-
Notifications
You must be signed in to change notification settings - Fork 25
/
ChangeLog
240 lines (123 loc) · 6.59 KB
/
ChangeLog
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
2020-03-23 serial-vault 2.5-0
* Moving from govendor which is deprecated now to go mod for the dependency management.
* Snapd version is updated to 2.44, all older versions were not compatible with Go mod.
* All other external dependencies will keep the same pinned version.
Note on versions: after the automated migration, all the pinned versions are moved from
`vendor/vendor.json` to `go.mod` file. If the external module does not use semantic versioning (SemVer)
in a format `v1.2.3` Go modules tooling will use `revision` and `revisionTime` from the pinned commit.
So the same git commit is pinned in`vendor/vendor.json` and in `go.mod` after the migration.
* Updated documentation about how to use Go modules
* Updated travis configuration to use Go modules
2017-09-05 serial-vault 2.0-0
[ unknown ]
* Added TravisCI support
* See more information in merge proposal
* See more information in merge proposal
* Updated the README for the models API method and configuring the app.
* Fix empty data checks for SignHandler
* Added the basic web application to load the HTML template.
* See more information in merge proposal
* Validate the model against the accepted models before signing.
* Add create, update and get methods for a model.
* Resolve conflicts from merging master.
* Use react-intl for i18n
* API and UI to view, create and remove authorized public keys.
* Resolve conflicts from merging master.
* i18n for the user interface and API
* Use Ubuntu-core assertions module for core operations
* Keypair frontend
* See more information in merge proposal
* Show models that are linked to inactive keypairs.
* See more information in merge proposal
* Update dependencies and fixed code after Serial assertion renamed
* See more information in merge proposal
* Use TPM 2.0 for keypair storage
* See more information in merge proposal
* Service refactor to split into a signing service and admin service
* See more information in merge proposal
* Add document root config setting to aid deployment.
* See more information in merge proposal
* Docker compose 1.5.2
* Improve launch options when running as a snap
* Check that the serial number and the device-key fingerprint are not re-used when signing assertions.
* Update version to 0.4
* Signing API protected by an API key
* Set the version from a constant not the config file.
* Update the snap version to 0.6
* Formatted log messages for signing requests, so they can be parsed later
* Update settings in docker-compose
* Nonce generation and accepting a serial-request assertion instead of a serial assertion.
* Refactor error handling for sign and nonce services
* Fix PSQL syntax error when creating the model table
* KeypairManager no longer needs the authority-id.
snapd uses request-id to refer to the nonce, so fit in with the naming approach.
Remove references to model revision (fixes #34).
* The sign method becomes serial.
* Use the serial number from the header
* Log duplicate serial numbers, but allow the serial to be generated
* Store the revision in the signing log
* Update the version number.
* Snap the vault client
* Optimizes Docker/Docker-compose setup
* Filter signing log
* Substituted math lib by crypto one when generating random nonces.
* See more information in merge proposal
* Xpired nonces mgmt
* increased digits for random generated numbers up to 10 to pass the te…
* See more information in merge proposal
* Model name validation
* Update the installation and deployment instructions
* See more information in merge proposal
* See more information in merge proposal
* See more information in merge proposal
* Csrf prevention
* Improve csrf protection
* See more information in merge proposal
* System user service
* Composite system-user assertion
* Convert the admin webapp to the vanilla-framework
* Require the user key to be linked to the model
* Use a different key in tests for the signing and user keys
* Use the system-user key for account key.
* Cache account keys
* Display the account and account key assertions in the admin interface
* See more information in merge proposal
* Account key upload
* Upload account key assertion to a keypair
* New snap to install all the Serial Vault Services.
* Default to HTTP and allow SSL via the 'enable-https' command
* Update the basic snap to add the new system-user mode
* Change to the name and location of the repository
* Add Ubuntu SSO authentication with OpenID
* See more information in merge proposal
* See more information in merge proposal
* Create tables for storing users information and the relationship with accounts
* Provide roles for user authorisation
* See more information in merge proposal
* Display the user interface based on the user's permissions
* Allow access to the admin interface when user authentication is disabled
* Allow access to the admin interface if user authentication is disabled
* Add the ability to logout from the application
* Handle when the user unticks mandatory fields in the OpenID login
* Filter the list models API based on the user
* Add API permissions to the model endpoints
* See more information in merge proposal
* Add permissions and filtering to API endpoints
* merged trunk
* See more information in merge proposal
* User management backend
* Fix broken httpd-2.4.25 source link
* Useraccountlink management backend
* Fix JWT claim properties
* See more information in merge proposal
* Check the API key against the database instead of the config file
* Management command to manage users
* Add api-key to the UI for the model and validate and default the field
* Closes #103
* Display an error when editing a non-existent model or user
* Redesign the menu so it displays more consistently
* Create a serial-vault-admin unified command-line
* Update snapd to v2.26.8
* Cache account assertions checking the existing accounts
* Change the SQL for checking that the brands match
* Superuser can upsert account key assertions