All Versions
68
Latest Version
Avg Release Cycle
27 days
Latest Release
12 days ago
Changelog History
Page 1
Changelog History
Page 1
-
v3.7.4 Changes
May 28, 2026๐ Fixes
- ๐ Fix: sharing: PROPFIND returns now empty owner element in case of a mapped share as clients try PROPFIND on this not accessable href
- ๐ Fix: WebUI hide copy button in insecure environments
- ๐ Fix: sharing: bday conversion hrefs for vCard filenames ending in v/c/f
๐ Improvements
- ๐ Improve: sharing: PROPFIND returns also privilege "write" in case "write-content" and "write-properties" is permitted
- ๐ Improve: WebUI decode URL in text field for better readability
Extensions
- ๐ป Extension: WebUI dark theme with automatic browser/OS color scheme detection
- ๐ป Add: [web] prefer_browser_login option
-
v3.7.3 Changes
May 14, 2026๐ Fixes
- ๐ Fix: sharing: GET request on single item with bday conversion
- ๐ Fix: sharing: PROPFIND response on single item with bday conversion
- ๐ Fix: sharing: PROPFIND response related to C:supported-calendar-component-set
- ๐ Fix: user/path validation related to 'unicode-letter'
Extensions
- Extension: expose RADICALE:version for authenticated users via PROPFIND
๐ Feature
- Feature: conditional log of request/response header/content by new options *_on_notice_condition
-
v3.7.2 Changes
April 29, 2026๐ Fixes
- ๐ Fix: sharing/csv: quote handling and honor stock encoding
- ๐ Fix: broken storage/mtime granularity detection on vfat
๐ Improvements
- Improve:
path_to_filesystem()by pre-detection of collision-free file system - ๐ Improve: [auth] catch bcrypt>=5.0.0 enforced max password length early and support legacy "passlib" as well as "libpass" (rework 3.6.0, "packaging" not needed anymore)
- ๐ Improve: application will stop on startup if TEMP is provided but not existing or not writable
- ๐ Improve: sharing supports now unicode
- ๐ Improve: WebUI (general and relating to sharing)
Adjustments
- Adjustment: MKCOL/MKCALENDAR return now CONFLICT instead of BADREQUEST of file name collision
- ๐ฒ Adjust: several log levels incl. final result depending on status code
- Adjust: respond with 500 in case principal collection cannot be created (e.g. filesystem issues)
Extensions
- ๐ง Extension: tox with new optional test cases to test with LinuxOS vfat, hfsplus, ntfs filesystems
- Extension: sharing: add ICAL:calendar-order to property overlay whitelist
- Extension: extend hook data with 'actor' to keep original 'user' before mapping a share
๐ New
- ๐ Add: [server] new options validate_user_value/validate_path_value for ability to block unwanted values (autoenable "strict" on non-unicode filesystem)
-
v3.7.1 Changes
April 12, 2026๐ Fixes
- ๐ Fix: share address book collection as birthday calendar not working on non-DEBUG level
- ๐ Fix: sharing/propfind+proppatch: permission check related to properties
- ๐ Fix: sharing/delete: trigger storage hook
- ๐ Fix: hook/email: add support for date-only events
- ๐ Fix: prevent login variable overwrite during failed cache cleanup
- Fix: performance improvement of
path_to_filesystem()in 3.7.0 caused unexpected issue in case of softlinks are used - ๐ Fix: WebUI generic and related to sharing
Adjustments
- Adjustment: replace logging/trace_on_debug by new log level "trace"
- 0๏ธโฃ Adjustment: sharing/token: adjust default permissions to "rp"
Extensions
- Extension: hook/email: in case of mass-email was enabled but only one attendee fall-back to non-mass-email
- Extension: share accept now PATH and USER for matching email addresses as well
-
v3.7.0 Changes
April 05, 2026๐ Feature
๐ Feature: collection sharing by map or token incl. management API and WebUI extension (#1978)
- see for more: (https://github.com/Kozea/Radicale/blob/master/SHARING.md)
- major credits to @maxberger for WebUI extension/rework/cleanup
๐ Feature: share address book collection as birthday calendar (#1463)
- KNOWN ISSUE : not working on non-debug level: #2071
Extension
- Add: [server] delay_on_error option
- Add: [auth] oauth2: allow custom client_id and client_secret (optional)
- โ Add: [logging] limit_content option
- โ Add: [headers] Content-Security-Policy is now set to be strict on new configs
๐ Improvement
- Performance: improve
path_to_filesystem() - ๐ Performance: preload access rights from file
- Improve: [server] max_resource_size is now also checked on storage discover+get to avoid issues with items stored outside using PUT
- Cleanup: WebUI is now split into smaller javascript files
- ๐ Cleanup: WebUI is now fit for strict content security policy
- Cleanup: WebUI: Simplfied Caching and Navigation internally
- Cleanup: WebUI: Unified error handling
- โ Cleanup: Added integration test for verification of end-to-end behavior of WebUI
Cleanup
- ๐ Cleanup: deprecate config option 'ldap_use_ssl' for good
-
v3.6.1 Changes
February 24, 2026๐ง Maintenance
- ๐จ Maintain: Refactor Web UI Javascript into separate files
- Maintain: code preparation for upcoming "sharing" extension and optimizations
๐ Fixes
- ๐ Fix: MOVE failing with URL-encoded destination header
- ๐ Fix: RECURRENCE-ID comparison on all-day events
- ๐ Fix: format_ut problem on 32-bit systems (got lost inbetween since fixed in 3.5.8)
๐ Improvements
- ๐ Improve: add workaround to remove empty lines in item to avoid reject by vobject parser
- ๐ Improve: check/enforce RECURRENCE-ID MUST have the same value type as DTSTART in the recurring component (RFC 5545 3.8.4.4)
-
v3.6.0 Changes
January 10, 2026๐ Change
- ๐ Change: dependency PyPI/passlib (stale since 2020) replaced with PyPI/libpass >= 1.9.3
Extensions
- Extend: logwatch script
- Extend: [logging] bad_put_request_content: log checksum and hexdump of request on debug level
- Extend: [logging] request_content_on_debug: log checksum of request on debug level
- ๐ป Extend: add command line option "--verify-item " for dedicated item file analysis
- ๐ Extend: PROPFIND response for VADDRESSBOOK with "CR:supported-address-data" and "CS:getctag"
- Extend: conditionally announce vCard 4.0 in case vobject version is >= 1.0.0
- Extend: add a check whether bcrypt version is compatible with passlib(libpass) version (requires "packaging")
๐ Fixes
- ๐ Fix: hook for server-side e-mail notification
๐ Improvements
- ๐ Improve: autodetection of hashes in htpasswd (SHA256/SHA512 "rounds" are now supported)
-
v3.5.10 Changes
December 18, 2025Extensions
- โ Add: [logging] option to log response header on debug loglevel
- โ Add: logging of broken contact items during PUT
- Add: [server] max_resource_size option
- Add: support PROPFIND/max-resource-size by max_resource_size (capped to 80% of max_content_length)
- ๐ Extend: [auth] imap: add fallback support for LOGIN towards remote IMAP server (replaced in 3.5.0)
- ๐ฒ Extend: [logging] with profiling log per reqest or regular per request method
๐ (see also https://github.com/Kozea/Radicale/wiki/Performance-Tuning) - ๐ฒ Extend: add selected XML query properties to request result log line for improved timing analysis incl. logwatch support
๐ (see also https://github.com/Kozea/Radicale/wiki/Server-Statistics)
๐ Improvements
- ๐ Improve: logging of broken calendar items during PUT
- ๐ Improve: remove unnecessary open+read for mtime+size cache
๐ Fixes
- Fix: improper detection of HTTP_X_FORWARDED_PORT on MOVE
Adjustments
- ๐ฒ Adjust: [logging] header/content debug log indended by space to be skipped by logwatch
-
v3.5.9 Changes
November 29, 2025Extensions
- Extend: [auth] add support for type http_remote_user
- ๐ Extend: logging of invalid sync-token with user, path, remote host and useragent
๐ Fixes
- ๐ Fix: typo related to collection delete hook (can cause OOM error)
-
v3.5.8 Changes
November 06, 2025Extensions
- Extend [auth]: re-factor & overhaul LDAP authentication, especially for Python's ldap module
๐ Fixes
- ๐ Fix: out-of-range timestamp on 32-bit systems
- ๐ Fix: format_ut problem on 32-bit systems
๐ Features
- ๐ Feature: extend logging with response size in bytes and flag served as plain or gzip
- ๐ Feature: [storage] strict_preconditions: new config option to enforce strict preconditions check on PUT in case item already exists [RFC6352#9.2]
๐ Documentation
- ๐ Doc: Telugu translation