Skip to content
This repository has been archived by the owner on Jan 12, 2024. It is now read-only.

Releases: Nike-Inc/cerberus

v2.2.0

11 Dec 18:25
Compare
Choose a tag to compare
  • Fail silently and log when KMS policy validation fails so that customers can still authenticate successfully
  • Increase the default KMS policy validation interval to five minutes

v2.1.4

04 Dec 22:17
2715e1a
Compare
Choose a tag to compare
  • Minor bug fix: InvalidArnException should map to a 400 error code rather than a 500 error code.

v2.1.3

09 Nov 18:14
a80ef6f
Compare
Choose a tag to compare
  • Adding intentional incompatible change to prevent highlander branch from being deployed over the CMS 2.x.x series

v2.1.2

07 Nov 16:58
01ec6ca
Compare
Choose a tag to compare

Bug fixes:

  1. Key policy validation was always checking for role ARNs in keys but should have been checking for any of the ARN types allowed in key policies (all principals except instance-profile and group)
  2. Key policy validation/generation was sometimes being passed ARNs cannot go in key policies
  3. Updating ARN validation to reject instance-profile ARNs on SDB endpoint because KMS policies reject them.

In general, support for instance-profile ARNs is being dropped. The Dashboard will no longer allow instance-profile ARNs in the permissions section. We will still allow instance-profile ARNs via auth for backward compatibility for a small number of users.

We removed the instance-profile auth provider in the Java client,
https://github.com/Nike-Inc/cerberus-java-client/releases/tag/v4.0.3

Anyone using instance-profile ARNs today should update their permissions to switch to role ARNs. In a later release, all support for instance-profile ARNs will be removed.

v2.1.1

26 Oct 18:30
Compare
Choose a tag to compare
  • Paginate over usergroups when a user requires pagination in the OKTA conenctor

v2.1.0

03 Oct 00:16
Compare
Choose a tag to compare
  • Reports API Exception metrics for those using SignalFx

v2.0.3

02 Oct 21:16
Compare
Choose a tag to compare
  • Additional bug fix with policy validation: some valid policies were being re-generated unnecessarily

v2.0.2

02 Oct 19:47
Compare
Choose a tag to compare
  • Minor bug fix with key and policy validation

v2.0.1

28 Sep 21:55
Compare
Choose a tag to compare
  • Fixing Hystrix exception handling

v2.0.0

26 Sep 21:30
Compare
Choose a tag to compare
  • Move all Nike-Inc/cerberus-management-dashboard code into this project
  • Serve Dashboard static webpage from CMS (endpoint: '/dashboard')
  • For local dashboard development, run CMS gradle commands (e.g. runDashboardAndReverseProxy)

** Note: The version jump is a result of the Dashboard and CMS versioning together going forward