Skip to content

Releases: RocketChat/Rocket.Chat

7.13.0

05 Dec 01:47
@rocketchat-github-ci rocketchat-github-ci
7.13.0
98c9d57

Choose a tag to compare

View all tags
7.13.0 Latest
Latest

Summary

What's new

This release introduces foundational infrastructure for upcoming Attribute-Based Access Control (ABAC), with the key addition being the ability for admins to create, edit, and delete room attributes that will later power ABAC rules. It also rolls out a unified v2 encryption model across platforms, strengthens password requirements, adopts authenticated encryption for new data, improves key handling, and adds versioning to support a smooth transition, while the web password reset flow now enforces stronger custom passwords with automatic passphrases planned later. Voice calling received major upgrades, including better extension support in autocomplete, clearer transfer and DTMF behavior, presence-aware call UI, improved client session reliability, and a new Drachtio image underpinning the updated stack, plus real-time call state synchronization for all participants and automatic call summary blocks posted to the correct DM after calls end. Additionally, the expandable message composer preview item was stabilized ahead of the 8.0.0 release, and the livechat:saveUnit API method was prepared for deprecation to align with the new 8.0.0 architecture.

Bug fixes

The batch of fixes in this release improves stability across voice, teams, security, and UI. Voice calling bugs were addressed (missing buttons on small screens, LDAP extension sync, transfer restrictions, WebRTC renegotiation conflicts, and correct call summary labeling). Team deletion now properly removes associated teams when their main room is deleted, edited canned responses remain visible with consistent API behavior, and Outlook Windows notifications now show correct timestamps. Regressions were fixed for private channel Directory search and inconsistent favicons, multiple Email 2FA and TOTP edge cases were resolved, and Enhanced Navigation sidebar behavior was tightened. Other improvements include more reliable lead capture, corrected Omnichannel tag labels, safer delete confirmation handling, proper saving of cleared Bio fields, controlled room deletion with full cleanup/events, and correct editing of encrypted attachment descriptions.

For further details, check out the release notes.

Details

Engine versions

  • Node: 22.16.0
  • Deno: 1.43.5
  • MongoDB: 5, 6, 7, 8
  • Apps-Engine: 1.58.0

Minor Changes

  • (#37327) Adds complexity requirements to end-to-end encryption passphrase

  • (#36807 by @tiagoevanp) Adds a deletedRooms field to the users.delete endpoint response, indicating which rooms were deleted as part of the user deletion process.

  • (#37547) Adds the getUserRoomIds method to the UserRead accessor in the Apps-Engine, graduating it from the experimental bridge to the stable user bridge.

  • (#37368) Allows users to enable TOTP-based two factor authentication without requiring a verified email address.

  • (#37119 by @ergot-rp) Adds missing legend for fieldset in profile page to meet WCAG compliance

  • (#37524) Moves the expandable message composer out of feature preview

  • (#37378) Introduces in-chat messages for when a voice call ends

  • (#37276) Disables the delete message confirmation button to prevent the action from being triggered while the request is in progress

  • (#37318) Fixes the time display in calendar event notifications by converting the UTC time to the local time.

  • (#37167) Changes a behavior that would store the result of every status transition that happened to apps

    This caused intermediate status to be saved to the database, which could prevent apps from being restored to the desired status when restarted or during server startup.

  • (#37245) Replaces old Assign Extension button and modal by introducing a proper input in the user edit form.

  • (#37505) Introduces a new user preference to enable/disable desktop voice call notifications.

  • (#36807 by @tiagoevanp) Fix issue where a team would become orphaned when its last owner was deleted.

  • (#37134 by @ergot-rp) Adds missing legend for fieldset in accessibility page to meet WCAG compliance

  • (#36308 by @sandranymark) Improves inline error in report message modal to meet WCAG compliance.

  • (#37313) Includes the voice call extension to the users.autocomplete endpoint resulting users properties

  • (#37250) Updates AutoTranslate to fetch supported languages dynamically from DeepL API.

Patch Changes

  • Bump @rocket.chat/meteor version.

  • Bump @rocket.chat/meteor version.

  • Bump @rocket.chat/meteor version.

  • (#37255) Adds deprecation warning for livechat:saveUnit

  • (#36835) Fixes the capture of lead's email or phone number when the visitor didn't have data already

  • (#37278) Fixes an issue with LDAP Sync not updating user's VoIP Extensions

  • (#37430) Fixes an issue where it was not possible to save nickname and bio as empty in user profile

  • (#37387) Fixes an issue where user data exports requested would remain stuck and never complete.

  • (#37270) Fixes editing of encrypted message attachment description.

  • (#37493) Fixes an issue where user-agent is not properly extracted from the DDP connection headers

  • (#37350) Fixes the sidebar collapse breakpoint in enhanced navigation

  • (#37496) Fixes the ping behavior so it only triggers when the app becomes idle, preventing unnecessary restarts

  • (#37277) Fixes an issue where updating a private canned response wasn't being shown on canned-response contextualbar.

  • (#37326) Fixes an issue related to creating new users, it should not auto opt in new users for email two factor authentication if any one of Accounts_TwoFactorAuthentication_Enabled, Accounts_TwoFactorAuthentication_By_Email_Enabled and Accounts_TwoFactorAuthentication_By_Email_Auto_Opt_In setting is disabled.

  • (#37380) Fixes an issue where apps would never get the bio of a user even though the type has the field defined

  • (#37477) Fixes an issue where leave room action is available for users without subscription

  • (#37486) Fixes the User Autocomplete's selected option being misaligned

  • (#37290) Fixes an issue where private channels that a user belongs to were not shown in Directory search results.

  • (#37395) Fixes client slowdown for users with large amount of channels

  • (#37384) Fixes a problem in apps-engine debug logs where only 2 depth levels were displayed for objects, which is often not enough for debugging purposes

  • (#37152) Fixes a bug that would cause apps to go into invalid_installation_disabled in some cases

  • (#37345) Fixes administration settings page not listing the settings after logging out and back into the workspace

  • (#37340) Fixes Conversations by Tag chart alignment to match similar charts in the Reports section of Omnichannel.

  • (#37338) Improves mandatory role-based two-factor authentication setup to always verify available 2FA methods before enforcement.

  • (#37449) Fixes an issue where voice call button is not displaying in navbar on mobile screen sizes

    This change is being tested under Enhanced navigation experience feature preview, in order to check it you need to enabled it

  • (#37550) Fixes an issue that caused the server to load upload files' contents in-memory twice

  • Updated dependencies [31ab78f, 8596daf, 5f075ea...
Read more
Assets 2
Loading

7.13.0-rc.2

04 Dec 22:50
@rocketchat-github-ci rocketchat-github-ci
7.13.0-rc.2
9048c7b

Choose a tag to compare

View all tags
7.13.0-rc.2 Pre-release
Pre-release

Engine versions

  • Node: 22.16.0
  • Deno: 1.43.5
  • MongoDB: 5, 6, 7, 8
  • Apps-Engine: 1.58.0-rc.0

Patch Changes

Loading

7.13.0-rc.1

02 Dec 21:50
@rocketchat-github-ci rocketchat-github-ci
7.13.0-rc.1
cfc3967

Choose a tag to compare

View all tags
7.13.0-rc.1 Pre-release
Pre-release

Engine versions

  • Node: 22.16.0
  • Deno: 1.43.5
  • MongoDB: 5, 6, 7, 8
  • Apps-Engine: 1.58.0-rc.0

Patch Changes

Loading

7.10.5

25 Nov 14:23
@rocketchat-github-ci rocketchat-github-ci
7.10.5
52cef98

Choose a tag to compare

View all tags
7.10.5

Engine versions

  • Node: 22.16.0
  • Deno: 1.43.5
  • MongoDB: 5.0, 6.0, 7.0
  • Apps-Engine: 1.55.2

Patch Changes

Loading

7.12.2

21 Nov 11:43
@rocketchat-github-ci rocketchat-github-ci
7.12.2
cbd73cf

Choose a tag to compare

View all tags
7.12.2

Engine versions

  • Node: 22.16.0
  • Deno: 1.43.5
  • MongoDB: 5.0, 6.0, 7.0
  • Apps-Engine: 1.57.1

Patch Changes

Loading

7.11.2

21 Nov 11:43
@rocketchat-github-ci rocketchat-github-ci
7.11.2
68b373a

Choose a tag to compare

View all tags
7.11.2

Engine versions

  • Node: 22.16.0
  • Deno: 1.43.5
  • MongoDB: 5.0, 6.0, 7.0
  • Apps-Engine: 1.56.1

Patch Changes

Loading

7.9.6

21 Nov 11:42
@rocketchat-github-ci rocketchat-github-ci
7.9.6
0baa49e

Choose a tag to compare

View all tags
7.9.6

Engine versions

  • Node: 22.16.0
  • Deno: 1.43.5
  • MongoDB: 5.0, 6.0, 7.0
  • Apps-Engine: 1.54.0

Patch Changes

Loading

7.13.0-rc.0

20 Nov 17:38
@rocketchat-github-ci rocketchat-github-ci
7.13.0-rc.0
e55bda8

Choose a tag to compare

View all tags
7.13.0-rc.0 Pre-release
Pre-release

Engine versions

  • Node: 22.16.0
  • Deno: 1.43.5
  • MongoDB: 5, 6, 7, 8
  • Apps-Engine: 1.58.0-rc.0

Minor Changes

  • (#37327) Adds complexity requirements to end-to-end encryption passphrase

  • (#36807 by @tiagoevanp) Adds a deletedRooms field to the users.delete endpoint response, indicating which rooms were deleted as part of the user deletion process.

  • (#37547) Adds the getUserRoomIds method to the UserRead accessor in the Apps-Engine, graduating it from the experimental bridge to the stable user bridge.

  • (#37368) Allows users to enable TOTP-based two factor authentication without requiring a verified email address.

  • (#37119 by @ergot-rp) Adds missing legend for fieldset in profile page to meet WCAG compliance

  • (#37524) Moves the expandable message composer out of feature preview

  • (#37378) Introduces in-chat messages for when a voice call ends

  • (#37276) Disables the delete message confirmation button to prevent the action from being triggered while the request is in progress

  • (#37318) Fixes the time display in calendar event notifications by converting the UTC time to the local time.

  • (#37167) Changes a behavior that would store the result of every status transition that happened to apps

    This caused intermediate status to be saved to the database, which could prevent apps from being restored to the desired status when restarted or during server startup.

  • (#37245) Replaces old Assign Extension button and modal by introducing a proper input in the user edit form.

  • (#37505) Introduces a new user preference to enable/disable desktop voice call notifications.

  • (#36807 by @tiagoevanp) Fix issue where a team would become orphaned when its last owner was deleted.

  • (#37134 by @ergot-rp) Adds missing legend for fieldset in accessibility page to meet WCAG compliance

  • (#36308 by @sandranymark) Improves inline error in report message modal to meet WCAG compliance.

  • (#37313) Includes the voice call extension to the users.autocomplete endpoint resulting users properties

  • (#37250) Updates AutoTranslate to fetch supported languages dynamically from DeepL API.

Patch Changes

Read more
Loading

7.12.1

07 Nov 22:25
@rocketchat-github-ci rocketchat-github-ci
7.12.1
5f1f831

Choose a tag to compare

View all tags
7.12.1

Engine versions

  • Node: 22.16.0
  • Deno: 1.43.5
  • MongoDB: 5.0, 6.0, 7.0
  • Apps-Engine: 1.57.1

Patch Changes

Loading