 or nextcloud-10.0.1.zip
Check the file integrity with:
MD5: nextcloud-10.0.1.tar.bz2.md5 or nextcloud-10.0.1.zip.md5
SHA256: nextcloud-10.0.1.tar.bz2.sha256 or nextcloud-10.0.1.zip.sha256
SHA512: nextcloud-10.0.1.tar.bz2.sha512 or nextcloud-10.0.1.zip.sha512
PGP (Key): nextcloud-10.0.1.tar.bz2.asc or nextcloud-10.0.1.zip.asc

Core

Enhancements

• Password policy is now also applied on user creation (server/1379)
• Add theming information to capabilities for the clients (server/1280)
• Allow space for federated share id search (server/1191)
• DAV: Return data-fingerprint always when asked (server/1176)
• Users page uses lazy multiselect group dropdowns (server/1174)
• Allow the config dir to be specified via environment variable (server/1081)

Bug fixes

• Don\'t print exception message in HTML (server/1343)
• Filter more mimetypes for VCF images (server/1340)
• Make OS X Finder work with WebDAV again (server/1331)
• Only match for Same-Site Cookie instead of all, makes Nextcloud work with OVH again (server/1331)
• Fix setting quota to default or unlimited (server/1327)
• Show download button instaed of the updater (server/1324)
• Fix required permissions for WebDAV move and copy (server/1320)
• Improve detection of file types in file firewall (server/1319)
• Use proper endpoint for updater server (server/1312)
• Correctly remove admin sections and settings when not required (server/1305)
• Move navigation entries without order to the end (server/1299)
• Allow to call status.php before the instance is installed (server/1288)
• Do not allow linebreaks and null bytes in paths (server/1231)
• Fix vendor name in PHP version warning (server/1209)
• Correctly handle multi-values when converting VCards to arrays (server/1207)
• Prevent error with orphaned shares when updating user mount cache (server/1200)
• Check if the file isReadable() before sending a (cached) preview (server/1184)
• Allow downgrades of maintenance accross vendors (server/1183)
• Fix oracle support of external storage app (server/1181)
• Before a user is getting scanned the database connection is reestablished (server/1159)
• Make sure file list files config always exists (server/1157)
• Fix issues with user settings and case-insensitivity (server/1156)
• Prevent parse error on editing an HTML comment (server/1140)
• Remove reading PATH_INFO from server variable (server/1104)
• Correct links to security and setup warnings (server/1074)
• Several files_external user enhancements (server/902)
• Fixed database conversion problem if a CardDAV entry had more than two components (server/1543)
• Folder drag was glitching in Firefox (server/1528)

Updater

Enhancements

• A new updater has been added improving the updater experience (https://github.com/nextcloud/updater)

Files Access Control

Enhancements

• Add link to documentation (files_accesscontrol/38)

Survey Client

Bug fixes

• Fix dismiss "send usage report" notification (survey_client/32)

Server Info

Bug fixes

• Fix size calculation for MariaDB (serverinfo/35)

Gallery

Bug fixes

• Improved error handling (gallery/157 / gallery/156)

Template Editor

Bug fixes

• Fix error message when restoring example template (templateeditor/11)

Trashbin

Bug fixes

• Remove error message for files without preview (server/1397)
• Detect proper mimetype for files (server/1367)

Sharing

Bug fixes

• Notification mails for shares are sent again (server/1394)
• Use original permissions for share owner (server/1391)

Encryption

Enhancements

• Skip shared files if files get decrypted only for a specific user (server/1345)

External User Backend

Bug fixes

• Detect anonymous auth on the server and ignore it (apps/9)

Theming

Enhancements

• Add icon for theming app (server/1294)
• Show loading spinner while uploading files (server/1186)
• Improve performance of the theming app by optimizing images and caching headers (server/1126)

SAML

Enhancements

• Additional configuration switch to use application specific passwords for desktop clients

Version 9.0.58 April 24 2017

Download: nextcloud-9.0.58.tar.bz2 or nextcloud-9.0.58.zip
Check the file integrity with:
MD5: nextcloud-9.0.58.tar.bz2.md5 or nextcloud-9.0.58.zip.md5
SHA256: nextcloud-9.0.58.tar.bz2.sha256 or nextcloud-9.0.58.zip.sha256
SHA512: nextcloud-9.0.58.tar.bz2.sha512 or nextcloud-9.0.58.zip.sha512
PGP (Key): nextcloud-9.0.58.tar.bz2.asc or nextcloud-9.0.58.zip.asc

Changes

Server

• Replace unecessary unescaped prints with print (server/4226)

User_SAML

• Bump to php-saml 2.10.5 (user_saml/102)

Gallery

• Bump to newest DOMPurify release (gallery/250)

Version 9.0.57 February 27 2017

Download: nextcloud-9.0.57.tar.bz2 or nextcloud-9.0.57.zip
Check the file integrity with:
MD5: nextcloud-9.0.57.tar.bz2.md5 or nextcloud-9.0.57.zip.md5
SHA256: nextcloud-9.0.57.tar.bz2.sha256 or nextcloud-9.0.57.zip.sha256
SHA512: nextcloud-9.0.57.tar.bz2.sha512 or nextcloud-9.0.57.zip.sha512
PGP (Key): nextcloud-9.0.57.tar.bz2.asc or nextcloud-9.0.57.zip.asc

Changes

Server

• Make sure invalid images don't flood the log file (server/3442)
• Fix misleading wording: searching is affected, not user access. (server/3563)

Version 9.0.56 January 16 2017

Download: nextcloud-9.0.56.tar.bz2 or nextcloud-9.0.56.zip
Check the file integrity with:
MD5: nextcloud-9.0.56.tar.bz2.md5 or nextcloud-9.0.56.zip.md5
SHA256: nextcloud-9.0.56.tar.bz2.sha256 or nextcloud-9.0.56.zip.sha256
SHA512: nextcloud-9.0.56.tar.bz2.sha512 or nextcloud-9.0.56.zip.sha512
PGP (Key): nextcloud-9.0.56.tar.bz2.asc or nextcloud-9.0.56.zip.asc

Changes

• Applied security hardening in SwiftMailer (core/2883)

User_SAML

• Update SAML library (user_saml/66))
• Enabled strict mode (user_saml/73))

Precautionary update for a recent SwiftMailer security issue.

Release blog with more information

Version 9.0.55 December 9 2016

Download: nextcloud-9.0.55.tar.bz2 or nextcloud-9.0.55.zip
Check the file integrity with:
MD5: nextcloud-9.0.55.tar.bz2.md5 or nextcloud-9.0.55.zip.md5
SHA256: nextcloud-9.0.55.tar.bz2.sha256 or nextcloud-9.0.55.zip.sha256
SHA512: nextcloud-9.0.55.tar.bz2.sha512 or nextcloud-9.0.55.zip.sha512
PGP (Key): nextcloud-9.0.55.tar.bz2.asc or nextcloud-9.0.55.zip.asc

Changes

About 30 bug fixes and security improvements were merged. We will release details on the security improvements after our usual 2 week waiting period. We suggest upgrading before that time!

See a full list of integrated pull requests here.

Version 9.0.54 September 28 2016

Download: nextcloud-9.0.54.tar.bz2 or nextcloud-9.0.54.zip
Check the file integrity with:
MD5: nextcloud-9.0.54.tar.bz2.md5 or nextcloud-9.0.54.zip.md5
SHA256: nextcloud-9.0.54.tar.bz2.sha256 or nextcloud-9.0.54.zip.sha256
SHA512: nextcloud-9.0.54.tar.bz2.sha512 or nextcloud-9.0.54.zip.sha512
PGP (Key): nextcloud-9.0.54.tar.bz2.asc or nextcloud-9.0.54.zip.asc

Core

Enhancements

• Add app icons for comments and tags (server/589)
• Log class name, ID only is hard to debug (server/793)
• Prevent installation with PHP 7.1 (server/826)
• Add files drop capability for clients (server/888)
• Allow to retrieve the quota itself via the provisioning api (server/901)
• Users page uses lazy multiselect group dropdowns (server/1175)
• Fix oracle support of external storage app (server/1182)

Bug fixes

• Support PHP 7 for streamed downloads (server/463)
• Cast share ID to string (server/469)
• Fix the HTML encoding when uploading a folder in FF when using french (server/491)
• Fix GitHub link in personal and admin settings version note (server/546)
• Fix searchbox background (server/623)
• Compare libxml version against loaded version (server/629)
• Adding quota plugin to new DAV endpoint (server/655)
• Added white download icons (server/690)
• getJailedPath expects to have a trailing slash (server/818)
• Ensure the user exists before calling a method on it (server/911)
• Fix "Undefined index" when the values do not exist (server/933)
• Add feedback for password change (server/1004)
• Prevent parse error on editing an HTML comment (server/1141)
• Before a user is getting scanned the database connection is reestablished (server/1149)
• lastInsertId requires the prefix in Oracle (server/1152)
• Fix paths returned by \OC\Files\Storage\Shared hooks (server/1153)
• Fix link share expiration date enforcement (server/1155)
• Correctly handle multi-values when converting VCards to array (server/1208)
• Do not allow linebreaks and null bytes in paths (server/1232)
• Fix layout of success message and text in the updater (server/1313)
• Fix required permissions for webdav move and copy (server/1321)
• Show an download button instead of the updater (server/1325)
• Allow to call status.php before the instance is installed (server/1289)
• Don\'t print exception message in HTML (server/1344)

Updater

Enhancements

• A new updater has been added improving the updater experience (https://github.com/nextcloud/updater)

Activity

Bug fixes

• Make sure an empty file name doesn\'t break the stream (activity/8)
• Fix broken avatar of remote users in sidebar (activity/17)
• Use the last known user instead of erroring (activity/24)

Theming

Enhancements

• Support changing the page title (server/372)
• Add icon for the theming app (server/1295)
• Add theming information to capabilities for the clients (server/1281)

Bug fixes

• Fix maintenance mode (server/442)
• Make sure we try to autoload the class (server/549)
• Make theming work with pretty URLs (server/370)
• Use proper name on emails (server/406)
• Fix theme logo position (server/570)

Trashbin

Bug fixes

• Fix error message while restoring all files (server/552)

LDAP

Bug fixes

• Fix undefined OfflineUser::composeAndStoreDisplayName() (server/587)
• Prevent setting email and triggering events at login time (server/594)

Sharing

Bug fixes

• Do not allow to delete/update group shares as a group member (server/707)
• Use original permissions for share owner (server/1392)

Gallery

Bug fixes

• Fix share link button label (gallery/8)
• Improved error handling (gallery/158 / gallery/159)

Texteditor

Enhancements

• Open JSON files with the text editor (files_texteditor/9)

External User Backend

Bug fixes

• Detect anonymous auth on the server and ignore it (apps/10)