v10 Changelog
10.0.5 (4 Oct 2025)
[AR-3119] - ejected volume when mounted stays ejected
[AR-3129] - Unable to write large blobs to Backblaze B2 due to FileAlreadyExistsException status (904)
[AR-3126] - security enhancement: OWASP santization of message view
10.0.4 (3 Oct 2025)
[AR-3123] - Aspose license not initialized. PST import/export contains Aspose branding.
[AR-3124] - Wrong part is rendered in message view
[AR-3125] - Render inline images with Content-Type of application/octet-stream
[AR-3126] - security enhancement: OWASP santization of message view
[AR-3019] - PST import: database instance is not set in the current thread
[AR-3127] - Remove orphaned blobs from central queue
[AR-3122] - Timeout parsing of large and complex attachments
10.0.3 (29 Sept 2025)
[AR-3114] - ignore sync of non mime encoded exchange invites
[AR-3116] - Google get users Code:429 "Too Many Requests "
[AR-3118] - java.lang.NoSuchMethodError: 'void kotlin.io.path.PathsKt.deleteRecursively
10.0.1 (18 Sept 2025)
[AR-3111] - hang on PDF export due to Aspose parsing issue. Upgrade Aspose 25.4 (further update)
[AR-3112] - Harden AWS S3 region and endpoint resolution logic
10.0.1 (16 Sept 2025)
[AR-3111] - hang on PDF export due to Aspose parsing issue. Upgrade Aspose 25.4
10.0.0 (4 Sept 2025)
[AR-2974] Authentication overhaul — replaced the entire authentication system with Pac4j security framework for standardized, modern, and extensible security handling.
Core Changes
-
AR-2983 Replaced legacy security filter with pac4j filters (security and callback).
-
AR-2984 Integrated role and authorization mapping into pac4j profiles and authorizers.
-
AR-2986 Added support for AD, LDAP, Azure, and Google authentication providers through pac4j clients.
-
AR-2989 Migrated in-memory login handling to pac4j session and profile management.
-
AR-2991 Replaced legacy session management with pac4j ProfileManager.
-
AR-2992 Migrated custom MailArchivaPrincipal to pac4j CommonProfile.
-
AR-2993 Re-implemented two-factor authentication using pac4j client chaining.
-
AR-2994 Added multi-tenancy support to authentication flows.
-
AR-2995 Replaced legacy BASIC authentication
Fixes and Adjustments Post-Migration
-
AR-3104 Multi-tenant: fixed issue where tenant certificate imports were incorrectly stored in central config.
Found this information useful? Visit mailarchiva.com to learn more about MailArchiva.