Skip to content

Release v3.10.0
Compare
Choose a tag to compare
@github-actions github-actions released this 09 Oct 13:01
v3.10.0
This tag was signed with the committer’s verified signature.
zlamalp Pavel Zlámal
GPG key ID: FE5B5180982CF76A
Learn about vigilant mode.
01a91e4
This commit was signed with the committer’s verified signature.
zlamalp Pavel Zlámal
GPG key ID: FE5B5180982CF76A
Learn about vigilant mode. 
Release 3.10.0

- This release contains DB changes!
- This release requires PostgreSQL >= 9.5

- The biggest change is configurable API methods
  and roles authorization. Change was done 1:1 with
  the old authorization, but there might be bugs!
  Configuration can be modified on each instance
  in /etc/perun/perun-roles.yml.
- We have removed generally unused member status SUSPENDED.
  It is replaced by VO wide bans, similar to Resource/Facility
  bans. This logic is available only in API.
  Related "suspended" and "suspendedTo" params were removed
  from the (Rich)Member object.
- For future use we added UUID to the Group/Resource/User
  objects and their rich versions.
- We are going to replace sponsored users with normal users with
  sponsored VO memberships. For now its no longer possible
  create new sponsored users from the GUI.
- Added new methods to create and work with sponsored members.
- Group synchronization no longer runs in a single transaction,
  but rather each group member is processed in own transaction.
- Removed deprecated API for:
  - attributesManager/checkAttributeValue
  - attributesManager/checkAttributesValue
  - generalServiceManager -> servicesManager
  - propagationStatsReader -> tasksManager
  - membersManager/createSponsoredAccount
  - membersManager/setStatus (with message)
- Added EnrichedResource object and some methods in ResourcesManager
  as an example of new version of Rich objects. We use composition
  instead of extension of Resource object.
- AuditMessages no longer contains message pre-formatted for GUI
  as we will remove former method of message (de)serialization
  in the future.
- Attribute member:virt:isSuspeneded looks for VO bans instead of
  member status.
- Many API methods were extended to work also with object names
  instead of only their IDs (if they are unique too).
- LDAPc can now resolve changes of virtual attributes on its
  own and we do not slow down transaction commit in core perun.
- Do not allow UCO like mails in attribute module for
  group/group_resource:def:o365EmailAddresses_o365mu attributes.
- Removed subgroups of assigned groups on resource for which we
  generate provisioning data.
Assets 7
Loading