Skip to content

Latest commit

 

History

History
129 lines (70 loc) · 3.47 KB

CHANGELOG.md

File metadata and controls

129 lines (70 loc) · 3.47 KB
Raw

2.2.0

  • Added PATCH_ECS_ALLOWED_HOSTS config setting, to support aws-vault's --ecs-server option

2.1.0

  • Fix for the gunicorn logging run location in gunicorn.conf, when trying to catch an exception that only exists in python3.

2.0.0

  • Though we don't expect this to be a breaking change, the default renewal time for IAM credentials has been changed from 5 minutes to 15 minutes, for better compatibility with aws-sdk-java. This time can be changed via the ROLE_EXPIRATION_THRESHOLD setting.

1.11.0

  • Added PyYAML, python-json-logger, and blinker dependencies
  • Included a default gunicorn config and logging config
  • All logs are now sent to stdout by default, which should make flask logs available and written into the log file now

1.10.0

  • Support assuming roles with a Path

1.9.1

  • Docker packaging issue fix

1.9.0

  • Split envvars correctly, when vars are KEY, rather than KEY=VAL, rather than throwing an exception

1.8.0

  • Added support for finding mesos containers

1.7.0

  • Update mock URI for returning availability-zone. Fix for incorrect mocking of /latest/meta-data/placement/availability-zone

1.6.0

  • When proxying requests, also return the status code of the proxied request.

1.5.2

  • Prevent possibility of race condition during docker inspect

1.5.1

  • Fix 500 error when retrieving role session name from Docker label

1.5.0

  • New support retrieving container IP from Rancher labels

1.4.0

  • Add IAM_EXTERNAL_ID variable: if found value will be populated into ExternalId parameter when making AssumeRole call.
  • add ROLE_SESSION_KEY variable: if found will use value to look up key from Docker container labels or environment variable to set RoleSessionName when making AssumeRole call. See documentation for details.
  • Reduce number of calls to Docker API when retrieving credentials.
  • Bump WSGI dependency versions

1.3.2

  • Packaging fixes for travis releases to docker hub

1.3.1

  • Fix for k8s network lookup stacktrace

1.3.0

  • Fix for reformatting IAM_ROLE when it matches ARN format
  • Add logging for when the expected role does not match the available role
  • Export PYTHONUNBUFFERED in run-server.sh so logs come out as they are made available vs when python decides it's time
  • Send log-file to stdout as well in run-server.sh

1.2.6

  • In run-server.sh, sent stdout and stderr to stdout
  • In run-server.sh, make the workers configurable
  • In run-server.sh, use better bash syntax

1.2.5

  • Add more package data to setup.py for sdist packing fix

1.2.4

  • Add package data to setup.py for sdist packing fix

1.2.3

  • Attempt to fix sdist packaging

1.2.2

  • Attempt to fix sdist packaging

1.2.1

  • Travis docker fix (packaging change)

1.2.0

  • Look for container IP address in container's networks datastructure

1.1.4

  • Upgrade docker-py to fix auth parsing issue

1.1.3

  • Bump in release to fix pypi release process

1.1.2

  • Bump in release to be able to publish to pypi

1.1.1

  • Security release. Ross Vandegrift discovered a flaw in the proxy functionality when used in passthrough mode that would expose the host's IAM role credentials when extra paths were added to the end of the security-credentials end-point. metadataproxy will now properly capture any call to iam/security-credentials/ and return the scoped credentials, rather than the host's credentials.

1.1.0

  • Added support for cross-account role assumption.

1.0

  • Initial release