Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Release v1.19.3+suite.1 #265

Merged
merged 1 commit into from
Apr 21, 2023
Merged

Release v1.19.3+suite.1 #265

merged 1 commit into from
Apr 21, 2023

Conversation

john-odonnell
Copy link
Contributor

@john-odonnell john-odonnell commented Apr 21, 2023
edited
Loading

Desired Outcome

Release v1.19.3+suite.1

Implemented Changes

Updated suite.yml and CHANGELOG.md

Connected Issue/Story

CNJR-1095

Definition of Done

At least 1 todo must be completed in the sections below for the PR to be
merged.

Changelog

  • The CHANGELOG has been updated, or
  • This PR does not include user-facing changes and doesn't require a
    CHANGELOG update

Test coverage

  • This PR includes new unit and integration tests to go with the code
    changes, or
  • The changes in this PR do not require tests

Documentation

  • Docs (e.g. READMEs) were updated in this PR
  • A follow-up issue to update official docs has been filed here: CNJR-1094
  • This PR does not require updating any documentation

Behavior

  • This PR changes product behavior and has been reviewed by a PO, or
  • These changes are part of a larger initiative that will be reviewed later, or
  • No behavior was changed with this PR

Security

  • Security architect has reviewed the changes in this PR,
  • These changes are part of a larger initiative with a separate security review, or
  • There are no security aspects to these changes

@john-odonnell john-odonnell requested a review from a team as a code owner April 21, 2023 16:36
@john-odonnell
Copy link
Contributor Author

Release Notes

All notable changes to this project will be documented in this file.

[1.19.3+suite.1] - 2023-04-21

Table of Contents

Components

These are the components that combine to create this Conjur OSS Suite release and links
to their releases:

Conjur Server

Conjur SDK

Platform Integrations

DevOps Tools

Secretless Broker

Summon

Installation Instructions for the Suite Release Version of Conjur

Installing the Suite Release Version of Conjur requires setting the container image tag. Below are more specific instructions depending on environment.

  • Docker or docker-compose

    Set the container image tag to cyberark/conjur:1.19.3.
    For example, make the following update to the conjur service in the quickstart docker-compose.yml

    image: cyberark/conjur:1.19.3

  • Conjur Open Source Helm chart

    Update the image.tag value and use the appropriate release of the helm chart:

    helm install ... \
  --set image.tag="1.19.3" \
  ...
  https://github.com/cyberark/conjur-oss-helm-chart/releases/download/v2.0.6/conjur-oss-2.0.6.tgz

Upgrade Instructions

Upgrade instructions are available for the following components:

Changes

The following are changes to the constituent components since the last Conjur
OSS Suite release:

cyberark/conjur

v1.19.3 (2023-04-17)

  • Added
    • Conjur now logs when it detects that the Conjur configuration file
      (conjur.yml) or directory permissions prevent the Conjur server from
      successfully reading it. Conjur also now logs at the DEBUG level when it
      detects that either the directory or file do not exist.
      cyberark/conjur#2715
    • Account admin roles now have a corresponding resource. This ensures that
      access controls work as expected for this role to access itself.
      cyberark/conjur#2757
  • Changed
    • Removes support for disabling the CONJUR_FEATURE_PKCE_SUPPORT_ENABLED flag.
      cyberark/conjur#2713
    • Routes on the /roles/ API endpoints now correctly verify the existing of
      a Role and return 404 when it doesn't exist or the caller has insufficient
      privilege.
      cyberark/conjur#2755
  • Fixed
    • Fixed a thread-safety bug in secret retrieval when multiple threads attempt
      to decrypt a secret value with Slosilo/OpenSSL.
      cyberark/slosilo#31
      cyberark/conjur#2718
    • Incomplete HTTP proxy support in the Kubernetes Authenticator is fixed. This
      allows for an HTTP proxy between Conjur and the Kubernetes API.
      cyberark/conjur#2766
  • Security

cyberark/conjur-oss-helm-chart

v2.0.6 (2023-03-09)

cyberark/conjur-cli-go

v8.0.5 (2023-03-24)

v8.0.6 (2023-04-17)

v8.0.7 (2023-04-18)

v8.0.8 (2023-04-19)

v8.0.9 (2023-04-21)

cyberark/conjur-service-broker

v1.2.9 (2023-04-10)

cyberark/conjur-authn-k8s-client

v0.25.0 (2023-03-17)

cyberark/secrets-provider-for-k8s

v1.4.6 (2023-01-26)

v1.5.0 (2023-04-12)

cyberark/secretless-broker

v1.7.16 (2022-12-27)

v1.7.17 (2023-04-17)

cyberark/summon-conjur

v0.7.0 (2023-03-10)

@jtuttle
Copy link
Member

jtuttle commented Apr 21, 2023
edited
Loading

What's New

This suite release aligned with Conjur Server version 1.19.3.

Secrets Provider for K8s base64 Encoding

The Secrets Provider for K8s can now be configured using the content-type annotation to automatically decode base64-encoded secrets retrieved from Conjur.

Bug Fixes and Security Patches

Conjur and several other projects in the OSS Suite have been updated with bug fixes and security patches. See the release notes for details.

@jtuttle jtuttle merged commit 9d4536b into main Apr 21, 2023
@jtuttle jtuttle deleted the release-1.19.3+suite.1 branch April 21, 2023 19:00
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@niteshtaneja niteshtaneja niteshtaneja approved these changes

Assignees
No one assigned
Labels
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@john-odonnell @jtuttle @niteshtaneja