Automated changelog update [skip ci]

CHANGELOG.md

@@ -9,9 +9,10 @@ The following sections list the changes for unreleased.
 * Bugfix - Redirect invalid links to oC Web: [#2493](https://github.com/owncloud/ocis/pull/2493)
 * Bugfix - Use proper url path decode on the username: [#2511](https://github.com/owncloud/ocis/pull/2511)
 * Bugfix - Remove notifications placeholder: [#2514](https://github.com/owncloud/ocis/pull/2514)
+* Enhancement - Add option to skip generation of demo users and groups: [#2495](https://github.com/owncloud/ocis/pull/2495)
 * Enhancement - Allow overriding the cookie based route by claim: [#2508](https://github.com/owncloud/ocis/pull/2508)
 * Enhancement - Redirect invalid links to oC Web: [#2493](https://github.com/owncloud/ocis/pull/2493)
-* Enhancement - Demo users and groups won't be generated unless requested: [#2495](https://github.com/owncloud/ocis/pull/2495)
+* Enhancement - TLS config options for ldap in reva: [#2492](https://github.com/owncloud/ocis/pull/2492)
 
 ## Details
 
@@ -33,13 +34,24 @@ The following sections list the changes for unreleased.
 * Bugfix - Remove notifications placeholder: [#2514](https://github.com/owncloud/ocis/pull/2514)
 
    Since Reva was communicating its notification capabilities incorrectly, oCIS relied on a
-   hardcoding string to overwrite them. This has been fixed in
+   hardcoded string to overwrite them. This has been fixed in
    [reva#1819](https://github.com/cs3org/reva/pull/1819) so we now removed the hardcoded
    string and don't modify Reva's notification capabilities anymore in order to fix clients
    having to poll a (non-existent) notifications endpoint.
 
    https://github.com/owncloud/ocis/pull/2514
 
+* Enhancement - Add option to skip generation of demo users and groups: [#2495](https://github.com/owncloud/ocis/pull/2495)
+
+   We've added a new environment variable to decide whether we should generate the demo users and
+   groups or not. This environment variable is set to `true` by default, so the demo users and
+   groups will get generated by default as long as oCIS is in its "technical preview" stage.
+
+   In any case, there are still some users and groups automatically generated: for users: Reva
+   IOP, Kopano IDP, admin; for groups: sysusers and users.
+
+   https://github.com/owncloud/ocis/pull/2495
+
 * Enhancement - Allow overriding the cookie based route by claim: [#2508](https://github.com/owncloud/ocis/pull/2508)
 
    When determining the routing policy we now let the claim override the cookie so that users are
@@ -54,14 +66,15 @@ The following sections list the changes for unreleased.
 
    https://github.com/owncloud/ocis/pull/2493
 
-* Enhancement - Demo users and groups won't be generated unless requested: [#2495](https://github.com/owncloud/ocis/pull/2495)
+* Enhancement - TLS config options for ldap in reva: [#2492](https://github.com/owncloud/ocis/pull/2492)
 
-   We've added a new environment variable to decide whether we should generate the demo users and
-   groups or not. This environment variable is false by default, so the demo users and groups won't
-   be generated by default. There are still some users and groups automatically generated: for
-   users: Reva IOP, Kopano IDP, admin; for groups: sysusers and users.
+   We added the new config options "ldap-cacert" and "ldap-insecure" to the auth-, users- and
+   groups-provider services to be able to do proper TLS configuration for the LDAP clients.
+   "ldap-cacert" is by default configured to add the bundled glauth LDAP servers certificate to
+   the trusted set for the LDAP clients. "ldap-insecure" is set to "false" by default and can be
+   used to disable certificate checks (only advisable for development and test enviroments).
 
-   https://github.com/owncloud/ocis/pull/2495
+   https://github.com/owncloud/ocis/pull/2492
 # Changelog for [1.12.0] (2021-09-14)
 
 The following sections list the changes for 1.12.0.