From a215ce1599edc53da52ba1f4ae6de04f9f3ad8f7 Mon Sep 17 00:00:00 2001 From: Jim Kalafut Date: Mon, 24 Jun 2019 15:15:19 -0700 Subject: [PATCH] Update New Features section in changelog --- CHANGELOG.md | 31 ++++++++++++++++++++++--------- 1 file changed, 22 insertions(+), 9 deletions(-) diff --git a/CHANGELOG.md b/CHANGELOG.md index 7fa3f7c6d..3f42cd806 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -37,15 +37,28 @@ CHANGES: FEATURES: - * Adds an ElasticSearch database plugin which issues unique, short-lived - ElasticSearch credentials [GH-6857] - * Adds a PCF plugin that supports use of instance identity certificates for - Vault authentication [GH-6847] - * storage/postgres: Add HA support for PostgreSQL versions >= 9.5 [GH-5731] - * Add HTTP Request Volume Page to the UI [GH-6925] - * Adds Static Accounts for the Combined Database Backed, allowing Vault to - manage password retrieval and rotation for pre-existing database users, with - initial support for PostgreSQL [GH-6834] + * **New storage backend**: Integrated raft storage. Support an integrated, + highly-available storage backend within Vault, thereby removing the need + for an external storage backend. Based on Raft, the same protocol backing + Consul and Nomad. + * **Combined DB credential rotation**: Alternative mode for the Combined DB + Secret Engine to automatically rotate existing database account credentials + and set Vault as the source of truth for credentials. + * **Identity Tokens**: Vault's Identity system can now generate OIDC-compliant + ID tokens. These customizable tokens allow encapsulating a signed, verifiable + snapshot of identity information and metadata. They can be use by other + applications—even those without Vault authorization—as a way of establishing + identity based on a Vault entity. + * **Pivotal Cloud Foundry plugin**: New auth method using Pivotal Cloud + Foundry certificates for Vault authentication. + * **ElasticSearch database plugin**: New ElasticSearch database plugin issues + unique, short-lived ElasticSearch credentials. + * **New UI Features**: An HTTP Request Volume Page and new UI for editing LDAP + Users and Groups have been added. + * **HA support for Postgres**: PostgreSQL versions >= 9.5 may now but used as + and HA storage backend. + * **KMIP secrets engine (Enterprise)**: Allows Vault to operate as a KMIP Server, + seamlessly brokering cryptographic operations for traditional infrastructure. IMPROVEMENTS: