Released ownCloud Infinite Scale 7.2.0

meierhom · July 16, 2025, 9:11pm

ownCloud Infinite Scale (oCIS) 7.2.0 is now available with 37 improvements, security enhancements, and administrative controls. For a full overview, please visit our GitHub release page.

Key Changes Highlights

Enhanced Security This release includes improved cookie security with flags set to prevent CSRF, MITM, and XSS attacks. Microsoft 365 collaboration security has been enhanced through WOPI protocol token handling updates. The office deployment process has been hardened with proof keys and IP filters for additional protection.
Server-Managed Spaces
A new capability for server-managed spaces has been added, which deactivates adding/removing users to/from spaces in the web UI when enabled. Additionally, spaces can now be managed from OIDC claims for automated provisioning.
New Permission Role A new SpaceEditorWithoutTrashbin role has been added. This provides editing capabilities while restricting access to trash bin functionality, allowing for more granular permission management.
Web Interface Updates The web interface has been updated to version 12.0.2, including accessibility improvements, flat list view, duplicate actions, Catalan language support, and the ability to create spaces via admin settings. Search quality has been improved through Bleve v2.5.2. Additional features include notification deletion by ID and improved postprocessing logs.

Additional Changes

This release includes extensive bug fixes for OCM sharing notifications, PDF form creation (OnlyOffice), upload handling, space membership events, and various CLI tools. Deprecated environment variables (FRONTEND_OCS_* and CLIENTLOG_REVA_GATEWAY) have been removed. Development improvements include updating to Go 1.24 and Mockery 2.52.3.

Upgrade Recommendations

This release is recommended for all oCIS deployments, particularly environments requiring enhanced security controls or administrative oversight of space management. The security improvements address modern attack vectors, while the new permission models provide more flexible user management options.

Organizations using Microsoft 365 integration or OnlyOffice should prioritize this update for the security enhancements and bug fixes included.

Questions about the release can be posted in the oCIS category.

lewis0111 · July 18, 2025, 8:55am

Hi meierhom!!
Great update! The new security enhancements and server-managed spaces are a big win for admins. Excited to see the improved permission roles and OnlyOffice fixes too.