Releases: AthenZ/athenz
Athenz v1.8.34 Release
The Athenz team is happy to announce the availability of v1.8.34 release of Athenz. This release includes the following set of bug fixes and enhancements.
#784 enable audit flag from zms to zts; make auditable objects configurable
#785 Notification reminder implementation
#786 No need to rollback if we're just skipping audit ref
#788 Membership changes for governance/compliance feature
If you would like to report a bug or suggest an enhancement, please file an issue on the Athenz GitHub page:
https://github.com/yahoo/athenz/issues
Best Regards,
Athenz Development Team
Athenz v1.8.33 Release
The Athenz team is happy to announce the availability of v1.8.33 release of Athenz. This release includes the following set of bug fixes and enhancements.
#781 added athenz-cert-refresher to shaded zts client
#782 Notification reference implementation using AWS SES
#783 GRC (Governance, Risk, Compliance) feature implementation changes
If you would like to report a bug or suggest an enhancement, please file an issue on the Athenz GitHub page:
https://github.com/yahoo/athenz/issues
Best Regards,
Athenz Development Team
Athenz v1.8.32 Release
The Athenz team is happy to announce the availability of v1.8.32 release of Athenz. This release includes the following set of bug fixes and enhancements.
#768 provide config option to return WWW-Authenticate values as one or multiple headers
#771 Remove redundant log for no-op metrics library to make it easy to debug
#772 support http proxy for all go utilities
#773 validate mtls client certificate confirmation for zpe cache
#774 strip bearer prefix from authorization header for access tokens before cache lookup
#775 enable authenticate for /instance endpoint
#776 when getting principal's resource list honor expiration time
#777 Notification API Interface implementation
#778 FasterXML jackson-databind CVE-2019-14540 - update Jackson libraries
#779 support parsing certs and extracting instance id in go
#780 fix misspelled sign (spelled as sing)
If you would like to report a bug or suggest an enhancement, please file an issue on the Athenz GitHub page:
https://github.com/yahoo/athenz/issues
Best Regards,
Athenz Development Team
Athenz v1.8.31 Release
The Athenz team is happy to announce the availability of v1.8.31 release of Athenz. This release includes the following set of bug fixes and enhancements.
#760 minor fixes for the docker image
#762 domain org attribute is now a system meta attribute (used in audit enabled roles)
#763 Specify connection timeout for athenz-conf utility
#764 support *.service.domain.dns-prefix san dnsnames in service x.509 certificates
#765 add support for validating role principals (both users and services)
#766 expose expiry time in role cert utility
#767 mtls bound access tokens support in zpe java library
If you would like to report a bug or suggest an enhancement, please file an issue on the Athenz GitHub page:
https://github.com/yahoo/athenz/issues
Best Regards,
Athenz Development Team
Athenz v1.8.30 Release
The Athenz team is happy to announce the availability of v1.8.30 release of Athenz. This release includes the following set of bug fixes and enhancements.
#751 include principal's domain for error counters
#753 optional flag for get role api to get pending members
#754 audit reference in role_member table
#755 fix for role members name list with active flag as null
#756 prefetch access tokens in zts java client
#757 Add KeyRefresherListener to cert refresher library
#758 jetty / dep version update
#759 refresh access tokens in zts java client library when key/cert files have changed
If you would like to report a bug or suggest an enhancement, please file an issue on the Athenz GitHub page:
https://github.com/yahoo/athenz/issues
Best Regards,
Athenz Development Team
Athenz v1.8.29 Release
The Athenz team is happy to announce the availability of v1.8.29 release of Athenz. This release includes the following set of bug fixes and enhancements.
#730 increase unit test coverage
#742 fix roles audit enabled flag check and additional test cases
#743 Provide option for not adding self in zms-cli when creating domains
#744 constructor to verify mtls binding for access tokens
#745 apache http client: close an inputstream so that connections can go back to the pool
#746 adding a new API to get pending members for audit enabled or selfserve enabled roles
#747 additional test cases for crypto class
#749 zts-rolecert role certificate request didn't support ecdsa
#750 updated dependency packages
If you would like to report a bug or suggest an enhancement, please file an issue on the Athenz GitHub page:
https://github.com/yahoo/athenz/issues
Best Regards,
Athenz Development Team
Athenz v1.8.28 Release
The Athenz team is happy to announce the availability of v1.8.28 release of Athenz. This release includes the following set of bug fixes and enhancements.
#732 role membership for audit enabled and selfserve roles
#737 dependency (including jetty) package update to latest release
#738 jwk use base64 encoder without padding
#739 update jersey AbstractBinder class import package
#740 role name already includes full resource value
#741 query argument for jwk list api to only use ec curve names defined in RFC
If you would like to report a bug or suggest an enhancement, please file an issue on the Athenz GitHub page:
https://github.com/yahoo/athenz/issues
Best Regards,
Athenz Development Team
Athenz v1.8.27 Release
The Athenz team is happy to announce the availability of v1.8.27 release of Athenz. This release includes the following set of bug fixes and enhancements.
#734 include instance hostname in san dns verification list
#735 new zts instance register example with zts client api
#736 include javax.activation as dependency for jdk11 for zts java client
If you would like to report a bug or suggest an enhancement, please file an issue on the Athenz GitHub page:
https://github.com/yahoo/athenz/issues
Best Regards,
Athenz Development Team
Athenz v1.8.26 Release
The Athenz team is happy to announce the availability of v1.8.26 release of Athenz. This release includes the following set of bug fixes and enhancements.
#712 builder docker images for Athenz dev use cases
#723 register all instance provider constants as part of the interface
#724 rename v3 to crypki to better reflect what certsigner implementation
#725 support for mysql 8.x - reduce column length issue
#726 increase initial s3 bucket get signeddomain speed
#727 add proxy for principal support for access tokens as well
#728 add update SQL for change #725 (column length)
#731 ams-cli: retry show operation in case os read-after-write issue
#733 include principal in the instance confirmation object
If you would like to report a bug or suggest an enhancement, please file an issue on the Athenz GitHub page:
https://github.com/yahoo/athenz/issues
Best Regards,
Athenz Development Team
Athenz v1.8.25 Release
The Athenz team is happy to announce the availability of v1.8.25 release of Athenz. This release includes the following set of bug fixes and enhancements.
#700 fix UI open redirect vulnerability
#702 mTLS bound access tokens
#705 adding support for role level system meta attributes
#706 remove v2 httpcertsigner
#707 Proper check for Role Authority principals
#708 expose add-tenant/delete-tenant apis in zms-cli
#714 provide -csr option to only display csr
#715 adding feature to ignore unknown properties in zms & zts clients
#716 syncer update to include auditEnabled flag for domain and roles
#717 browser and UI server can access ZMS by different hostname
#718 keeping default value false for domain auditEnabled flag
#722 make id token max timeout configurable
If you would like to report a bug or suggest an enhancement, please file an issue on the Athenz GitHub page:
https://github.com/yahoo/athenz/issues
Best Regards,
Athenz Development Team