- Comment out:
  - Environment=NODE_PG_FORCE_NATIVE=1 
    With enabled etherpad does not start.
  - Restart=always
    When exist an error, etherpad restarts in a continuous loop.
- Add %{buildroot}%{install_dir}/var.
  Without that etherpad does not run.
- Add and %{install_dir}/plugin_packages
  Without that etherpad will break when add plugins.

• Files Changed
• Browse Source

- Switch user/group handling to sysusers
- Switch to autosetup
- Remove stale init script
- Update header

• Files Changed
• Browse Source

- update to 1.9.7
  + Added Live Plugin Manager: Plugins are now installed into a 
    separate folder on the host system. 
    This folder is called plugin_packages.
  + That way the plugins are separated from the normal etherpad installation.
  + Make repairPad.js more verbose
  + Fixed favicon not being loaded correctly
- update vendor tarball

• Files Changed
• Browse Source

- update to 1.9.6
  + Prevent etherpad crash when update server is not reachable
  + Use npm@6 in Docker build
  + Fix setting the log level in settings.json
- update vendor tarball

• Files Changed
• Browse Source

- update to 1.9.5
  Compability changes
  * This version deprecates NodeJS16 as it reached its end of life and won't
    receive any updates. So to get started with Etherpad v1.9.5 you need NodeJS
    18 and above.
  + The bundled windows NodeJS version has been bumped to the current 
    LTS version 20.
  Notable enhancements and fixes
  * The support for the tidy program to tidy up HTML files has been 
    removed. This decision was made because it hasn't been updated 
    for years and also caused an incompability when exporting a pad 
    with Abiword.

• Files Changed
• Browse Source

- update to 1.9.4
  * Log4js has been updated to the latest version. As it involved a 
    bump of 6 major version a lot has changed since then. Most notably 
    the console appender has been deprecated.
  * Fix for MySQL: The logger calls were incorrectly configured leading 
    to a crash when e.g. somebody uses a different encoding than standard 
    MySQL encoding.
- recompile node-gyp python code to avoid inconsistent mtimes in the 
  bytecode
- update vendor tarball

• Files Changed
• Browse Source

- update to 1.9.3
  Compability changes
  * express-rate-limit has been bumped to 7.0.0: This involves the 
    breaking change that "max: 0" in the importExportRateLimiting is 
    set to always trigger. So set it to your desired value.
    If you haven't changed that value in the settings.json you are all set.
  Notable enhancements and fixes
  * Bugfixes
    + Fix etherpad crashing with mongodb database
  * Enhancements
    + Add surrealdb database support. You can find out more about 
      this database here.
    + Make sqlite faster: The sqlite library has been switched to 
      better-sqlite3. This should lead to better performance.

• Files Changed
• Browse Source

- Update to 1.9.2
  Notable enhancements and fixes
  + Security
    o Enable session key rotation: This setting can be enabled in the 
      settings.json. It changes the signing key for the cookie 
      authentication in a fixed interval.
  + Bugfixes
    o Fix appendRevision when creating a new pad via the API 
      without a text.
  + Enhancements
    o Bump JQuery to version 3.7
    o Update elasticsearch connector to version 8
  Compatibility changes
  + No compability changes as JQuery maintains excellent backwards 
    compatibility.
  For plugin authors
  + Please update to JQuery 3.7. There is an excellent deprecation 
    guide over here. Version 3.1 to 3.7 are relevant for the 
    upgrade.
- refreshed patches:
  + etherpad-lite_avoid_getGitCommit_call.patch
  + etherpad-lite_default_config.patch
  + etherpad-lite_move_autogenerated_key_files_to_var.patch
- adjusted rpmlintrc (removed unused entries):
  + devel-file-in-non-devel-package
  + files-duplicated-waste
  + pem-certificate

• Files Changed
• Browse Source

- Update to 1.9.1
  Notable enhancements and fixes
  + Security
    o Limit requested revisions in timeslider and export to head revision.
  + Bugfixes
    o revisions in CHANGESET_REQ (timeslider) and export (txt, html, custom)
      are now checked to be numbers.
    o bump sql for audit fix
  + Enhancements
    o Add keybinding meta-backspace to delete to beginning of line
    o Fix automatic Windows build via GitHub Actions
    o Enable docs to be build cross platform thanks to asciidoctor
  Compatibility changes
  + tests: drop windows 7 test coverage & use chrome latest for admin tests
  + Require Node 16 for Etherpad and target Node 20 for testing

• Files Changed
• Browse Source

- Update to 1.9.0
  + Improvements to login session management:
    o express_sid cookies and sessionstorage:* database records are no longer
      created unless requireAuthentication is true (or a plugin causes them to
      be created).
    o Login sessions now have a finite lifetime by default (10 days after
      leaving).
    o sessionstorage:* database records are automatically deleted when the login
      session expires (with some exceptions that will be fixed in the future).
    o Requests for static content (e.g., /robots.txt) and special pages (e.g.,
      the HTTP API, /stats) no longer create login session state.
  + The following settings from settings.json are now applied as expected (they
    were unintentionally ignored before):
    o padOptions.lang
    o padOptions.showChat
    o padOptions.userColor
    o padOptions.userName
  + HTTP API:
    o Fixed the return value of getText when called with a specific revision.
    o Fixed a potential attribute pool corruption bug with
      copyPadWithoutHistory.
    o Mappings created by createGroupIfNotExistsFor are now removed from the
      database when the group is deleted.
    o Fixed race conditions in the setText, appendText, and restoreRevision
      functions.
    o Added an optional authorId parameter to appendText,
      copyPadWithoutHistory, createGroupPad, createPad, restoreRevision,
      setHTML, and setText, and bumped the latest API version to 1.3.0.
  + Fixed a crash if the database is busy enough to cause a query timeout.
  + New /health endpoint for getting information about Etherpad's health (see

• Files Changed
• Browse Source

- Update to 1.8.18
  + Upgraded ueberDB to fix a regression with CouchDB (#5532)
- updated vendor tarball

• Files Changed
• Browse Source

- Update to 1.8.17
  * Security fixes
    - Fixed a vunlerability in the CHANGESET_REQ message handler
      that allowed a user with any access to read any pad if the
      pad ID is known.
  * Notable enhancements and fixes
    - Fixed a bug that caused all pad edit messages received at the
      server to go through a single queue. Now there is a separate
      queue per pad as intended, which should reduce message
      processing latency when many pads are active at the same time.

• Files Changed
• Browse Source

- Enable patch0, patch1, patch2 angain.
  Without patch0 etherpad-lite can not be start.
- Refresh,fix and extend patch0: default_config.patch
- Fix some rpmlint errors.
- Add filter in rpmlintrc and delete unused filter suse-*, 
  because of Tumbleweed build error.

• Files Changed
• Browse Source

- update to 1.8.16
  Security fixes 
  + Maliciously crafted .etherpad files can no longer overwrite arbitrary
    non-pad database records when imported.
  + Imported .etherpad files are now subject to numerous consistency checks 
    before any records are written to the database. This should help avoid 
    denial-of-service attacks via imports of malformed .etherpad files.
  + Fixed leak of the writable pad ID when exporting from the pad's 
    read-only ID. This only matters if you treat the writeable pad IDs 
    as secret (e.g., you are not using ep_padlist2) and you share the 
    pad's read-only ID with untrusted users. 
    Instead of treating writeable pad IDs as secret, you are encouraged
    to take advantage of Etherpad's authentication and authorization 
    mechanisms (e.g., use ep_openid_connect with ep_readonly_guest, 
    or write your own authentication and authorization plugins).
  + Updated dependencies.
  Notable enhancements and fixes
  + Fixed several .etherpad import bugs.
  + Improved support for large .etherpad imports.
  + Accessibility fix for JAWS screen readers.
  + Fixed "clear authorship" error (see issue #5128).
  + Etherpad now considers square brackets to be valid URL characters.
  + The server no longer crashes if an exception is thrown while processing 
    a message from a client.
  + The useMonospaceFontGlobal setting now works (thanks @Lastpixl!).
  + Chat improvements:
    - The message input field is now a text area, allowing multi-line 
      messages (use shift-enter to insert a newline).
    - Whitespace in chat messages is now preserved.
  + Worked around a Firefox Content Security Policy bug that caused CSP

• Files Changed
• Browse Source

- require nodejs and npm >= 12.13.0

• Files Changed
• Browse Source

- update to 1.8.14
  Security fixes
  + Fixed a persistent XSS vulnerability in the Chat component. 
  Compatibility changes
  + Node.js v12.13.0 or later is now required.
  + The favicon setting is now interpreted as a pathname to a favicon
    file, not a URL. 
    Please see the documentation comment in settings.json.template.
  + The undocumented faviconPad and faviconTimeslider settings 
    have been removed.
  + MySQL/MariaDB now uses connection pooling, which means you will 
    see up to 10 connections to the MySQL/MariaDB server (by default)
    instead of 1. 
    This might cause Etherpad to crash with a 
      "ER_CON_COUNT_ERROR: Too many connections"
    error if your server is configured with a low connection limit.
  + Changes to environment variable substitution in settings.json 
    (see the documentation comments in settings.json.template for details)
  + An environment variable set to the string "null" now becomes null 
    instead of the string "null". Similarly, if the environment variable
    is unset and the default value is "null" (e.g., "${UNSET_VAR:null}"),
    the value now becomes null instead of the string "null".
    It is no longer possible to produce the string "null" via 
    environment variable substitution.
  + An environment variable set to the string "undefined" now causes
    the setting to be removed instead of set to the string "undefined". 
    Similarly, if the environment variable is unset and the default 
    value is "undefined" (e.g., "${UNSET_VAR:undefined}"), the setting
    is now removed instead of set to the string "undefined". 
    It is no longer possible to produce the string "undefined" via

• Files Changed
• Browse Source

- update to 1.8.13
  Notable fixes
  * Fixed a bug in the safeRun.sh script (#4935)
  * Add more endpoints that do not need authentication/authorization (#4921)
  * Fixed issue with non-opening device keyboard on smartphones (#4929)
  * Add version string to iframe_editor.css to prevent stale cache entry (#4964)
  Notable enhancements
  * Refactor pad loading (no document.write anymore) (#4960)
  * Improve import/export functionality, logging and tests (#4957)
  * Refactor CSS manager creation (#4963)
  * Better metrics
  * Add test for client height (#4965)
  Dependencies
  * ueberDB2 1.3.2 -> 1.4.4
  * express-rate-limit 5.2.5 -> 5.2.6
  * etherpad-require-kernel 1.0.9 -> 1.0.11
- updated vendor file
- ignore etherpad-lite_abiword_missing_AbiCommand.patch for now
- refreshed patches:
  + etherpad-lite_avoid_getGitCommit_call.patch
  + etherpad-lite_default_config.patch
  + etherpad-lite_move_autogenerated_key_files_to_var.patch
- package documentation without executable bit

• Files Changed
• Browse Source

• Files Changed
• Browse Source

- refreshed the following patches:
  + etherpad-lite_abiword_missing_AbiCommand.patch

• Files Changed
• Browse Source

- update to 1.8.12
  Security patches
  * Fixed a regression in v1.8.11 which caused some pad names to cause 
    Etherpad to restart.
  * Resolve potential ReDoS vulnerability in your project - GHSL-2020-359
  Compatibility changes
  * JSONP API has been removed in favor of using the mature 
    OpenAPI implementation.
  * Node 14 is now required for Docker Deployments
  Notable fixes
  * Fixed a bug in the dirty database driver that sometimes caused 
    Node.js to crash during shutdown and lose buffered database writes.
  * Fixed a regression in v1.8.8 that caused "Uncaught TypeError: 
    Cannot read property '0' of undefined" with some plugins (#4885)
  * Less warnings in server console for supported element types on import.
  * Support Azure and other network share installations by using a more 
    truthful relative path.
  * Fix server crash issue within PadMessageHandler due to SocketIO handling
  * Fix editor issue with drop downs not being visible
  * Ensure correct version is passed when loading front end resources
  * Ensure underscore and jquery are available in original location 
    for plugin comptability
  * Various performance and stability fixes
  Notable enhancements
  * Dependency updates
  * Various Docker deployment improvements
  * Various new translations
  * Improvement of rendering of plugin hook list and error message handling
  * Improved page load speeds
  * Improved line number alignment and user experience around line anchors

• Files Changed
• Browse Source