This repository has been archived by the owner on Jan 12, 2024. It is now read-only.
v0.15.0
- Added logic to automatically validate and regenerate KMS key policies when a customer deletes and recreates an IAM role that was referenced in a KMS key policy created by CMS.
- Added logging of principal name in various CMS API calls.
- Modified how IAM identity information is stored in the database to references full ARNs rather than account id and role name as separate data.
- Added new v2 IAM auth endpoint that allows users to auth with an ARN and region rather than account id, role name, and region as separate data.
- Fixed a bug that was introduced when CMS was ported from the internal Karyon-based Jetty framework to the OSS Riposte Netty-based framework where users with read and write access could delete an SDB. Only owners can delete SDBs now.
- IAM Role based principals get a default group assigned to them