v1.6.6: Version v1.6.6 (Validation fix)

Compare Source

What's Changed

• fix: 0 is forbidden for day by @​millotp in https://github.com/adhocore/gronx/pull/32

Full Changelog: adhocore/gronx@v1.6.5...v1.6.6

v1.45.17

Compare Source

===

Service Client Updates

• service/appintegrations: Updates service API, documentation, paginators, and examples
• service/apprunner: Updates service API and documentation
• service/codedeploy: Updates service documentation
  • CodeDeploy now supports In-place and Blue/Green EC2 deployments with multiple Classic Load Balancers and multiple Target Groups.
• service/connect: Updates service API, documentation, and paginators
• service/dynamodb: Updates service API, documentation, waiters, paginators, and examples
  • Amazon DynamoDB now supports Incremental Export as an enhancement to the existing Export Table
• service/ec2: Updates service API and documentation
  • The release includes AWS verified access to support FIPs compliance in North America regions
• service/lakeformation: Updates service API, documentation, and paginators
• service/pinpoint: Updates service documentation
  • Update documentation for RemoveAttributes to more accurately reflect its behavior when attributes are deleted.
• service/s3: Updates service API and examples
  • This release adds a new field COMPLETED to the ReplicationStatus Enum. You can now use this field to validate the replication status of S3 objects using the AWS SDK.

v1.45.16

Compare Source

===

Service Client Updates

• service/amplifyuibuilder: Updates service API and documentation
• service/chime-sdk-media-pipelines: Updates service API, documentation, and paginators
• service/emr-serverless: Updates service API and documentation
• service/finspace-data: Updates service API and documentation
• service/quicksight: Updates service API and documentation
  • Added ability to tag users upon creation.
• service/ssm: Updates service API and documentation
  • This release updates the enum values for ResourceType in SSM DescribeInstanceInformation input and ConnectionStatus in GetConnectionStatus output.
• service/wafv2: Updates service API and documentation

v1.45.15

Compare Source

===

Service Client Updates

• service/braket: Updates service API and documentation
• service/dms: Updates service API, documentation, and examples
  • new vendors for DMS CSF: MongoDB, MariaDB, DocumentDb and Redshift
• service/ec2: Updates service API
  • EC2 M2 Pro Mac instances are powered by Apple M2 Pro Mac Mini computers featuring 12 core CPU, 19 core GPU, 32 GiB of memory, and 16 core Apple Neural Engine and uniquely enabled by the AWS Nitro System through high-speed Thunderbolt connections.
• service/elasticfilesystem: Updates service documentation
  • Documentation updates for Elastic File System
• service/events: Updates service API and documentation
  • Adds sensitive trait to various shapes in Jetstream Connections API model.
• service/guardduty: Updates service API and documentation
  • Add EKS_CLUSTER_NAME to filter and sort key.
• service/mediaconvert: Updates service API and documentation
  • This release supports the creation of of audio-only tracks in CMAF output groups.

SDK Bugs

• aws/session: Removed typed literal parsing for config, everything is now treated as a string until a numeric value is needed.
  • This resolves an issue where the contents of a profile would silently be dropped with certain values.

v1.45.14

Compare Source

===

Service Client Updates

• service/appconfig: Updates service API, documentation, and paginators
• service/apprunner: Updates service API, documentation, and paginators
• service/codeartifact: Updates service API
• service/kinesisvideo: Updates service documentation
  • Updated DescribeMediaStorageConfiguration, StartEdgeConfigurationUpdate, ImageGenerationConfiguration$SamplingInterval, and UpdateMediaStorageConfiguration to match AWS Docs.
• service/logs: Updates service API and documentation
  • Add ClientToken to QueryDefinition CFN Handler in CWL
• service/s3: Updates service API, documentation, and examples
  • Fix an issue where the SDK can fail to unmarshall response due to NumberFormatException
• service/servicediscovery: Updates service API and documentation
• service/sso-oidc: Adds new service

v1.45.13

Compare Source

===

Service Client Updates

• service/ec2: Updates service API
  • This release adds support for C7i, and R7a instance types.
• service/outposts: Updates service API and documentation
• service/sagemaker: Updates service API and documentation
  • This release adds support for one-time model monitoring schedules that are executed immediately without delay, explicit data analysis windows for model monitoring schedules and exclude features attributes to remove features from model monitor analysis.

v1.45.12

Compare Source

===

Service Client Updates

• service/discovery: Updates service API
  • Add sensitive protection for customer information
• service/macie2: Updates service documentation
• service/workmail: Updates service API, documentation, and paginators
  • This release includes four new APIs UpdateUser, UpdateGroup, ListGroupsForEntity and DescribeEntity, along with RemoteUsers and some enhancements to existing APIs.

v1.45.11

Compare Source

===

Service Client Updates

• service/appstream: Updates service API, documentation, and waiters
  • This release introduces app block builder, allowing customers to provision a resource to package applications into an app block
• service/connect: Updates service API
• service/datasync: Updates service documentation
• service/sagemaker: Updates service API and documentation
  • This release introduces Skip Model Validation for Model Packages

v1.45.10

Compare Source

===

Service Client Updates

• service/appstream: Updates service API, documentation, and waiters
  • This release introduces multi-session fleets, allowing customers to provision more than one user session on a single fleet instance.
• service/cloudformation: Updates service documentation
  • Documentation updates for AWS CloudFormation
• service/entityresolution: Updates service API and documentation
• service/lookoutequipment: Updates service API, documentation, paginators, and examples

v1.45.9

Compare Source

===

Service Client Updates

• service/cloud9: Updates service documentation
  • Update to include information on Ubuntu 18 deprecation.
• service/drs: Updates service API, documentation, and paginators
• service/firehose: Updates service API and documentation
  • DocumentIdOptions has been added for the Amazon OpenSearch destination.
• service/guardduty: Updates service API and documentation
  • Add managementType field to ListCoverage API response.
• service/internetmonitor: Adds new service
• service/ivs-realtime: Updates service documentation
• service/simspaceweaver: Updates service documentation
• service/xray: Updates service API and documentation
  • Add StartTime field in GetTraceSummaries API response for each TraceSummary.

v1.45.8

Compare Source

===

Service Client Updates

• service/ec2: Updates service API and documentation
  • This release adds support for restricting public sharing of AMIs through AMI Block Public Access
• service/eventbridge: Updates service API and documentation
• service/kendra: Updates service API and documentation
  • Amazon Kendra now supports confidence score buckets for retrieved passage results using the Retrieve API.

SDK Enhancements

• service/glacier: Improve efficiency of tree hash algorithm
  • Refactor tree hashing to reduce allocations.

v1.45.7

Compare Source

===

Service Client Updates

• service/ecr: Updates service API, documentation, and examples
  • This release will have ValidationException be thrown from ECR LifecyclePolicy APIs in regions LifecyclePolicy is not supported, this includes existing Amazon Dedicated Cloud (ADC) regions. This release will also change Tag: TagValue and Tag: TagKey to required.
• service/medialive: Updates service API and documentation
  • AWS Elemental Link now supports attaching a Link UHD device to a MediaConnect flow.
• service/quicksight: Updates service API and documentation
  • This release launches new updates to QuickSight KPI visuals - support for sparklines, new templated layout and new targets for conditional formatting rules.

v1.45.6

Compare Source

===

Service Client Updates

• service/fsx: Updates service documentation
• service/sagemaker: Updates service API and documentation
  • Autopilot APIs will now support holiday featurization for Timeseries models. The models will now hold holiday metadata and should be able to accommodate holiday effect during inference.
• service/sso-admin: Updates service API, documentation, and paginators
• service/workspaces: Updates service API and documentation
  • A new field "ErrorDetails" will be added to the output of "DescribeWorkspaceImages" API call. This field provides in-depth details about the error occurred during image import process. These details include the possible causes of the errors and troubleshooting information.

v1.45.5

Compare Source

===

Service Client Updates

• service/neptunedata: Updates service API
• service/securityhub: Updates service documentation
• service/simspaceweaver: Updates service API

v1.45.4

Compare Source

===

Service Client Updates

• service/appflow: Updates service API and documentation
• service/ec2: Updates service API
  • This release adds 'outpost' location type to the DescribeInstanceTypeOfferings API, allowing customers that have been allowlisted for outpost to query their offerings in the API.
• service/elasticloadbalancingv2: Updates service documentation
• service/medialive: Updates service API and documentation
  • Adds advanced Output Locking options for Epoch Locking: Custom Epoch and Jam Sync Time
• service/wafv2: Updates service API and documentation

v1.45.3

Compare Source

===

Service Client Updates

• service/billingconductor: Updates service API and documentation
• service/cloud9: Updates service documentation
  • Added support for Ubuntu 22.04 that was not picked up in a previous Trebuchet request. Doc-only update.
• service/compute-optimizer: Updates service API and documentation
• service/ec2: Updates service API
  • Introducing Amazon EC2 C7gd, M7gd, and R7gd Instances with up to 3.8 TB of local NVMe-based SSD block-level storage. These instances are powered by AWS Graviton3 processors, delivering up to 25% better performance over Graviton2-based instances.
• service/ecs: Updates service documentation
  • Documentation only update for Amazon ECS.
• service/eventbridge: Adds new service
• service/rds: Updates service API, documentation, waiters, paginators, and examples
  • Add support for feature integration with AWS Backup.
• service/sagemaker: Updates service API and documentation
  • SageMaker Neo now supports data input shape derivation for Pytorch 2.0 and XGBoost compilation job for cloud instance targets. You can skip DataInputConfig field during compilation job creation. You can also access derived information from model in DescribeCompilationJob response.
• service/vpc-lattice: Updates service API and documentation

v1.45.2

Compare Source

===

Service Client Updates

• service/chime-sdk-media-pipelines: Updates service API and documentation
• service/connect: Updates service API, documentation, and paginators
• service/identitystore: Updates service API and documentation
• service/neptunedata: Updates service documentation

v1.45.1

Compare Source

===

Service Client Updates

• service/discovery: Updates service API
  • Add sensitive protection for customer information
• service/macie2: Updates service documentation
• service/workmail: Updates service API, documentation, and paginators
  • This release includes four new APIs UpdateUser, UpdateGroup, ListGroupsForEntity and DescribeEntity, along with RemoteUsers and some enhancements to existing APIs.

v1.45.0

Compare Source

===

Service Client Updates

• service/appflow: Updates service API and documentation
• service/apprunner: Updates service API and documentation
• service/auditmanager: Updates service API
• service/cleanrooms: Updates service API and documentation
• service/datasync: Updates service API and documentation
• service/neptunedata: Adds new service
• service/network-firewall: Updates service API and documentation
• service/pca-connector-ad: Adds new service
• service/sagemaker: Updates service API and documentation
  • Amazon SageMaker Canvas adds IdentityProviderOAuthSettings support for CanvasAppSettings

SDK Features

• aws/corehandlers: Add internal flag in user agent functionality
  • Added handler which will add aws internal metadata to the user agent string

v0.20.3

Compare Source

No changes. Incrementing patch version from v0.20.2 to maintain consistency.

v1.10.0

Compare Source

1.10.0

March 23, 2022

CHANGES:

• core: Changes the unit of default_lease_ttl and max_lease_ttl values returned by
  the /sys/config/state/sanitized endpoint from nanoseconds to seconds. [GH-14206]
• core: Bump Go version to 1.17.7. [GH-14232]
• plugin/database: The return value from POST /database/config/:name has been updated to "204 No Content" [GH-14033]
• secrets/azure: Changes the configuration parameter use_microsoft_graph_api to use the Microsoft
  Graph API by default. [GH-14130]
• storage/etcd: Remove support for v2. [GH-14193]
• ui: Upgrade Ember to version 3.24 [GH-13443]

FEATURES:

• Database plugin multiplexing: manage multiple database connections with a single plugin process [GH-14033]
• Login MFA: Single and two phase MFA is now available when authenticating to Vault. [GH-14025]
• Mount Migration: Vault supports moving secrets and auth mounts both within and across namespaces.
• Postgres in the UI: Postgres DB is now supported by the UI [GH-12945]
• Report in-flight requests: Adding a trace capability to show in-flight requests, and a new gauge metric to show the total number of in-flight requests [GH-13024]
• Server Side Consistent Tokens: Service tokens have been updated to be longer (a minimum of 95 bytes) and token prefixes for all token types are updated from s., b., and r. to hvs., hvb., and hvr. for service, batch, and recovery tokens respectively. Vault clusters with integrated storage will now have read-after-write consistency by default. [GH-14109]
• Transit SHA-3 Support: Add support for SHA-3 in the Transit backend. [GH-13367]
• Transit Time-Based Key Autorotation: Add support for automatic, time-based key rotation to transit secrets engine, including in the UI. [GH-13691]
• UI Client Count Improvements: Restructures client count dashboard, making use of billing start date to improve accuracy. Adds mount-level distribution and filtering. [GH-client-counts]
• Agent Telemetry: The Vault Agent can now collect and return telemetry information at the /agent/v1/metrics endpoint.

IMPROVEMENTS:

• agent: Adds ability to configure specific user-assigned managed identities for Azure auto-auth. [GH-14214]
• agent: The agent/v1/quit endpoint can now be used to stop the Vault Agent remotely [GH-14223]
• api: Allow cloning api.Client tokens via api.Config.CloneToken or api.Client.SetCloneToken(). [GH-13515]
• api: Define constants for X-Vault-Forward and X-Vault-Inconsistent headers [GH-14067]
• api: Implements Login method in Go client libraries for GCP and Azure auth methods [GH-13022]
• api: Implements Login method in Go client libraries for LDAP auth methods [GH-13841]
• api: Trim newline character from wrapping token in logical.Unwrap from the api package [GH-13044]
• api: add api method for modifying raft autopilot configuration [GH-12428]
• api: respect WithWrappingToken() option during AppRole login authentication when used with secret ID specified from environment or from string [GH-13241]
• audit: The audit logs now contain the port used by the client [GH-12790]
• auth/aws: Enable region detection in the CLI by specifying the region as auto [GH-14051]
• auth/cert: Add certificate extensions as metadata [GH-13348]
• auth/jwt: The Authorization Code flow makes use of the Proof Key for Code Exchange (PKCE) extension. [GH-13365]
• auth/kubernetes: Added support for dynamically reloading short-lived tokens for better Kubernetes 1.21+ compatibility [GH-13595]
• auth/ldap: Add a response warning and server log whenever the config is accessed
  if userfilter doesn't consider userattr [GH-14095]
• auth/ldap: Add username to alias metadata [GH-13669]
• auth/ldap: Add username_as_alias configurable to change how aliases are named [GH-14324]
• auth/okta: Update okta-sdk-golang dependency to version v2.9.1 for improved request backoff handling [GH-13439]
• auth/token: The auth/token/revoke-accessor endpoint is now idempotent and will
  not error out if the token has already been revoked. [GH-13661]
• auth: reading sys/auth/:path now returns the configuration for the auth engine mounted at the given path [GH-12793]
• cli: interactive CLI for login mfa [GH-14131]
• command (enterprise): "vault license get" now uses non-deprecated endpoint /sys/license/status
• core/ha: Add new mechanism for keeping track of peers talking to active node, and new 'operator members' command to view them. [GH-13292]
• core/identity: Support updating an alias' custom_metadata to be empty. [GH-13395]
• core/pki: Support Y10K value in notAfter field to be compliant with IEEE 802.1AR-2018 standard [GH-12795]
• core/pki: Support Y10K value in notAfter field when signing non-CA certificates [GH-13736]
• core: Add duration and start_time to completed requests log entries [GH-13682]
• core: Add support to list password policies at sys/policies/password [GH-12787]
• core: Add support to list version history via API at sys/version-history and via CLI with vault version-history [GH-13766]
• core: Fixes code scanning alerts [GH-13667]
• core: Periodically test the health of connectivity to auto-seal backends [GH-13078]
• core: Reading sys/mounts/:path now returns the configuration for the secret engine at the given path [GH-12792]
• core: Replace "master key" terminology with "root key" [GH-13324]
• core: Small changes to ensure goroutines terminate in tests [GH-14197]
• core: Systemd unit file included with the Linux packages now sets the service type to notify. [GH-14385]
• core: Update github.com/prometheus/client_golang to fix security vulnerability CVE-2022-21698. [GH-14190]
• core: Vault now supports the PROXY protocol v2. Support for UNKNOWN connections
  has also been added to the PROXY protocol v1. [GH-13540]
• http (enterprise): Serve /sys/license/status endpoint within namespaces
• identity/oidc: Adds a default OIDC provider [GH-14119]
• identity/oidc: Adds a default key for OIDC clients [GH-14119]
• identity/oidc: Adds an allow_all assignment that permits all entities to authenticate via an OIDC client [GH-14119]
• identity/oidc: Adds proof key for code exchange (PKCE) support to OIDC providers. [GH-13917]
• sdk: Add helper for decoding root tokens [GH-10505]
• secrets/azure: Adds support for rotate-root. #​70 [GH-13034]
• secrets/consul: Add support for consul enterprise namespaces and admin partitions. [GH-13850]
• secrets/consul: Add support for consul roles. [GH-14014]
• secrets/database/influxdb: Switch/upgrade to the influxdb1-client module [GH-12262]
• secrets/database: Add database configuration parameter 'disable_escaping' for username and password when connecting to a database. [GH-13414]
• secrets/kv: add full secret path output to table-formatted responses [GH-14301]
• secrets/kv: add patch support for KVv2 key metadata [GH-13215]
• secrets/kv: add subkeys endpoint to retrieve a secret's stucture without its values [GH-13893]
• secrets/pki: Add ability to fetch individual certificate as DER or PEM [GH-10948]
• secrets/pki: Add count and duration metrics to PKI issue and revoke calls. [GH-13889]
• secrets/pki: Add error handling for error types other than UserError or InternalError [GH-14195]
• secrets/pki: Allow URI SAN templates in allowed_uri_sans when allowed_uri_sans_template is set to true. [GH-10249]
• secrets/pki: Allow other_sans in sign-intermediate and sign-verbatim [GH-13958]
• secrets/pki: Calculate the Subject Key Identifier as suggested in RFC 5280, Section 4.2.1.2. [GH-11218]
• secrets/pki: Restrict issuance of wildcard certificates via role parameter (allow_wildcard_certificates) [GH-14238]
• secrets/pki: Return complete chain (in ca_chain field) on calls to pki/cert/ca_chain [GH-13935]
• secrets/pki: Use application/pem-certificate-chain for PEM certificates, application/x-pem-file for PEM CRLs [GH-13927]
• secrets/pki: select appropriate signature algorithm for ECDSA signature on certificates. [GH-11216]
• secrets/ssh: Add support for generating non-RSA SSH CAs [GH-14008]
• secrets/ssh: Allow specifying multiple approved key lengths for a single algorithm [GH-13991]
• secrets/ssh: Use secure default for algorithm signer (rsa-sha2-256) with RSA SSH CA keys on new roles [GH-14006]
• secrets/transit: Don't abort transit encrypt or decrypt batches on single item failure. [GH-13111]
• storage/aerospike: Upgrade aerospike-client-go to v5.6.0. [GH-12165]
• storage/raft: Set InitialMmapSize to 100GB on 64bit architectures [GH-13178]
• storage/raft: When using retry_join stanzas, join against all of them in parallel. [GH-13606]
• sys/raw: Enhance sys/raw to read and write values that cannot be encoded in json. [GH-13537]
• ui: Add support for ECDSA and Ed25519 certificate views [GH-13894]
• ui: Add version diff view for KV V2 [GH-13000]
• ui: Added client side paging for namespace list view [GH-13195]
• ui: Adds flight icons to UI [GH-12976]
• ui: Adds multi-factor authentication support [GH-14049]
• ui: Allow static role credential rotation in Database secrets engines [GH-14268]
• ui: Display badge for all versions in secrets engine header [GH-13015]
• ui: Swap browser localStorage in favor of sessionStorage [GH-14054]
• ui: The integrated web terminal now accepts both -f and --force as aliases
  for -force for the write command. [GH-13683]
• ui: Transform advanced templating with encode/decode format support [GH-13908]
• ui: Updates ember blueprints to glimmer components [GH-13149]
• ui: customizes empty state messages for transit and transform [GH-13090]

BUG FIXES:

• Fixed bug where auth method only considers system-identity when multiple identities are available. #​50 [GH-14138]
• activity log (enterprise): allow partial monthly client count to be accessed from namespaces [GH-13086]
• agent: Fixes bug where vault agent is unaware of the namespace in the config when wrapping token
• api/client: Fixes an issue where the replicateStateStore was being set to nil upon consecutive calls to client.SetReadYourWrites(true). [GH-13486]
• auth/approle: Fix regression where unset cidrlist is returned as nil instead of zero-length array. [GH-13235]
• auth/approle: Fix wrapping of nil errors in login endpoint [GH-14107]
• auth/github: Use the Organization ID instead of the Organization name to verify the org membership. [GH-13332]
• auth/kubernetes: Properly handle the migration of role storage entries containing an empty alias_name_source [GH-13925]
• auth/kubernetes: ensure valid entity alias names created for projected volume tokens [GH-14144]
• auth/oidc: Fixes OIDC auth from the Vault UI when using the implicit flow and form_post response mode. [GH-13492]
• cli: Fix using kv patch with older server versions that don't support HTTP PATCH. [GH-13615]
• core (enterprise): Fix a data race in logshipper.
• core (enterprise): Workaround AWS CloudHSM v5 SDK issue not allowing read-only sessions
• core/api: Fix overwriting of request headers when using JSONMergePatch. [GH-14222]
• core/identity: Address a data race condition between local updates to aliases and invalidations [GH-13093]
• core/identity: Address a data race condition between local updates to aliases and invalidations [GH-13476]
• core/token: Fix null token panic from 'v1/auth/token/' endpoints and return proper error response. [GH-13233]
• core/token: Fix null token_type panic resulting from 'v1/auth/token/roles/{role_name}' endpoint [GH-13236]
• core: Fix warnings logged on perf standbys re stored versions [GH-13042]
• core: -output-curl-string now properly sets cURL options for client and CA
  certificates. [GH-13660]
• core: add support for go-sockaddr templates in the top-level cluster_addr field [GH-13678]
• core: authentication to "login" endpoint for non-existent mount path returns permission denied with status code 403 [GH-13162]
• core: revert some unintentionally downgraded dependencies from 1.9.0-rc1 [GH-13168]
• ha (enterprise): Prevents performance standby nodes from serving and caching stale data immediately after performance standby election completes
• http (enterprise): Always forward internal/counters endpoints from perf standbys to active node
• http:Fix /sys/monitor endpoint returning streaming not supported [GH-13200]
• identity/oidc: Adds support for port-agnostic validation of loopback IP redirect URIs. [GH-13871]
• identity/oidc: Check for a nil signing key on rotation to prevent panics. [GH-13716]
• identity/oidc: Fixes inherited group membership when evaluating client assignments [GH-14013]
• identity/oidc: Fixes potential write to readonly storage on performance secondary clusters during key rotation [GH-14426]
• identity/oidc: Make the nonce parameter optional for the Authorization Endpoint of OIDC providers. [GH-13231]
• identity/token: Fixes a bug where duplicate public keys could appear in the .well-known JWKS [GH-14543]
• identity: Fix possible nil pointer dereference. [GH-13318]
• identity: Fix regression preventing startup when aliases were created pre-1.9. [GH-13169]
• identity: Fixes a panic in the OIDC key rotation due to a missing nil check. [GH-13298]
• kmip (enterprise): Fix locate by name operations fail to find key after a rekey operation.
• licensing (enterprise): Revert accidental inclusion of the TDE feature from the prem build.
• metrics/autosnapshots (enterprise) : Fix bug that could cause
  vault.autosnapshots.save.errors to not be incremented when there is an
  autosnapshot save error.
• physical/mysql: Create table with wider vault_key column when initializing database tables. [GH-14231]
• plugin/couchbase: Fix an issue in which the locking patterns did not allow parallel requests. [GH-13033]
• replication (enterprise): When using encrypted secondary tokens, only clear the
  private key after a successful connection to the primary cluster
• sdk/framework: Generate proper OpenAPI specs for path patterns that use an alternation as the root. [GH-13487]
• sdk/helper/ldaputil: properly escape a trailing escape character to prevent panics. [GH-13452]
• sdk/queue: move lock before length check to prevent panics. [GH-13146]
• sdk: Fixes OpenAPI to distinguish between paths that can do only List, or both List and Read. [GH-13643]
• secrets/azure: Fixed bug where Azure environment did not change Graph URL [GH-13973]
• secrets/azure: Fixes service principal generation when assigning roles that have DataActions. [GH-13277]
• secrets/azure: Fixes the rotate root
  operation for upgraded configurations with a root_password_ttl of zero. [GH-14130]
• secrets/database/cassandra: change connect_timeout to 5s as documentation says [GH-12443]
• secrets/database/mssql: Accept a boolean for contained_db, rather than just a string. [GH-13469]
• secrets/gcp: Fixed bug where error was not reported for invalid bindings [GH-13974]
• secrets/gcp: Fixes role bindings for BigQuery dataset resources. [GH-13548]
• secrets/openldap: Fix panic from nil logger in backend [GH-14171]
• secrets/pki: Default value for key_bits changed to 0, enabling key_type=ec key generation with default value [GH-13080]
• secrets/pki: Fix issuance of wildcard certificates matching glob patterns [GH-14235]
• secrets/pki: Fix regression causing performance secondaries to forward certificate generation to the primary. [GH-13759]
• secrets/pki: Fix regression causing performance secondaries to forward certificate generation to the primary. [GH-2456]
• secrets/pki: Fixes around NIST P-curve signature hash length, default value for signature_bits changed to 0. [GH-12872]
• secrets/pki: Recognize ed25519 when requesting a response in PKCS8 format [GH-13257]
• secrets/pki: Skip signature bits validation for ed25519 curve key type [GH-13254]
• secrets/transit: Ensure that Vault does not panic for invalid nonce size when we aren't in convergent encryption mode. [GH-13690]
• secrets/transit: Return an error if any required parameter is missing. [GH-14074]
• storage/raft: Fix a panic when trying to store a key > 32KB in a transaction. [GH-13286]
• storage/raft: Fix a panic when trying to write a key > 32KB [GH-13282]
• storage/raft: Fix issues allowing invalid nodes to become leadership candidates. [GH-13703]
• storage/raft: Fix regression in 1.9.0-rc1 that changed how time is represented in Raft logs; this prevented using a raft db created pre-1.9. [GH-13165]
• storage/raft: On linux, use map_populate for bolt files to improve startup time. [GH-13573]
• storage/raft: Units for bolt metrics now given in milliseconds instead of nanoseconds [GH-13749]
• ui: Adds pagination to auth methods list view [GH-13054]
• ui: Do not show verify connection value on database connection config page [GH-13152]
• ui: Fix client count current month data not showing unless monthly history data exists [GH-13396]
• ui: Fix default TTL display and set on database role [GH-14224]
• ui: Fix incorrect validity message on transit secrets engine [GH-14233]
• ui: Fix issue where UI incorrectly handled API errors when mounting backends [GH-14551]
• ui: Fix kv engine access bug [GH-13872]
• ui: Fixes breadcrumb bug for secrets navigation [GH-13604]
• ui: Fixes caching issue on kv new version create [GH-14489]
• ui: Fixes displaying empty masked values in PKI engine [GH-14400]
• ui: Fixes horizontal bar chart hover issue when filtering namespaces and mounts [GH-14493]
• ui: Fixes issue logging out with wrapped token query parameter [GH-14329]
• ui: Fixes issue removing raft storage peer via cli not reflected in UI until refresh [GH-13098]
• ui: Fixes issue restoring raft storage snapshot [GH-13107]
• ui: Fixes issue saving KMIP role correctly [GH-13585]
• ui: Fixes issue with OIDC auth workflow when using MetaMask Chrome extension [GH-13133]
• ui: Fixes issue with SearchSelect component not holding focus [GH-13590]
• ui: Fixes issue with automate secret deletion value not displaying initially if set in secret metadata edit view [GH-13177]
• ui: Fixes issue with correct auth method not selected when logging out from OIDC or JWT methods [GH-14545]
• ui: Fixes issue with placeholder not displaying for automatically deleted secrets when deletion time has passed [GH-13166]
• ui: Fixes issue with the number of PGP Key inputs not matching the key shares number in the initialization form on change [GH-13038]
• ui: Fixes long secret key names overlapping masked values [GH-13032]
• ui: Fixes node-forge error when parsing EC (elliptical curve) certs [GH-13238]
• ui: Redirects to managed namespace if incorrect namespace in URL param [GH-14422]
• ui: Removes ability to tune token_type for token auth methods [GH-12904]
• ui: trigger token renewal if inactive and half of TTL has passed [GH-13950]

v9.2.0: 9.2.0

Compare Source

What's new?

Time series support

We are happy to announce support for Time Series. This enhancement allows developers to leverage the time series data structure directly within Go-Redis, enabling efficient ingestion, querying, and storage of time-sequential data. Whether you're tracking metrics, logs, or other time-sensitive information, this feature offers a robust solution to manage time series data seamlessly. We encourage developers to explore this new capability and provide feedback for further improvements.
Learn more about Redis Time Series

Better support for Redis 7.2

Go-Redis now supports WAITAOF and CLIENT SETINFO commands introduced in Redis 7.2.

Other notable improvements

• Add the ability to set a connection growth limit with MaxActiveConns configuration setting (#​2646)
• Add support for multiple values in the bitfield cmd (#​2648)

Breaking Changes

• Changing the suffix for probablistic commands acceptings arguments to WithArgs from Args (#​2701)

🧰 Maintenance

• Making command structs digestible (#​2716)
• change interfaces probabilistic and redis gears from private to public (#​2695)
• Adding CONTRIBUTING guidelines (#​2718)
• Adding Go 1.21.x for CI coverage (#​2697)
• chore(deps): bump actions/checkout from 3 to 4 (#​2702)
• chore(deps): bump github.com/bsm/ginkgo/v2 from 2.9.5 to 2.12.0 (#​2690)
• chore(deps): bump github.com/bsm/gomega from 1.26.0 to 1.27.10 (#​2689)
• Adding stale issues workflow (#​2700)
• Updating redis binary for makefile to 7.2.1 (#​2693)
• Skip flaky tests (#​2699)
• Format code and fix go vet (#​2696)
• Use time duration calculation (#​2651)

Contributors

We'd like to thank all the contributors who worked on this release!

@​NikanV, @​SoulPancake, @​chayim, @​dependabot, @​dependabot[bot], @​nvorobev, @​ofekshenawa, @​peczenyj, @​taytzehao and @​wzlove

v1.10.0

Compare Source

What's Changed

• Add sftpfs files ReadAt method by @​MRtecno98 in https://github.com/spf13/afero/pull/378
• Add build flags for z/OS Unix System Services by @​msradam in https://github.com/spf13/afero/pull/384
• rename mem fs with descendants by @​hanagantig in https://github.com/spf13/afero/pull/364

New Contributors

• @​MRtecno98 made their first contribution in https://github.com/spf13/afero/pull/378
• @​msradam made their first contribution in https://github.com/spf13/afero/pull/384
• @​hanagantig made their first contribution in https://github.com/spf13/afero/pull/364

Full Changelog: spf13/afero@v1.9.5...v1.10.0

v0.28.2

Compare Source