DRACOON Core Service

Version 4.13.0 (2019-08-07)

New Feature Removed official DRACOON OAuth app "DRACOON SFTP".

New Feature Introduced capability to restrict OAuth access token and refresh token timeouts.

New Feature Increased OAuth access token validity of web clients to 12 h.

New Feature Introduced attributes "createdAt" and "usedAt" to store the creation and last usage dates for OAuth authorizations.

New Feature Ended support for multiple authentication methods per user.

Improvement Improved fallback avatar handling for non-existing users.

Improvement Extended filtering and sorting options of GET /system/config/oauth/clients.

Improvement Introduced logging for provisioning APIs.

Improvement Introduced support for directly setting one's own file key if one is permitted to access the file.

Improvement Password-protected shares are now locked after five false attempts.

Improvement Automatically generated Client IDs of OAuth apps are now in UUID format.

Bugfix Revised response codes of POST /public/shares/downloads/{access_key}.

Bugfix Revised logging for copying nodes while setting a new name.

Bugfix Fixed an issue that made GET /v4/system/config/oauth/clients return 498 instead of 500 results.

Bugfix Corrected documentation for PUT /v4/system/config/auth/radius.

Bugfix Fixed an issue that made a welcome email mistakenly being sent although customer creation failed.

Bugfix Revised precondition for PUT /public/shares/uploads/{access_key}/{upload_id}.

Bugfix Revised permission handling for userUserPublicKeyList in GET /v4/public/shares/uploads/{access_key}.

Bugfix Fixed an issue that led to unexpected errors with status code 409 on POST /nodes/files/keys.

Bugfix Deprecated "userFileKeyList" attribute in upload APIs.

Bugfix Fixed an issue that might lead to file keys for uploads not being set for the creator of an Upload Share.

Bugfix Fixed an issue that made POST /auth/login mistakenly accept "openid" as authType.

Bugfix Fixed an issue that made it possible to exceed the maximum number of uploads of Upload Shares.

Bugfix Revised Syslog messages for creating users and profile attributes.

Bugfix Revised Syslog messages for receiving rescue keys.

Bugfix Revised response codes of POST /nodes/deleted_nodes/actions/restore.

Bugfix Ensured that share links are not available anymore when customer is locked.

Bugfix Fixed an issue that made it possible to create paths with unlimited depth.

Bugfix Fixed an issue that caused users to get locked too early after they had been locked once.

Bugfix "accessedAt" attribute is now correctly set for deleted nodes.

Bugfix Fixed an issue that led to the rename node procedure not being executed correctly under certain circumstances.

Documentation Issue Consistently used "username" (instead of "user name") in documentation.

Documentation Issue Removed old "NEW" annotations without any exact version information.

Documentation Issue Extended documentation for setting file keys.

Documentation Issue Extended documentation for file uploads.

Documentation Issue Corrected documentation for user's key pair error handling.

Documentation Issue Corrected documentation of "RadiusConfig" model.

Documentation Issue Corrected documentation for provisioning error handling.