Calibreweb

**!Attention! For this update http-Auth has to be installed !Attention!**

**New features:**
* Epub reader themes stored locally
* Added font size switch to Epub reader
* Allow sending to multiple kindle emails at once
* Update redirect for login/logout in case of anonymous browsing enabled to keep last visible page active
* Log Forwarded for address in accesslog instead of client address for gevent
* Error message for faild tasks is displayed in UI
* Search for custom int and float values within ranges (3109)

**Bug Fixes:**
* Update to make upload of m4a and m4b files work (3102)
* Fixed error during debug logging on upload
* Better error message on failed convert because of running calibre instance (3100)
* Updated pdf.js
* Schedules reconnect is now working even if reconnect route is not available ( 3107)
* Bugfix upload format with language to book without language
* Fix wrong quotes on calibre binary call for windows during embed metada on download/email etc.
* Fix csp Header for reader and google drive (3108)
* Fixed read status search with linked column in advanced search
* Fix back function on simple search
* Fix archiving books from calibre-web side

* Security Fix: Cookies are no longer stored for opds basic authentication and proxy authentication

**!Attention! For this update regex, bleach and python-magic has to be installed !Attention!**

**New features:**

* lubimyczytac metadata fetches now the right tags section
* OPDS catalog now only shows categories which are also visible in the normal User interface
* PRC is added as source for book conversion
* Added option for read status "Any" in Advanced Searching
* Metadata Backup is supported now
* Metadata changes can be applied during downloading and sending books
* Splited library locations are supported
* In all categories a category "No category applied (None) is visible


**Bug Fixes:**
* CB7 metadata extraction working with newer version of py7zr
* douban metadata fetching is working again
* Improved Content Security Policy header
* Improvements for Caliblur! Dark Theme
* It's now possible to reset Kobo sync for other users
* Improved parsing of book content on upload to prevent crashes
* refactored author renaming issue to prevent Oops Database corrupt messages
* Fix on Windows that prevents starting calibre-web
* Ä Ö Ü re now counting as uppercase letters for Passwords
* Fix for Text reader to handle invalid mulitbyte sequence (mainly for CJK-Languaes)
* Fix for _internal folder showing up using windows installer version


* Security fix: File upload mimetype is checked to prevent malicious file content in the books library
* Security fix: Cross-site scripting (XSS) stored in comments section is prevented better (switching from lxml to bleach for sanitizing strings)

**New features:**

* cb7 files are now supported for metadata extrcation of comicfiles (but not for comicreader)
* Updated lubimyczytac metadata provider
* Cover size is adapted to requested size from kobo
* Added option "-o" to define logfile via command line
* Added "/opds/stats" route to generate a widget
* Reading position can be saved in comic reader
* Several dependencies are upgraded to newer versions
* Additional translations: portuguese

**Bug Fixes:**
* Fix for proxying cover images to Kobo store
* Fix for 'NoneType' object has no attribute 'author_sort' while trying to read a book
* Added djv file format as default to djvu reader
* Home button in caliblur is now leading calibre-web home instead of "/"
* Bugfix for logfile viewer behind proxy located in a folder
* Bug
* Fixes for special cases during parsing of pdf metadata during upload
* Fixes to work with new version of comicapi
* Fix for upper- lowercase change of non ascii values in series, tags, ...
* Fix for search request fails with error after browser session closed
* Remove autocomplete on several elements in edi book section to make typeahead work without problems
* Bugfix rename author in book list
* Fix creating shelves on mobile device with caliblur theme
* Fix visibility for sending to reader without download permissions
* Handle invalid or missing or invalid container.xml in epub files during kobo sync
* Fixes Uploading pdf file fails with whitespace title
* Fix for Kobo UserKey in request missing due to no kobo account
* Fix for showing last book of series in grid view
* Bugfix for showing series containing only one book in list view having this book no series_index value set
* Added additional debug output for download links during kobo sync


* Security fix: SMTP server credentials are no longer returned to client
* Security fix: Cross-site scripting (XSS) stored in href bypasses filter using data wrapper no longer possible
* Security fix: Cross-site scripting (XSS) is no longer possible via pathchooser
* Security fix: Error Handling at non existent rating, language, and user downloaded books was fixed

**!Attention! For this update flask-limiter has to be installed !Attention!**
------------------

**New features:**

* Updated pdf reader
* Improvements for Caliblur Theme
* series type custom column are enable
* Allow schedules backup of metadata (metadata.opf files)
* Make drive letters available in file picker for windows
* Show additional book info one mp3 listening page
* Detect and respect google site verification environment variable
* Added "databazeknih" to supported identifier links
* Improved parsing of pdf files for metadata extraction
* Enabled additional reverse proxy authentication for opds feeds
* Show all authors in opds feed
* Comic can now be read in long stripped mode
* pdf files are now loading chunked in reader
* Enable debug output for ldap login
* Additional translations: galician, indonesian, norwegian

**Bug Fixes:**
* Allow deletion of kindle email address and force email addresses to have a valid format
* Fix for big databases not showing tags
* Ignore special files originating from Apple devices in comic reader
* Kobosync show right book languages on kobo
* Catch an additional database error on edit book
* Fix to respect default locale from user template
* Show right path to kobo config file
* Fix to save mp3 listening position
* Fix for metadata provider douban
* Fix for size of downloaded metadata covers from google
* Fix for loading metadata from google with old books (publishing date only year)
* Fix for error: TypeError: 'NoneType' object is not iterable from amazon
* Fix for epubs with identifiers without identifier-name
* Fix send to eReader is now working for guest user
* Fix on stop stop scheduler
* Fix for infinite creation of subprocesses on restart
* Fix for koboreader to detect fixed layout
* Fix to handle case that cover size is already smaller than thumbnail size for thumbnail generation
* Fix strip scheme from ldap server name to prevent error 'int' is not iterable
* Fix for python3.11 to prevent table gdrive_ids2 already exists
* Security fix: credentials for emails are now stored encrypted
* Security fix: Login is rate limited
* Security fix: Passwordstrength can be forced

**New features:**

* Cover images are cached when using gdrive storage and local storage
* Kobo sync now uses calibre-web generated thumbnails as cover pictures
* Pagination button disapear in standard theme once infinite scroll is triggered
* Added "None" to list of file formats, tags, series, languages
* Extract publishing date, identifier from epubs after upload
* Added basic themes to epub reader
* Allow "" in imported ldap usernames
* Allow sending epub files to amazon kindle

**Bug Fixes:**

* Read status checkbox works again for custom columns
* Character '\u200d' is removed from end of email address and no longer causes an error on send emails
* Gevent log output is redirected to log file and no longer stops Calibre-web on Windows
* custom column of type "Text, but with a fixed set of permitted values" with default color no longer leads to error 500
* Permission problems while accessing the robots file are now handled better
* Fix for missing "query" entry in flask_session
* Handle empty response from lubimyczytac metadata provider
* Fix cover upload url with spaces at the end
* Support image/jpg as upload format
* Prevent "none" comment from uploaded pdf documents
* Prevent converting of kepubs on every new user

**New features:**

* Enabled search for text based custom column content in simple search

**Bug Fixes:**

* Bugfix errors for load metadata from amazon are now properly handled
* Errors with readonly library are handled better
* Bigfix author sort order differs from authors order with readonly database
* Improved cover extraction for epub files, better epub cover parsing with multiple cover-image items
* Undo check of read checkbox in case of error
* Display error message in details modal dialog instead of putting it to the hidden UI
* Bugfix set archive bit in booktable
* Added environment variables for reconnect
* Catch additional error on not existing custom column linked to read column
* Prevent metadata changes are lost on edit books with errors
* Bugfix remember sort order of series and authors if entered from link below book cover
* Bugfix gmail.json location
* Series Link in series view no longer clickable
* import error on python <3.7 dataclasses solved
* Deactivated several functions for kindle, tolino, bookeen and kobo e reader. Opening books now working for ebook readers
* Bugfix show covers from goodreads
* Bugfix for advanced search with linked read column and read column having a higher number than number of available custom columns
* Bugfix for plus ("+" vs. "%2B") encoded search strings in opds search feeds are now working
* Bugfix logging with gdrive
* Bugfix database locked in combination with gevent

Security fix: Prevent possible SQL Injection in user table Thanks to Iman Sharafaldin (Forward Security)
Security fix: SSRF protection no longer can be bypassed by IPV6/IPV4 embedding. Thanks to 416e6e61
Security fix: SSRF protection no longer can be bypassed to connect to other servers in the local network. Thanks to michaellrowley