summaryrefslogtreecommitdiff
path: root/CHANGES.md
blob: a2ad8f13853a4a7c121f2cc6a2441fb600c152d2 (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
Platform 0.7
-------------------------------------

CouchDB improvements: CouchDB is not designed to handle ephemeral data, like
sessions, because documents are never really deleted (a tombstone document is
always kept to record the deletion). To overcome this limitation, we now
rotate the `sessions` and `tokens` databases monthly. The new database names
are `tokens_XXX` and `sessions_XXX` where XXX is counter since the epoch that
increments every month (not a calendar month, but a month's worth of seconds).

Additionally, nagios checks and `leap test run` now will create and destroy
test users in the `tmp_users` database, which will get periodically deleted
and recreated.

Compatibility:

* Requires leap_cli version 1.7
* Requires bitmask client version >= 0.7
* Previous releases supported cookies when using the provider API. Now, only
  tokens are supported.
* Includes:
  * leap_mx 0.6.1
  * tapicero 0.7
  * webapp 0.7
  * soledad 0.7

Commits: https://leap.se/git/leap_platform.git/shortlog/refs/tags/0.7.0
Issues fixes: https://leap.se/code/versions/168

Upgrading:

* `gem install leap_cli --version 1.7` or run leap_cli from current master branch.
* `cd leap_platform; git pull; git checkout 0.7.0` or checkout current master branch.
* `leap deploy`
* `leap db destroy --db sessions,tokens` You can ignore message about needing
  to redeploy (since, in this case, we just want to permanently delete those
  databases).

New features:

* rotating couchdb databases
* deployment logging: information on every deploy is logged to
  `/var/log/leap`, including the user, leap_cli version, and platform version.
* you must now run `leap deploy --downgrade` if you want to deploy an older
  version over a newer platform version.
* a summary of deploys is logged on each node at `/var/log/leap/deploy-summary.log`
* the install source each custom daemons (e.g. tapicero, etc) is now
  configured on `common.json`.
* you can configure apt sources in common.json
* Improved Nagios graphs integration (with pnp4nagios)
* many bug bugfixes

Platform 0.6
-------------------------------------

Compatibility:

* Requires leap_cli version 1.6
* Requires bitmask client version >= 0.5

Commits: https://leap.se/git/leap_platform.git/shortlog/refs/tags/0.6.0

New features:

* single node deployment
* include custom puppet modules and manifests
* couch flexibility
* stunnel rework
* new debian repository structure
* dependency pinning
* leap_cli modularization
* improved cert generation
* monitoring improvements such as per-environment tooling and notifications
* tor hidden service support
* switch away from NIST curve and ensure TLSv1 is used
* tests made significantly more robust
* add support for webapp deployment to a subdomain
* many, many bugfixes and stability improvements