3.7.1 Fixes+Adjustments+Extensions

Fixes

• Fix: share address book collection as birthday calendar not working on non-DEBUG level
• Fix: sharing/propfind+proppatch: permission check related to properties
• Fix: sharing/delete: trigger storage hook
• Fix: hook/email: add support for date-only events
• Fix: prevent login variable overwrite during failed cache cleanup
• Fix: performance improvement of path_to_filesystem() in 3.7.0 caused unexpected issue in case of softlinks are used
• Fix: WebUI generic and related to sharing

Adjustments

• Adjustment: replace logging/trace_on_debug by new log level "trace"
• Adjustment: sharing/token: adjust default permissions to "rp"

Extensions

• Extension: hook/email: in case of mass-email was enabled but only one attendee fall-back to non-mass-email
• Extension: share accept now PATH and USER for matching email addresses as well

3.7.0 Major Extension (collection sharing) + Improvements + Extensions

Feature

• Feature: collection sharing by map or token incl. management API and WebUI extension (#1978)
  • see for more: (https://github.com/Kozea/Radicale/blob/master/SHARING.md)
  • major credits to @maxberger for WebUI extension/rework/cleanup
• Feature: share address book collection as birthday calendar (#1463)
  • KNOWN ISSUE: not working on non-debug level: #2071

Extension

• Add: [server] delay_on_error option
• Add: [auth] oauth2: allow custom client_id and client_secret (optional)
• Add: [logging] limit_content option
• Add: [headers] Content-Security-Policy is now set to be strict on new configs

Improvement

• Performance: improve path_to_filesystem()
• Performance: preload access rights from file
• Improve: [server] max_resource_size is now also checked on storage discover+get to avoid issues with items stored outside using PUT
• Improve: hook preparation (check whether enabled, early skip if not VCALENDAR)
• Cleanup: WebUI is now split into smaller javascript files
• Cleanup: WebUI is now fit for strict content security policy
• Cleanup: WebUI: Simplfied Caching and Navigation internally
• Cleanup: WebUI: Unified error handling
• Cleanup: Added integration test for verification of end-to-end behavior of WebUI

Cleanup

• Cleanup: deprecate config option 'ldap_use_ssl' for good

3.6.1 Fixes+Improvements+Maintenance

Maintenance

• Maintain: Refactor Web UI Javascript into separate files
• Maintain: code preparation for upcoming "sharing" extension and optimizations

Fixes

• Fix: MOVE failing with URL-encoded destination header
• Fix: RECURRENCE-ID comparison on all-day events
• Fix: format_ut problem on 32-bit systems (got lost inbetween since fixed in 3.5.8)

Improvements

• Improve: add workaround to remove empty lines in item to avoid reject by vobject parser
• Improve: check/enforce RECURRENCE-ID MUST have the same value type as DTSTART in the recurring component (RFC 5545 3.8.4.4)

3.6.0 Fixes+Extensions+Improvements+Changes

Change

• Change: dependency PyPI/passlib (stale since 2020) replaced with PyPI/libpass >= 1.9.3

Extensions

• Extend: logwatch script
• Extend: [logging] bad_put_request_content: log checksum and hexdump of request on debug level
• Extend: [logging] request_content_on_debug: log checksum of request on debug level
• Extend: add command line option "--verify-item " for dedicated item file analysis
• Extend: PROPFIND response for VADDRESSBOOK with "CR:supported-address-data" and "CS:getctag"
• Extend: conditionally announce vCard 4.0 in case vobject version is >= 1.0.0
• Extend: add a check whether bcrypt version is compatible with passlib(libpass) version (requires "packaging")

Fixes

• Fix: hook for server-side e-mail notification

Improvements

• Improve: autodetection of hashes in htpasswd (SHA256/SHA512 "rounds" are now supported)

3.5.10 Fixes+Extensions+Improvements+Adjustments

Extensions

• Add: [logging] option to log response header on debug loglevel
• Add: logging of broken contact items during PUT
• Add: [server] max_resource_size option
• Add: support PROPFIND/max-resource-size by max_resource_size (capped to 80% of max_content_length)
• Extend: [auth] imap: add fallback support for LOGIN towards remote IMAP server (replaced in 3.5.0)
• Extend: [logging] with profiling log per reqest or regular per request method
  (see also https://github.com/Kozea/Radicale/wiki/Performance-Tuning)
• Extend: add selected XML query properties to request result log line for improved timing analysis incl. logwatch support
  (see also https://github.com/Kozea/Radicale/wiki/Server-Statistics)

Improvements

• Improve: logging of broken calendar items during PUT
• Improve: remove unnecessary open+read for mtime+size cache

Fixes

• Fix: improper detection of HTTP_X_FORWARDED_PORT on MOVE

Adjustments

• Adjust: [logging] header/content debug log indended by space to be skipped by logwatch

3.5.9 Fixes+Extensions

Extensions

• Extend: [auth] add support for type http_remote_user
• Extend: logging of invalid sync-token with user, path, remote host and useragent

Fixes

• Fix: typo related to collection delete hook (can cause OOM error)

3.5.8 Features+Fixes+Extensions

Extensions

• Extend [auth]: re-factor & overhaul LDAP authentication, especially for Python's ldap module

Fixes

• Fix: out-of-range timestamp on 32-bit systems
• Fix: format_ut problem on 32-bit systems

Features

• Feature: extend logging with response size in bytes and flag served as plain or gzip
• Feature: [storage] strict_preconditions: new config option to enforce strict preconditions check on PUT in case item already exists [RFC6352#9.2]

Documentation

• Doc: Telugu translation

3.5.7 for PyPI

3.5.7 for PyPI, extra published because of a glitch in release process did publish too early :-(

3.5.7 Fixes+Extensions+Adjustments

Extensions

• Extend: [auth] dovecot: add support for version >= 2.4

Fixes

• Fix: report/getetag with enabled expand

Adjustments

• Adjust: use of option [auth] ldap_ignore_attribute_create_modify_timestamp for support of Authentik LDAP server

3.5.6 Improvements+Fixes+Features

Fixes:

• Fix: broken start when UID does not exist (potential container startup case)

Improvements:

• Improve: user/group retrievement for running service and directories

Extensions:

• Extend/Improve: [auth] ldap: group membership lookup

Features:

• Add: [auth] remote_ip_source: set the remote IP source for auth algorithms

RPMs for Enterprise Linux and Fedora: https://koji.fedoraproject.org/koji/packageinfo?packageID=16893

EL10 build is only available in "epel10" ("epel10_2") and "epel10.1" ("epel10_1") as "epel10_0" misses build of python3-passlib still (see https://bugzilla.redhat.com/show_bug.cgi?id=2321338)