Release Notes - Version 2.0¶

The “White Label” settings have been renamed to “Build Image” settings. In addition, the setting UseWhiteLabeldDockerImage has been removed and the WhiteLabelINIFileSettings setting has been rename to ClientSettings (see below).

UseWhiteLabeldDockerImage is no longer required because all Web Portals now use the image build settings to create a new Docker image on upgrade, if necessary.

The setting WhiteLabelIdleTimeout has been renamed to ContainerIdleTimeout and is now a “Docker Setting” (see ContainerIdleTimeout).

The IdleContainerTimeout setting has been renamed to RemoveIdleContainerTime to better distinguish this value from ContainerIdleTimeout.

Added SharedIniPath and AgentCommandLineArgs. Using SharedIniPath you can specify a global path for the “teamdrive.ini” file (WEBCLIENT-350).

WhiteLabelINIFileSettings has be rename to ClientSettings and is now a “General Setting”. Client settings that are set using the ClientSettings setting are then written to the teamdrive.ini file. If a SharedIniPath is specified, then they are read by the all TeamDrive agents, when a container starts. If not, then the client settings are written to the /etc/teamdrive.ini file, which is part of the container image.

The AgentCommandLineArgs settings is a read-only variable that specifies the command line arguments that are passed to the TeamDrive agent when the container starts.

See SharedIniPath, AgentCommandLineArgs and ClientSettings for details.

Added MaxLoginRate and MaxLoginLogAge settings. These settings are used to detect Denial of Service and other brute force attacks targeting the Web Portal login (WEBCLIENT-344). See MaxLoginRate and MaxLoginLogAge for details.

Error messages returned by the Web Portal are now use the translation file provided by the TeamDrive Agent.

Added ContainerHosts setting (see ContainerHosts). Use this to specify entries for the “/etc/hosts” file of the container (WEBCLIENT-139).

You can now configure a proxy during setup of the Web Portal (WEBCLIENT-338).

If AuthServiceEnabled is False the Web Portal now uses external authentication as required by the user, provided you are using TeamDrive Agent 4.6.11.2656 or later (WEBCLIENT-335).

As before, if AuthServiceEnabled is True, then Web Portal uses a specific authentication service (as specified by AuthLoginPageURL and AuthTokenVerifyURL).

See AuthServiceEnabled for more details.

Moved settings SessionTimeout, ForceHTTPSUsage and ForceHTTPSUsage to Admin Console settings group.

Moved RegistrationEnabled and RegistrationURL to the Authentication settings group.

The Web Portal will now redirect to another Web Portal, if a user attempts to login to the incorrect Web Portal (WEBCLIENT-333). This is done of the provider of the user is not in the list of AllowedProviders.

On the Registration Server of the user, you must set the WEBPORTAL_API_URL provider setting. This setting specifies the domain name of the Web Portal used by the provider. In addition, Registration Server version 4.5.4 is required. This version implements the “webportal” redirect required to implement this functionality.

If any of these conditions is not met, then the user will get the error message: “The provider you are registered to is not enabled for this web portal”.

Set the minimum client Agent version to 4.6.11.2707. This version support the Web Portal redirect, and includes some error message improvements.

Setting the default distributor code, and language using the portal/login.html and extauth/login.html pages is not longer supported.

Added Multi-Registration Server support.

Fixed agent download URL.

All documents and security relavent data stored in containers run by the web portal are now encrypted when using TeamDrive Agent version 4.7 or later.

Encryption activates the so-called “super PIN” functionality implemented by Registration Server 4.2. When the super PIN is activated for an account the user is required to print out and save a 56-digit super PIN, and recovery URL (in the form of QR code) in a secure place.

After activation of the super PIN functionality the user can only access their account using their password, or the super PIN, or the recovery code (which can be retrieved using the recovery URL). Changing your password is also only possible using either the super PIN or recovery code.

Changes made to support local encryption of inboxes. Encryption of inboxes required Registration Server version 4.2 or later, and TeamDrive Agent version 4.7 or later.

Added ContainerDatabases setting (WEBCLIENT-334). This setting allows you to specify an alternative path for the SQLite databases used by the containers. Normally all data is placed in the ContainerRoot directory.

When specified the new location will be mounted in the container under the path: “/teamdrive/dbs”. However, this path will only be used if you build a new image using the TeamDrive Agent version 4.6.12.2637 or later.

This version of the client supports the “–database-path” option which allows you to specify an alternative path for the SQLite database. When ContainerDatabases is set, the image build process will automatically add this option to the start parameters of the agent (see @USEDATABASEPATH in the WhiteLabelDockerfile setting).