From 026d822046a22eac901d122d89d0fcb29865a3ac Mon Sep 17 00:00:00 2001 From: Zebot Date: Wed, 8 Jun 2022 09:20:58 +0000 Subject: [PATCH 1/2] Add changelog for Release 2022-06-08 --- CHANGELOG.md | 96 +++++++++++++++++++ changelog.d/0-release-notes/cannon-drain | 2 - .../disable-api-version-rate-limit | 1 - ...added-ttl-param-to-back-office-feature-api | 1 - .../disable-api-version-rate-limit | 1 - changelog.d/2-features/cannon-drain | 4 - changelog.d/2-features/cannon-nginz | 4 - changelog.d/2-features/chart-brig-geoip | 1 - changelog.d/2-features/nginz-galeb | 1 - .../2-features/nginz-upstream-namespace | 1 - changelog.d/2-features/pr-2407 | 1 - changelog.d/3-bug-fixes/nginz-collision | 2 - changelog.d/3-bug-fixes/pr-2400 | 1 - changelog.d/3-bug-fixes/pr-2430 | 1 - changelog.d/3-bug-fixes/pr-2445 | 1 - changelog.d/4-docs/feature-schema-fix | 1 - changelog.d/5-internal/SQSERVICES-1559 | 1 - changelog.d/5-internal/SQSERVICES-1560 | 1 - changelog.d/5-internal/bitnami-old-repo | 1 - changelog.d/5-internal/bump-zlib | 1 - changelog.d/5-internal/fs-532-brig | 1 - changelog.d/5-internal/galley-no-sessiont | 1 - .../5-internal/nginz-map-hash-bucket-size | 1 - changelog.d/5-internal/nginz-randomport | 3 - changelog.d/5-internal/remove-dead-spar-code | 1 - .../5-internal/remove-golden-generator | 3 - changelog.d/5-internal/servantify-csv | 1 - .../6-federation/fix-fed-welcome-request | 1 - 28 files changed, 96 insertions(+), 39 deletions(-) delete mode 100644 changelog.d/0-release-notes/cannon-drain delete mode 100644 changelog.d/0-release-notes/disable-api-version-rate-limit delete mode 100644 changelog.d/1-api-changes/added-ttl-param-to-back-office-feature-api delete mode 100644 changelog.d/1-api-changes/disable-api-version-rate-limit delete mode 100644 changelog.d/2-features/cannon-drain delete mode 100644 changelog.d/2-features/cannon-nginz delete mode 100644 changelog.d/2-features/chart-brig-geoip delete mode 100644 changelog.d/2-features/nginz-galeb delete mode 100644 changelog.d/2-features/nginz-upstream-namespace delete mode 100644 changelog.d/2-features/pr-2407 delete mode 100644 changelog.d/3-bug-fixes/nginz-collision delete mode 100644 changelog.d/3-bug-fixes/pr-2400 delete mode 100644 changelog.d/3-bug-fixes/pr-2430 delete mode 100644 changelog.d/3-bug-fixes/pr-2445 delete mode 100644 changelog.d/4-docs/feature-schema-fix delete mode 100644 changelog.d/5-internal/SQSERVICES-1559 delete mode 100644 changelog.d/5-internal/SQSERVICES-1560 delete mode 100644 changelog.d/5-internal/bitnami-old-repo delete mode 100644 changelog.d/5-internal/bump-zlib delete mode 100644 changelog.d/5-internal/fs-532-brig delete mode 100644 changelog.d/5-internal/galley-no-sessiont delete mode 100644 changelog.d/5-internal/nginz-map-hash-bucket-size delete mode 100644 changelog.d/5-internal/nginz-randomport delete mode 100644 changelog.d/5-internal/remove-dead-spar-code delete mode 100644 changelog.d/5-internal/remove-golden-generator delete mode 100644 changelog.d/5-internal/servantify-csv delete mode 100644 changelog.d/6-federation/fix-fed-welcome-request diff --git a/CHANGELOG.md b/CHANGELOG.md index 106b132cdfe..06dbcf5bca5 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -1,3 +1,99 @@ +# [2022-06-08] (Chart Release 4.13.0) + +## Release notes + + +* The `.cannon.drainTimeout` setting on the wire-server helm chart has been + removed and replaced with `.cannon.config.drainOpts`. (#2416) + +* Note for wire.com operators: deploy nginz (#2439) + + +## API changes + + +* The back-office (aka stern) team feature API now accenpts an optional TTL parameter (in days), so features can be activated for a limited period. (#PR_NOT_FOUND) + +* Disable rate limiting for /api-version (#2439) + + +## Features + + +* Drain websockets in a controlled fashion when cannon receives a SIGTERM or + SIGINT. Instead of waiting for connections to close on their own, the websockets + are now severed at a controlled pace. This allows for quicker rollouts of new + versions. (#2416) + +* Optionally allow to run cannon with its own nginz inside the same pod; and connect to a load balancer directly. + This allows the cannon-slow-drain behaviour implemented in #2416 to take effect by not having other intermediate network hops which could break websocket connections all at once. + Some (internal) context: https://wearezeta.atlassian.net/wiki/spaces/PS/pages/585564424/How+to+gracefully+drain+cannon+but+not+so+slowly + For details on how to configure this, see docs/src/how-to/install/configuration-options.rst (#2421) + +* * Support running brig with GeoIP database when using helm charts (#2406) + +* charts/nginz: Add upstream configuration for galeb (#2444) + +* charts/nginz: Allow upstreams to be in other namespaces (#2444) + +* CSV export in team management now includes the number of devices per user (#2407) + + +## Bug fixes and other updates + + +* charts/nginz: Resolve collision between brig and galeb endpoints. Ensure + /self/consent and /signatures endpoints are configured in all environments (#2457) + +* When an IdP issuer (aka entity ID) is updated, the old issuer was still marked as "in use". (#2400) + +* On actions that require re-authentication a password is not required if the user has SAML credentials (#2430, #2434, #2437) + +* Use SCIM's preferred language as a fallback when privisioning users without a locale. (#PR_NOT_FOUND) + + +## Documentation + + +* Feature configs should have different swagger schema names (#2425) + + +## Internal changes + + +* `AllFeatureConfigs` is now typed (#2403) + +* Type class for default team feature status (#2404) + +* charts/{redis-ephemeral,legalhold}: Use old index for bitnami repo as the new index doesn't have old versions of postgresql and redis helm charts (#2448) + +* Bump haskell/zlib version to 0.6.3.0 (#2431) + +* New internal brig endpoints for MLS KeyPackage -> Conversation association query/update (#2375) + +* galley: refactor withSettingsOverrides (#2381) + +* charts/{nginz,cannon}: Increase map_hash_bucket_size for nginx to 128 (#2443) + +* charts/{cannon,nginz}: values listed in + `nginx_conf.randomport_allowlisted_origins` must be full hostnames. Hostnames + listed here will be allowlisted with and without TLS. (#2438) + +* Remove binding of users to saml idps using saml (this has never been picked up by clients; use scim instead) (#2441) + +* Remove golden test case generator + + (#2442) + +* Convert Team CSV endpoint to Servant (#2419) + + +## Federation changes + + +* Send only the raw welcome message in the Galley "mls-welcome" federation endpoint (#2412) + + # [2022-05-18] (Chart Release 4.12.0) ## Release notes diff --git a/changelog.d/0-release-notes/cannon-drain b/changelog.d/0-release-notes/cannon-drain deleted file mode 100644 index d4e5e936ad0..00000000000 --- a/changelog.d/0-release-notes/cannon-drain +++ /dev/null @@ -1,2 +0,0 @@ -The `.cannon.drainTimeout` setting on the wire-server helm chart has been -removed and replaced with `.cannon.config.drainOpts`. \ No newline at end of file diff --git a/changelog.d/0-release-notes/disable-api-version-rate-limit b/changelog.d/0-release-notes/disable-api-version-rate-limit deleted file mode 100644 index 70e703a9ff4..00000000000 --- a/changelog.d/0-release-notes/disable-api-version-rate-limit +++ /dev/null @@ -1 +0,0 @@ -Note for wire.com operators: deploy nginz diff --git a/changelog.d/1-api-changes/added-ttl-param-to-back-office-feature-api b/changelog.d/1-api-changes/added-ttl-param-to-back-office-feature-api deleted file mode 100644 index b6ff0d0033f..00000000000 --- a/changelog.d/1-api-changes/added-ttl-param-to-back-office-feature-api +++ /dev/null @@ -1 +0,0 @@ -The back-office (aka stern) team feature API now accenpts an optional TTL parameter (in days), so features can be activated for a limited period. diff --git a/changelog.d/1-api-changes/disable-api-version-rate-limit b/changelog.d/1-api-changes/disable-api-version-rate-limit deleted file mode 100644 index 7f5f382bd19..00000000000 --- a/changelog.d/1-api-changes/disable-api-version-rate-limit +++ /dev/null @@ -1 +0,0 @@ -Disable rate limiting for /api-version diff --git a/changelog.d/2-features/cannon-drain b/changelog.d/2-features/cannon-drain deleted file mode 100644 index bd117af4d32..00000000000 --- a/changelog.d/2-features/cannon-drain +++ /dev/null @@ -1,4 +0,0 @@ -Drain websockets in a controlled fashion when cannon receives a SIGTERM or -SIGINT. Instead of waiting for connections to close on their own, the websockets -are now severed at a controlled pace. This allows for quicker rollouts of new -versions. \ No newline at end of file diff --git a/changelog.d/2-features/cannon-nginz b/changelog.d/2-features/cannon-nginz deleted file mode 100644 index 56e884c6605..00000000000 --- a/changelog.d/2-features/cannon-nginz +++ /dev/null @@ -1,4 +0,0 @@ -Optionally allow to run cannon with its own nginz inside the same pod; and connect to a load balancer directly. -This allows the cannon-slow-drain behaviour implemented in #2416 to take effect by not having other intermediate network hops which could break websocket connections all at once. -Some (internal) context: https://wearezeta.atlassian.net/wiki/spaces/PS/pages/585564424/How+to+gracefully+drain+cannon+but+not+so+slowly -For details on how to configure this, see docs/src/how-to/install/configuration-options.rst diff --git a/changelog.d/2-features/chart-brig-geoip b/changelog.d/2-features/chart-brig-geoip deleted file mode 100644 index e53e7fb52fa..00000000000 --- a/changelog.d/2-features/chart-brig-geoip +++ /dev/null @@ -1 +0,0 @@ -* Support running brig with GeoIP database when using helm charts \ No newline at end of file diff --git a/changelog.d/2-features/nginz-galeb b/changelog.d/2-features/nginz-galeb deleted file mode 100644 index 62e918af8e6..00000000000 --- a/changelog.d/2-features/nginz-galeb +++ /dev/null @@ -1 +0,0 @@ -charts/nginz: Add upstream configuration for galeb \ No newline at end of file diff --git a/changelog.d/2-features/nginz-upstream-namespace b/changelog.d/2-features/nginz-upstream-namespace deleted file mode 100644 index c99edda5bc5..00000000000 --- a/changelog.d/2-features/nginz-upstream-namespace +++ /dev/null @@ -1 +0,0 @@ -charts/nginz: Allow upstreams to be in other namespaces \ No newline at end of file diff --git a/changelog.d/2-features/pr-2407 b/changelog.d/2-features/pr-2407 deleted file mode 100644 index 3af661fc263..00000000000 --- a/changelog.d/2-features/pr-2407 +++ /dev/null @@ -1 +0,0 @@ -CSV export in team management now includes the number of devices per user diff --git a/changelog.d/3-bug-fixes/nginz-collision b/changelog.d/3-bug-fixes/nginz-collision deleted file mode 100644 index 7f3aea75db8..00000000000 --- a/changelog.d/3-bug-fixes/nginz-collision +++ /dev/null @@ -1,2 +0,0 @@ -charts/nginz: Resolve collision between brig and galeb endpoints. Ensure -/self/consent and /signatures endpoints are configured in all environments \ No newline at end of file diff --git a/changelog.d/3-bug-fixes/pr-2400 b/changelog.d/3-bug-fixes/pr-2400 deleted file mode 100644 index 7e8054bf95f..00000000000 --- a/changelog.d/3-bug-fixes/pr-2400 +++ /dev/null @@ -1 +0,0 @@ -When an IdP issuer (aka entity ID) is updated, the old issuer was still marked as "in use". diff --git a/changelog.d/3-bug-fixes/pr-2430 b/changelog.d/3-bug-fixes/pr-2430 deleted file mode 100644 index 33d5c9d86cf..00000000000 --- a/changelog.d/3-bug-fixes/pr-2430 +++ /dev/null @@ -1 +0,0 @@ -On actions that require re-authentication a password is not required if the user has SAML credentials (#2430, #2434, #2437) diff --git a/changelog.d/3-bug-fixes/pr-2445 b/changelog.d/3-bug-fixes/pr-2445 deleted file mode 100644 index c98782da276..00000000000 --- a/changelog.d/3-bug-fixes/pr-2445 +++ /dev/null @@ -1 +0,0 @@ -Use SCIM's preferred language as a fallback when privisioning users without a locale. diff --git a/changelog.d/4-docs/feature-schema-fix b/changelog.d/4-docs/feature-schema-fix deleted file mode 100644 index d4c3d440019..00000000000 --- a/changelog.d/4-docs/feature-schema-fix +++ /dev/null @@ -1 +0,0 @@ -Feature configs should have different swagger schema names diff --git a/changelog.d/5-internal/SQSERVICES-1559 b/changelog.d/5-internal/SQSERVICES-1559 deleted file mode 100644 index bbca6cfc2ed..00000000000 --- a/changelog.d/5-internal/SQSERVICES-1559 +++ /dev/null @@ -1 +0,0 @@ -`AllFeatureConfigs` is now typed diff --git a/changelog.d/5-internal/SQSERVICES-1560 b/changelog.d/5-internal/SQSERVICES-1560 deleted file mode 100644 index 2f7615a7b72..00000000000 --- a/changelog.d/5-internal/SQSERVICES-1560 +++ /dev/null @@ -1 +0,0 @@ -Type class for default team feature status diff --git a/changelog.d/5-internal/bitnami-old-repo b/changelog.d/5-internal/bitnami-old-repo deleted file mode 100644 index 6e0770ce1b7..00000000000 --- a/changelog.d/5-internal/bitnami-old-repo +++ /dev/null @@ -1 +0,0 @@ -charts/{redis-ephemeral,legalhold}: Use old index for bitnami repo as the new index doesn't have old versions of postgresql and redis helm charts \ No newline at end of file diff --git a/changelog.d/5-internal/bump-zlib b/changelog.d/5-internal/bump-zlib deleted file mode 100644 index 46acdf320cb..00000000000 --- a/changelog.d/5-internal/bump-zlib +++ /dev/null @@ -1 +0,0 @@ -Bump haskell/zlib version to 0.6.3.0 \ No newline at end of file diff --git a/changelog.d/5-internal/fs-532-brig b/changelog.d/5-internal/fs-532-brig deleted file mode 100644 index 26743b97a94..00000000000 --- a/changelog.d/5-internal/fs-532-brig +++ /dev/null @@ -1 +0,0 @@ -New internal brig endpoints for MLS KeyPackage -> Conversation association query/update diff --git a/changelog.d/5-internal/galley-no-sessiont b/changelog.d/5-internal/galley-no-sessiont deleted file mode 100644 index 82bff1eafe3..00000000000 --- a/changelog.d/5-internal/galley-no-sessiont +++ /dev/null @@ -1 +0,0 @@ -galley: refactor withSettingsOverrides diff --git a/changelog.d/5-internal/nginz-map-hash-bucket-size b/changelog.d/5-internal/nginz-map-hash-bucket-size deleted file mode 100644 index 2ad170b4ce5..00000000000 --- a/changelog.d/5-internal/nginz-map-hash-bucket-size +++ /dev/null @@ -1 +0,0 @@ -charts/{nginz,cannon}: Increase map_hash_bucket_size for nginx to 128 \ No newline at end of file diff --git a/changelog.d/5-internal/nginz-randomport b/changelog.d/5-internal/nginz-randomport deleted file mode 100644 index ac0ef870c41..00000000000 --- a/changelog.d/5-internal/nginz-randomport +++ /dev/null @@ -1,3 +0,0 @@ -charts/{cannon,nginz}: values listed in -`nginx_conf.randomport_allowlisted_origins` must be full hostnames. Hostnames -listed here will be allowlisted with and without TLS. \ No newline at end of file diff --git a/changelog.d/5-internal/remove-dead-spar-code b/changelog.d/5-internal/remove-dead-spar-code deleted file mode 100644 index e82e50b515a..00000000000 --- a/changelog.d/5-internal/remove-dead-spar-code +++ /dev/null @@ -1 +0,0 @@ -Remove binding of users to saml idps using saml (this has never been picked up by clients; use scim instead) diff --git a/changelog.d/5-internal/remove-golden-generator b/changelog.d/5-internal/remove-golden-generator deleted file mode 100644 index f8f76f2e31e..00000000000 --- a/changelog.d/5-internal/remove-golden-generator +++ /dev/null @@ -1,3 +0,0 @@ -Remove golden test case generator - - diff --git a/changelog.d/5-internal/servantify-csv b/changelog.d/5-internal/servantify-csv deleted file mode 100644 index fa1464e7d85..00000000000 --- a/changelog.d/5-internal/servantify-csv +++ /dev/null @@ -1 +0,0 @@ -Convert Team CSV endpoint to Servant diff --git a/changelog.d/6-federation/fix-fed-welcome-request b/changelog.d/6-federation/fix-fed-welcome-request deleted file mode 100644 index 5ee60e16e90..00000000000 --- a/changelog.d/6-federation/fix-fed-welcome-request +++ /dev/null @@ -1 +0,0 @@ -Send only the raw welcome message in the Galley "mls-welcome" federation endpoint From 43be368d26335fbd27a8d76fd7a16c306f72b22e Mon Sep 17 00:00:00 2001 From: Leif Battermann Date: Wed, 8 Jun 2022 11:28:49 +0200 Subject: [PATCH 2/2] clean up changelog --- CHANGELOG.md | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/CHANGELOG.md b/CHANGELOG.md index 06dbcf5bca5..0a7338eaffa 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -12,7 +12,7 @@ ## API changes -* The back-office (aka stern) team feature API now accenpts an optional TTL parameter (in days), so features can be activated for a limited period. (#PR_NOT_FOUND) +* The back-office (aka stern) team feature API now accenpts an optional TTL parameter (in days), so features can be activated for a limited period. (#2417) * Disable rate limiting for /api-version (#2439) @@ -30,7 +30,7 @@ Some (internal) context: https://wearezeta.atlassian.net/wiki/spaces/PS/pages/585564424/How+to+gracefully+drain+cannon+but+not+so+slowly For details on how to configure this, see docs/src/how-to/install/configuration-options.rst (#2421) -* * Support running brig with GeoIP database when using helm charts (#2406) +* Support running brig with GeoIP database when using helm charts (#2406) * charts/nginz: Add upstream configuration for galeb (#2444) @@ -49,7 +49,7 @@ * On actions that require re-authentication a password is not required if the user has SAML credentials (#2430, #2434, #2437) -* Use SCIM's preferred language as a fallback when privisioning users without a locale. (#PR_NOT_FOUND) +* Use SCIM's preferred language as a fallback when privisioning users without a locale. (#2445) ## Documentation