v1.21.1
[1.21.1] - 2024-06-03
Added
- Added two options to the
conjurctl server
command to start the Conjur
service:--no-rotation
to disable the internal secret rotation process and
--no-authn-local
to disable the internal local authentication socket server.
CNJR-3503 - Adds support for optionally prefixing user role_id with "user/" during API key authentication.
CNJR-5214 - Added endpoint for getting effective policy
CNJR-2040 - Ensure logging of all HTTP status codes during authentication.
CNJR-232
Fixed
- Dedicated user identifier resolver allowing the user identifiers work like any other resource id. The Conjur internal
representation of user identification should not be used with policies. Supports relative and absolute addressing in
case of nested policies.
CNJR-4394 - Fixed orphaned roles when deleting policy resources.
CONJSE-1875
Security
- Upgraded Rails to 6.1.7.8, to resolve CVE-2024-28103