Skip to content

9.5.0
Compare
Choose a tag to compare
@rra rra released this 25 Oct 23:22
· 467 commits to main since this release
9.5.0
This tag was signed with the committer’s verified signature. The key has expired.
rra Russ Allbery
GPG key ID: 7D80315C5736DE75
Expired
Learn about vigilant mode.
011d93f
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.

New features

  • Add new /auth/cadc/userinfo route, which accepts a Gafaelfawr token and returns user metadata in the format expected by the CADC authentication code. This route is expected to be temporary and will be moved into the main token API once we decide how to handle uniqueness of the sub claim. It is therefore not currently documented outside of the autogenerated API documentation.
  • Gafaelfawr now imposes a maximum run time and retention duration for its periodic maintenance jobs. These can be adjusted with the new config.maintenance.deadlineSeconds and config.maintenance.cleanupSeconds Helm settings.
  • All Gafaelfawr pods now set Kubernetes resource requests and limits. The requests match the consumption of a lightly-loaded deployment using OpenID Connect and LDAP, and the limits should be generous. These can be adjusted using Helm chart values.

Bug fixes

  • Log exceptions encountered while parsing OpenID Connect responses from upstream providers, not just the deduced error message. Include the body of the response from the token endpoint if it could not be parsed as JSON.

Other changes

  • Include curl in the Gafaelfawr container for manual debugging of web request problems.

What's Changed

  • DM-41075: Log OIDC exceptions properly by @rra in #870
  • DM-41090: Document new Helm chart settings by @rra in #871
  • [neophile] Update dependencies by @neophile-square in #873
  • Fix typo in openid-connect.rst by @cbanek in #876
  • [neophile] Update dependencies by @neophile-square in #885
  • Bump eslint from 8.50.0 to 8.52.0 in /ui by @dependabot in #884
  • Bump react-datepicker from 4.18.0 to 4.21.0 in /ui by @dependabot in #883
  • Bump gatsby from 5.12.5 to 5.12.8 in /ui by @dependabot in #882
  • Bump @babel/traverse from 7.23.0 to 7.23.2 in /ui by @dependabot in #881
  • Bump styled-components from 6.0.8 to 6.1.0 in /ui by @dependabot in #878
  • DM-41186: Add new route for CADC token metadata by @rra in #877
  • DM-41186: Prepare 9.5.0 release by @rra in #886

New Contributors

Full Changelog: 9.4.0...9.5.0

Contributors

rra, cbanek, and dependabot
Assets 2
Loading