v2.10.1

What's Changed

2.10.1

Patch Changes

• c554b71: Fixes an issue with Jira token refresh when multiple integrations are installed.

Full Changelog: v2.10.0...v2.10.1

v2.10.0

What's Changed

2.10.0

Minor Changes

• 9f0cafd: Added Audit Logs page to view and filter audit logs across all Access Requests.
• 9f0cafd: Added Session Logs page to view and filter session logs across all Access Requests and Sessions.
• 9f0cafd: Access workflows can now require a Jira ticket to be attached to an access request
• 9f0cafd: Add snowflake integration.

Patch Changes

• 9f0cafd: Add Jira ticket field to Slack based access requests when it is required
• 9f0cafd: Fixes an issue where workflows with long max durations could cause the Slack request modal not to render the duration input
• 9f0cafd: Selector playground now gracefully handles tokenize errors.
• 9f0cafd: Show attachments in Slack messages
• 9f0cafd: Access Request Attachments are now shown on the request detail page.
• 9f0cafd: Approve button should not be shown when active access requests are selected.
• 9f0cafd: fix jira integration requirement to call secrets manager on every jira call
• 9f0cafd: Fixes an issue which could cause a delay in access being applied for the deployment admin role
• 9f0cafd: Adjusted spacing in debug entitlement access view.

Full Changelog: v2.9.5...v2.10.0

v2.9.5

What's Changed

2.9.5

Patch Changes

• 291d2d5: fixed a typo in access_handler_ecs_task_memory

Full Changelog: v2.9.4...v2.9.5

v2.9.4

What's Changed

2.9.4

Patch Changes

• 1517ab0: Fixes an issue where Cedar policies for Access::Action::"Request" which could cause no entitlements to be available in certain circumstances.

Full Changelog: v2.9.2...v2.9.4

v2.8.3

What's Changed

2.8.3

Patch Changes

• 71d77d1: fix issue causing auto approved request alerts to be send to the alerts channel

Full Changelog: v2.8.2...v2.8.3

v2.9.2

What's Changed

2.9.2

Patch Changes

• 7902151: Fixes internal proxy session logs returning an error for RDS access.

Full Changelog: v2.9.1...v2.9.2

v2.9.1

What's Changed

2.9.1

Patch Changes

• 559cd94: When Common Fate Deployment Administrator access is requested, the Console will automatically update with the new permissions.
• 559cd94: Extend notifications in Slack are now removed after the request is extended or closed.
• 559cd94: Added search functionality to directory user and groups list pages
• 559cd94: Adds a form to create integration secrets on demand via the Deployment page in the Settings.
• 559cd94: Fixes an issue which caused approvers to be notified for auto approved requests.
• 559cd94: Fix reasons being stripped of links in the console before being submitted.
• 01f8cbf: Fix an issue where enabling IDP-initiated SAML SSO login would cause Terraform drift. You can now set the saml_allow_idp_initiated_sign_in variable to true to avoid configuration drift.
• 559cd94: Improve observability over database credential refreshing
• 559cd94: Fixes missing names for groups when using connected identities.
• 559cd94: add target and role details in audit logs and session details
• 559cd94: Common Fate Selector API now reports a warning message when creating or updating a selector where the resource type or belonging to are not expected values.
• 559cd94: entra integration will now only sync users that are in an active state and members of the entra org
• 3e1f4e1: Adds ssm:DeleteParameter permission to the control plane for managing integration secrets
• 559cd94: Fixed selectors not matching any resources for RDS and EKS.
• 559cd94: Fixes the Extend button in slack not working.

Full Changelog: v2.9.0...v2.9.1

v2.8.2

What's Changed

2.8.2

Patch Changes

• d9b06a1: Fix an issue where enabling IDP-initiated SAML SSO login would cause Terraform drift. You can now set the saml_allow_idp_initiated_sign_in variable to true to avoid configuration drift.

Full Changelog: v2.8.1...v2.8.2

v2.9.0

What's Changed

2.9.0

Minor Changes

• a363ec1: Common Fate adminstrators can now specify a default local port to use with each database and user when granted rds proxy is used.
• a363ec1: Add support for Audited EKS Access Proxy
• 7eb80b9: adds s3 bucket and networking for EKS shell session logs

Patch Changes

• a363ec1: fix issue causing database endpoint and user endpoint override to be omitted on the resource detail page

Full Changelog: v2.8.1...v2.9.0

v2.8.1

What's Changed

2.8.1

Patch Changes

• 4c9d34b: For BYOC customers: fixes an issue where the 'iam_role_permission_boundary' variable was not correctly propagated to submodules.

Full Changelog: v2.8.0...v2.8.1