Releases: AthenZ/athenz
Releases · AthenZ/athenz
Athenz v1.12.33 Release
What's Changed
- UI - fix functional tests by @ArtjomsPorss in #3173
- ui - display domains org as link to a role in audit domain by @ArtjomsPorss in #3162
- Support rfc6598 IP addresses in service subnet by @balamanova in #3165
- UI - fix functional tests by @ArtjomsPorss in #3174
- ui - functional test fixes by @ArtjomsPorss in #3178
- Fix the FQDN regexp of StaticWorkloadName by @yosrixp in #3177
- UI - fix snapshots by @ArtjomsPorss in #3179
- Bump lodash from 4.17.21 to 4.17.23 in /ui by @dependabot[bot] in #3180
- use gcp certificate manager v1 api for scope support by @havetisyan in #3181
- update all test cases to set the jwks uri as expected by @havetisyan in #3182
- update go and java dependencies to their latest releases by @havetisyan in #3183
Full Changelog: v1.12.32...v1.12.33
Contributors
yosrixp, havetisyan, and 3 other contributors
Assets 2
Athenz v1.12.32 Release
What's Changed
- Otel configuration for default metrics by @mukesh31994 in #3135
- zms storage layer does not return multiple matches for the product id listing by @havetisyan in #3145
- Use httptest and http packages to run test servers by @frumioj in #3150
- support delegation/impersonation token exchange requests by @havetisyan in #3148
- expiry date not shows in case of groups by @balamanova in #3151
- support for service jwt svids by @havetisyan in #3154
- Bump next from 14.2.32 to 14.2.35 in /ui by @dependabot[bot] in #3155
- OTel configuration updated by @mukesh31994 in #3161
- include token exchange requirements doc by @havetisyan in #3156
- zms server does not include service dependency for dynamic checks by @havetisyan in #3158
- x509 otel certificate refresh events in cert_refresher library. by @balamanova in #3146
- Abort server startup on invalid SolutionTemplate configuration by @gyakami in #3159
- UI - blank expiration in workflow member review should not override individual expiration by @ArtjomsPorss in #3164
- extend system allowed role support to have wildcards and multiple values by @havetisyan in #3163
- Httptest2 by @frumioj in #3152
- Refactor: Optimize validation order in
validateRoleStructure()by @mlajkim in #3166 - support maintaining aws account name in the domain attributes by @havetisyan in #3171
- Httptest3 by @frumioj in #3167
- update java and go dependencies to their latest releases by @havetisyan in #3172
New Contributors
- @mukesh31994 made their first contribution in #3135
- @balamanova made their first contribution in #3151
- @mlajkim made their first contribution in #3166
Full Changelog: v1.12.31...v1.12.32
This release includes a required schema update:
https://github.com/AthenZ/athenz/blob/master/servers/zms/schema/updates/update-20260104.sql
Contributors
frumioj, havetisyan, and 6 other contributors
Assets 2
Athenz v1.12.31 Release
What's Changed
- fix athenz version for the example code by @havetisyan in #3134
- Adding GCP Firestore implementations for CertRecordStore and SSHRecordStore by @psasidhar in #3133
- add HTTP support for sia agents for health checks by @havetisyan in #3137
- allow to return jag token with subset of scopes by @havetisyan in #3138
- membership decision should reject if the approver is the same as the member being reviewed by @havetisyan in #3140
- update go/java dependencies to their latest releases by @havetisyan in #3141
Full Changelog: v1.12.30...v1.12.31
Contributors
psasidhar and havetisyan
Assets 2
Athenz v1.12.30 Release
What's Changed
- ui - add static instance external appliance support for fqdn and wildcard in subdomain by @ArtjomsPorss in #3123
- Implement sia provider for client assertion use cases for fetching access tokens by @havetisyan in #3122
- initial work for supporting token exchange rfc by @havetisyan in #3128
- configure oauth client id per athenz service by @havetisyan in #3130
- support external identity provider for issuing jag tokens by @havetisyan in #3131
- Add sia go lib to support use default service identity from pod service account annotation by @MartinTrojans in #3126
- update java and go dependencies to their latest releases by @havetisyan in #3132
This release requires a schema update:
https://github.com/AthenZ/athenz/blob/master/servers/zms/schema/updates/update-20251119.sql
Full Changelog: v1.12.29...v1.12.30
Contributors
havetisyan, ArtjomsPorss, and MartinTrojans
Assets 2
Athenz v1.12.29 Release
What's Changed
- remove filter validation for simple name for resource access list by @havetisyan in #3109
- additional unit tests for jwts signing key resolver class by @havetisyan in #3110
- correct handling of notifications if member domain has no admins by @havetisyan in #3112
- option to auto-expunge audit log entries from role/group log tables by @havetisyan in #3114
- sia helper function for adding certificates into aws acm by @havetisyan in #3117
- sia helper function to store cert in gcp certificate manager by @havetisyan in #3118
- update go and java deps to their latest release by @havetisyan in #3120
- expose jag api functions in zts java client by @havetisyan in #3119
Full Changelog: v1.12.28...v1.12.29
Contributors
havetisyan
Assets 2
Athenz v1.12.28 Release
What's Changed
- convert filter argument in resource access list to string from SimpleName by @havetisyan in #3097
- Add autoDeleteTenantAssumeRoleAssertions field handling to domain metadata API by @gyakami in #3098
- expose signer key id argument in zts-svccert utility by @havetisyan in #3099
- add support for token request attributes for jag by @havetisyan in #3101
- fix the order of cert and key in function call by @chandrasekhar1996 in #3102
- sysadmin delete domain tag support for skipping provider check by @havetisyan in #3104
- initial support for exchaning jag tokens with access tokens by @havetisyan in #3103
- support HTTP & GRPC protocol in sia otel instrumentation by @py4chen in #3105
- support issuing jwt authorization grant (jag) tokens by @havetisyan in #3106
- update go and java dependencies to their latest releases by @havetisyan in #3107
- extend otel metrics implementation to support provider metrics for register/refresh by @havetisyan in #3108
Full Changelog: v1.12.27...v1.12.28
Contributors
havetisyan, py4chen, and 2 other contributors
Assets 2
Athenz v1.12.27 Release
What's Changed
- expose on-call URL value in client-side config by @tsultanov00 in #3055
- ui - switch from zms to msd for policy creation by @ArtjomsPorss in #3034
- feat: Add functionality to search My Domains in UI by @chandrasekhar1996 in #3058
- fix: preserve domain contacts when updating an individual contact wit… by @chandrasekhar1996 in #3083
- Use correct URL path and query param for athenz role. by @gjoranv in #3089
- use metadata to specify use of default identity by @havetisyan in #3084
- Make ZpeUpdPolLoader ScheduledExecutorService thread daemon by @thonra in #3086
- make otel metric options more configurable by @havetisyan in #3090
- expose openid_issuer field for access tokens in zts java client by @havetisyan in #3091
- Add FreeBSD support to libs/go/sia/util by @olgeni in #3093
- expose x509/ssh key id for instance register/refresh operations by @havetisyan in #3092
- fix util test os filenames + new GetGroupGID impl by @havetisyan in #3094
- update go and java dependencies to their latest releases by @havetisyan in #3095
- allow wildcard in first domain component of StaticWorkloadName by @abvaidya in #3096
New Contributors
- @gjoranv made their first contribution in #3089
- @thonra made their first contribution in #3086
- @olgeni made their first contribution in #3093
Full Changelog: v1.12.26...v1.12.27
Contributors
olgeni, gjoranv, and 6 other contributors
Assets 2
Athenz v1.12.26 Release
What's Changed
- Bump axios from 1.8.2 to 1.12.1 in /ui by @dependabot[bot] in #3069
- make auth-history object fields optional by @havetisyan in #3076
- Msd domain dependency check by @rajeshal in #3075
- Bump tar-fs from 3.0.8 to 3.1.1 in /ui by @dependabot[bot] in #3080
- Bump form-data from 4.0.0 to 4.0.4 in /ui by @dependabot[bot] in #3022
- Bump brace-expansion from 1.1.11 to 1.1.12 in /ui by @dependabot[bot] in #2999
- provide option to skip error metrics by @havetisyan in #3079
- extend gcp identity validation to remove identical athenz service name check by @havetisyan in #3077
- GcsChangeLogStore implementation by @psasidhar in #3081
- update java/go dependencies to their latest releases by @havetisyan in #3082
Full Changelog: v1.12.25...v1.12.26
Contributors
psasidhar, havetisyan, and 2 other contributors
Assets 2
Athenz v1.12.25 Release
What's Changed
- Bump next from 14.2.30 to 14.2.32 in /ui by @dependabot[bot] in #3064
- Bump tmp and @wdio/cli in /ui by @dependabot[bot] in #3043
- Bump on-headers and cookie-session in /ui by @dependabot[bot] in #3019
- correct handling/publishing of gcp-common library by @havetisyan in #3065
- Separating GCP SyncLauncher into its own project under "syncers" by @psasidhar in #3067
- Add an automatic cleanup feature for delegated roles. by @gyakami in #3027
- correct handling of resource ownership for self-serve roles by @havetisyan in #3068
- support id tokens for gcp external creds by @havetisyan in #3070
- update java and go dependencies to their latest releases by @havetisyan in #3071
- Bump axios from 1.8.2 to 1.12.0 in /clients/nodejs/zts by @dependabot[bot] in #3072
- support for per request/principal domain metrics by @havetisyan in #3074
Required Schema Change
https://github.com/AthenZ/athenz/blob/master/servers/zms/schema/updates/update-20250808.sql
Full Changelog: v1.12.24...v1.12.25
Contributors
psasidhar, havetisyan, and 2 other contributors
Assets 2
Athenz v1.12.24 Release
What's Changed
- handle 404 error from getDomainRoleMembers by @chandrasekhar1996 in #3048
- sort server template details list by @chandrasekhar1996 in #3046
- when going to invalid domain pages, redirect to home page by @chandrasekhar1996 in #3047
- Add a Gauge method for recording event metrics by @yosrixp in #3049
- handle 404 when principal is not part of any roles by @chandrasekhar1996 in #3052
- cloudsso - make api resource access call cloudsso and fallback to zms by @ArtjomsPorss in #3051
- make resource-access value rewrite configurable/generic by @havetisyan in #3056
- fix: preserve existing group members when applying domain templates by @chandrasekhar1996 in #3057
- ZMS Syncer implementation for GCP/GCS by @psasidhar in #3050
- move assertionDomainCheck method to server common library by @havetisyan in #3059
- update mocks to avoid CannotStubVoidMethodWithReturnValue error by @havetisyan in #3061
- locale-independent message regex by @frumioj in #3060
- make metric gauge method default void to maintain backward compatibility by @havetisyan in #3062
- update java/go dependencies to their latest releases by @havetisyan in #3063
New Contributors
Full Changelog: v1.12.23...v1.12.24
Contributors
frumioj, yosrixp, and 4 other contributors