PowerFolder Server 8 SP2

PowerFolder Server 8 Service Pack 2 Release Notes

Release date: September 2013

Build number: 8.2.44

(info) Client release notes can be found in the client documentation.

 

Important Notes about the PowerFolder Server 8 Service Pack 2 Release

AJP connector port

To support authentication through external sites like Shibboleth IdP portals, we now introduced an Apache JServ Protctol port, which can be enabled by a Server Configuration File setting:

ajp.port=8009

The port is not enabled by default, means if you want to use it, it has to be explicity added and set to the Server Configuration File. Separate documentation about how to use it together with Shibboleth and other external authentication systems will follow soon with the PowerFolder Server 9 release.

Improved startup script

There have been some bugfixes and improvements in the server startup script, therefore we recommend to replace the old PowerFolder-Server.sh file with the new one.

Please note to change the values for SERVER_INSTALL, SERVER_HOME and JAVA_MEM to match the values in the old file or your current environment.

Furthermore the PowerFolder-Server.pid file is now generated in the SERVER_HOME directory, not the SERVER_INSTALL, anymore. If you are using any init or monitoring script referencing the PID file, please adapt those change.

New setting for inviting external users

In the past it was not possible to control if existing users can invite new users, so they get an account on the server, without disabling the invitation function completely, except when using LDAP. Now we introduced a new Server Configuration File setting to disable external user invitations, when using the database only for user authentication:

server.invite.new_users.enabled

The setting is by default set to "true", means it is enabled, to not break existing installations. Therefore in most cases you don't need to change anything. Please also check the Permissions section in the Server Configuration File documentation

 

PowerFolder Server 8 Service Pack 2 Changelog

Improvements

  • AJP protocol support
  • Folder scanning improvements
  • Ha cluster node now shuts down instead of getting slow when running in a OutOfMemoryError situation
  • HA cluster performance improvements
  • Improved multi-hashing and salting of password in the database
  • Improved Shibboleth web login to get authenticated on the IdP portal first
  • Improvements to reduce the risk for config file corruption
  • MSSQL support
  • Option to force TLS encrypted connections to SMTP
  • Option to prevent invitation of users not existing in LDAP
  • Performance optimization while checking user quotas
  • Prevent folder creation if user does not have quota
  • Reduced unnecessary log output in cluster environments
  • Remove folders with no user or group members
  • Removed config parameter which stores removed folders in HA environments
  • Support for third LDAP server
  • Trial activation creates a new trial account automatically if account doesn't yet

Bugfixes

  • Admin is not able to pass owner permission to another user or himself
  • API enhancement to set folder owner as admin
  • Clicking on folders not backed up in the cloud leads to a 404 error
  • Creating a file sharing link on non-existant files shares the whole folder
  • Creating sub-directories or renaming files via web doesn't work properly
  • Database duplicate key errors
  • Duplicate accounts when inviting LDAP user before he logged in
  • Duplicate accounts when using different LDAP logon attributes
  • Files don't get deleted if the archiving process runs into a problem
  • Linux startup script creates a file called 2
  • OutOfMemory exception when running a HA cluster
  • Problems with datepicker and copy to clipboard when sharing via link
  • Remove folder if the folder is hosted on different server node
  • Script execution doesn't read stdout and stderr properly
  • Server startup script doesn't check if PID is actually running
  • Shibboleth users have the option to change their password
  • Transfer logging doesn't work
  • Upload considers storage quota of non-owner members
  • Web request problems in clustered environments
  • XSS security issue on login, activation and register page