- Adopted the cs3 python client (#161), and optimized the logic that deals with extended attributes
- Ported xrootd docker image to Alma9 (#164)
- Forced preview mode for non-regular (non-primary) accounts
- Added timeout settings for GRPC and HTTP connections (#149)
- Fixed handing of trailing slashes (#151)
- Moved docker image to 3.12.3-alpine (#147)
- Added support for Microsoft compliance domains
- Fixed opening of markdown files created on Windows platforms
- Improved lock handling on write and xattr operations (#137)
- Improved logs
- Implemented support for X-Trace-Id header (#64)
- Fixed SaveAs logic for non-authenticated (anonymous) users
- Improved handling of HTTP requests
- Improved memory efficiency by streaming files' content (#136, #141)
- Fixed 0-byte uploads (#142)
- Implemented cache for xattrs in the cs3 storage (#128)
- Implemented advisory locking via xattrs for cs3 storages that do not support native locking (#129)
- Improved handling of default values, in order to clean up the default config file
- Fixed the PostMessageOrigin property in CheckFileInfo when using the same wopiserver with multiple cloud storages
- Fixed xroot build
- Fixed failed precondition error handling in unlock
- Fixed handling of filenames with non latin-1 characters (#127)
- Improved logging and adjusted log levels (#123)
- Switched from CentOS Stream 8 to AlmaLinux 8 for the xroot-flavoured docker image
- Added CloseUrl and other properties to CheckFileInfo
- Introduced health check of the configured storage interface to ease deployment validation (#122)
- Inverted default for wopilockstrictcheck
- Fixed Preview mode
- Removed legacy logic for discovery of app endpoints (#119): this is now only implemented by Reva's app providers, and legacy ownCloud/CERNBox UIs are not supported any longer
- Removed support to forcefully evict valid locks, introduced to compensate a Microsoft Word issue
- Converted all responses to JSON-formatted (#120)
- Cleaned up obsoleted scripts
- Introduced concept of user type, given on
/wopi/iop/open, to better serve federated vs regular users with respect to folder URLs and SaveAs operations - Redefined
conflictpathoption ashomepath(the former is still supported for backwards compatibility): when defined, a SaveAs operation falls back to the user'shomepathwhen it can't work on the original folder - Fixed PutUserInfo to use the user's username as xattr key
- Added arm64-based builds
- Introduced support to forcefully evict valid locks to compensate Microsoft Online mishandling of collaborative sessions. This workaround will stay until a proper fix is implemented following Microsoft CSPP team's advices
- Improved logging, in particular around lock eviction
- Bridged apps: moved plugin loading apps out of the deprecated discovery module, and fixed some minor bugs
- CI: moved release builds to GitHub actions
- Introduced heuristic to log which sessions are allowed to open a collaborative session and which ones are prevented by the application
- Introduced support for app-aware locks in EOS (#94)
- Disabled SaveAs action when user is not owner
- Improved error coverage in case of transient errors in bridged apps and in PutFile operations
- Moved from LGTM to CodeQL workflow on GitHub (#100)
- Introduced support for PutUserInfo
- Added support for the Microsoft "business" flow (#105)
- Added option to use file or stream handler for logging (#91)
- Introduced configurable hostURLs for CheckFileInfo (#93)
- Fixed duplicate log entries (#92)
- CodiMD: added support for direct storage access via the ownCloud file picker (#95)
- Fixed check for external locks
- Further fixes to improve coverage of the WOPI validator tests
- Introduced support for PREVIEW mode (#82)
- Improved UnlockAndRelock logic (#85, #87)
- Switched to python-alpine docker image (#88)
- Introduced further branding options in CheckFileInfo
- Further improvements in the bridged apps logic
- Added more logging and a new endpoint to monitor conflicted sessions
- Refactored and strengthened save workflow for bridged applications, and simplified lock metadata (#80) [Note: this change is not backwards compatibile and prevents a transparent upgrade; see also wopiserver.conf]
- Refactored PutFile logic when handling conflict files (#78)
- Improved support for Spaces in Reva (#79)
- Implemented save workflow for Etherpad documents (#81)
- Fixed direct download in case of errors
- Updated dependencies and documentation
- Improved logging around lock conflict handling
- Added logging of additional headers as provided by MS Office 365
- Readded tool to test the open-in-app workflow
- Extend creation of recovery files when a PutFile fails because of a lock mismatch
- Added support for disabling write access to ODF files when opened with MS Office
- Added support for etags to represent file versions (#65)
- Use relative references for CS3-compatible storages (#74)
- Improved support for ownCloud WOPI proxy
- Simplified SetLock logic
- Fixed some metadata responses (#76) following Microsoft WOPI validation tests. In particular, WOPISrc values are now URL-encoded as per specifications, and PutRelative is fully compliant
- Fixed handling of files with a
&char in xroot - Improved stat/version folder logic and logging in xroot
- Added reva traces to all relevant logs (#75)
- Restored full URL logging in case of critical errors
- Fixed uncaught exceptions
- Code linting and cleanup campaign
- The new Lock API is now fully supported (#51), including in the CS3APIs-compatible layer; in addition, locks are passed along to CS3APIs backends on any operation that implies a modification
- Moved part of the lock handling logic to the storage
providers (#69), as Reva implements it natively: this
removes the non-standard feature that the expiration time
of a lock was extended by
PutFileoperations without needing to callRefreshLock, as introduced in v6.3.0 - Added support for Reva spaces in the CS3API-compatible storage layer (#67)
- Introduced a
recoverypathconfiguration option as a local path where to store files in case of I/O errors with the remote storage. Fixes bug #39 - Introduced a
conflictpathconfiguration option as the target location where to store webconflict files - Introduced a
detectexternallocksoption, to control the additional logic that allows to operate the WOPI server on shared online storages - Improved logging: lock-related logs were made more consistent and informative, and access tokens have been redacted from logged URLs
- The docker image has been upgraded to python 3.10
- Support for the ownCloud WOPI proxy was extended
to the legacy
/cbox/openendpoint
- Refactored the locking logic to use a new Lock API (#51) and corresponding xattr support in xrootd/EOS. Note that for this pre-release, the CS3APIs-compatible implementation of locking is not yet available
- Removed legacy crypto settings from docker image
- Adapted the xrootd/EOS storage interface to
support the new
/openinappReva workflow - Implemented support for the ownCloud WOPI proxy
- Improved support for bridged apps when opened in legacy mode via /cbox/open
- Improved JSON representation of log messages
- Ensure the
UserIdWOPI property is consistent over multiple sessions for any given user (#48) - Added support for disabling zipped bundles in CodiMD (#49)
- Added support for disabling renames from apps
- Changed the inode scheme for the xrootd storage interface to match the cs3 one and enable co-operation in mixed deployments
- Made
folderurlargument fully optional in /wopi/iop/openinapp - Improved logging and error reporting from the storage layers
- Added minimal validation of cert/key files prior to starting the Flask server in https mode
- Fixed some return codes in case of invalid access token
- Refactoring: deprecated REST endpoints under /wopi/cbox were all clearly marked
- Fixed WOPI GetFile to return HTTP 500 in case of failures fetching the file from the backend
- Raised log levels in case of unexpected user actions or storage failures
- Improved logs readability when userids are long Reva JWT tokens
- Implemented a
wopilockstrictcheckconfig parameter (see wopiserver.conf) - Limit conflict files to one per hour (#45)
- Fixed default for appviewurl (#46)
- Reverted because of a bug in GetFile
- Handled cases of too large files as well as invalid UTF encoding in CodiMD
- Improved initialization of bridge plugins
- Reworked openinapp endpoint following developments in the AppProviders model
- Merged wopibridge functionality: now
the server supports a new
codimdurlparameter as well as acodimd_apikeyfile as a "secret", whereaswopibridgeurlwas removed - Introduced a new /wopi/iop/openinapp endpoint, which does not use the discovery but relies on Reva to have the needed app URLs: the discovery logic was moved to a separate module and will be deprecated once reva#1779 is fixed
- Complete refactoring/linting of the code to follow PEP8 standards
- Enhanced logging to include the python module
- Fixed some uncaught exceptions found in production
- Make SSL certificate validation configurable for Reva
- Removed workarounds targeting MS Word Online
- Extended the REFRESH_LOCK API to support relocking a file when it was not externally modified
- Fixed /cbox/lock in order to ensure the returned lockid is never older than the token expiration time
- Introduced a new .epd file extension for Etherpad
- Fixed WOPI locking when a stale LibreOffice/OnlyOffice lock was found on the storage
- Improved PutFile responses when dealing with conflicts
- Fixed CS3 APIs bindings import
- Fixed unique inodes by using a base64 encoding of the underlying inode (endpoint + fileid for xrootd-EOS)
- Extended validity of WOPI locks to take into account
PutFile operations: the lock will be valid until the most
recent value between its expiration time and the last
save time +
wopilockexpiration - Added support for a dynamic list of file extensions for Collabora Online
- Fixed and improved logging
- Fixed responses of GET_LOCK and REFRESH_LOCK calls when no existing lock is found: 404 is now returned as opposed to 409
- Fixed response of PUT in case of missing lock
- Improved probing of target locks in PUT_RELATIVE
- Make sure inodes are unique across eos instances with the xrootd storage interface, similarly to the CS3 interface
- Fixed JWT generation following latest pyjwt package
- Improved prometheus monitoring to cover /cbox/lock calls
- Improved logging
- Migrated the xrootd-based docker image to xrootd 5.0 and CentOS 8.2 (with crypto legacy mode enabled to keep TLS 1.1 support)
- Migrated the default image to python 3.9 and fixed requirements accordingly (will revert to latest grpcio once it is fixed)
- Introduced a check on /open and /lock in case the file is a directory: now an error is returned as opposed to let such operations succeed
- Added a /metrics endpoint for Prometheus integration
- Several minor fixes as hinted by the MS WOPI validator tests
- As of this version, RPMs are not built any longer and the supported deployment is docker-based only
- Log is now in JSON format as opposed to syslog-like
- Use direct data transfers (non-TUS-based) with CS3 storages
- Improved locks handling and responses
- Improved exception handling in /cbox/lock
- Renamed codimdurl to wopibridgeurl
- Improved logging and exception handling
- Minor fix on PutFile
- Improved locking for non-office files
- Moved to 3-digit releases to help drone-based automatic builds
- Minor fixes in cboxLock and CheckFileInfo
- Made logs group-writable for flume agents to push them to Kibana
- Make CS3-based uploads work with tus and through gateway
- Fixed race condition in cboxLock
- Delay lock checks when needed (i.e. in WOPI LOCK), not at access token creation time
- Fixed CS3-based workflows: the wopiopen.py tool and the open-file-in-app-provider reva command both support generic storage ids and have been tested with Collabora
- Fixed wopiurl config parameter
- Fixed xrootd encoding of file names with special chars
- Incorporated unit test suite in the docker images
- Exposed a new /wopi/iop/open endpoint to match Reva. The former /wopi/cbox/open endpoint is deprecated and will be dropped once production moves forward.
- Added support for inodes invariant to save operations, in order to properly support collaborative editing
- General refactoring of the code base and evolution to become fully vendor-neutral: see #14
- Included a pure python-based docker image
- Ported to xrootd 4.12 and python 3.8
- Moved to the CS3 Organisation
- Included some fixes around locking; this is hopefully the last release before the ScienceMesh integration
- Introduced two new lock-related endpoints to cover interoperability with OnlyOffice
- Improved WOPI lock handling
- Added detection of lock files created by Desktop apps (Microsoft Office and LibreOffice) to prevent data losses
- Major refactoring to introduce support of multiple storage access plugins: currently supported xrootd (default) and local storage, a CS3APIs-compliant access plugin is foreseen in an upcoming release.
- Added support for multiple office-like applications: currently supported office apps are Microsoft Office Online and Collabora Online
- Included minor fixes in the core WOPI code
- Fixed handling of strings/byte-arrays
- Packaging adapted to CentOS7 and pip3
- Ported software to Python 3
- Removed experimental nginx configuration
- Introduced support for multiple storage backends
- Improved handling of newly created files, including working around an issue with concurrent editing from Office Online
- Port to xrootd 4.8 and its python bindings
- Docker and docker-compose files made available in the repo
- Improved logging to get time statistics about xrootd remote calls and consistently log the access token across all relevant log messages
- Included script to parse logs and send statistics to grafana
- Incorporated contributions from AARNet, introduced many configurable items
- Improved docker image configuration for running behind a load balancer
- Included support for nginx as load balancer (this is still experimental and not required for the functioning of the WOPI server)
- Improved logging for monitoring purposes, introduced script to populate a grafana instance with relevant metrics
- Fixed WebDAV URL
- Improved support for anonymous shares
- Added support for desktop access via WebDAV
- Fixed handling of expired WOPI locks
- Disabled renaming and added work-around for looping locking requests
- Get list of currently opened files for operations purposes
- General refactoring of the code
- Improved navigation and properties in Office Online
- Fixed lock handling to adhere to specifications (this is known to break renaming in Word and PowerPoint)
- Support creation of new documents
- Improved lock handling to fully support concurrent editing
- First official release for internal deployment after first round of tests
- Support for https, download URL and minor fixes
- Release for pre-production tests
- Implemented the locking interface
- Support the PutRelativeFile, RenameFile, DeleteFile operations
- Refined the /cbox API to interact with OwnCloud
- First nearly complete version for test deployment with eosbackup
- First packaging for the WOPI server prototype