-
Notifications
You must be signed in to change notification settings - Fork 1
/
ChangeLog
207 lines (122 loc) · 4.94 KB
/
ChangeLog
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
1.19.1
Fix: migration spassword script (related with keystone sqlalchemy support) to allow bootstrap from empty database (#240, #243)
ADD: allow to define pep password using KEYSTONE_PEP_PASSWORD env var (#247)
1.19.0
Upgrade to use Keystone Antelope
Upgrade docker to centos 9 Stream
Upgrade to support python 3.9
1.18.1
Fix: migration spassword script (related with keystone sqlalchemy support) to allow bootstrap from empty database (#240)
1.18.0
Fix: policy.json file from stein for docker (#234)
Fix: modify docker provision script for compatibility with mysql 8.0 (#232)
Upgrade to use Keystone Xena
Upgrade docker to centos 8.4
Upgrade to support python 3.6
1.17.0
Add permissions to allow get all role_assignments of a group in all subservices in one request by any admin domain user
Add openldap-clients dependency and link from /etc/ldap/ldap.conf to etc/ldap/openldap.conf
1.16.0
Return previous login attempts in extra field after a success login attempt
1.15.0
Use 1.6.0 version of SCIM in docker image
Log to access, error and keystone logs to stderr of docker to avoid log to file (#148)
1.14.1
Fix: check if DB is up even if is behind a load balancer
1.14.0
ADD: check if mysql credentials are OK before use it by docker statup scripts
ADD: provision a new user `cep` in default domain
ADD: ensure blacklist users are in expected domain
Fix: do not remove database when its supposed not exists (#212)
1.13.0
ADD: force keystone restart at startup after set configuration (#199)
ADD: log spassword config at startup
ADD: preconfig docker and new vars and doc to configure keystone as SAML IdP
ADD: SPASSWORD_EXTRA_BLACKLIST env var to add extra users to `pwd_user_blacklist` for docker
ADD: Docker healthcheck for keystone API
Fix missed deps (python2-qpid-proton, qpid-proton-c) using epel version 7-14 (#191)
Remove old framework files
Remove some reduntant logs (flask, stevedore, oslo_policy) docker container
1.12.0
Add env var to enable/disable fernet token rotation (#163)
Ensure fenet-keys folder permissions when configured as external volumen (#163)
Upgrade Dockerfile base image from centos7.7.1908 to centos7.9.2009
1.11.0
Remove automigrate spassword inside rpm
Include patch files in RPM builds
Ensure start uwsgi process when new container starts with new data
1.10.0
Upgrade plugin for compatibility with Stein version (including docker).
Fix. get_project_roles API bug of version 1.9.0
1.9.0
Upgrade plugin for compatibility with Rocky version (including docker).
1.8.0
Upgrade plugin for compatibility with Queens version (including docker).
1.7.0
Upgrade plugin for compatibility with Pike version (including docker).
1.6.0
Upgrade plugin for compatibility with Ocata version (including docker).
1.5.4
Add: env var to set LOG_LEVEL
Add: cron task to flush tokens (expired tokens) in docker container
Add: allow configure keystone cache to use Redis backend with env var
Add: env vars to token expiration and revocation buffer expiraton
1.5.3
Fix: add missed keystone permission for get_project_roles to policy.json (#123)
1.5.2
Fix: protect grants and sndfa APIs
Fix: handle unmatch groups from ldap integration (ldap/docker)
Set to 3 hours default token expiration time in docker
Add nagios user to black list
1.5.1
Allow sndfa endpoints (keystone) urls with `https` and `/idm`
1.5.0
Upgrade plugin for compatibility with Mitaka version (including docker).
Mitaka is default version for docker.
1.4.9
Add: cron task to flush tokens (expired tokens) in docker container
1.4.8
Fix: add missed keystone permission for get_project_roles to policy.json (#123)
Fix: protect grants and sndfa APIs
Fix: handle unmatch groups from ldap integration (ldap/docker)
Set to 3 hours default token expiration time in docker
1.4.7
Add nagios user to black list
1.4.6
Add API to get all user projects and the user roles in each project
1.4.5
Fix user id for blacklist when update docker (#92)
Render check email and sndfa response in HTML (#88)
Use multipart when send email about sndfa.
1.4.4
Add sndfa_endpoint protocol if not provided
Fix remove old extension when upgrading from and old version of RPM
1.4.3
Fix check configuration for smtp_tls, smtp_user and smtp_password as STMP server connection
1.4.2
Fix notification event callbacks for user spassword
1.4.1
Fix permission over 2FA controller to allow non admin
1.4.0
LDAP preconfiguration
Second Factor Authentication added through email
1.3.0
Return last login attempt time. [#50]
Set centos mirror to 7.3.1611 for docker image
1.2.1
Use mysql db port in docker postlauchconfig script
Allow mysql db port in docker arg --dbhost
Support for integrate with LDAP
1.2.0
Update Docker to use keystone liberty version
1.1.2
Fix prefix path about SCIM version to use by default
1.1.1
Extend get version string script
1.1.0
Set default blacklist user for spassword checks
Set current keystone dependencies for docker version
1.0.6
Extend compatiblity with keystone liberty version
1.0.0
Initial verion