Skip to content

v0.1.18
Compare
Choose a tag to compare
@asafc asafc released this 12 Dec 11:52
· 1126 commits to master since this release
0.1.18
a6d5f4e

This is a minor release, but please pay attention to the release notes about JWT issuer and JWT audience!

Changes that require your attention

  • Authorizon (the company behind OPAL) is rebranding as Permit.io (more announcements will follow).
  • Therefore we moved the OPAL repo under our new organization in github. Changed all references to authorizon.com as a result.
  • We also changed the default AUTH_JWT_ISSUER and AUTH_JWT_AUDIENCE.

If you upgrade to OPAL 0.1.18 you need to do one of the following: (either 1 or 2, it does not matter)

  1. add these config vars to your setup (will override the new defaults with the old values)
OPAL_AUTH_JWT_AUDIENCEhttps://api.authorizon.com/v1/
OPAL_AUTH_JWT_ISSUER=https://authorizon.com/
  1. Recreate all JWT tokens used by your OPAL setup (i.e: client token, etc) since OPAL server will now check the tokens with a new JWT issuer and JWT audience.

Few minor fixes:

  1. #185: JWT signer - clearer error message for JWT signer with bad input
  2. #186: added an example docker compose using secure mode with tokens. all you need is to clone the repo, cd to the docker/ directory and run ./run-example-with-security.sh. full instructions are here
  3. #187: fixed healthcheck policy in policy-only mode (fixes #181)
  4. #188: fix bug where changes to different directories in the same commit are ignored, full notes in the pull (fixes #180)
  5. #189: add conditional APM to opal server (added option to configure opal with datadog)
Assets 8
Loading