Releases: lyft/confidant
Releases · lyft/confidant
6.6.2
What's Changed
- revert escape input values by @alejandroroiz in #430
- add timer to key GET paths by @meng-han in #431
- Add more timers to get service by id by @meng-han in #432
- Hot fix: remove kv in logger by @meng-han in #433
- Prevent XSS from API call by @whu-lyft in #436
New Contributors
Full Changelog: 6.6.1...6.6.2
Contributors
meng-han, alejandroroiz, and whu-lyft
Assets 2
6.6.1
What's Changed
- avoid empty credentials by @alejandroroiz in #423
- Further Sanitize User Input by @alejandroroiz in #425
- migrate to docker compose v2 by @alejandroroiz in #429
- upgrade to python 3.10 by @alejandroroiz in #428
Full Changelog: 6.5.4...6.6.1
Contributors
alejandroroiz
Assets 2
6.6.0-alpha.2
What's Changed
- migrate to docker compose v2 by @alejandroroiz in #429
Full Changelog: 6.6.0-alpha.1...6.6.0-alpha.2
Contributors
alejandroroiz
Assets 2
6.6.0-alpha.1
What's Changed
- Py3 requirements file header by @jmphilli in #185
- Upgrade coverage to 4.x by @asottile in #189
- Convert confidant to python3 by @asottile in #190
- Fix email retrieval from session by @asottile in #192
- 2->3 email roll forward part 2 by @asottile in #193
- Have generate_value return text by @asottile in #194
- Switch to kmsauth library for kmsauth support by @ryan-lane in #191
- Remove kmsauth int tests by @ryan-lane in #195
- Bump kmsauth and pass in stats by @ryan-lane in #196
- Update requirements by @ryan-lane in #197
- Fix references to flask script for updates reqs by @ryan-lane in #198
- Fix USE_ENCRYPTION=false in python3 by @asottile in #201
- Open pem file as binary by @ryan-lane in #203
- Refactor non-route code into services, and move root services by @ryan-lane in #208
- Use revert endpoint for reverting service and add metadata only fetch by @ryan-lane in #211
- Cache iam role list using a background gevent thread by @ryan-lane in #212
- Add a credential revert endpoint for credential history by @ryan-lane in #213
- Revert to revision for blind credentials by @ryan-lane in #214
- Remove bower and update grunt build to use npm by @ryan-lane in #215
- Temporarily lower coverage - will followup by @ryan-lane in #219
- Drop coverage a bit more by @ryan-lane in #221
- Begin unittests for credentialmanager by @skiptomyliu in #222
- Add credential_keys field to credential endpoint returns by @ryan-lane in #216
- Remove references to docs controllers by @ryan-lane in #224
- Remove unused npm modules by @ryan-lane in #223
- Support ACLs for get_credential in the UI by @ryan-lane in #225
- Upgrade angular, lodash, and bootstrap by @ryan-lane in #227
- Check that user has access to metadata and credentialpair by @skiptomyliu in #228
- Use github actions, rather than travis by @ryan-lane in #229
- Fix for create credential UI by @ryan-lane in #230
- Non-sensitive diff support for credential history by @ryan-lane in #231
- Fix for properly displaying strings, booleans, and lists in credentia… by @ryan-lane in #232
- Add function to hook into external ACL function by @skiptomyliu in #210
- Paging for history view by @ryan-lane in #233
- Refactor resources view to match history view for resource toggling by @ryan-lane in #234
- Log users and the credentials they obtain by @skiptomyliu in #206
- Split v1.py into smaller, more-specific route files by @ryan-lane in #236
- Refactor diff view for services to match credentials diff by @ryan-lane in #237
- Fix mapping credentials by @skiptomyliu in #239
- Use marshmallow for serializing responses by @ryan-lane in #238
- Remove webargs and FlaskParser for now by @ryan-lane in #242
- Use pre_dump, rather than post_load for responses by @ryan-lane in #243
- Check that credential keys are empty in if statement by @skiptomyliu in #244
- Switch to a blueprint/create_app pattern by @ryan-lane in #245
- Switch from nose to pytest by @ryan-lane in #246
- Add unit test coverage for authnz init module by @ryan-lane in #247
- Add permission hints to responses and update UI to use them by @ryan-lane in #248
- Separate create service rbac check into its own call by @skiptomyliu in #249
- Fix permission lookup in credentials in view by @ryan-lane in #250
- Include coverage for a few routes, service model and servicemanager by @ryan-lane in #251
- Update permissions, global permissions, and fix clientconfig race condition by @ryan-lane in #252
- Fix update credential not returning credential_response by @skiptomyliu in #253
- Coverage for list, get, and diff credential by @ryan-lane in #254
- Add acl checks for the rest of the resource endpoints in credentials and services by @ryan-lane in #255
- Upgrade kmsauth and use lru-dict by @ryan-lane in #257
- Python3 compatibility fixes for flask-session by @apakulov-stripe in #258
- Bump gevent and greenlet dependencies for Python 3.7 compatibility by @apakulov-stripe in #259
- Add python 3.8 to test matrix by @ryan-lane in #260
- Bump authomatic version to 1.0.0 by @ryan-lane in #263
- Small tidying: remove unreachable code by @skiptomyliu in #264
- Use ACL for both user and service checks by @ryan-lane in #261
- Switch docs build to sphinx by @ryan-lane in #266
- Add changelog and docs for 6.0.0 release by @ryan-lane in #265
- AWS ACM Private CA support by @ryan-lane in #256
- Bump version to 6.1.0 by @ryan-lane in #267
- Decode private key when loaded from file as base64 by @ryan-lane in #268
- Api docs by @ryan-lane in #269
- Add credential rotation support by @irhkang in #270
- Use module local logger consistently across codebase by @ryan-lane in #273
- Add maintenance script and pynamodb model for archiving and restoring credentials by @ryan-lane in #271
- Add metadata_only flag to GET /v1/credentials/ by @irhkang in #274
- Save archived credential when updating last_decrypted_date by @irhkang in #275
- Update docker-compose to make a full environment, with kms and auth by @ryan-lane in #276
- Update last_rotation_date field when a credential is changed by @irhkang in #272
- Populate a credential's tag attribute by @irhkang in #278
- Make local testing easier, and enable integration tests for ci by @ryan-lane in #277
- Only load credential pairs in UI if user asks to unmask or edits by @ryan-lane in #279
- Python 3 bytes vs string fixes for bootstrap script by @ryan-lane in #281
- Fixes for make docker_test by @ryan-lane in #282
- Send back last rotated date to client by @irhkang in #283
- Fix links between documents in the docs by @ryan-lane in #284
- Don't force people to register bootstrapped secrets by @irhkang in #285
- Add tags to the edit/new credential UI by @ryan-lane in #286
- Show next rotation time in credential UI by @ryan-lane in #287
- Minor bugfix to prevent duplicate tags by @skiptomyliu in #288
- Fix timezone comparison issue by @irhkang in #290
- mapping .:/srv/confidant seems like debugging leftover by @f0rk in #291
- Set history limit to None, if unset by @ryan-lane in #297
- Use new logo and favicon, and update CSS to match color scheme by @ryan-lane in #299
- Fix doc generation by removing duplicate requirement by @ryan-lane in #298
- Bump pyyaml to 5.3.1 by @skiptomyliu in #303
- Switch logo over to an svg logo by @ryan-lane in #300
- Only show add tags button if there are defined tags available by @ryan-lane in #301
- Ad...
Contributors
f0rk, jmphilli, and 15 other contributors
Assets 2
Do not use mutable arguments in pynamo models
See changelog for release notes.
Fix setup.py release version for pypi release
4.3.1 Fix version in setup.py to release 4.3.1 (#183)
Case insensitive sorting for credential and service list returns
This release is a minor feature release. Returns for credential and service lists are sorted in a case-insensitive way, so that the UI has the lists sorted correctly.
