Wsgidav

Latest version: v4.3.3

Safety actively analyzes 638437 Python packages for vulnerabilities to keep your Python projects secure.

Scan your dependencies

Page 3 of 6

3.1.0

Not secure
- 181 Fix error for UTF8 (surrogate) filename
- 183 Support reverse proxies
- 186 Add sample Redis lock manager `LockStorageRedis` (Steffen Deusch)
- 191 Add option `dir_browser.htdocs_path`
- 193 Support gunicorn
- 195 Add password to lock_storage_redis
- 198 Fix exception with verbose > 3
- Use [Yabs](https://github.com/mar10/yabs) as release tool

3.0.3

Not secure
- 172 Fix missing import of collections_abc (regression in 3.0.2:
this requires six 1.13+; dependencies have been updated)
- 177 Fix allow_anonymous_access()

3.0.2

Not secure
- Fixes for Python 3.8
- Deprecated support for Python 3.4 (reached end of live on 2019-03-18),
i.e. stopped testing.
- 167 Docker image reduction from 244MB to 66.4MB
- 169 Replace jsmin with json5 dependency

3.0.1

Not secure
(Thanks to Steffen Deusch for most of the fixes.)

- 149: Improve performance for Windows File Explorer by updating cheroot to 8.1
- Fix 152: "Allow-Ranges: bytes" is now correct "Accept-Ranges: bytes" header
- Merge 155: last_modified is now correctly cast to int when comparing conditional requests
- Merge 156: the file object returned by get_content (DAVNonCollection) is now correctly being closed when a client disconnects unexpectedly
- Merge 158: add ssl support for gevent
- 159: Display requested path with 404 errors
- Fix 164: Wrong separator on Allow values

3.0.0

Not secure
This release contains **BREAKING CHANGES!**

- Improve configuration:<br>
[(See details)](http://wsgidav.readthedocs.io/en/latest/user_guide_configure.html)
- **Rename some options**, e.g. `acceptDigest` => `http_authenticator.accept_digest`
- WsgiDAVApp constructor now assumes default settings. The passed options
override those.
- Log format is configurable
- Remove option `dir_browser.enabled` (modify `middleware_stack` instead)
- CLI supports `--server=gevent` (gevent must be installed separately)
- SSL paths are evaluated relative to the config file, if any
- Refactor middleware stack
- RequestResolver and WsgiDavDirBrowser are now simple members of `middleware_stack`
and not specially treated
- `middleware_stack` entries can also be strings or dicts that are
evaluated to import and instantiate middleware classes. This allows to
define and configure external middleware in YAML and JSON config files.
- provider_mapping option now supports configuration of custom providers
- Windows XP (Microsoft-WebDAV-MiniRedir/5.1.2600) had a bug
when accessing a share '/dav/': XP sometimes sends digests for '/'.
In v.2.4 a hotfix was also accept '/' instead of the real share.
This is now disabled by default, but can be re-enabled with
hotfixes.winxp_accept_root_share_login: true.
- Refactor code base:
- **Rename methods** according to PEP 8, e.g.
`provider.getResourceInst()` => `provider.get_resource_inst()`.
- **Rename methods arguments** according to PEP 8, e.g.
`provider.set_last_modified(self, destPath, timeStamp, dryRun)`
=> `provider.set_last_modified(self, dest_path, time_stamp, dry_run)`
- Enforce [Black code style](https://github.com/ambv/black)
- Move some modules to separate packages
- Use utf-8 directive in source files (-_- coding: utf-8 -_-)
- Refactor domain_controller and authentication:
- Renamed environ["http_authenticator.realm"], environ["http_authenticator.user_name"]
=> environ["wsgidav.auth.realm"], environ["wsgidav.auth.user_name"]
- DC may define environ["wsgidav.auth.roles"] and environ["wsgidav.auth.permissions"]
- A common base class simplifies implementation of custom DCs.
- New [PAMDomainController](https://en.wikipedia.org/wiki/Pluggable_authentication_module)
allows to authenticate system users on Linux and macOS, for example.
- Digest hash generation is now delegated to DomainControllers. This allows
to implement DomainControllers that support digest access authentication
even if plain-text passwords are not accessible, but stored hashes are.
- Every domain controller now has a config section of its own. E.g.
the `user_mapping` option for `SimpleDomainController` was moved to
`simple_dc.user_mapping`.
- `SimpleDomainController` no longer allows anonymous access by default.
It is now required to pass `simple_dc.user_mapping: "share1": True`.
Also a new pseudo-share `"*"` can be used to define defaults.
A new command line option `--auth` allows quick-configuration of DCs
- Refactor WsgiDirBrowser:
- Use Jinja2 and load static assets through own WsgiDAV provider
- Move to `wsgidav.dir_browser` package
- Option 'dir_browser.ms_sharepoint_support' replaces ms_sharepoint_plugin and ms_sharepoint_urls
- Automated [Docker builds](https://hub.docker.com/r/mar10/wsgidav/)
- MSI installer
- uses Cheroot/6.4 Python 3.6
- Includes NTDomainController
- 112: Added limited support for Microsoft's Win32LastModified property.
- Fix 123: HEAD request on DirBrowser folder
- Fix 141: issue when 'sys.stdout' is none

2.4.1

- Fix some logging exceptions
- Fix exception in CLI config reader (Py2)

Page 3 of 6

© 2024 Safety CLI Cybersecurity Inc. All Rights Reserved.