Skip to content

CHANGELOG.md

Latest commit

 

History

History
717 lines (430 loc) · 46 KB

CHANGELOG.md

File metadata and controls

717 lines (430 loc) · 46 KB

Changelog

1.16.11 (2026-04-22)

Bug Fixes

  • honor redirect_url from /auth/logout for RP-initiated OIDC logout (0ff3d32)
  • route all local-fallback logout paths through single helper (6da4190)
  • useCallback for checkAuthStatus + extract logout redirect helper (799d32d)

1.16.10 (2026-04-22)

Bug Fixes

1.16.9 (2026-04-22)

Bug Fixes

  • async scrypt + VALID_PERMISSIONS constant in apiKeyUtils (405a0aa)
  • Auth Doc and Swagger Updates (922cbdf)
  • clone now for oneYearFromNow to avoid date-boundary drift (0c791bd)
  • derive API key encryption key via scrypt (2b71267)
  • documentation (bf10031)
  • loop-based generateApiKey + JSDoc Promise return types (c1d3725)
  • mark hashApiKey and validateApiKey as async (f1088e4)
  • more minor spelling and swagger changes (637e3b2)
  • repair broken temp API key auth + DRY encryption helpers (ee82cb6)
  • validate decryptFullKey input shape + simplify generateApiKey (69dcade)
  • validate expiration dates against Invalid Date inputs (8368b53)
  • validate jwt_secret in deriveEncryptionKey (6655c22)
  • various code quality reliability issues and swagger issues (c7f3f65)
  • vulnerability and AI quality assessments (d9dbb72)
  • wrap encryptFullKey and decryptFullKey crypto ops in try/catch (41120b9)

Documentation

  • add JSDoc to validatePermissions, validateExpirationDate, isApiKeyExpired (1991583)
  • explain why apiKeyUtils skips some input validation (9326a3a)

1.16.8 (2026-04-22)

Bug Fixes

1.16.7 (2026-04-22)

Bug Fixes

1.16.6 (2025-12-28)

Bug Fixes

1.16.5 (2025-10-06)

Bug Fixes

1.16.4 (2025-10-06)

Bug Fixes

  • backchannel logout verification via jose since openid-client won't support this, using sub and side configurable (bc5ee0d)

1.16.3 (2025-10-06)

Bug Fixes

  • backchannel logout verification via jose since openid-client won't support this, including sub in jwt token generation for revocation to work, use the sub from the token id (309821b)

1.16.2 (2025-10-05)

Bug Fixes

  • backchannel logout verification via jose since openid-client won't support this, including sub in jwt token generation for revocation to work (1106624)

1.16.1 (2025-10-05)

Bug Fixes

  • backchannel logout verification via jose since openid-client won't support this (579019d)

1.16.0 (2025-10-05)

Features

1.15.1 (2025-10-03)

Bug Fixes

  • guest user -- restricted access/ base tag (6b233d7)

1.15.0 (2025-10-03)

Features

  • guest user -- restricted access (495e6b8)

Bug Fixes

1.14.7 (2025-10-03)

Bug Fixes

1.14.6 (2025-10-03)

Bug Fixes

1.14.5 (2025-10-01)

Bug Fixes

1.14.4 (2025-10-01)

Bug Fixes

1.14.3 (2025-10-01)

Bug Fixes

1.14.2 (2025-10-01)

Bug Fixes

1.14.1 (2025-10-01)

Bug Fixes

1.14.0 (2025-10-01)

Features

Bug Fixes

  • add CSRF protection and path validation for folder creation (5c0924b)
  • Adjust table column widths, fix search functionality, and implement dynamic profile dropdown (daaafb2)
  • author (c5f1485)
  • author (b842b09)
  • author (1d990c4)
  • Complete remaining changes from Vite frontend refactor session (aa6c709)
  • Complete SSE performance optimization and UI improvements (0632c5c)
  • Complete SSE routing and custom index.html integration (cd7ddbc)
  • Complete swagger-ui-react migration with linting fixes (2fd94ac)
  • Complete UI improvements and API routing fixes (ba67690)
  • Correct checkbox column width and implement landing page functionality (d990233)
  • dev dependecy security prompts (504516e)
  • dev dependecy security prompts (0767149)
  • dev dependecy security prompts (ef43447)
  • dev dependecy security prompts (d915912)
  • dev dependecy security prompts (b574a59)
  • Display table headers in empty folders and serve index.html content (e79c4eb)
  • Enhance ApiKeysPage with modal improvements and server-side feature parity (cd50b21)
  • file manager table when no contents and fix api keys table when no contents (e5e9a2a)
  • Final column width adjustments for API keys table (963e495)
  • Fix SSE endpoint compression middleware and routing for real-time updates (9e640e2)
  • formatting (3a7ab0e)
  • Handle root directory access in isAllowedDirectory function (17bc6e7)
  • linting (435af5a)
  • linting (831331d)
  • linting (8f369ef)
  • linting (318c4a7)
  • linting (e6104c7)
  • linting (518ccdb)
  • linting (75e95c7)
  • linting (5ea458c)
  • linting (1945a4f)
  • linting (601db7f)
  • linting (97fb689)
  • linting, licensing and security auditing, documentation and pwa and translations, fix api docs (4447b33)
  • Make no-unused-vars ESLint rule more strict and set as error (0fd5761)
  • Remove all artificial delays from database operations and fix accessibility issues (3e1ab24)
  • Remove artificial delays from SSE pipeline for real-time updates (ffc4ce9)
  • Remove card borders, set Armor icon to login_primary_color, and verify search functionality (96f6c1c)
  • Remove HTML generation from fileServer.js and fix SSE routing (d4a495c)
  • Resolve all linting errors in routes/fileServer.js (dc9c19d)
  • Resolve all remaining linting warnings in frontend components (d1a400a)
  • resolve CodeQL security issues for URL redirects and CORS (b3bbd45)
  • resolve CodeQL security issues for URL redirects and CORS (f2b7ff1)
  • resolve CodeQL security vulnerabilities (type confusion and Helmet misconfiguration) (4cbc481)
  • Resolve CodeQL security vulnerabilities (type confusion and Helmet misconfiguration) (00628a8)
  • Resolve infinite redirect loop and restore dual logout functionality (75edc43)
  • Resolve linting errors in ApiKeysPage and Header components (c457618)
  • Resolve Swagger API docs static asset path conflicts (dedcccb)
  • Restore custom index.html functionality by removing problematic routing condition (a2916e2)
  • Restore SSE real-time updates while preserving custom index.html functionality (ae85c76)
  • sanitize XSS vulnerability and remove sensitive data from logs (cf5f180)
  • stricter linting (02ca122)
  • swagger documentation (567a0dd)
  • swagger documentation and prepare for testing (f7c4e20)
  • Update API endpoints to use correct backend routing structure (8311377)
  • Update breadcrumb navigation for ?view=index parameter (53a28a7)
  • Update bulk delete button to show only icon and count, adjust column widths (56c865b)
  • Update login page UI styling to match design requirements (6311502)
  • Update ProtectedFileRoute component (663ce0f)
  • vite frontend -- introduction fix references to static (b40a892)
  • vite frontend -- introduction fix references to static (eb9f1f5)
  • vite frontend -- introduction fix references to static (bc31cfe)
  • vite frontend -- introduction fix references to static (a68f1fa)
  • vite frontend -- introduction fix references to static - prettier (9288ed7)

1.13.3 (2025-09-27)

Bug Fixes

  • route database operations to databaseLogger and HTTP requests to accessLogger (78fd182)

1.13.2 (2025-09-27)

Bug Fixes

  • remove 1000ms batch delay from database operations for immediate file processing (1048ae7)

1.13.1 (2025-09-27)

Bug Fixes

  • remove setTimeout delays from file watcher while keeping awaitWriteFinish (2426e07)

1.13.0 (2025-09-27)

Features

  • implement corrected file watcher and checksum architecture (b62af95)

1.12.0 (2025-09-26)

Features

  • separate file detection and checksum processing into independent processes (538b703)

1.11.0 (2025-09-26)

Features

  • implement worker threads for checksum calculation and fix chokidar unlink detection (b8109eb)

Bug Fixes

  • add retry mechanism for files stuck in error status (8a7b2fb)
  • replace __filename with import.meta.url for ES module compatibility in worker threads (9948834)

1.10.1 (2025-09-26)

Bug Fixes

  • move checksum calculation outside database transactions to resolve SQLITE_BUSY errors (8334e85)

1.10.0 (2025-09-26)

Features

  • implement database operation batching to fix SQLite locking issues (0f4cf80)
  • implement database operation batching to fix SQLite locking issues (c5ca5d6)

Bug Fixes

  • complete SSE implementation for real-time file events (6ce622a)
  • resolve checksum update text matching issue in SSE implementation (b0be103)

1.9.0 (2025-09-26)

Features

  • add debug logging to unlinkDir handler and fix all dynamic imports (f14db60)
  • add more targeted debug logging to isolate SSE execution issue (51363a3)
  • add SSE notifications to unlinkDir handler and fix dynamic imports (ff70f6c)
  • add SSE notifications to unlinkDir handler for real-time UI updates (7e42bd5)
  • add unlinkDir event handler for directory move cleanup (d3c6310)
  • add unlinkDir event handler for directory move cleanup (39f502d)

Bug Fixes

  • resolve lint formatting errors in fileWatcher.js (edb593e)
  • resolve lint formatting errors in fileWatcher.js (e0b4e59)

1.8.1 (2025-09-25)

Bug Fixes

  • add proper top spacing to API Keys page header and buttons (3da8fbd)
  • ensure consistent table sizing and form input styling across pages (a055bee)
  • remove mt-4 class to match directory listing container structure (cd0c216)
  • styling consistency fixes for API Keys and directory listing pages (50e999b)

1.8.0 (2025-09-25)

Features

  • add local-only logout endpoints for dashboard flexibility (92b6612)
  • add logout buttons to UI dropdown for both RP-initiated and local logout options (5138935)

1.7.1 (2025-09-25)

Bug Fixes

  • resolve routing conflict causing search failure from root directory (52d0853)

1.7.0 (2025-09-25)

Features

  • add basic authentication hiding functionality (144adff)
  • add OIDC hiding configuration to production config template (835c9ce)
  • add size sorting functionality to file server table (e8e9a8d)
  • implement OIDC provider hiding functionality (a3d2476)

Bug Fixes

  • prevent table sorting redirect to landing page when show_root_index is false (b6f0f96)
  • resolve routing conflict causing JSON parse error in root folder creation (bbae83b)

1.6.0 (2025-09-25)

Features

  • add uniform header to Swagger API documentation page (49939a3)
  • add upload section toggle and improve API Keys page UI (08d8063)
  • add upload section toggle and improve API Keys page UI (eb8e3d9)

Bug Fixes

  • change upload toggle button to blue and match search input styling (5f968e7)

1.5.0 (2025-09-25)

Features

  • add robots.txt to allow major search engines and block unwanted crawlers (1753ac9)
  • add weekly compression for archived log files (86cce8f)
  • add weekly compression for archived log files (744322c)

Bug Fixes

  • route OIDC authentication logs to auth.log instead of app.log (ef16486)
  • route OIDC authentication logs to auth.log instead of app.log (37dbd0c)

1.4.1 (2025-09-25)

Bug Fixes

  • Merge pull request #38 from STARTcloud/devin/1727265680-docs-cleanup-oidc-logout (e2663d8)

Documentation

  • remove unused post_logout_redirect_uris config and add comprehensive OIDC logout documentation (e2663d8)
  • remove unused post_logout_redirect_uris config and add comprehensive OIDC logout documentation (5a6671f)

1.4.0 (2025-09-25)

Features

  • add RP-initiated logout support for OIDC providers (d4ec7dd)
  • implement RP-initiated logout support for OIDC configurations (bf996ef)

Bug Fixes

  • correct buildEndSessionUrl API usage for openid-client v6.8.0 (3705722)
  • resolve linting issues in logout error handling (2dde50f)

1.3.2 (2025-09-25)

Documentation

  • add PostgreSQL and MySQL database configuration examples (06173d2)

1.3.1 (2025-09-25)

Bug Fixes

  • adding mysql and postgres for sequelize (d84ee02)

1.3.0 (2025-09-25)

Features

  • implement comprehensive database optimizations and fix checksum transaction bug (ea02912)

Bug Fixes

  • correct logging to show actual affected rows instead of undefined (94da725)
  • resolve checksum transaction error by moving getDatabase import to top of file (182a26a)
  • resolve undefined rows logging issue in checksum processing (cc638ba)
  • use array destructuring for linting compliance (916b9f7)

1.2.0 (2025-09-25)

Features

  • optimize database transactions for checksum processing (89e9398)

1.1.2 (2025-09-25)

Bug Fixes

  • preserve checksum status in cacheItemInfoWithStats to prevent unnecessary recalculation on restart (a0e9a6c)

1.1.1 (2025-09-25)

Bug Fixes

  • allow JSON API access to root directory when show_root_index is false (9374a0e)
  • allow JSON API access to root directory when show_root_index is false (2b6d47f)

1.1.0 (2025-09-25)

Features

  • add development configuration support (c1816a0)

Bug Fixes

  • eliminate await-in-loop linting warning in auth middleware (3b52009)
  • optimize API key authentication to fix N+1 query problem (5b4a03f)
  • resolve prettier formatting error in app.js (4e95cec)
  • set up user context in authenticateApiKeyAccess for basic auth (abb5201)

1.0.15 (2025-09-25)

Bug Fixes

1.0.14 (2025-09-25)

Bug Fixes

1.0.13 (2025-09-25)

Bug Fixes

1.0.12 (2025-09-25)

Bug Fixes

1.0.11 (2025-09-25)

Bug Fixes

1.0.10 (2025-09-25)

Bug Fixes

  • landing page and config merging (73acdfa)

1.0.9 (2025-09-25)

Bug Fixes

1.0.8 (2025-09-25)

Bug Fixes

  • adding distinguished names for Domino users without emails (e115383)
  • adding distinguished names for Domino users without emails (eb2d48a)
  • adding distinguished names for Domino users without emails (3ec6295)
  • documentation (b9c16bf)
  • documentation and use system certs (37ac193)
  • linting (8ce4fe2)

1.0.7 (2025-09-24)

Bug Fixes

1.0.6 (2025-09-24)

Bug Fixes

1.0.5 (2025-09-23)

Bug Fixes

1.0.4 (2025-09-23)

Bug Fixes

1.0.3 (2025-09-23)

Bug Fixes

1.0.2 (2025-09-23)

Bug Fixes

1.0.1 (2025-09-23)

Bug Fixes

1.0.0 (2025-09-23)

Bug Fixes