changelog++
This commit is contained in:
Jeff Mitchell
parent
813c9f0a92
commit
fe251f3af3
41
CHANGELOG.md
41
CHANGELOG.md
|
|
@ -2,24 +2,31 @@
|
||||||
|
|
||||||
CHANGES:
|
CHANGES:
|
||||||
|
|
||||||
* autoseal/aws: The user-configured regions on the AWSKMS seal stanza
|
* Due to underlying changes in Go version 1.12, Vault is now stricter about
|
||||||
will now be preferred over regions set in the enclosing environment.
|
what characters it will accept in path names. Whereas before it would filter
|
||||||
This is a _breaking_ change.
|
out unprintable characters (and this could be turned off), control
|
||||||
* audit: All values in audit logs now are omitted if they are empty. This
|
characters and other invalid characters are now rejected within Go's HTTP
|
||||||
helps reduce the size of audit log entries by not reproducing keys in each
|
library before the request is passed to Vault, and this cannot be disabled.
|
||||||
entry that commonly don't contain any value, which can help in cases where
|
To continue using these (e.g. for already-written paths), they must be
|
||||||
audit log entries are above the maximum UDP packet size and others.
|
properly percent-encoded (e.g. `\r` becomes `%0D`, `\x00` becomes `%00`, and
|
||||||
* backends: both PeriodicFunc and WALRollback functions will be called if
|
so on).
|
||||||
both are provided. Previously WALRollback would only be called if PeriodicFunc
|
* The user-configured regions on the AWSKMS seal stanza will now be preferred
|
||||||
was not set. See [GH-6717](https://github.com/hashicorp/vault/pull/6717) for
|
over regions set in the enclosing environment. This is a _breaking_ change.
|
||||||
|
* All values in audit logs now are omitted if they are empty. This helps
|
||||||
|
reduce the size of audit log entries by not reproducing keys in each entry
|
||||||
|
that commonly don't contain any value, which can help in cases where audit
|
||||||
|
log entries are above the maximum UDP packet size and others.
|
||||||
|
* Both PeriodicFunc and WALRollback functions will be called if both are
|
||||||
|
provided. Previously WALRollback would only be called if PeriodicFunc was
|
||||||
|
not set. See [GH-6717](https://github.com/hashicorp/vault/pull/6717) for
|
||||||
details.
|
details.
|
||||||
* Go Modules change: Vault now uses Go Modules to manage dependencies. As a
|
* Vault now uses Go's official dependency management system, Go Modules, to
|
||||||
result to both reduce transitive dependencies for API library users and
|
manage dependencies. As a result to both reduce transitive dependencies for
|
||||||
plugin authors, and to work around various conflicts, we have moved various
|
API library users and plugin authors, and to work around various conflicts,
|
||||||
helpers around, mostly under an `sdk/` submodule. A couple of functions have
|
we have moved various helpers around, mostly under an `sdk/` submodule. A
|
||||||
also moved from plugin helper code to the `api/` submodule. If you are a
|
couple of functions have also moved from plugin helper code to the `api/`
|
||||||
plugin author, take a look at some of our official plugins and the paths
|
submodule. If you are a plugin author, take a look at some of our official
|
||||||
they are importing for guidance.
|
plugins and the paths they are importing for guidance.
|
||||||
|
|
||||||
FEATURES:
|
FEATURES:
|
||||||
|
|
||||||
|
|
|
||||||
Loading…
Reference in New Issue