App Suite Middleware

8.32.0 - 2024-11-20

Added

  • SCR-1470: Added new lean property to control detection of inline images
  • #21; New setting for preferred Calendar User Address [#21]
  • SSO Logout when OX Sessions are closed through "Sign out from all devices" - /appsuite/platform/core#90

Changed

  • MW-2254: Introduced baselayer image build
  • MWB-2245: Avoid duplicate -XX:MaxHeapSize set via helm chart
  • MWB-2614: Use BadPassword exception for failed decryption
    • Also, log legacy encryption warning only once per day
  • SCR-1462: Added new property to track Redis operation taking longer than a configured threshold
  • SCR-1472: Updated Netty libraries from v4.1.112 to v4.1.114
  • SCR-1473: Updated lettuce library from v6.4.0 to v6.5.0
  • SCR-1476: Updated several libraries to update Jackson libraries from v2.16.1 to v2.18.1
  • Adapted clearing Java's DNS cache to new supported Java version(s)
  • Signal support for mail folder resynchronization & enhanced /mail?action=examine response to also include modseq if supported
  • Updated the gotenberg image from 8.2.0 to 8.12.0 and the chart from 1.1.0 to 1.7.0
  • Optionally skip de-registration of push listeners during user/context delete - appsuite/platform/core#43
  • Allow specifying the name of the HTTP header that forwards the originating remote port - appsuite/platform/core#65
  • Chunking for S3 file storage - appsuite/platform/core#66
  • Check if tables still exist prior purging accounts - appsuite/platform/core#69
  • Update vulnerable libraries
    • Update libraries xmlrpc-commonclient/server to 5.0.0 (CVE-2016-5004)
    • Update library xmlsec to 2.3.4 (CVE-2023-44483)
    • Update library nimbus-jose-jwt to 9.41.2 (CVE-2023-52428)
    • Update library ion-java to 1.11.9 (CVE-2024-21634)
    • Update library mysql-connector-j to 8.3.0 (CVE-2023-22102)
    • Update library velocity-engine-core to 2.4 (CVE-2024-47554)
    • Update library protobuf-java to 3.25.5 (CVE-2024-7254)
    • Update library logback-classic/core to 1.2.13 (CVE-2023-6378)
    • Update cxf-libraries to 3.5.9 (CVE-2024-28752)
  • Do not perform computation intensive obfuscation/un-obfuscation of sessions' password while holding Redis connection - /appsuite/platform/core#76
  • Updated documentation about CardDAV collection handling for iOS clients - /appsuite/platform/core#80
  • Use more modern values for sun.net.inetaddr.ttl and networkaddress.cache.ttl - /appsuite/platform/core#95
  • Added trace logging for authentication probes during request analysis - /appsuite/platform/core#103
  • Added logging in case a down-/upload request is interrupted or gets killed - /appsuite/platform/core#109
  • Ignore possible NoSuchFileException - /appsuite/support#227
  • Added reference to 'checkTopLevelDomainOnAddressValidation' property in documentation - appsuite/support#236

Fixed

  • MW-2371: Added required Zone to DateTimeFormatter
  • MWB-2435: Do not generate new random values for missing secret env variables on every update
  • MWB-2631: Inline Metadata Missing in Syncfiles Response
  • MWB-2641: Use correct target DB for moved context
  • Added missing update task dependency to Filestore2UserUpdateReferencesTask
    • See Ref. [#55]
  • Expose remote debug port and use correct role selector
  • Use hz service name that is defined by the document role
  • Dont run pot generation on main
  • Improved regex for password filtering
  • Move POT to seperate stage again
  • Prevent NPE if json error contains no message
  • Revert imageBuildPod.yaml changes
  • Use ant container for pot generation
  • Use proper error
  • Pay attention to com.openexchange.push.dovecot.unregisterAfterDelete setting - /appsuite/platform/core#4
  • Un-mark schema for deletion after deletion fails, ensure to load db connection settings properly - appsuite/platform/core#68
  • Do not try to reparse a mail when creating its JSONrepresentation - /appsuite/platform/core#72
  • Establish a new connection to Redis if a timeout occurs while waiting for a connection to become available in pool - appsuite/platform/core#76
  • Properly indicate support for MKCOL in OPTIONS response - /appsuite/platform/core#77
  • Check for valid credentials prior to store attempt - appsuite/platform/core#79
  • Determine file name by Content-Type/Content-Disposition headers if not given through Subject header - appsuite/platform/core#85
  • Sanitize UID prior using as 'id-left' in Message-ID header - /appsuite/platform/core#97
  • Fixed NoClassDefFoundError when trying to access Scribe classes - /appsuite/platform/core#98
  • Encode resource (in)availability in cached representation - /appsuite/platform/core#100
  • Replace illegal characters instead of throwing an error. Ref. [#101]
  • Don't use unreliable piped streams for task export - /appsuite/platform/core#105
  • Properly check key name [#106]
  • Adjusted config docu links in quota docu. Ref. [#107]
  • Removed summary from request body of folder-modifying requests - /appsuite/platform/core#110