diff --git a/shield/docs/public/release-notes.asciidoc b/shield/docs/public/release-notes.asciidoc index 36800e68d5d..dc49f9573be 100644 --- a/shield/docs/public/release-notes.asciidoc +++ b/shield/docs/public/release-notes.asciidoc @@ -41,9 +41,19 @@ version of Shield. We recommend copying the changes listed below to your `roles. [[changelist]] === Change List +[float] +==== 1.3.2 + +.bug fixes +* When using the <> mechanism, connection errors during startup no longer cause the node to stop. +* The <> no longer generates invalid JSON. +* The <> starts properly when forwarding the audit events to a remote cluster and uses +the correct user to index the audit events. + [float] ==== 1.3.1 +.bug fixes * Fixes <> serialization to work with Shield 1.2.1 and earlier. ** NOTE: if you are upgrading from Shield 1.3.0 or Shield 1.2.2 a {ref}/setup-upgrade.html#restart-upgrade[cluster restart upgrade] will be necessary. When upgrading from other versions of Shield, follow the normal <>. @@ -64,14 +74,12 @@ will be necessary. When upgrading from other versions of Shield, follow the norm have been hashed with `bcrypt` and are not affected. .enhancements - * TLS 1.2 is now the default protocol. * Clients that do not support pre-emptive basic authentication can now support both anonymous and authenticated access by specifying the `shield.authc.anonymous.authz_exception` <> with a value of `false`. * Reduced logging for common SSL exceptions, such as a client closing the connection during a handshake. .bug fixes - * The `esusers` and `syskeygen` tools now work correctly with environment variables in the RPM and DEB installation environment files `/etc/sysconfig/elasticsearch` and `/etc/default/elasticsearch`. * Default ciphers no longer include `TLS_DHE_RSA_WITH_AES_128_CBC_SHA`. @@ -79,6 +87,7 @@ will be necessary. When upgrading from other versions of Shield, follow the norm [float] ==== 1.2.3 +.bug fixes * Fixes <> serialization to work with Shield 1.2.1 and earlier. ** NOTE: if you are upgrading from Shield 1.2.2 a {ref}/setup-upgrade.html#restart-upgrade[cluster restart upgrade] will be necessary. When upgrading from other versions of Shield, follow the normal <>. @@ -86,6 +95,7 @@ will be necessary. When upgrading from other versions of Shield, follow the norm [float] ==== 1.2.2 +.bug fixes * The `esusers` tool no longer warns about missing roles that are properly defined in the `roles.yml` file. * The period character, `.`, is now allowed in usernames and role names. * The {ref}/query-dsl-terms-filter.html#_caching_19[terms filter lookup cache] has been disabled to ensure all requests @@ -98,17 +108,20 @@ will be necessary. When upgrading from other versions of Shield, follow the norm [float] ==== 1.2.1 +.bug fixes * Several bug fixes including a fix to ensure that {ref}/disk.html[Disk-based Shard Allocation] works properly with Shield [float] ==== 1.2.0 +.enhancements * Adds support for Elasticsearch 1.5 [float] ==== 1.1.1 +.bug fixes * Several bug fixes including a fix to ensure that {ref}/disk.html[Disk-based Shard Allocation] works properly with Shield @@ -139,12 +152,14 @@ for more information. [float] ==== 1.0.2 +.bug fixes * Filter out sensitive settings from the settings APIs * Significant memory footprint reduction of internal data structures [float] ==== 1.0.1 +.bug fixes * Fixed dependency issues with Elasticsearch 1.4.3 and (Lucene 4.10.3 that comes with it) * Fixed bug in how user roles were handled. When multiple roles were defined for a user, and one of the roles only had cluster permissions, not all privileges were properly evaluated.