fiat 0.50.3

config(okhttp): kork-web-2.3.0 adds the metrics interceptor

fiat 0.50.2

v0.50.2

chore(dependencies): Autobump spinnaker-dependencies (#268)

fiat 0.50.1

feat(roles): Configurable `__unrestricted_user__` roles (#263)

Delegates loading to the `UserRolesProvider` with the default remaining
an empty set.

We have a custom `UserRolesProvider` at Netflix and would like the
ability to specify one or more additional roles for the anonymous user.

fiat 0.50.0

• fix(roles/github): Reduce burden of github reads for teams (#247)
• chore(dependencies): Bump spinnaker dependencies to 1.0.13 (#262)

fiat 0.49.9

v0.49.9

chore(dependencies): spinnaker-dependencies to 1.0.10 (#261)

fiat 0.49.8

feat(api): Surface context around what resource was denied access (#256)

In response to user feedback that seeing just a `403` error lacked
sufficient context to determine exactly what permission was lacking,
particularly when a pipeline or orchestration failed.

The chosen response messaging mimics what clouddriver is already
doing.

https://github.com/spinnaker/clouddriver/blob/master/clouddriver-core/src/main/groovy/com/netflix/spinnaker/clouddriver/deploy/DescriptionValidator.groovy#L29

```
{
  "error": "Forbidden",
  "message": "Access denied to application clouddriver",
  "status": 403,
  "timestamp": 1534222128232
}
```

fiat 0.49.7

• fix(roles): Avoid filtering when allowAccessToUnknownApplications is enabled (#255)

fiat 0.49.6

feat(api): FiatPermissionEvaluator reliablity (#254)

Adds retry support for calls to fiat in FiatPermissionEvaluator
Invalidates cached users if they contain legacyFallback permissions

fiat 0.49.5

• feat(api): Allow admin to access any resource regardless of permission (#253)

fiat 0.49.4

v0.49.4

fix(api): Fix enabled/legacyFallback fallbacks in `FiatStatus` (#252)