››

v10 Changelog

Upgrade: Refer to the upgrade notes for more details.

Authentication change: MailArchiva V10 introduces a new authentication system based on the pac4j security framework. Some configuration changes are required; please refer to the upgrade notes for details.

10.0.5 (4 Oct 2025)

[AR-3119] - ejected volume when mounted stays ejected
[AR-3129] - Unable to write large blobs to Backblaze B2 due to FileAlreadyExistsException status (904)
[AR-3126] - security enhancement: OWASP santization of message view

10.0.4 (3 Oct 2025)

[AR-3123] - Aspose license not initialized. PST import/export contains Aspose branding.
[AR-3124] - Wrong part is rendered in message view
[AR-3125] - Render inline images with Content-Type of application/octet-stream
[AR-3126] - security enhancement: OWASP santization of message view
[AR-3019] - PST import: database instance is not set in the current thread
[AR-3127] - Remove orphaned blobs from central queue
[AR-3122] - Timeout parsing of large and complex attachments

10.0.3 (29 Sept 2025)

[AR-3114] - ignore sync of non mime encoded exchange invites
[AR-3116] - Google get users Code:429 "Too Many Requests "
[AR-3118] - java.lang.NoSuchMethodError: 'void kotlin.io.path.PathsKt.deleteRecursively

10.0.1 (18 Sept 2025)

[AR-3111] - hang on PDF export due to Aspose parsing issue. Upgrade Aspose 25.4 (further update)
[AR-3112] - Harden AWS S3 region and endpoint resolution logic

10.0.1 (16 Sept 2025)

[AR-3111] - hang on PDF export due to Aspose parsing issue. Upgrade Aspose 25.4

10.0.0 (4 Sept 2025)

[AR-2974] Authentication overhaul — replaced the entire authentication system with Pac4j security framework for standardized, modern, and extensible security handling.

Core Changes

AR-2983 Replaced legacy security filter with pac4j filters (security and callback).
AR-2984 Integrated role and authorization mapping into pac4j profiles and authorizers.
AR-2986 Added support for AD, LDAP, Azure, and Google authentication providers through pac4j clients.
AR-2989 Migrated in-memory login handling to pac4j session and profile management.
AR-2991 Replaced legacy session management with pac4j ProfileManager.
AR-2992 Migrated custom MailArchivaPrincipal to pac4j CommonProfile.
AR-2993 Re-implemented two-factor authentication using pac4j client chaining.
AR-2994 Added multi-tenancy support to authentication flows.
AR-2995 Replaced legacy BASIC authentication

Fixes and Adjustments Post-Migration

AR-3104 Multi-tenant: fixed issue where tenant certificate imports were incorrectly stored in central config.

Changelog v9...

Was this helpful?

Thank you Your feedback helps us to continually improve our content.

Found this information useful? Visit mailarchiva.com to learn more about MailArchiva.