From f2732f92fe9c0b8fb280a488f950e0bc0997fc75 Mon Sep 17 00:00:00 2001 From: Zebot Date: Mon, 30 Dec 2024 08:50:05 +0000 Subject: [PATCH] Add changelog for Release 2024-12-30 --- CHANGELOG.md | 73 +++++++++++++++++++ changelog.d/0-release-notes/4349 | 3 - changelog.d/0-release-notes/WPB-15004 | 27 ------- changelog.d/0-release-notes/enterprise | 8 -- changelog.d/1-api-changes/rabbitmq-temp | 1 - changelog.d/2-features/4349 | 1 - changelog.d/2-features/WPB-14306 | 1 - changelog.d/3-bug-fixes/WPB-14537 | 1 - changelog.d/3-bug-fixes/WPB-15072 | 1 - changelog.d/3-bug-fixes/WPB-15085 | 1 - changelog.d/5-internal/WPB-11810 | 1 - .../5-internal/stabilize-es-migration-test | 1 - changelog.d/5-internal/submodule-formatting | 2 - .../wpb-15151-revive-and-translate-tests | 1 - .../5-internal/wpb-15151-translate-flake | 1 - 15 files changed, 73 insertions(+), 50 deletions(-) delete mode 100644 changelog.d/0-release-notes/4349 delete mode 100644 changelog.d/0-release-notes/WPB-15004 delete mode 100644 changelog.d/0-release-notes/enterprise delete mode 100644 changelog.d/1-api-changes/rabbitmq-temp delete mode 100644 changelog.d/2-features/4349 delete mode 100644 changelog.d/2-features/WPB-14306 delete mode 100644 changelog.d/3-bug-fixes/WPB-14537 delete mode 100644 changelog.d/3-bug-fixes/WPB-15072 delete mode 100644 changelog.d/3-bug-fixes/WPB-15085 delete mode 100644 changelog.d/5-internal/WPB-11810 delete mode 100644 changelog.d/5-internal/stabilize-es-migration-test delete mode 100644 changelog.d/5-internal/submodule-formatting delete mode 100644 changelog.d/5-internal/wpb-15151-revive-and-translate-tests delete mode 100644 changelog.d/5-internal/wpb-15151-translate-flake diff --git a/CHANGELOG.md b/CHANGELOG.md index 2d595d71b8b..e61ff9a8a91 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -1,3 +1,76 @@ +# [2024-12-30] (Chart Release 5.9.0) + +## Release notes + + +* POST /scim/auth-token request body allows you to choose an IdP UUID to associate with. If none is given, do not associate. + + **WARNING:** the new behavior differs from the old one when first creating a unique SAML IdP and then the SCIM token: before this release, this request would associate the two, now it doesn't. (#4349) + +* We changed the default MLS cipher suite from + + - MLS_128_DHKEMX25519_AES128GCM_SHA256_Ed25519 + + to + + - MLS_128_DHKEMP256_AES128GCM_SHA256_P256 + + and the allowed MLS cipher suites from only + + - MLS_128_DHKEMX25519_AES128GCM_SHA256_Ed25519 + + to _only_ + + - MLS_128_DHKEMP256_AES128GCM_SHA256_P256. + + ATTENTION: This breaks your MLS clients if they used the previous defaults before. This is even true if you allow several cipher suites, since current MLS clients only support _one_ cipher suite at a time. + + [Adjust the defaults in the server configuration](https://github.com/wireapp/wire-server/blob/develop/docs/src/developer/reference/config-options.md#mls) to switch the values of `defaultCipherSuite` and `allowedCipherSuites` back to the previous defaults, `1` and `[1]`, respectively. Once MLS clients support several cipher suites, you could even use `[1,2]` or a list of other cipher suites in `allowedCipherSuites`. Make sure that this list contains the currently used cipher suite! (#4373) + +* This release contains a new Git submodule: `wire-server-enterprise`. This module represents a service which contains all non-open-source features. Wire can still be deployed and run without this service. Building it without `wire-server-enterprise` is currently not documented, but Wire will keep providing the artefacts. + + The service can be deployed with a dedicated Helm chart (`charts/wire-server-enterprise`.) The required service image is not freely available (the registry is password protected.) (#4357) + + +## API changes + + +* The `client_id` query parameter of the `GET /events` endpoint is now optional. When not provided, events are returned from a temporary queue that's not bound to any specific client. The queue is deleted when the websocket disconnects. (#4360) + + +## Features + + +* You can now create both multiple SCIM peers and multiple SAML IdPs, and freely associate them with each other (team management app implementation pending). (#4349) + +* Internal API and backoffice support for managing email domains for enterprise login (#4364) + + +## Bug fixes and other updates + + +* Fix `gzip filter failed to use preallocated memory` alerts in nginz by upgrading (#4365) + +* Send team active event in personal user to team flow (#4380) + +* Add profile name to new team owner welcome mail (#4378) + + +## Internal changes + + +* Delete federation V0 and V1 queues after integration tests (#4374) + +* Stabilize `index migration` tests by fixing a race on index names. (#4382) + +* Adjust the existing Ormolu script to format the wire-server-enterprise submodule + as well. (#4377) + +* Revive and translate old integration test (#4387, #4386) + +* Translate integration test to new suite. (#4384) + + # [2024-12-11] (Chart Release 5.8.0) ## Release notes diff --git a/changelog.d/0-release-notes/4349 b/changelog.d/0-release-notes/4349 deleted file mode 100644 index 4be18d4b8b2..00000000000 --- a/changelog.d/0-release-notes/4349 +++ /dev/null @@ -1,3 +0,0 @@ -* POST /scim/auth-token request body allows you to choose an IdP UUID to associate with. If none is given, do not associate. - - **WARNING:** the new behavior differs from the old one when first creating a unique SAML IdP and then the SCIM token: before this release, this request would associate the two, now it doesn't. (#4349) diff --git a/changelog.d/0-release-notes/WPB-15004 b/changelog.d/0-release-notes/WPB-15004 deleted file mode 100644 index 6d444b2ea01..00000000000 --- a/changelog.d/0-release-notes/WPB-15004 +++ /dev/null @@ -1,27 +0,0 @@ -We changed the default MLS cipher suite from - -- MLS_128_DHKEMX25519_AES128GCM_SHA256_Ed25519 - -to - -- MLS_128_DHKEMP256_AES128GCM_SHA256_P256 - -and the allowed MLS cipher suites from only - -- MLS_128_DHKEMX25519_AES128GCM_SHA256_Ed25519 - -to _only_ - -- MLS_128_DHKEMP256_AES128GCM_SHA256_P256. - -ATTENTION: This breaks your MLS clients if they used the previous defaults -before. This is even true if you allow several cipher suites, since current MLS -clients only support _one_ cipher suite at a time. - -[Adjust the defaults in the server -configuration](https://github.com/wireapp/wire-server/blob/develop/docs/src/developer/reference/config-options.md#mls) -to switch the values of `defaultCipherSuite` and `allowedCipherSuites` back to -the previous defaults, `1` and `[1]`, respectively. Once MLS clients support -several cipher suites, you could even use `[1,2]` or a list of other cipher -suites in `allowedCipherSuites`. Make sure that this list contains the currently -used cipher suite! diff --git a/changelog.d/0-release-notes/enterprise b/changelog.d/0-release-notes/enterprise deleted file mode 100644 index 18f3c895b41..00000000000 --- a/changelog.d/0-release-notes/enterprise +++ /dev/null @@ -1,8 +0,0 @@ -This release contains a new Git submodule: `wire-server-enterprise`. This module -represents a service which contains all non-open-source features. Wire can still -be deployed and run without this service. Building it without -`wire-server-enterprise` is currently not documented, but Wire will keep providing the artefacts. - -The service can be deployed with a dedicated Helm chart -(`charts/wire-server-enterprise`.) The required service image is not freely -available (the registry is password protected.) diff --git a/changelog.d/1-api-changes/rabbitmq-temp b/changelog.d/1-api-changes/rabbitmq-temp deleted file mode 100644 index afc523667eb..00000000000 --- a/changelog.d/1-api-changes/rabbitmq-temp +++ /dev/null @@ -1 +0,0 @@ -The `client_id` query parameter of the `GET /events` endpoint is now optional. When not provided, events are returned from a temporary queue that's not bound to any specific client. The queue is deleted when the websocket disconnects. diff --git a/changelog.d/2-features/4349 b/changelog.d/2-features/4349 deleted file mode 100644 index ee589265e3f..00000000000 --- a/changelog.d/2-features/4349 +++ /dev/null @@ -1 +0,0 @@ -* You can now create both multiple SCIM peers and multiple SAML IdPs, and freely associate them with each other (team management app implementation pending). (#4349) diff --git a/changelog.d/2-features/WPB-14306 b/changelog.d/2-features/WPB-14306 deleted file mode 100644 index a9ef32201bd..00000000000 --- a/changelog.d/2-features/WPB-14306 +++ /dev/null @@ -1 +0,0 @@ -Internal API and backoffice support for managing email domains for enterprise login diff --git a/changelog.d/3-bug-fixes/WPB-14537 b/changelog.d/3-bug-fixes/WPB-14537 deleted file mode 100644 index 9eab6011fea..00000000000 --- a/changelog.d/3-bug-fixes/WPB-14537 +++ /dev/null @@ -1 +0,0 @@ -Fix `gzip filter failed to use preallocated memory` alerts in nginz by upgrading diff --git a/changelog.d/3-bug-fixes/WPB-15072 b/changelog.d/3-bug-fixes/WPB-15072 deleted file mode 100644 index 60dbbe6f537..00000000000 --- a/changelog.d/3-bug-fixes/WPB-15072 +++ /dev/null @@ -1 +0,0 @@ -Send team active event in personal user to team flow diff --git a/changelog.d/3-bug-fixes/WPB-15085 b/changelog.d/3-bug-fixes/WPB-15085 deleted file mode 100644 index 1fa867f5fe9..00000000000 --- a/changelog.d/3-bug-fixes/WPB-15085 +++ /dev/null @@ -1 +0,0 @@ -Add profile name to new team owner welcome mail diff --git a/changelog.d/5-internal/WPB-11810 b/changelog.d/5-internal/WPB-11810 deleted file mode 100644 index 060a9fc7df3..00000000000 --- a/changelog.d/5-internal/WPB-11810 +++ /dev/null @@ -1 +0,0 @@ -Delete federation V0 and V1 queues after integration tests diff --git a/changelog.d/5-internal/stabilize-es-migration-test b/changelog.d/5-internal/stabilize-es-migration-test deleted file mode 100644 index 8b204981ad6..00000000000 --- a/changelog.d/5-internal/stabilize-es-migration-test +++ /dev/null @@ -1 +0,0 @@ -Stabilize `index migration` tests by fixing a race on index names. diff --git a/changelog.d/5-internal/submodule-formatting b/changelog.d/5-internal/submodule-formatting deleted file mode 100644 index 31ab2d3697e..00000000000 --- a/changelog.d/5-internal/submodule-formatting +++ /dev/null @@ -1,2 +0,0 @@ -Adjust the existing Ormolu script to format the wire-server-enterprise submodule -as well. diff --git a/changelog.d/5-internal/wpb-15151-revive-and-translate-tests b/changelog.d/5-internal/wpb-15151-revive-and-translate-tests deleted file mode 100644 index efa3adb2c1b..00000000000 --- a/changelog.d/5-internal/wpb-15151-revive-and-translate-tests +++ /dev/null @@ -1 +0,0 @@ -Revive and translate old integration test (#4387, ##) diff --git a/changelog.d/5-internal/wpb-15151-translate-flake b/changelog.d/5-internal/wpb-15151-translate-flake deleted file mode 100644 index a41fc8c846f..00000000000 --- a/changelog.d/5-internal/wpb-15151-translate-flake +++ /dev/null @@ -1 +0,0 @@ -Translate integration test to new suite. \ No newline at end of file