DRACOON Core Service

Version 4.10.0 (2018-09-27)

Security Issue Fixed a possible timing side-channel attack regarding LDAP connections.

Security Issue Fixed an issue in internal handling of errors.

New Feature Refactored all occurences of TripleCrypt technology.

New Feature Introduced support for configurable database connection pooling.

New Feature Deprecated all branding-related API endpoints.

New Feature Set Content-Security-Policy header (incl. predecessors).

New Feature Added support for importing users from OpenID IDP.

New Feature Introduced a Breadcrumb API in the form of GET /nodes/{node_id}/parents.

New Feature Introduced new means of collaboration via comments on nodes.

New Feature Introduced a personal data room for every user.

Improvement Revised documentation of further information in uploads API.

Improvement Deprecated GET /users/{user_id}/rooms and GET /groups/{group_id}/rooms.

Improvement Deprecated "children" attribute in respective API endpoints and models.

Improvement Improved internal handling of DB connections.

Improvement Improved name handling for Upload Shares and Download Shares.

Improvement Deprecated "depth_level" parameter of GET /nodes.

Improvement Recycle Bin and file versioning are now always on for all data rooms.

Improvement Removed contact email from Swagger UI.

Improvement Fixed a performance issue caused by fast directory browsing.

Bugfix Improved caching in connection with SyslogSender and MailSender.

Bugfix Cache is now correctly flushed when branding settings are changed.

Bugfix Fixed an issue that made orphaned data rooms possible.

Bugfix Fixed an issue that made the DRACOON Media Server unusable in connection with OAuth.