amorfo77/paperless-ngx
1
0
Fork 0
mirror of https://github.com/paperless-ngx/paperless-ngx.git synced 2026-04-03 14:48:50 +00:00
Code Issues Projects Releases Wiki Activity
Files
fcb13e8d63fff2f9bfddd770fcea71495dcee3ed
paperless-ngx/docs/migration-v3.md
Trenton H aed9abe48c Feature: Replace Whoosh with tantivy search backend (#12471) 
Co-authored-by: Claude Sonnet 4.6 <noreply@anthropic.com>
Co-authored-by: Antoine Mérino <3023499+Merinorus@users.noreply.github.com>
2026-04-02 12:38:22 -07:00

8.4 KiB
Raw Blame History

v3 Migration Guide

Consumer Settings Changes

The v3 consumer command uses a different library to unify the watching for new files in the consume directory. For the user, this removes several configuration options related to delays and retries and replaces with a single unified setting. It also adjusts how the consumer ignore filtering happens, replaced fnmatch with regex and separating the directory ignore from the file ignore.

Summary

Old Setting New Setting Notes
CONSUMER_POLLING CONSUMER_POLLING_INTERVAL Renamed for clarity
CONSUMER_INOTIFY_DELAY CONSUMER_STABILITY_DELAY Unified for all modes
CONSUMER_POLLING_DELAY Removed Use CONSUMER_STABILITY_DELAY
CONSUMER_POLLING_RETRY_COUNT Removed Automatic with stability tracking
CONSUMER_IGNORE_PATTERNS CONSUMER_IGNORE_PATTERNS Now regex, not fnmatch; user patterns are added to (not replacing) default ones
New CONSUMER_IGNORE_DIRS Additional directories to ignore; user entries are added to (not replacing) defaults

Encryption Support

Document and thumbnail encryption is no longer supported. This was previously deprecated in paperless-ng 0.9.3

Users must decrypt their document using the decrypt_documents command before upgrading.

Barcode Scanner Changes

Support for pyzbar has been removed. The underlying libzbar library has seen no updates in 16 years and is largely unmaintained, and the pyzbar Python wrapper last saw a release in March 2022. In practice, pyzbar struggled with barcode detection reliability, particularly on skewed, low-contrast, or partially obscured barcodes. zxing-cpp is actively maintained, significantly more reliable at finding barcodes, and now ships pre-built wheels for both x86_64 and arm64, removing the need to build the library.

The CONSUMER_BARCODE_SCANNER setting has been removed. zxing-cpp is now the only backend.

Summary

Old Setting New Setting Notes
CONSUMER_BARCODE_SCANNER Removed zxing-cpp is now the only backend

Action Required

  • If you were already using CONSUMER_BARCODE_SCANNER=ZXING, simply remove the setting.
  • If you had CONSUMER_BARCODE_SCANNER=PYZBAR or were using the default, no functional changes are needed beyond removing the setting. zxing-cpp supports all the same barcode formats and you should see improved detection reliability.
  • The libzbar0 / libzbar-dev system packages are no longer required and can be removed from any custom Docker images or host installations.

Database Engine

PAPERLESS_DBENGINE is now required to use PostgreSQL or MariaDB. Previously, the engine was inferred from the presence of PAPERLESS_DBHOST, with PAPERLESS_DBENGINE only needed to select MariaDB over PostgreSQL.

SQLite users require no changes, though they may explicitly set their engine if desired.

Action Required

PostgreSQL and MariaDB users must add PAPERLESS_DBENGINE to their environment:

# v2 (PostgreSQL inferred from PAPERLESS_DBHOST)
PAPERLESS_DBHOST: postgres

# v3 (engine must be explicit)
PAPERLESS_DBENGINE: postgresql
PAPERLESS_DBHOST: postgres

See PAPERLESS_DBENGINE for accepted values.

Database Advanced Options

The individual SSL, timeout, and pooling variables have been removed in favor of a single PAPERLESS_DB_OPTIONS string. This consolidates a growing set of engine-specific variables into one place, and allows any option supported by the underlying database driver to be set without requiring a dedicated environment variable for each.

The removed variables and their replacements are:

Removed Variable Replacement in PAPERLESS_DB_OPTIONS
PAPERLESS_DBSSLMODE sslmode=<value> (PostgreSQL) or ssl_mode=<value> (MariaDB)
PAPERLESS_DBSSLROOTCERT sslrootcert=<path> (PostgreSQL) or ssl.ca=<path> (MariaDB)
PAPERLESS_DBSSLCERT sslcert=<path> (PostgreSQL) or ssl.cert=<path> (MariaDB)
PAPERLESS_DBSSLKEY sslkey=<path> (PostgreSQL) or ssl.key=<path> (MariaDB)
PAPERLESS_DB_POOLSIZE pool.max_size=<value> (PostgreSQL only)
PAPERLESS_DB_TIMEOUT timeout=<value> (SQLite) or connect_timeout=<value> (PostgreSQL/MariaDB)

The deprecated variables will continue to function for now but will be removed in a future release. A deprecation warning is logged at startup for each deprecated variable that is still set.

Action Required

Users with any of the deprecated variables set should migrate to PAPERLESS_DB_OPTIONS. Multiple options are combined in a single value:

PAPERLESS_DB_OPTIONS="sslmode=require;sslrootcert=/certs/ca.pem;pool.max_size=10"

Search Index (Whoosh -> Tantivy)

The full-text search backend has been replaced with Tantivy. The index format is incompatible with Whoosh, so the search index is automatically rebuilt from scratch on first startup after upgrading. No manual action is required for the rebuild itself.

Note and custom field search syntax

The old Whoosh index exposed note and custom_field as flat text fields that were included in unqualified searches (e.g. just typing invoice would match note content). With Tantivy these are now structured JSON fields accessed via dotted paths:

Old syntax New syntax
note:query notes.note:query
custom_field:query custom_fields.value:query

Saved views are migrated automatically. Any saved view filter rule that used an explicit note: or custom_field: field prefix in a fulltext query is rewritten to the new syntax by a data migration that runs on upgrade.

Unqualified queries are not migrated. If you had a saved view with a plain search term (e.g. invoice) that happened to match note content or custom field values, it will no longer return those matches. Update those queries to use the explicit prefix, for example:

invoice OR notes.note:invoice OR custom_fields.value:invoice

Custom field names can also be searched with custom_fields.name:fieldname.

OpenID Connect Token Endpoint Authentication

Some existing OpenID Connect setups may require an explicit token endpoint authentication method after upgrading to v3.

Action Required

If OIDC login fails at the callback with an invalid_client error, add token_auth_method to the provider settings in PAPERLESS_SOCIALACCOUNT_PROVIDERS.

For example:

{
  "openid_connect": {
    "APPS": [
      {
        ...
        "settings": {
          "server_url": "https://login.example.com",
          "token_auth_method": "client_secret_basic"
        }
      }
    ]
  }
}
Reference in New Issue View Git Blame Copy Permalink