stklcode/jvaultconnector
stklcode/jvaultconnector
1
0
Fork 0
Code Issues Actions Releases 33 Wiki Activity
jvaultconnector/CHANGELOG.md
Stefan Kalscheuer c111a6aff0 Enforce TLS 1.2 by default with option to override (#22) 
The TLS version can be explicitly set in builder or constructor. If not
given, the connector will only use 1.2 as Vault does by default, too.
2018-10-06 14:24:06 +02:00

3.4 KiB
Raw Blame History

0.8.0 [unreleased]

  • [breaking] Removed support for HTTPVaultConnectorFactory#withSslContext() in favor of #withTrustedCA() due to refactoring of the internal SSL handling (#17)
  • [improvement] VaultConnector extends java.io.Serializable (#19)
  • [improvement] Added missing flags to SealResponse (#20)
  • [improvement] Added replication flags to HealthResponse (#21)
  • [improvement] Enforce TLS 1.2 by default with option to override (#22)
  • [improvement] Build environment and tests now compatible with Java 10
  • [dependencies] Updated dependencies to fix vulnerabilities (i.e. CVE-2018-7489)
  • [deprecation] VaultConnectorFactory is deprecated in favor of VaultConnectorBuilder with identical API (#18)

0.7.1 [2018-03-17]

  • [improvement] Added automatic module name for JPMS compatibility
  • [dependencies] Minor dependency updates
  • [test] Tested against Vault 0.9.5

0.7.0 [2017-10-03]

  • [feature] Retrieval of health status via getHealth() (#15)
  • [improvement] seal(), unseal() are now void and throw Exception on error (#12)
  • [compatibility] Adaptation to Vault 0.8 endpoints for renew and revoke, breaking 0.7 compatibility (#11)
  • [deletion] Removed deprecated listAppRoleSecretss() (use listAppRoleSecrets()) (#14)
  • [test] Tested against Vault 0.8.3

0.6.2 [2017-08-19]

  • [fix] Prevent potential NPE on SecretResponse getter
  • [fix] Removed stack traces on PUT request and response deserialization (#13)
  • [improvement] Fields of InvalidResposneException made final
  • [deprecation] listAppRoleSecretss() in favor of listAppRoleSecrets() (#14)
  • [test] Tested against Vault 0.8.1, increased coverage

0.6.1 [2017-08-02]

  • [fix] TokenModel.getPassword() returned username instead of password
  • [fix] TokenModel.getUsername() and getPassword() could produce NPE in multithreaded environments
  • [fix] TokenData.getCreatinTtl() renamed to getCreationTtl() (typo fix)
  • [test] Tested against Vault 0.7.3

0.6.0 [2017-05-12]

  • [feature] Initialization from environment variables using fromEnv() in factory (#8)
  • [feature] Automatic authentication with buildAndAuth()
  • [feature] Custom timeout and number of retries (#9)
  • [feature] Connector implements AutoCloseable
  • [fix] SecretResponse does not throw NPE on get(key) and getData()
  • [test] Tested against Vault 0.7.2

0.5.0 [2017-03-18]

  • [feature] Convenience methods for DB credentials (#7)
  • [fix] Minor bugfix in TokenBuilder
  • [deprecation] SecretResponse.getValue() deprecated
  • [test] Tested against Vault 0.7.0

0.4.1 [2016-12-24]

  • [fix] Factory Null-tolerant for trusted certificate (#6)
  • [test] StackTraces tested for secret leaks
  • [test] Tested against Vault 0.6.4

0.4.0 [2016-11-06]

  • [feature] Option to provide a trusted CA certificate (#2)
  • [feature] Deletion, revocation and renewal of secrets (#3)
  • [feature] Token creation (#4)
  • [feature] AppRole auth backend supported (#5)
  • [improvement] Support for complex secrets
  • [deprecation] App-ID backend marked as deprecated

0.3.0 [2016-10-07]

  • [feature] Retrieval of JSON objects (#1)
  • [test] Tested against Vault 0.6.2

0.2.0 [2016-09-01]

  • Dependecies updated and CommonsIO removed
  • [fix] Fixed auth backend detection for Vault 0.6.1
  • [test] Tested against Vault 0.6.1

0.1.1 [2016-06-20]

  • [fix] Check for "permission denied" without status code 400 instead of 403
  • [test] Tested against Vault 0.6.0

0.1.0 [2016-03-29]

  • First release