1.4.0 (2024-11-17)
- add "creatorEmail" config bariable to share recipient email message (c7dacb2)
- remote arbitrary file overwrite on file upload endpoint (6cf5c66)
1.3.0 (2024-11-14)
- add 'secureCookies' configuration variable to explicitly set the secure flag and prevent confusion (4ce6420)
- add confirm dialog for leaving the page if an upload is in progress (d8084e4)
- improve share completed dialog redirection for reverse shares (4ef7ebb)
- prevent deletion of last admin account (e1a5d19)
- throw error if no disk space is left (c26de4e)
- use current window url instead of app url in frontend (6f45c3b)
1.2.4 (2024-10-24)
- don't enforce password lenght for sign in form because of LDAP (428c1d2)
- use app name as totp issuer (c89ca7e)
1.2.3 (2024-10-23)
- share password can be bypassed if a deleted share with the same id was visited before (acbff6e)
1.2.2 (2024-10-18)
- admin: change general config icon to gear (#649) (958b79d)
- environment variable
API_URL
can't be changed (fe085b5)
1.2.1 (2024-10-15)
- disallow passwort reset if it's a ldap user (2e69224)
- error message for invalid max use count of reverse share (613bae9)
- oauth: add
post_logout_redirect_uri
to OAuth logout redirect URI (#638) (bfbe8de) - share can't be created if an invalid email is entered in mail recipients (d5cd300)
- trim username, email and password on sign in and sign up page (77a092a)
1.2.0 (2024-10-14)
- oauth: add ability to limit user IDs for Discord authentication (#621) (5883dff)
- oauth: Add option to logout from OpenID Connect provider (2b3ce3f), closes #598
- use unique port env variable for backend (d6b8b56)
1.1.3 (2024-09-27)
- omit invalid username characters in oidc registration (adc4af9)
1.1.2 (2024-09-24)
- disable auto complete for email recipients and share password (ee73293)
- enable secure cookies if app url starts with https (69752b8)
1.1.1 (2024-09-18)
- add environment variable to trust the reverse proxy (b13a81a)
- disable email login if ldap is enabled (d9cfe69)
1.1.0 (2024-09-14)
1.0.4 (2024-09-06)
- oauth2 login can fail in some cases because the user can't be found (92e1e82)
1.0.3 (2024-09-03)
- improve oidc error logging (dee7098)
1.0.2 (2024-08-28)
- default logo not displayed on fresh installations (3e0735c)
1.0.1 (2024-08-25)
- translations: add missing string for ldap group (64efac5)
1.0.0 (2024-08-25)
- get started button on home page not working when sign-up is disabled (4924f76)
- internal server error if user has no password when trying to sign in (9c381a2)
0.29.0 (2024-07-30)
- add more options to reverse shares (#495) (fe735f9), closes #155
- sort share files by name by default (27ee9fb)
- Revert "fix: set max age of access token cookie to 15 minutes" (14c2185)
0.28.0 (2024-07-22)
- store only 10 share tokens in the cookies and clear the expired ones (e5a0c64)
0.27.0 (2024-07-11)
- add logs for successful registration, successful login and failed login (d2bfb9a)
- auth: Allow to hide username / password login form when OAuth is enabled (#518) (e1a68f7), closes #489
- smtp: allow unauthorized mail server certificates (#525) (083d82c)
0.26.0 (2024-07-03)
- oauth: provider username is ignored when signing up using OAuth (#511) (31366d9), closes #505
- set max age of access token cookie to 15 minutes (2dac385)
0.25.0 (2024-06-10)
- add auto open share modal config for global. (#474) (4fd2903)
- frontend: locale for dates and tooltip for copy link button (#492) (1c7832a)
- share size not displayed on my shares page (c0cc16f)
0.24.2 (2024-05-22)
- admin couldn't delete shares created by anonymous users (7afda85)
- whitespace in title on homepage (74cd520)
0.24.1 (2024-05-04)
- error on admin share management page if a share was created by an anonymous user (c999df1)
0.24.0 (2024-05-04)
- add admin-exclusive share-management page (#461) (3b1c9f1)
- add name property to share (#462) (b717663)
0.23.1 (2024-04-05)
- backend: crash on unhandled promise rejections (1da4fee)
- changing the chunk size needed an app restart (24e100b)
- disable js execution on raw file view (9d1a12b)
- incorrect layout on 404 page (3c5e0ad)
- normal shares were added to the previous reverse share (3972589)
- redirect vulnerability on error, sign in and totp page (384fd19)
0.23.0 (2024-04-04)
- add config variable to adjust chunk size (0bfbaea)
- delete share files if user gets deleted (e71f6cd)
- error in logs if "allow unauthenticated shares" is enabled (c6d8188)
- memory leak while uploading files by disabling base64 encoding of chunks (7a15fbb)
0.22.2 (2024-02-29)
- extend access token cookie expiration (013b988)
- reduce refresh access token calls (1aa3d8e)
- replace Nginx with Caddy to fix "premature close" error while downloading larger files (43bff91)
0.22.1 (2024-02-18)
- back links on error modals (f52dffd)
- prevent zoom on input field click on mobile (9c734ec)
- replace middleware backend url with local backend url (76df6f6)
- user
id
andtotpVerified
can't be changed by user (e663da4) - user enumaration on forgot password page (64515d7)
0.22.0 (2024-02-04)
- translations: typo in string (c189cd9)
0.21.5 (2024-01-14)
- password can be changed with wrong password (0ccb836)
0.21.4 (2024-01-09)
0.21.3 (2024-01-02)
- don't show validation error on upload modal if password or max views are empty (fe09d0e)
0.21.2 (2023-12-29)
- missing logo images on fresh installation (6fb31ab)
- missing translations on reset password page (7a301b4)
0.21.1 (2023-12-20)
0.21.0 (2023-12-01)
0.20.3 (2023-11-17)
- max expiration gets ignored if expiration is set to "never" (330eef5)
0.20.2 (2023-11-11)
- oauth: github and discord login error (#323) (fd44f42), closes #322 #302
- reverse shares couldn't be created unauthenticated (966ce26)
0.20.1 (2023-11-05)
- share information text color in light mode (1138cd0)
0.20.0 (2023-11-04)
0.19.2 (2023-11-03)
- ability to limit the max expiration of a share (bbfc9d6)
- change totp issuer to display logo in 2FAS app (e0fbbec)
- jwt secret changes on application restart (33742a0)
- wrong validation of setting max share expiration to
0
(acc35f4)
0.19.1 (2023-10-22)
0.19.0 (2023-10-22)
- delete unfinished shares after a day (d327bc3)
0.18.2 (2023-10-09)
- disable image optimizations for logo to prevent caching issues with custom logos (3891900)
- memory leak while downloading large files (97e7d71)
0.18.1 (2023-09-22)
- permission changes of docker container brakes existing installations (6a4108e)
0.18.0 (2023-09-21)
- show upload modal on file drop (13e7a30)
- docker: Updated to newest version of alpine linux and fixed missing dependencies (#255) (6fa7af7)
- nextjs proxy warning (e9efbc1)
0.17.5 (2023-09-03)
0.17.4 (2023-08-01)
- redirection to
localhost:3000
(ea0d521)
0.17.3 (2023-07-31)
- logo doesn't get loaded correctly (9ba2b4c)
- share expiration never doesn't work if using another language than English (a47d080)
0.17.2 (2023-07-31)
ECONNREFUSED
with Docker ipv6 enabled (c9a2a46)
0.17.1 (2023-07-30)
- rename pt-PT.ts to pt-BR.ts (2584bb0)
0.17.0 (2023-07-23)
- ability to define zip compression level (7827b68)
- add note to language picker (7f0c31c)
- add share url alias
/s
(231a2e9) - localization (#196) (b9f6e3b)
- update default value of
maxSize
from1073741824
to1000000000
(389dc87)
- confusion between GB and GiB (5816b39)
- mistakes in English translations (70b425b)
- wrong layout if button text is too long in modals (f4c88ae)
0.16.1 (2023-07-10)
- Adding reverse share ability to copy the link (#191) (7574eb3), closes #178 #181
- Adding reverse shares' shares a clickable link (#190) (0276294)
0.16.0 (2023-07-09)
- Adding more informations on My Shares page (table and modal) (#174) (1466240)
- Adding the possibility of copying the link by clicking text and icons (#171) (348852c)
0.15.0 (2023-05-09)
- add env variables for port, database url and data dir (98c0de7)
- add healthcheck endpoint (5132d17)
- allow to configure clamav with environment variables (1df5c71)
- configure ports, db url and api url with env variables (e5071cb)
0.14.1 (2023-04-07)
- boolean config variables can't be set to false (39a7451)
0.14.0 (2023-04-01)
- bool config variable can't be changed (0e5c673)
0.13.1 (2023-03-14)
- empty file can't be uploaded in chrome (9f2097e)
0.13.0 (2023-03-14)
- replace "pingvin share" with dynamic app name (f55aa80)
- set password manually input not shown (8ff417a)
- show line breaks in txt preview (37e765d)
- upload file if it is 0 bytes (f82099f)
0.12.1 (2023-03-11)
- 48px icon does not update (753dbe8)
0.12.0 (2023-03-10)
- ability to change logo in frontend (8403d7e)
0.11.1 (2023-03-05)
- old config variable prevents to create a share (8b77e81)
0.11.0 (2023-03-04)
- frontend error when user deleted (0317f3a)
0.10.2 (2023-02-13)
- pdf preview tries to render on server (c3af0fe)
0.10.1 (2023-02-12)
- non administrator user redirection error while setup isn't finished (dc8cf3d)
- setup wizard doesn't redirect after completion (7cd9dff)
0.10.0 (2023-02-10)
- reset password with email
- allow multiple shares with one reverse share link (ccdf8ea)
- frontend: server side rendering to improve performance (38de022)
- reset password with email (5d1a7f0)
- delete all shares of reverse share (86a7379)
- invalid redirection after jwt expiry (82f204e)
- setup status doesn't change (064ef38)
- share creation without reverseShareToken (b966270)
- share fails if a share was created with a reverse share link recently (edc10b7)
0.9.0 (2023-01-31)
- improve send test email UX (233c26e)
0.8.0 (2023-01-26)
- Add meta tags to new pages (bb64f6c)
- admin users were created while the setup wizard wasn't finished (ad92cfc)
0.7.0 (2023-01-13)
- add ClamAV to scan for malicious files (76088cc)
- invalid github release link on admin page (349bf47)
0.6.1 (2023-01-11)
- delete all sessions if password was changed (02e41e2)
0.6.0 (2023-01-09)
- access token refreshes even it is still valid (c8ad222)
- error message typo (72c8081)
- migration for v0.5.1 (f2d4895)
- refresh token expires after 1 day instead of 3 months (a5bef5d)
0.5.1 (2023-01-04)
- show version and show button if new release is available on admin page (71658ad)
- use cookies for authentication (faea1ab)
- email configuration updated without restart (1117465)
0.5.0 (2022-12-30)
- custom mail subject (cabaee5)
- improve config UI (#69) (5bc4f90)
- manually switch color scheme (ef21bac)
- refresh token gets deleted on session end (e5b50f8)
0.4.0 (2022-12-21)
0.3.6 (2022-12-13)
- add description field to share (8728fa5)
0.3.5 (2022-12-11)
- upload 3 files at same time (d010a8a)
- jobs never get executed (05cbb7b)
- only create zip if more than one file is in the share (3d1d4d0)
- remove unnecessary port expose (084e911)
- setup wizard table doesn't take full width (9798e26)
- use node slim to fix arm builds (797f893)
- zip doesn't contain file extension (5b01108)
0.3.4 (2022-12-10)
- show alternative to copy button if site is not using https (7e877ce)
- sign up page available when registration is disabled (c8a4521)
- tables on mobile (b1bfb09)
0.3.3 (2022-12-08)
- add support for different email and user (888a0c5)
- allow empty strings in config variable (b8172ef)
- improve admin dashboard color and layout (a545c44)
- obscure critical config variables (bfb0d15)
- obscured text length (cbe37c6)
- space character in email (907e56a)
0.3.2 (2022-12-07)
- make share password optional (57cb683)
- unauthenticated dialog not shown (4a016ed)
- use session storage for share token (5ea63fb)
0.3.1 (2022-12-05)
- dropzone rejection on chrome (75f57a4)
0.3.0 (2022-12-05)
- add add new config strategy to frontend (493705e)
- add administrator guard (13f98cc)
- add job that deleted temporary files (b649d8b)
- add new config strategy to backend (1b5e53f)
- add setup wizard (b579b8f)
- add user management (7a3967f)
- add user operations to backend (31b3f6c)
- convert async function to sync function (1dbfe0b)
- database migration by adding a username (e9526fc)
- docker build (e958a83)
- share password validation (c795b98)
- unable to update user privileges (d4a0f1a)
0.2.0 (2022-11-13)
- add email recepients functionality (32ad43a)
- add public userDTO to prevent confusion (0efd2d8)
- email sending when not signed in (32eaee4)
- hide and disallow email recipients if disabled (34db3ae)
0.1.1 (2022-10-31)
- add
ALLOW_UNAUTHENTICATED_SHARES
to docker compose file (599d8ca) - only log jobs if they actually did something (e40cc0f)
- share finishes before all files are uploaded (99de4e5)
0.1.0 (2022-10-29)
- add rate limiting (712cfe6)
- allow unauthenticated uploads (84d29df)
- frontend: remove footer (c52a4d5)
- infinite loading when file size is small (c2ddce6)
- only show not signed in warning if not signed in (c6e1f07)
- opt out of static site generation to enable
publicRuntimeConfig
(239b18c) - visitor count doesn't get incremented (c8021a4)
0.0.1 (2022-10-17)
- add
linux/arm/v7
arch for docker image (d9e5c28) - add progress indicator for uploading files (8c84d50)
- Added "never" expiration date (56349c6)
- automatically detect hour format (4e3f6be)
- extract logo to component (58efc48)
- improve share security (6358ac3)
- put db and uploads in same folder (80cdcda)
- remove appwrite and add nextjs backend (4bab33a)
- remove postgres & use a single docker container (388ac39)
- replace tooltip with toast (a33b5b3)
- use system color theme (d902aae)
- account dropdown on mobile (caed1f4)
- action docker file path (e818a29)
- actions syntax error (ce6568d)
- add error handling for uploading (e2b3e6a)
- add rule to check if user is owner of share (2c47b2a)
- delete files when deleting share manually (ffd538f)
- delete share if user deleted (b57092c)
- dto returns (02beb66)
- error when refresh token is expired (0823d28)
- file names with special characters (bfbf3d8)
- get theme on inital load (a40c2de)
- improve failed upload error handling (1259922)
- my shares doesn't make an api request (247ce92)
- refresh token on visit after 15 minutes (d153f20)
- remove build target linux/arm/v7 as prisma doesn't support it (c16cbb3)
- remove filetype from file list (68ce8af)
- remove unused env variable (cc17e7e)
- security accerdion (8c2c930)
- share not found if unauthenticated (aa5b125)
- space in actions (dcd39ee)
- spacing issues (43519d9)
- system test github action (a2c9755)
- upload volume path (7522221)
- wrong environment configuration for
ALLOW_REGISTRATION
(759db40)