Releases: Symantec/keymaster
Releases · Symantec/keymaster
v 1.7.0 Client side enhancements and inital okta support
Features:
- Added Okta pblic interface for password checks (keymasterd)
- Client now connects to keymaster servers before asking for credentials
- Updated travis to use go 1.13.x
- New release build on go 1.13.3
Bug Fixes:
- Minor UI typos/consistency.
- Removed GoConver due to issues with newer golang compiler
v 1.6.2 Dependency updates
Features:
- Added Favicon
- Update jquery to 3.4.1
Bugs
- Allow Firefox 7x series for U2F
v 1.6.0 normalization of usernames
Features:
- Adds an option to normalize usernames to lowercase by default (to match most common ldap config).
- Adds an option to allow VIP push acceptance from the notification
Fixes:
- release fix. Addresses issue with upstream prometheus client library
v 1.5.1 Initial alpha support for service accounts
Features
- Added Initial support for service account by using certificates with ip restrictions and users within a specific ldap group
- Added support for Group information via openic in a manner similar to OKTA for integration with hashicorp vault
- Added opt-in support for a smarter round-robin Dialer for for clients
Bugs Fixed
- Support for both RFC2307bis and RFC2307 groups when quering user groups
v 1.4.12 Usability/Bug Fixes
Features
- Added Access logs
Bugs
- keymasted termineted on certain cases of DB connection instability
- VIP OTP only users could get unstable connections when using multiple keymasters with rr-dns HA (the recommended solution).
- Timeout for client was too short preventing rr-dns HA on certain cases.
v 1.4.9 Security updates/windows fixes
Security Fixes:
- Logs are no longer public by default, still viewable with admin cert
Features:
- Added new group membership config for x509 certs
- Updated travis to use go 1.10.3
Bugs:
- Fixed regression on getting certs for users without new groups, introduced on 1.4.7
v1.4.6: Merge pull request #163 from cviecco/upping-version-to-1.4.6
Security Fixes:
- Fixed potential XSS on admin port (thanks to rthijssen)
Features
- HTTP 2.0 Enabling
- EventMon: higher resolution and crude health dashboard
- Update Symantec VIP library to point to new URLs
Bugs
- Move VIP to new endpoint
- Several Typos
v1.4.3
- Added VIP push support for keymaster client
- Adding admin groups via ldap
- Dashboard adding keymaster status
- Enhanced server logging of Symantec VIP events
- Fixed some information leaks reported by ryanwsmith
Rolled update
Lots of features:
- Caching of Token DB
- Event monitoring (certificate generation, login types, oauth2 logins)
- Initial admin console (admin users)
- OpenidConnect IDP provider
v0.6.1: Merge pull request #115 from cviecco/tagging-version-0.6.1
Modifying auth cookies for JWT
Initial addition of manager abilities (to manager other users tokens)
Addition of some and DoS protections
Updated client to use CookieJar