S.H.I.E.L.D. BOSH Release v6.3.3

shield

Bumped https://github.com/starkandwayne/shield to v0.6.5

S.H.I.E.L.D. BOSH Release v6.3.2

Core Enhancements

• SHIELD now works with MySQL and MariaDB databases. Use the configuration
  option database_type to set the database driver to mysql.

Bug Fixes

• Add a timeout of 20 seconds to the curl call that retrieves the
  public key from the SHIELD core, to avoid deadlock conditions
  that arise when the start script cannot access the core, either
  due to networking issues, naming problems, or firewall / ACLs.
• Fixes a bug where shield list jobs --paused/--unpaused is reversed.

S.H.I.E.L.D. BOSH Release v6.3.1

Improvements

• Users can now specify custom paths for running SHIELD plugins in their agents
  with the shield.agent.plugin_paths array.

S.H.I.E.L.D. BOSH Release v6.3.0

Improvements

• Revamped SSH key support for agent/daemon communication.
  The SSH key is now required to be input, rather than having
  a key tied to stemcells + upgrades. Made property names more
  relevant for ssh key related properties.

Job Property Renames/Removals

• The shield.daemon.host_key property is no longer used. It has
  been replaced by shield.daemon.ssh_private_key, with no default
  value. This must be specified in your manifest
• The shield.agent.authorized_keys property is no longer used. It
  has been replaced by shield.agent.daemon_public_key. The new value
  is a scalar of the public key corresponding to shield.daemon.ssh_private_key,
  whereas the old property was an array. The agent will continue to use this
  in conjunction with any key found via the shield.agent.autoprovision
  detection.
• The shield.agent.authorize_generated_daemon_key has been removed. It is no longer
  necessary, since the daemon key is no longer generated behind the scenes.

shield

Bumped https://github.com/starkandwayne/shield to v0.6.4

S.H.I.E.L.D. BOSH Release v6.2.2

Release Notes

• Fixes a bug with the Postgres restore plugin where the restore would fail if any given line in the dump file was too long.
• Fixes a bug where an initial run of create backend would fail if the user's home directory was on a different filesystem than /tmp.
• The backend name is now displayed in the CLI when executing a command, in addition to its IP.
• The help dialogues for the backend commands now give the flags required.
• The shield plugins will no longer display the endpoint argument (potentially along with credentials contained within) in the process name.

S.H.I.E.L.D. BOSH Release v6.2.1

Bug fixes

Fixed issue with host key adding \ for daemon

S.H.I.E.L.D. BOSH Release v6.2.0

Improvements

• Added the scality plugin. Previously this support was handled via the S3 plugin,
  but there were issues with multi-part uploads in scality, forcing the new plugin.
• Eliminated configuration leakage through process args during plugin execution.

S.H.I.E.L.D. BOSH Release v6.1.0

Core Enhancements

• Properly handle secure redirection from insecure endpoints. If
  you target a SHIELD over a non-HTTPS endpoint, the CLI will wait
  to see if it gets redirected to an HTTPS endpoint before sending
  any credentials. Fixes shield/#151.
• Authentication now produces more helpful debugging and
  diagnostic information, to assist site operators in
  troubleshooting their auth setup.
• Users can now be granted access to SHIELD based on UAA
  credentials and their role assignments / memberships.

Bug Fixes

• Fix a bug in the timespec scheduling logic for weekly jobs that
  would cause 60 separate tasks (one per second) to fire off when
  the weekly backup was to be run.
• Rename nginx.ssl_cert property to nginx.ssl_crt, so that
  custom certificates will work with SHIELD.
• Fix an off-by-one bug in the Web UI that was causing dates in
  May to display as dates in April (for example).

S3 Plugin Enhancements

• The s3_host configuration option is now optional, and defaults
  to using Amazon's s3.amazonaws.com endpoint.
• The prefix configuration option is now optional, allowing
  backups to be placed directly in the root
• The skip_ssl_validation configuration option now defaults to
  false (i.e., actually verify certs received from S3)
• The socks5_proxy configuration option now displays in
  validation output.

Postgres Plugin Enhancements

• Now supports backing up a single database on a cluster, via the
  pg_database configuration option.

S.H.I.E.L.D. BOSH Release v6.0.0

New Features

• Authentication and Authorization!
  SHIELD now supports options for authenticating requests to it!
  It supports HTTP Basic authentication, OAuth2 (currently the
  only supported provider is github), and API Keys. If no authentication
  configuration is provided, SHIELD will default to HTTP Basic Auth,
  using a default user/password.
• SSL Required
  SHIELD now runs behind an nginx instance doing SSL termination.
  If you do not specify a key, one will be auto-generated for you,
  making an easier transition. Additionally, non-encrypted requests
  will be redirected to https for you.

Bug Fixes

• Remove console.log calls from frontend Web UI Javascript,
  for those poor souls who don't run with web debugging on
  everywhere...
• Fix an issue with the creator function that prevented
  creation of new things (targets, schedules, etc.) from the
  frontend Web UI.
• Support Chrome's insistence that type="date" input fields be
  formatted according to the HTML spec, and make the backup
  archive date range picker work.

S.H.I.E.L.D. BOSH Release v5.1.1

Bug Fixes

• Shield CLI no longer prints debugging information when dealing
  with special parsing in forms (i.e. create policy) #135
• Shield Web UI now properly handles the forms used to create new
  objects (schedules, targets, etc.) making it useful again.