Changelog for reva 3.5.0 (2026-01-09)

The following sections list the changes in reva 3.5.0 relevant to
reva users. The changes are ordered by importance.

Summary

• Fix #5449: Fix database sharedconfig parsing
• Fix #5464: Make MOVE work in public link
• Fix #5446: Make notify_uploads_extra_recipients work in libregraph
• Fix #5463: Fix permission editing for public links
• Fix #5404: Fix localhome virtual namespace path handling for spaces
• Enh #5429: Cephmount: supports setting posix acls
• Enh #5433: Make chunking_parallel_upload_disabled configurable
• Enh #5450: Clean up ListWithRegex log
• Enh #5447: Make notification trigger always use items
• Enh #5445: Support funcs in templates
• Enh #5402: Refactoring of the GORM model for shares
• Enh #5428: Refactor permissions

Details

• Bugfix #5449: Fix database sharedconfig parsing

  #5449

• Bugfix #5464: Make MOVE work in public link

  #5464

• Bugfix #5446: Make notify_uploads_extra_recipients work in libregraph

  #5446

• Bugfix #5463: Fix permission editing for public links

  A bug was introduced during the refactoring of the permission system
  (#5428). This has now been fixed.

  #5463

• Bugfix #5404: Fix localhome virtual namespace path handling for spaces

  Added optional VirtualHomeTemplate config to localfs driver, enabling localhome to
  correctly handle paths when exposing user homes through a virtual namespace (e.g.,
  /home/) while storing files in a flat per-user layout on disk.

  The wrap() function uses a clean switch statement with named predicates to handle five path
  transformation patterns:

  • Exact match: /home/einstein -> / - Full path: /home/einstein/file -> /file - Parent path:
    /home -> / (when virtual home is /home/einstein) - Gateway-stripped parent: /home/file ->
    /file (gateway omits username) - Gateway-stripped username: /einstein/file -> /file
    (WebDAV "home" alias)

  The last two cases handle gateway routing edge cases where prefixes are stripped differently
  depending on whether the WebDAV layer uses space IDs or the "home" alias for URL construction.

  The normalize() function adds the virtual home prefix only to the Path field of ResourceInfo
  (e.g., /file -> /home/einstein/file), enabling PathToSpaceID() to derive the correct space
  identifier. The OpaqueId field remains storage-relative (e.g., fileid-einstein%2Ffile)
  to ensure resource IDs can be properly decoded.

  The localhome wrapper now correctly passes VirtualHomeTemplate through to localfs.

  When VirtualHomeTemplate is empty (default), behavior is unchanged, ensuring backward
  compatibility with EOS and existing deployments.

  #5404

• Enhancement #5429: Cephmount: supports setting posix acls

  #5429

• Enhancement #5433: Make chunking_parallel_upload_disabled configurable

  #5433

• Enhancement #5450: Clean up ListWithRegex log

  #5450

• Enhancement #5447: Make notification trigger always use items

  #5447

• Enhancement #5445: Support funcs in templates

  #5445

• Enhancement #5402: Refactoring of the GORM model for shares

  With this PR we introduce new constraints and rename some fields for better consistency:

  • Types used by OCM structures only are prefixed with Ocm, and AccessMethod and Protocol
    were consolidated into OcmProtocol * ItemType is used in OCM shares as well * The
    (FileIdPrefix, ItemSource) tuple is now (Instance, Inode) in OcmShare, and it was
    removed from OcmReceivedShare as unused * Unique index constraints have been created for
    regular Shares and for OcmShares on (instance, inode, shareWith, deletedAt) * The
    unique indexes have been renamed with a u_ prefix for consistency: this affected
    u_shareid_user, u_link_token. The i_share_with was dropped as redundant. * Alias
    and Hidden were added in OcmReceivedShare

  #5402

• Enhancement #5428: Refactor permissions

  Permissions are now, at least partially, handled and exposed within a single package (which
  was important for cernboxcop), with conversions between the different types of permissions

  #5428

Changelog for reva 3.4.2 (2025-12-17)

The following sections list the changes in reva 3.4.2 relevant to
reva users. The changes are ordered by importance.

Summary

• Fix #5444: Allow lightweight accounts to use external apps
• Enh #5442: Refactor emailhandler

Details

• Bugfix #5444: Allow lightweight accounts to use external apps

  For that, we need to explicitly allow all relevant storage provider requests when checking the
  lw scope.

  #5444

• Enhancement #5442: Refactor emailhandler

  The email handler now supports reading CID files and embedding them.

  #5442

Changelog for reva 3.4.1 (2025-12-16)

The following sections list the changes in reva 3.4.1 relevant to
reva users. The changes are ordered by importance.

Summary

• Fix #5443: Make PROPFIND on files proper

Details

• Bugfix #5443: Make PROPFIND on files proper

  #5443

Changelog for reva 3.4.0 (2025-12-12)

The following sections list the changes in reva 3.4.0 relevant to
reva users. The changes are ordered by importance.

Summary

• Fix #5425: Make public file PROPFIND response proper again
• Fix #5421: Eosfs: SetLock now checks existing locks
• Fix #5424: Make href properly formed on PROPFIND requests to /v endpoints
• Fix #5418: Fix inverted expiry check in JSON invite repository
• Fix #5412: Nilpointer in logline when addGrant fails
• Fix #5415: Set correct user type when accepting OCM invites
• Fix #5422: Do not give delete permission to root of public links
• Fix #5409: Bring back proper DAV support
• Fix #5430: Fix trashbin restores
• Fix #5427: Fix upload notifications
• Fix #5423: Make href proper in REPORT
• Enh #5385: Add OCM Where Are You From capability
• Enh #5403: Add Acess-Control-Expose-Headers for Range requests
• Enh #5323: Add database config to sharedconf
• Enh #5432: Add support for embedded view mode in apps
• Enh #5408: Modernize codebase
• Enh #5407: Add musl-based fully static build target
• Enh #5401: Adapt gateway and corresponding driver to CS3API changes
• Enh #5363: Include OCM shares in SharedByMe view
• Enh #5285: Remove EOS EnableHome parameter
• Enh #5405: Add support for signed URLs
• Enh #5381: Convert SQL tables to gorm, corresponding driver, and tests

Details

• Bugfix #5425: Make public file PROPFIND response proper again

  #5425

• Bugfix #5421: Eosfs: SetLock now checks existing locks

  #5421

• Bugfix #5424: Make href properly formed on PROPFIND requests to /v endpoints

  #5424

• Bugfix #5418: Fix inverted expiry check in JSON invite repository

  The tokenIsExpired function in the JSON invite repository had the comparison operator
  inverted, causing valid (non-expired) tokens to be incorrectly filtered out when listing
  invite tokens.

  The check token.Expiration.Seconds > Now() was returning true for tokens expiring in the
  future, effectively hiding all valid tokens. Fixed to use < instead of >.

  #5418

• Bugfix #5412: Nilpointer in logline when addGrant fails

  Fix for #5387

  #5412

• Bugfix #5415: Set correct user type when accepting OCM invites

  When a remote user accepts an OCM invite, they were being stored with USER_TYPE_PRIMARY
  instead of USER_TYPE_FEDERATED. This caused federated user searches to fail and OCM share
  creation to break because the user ID was not properly formatted with the @Domain suffix
  required for OCM address resolution.

  #5415

• Bugfix #5422: Do not give delete permission to root of public links

  Otherwise, a folder shared through a public link could itself be deleted

  #5422

• Bugfix #5409: Bring back proper DAV support

  Spaces broke proper DAV support, because returned hrefs in the PROPFIND always contained
  space IDs, even if these were not present in the incoming request. This is fixed now, by writing
  the href based in the incoming URL

  #5409

• Bugfix #5430: Fix trashbin restores

  #5430

• Bugfix #5427: Fix upload notifications

  The registration of notifications for uploads in a public link folder was until now only
  handled in the OCS HTTP layer; this is the responsibility of the public share provider. Since it
  was also missing from the OCGraph layer, this has been moved to the "gRPC" part of reva

  #5427

• Bugfix #5423: Make href proper in REPORT

  Github.com//pull/5409 broke REPORT calls, which are used for favorites. This is
  now fixed

  #5423

• Enhancement #5385: Add OCM Where Are You From capability

  Implements WAYF specific discovery endpoints for the ScienceMesh package, enabling dynamic
  OCM provider discovery and federation management.

  #5385

• Enhancement #5403: Add Acess-Control-Expose-Headers for Range requests

  We add the necessary headers for multipart range requests to Acess-Control-Expose-Headers
  to expose these, so that clients can read them

  #5403

• Enhancement #5323: Add database config to sharedconf

  Add database configuration to sharedconf, so that it doesn't have to be repeated for every
  driver

  #5323

• Enhancement #5432: Add support for embedded view mode in apps

  #5432

• Enhancement #5408: Modernize codebase

  This PR
  modernizes
  the codebase: it removes syntax that used to be idiomatic but now has better alternatives

  #5408

• Enhancement #5407: Add musl-based fully static build target

  Added a new revad-static-musl Makefile target that produces a fully statically linked
  binary using musl libc instead of glibc. This eliminates the linker warnings that appeared
  with the standard static build and creates a truly portable binary that runs on any Linux
  distribution without requiring matching glibc versions.

  Also fixed the build info injection by correcting the package path in BUILD_FLAGS to include
  the /v3 module version, ensuring version, commit, and build date information are properly
  displayed in the binary.

  #5407

• Enhancement #5401: Adapt gateway and corresponding driver to CS3API changes

  The OCM Core API has been renamed to OCM Incoming API

  #5401

• Enhancement #5363: Include OCM shares in SharedByMe view

  • The CS3APis verison has been updated to include "ListExistingOcmShares". - The OCM shares
    are now included in the getSharedByMe call. - The filters have been updated to adapt to changes
    from the updated CS3APIs. - Fixed bug where only ocm users were queried if it was enabled. -
    Consolidated OCM Address resolutions in a single function, fixes #5383

  #5363

• Enhancement #5285: Remove EOS EnableHome parameter

  This change removes the EnableHome parameter, which was a source of bugs and was unused in
  production.

  #5285

• Enhancement #5405: Add support for signed URLs

  #5405

• Enhancement #5381: Convert SQL tables to gorm, corresponding driver, and tests

  • Conversion of the SQL tables to a GORM model, IDs are unique across public links, normal
    shares, and OCM shares. - Some refactoring of the OCM tables (protocols and access methods) -
    Corresponding SQL driver for access has been implemented using GORM - Tests with basic
    coverage have been implemented.

  #5381

Changelog for reva 3.3.3 (2025-11-07)

The following sections list the changes in reva 3.3.3 relevant to
reva users. The changes are ordered by importance.

Summary

• Fix #5393: Correct content-length when downloading versions
• Fix #5380: Nilpointer in getPermissionsByCs3Reference
• Fix #5388: Error code not checked correctly in eosclient
• Fix #5392: Fixed permissions for upload-only links
• Enh #5394: Fixed some logging going to stderr

Details

• Bugfix #5393: Correct content-length when downloading versions

  This fix corrects a bug introduced with the implementation of range requests, in
  #5367, where the content-length header was not
  populated correctly when downloading versions of a file, resulting in 0b.

  #5393

• Bugfix #5380: Nilpointer in getPermissionsByCs3Reference

  Fix for potential nilpointer: when an err is returned, the status can be nil

  #5380

• Bugfix #5388: Error code not checked correctly in eosclient

  Eosclient was returning an error when it actually succeeded

  #5388

• Bugfix #5392: Fixed permissions for upload-only links

  Pending a proper refactoring of the permissions model, this PR fixes the bug unveiled after
  merging #5364. Cf. also Jira CERNBOX-4127.

  #5392

• Enhancement #5394: Fixed some logging going to stderr

  #5394

Changelog for reva 3.3.1 (2025-10-21)

The following sections list the changes in reva 3.3.1 relevant to
reva users. The changes are ordered by importance.

Summary

• Fix #5376: Deny access shares should not be returned in SharedWithMe call
• Fix #5375: Fix parsing of OCM Address in case of more than one "@" present

Details

• Bugfix #5376: Deny access shares should not be returned in SharedWithMe call

  • SharedWithMe no longer returns deny access shares

  #5376

• Bugfix #5375: Fix parsing of OCM Address in case of more than one "@" present

  I've fixed the behavior for parsing a long-standing annoyance for users who had OCM Address
  like "mahdi-baghbani@it-department@azadehafzar.io".

  #5375

Changelog for reva 3.3.1 (2025-10-21)

The following sections list the changes in reva 3.3.1 relevant to
reva users. The changes are ordered by importance.

Summary

• Fix #5376: Deny access shares should not be returned in SharedWithMe call
• Fix #5375: Fix parsing of OCM Address in case of more than one "@" present

Details

• Bugfix #5376: Deny access shares should not be returned in SharedWithMe call

  • SharedWithMe no longer returns deny access shares

  #5376

• Bugfix #5375: Fix parsing of OCM Address in case of more than one "@" present

  I've fixed the behavior for parsing a long-standing annoyance for users who had OCM Address
  like "mahdi-baghbani@it-department@azadehafzar.io".

  #5375

What's Changed

• Remove trash and versions from OCS role by @jessegeens in #5364
• spaces: skip spaces not available by @labkode in #5365
• Fix OCM legacy access by @glpatcern in #5338
• Proper support of Range requests by @jessegeens in #5367
• fix: bring back support for 'Deny access' by @glpatcern in #5366
• [Build-deps]: Bump github.com/ceph/go-ceph from 0.35.0 to 0.36.0 by @dependabot[bot] in #5371

Full Changelog: v3.2.2...v3.3.0

What's Changed

• Fix nilpointers seen in production by @jessegeens in #5348
• OCM: Bugfix when searching for federated users by @rawe0 in #5350
• Rewrite handling of listing spaces with an ID filter by @jessegeens in #5349
• OCM: Rollback share creation if remote request fails by @rawe0 in #5351
• remove filepath.Join for constructing URLs by @jessegeens in #5361

Full Changelog: v3.2.0...v3.2.1

What's Changed

• eos: fixed use of "app" tag by @glpatcern in #5130
• Make COPY work in public links in spaces by @jessegeens in #5284
• No home creation for machine auth by @jessegeens in #5288
• Fix nilpointers in spaces shares by @jessegeens in #5290
• Better logging in GraphAPI by @jessegeens in #5289
• add support for public spaces to spacesregistry by @jessegeens in #5283
• Implement patchMe to allow users to update language preferences by @jessegeens in #5292
• add support for filtering users on type by @jessegeens in #5291
• feat: new rules for public links in graphAPI by @rodcoffani in #5287
• Make preferences work for LW accounts by @jessegeens in #5293
• Ignore errors on decorating projects by @jessegeens in #5294
• OCM: Fixes to enable OCM sharing in the LibreGraph implementation by @rawe0 in #5286
• cephmount: new hybrid driver to connect to CephFS clusters with go 1.25 by @labkode in #5273
• Specifically use go 1.25.1 by @glpatcern in #5302
• routing: skip missing routes by @labkode in #5314
• Remove codacy coverage check by @jessegeens in #5315
• use GORM to manage preferences database table by @jessegeens in #5317
• OCM: List OCM shares in LibreGraph implementation by @rawe0 in #5316
• Modify SetQuota to consider New Project Level Quotas by @pmedinar01 in #5319
• dynamic router: do not fail if a mount configuration is missing by @glpatcern in #5318
• Migrate share sql driver from cernbox/reva-plugins to cs3org/reva by @jessegeens in #5322
• fix bug where share sql drivers didn't register properly by @jessegeens in #5324
• Show shares to project admins by @jessegeens in #5301
• OCM: Update, Delete and Show OCM Shares in SharedWith View by @rawe0 in #5320
• check status of ListReceivedOCMShares before reading its values by @jessegeens in #5326
• handle OCM disabled in getPermissionsByCs3Reference by @jessegeens in #5328
• Implement endpoint for hiding shares by @jessegeens in #5329
• Make projects manager public, so that it can be used in cernboxcop by @jessegeens in #5332
• Add support for thumbnails in Public spaces by @glpatcern in #5331
• add user filter to OCS listSharesWithOthers by @jessegeens in #5333
• sharedByMe works with deleted accounts by @jessegeens in #5336
• Show public links to project admins by @jessegeens in #5334
• Fix versions and lightweight accounts for EOS 5.3.22 by @jessegeens in #5335
• Fix permission check for MOVE for LW accs by @jessegeens in #5337
• NotifyUploads on dropzones in libregraph by @jessegeens in #5339
• Support requests to /app/new on space root without container ID by @jessegeens in #5340
• Support requests to /app/new on space root without container ID by @jessegeens in #5341
• Fix "ListMyOfficeFiles" feature in spaces by @jessegeens in #5342
• Fix /drives/{space-id} call for home by @jessegeens in #5344
• Fix 502 on /shared{By,With}Me for LW accs when OCM is enabled by @jessegeens in #5345
• Ensure links cannot expire in the past by @jessegeens in #5346
• temp fix to make eosatlas and eosmedia work by @jessegeens in #5347

Full Changelog: v3.1.0...v3.2.0