Docspell v0.27.0 Release Notes
-
Sep 23, 2021
- ๐ Allow external authentication providers via OpenID Connect. Now you can integrate Docspell into your SSO solution. Using keycloak, for example (or other such tools) users can be maintained elsewhere, like in an LDAP directory. (#489)
- โ Adds two-factor authentication using TOTPs. If you don't want to setup an external authentication provider (which is another tool to maintain), you can use the builtin TOTP support to have two-factor authentication. (#762)
- ๐ Improvements when querying documents (#1040)
- ๐ Changed the underlying code for storing and loading files. This is a preparation to allow different storage backends for files in the future (maybe the filesystem or s3). (#1080)
- The license has changed from GPLv3+ to AGPLv3+ (#1078)
- ๐ Fixes a bug in the "check for updates" task that was added in the last release (#1068)
- โฌ๏ธ Reduces the length of the startup command, which makes tools like
psmuch more readable and allows now to start docspell on Windows (untested, though ;-)) (#1062) - ๐ Fixes merging items, where sent mails were not copied to the target item. (#1055)
- ๐ Fixes and improves deleting users. Now all their data is also removed and it is shown what that would be. (#1060)
Rest API Changes
- The
loginroutes now won't return a session token when 2FA is enabled for an account. The returned token must be used to provide the TOTP in order to finalize login. - โ Added
open/auth/two-factorendpoint to provide the TOTP for login - โ Added
open/auth/openid/{providerId}[/resume]endpoints to initiate authentication via an external provider - โ Added
sec/user/{username}/deleteDatato retrieve a summary of data that would be deleted with that user - โ Added
sec/user/otp/*endpoints to manage the TOTP for an account - โ Added
admin/user/otp/reserOTPto reset the 2FA setup for any user
๐ง Configuration Changes
- ๐ง Restserver: Added a section to configure external authentication provider