Releases: Nike-Inc/cerberus
Releases · Nike-Inc/cerberus
v0.20.3
- Fixed bug where instance profiles and assumed roles authenticating with V2 endpoint where not getting policies that where created for the base role.'
- Fixed edge case when using restore endpoint sometimes Vault policies could get out of sync.
v0.20.1
- Added validation to handle auth payloads that have large enough policy and metadata collections that it causes KMS to fail to encrypt.
-- auth payloads that meet this criteria now have there policies and metadata truncated, which would require a seconds call to lookup self to retrieve.
v0.20.0
- Adding setting for increasing maxRequestsPerHost for VaultAdminClient to 200 (previous default was only 5 which could become a bottleneck)
v0.19.0
- Refactored Guice modules to allow any property to be overridden by the props file generated by the CLI.
v0.18.3
- Fixing issue #35 where traceId was missing in the logs
- Upgraded to latest Riposte version
v0.18.2
- Fixes incorrect error codes and messages for authentication and duplicate SDB name
- Fixes Issue #18
v0.18.1
- Fix Improper ARN validation on the V2 IAM Authentication endpoint
v0.18.0
- Throttles KMS key policy validation so that the API limit is not reached
- Silently logs if validation fails
v0.17.0
- Rename 'v2/auth/iam-role' to 'v2/auth/iam-principal'
- Rename v2/safe-deposit-box field 'iam_role_permissions' to 'iam_principal_permissions'
v0.16.0
- Adds V2 Safe Deposit Box API with ARNs (#33)
- Updates v2 auth endpoint to take 'iam_principal_arn' instead of 'role_arn'
- Returns SDB in v2/safe-deposit-box PUT and POST
- Allows any IAM principal ARN for v2 IAM auth and v2 SDB APIs